====== Using AuthComponent in CakePHP 1.2 ======
<note notice>
I've updated the tutorial - i've included the basic setup here, changed the [[SimpleAclComponent]] and move some portion of the guide to that page.
</note>

 A great addition to CakePHP 1.2 is the **AuthComponent**. It's designed to handle authentication and optionally authorization using the built-in ACL component (DB_ACL or INI_ACL) or your custom component. I'll cover the authentication in this article - authorization will be covered on the [[SimpleAclComponent page]].

===== Basic Setup =====


So let's start with the basics - to use it you must include the component in your **AppController** (**Acl** has to be before **Auth** component):
<code php>
var $components = array('Auth');
</code>

Now we want to initialize the **AuthComponent** and set some options - the best place for this will be the **AppController** **beforeFilter()** callback
<code php>
function beforeFilter()
{
	parent::beforeFilter();

	if (isset($this->Auth)) 
	{
		// the authorization type (covered below)
		$this->Auth->authorize = null;

		// the rest is optional - you don't really need to specify these if the defaults are ok for You

		// additional options for the find query, here the user has to be verified in order to be able login
		$this->Auth->userScope = array('User.verified' => 1);
		// the action that is used for login (deafults to '/users/login')
		$this->Auth->loginAction = '/users/login';
		// the error that is showed to the user when he supplied the wrong credentials (in Polish)
		$this->Auth->loginError = 'Błąd logowania. Nieprawdłowa nazwa użytkownika lub hasło.';
		// the error that is showed to the user when he doesn't have access to an action (in Polish)
		$this->Auth->authError = 'Brak dostępu.';
		// where to redirect after login
		$this->Auth->loginRedirect = '/users/account';
		// name of the model that holds the username/pass (defaults to 'User')
		$this->Auth->userModel = 'User';
		// fields that hold the username and password (you must specify both or use $this->Auth->fields['password'] = 'passwd';)
		$this->Auth->fields = array('username' => 'username', 'password' => 'password');

}
</code>
Look at the [[http://api.cakephp.org/1.2/auth_8php-source.html|CakePHP API]] to see the defaults. 

==== User data in view ====

I usually add something along these lines in **AppControlle::beforeRender()**
<code php>
function beforeRender()
{
	parent::beforeRender();
	$user = $this->Auth->user();
	$this->set('User', $user[$this->Auth->userModel]);
}
</code>
This gives me access to the actual logged user data in the view. You just need to do:
<code html>
You're logged as <?php echo $User['username']; ?>
</code>

===== Different Authorization Methods =====


In **AuthComponent** there are different authorization methods ($this->Auth->authorize):
  * actions - the User object will be authorized against Controller/action (sample Acl component call: $this->acl->check($aco, 'Users/register'); )
  * crud - similar to //actions// but the controller action will be mapped to crud actions using //$this->Auth->actionMap// array ( $this->acl->check($aco, 'Users', 'create');
  * model - Model::isAuthorized() is called in the model specified in $this->Auth->object; ( $object->isAutherized($aco, 'Users', 'register')
  * object - Object::isAuthorized() is called in the model specified in $this->Auth->object; ( $object->isAutherized($aco, 'Users', 'register') 
  * controller - Same as above but Controller::isAuthorized() is called (without any params)
  * null - no authorization
In the above calls $aco is a user array (note: it doesn't contain the user password) 
<code php>
$aco = array(
	'id' => 1, 
	'username' => 'test', 
	'verified' => 1)
</code> 

===== Login Action =====


Here is the code for the login action in your UserController (yes it is complete ;):
<code php>
function login(){}
</code>

And here is the view:
<code php>
<h2>Login</h2>
<?php echo $form->create('User',array('action' => 'login')); ?>
<fieldset class="form">
<?php echo $form->input('User.username'); ?>
<?php echo $form->input('User.password'); ?>
<?php echo $form->submit('Submit', array('class' => 'submit')); ?>
</fieldset>
</form>
</code>

Now you have a basic AuthComponent working.
For the authorization (ie. checking if the user is allowed to view the page) go to [[SimpleAclComponent]].

===== Read more =====

I encourage to reach some nice tutorials about AuthComponent and Access controll using the powerful ACL built-in cake. It's much more powerful than the [[SimpleAclComponent]] I've written.
[[http://lemoncake.wordpress.com/2007/07/19/using-authcomponent-and-acl-in-cakephp-12/|Using AuthComponent and Acl in CakePHP 1.2]]
[[http://lemoncake.wordpress.com/2007/07/15/using-aclbehavior-in-cakephp-12/|Using AclBehavior in CakePHP 1.2]]
[[http://lemoncake.wordpress.com/2007/07/19/acl-with-groups/|Acl with Groups]]

 --- //[[blog@kabturek.info|Marcin Domanski]] 2007/12/04 10:28//