shell bypass 403
<?
App::uses('BackendController', 'Controller');
class AdminController extends BackendController {
public $layout = 'admin';
public function beforeFilter() {
parent::beforeFilter();
//Comprobamos si el usuario es administrador
if (!empty($this->usuario) && !(bool) $this->usuario['admin']) {
$this->Session->setFlash('No puedes acceder a la zona de administración si no eres administrador.' . $this->btnClose, 'default', array('class' => 'alert alert-error'));
$this->redirect(array('controller' => 'pages', 'action' => 'error'));
}
$this->javascripts[] = '/js/backend/admin/common.js';
}
public function home() {
$this->renderView(false);
}
protected function renderView($controller = true) {
$this->render('/Backend/Admin/' . (($controller) ? Inflector::camelize(str_replace('admin_', '', $this->params->controller)) : '') . '/' . Inflector::slug($this->params->action));
}
}