ACL suggestions needed for a small light framework developed

Question

Hello all,

I've developed a small framework that was needed for the firm that I work. The problem is I've not made a full level framework, as developers are finding tough time to understand what is what, So I made a simple structure with app/controllers, app/models, app/views so that they can clearly separate the code and can get used to higher frameworks later. All other things like components/modules/helpers are just coded for now in a file called app_functions.php. The above framework is derived from cakePHP, not all, but just the framework uses a modified code of dispatcher of cake. The models all work with normal sqls, and views with pure html using a template engine.

Now I'm trying to develop a small application over it, it cameout well, but ACL is something which many versions of it have not proved that satisfactory. Can anybody suggest a good ACL. I've checked phpGACL(too heavy), Zend_ACL likely won't be compatible, Cakephp's ACL which wont fit in the structure,as we are not using cake's SQLs, as there too many queries hitting the database for one page display.

Answer 1

I ported Zend ACL to Kohana; why wouldn't it work for you? The Zend ACL library is persistence agnostic, which means you can do whatever you want to create roles/resources/rules/assertions and you can store however you wish.

My implementation takes a multi-dimensional array and infers the ACL from that - building it as a Zend ACL object; I then cache the final ACL object to the filesystem so that I am not generating the ACL object on every request.

This solution works beautifully, primarily because Zend ACL is agnostic to the rule generation and persistence problems.

I think if you take some time to come up with a decent implementation, Zend ACL would be your ideal library.