[ 'class' => AccessControl::className(), 'only' => ['login'], 'rules' => [ [ 'actions' => ['login', 'register'], 'allow' => true, 'roles' => ['?'], ], ], ], ]); } public function verbs() { return [ 'login' => ['post'], 'register' => ['post'], ]; } public function actionLogin() { $model = new LoginForm(); $model->load(Yii::$app->request->post()); if (!$model->login()) { return [ 'success' => false, 'errors' => $this->normalizeModelErrors($model->getErrors()), ]; } return [ 'success' => true, ]; } }