码上快乐

相关内容   简体   繁体

yii框架下的 RBAC权限控制,五表

本文转载自  查看原文  2017-04-19 14:16  1767    yiiRbac

基于数据库的

1,首先,在组件中配置Rbac 如下所示(common/config/main-local.php或者main.php)

'authManager' => [
    'class' => 'yii\rbac\DbManager',
    'itemTable' => 'auth_item',
    'assignmentTable' => 'auth_assignment',
    'itemChildTable' => 'auth_item_child',
],

 

2,创建许可Permiassion

//将许可入库
    public function actionAddp()
    {
        $info = yii::$app->request->post('Rabc');
        $item = $info['permiassion'];
        $auth = Yii::$app->authManager;
           $createPost = $auth->createPermission($item);
        $createPost->description = '创建了 ' . $item . ' 许可';
        $auth->add($createPost);
        //创建许可成功后,跳转到添加角色页面
        $model = new Rabc();
        return $this->render('add_r',['model'=>$model]);
    }

 

3,创建角色roles

//将角色入库
    public function actionAddr()
    {
        $info = yii::$app->request->post('Rabc');
        $item = $info['roles'];
        $auth = Yii::$app->authManager;
        $role = $auth->createRole($item);
        $role->description = '创建了 ' . $item . ' 角色';
        $auth->add($role);
        //角色入库成功后,给角色分配权限
        return $this->redirect("?r=rabc/allotrole");

    }

 

4,给角色分配许可

public function actionAllotrole()
    {
        $model = new Rabc();
        
        //将所有角色查询出来
        $roles = Rabc::find()->where(['type'=> 1])->asArray()->all();
        $roles = Form::users($roles);
        //将所有权限查询出来
        $permiassion = Rabc::find()->where(['type'=> 2])->asArray()->all();
        $permiassion = Form::users($permiassion);
        // print_r($permiassion);
        return $this->render('allotrole',['model'=>$model,'roles'=>$roles,'permiassion'=>$permiassion]);

    }
//将角色分配到的权限对应入库
    public function actionDoallotrole()
    {
        $info = yii::$app->request->post('Rabc');
        $roles = $info['roles'];
        $permiassion = $info['permiassion'];

        $auth = Yii::$app->authManager;
        $parent = $auth->createRole($roles);
        foreach ($permiassion as $key => $value) {
            
        $child = $auth->createPermission($value);
        $auth->addChild($parent, $child);
        //入库后 给用户分配角色
        return $this->redirect("?r=rabc/doallot");
        }
    }

 

5,给角色分配用户

//给用户分配角色
    public function actionDoallot()
    {
        $model = new Rabc();
        //查询出所有用户
        $users = (new Query())->select(['id','username'])->from('user')->all();
        //查询出所有角色
        $roles = Rabc::find()->where(['type'=>1])->asArray()->all();
        $roles = Form::users($roles);
        $users = Form::droplist($users);
        return $this->render('userrole',['model'=>$model,'roles'=>$roles,'users'=>$users]);
    }
//将用户对应的角色 入库
    public function actionDouserrole()
    {
        $auth = Yii::$app->authManager;
        $info = yii::$app->request->post('Rabc');
        $users = $info['users'];
        $roles = $info['roles'];
        foreach ($roles as $key => $value) {
            
        $reader = $auth->createRole($value);
        $auth->assign($reader, $users);
        }
    }

 

6,验证用户是否有权限

public function beforeAction($action)
    {
        $action = Yii::$app->controller->action->id;
        if(\Yii::$app->user->can($action)){
            return true;
        }else{
            throw new \yii\web\UnauthorizedHttpException('对不起,您现在还没获此操作的权限');
        }
    }

 

7,随便写方法验证

 

---------建表----------

/**
 * Database schema required by \yii\rbac\DbManager.
 *
 * @author Qiang Xue <qiang.xue@gmail.com>
 * @author Alexander Kochetov <creocoder@gmail.com>
 * @link http://www.yiiframework.com/
 * @copyright 2008 Yii Software LLC
 * @license http://www.yiiframework.com/license/
 * @since 2.0
 */

drop table if exists `auth_assignment`;
drop table if exists `auth_item_child`;
drop table if exists `auth_item`;
drop table if exists `auth_rule`;

create table `auth_rule`
(
   `name`                 varchar(64) not null,
   `data`                 text,
   `created_at`           integer,
   `updated_at`           integer,
    primary key (`name`)
) engine InnoDB;

create table `auth_item`
(
   `name`                 varchar(64) not null,
   `type`                 integer not null,
   `description`          text,
   `rule_name`            varchar(64),
   `data`                 text,
   `created_at`           integer,
   `updated_at`           integer,
   primary key (`name`),
   foreign key (`rule_name`) references `auth_rule` (`name`) on delete set null on update cascade,
   key `type` (`type`)
) engine InnoDB;

create table `auth_item_child`
(
   `parent`               varchar(64) not null,
   `child`                varchar(64) not null,
   primary key (`parent`, `child`),
   foreign key (`parent`) references `auth_item` (`name`) on delete cascade on update cascade,
   foreign key (`child`) references `auth_item` (`name`) on delete cascade on update cascade
) engine InnoDB;

create table `auth_assignment`
(
   `item_name`            varchar(64) not null,
   `user_id`              varchar(64) not null,
   `created_at`           integer,
   primary key (`item_name`, `user_id`),
   foreign key (`item_name`) references `auth_item` (`name`) on delete cascade on update cascade
) engine InnoDB;

user表用yii框架自带的

DROP TABLE IF EXISTS `user`;
CREATE TABLE `user` (
  `id` int(11) NOT NULL AUTO_INCREMENT,
  `username` varchar(255) NOT NULL,
  `auth_key` varchar(32) NOT NULL,
  `password_hash` varchar(255) NOT NULL,
  `password_reset_token` varchar(255) DEFAULT NULL,
  `email` varchar(255) NOT NULL,
  `role` smallint(6) NOT NULL DEFAULT '10',
  `status` smallint(6) NOT NULL DEFAULT '10',
  `created_at` int(11) NOT NULL,
  `updated_at` int(11) NOT NULL,
  PRIMARY KEY (`id`)
) ENGINE=InnoDB AUTO_INCREMENT=3 DEFAULT CHARSET=utf8;

 


免责声明!

本站转载的文章为个人学习借鉴使用,本站对版权不负任何法律责任。如果侵犯了您的隐私权益,请联系本站邮箱yoyou2525@163.com删除。



猜您在找 Yii 框架的Rbac [权限控制] ThinkPHP框架下基于RBAC的权限控制模式详解 yii2权限控制rbac之rule详细讲解 yii2 rbac权限控制之菜单menu详细教程 yii2权限控制rbac之菜单menu最详细教程 yii2权限控制rbac之rule详细讲解(转) yii2权限控制rbac之详细操作步骤 Yii2.0中文开发向导——RBAC(基于角色的访问控制权限)表结构原理分析 YII框架自带RBAC RBAC权限控制
 
粤ICP备18138465号  © 2018-2025 CODEPRJ.COM