通常在控制器中你可以通过这种方式添加你的规则
public function behaviors()
{
return [
'access' => [
'class' => AccessControl::className(),
'rules' => [
[
'actions' => ['index','view'],
'allow' => true,
'roles' => ['viewer', 'viewerModel1', 'viewerModel2'],
],
[
'allow' => true,
'roles' => ['superAdmin', 'admin', 'manage', 'managerModel1', 'managerModel2'],
],
],
],
'verbs' => [
'class' => VerbFilter::className(),
'actions' => [
'delete' => ['post'],
],
],
];
}
此规则允许访问 'viewer', 'viewerModel1', 'viewerModel2' 的索引和视图。以这种方式对'superAdmin', 'admin', 'manage', 'managerModel1', 'managerModel2' 进行管理的所有访问权限,其他角色无法访问此控制器的视图应用程序