/** * Specifies the access control rules. * This method is used by the 'accessControl' filter. * @return array access control rules */ public function accessRules() { return array( array('allow', // allow admin user to perform 'admin' and 'delete' actions 'actions'=>array('admin','delete','create','update','view'), 'users'=>UsersModule::getAdmins(), ), array('deny', // deny all users 'users'=>array('*'), ), ); }