O'Reilly logo

Web Application Development with Yii 2 and PHP by Jeffrey Winesett, Mark Safronov

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Protecting the CRM management from CRM users

We have differentiated the CRM manager and CRM user roles since the very beginning in our specifications for the application. So far, each acceptance test began with some work on the side of database management and ended with either usage of public interface or checking some assumptions right in the management UI.

Now, it's time to really prohibit the CRM user from accessing the database management UI pages. We are going to implement the following business ruleset:

  • Unauthenticated (guest) users should not be able to access anything except the home page and the login form.
  • User-level users should be able to access the Query Customer By Phone UI.
  • Manager-level users should be able to access everything except ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required