AuthComponent: Difference between allowedActions and allow()?
What is the difference between using AuthComponent::allowedActions and AuthComponent::allow? When I Google, I see the majority of examples and documents using or talking开发者_运维问答 about allow(), but only a few using allowedActions. But they both seem similar in usage.
allowedActions is a property that contains a list of allowed actions.
allow() is a method that adds actions to the allowedActions property.
When you call the allow() method, it will merge the actions you specify with the actions already kept in allowedActions.
You can bypass the allow() method and assign an array of allowed actions to the allowedActions property directly, but I would only do that if I absolutely had to override any actions previously added (for example, by a parent class) to this property. The official documentation makes no reference to the allowedActions property.
In 2.x use:
$this->Components->disable('Security');
精彩评论