search

DoghouseMedia / Dhmedia_Devel--Magento-Developer-Tools-

Advanced Developer Tools for Magento E-commerce
http://www.magentocommerce.com/magento-connect/advanced-developer-tools.html
61 stars 9 forks source link

Access restriction / Auth #3

Open jonathan-dh opened 13 years ago

jonathan-dh commented 13 years ago

Settings to define who can access what parts of Devel.

  1. If IP restriction is set, deny if IPs doesn't match.
  2. If developer mode is on, turn Devel on.
  3. Else, check permissions (requires the user logging in)

Anything else?

jonathan-dh commented 13 years ago

Though commit f6603545d8635d262172 adds a "devel" permission to the admin gui, checking if user is logged in in admin from front-end on the server side is not trivial, since the session is not accessible.

It would be possible to check using ajax, but that's defeats the purpose of using this to determine whether or not to execute devel (thus increasing the load time significantly). No go.

To wrap it up, I'm going to assign this feature to v2.0. We'll see then what kind of feedback we've got and what's possible.