Magento Certified Solution Specialist — Question 2
Which three of the following conditions are used to protect an admin route via ACL? (Choose three)
Answer options
- A. You have defined an ACL in your module configuration
- B. At least one admin role must have permission for that route
- C. You have extended the controller from Mage_Adminhtml_Controller_Action
- D. You have defined a method _isAllowed which checks the permission
- E. The route name must start with admin
Correct answer: A, C, D
Explanation
The correct answers are A, C, and D because an ACL must be defined to manage access (A), the controller must extend Mage_Adminhtml_Controller_Action to function properly (C), and the _isAllowed method is essential for checking permissions (D). Option B is incorrect as it is not a requirement that at least one role must have permission, and option E is irrelevant to the ACL protection conditions.