Laravel實現rbac許可權管理
阿新 • • 發佈:2018-12-24
介紹:根據不同的許可權,在選單欄顯示不同的功能,只對選單進行了限制,若對路由也進行限制,請自行完善
1、建表(使用者表、角色表、許可權表、使用者角色表、角色許可權表)
CREATE TABLE IF NOT EXISTS mr_role
(
id int(11) PRIMARY KEY AUTO_INCREMENT COMMENT '自增id',
name varchar(30) NOT NULL COMMENT '角色名'
)ENGINE=innodb DEFAULT CHARSET=utf8 COMMENT='角色表';
CREATE TABLE IF NOT EXISTS mr_privilege ( id int(11) PRIMARY KEY AUTO_INCREMENT COMMENT '自增id', name varchar(30) NOT NULL COMMENT '許可權名', route varchar(50) NOT NULL COMMENT '許可權所有的路由', description varchar(100) NOT NULL COMMENT '許可權的描述' )ENGINE=innodb DEFAULT CHARSET=utf8 COMMENT='許可權表';
CREATE TABLE IF NOT EXISTS mr_user_role
(
id int(11) PRIMARY KEY AUTO_INCREMENT COMMENT '自增id',
user_id int(11) NOT NULL COMMENT '使用者id',
role_id int(11) NOT NULL COMMENT '角色id'
)ENGINE=innodb DEFAULT CHARSET=utf8 COMMENT='使用者角色表';
CREATE TABLE IF NOT EXISTS mr_role_privilege ( id int(11) PRIMARY KEY AUTO_INCREMENT COMMENT '自增id', role_id int(11) NOT NULL COMMENT '角色id', privilege_id int(11) NOT NULL COMMENT '許可權id' )ENGINE=innodb DEFAULT CHARSET=utf8 COMMENT='角色許可權表';
2、在使用者模型和角色模型中實現多對多
class User extends Model { protected $primaryKey = 'id'; protected $table = 'user'; public $timestamps = false; public $guarded = []; public function roles() { return $this->belongsToMany('App\Model\Role', 'user_role', 'user_id', 'role_id')->withPivot('user_id', 'role_id'); } }
class Role extends Model
{
protected $table = 'role';
protected $primaryKey = 'id';
public $timestamps = false;
public $guarded = [];
public function privileges()
{
return $this->belongsToMany('App\Model\Privilege', 'role_privilege', 'role_id', 'privilege_id')->withPivot(['role_id', 'privilege_id']);
}
}
3、將選單視為公共區域,在app\Providers\AppServiceProvider.php裡寫
public function boot()
{
\View::composer('layout.slide', function($view) {
$roles_id = User::find(session('user')['id'])->roles->map(function ($role) {
return $role->id;
}); // 使用map,最終得到的結果$roles_id = [1, 2, ...]
$privileges = [];
foreach ($roles_id as $role) {
$privileges = array_merge($privileges, Role::find($role)->privileges->map(function ($privilege) {
return [$privilege->name, $privilege->route];
})->toArray());
} // 得到的結果,$prpvileges = [['index/..', '列表'], ['', '']]
$view->with('privileges', $privileges);
});
}
4、選單的實現(可以直接遍歷一個div,我這裡因為有不同的樣式,便用了判斷)
@foreach ($privileges as $privilege)
@if ($privilege[1] == 'key/index' && $privilege[0] == '鍵名列表')
<div class="slide__left__key" style="margin-top: 10px;"><a href="{{ url('key/index') }}"><span class="glyphicon glyphicon-th"></span> 鍵名列表</a></div>
@endif
@if ($privilege[1] == 'key/create' && $privilege[0] == '新增鍵名')
<div class="slide__left__key"><a href="{{ url('key/create') }}"><span class="glyphicon glyphicon-plus"></span> 新增鍵名</a></div>
@endif
@if ($privilege[1] == 'project/index' && $privilege[0] == '專案列表')
<div class="slide__left__key" style="margin-top: 20px;"><a href="{{ url('project/index') }}"><span class="glyphicon glyphicon-th-list"></span> 專案列表</a></div>
@endif
@if ($privilege[1] == 'project/create' && $privilege[0] == '新增專案')
<div class="slide__left__key"><a href="{{ url('project/create') }}"><span class="glyphicon glyphicon-edit"></span> 新增專案</a></div>
@endif
@if ($privilege[1] == 'user/index' && $privilege[0] == '使用者列表')
<div class="slide__left__key" style="margin-top: 20px;"><a href="{{ url('user/index') }}"><span class="glyphicon glyphicon-th-large"></span> 使用者列表</a></div>
@endif
@if ($privilege[1] == 'user/create' && $privilege[0] == '新增使用者')
<div class="slide__left__key"><a href="{{ url('user/create') }}"><span class="glyphicon glyphicon-plus-sign"></span> 新增使用者</a></div>
@endif
@endforeach