Yii2 require all Controller and Action to login

by

Place this rule in the beginning of the rules section: 

[
    'allow' => true,
    'roles' => ['@'],
],

Omitting the actions means all actions.

So your AccessControl config will be like this:

public function behaviors()
{
    return [
        'access' => [
            'class' => AccessControl::className(),
            'rules' => [
                [
                    'allow' => true,
                    'roles' => ['@'],
                ],

                // ...
            ],
        ],
    ];
}

Keep in mind that rules are applied in order they are declared.

To do it globally without inheritance, add the as beforeRequest array below (not inside!) the components declaration in your application config:

'components' => [ ... ],
'as beforeRequest' => [
    'class' => 'yii\filters\AccessControl',
    'rules' => [
        [
            'allow' => true,
            'actions' => ['login'],
        ],
        [
            'allow' => true,
            'roles' => ['@'],
        ],
    ],
    'denyCallback' => function () {
        return Yii::$app->response->redirect(['site/login']);
    },
],

This code will run before each request and block all actions except login for guests.

Make sure that there is no login action in other controllers than SiteController. If there are (and for example they are for different purposes), block them explicitly in according controllers. But it’s pretty rare case.

More Related Contents:

  1. Count array by parse value of array
  2. Convert SQL query to Yii Criteria Query
  3. “Invalid parameter number: parameter was not defined” Inserting data
  4. Yii2 htaccess – How to hide frontend/web and backend/web COMPLETELY
  5. CURL ERROR: Recv failure: Connection reset by peer – PHP Curl
  6. Jquery – Uncaught TypeError: Cannot use ‘in’ operator to search for ‘324’ in
  7. SQLSTATE[HY093]: Invalid parameter number: parameter was not defined
  8. How to use events in yii2?
  9. Yii2 disable Bootstrap Js, JQuery and CSS
  10. Log the actual SQL query using ActiveRecord with Yii2?
  11. Get first character of UTF-8 string
  12. Yii2 translation does not work
  13. don´t recognize variable of php
  14. Can't echo items from array
  15. Call to a member function on a non-object [duplicate]
  16. How do I log errors and warnings into a file?
  17. PHP curly brace syntax for member variable
  18. Doctrine 2 and Many-to-many link table with an extra field
  19. Tell bots apart from human visitors for stats?
  20. WooCommerce: Add product to cart with price override?
  21. What’s the difference between $_POST, $_GET, and $_REQUEST?
  22. Parsing JSON array with PHP foreach
  23. Changing the root folder via .htaccess
  24. Transfer variables between PHP pages
  25. How can I remove attributes from an html tag?
  26. Connection reset by peer: mod_fcgid: error reading data from FastCGI server
  27. PHP + Ajax Login
  28. Convert a big integer to a full string in PHP
  29. PHP cURL, POST JSON
  30. When and why should $_REQUEST be used instead of $_GET / $_POST / $_COOKIE?

Leave a Comment