Multiple Instances (2) of Zend_Auth

Asked 30/11, 2010 at 21:2 Answered 8/11, 2012 at 10:7

Solved php zend-framework zend-auth zend-acl

I have a CMS built on the Zend Framework. It uses Zend_Auth for "CMS User" authentication. CMS users have roles and permissions that are enforced with Zend_Acl. I am now trying to create "Site Users" for things like an online store. For simplicity sake I would like to use a separate instance of Zend_Auth for site users. Zend_Auth is written as a singleton, so I'm not sure how to accomplish this.

Reasons I don't want to accomplish this by roles:

Pollution of the CMS Users with Site Users (visitors)
A Site User could accidentally get elevated permissions
The users are more accurately defined as different types than different roles
The two user types are stored in separate databases/tables
One user of each type could be signed in simultaneously
Different types of information are needed for the two user types
Refactoring that would need to take place on existing code

Loreenlorelei answered 30/11, 2010 at 21:2 Comment(2)

You should be considering using roles for your 'CMS User' and 'Site User' instead of having multiple levels of Authentication. – Danielldaniella 30/11, 2010 at 21:12

Thanks Darryl, I've addressed your comment now in my post. – Loreenlorelei 30/11, 2010 at 21:29

In that case, you want to create your own 'Auth' class to extend and remove the 'singleton' design pattern that exists in Zend_Auth

This is by no means complete, but you can create an instance and pass it a 'namespace'. The rest of Zend_Auth's public methods should be fine for you.

<?php
class My_Auth extends Zend_Auth
{

    public function __construct($namespace) {
        $this->setStorage(new Zend_Auth_Storage_Session($namespace));
        // do other stuff
    }
    static function getInstance() {
        throw new Zend_Auth_Exception('I do not support getInstance');
    }  
}

Then where you want to use it, $auth = new My_Auth('CMSUser'); or $auth = new My_Auth('SiteUser');

Danielldaniella answered 30/11, 2010 at 21:58 Comment(3)

Testing now. This looks very promising! – Loreenlorelei 30/11, 2010 at 22:29

It's working, but Zend_Auth is not singleton for no reason ;) – Dispensary 30/11, 2010 at 22:33

I already stated my recommendation for roles. It's not my job to force my beliefs on others :) – Danielldaniella 30/11, 2010 at 22:39

class App_Auth
{
    const DEFAULT_NS = 'default';

    protected static $instance = array();

    protected function __clone(){}

    protected function __construct() {}

    static function getInstance($namespace = self::DEFAULT_NS) {
        if(!isset(self::$instance[$namespace]) || is_null(self::$instance[$namespace])) {
            self::$instance[$namespace] = Zend_Auth::getInstance();
            self::$instance[$namespace]->setStorage(new Zend_Auth_Storage_Session($namespace));
        }

        return self::$instance[$namespace];
    }
}

Try this one , just will need to use App_Auth instead of Zend_Auth everywhere, or App_auth on admin's area, Zend_Auth on front

Handley answered 8/11, 2012 at 10:7 Comment(0)

that is my suggestion :

i think you are in case that you should calculate ACL , recourses , roles dynamically ,

example {md5(siteuser or cmsuser + module + controller)= random number for each roles }

and a simple plugin would this role is allowed to this recourse

or you can build like unix permission style but i guess this idea need alot of testing one day i will build one like it in ZF :)

i hope my idea helps you

Editor answered 30/11, 2010 at 22:15 Comment(1)

I use that pattern for the "CMS Users" – Loreenlorelei 30/11, 2010 at 22:25

You're mixing problems. (not that I didn't when I first faced id)

Zend_Auth answers the question "is that user who he claims to be"? What you can do is to add some more info to your persistence object. Easiest option is to add one more column into your DB and add it to result.

Logway answered 30/11, 2010 at 22:30 Comment(1)

Thanks Tomáš, I do use that feature – Loreenlorelei 30/11, 2010 at 22:53

Recommended topics

Hot tags