blackteay/ApiAdmin
1
0
Fork 0
mirror of https://gitee.com/apiadmin/ApiAdmin.git synced 2025-04-06 03:58:00 +08:00
Code Issues Projects Releases Wiki Activity

added 实现权限认证

Browse Source
This commit is contained in:
zhaoxiang 2016-11-15 12:31:42 +08:00
parent dea3f66196
commit a2bb140d01
2 changed files with 44 additions and 39 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
application/admin/controller/Base.php
View File

@ -53,12 +53,12 @@ class Base extends Controller {
if( !in_array($this->url, $this->superUrl) ){
$menuInfo = Menu::where(['url' => $this->url])->find();
if( is_null($menuInfo) ){
$this->error( '目录:'.$this->url.'不存在!' );
$this->error( '目录:'.$this->url.'不存在!', '' );
}else{
$this->menuInfo = $menuInfo->toArray();
}
$this->checkLogin();
// $this->checkRule();
$this->checkRule();
}
}
@ -90,4 +90,11 @@ class Base extends Controller {
$this->redirect('User/login');
}
}
private function checkRule(){
$check = (new \Permission())->check($this->url, $this->uid);
if( !$check ){
$this->error('权限认证失败!', '');
}
}
}

72
extend/Permission.php
View File

@ -34,23 +34,18 @@ class Permission {
protected $_config = [
'AUTH_ON' => true, //认证开关
'AUTH_TYPE' => 0, //认证方式0为时时认证1为登录认证[Cache缓存]2为登录认证[SESSION缓存]。
'AUTH_GROUP' => 'AuthGroup', //用户组数据表名
'AUTH_GROUP_ACCESS' => 'AuthGroupAccess', //用户组明细表
'AUTH_RULE' => 'AuthRule', //权限规则表
'AUTH_USER' => 'User' //用户信息表
'AUTH_GROUP' => 'auth_group', //用户组数据表名
'AUTH_GROUP_ACCESS' => 'auth_group_access', //用户组明细表
'AUTH_RULE' => 'auth_rule', //权限规则表
'AUTH_USER' => 'user' //用户信息表
];
public function __construct() {
$options = [
'AUTH_ON' => config('AUTH_ON'),
'AUTH_TYPE' => config('AUTH_TYPE'),
'AUTH_GROUP' => config('AUTH_GROUP'),
'AUTH_GROUP_ACCESS' => config('AUTH_GROUP_ACCESS'),
'AUTH_RULE' => config('AUTH_RULE'),
'AUTH_USER' => config('AUTH_USER')
];
if ( $options ) {
$this->_config = array_merge($this->_config, $options);
foreach ( $this->_config as $key => $value ){
$confValue = config($key);
if( !is_null($confValue) ){
$this->_config[$key] = $confValue;
}
}
}
@ -91,7 +86,7 @@ class Permission {
$action = 0;
break;
}
$authList[$name] = isset($authList[$name])?$authList[$name]:0;
return $authList[$name] & $action;
}
@ -107,16 +102,22 @@ class Permission {
return $groups[$uid];
}
$userGroups = \think\Db::table($this->_config['AUTH_GROUP_ACCESS'])->where(['uid' => $uid])->select();
foreach( $userGroups as &$value ){
$groupInfo = \think\Db::table($this->_config['AUTH_GROUP'])->where(['id' => $value['groupId']])->find()->toArray();
if( $groupInfo['status'] != 1 ){
unset($value);
}else{
$value = $groupInfo;
if( !empty($userGroups) ){
$groups[$uid] = [];
foreach( $userGroups as $value ){
$groupInfo = \think\Db::table($this->_config['AUTH_GROUP'])->where(['id' => $value['group_id']])->find();
if( !is_null($groupInfo) ){
if( $groupInfo['status'] != 1 ){
continue;
}else{
$groups[$uid][] = $value['group_id'];
}
}
}
return $groups[$uid];
}else{
return [];
}
$groups[$uid]=$userGroups?$userGroups:[];
return $groups[$uid];
}
/**
@ -125,7 +126,6 @@ class Permission {
* @return array
*/
public function getAuthList( $uid ) {
static $_authList = [];
if (isset($_authList[$uid])) {
return $_authList[$uid];
@ -140,25 +140,23 @@ class Permission {
}
}
$groups = $this->getGroups($uid);
$ids = [];
foreach ($groups as $g) {
$ids = array_merge($ids, explode(',', trim($g['rules'], ',')));
}
$ids = array_unique($ids);
if ( empty($ids) ) {
if ( empty($groups) ) {
$_authList[$uid] = [];
return [];
}
$authList = [];
foreach ($ids as $IValue){
$tmp = explode(':',$IValue);
if( isset($authList[$tmp[0]]) ){
$authList[$tmp[0]] = $authList[1] | $authList[1];
}else{
$authList[$tmp[0]] = $authList[1];
foreach ($groups as $g) {
$groupRule = \think\Db::table($this->_config['AUTH_RULE'])->where(['group_id' => $g])->select();
if( !empty($groupRule) ){
foreach ( $groupRule as $groupValue ){
if( isset($authList[$groupValue['url']]) ){
$authList[$groupValue['url']] = $authList[$groupValue['url']] | $groupValue['auth'];
}else{
$authList[$groupValue['url']] = $groupValue['auth'];
}
}
}
}