/** * Authorize the current user. * * @param Resource\ResourceInterface|string $resource * @param string $privilege * @return bool */ public function __invoke($resource = null, $privilege = null) { return $this->acl->userIsAllowed($resource, $privilege); }
/** * Add rules for "global_admin" role. * * @param Acl $acl */ protected function addRulesForGlobalAdmin(Acl $acl) { $acl->allow('global_admin'); $acl->deny('global_admin', 'Omeka\\Entity\\User', ['change-role', 'activate-user', 'delete'], new IsSelfAssertion()); }