kero_zen
Reputation: 694
Prevent direct access to an action controller
I'm working with zend framework. In a view i use an action helper.
echo $this->action('info', 'comment', null, array('articleID' => $article->arti_id));
So, the helper call 'CommentController' class and method 'infoAction'. Inside my method i get the 'articleID' param and i begin process with model. Finally i render a shared view.
public function infoAction() {
$articleID = $this->getRequest()->getParam('articleID');
// Working with model
// .....
$this->renderScript('/View/Script/DefaultComment.phtml');
}
It's work well but i don't want that this controller/action be directly accessible by the url domain.com/comment/info.
How can i avoid this ?
Thx
Upvotes: 2
Views: 670
Answers (1)
Liyali
Reputation: 5693
If your action method is always called with an article id parameter, then you could redirect the request in case there is no id:
public function infoAction() {
if ($this->_hasParam('articleID')) {
$articleID = $this->getRequest()->getParam('articleID');
// Working with model
// .....
$this->renderScript('/View/Script/DefaultComment.phtml');
} else {
$this->_helper->redirector('index', 'index', 'default');
}
}
Upvotes: 3
Related Questions
- How to make custom controller and action available with out authentication in zend frawork2
- Prevent route access
- how to restrict user from all controllers and actions but login page when he is not loggedin in zend framework 2
- block access to page Zend Framework
- Zend : Block Access via URL
- Zend Framework 2 restrict route to controller action
- How to prevent a route from being accessed via its associated module/controller/action path in Zend Framework?
- Zend Framework - Controlling Access to controllers
- How to exclude a controller action from authentication in Zend framework
- Zend - controller/action ACL