security¶

security ¶

Type: array
Path: $GLOBALS['TCA'][$table]['ctrl']
Scope: Display

Array of sub-properties. This is used, for example, in the Core for the sys_file table:

EXT:core/Configuration/TCA/sys_file.php

return [
    'ctrl' => [
        // ...
        'security' => [
            'ignoreWebMountRestriction' => true,
            'ignoreRootLevelRestriction' => true,
        ],
        // ...
    ],
];

And ignorePageTypeRestriction is used for the sys_note table:

EXT:sys_note/Configuration/TCA/sys_note.php

return [
    'ctrl' => [
        // ...
        'security' => [
            'ignorePageTypeRestriction' => true,
        ],
        // ...
    ],
];

You can also use it in an override file:

EXT:my_extension/Configuration/TCA/Overrides/my_table.php

$GLOBALS['TCA']['my_table']['ctrl']['security']['ignoreWebMountRestriction'] = true;
$GLOBALS['TCA']['my_table']['ctrl']['security']['ignoreRootLevelRestriction'] = true;
$GLOBALS['TCA']['my_table']['ctrl']['security']['ignorePageTypeRestriction'] = true;

ignoreWebMountRestriction: Allows users to access records that are not in their defined web-mount, thus bypassing this restriction.
ignoreRootLevelRestriction: Allows non-admin users to access records that are on the root-level (page ID 0), thus bypassing this usual restriction.
ignorePageTypeRestriction: New in version 12.0

This is a replacement for the previous PHP API call ExtensionManagementUtility::allowTableOnStandardPages() which was found in ext_tables.php files.

Allows to use a TCA table on any kind of page doktype unless a doktype has a restriction set in the PageDoktypeRegistry API class.