1.5 KiB
ACL Implementation
The PropelBundle provides a model-based implementation of the Security components' interfaces.
To make us of this AuditableAclProvider you only need to change your security configuration.
security:
acl:
provider: propel.security.acl.provider
This will switch the provider to be the AuditableAclProvider of the PropelBundle.
The auditing of this provider is set to a sensible default. It will audit all ACL failures but no success by default. If you also want to audit successful authorizations, you need to update the auditing of the given ACL accordingly.
After adding the provider, you only need to run the propel:acl:init command in order to get the model generated.
If you already got an ACL database, the schema of the PropelBundle is compatible with the default schema of Symfony2.
Separate database connection for ACL
In case you want to use a different database for your ACL than your business model, you only need to configure this service.
services:
propel.security.acl.connection:
class: PropelPDO
factory_class: Propel
factory_method: getConnection
arguments:
- "acl"
The PropelBundle looks for this service, and if given uses the provided connection for all ACL related operations.
The given argument (acl in the example) is the name of the connection to use, as defined in your runtime configuration.