CKEditor 4
Fri, 03/05/2010 - 10:33
#1
robertark
robertark's picture
Joined: 05/03/2010
Posts: 2

PHP: CKFinder AccessControl and RoleSessionVar problem

Edit: Issue resolved (see next post)

I'm trying to integrate ckfinder into a cms that I'm currently working on (PHP) and I've been having problems left and right with ckfinder -- so, here's the synopsis:

1) Upon a user logging in, I'm creating two cookies "ckf_authorized", "ckf_key" and "ckf_role", which are being pulled from SQL. Using ckf_authorized within the CheckAuthorization() function works fine -- though, the cookie itself will be changed to ensure security. ckf_role's cookie is being set, but CKFinder is doing something weird... Continue reading..
2) I'm setting the RoleSessionVar from the cookie "ckf_role" such as this:

// Either "admin", "user" or "none"
$config['RoleSessionVar'] = !empty($_COOKIE['ckf_role']) ? strtolower($_COOKIE['ckf_role']) : "none";

And, below that, I've tried using this:

// Block all actions for 'everyone'
$config['AccessControl'][] = array(
    'role' => '*',
    'resourceType' => '*',
    'folder' => '/',

    'role' => 'none',
    'resourceType' => '*',
    'folder' => '/',

    'folderView' => false,
    'folderCreate' => false,
    'folderRename' => false,
    'folderDelete' => false,

    'fileView' => false,
    'fileUpload' => false,
    'fileRename' => false,
    'fileDelete' => false
);

// Admin
$config['AccessControl'][] = Array(
    'role' => 'admin',

    'folderView' => true,
    'folderCreate' => true,
    'folderRename' => true,
    'folderDelete' => true,

    'fileView' => true,
    'fileUpload' => true,
    'fileRename' => true,
    'fileDelete' => true
);

// User
$config['AccessControl'][] = array(
    'role' => 'user',

    'folderView' => true,
    'folderCreate' => true,

    'fileView' => true,
    'fileUpload' => true
);


3) I can javascript:alert(document.cookie) to see the cookies that are set, ensuring that "ckf_role" is set to "admin" or "user", however, CKFinder draws a blank page (as in, can't see folders or contents in main window).

Am I misunderstanding something here? I've been following the docs on http://docs.cksource.com/CKFinder/Devel ... ss_Control and even cleared cookies/cache, still nothing works.

Thanks

Top
Fri, 03/05/2010 - 10:42
robertark
robertark's picture
Joined: 05/03/2010
Posts: 2

Re: PHP: CKFinder AccessControl and RoleSessionVar problem

Nevermind, figured it out. Didn't realize that the session name itself had to match the RoleSessionVar value itself. Kind of odd if you ask me, but anyhow.

Here's my solution (for others who may have ran into this problem):
session_start();
$config['RoleSessionVar'] = 'CKFinder_UserRole';
$_SESSION['CKFinder_UserRole'] = !empty($_COOKIE['ckf_role']) ? strtolower($_COOKIE['ckf_role']) : "none";



// Block all actions for 'everyone'
$config['AccessControl'][] = array(
    'role' => '*',
    'resourceType' => '*',
    'folder' => '/',

    'folderView' => false,
    'folderCreate' => false,
    'folderRename' => false,
    'folderDelete' => false,

    'fileView' => false,
    'fileUpload' => false,
    'fileRename' => false,
    'fileDelete' => false
);

// Admin
$config['AccessControl'][] = Array(
    'role' => 'admin',

    'folderView' => true,
    'folderCreate' => true,
    'folderRename' => true,
    'folderDelete' => true,

    'fileView' => true,
    'fileUpload' => true,
    'fileRename' => true,
    'fileDelete' => true
);

// User
$config['AccessControl'][] = array(
    'role' => 'user',

    'folderView' => true,
    'folderCreate' => true,
    'folderRename' => false,
    'folderDelete' => false,

    'fileView' => true,
    'fileUpload' => true,
    'fileRename' => false,
    'fileDelete' => false
);
Top
Twitter Facebook Facebook Instagram Medium Linkedin GitHub Arrow down Phone Menu Close icon Check