Merge pull request #274 from gbirke/authorization_in_controller

weaverryan · weaverryan · commit 1a041cb3251a · 2011-05-11T12:36:43.000-07:00
How to check for roles in the controller
diff --git a/book/security/authorization.rst b/book/security/authorization.rst
@@ -169,3 +169,21 @@ syntax:
 
     If you need access to the user from a template, you need to pass it
     explicitly.
+
+Access Control in Controllers
+-----------------------------
+
+If you want to check a user role in your controller, you use the
+``isGranted``method of the security context:
+
+.. code-block:: php
+
+    // DefaultController.php
+    public function indexAction()
+    {
+        // show different content to admin users
+        if($this->get('security.context')->isGranted('ADMIN')) {
+            // Load admin content here
+        }
+        // load other regular content here
+    }
