/** * isAuthorized method * Handles the user Authorization inside the controller. * @param array $user Authorization component's user * @return bool */ public function isAuthorized($user) { if (isset($this->request->params['pass'][0])) { return $this->request->params['pass'][0] == $user['id']; } // Default deny parent::isAuthorized($user); }