Configuration: simplest authorization

The [page about configuration](https://doc.nette.org/en/2.4/configuring) offers a very simple way to authenticate. There is however no mention about an equivalent way to set up authorization.
[The ACL page](https://doc.nette.org/en/2.4/access-control#toc-usage-in-application) goes into detail here, but it is not obvious if both approaches can be combined.

I would like to see some lines added, but I have no idea if this is the correct way to do it.
Here is what we've got:

```
security:
    debugger: true  # debugger bar panel

    users:
        johndoe: secretpassword
        mikesmith: anotherpassword

    roles:
        guest:
        member:
        admin: [member]  # admin extends member

    resources:
        file:
```

And here's what i would like to add at the end, if something like that exists (pseudo-code):
```
security:
    allow(member, file, read)
    addRole(johndoe, [admin, ...])
    addRole(mikesmith, member)
```

As soon as I find out how this can be done properly, I'll happily add it to both EN and CS documentation.

As mentioned on [the ACL page](https://doc.nette.org/en/2.4/access-control#toc-usage-in-application) I know there is this option:
```
services:
    acl:
        factory: Nette\Security\Permission
        setup:
            - allow(member, file, read)
            - addRole(johndoe, [admin, ...])
            - addRole(mikesmith, member)
```
But that does not combine well, or does it? If that is the only way, maybe it should be added to the configuration page.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

Configuration: simplest authorization #696

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Uh oh!

Configuration: simplest authorization #696

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions