-
- $sessionStorage = Zend_Auth::getInstance()->getStorage();
- if ($sessionStorage->isEmpty()) {
- throw new Syj_Exception_Forbidden();
- }
- $sessionData = $sessionStorage->read();
-
- $user = new Syj_Model_User();
- $userMapper = new Syj_Model_UserMapper();
- if (!$userMapper->find($sessionData['user'], $user)) {
- // we could also throw a forbidden exception, but client session
- // should not contain reference to a non existent user. So, it's considered a bug.
- throw new Syj_Exception_Forbidden();
- }
-