|Lock access to /sf_guard_user to non admin users [message #103128]
||Tue, 27 July 2010 14:50
Registered: December 2009
I have installed the sfDoctrineGuardPlugin (v1.0.4) on a symfony project (v1.4.4).
I have published the modules sfGuardUser, sfGuardGroup and sfGuardPermission.
I would like 2 levels of users for my backend : admins which can manage users, and non admins which can only watch some other pages.
I have created the permission "user_manager" for the users which can manage users.
For users which have not the "user_manager" permission, i don't display the menu shortcuts pointing on sf_guard_[user|group|permission]. But they can access theses pages by typing the direct url site.ext/backend.php/sf_guard_user.
However I wrote in apps/backend/config/security.yml :
What should I do to forbid access to sfGuard to non admin users ?
Thank you by advance,