CakePHP - 如何允许未经身份验证的访问特定页面

CakePHP - How to allow unauthenticated access to specific pages(CakePHP - 如何允许未经身份验证的访问特定页面)

问题描述

我创建了一个 CakePHP 应用程序，我在其中创建了一个 UsersController，它处理所有关于用户的信息.当我尝试浏览 www.mydomain.com 时，如果我已登录，它会让我看到索引 (app/View/Pages/home.ctp).否则，它会将我重定向到 mydomain.com/users/login 并坚持登录.

I have created a CakePHP app where I have created a UsersController, which handles all about users. When I try to browse www.mydomain.com, if I am logged in, it let's me see the index (app/View/Pages/home.ctp). Else, it redirects me to mydomain.com/users/login and persists to log in.

我曾尝试查看 AppController.php、PagesController.php 或 app/Config/core.php 和 app/Config/routes.php，但没有找到任何东西.我的 UsersController.php 也不对此负责，我想.

I have tried looking at AppController.php, PagesController.php or app/Config/core.php and app/Config/routes.php, but did not find anything. My UsersController.php, also, is not responsible for that, I think.

我不记得了，我也找不到如何禁用它.哪个文件应该对此负责?

I do not remember and I cannot find how to disable this. Which file should be responsible for that?

我的 CakePHP 版本是 2.3.

my CakePHP version is 2.3.

推荐答案

通常，您可以使用 auth 组件allow() 方法.

Generally you can make specific actions public using the auth components allow() method.

如果您只想公开特定页面，则公开页面可能需要做更多工作，因为 PagesController 在单个操作中处理所有页面 (display()).如果是这种情况，那么您可以使用 request->params['pass'][0] 来保存页面名称，针对允许的页面列表进行测试，然后允许使用 Auth::allow 的 display 动作.

public function beforeFilter()
{
    parent::beforeFilter();

    $allowedPages = array('home', 'foo', 'bar');
    if(isset($this->request->params['pass'][0]) &&
       in_array($this->request->params['pass'][0], $allowedPages))
    {
        $this->Auth->allow('display');
    }
}

public function beforeFilter()
{
    parent::beforeFilter();
    $this->Auth->allow('display');
}