Yii RBAC

阿新 • • 發佈：2019-01-16

res setattr pro group add ray mtab reat edi

\common\config\main.php或者\backend\config\main.php中加

‘authManager‘ => [
            ‘class‘ => ‘yii\rbac\DbManager‘,
            ‘itemTable‘ => ‘auth_item‘,
            ‘assignmentTable‘ => ‘auth_assignment‘,
            ‘itemChildTable‘ => ‘auth_item_child‘,
        ],

yii中自帶的四張表：

vendor/yiisoft/yii2/rbac/migrations/schma-mysql.sql 復制裏面的內容在mysql中運行

還要自己加一個user表：

DROP TABLE IF EXISTS `user`;
CREATE TABLE `user` (
  `id` int(11) NOT NULL AUTO_INCREMENT,
  `username` varchar(255) NOT NULL,
  `auth_key` varchar(32) NOT NULL,
  `password_hash` varchar(255) NOT NULL,
  `password_reset_token` varchar(255) DEFAULT NULL,
  `email` varchar(255) NOT NULL 
,
  `role` smallint(6) NOT NULL DEFAULT ‘10‘,
  `status` smallint(6) NOT NULL DEFAULT ‘10‘,
  `created_at` int(11) NOT NULL,
  `updated_at` int(11) NOT NULL,
  PRIMARY KEY (`id`)
) ENGINE=InnoDB AUTO_INCREMENT=3 DEFAULT CHARSET=utf8;

添加Rbac控制器

<?php
namespace backend\controllers;

use backend\models\Rbac;
 
use yii\web\Controller;
use yii;
use \yii\db\Query;
use \yii\data\Pagination; 
use app\models\AuthItem;
use app\models\Auth;

class RbacController  extends Controller
{

    public function init(){
        $this->enableCsrfValidation = false;
        $session=\yii::$app->session;
        $session->open();
    }


    //在控制器中寫一個actionpower 跳到我們添加權限的表單頁面
    public function actionIndex(){
        $model = new Rbac();
        return $this->render(‘index‘,[‘model‘=>$model]);
    }
    //然後在控制器裏把權限入庫
    public function actionPower()
    {
        $item = \Yii::$app->request->post(‘Rbac‘)[‘power‘];
        $auth = Yii::$app->authManager;
        $createPost = $auth->createPermission($item);
        $createPost->description = ‘創建了 ‘ . $item . ‘ 權限‘;
        $auth->add($createPost);
        return $this->redirect(‘?r=rbac/role‘);
    }
    //創建一個就角色的表單
    public function actionRole(){
        $model = new Rbac();
        return $this->render(‘role‘,[‘model‘=>$model]);
    }
    //添加角色入庫
    public function actionAddrole(){
        $item = \Yii::$app->request->post(‘Rbac‘)[‘role‘];
        $auth = Yii::$app->authManager;
        $role = $auth->createRole($item);
        $role->description = ‘創建了 ‘ . $item . ‘ 角色‘;
        $auth->add($role);

        return $this->redirect(‘?r=rbac/rp‘);
    }
    //然後給角色分配權限

    public function actionRp(){
        $model = new Rbac();
        $role =  AuthItem::find()->where(‘type=1‘)->asArray()->all();
        foreach($role as $value){
            $roles[$value[‘name‘]] = $value[‘name‘];
        }
        $power=  AuthItem::find()->where(‘type=2‘)->asArray()->all();
        foreach($power as $value){
            $powers[$value[‘name‘]] = $value[‘name‘];
        }

        return $this->render(‘rp‘,[‘model‘=>$model,‘role‘=>$roles,‘power‘=>$powers]);
    }
    //然後入庫

    public function actionEmpowerment(){
        $auth = Yii::$app->authManager;
        $data = \Yii::$app->request->post(‘Rbac‘);
        $role = $data[‘role‘];
        $power = $data[‘power‘];

        foreach($role as $value){
            foreach($power as $v){
                $parent = $auth->createRole($value);

                $child = $auth->createPermission($v);
                //var_dump($child);
                $auth->addChild($parent, $child);
            }
        }
        return $this->redirect(‘?r=rbac/fenpei‘);
    }
    //然後給用戶分配角色

    public function actionFenpei(){
            $models = new Rbac();
            $sql = ‘select name from auth_item where type=1‘;
            $role =\Yii::$app->db->createCommand($sql)->queryAll();
            foreach($role as $v){
                $roles[$v[‘name‘]] = $v[‘name‘];
            }
            $sql1 = ‘select id,username from user‘;
          //  print_r($sql1);die;

            $power =\Yii::$app->db->createCommand($sql1)->queryAll();

            foreach($power as $vv){
                $user[$vv[‘id‘]] = $vv[‘username‘];
            }
            return $this->render(‘fenpei‘,[‘role‘=>$roles,‘user‘=>$user,‘model‘=>$models]);


    }
    //將給用戶分配的角色入庫
    public function actionEmpower()
    {
        $items= Yii::$app->request->post();

        $role = $items[‘Rbac‘][‘role‘];
        foreach($items[‘Rbac‘][‘role‘] as $value ){
            $auth = Yii::$app->authManager;

            $parent = $auth->createRole($role);
            $child = $auth->createPermission($value);
            $auth->addChild($parent, $child);
        }
        return $this->redirect(‘fenpei‘);
    }


    public function actionUr(){
        $auth = Yii::$app->authManager;
        $data = \Yii::$app->request->post(‘Rbac‘);
        //print_r($data);die;
        $role = $data[‘role‘];
        $power = $data[‘user‘];

        foreach($role as $key=>$val) {
               foreach ($power as $v) {
                $reader = $auth->createRole($val);
                $auth->assign($reader, $v);
            }
        }
    }


        //寫到你其他的控制器就可以了
        //你給登陸是把用戶id存進session就行了
        //  $session = yii::$app->session;
        //    $session->set(‘id‘,$db[0][‘id‘]);
         //   $session->set(‘username‘,$db[0][‘username‘]);
   /* public function beforeAction($action)
    {
        $sql="select user_id,child from auth_assignment join auth_item_child on auth_assignment.item_name=auth_item_child.parent where user_id=‘".$_SESSION[‘id‘]."‘";
        $role =\Yii::$app->db->createCommand($sql)->queryAll();
        $arr=array_column($role,‘child‘);
        $action=$_REQUEST[‘r‘];
        if(in_array($action, $arr)){
            return true;
        }else{
            throw new \yii\web\UnauthorizedHttpException(‘對不起，您現在還沒獲此操作的權限‘);
        }
    }*/
}

添加model:

Auth.php

<?php
namespace app\models;

class Auth extends \yii\base\Model
{
    
    public static function tableName()
    {
        return ‘auth_item‘;
    }

    public function rules()
    {
        return [

        ];
    }




    public function attributeLabels()
    {
        return [
            ‘name‘=>‘名稱‘,
            ‘type‘=>‘分類‘,
        ];
    }

        //獲取角色
     public  function  Rule_list(){
          $sql = ‘select * from  `auth_item` where `type`=1 ‘;
         return \yii::$app->db->createCommand($sql)->queryAll();//執行
     }

       // 給管理員賦角色
    public function  Add_assign($item_name,$user_id){
         $time = time();
          $sql = "insert into auth_assignment (`item_name`,`user_id`,`created_at`) VALUE (‘$item_name‘,‘$user_id‘,$time)";
         return \yii::$app->db->createCommand($sql)->query();//執行
       }



     //添加角色
      public function  Add_rule($data){
          $this->setAttributes($data);
          return $this->insert();
      }

      //獲取權限
     public function Items_list(){
         $sql = ‘select * from  `auth_item` where `type`=2 ‘;
         return \yii::$app->db->createCommand($sql)->queryAll();//執行
     }

    // 給角色分配權限
    public  function  Item_child($rule,$items){
         $sql = "insert into `auth_item_child` (`parent`,`child`) VALUE (‘$rule‘,‘$items‘)";
        return \yii::$app->db->createCommand($sql)->query();//執行
    }

}

AuthItem.php

<?php

namespace app\models;

use Yii;

/**
 * This is the model class for table "auth_item".
 *
 * @property string $name
 * @property integer $type
 * @property string $description
 * @property string $rule_name
 * @property resource $data
 * @property integer $created_at
 * @property integer $updated_at
 *
 * @property AuthAssignment[] $authAssignments
 * @property AuthRule $ruleName
 * @property AuthItemChild[] $authItemChildren
 * @property AuthItemChild[] $authItemChildren0
 * @property AuthItem[] $children
 * @property AuthItem[] $parents
 */
class AuthItem extends \yii\db\ActiveRecord
{
    /**
     * @inheritdoc
     */
    public static function tableName()
    {
        return ‘auth_item‘;
    }

    /**
     * @inheritdoc
     */
    public function rules()
    {
        return [
            [[‘name‘, ‘type‘], ‘required‘],
            [[‘type‘, ‘created_at‘, ‘updated_at‘], ‘integer‘],
            [[‘description‘, ‘data‘], ‘string‘],
            [[‘name‘, ‘rule_name‘], ‘string‘, ‘max‘ => 64],
            [[‘rule_name‘], ‘exist‘, ‘skipOnError‘ => true, ‘targetClass‘ => AuthRule::className(), ‘targetAttribute‘ => [‘rule_name‘ => ‘name‘]],
        ];
    }

    /**
     * @inheritdoc
     */
    public function attributeLabels()
    {
        return [
            ‘name‘ => ‘Name‘,
            ‘type‘ => ‘Type‘,
            ‘description‘ => ‘Description‘,
            ‘rule_name‘ => ‘Rule Name‘,
            ‘data‘ => ‘Data‘,
            ‘created_at‘ => ‘Created At‘,
            ‘updated_at‘ => ‘Updated At‘,
        ];
    }

    /**
     * @return \yii\db\ActiveQuery
     */
    public function getAuthAssignments()
    {
        return $this->hasMany(AuthAssignment::className(), [‘item_name‘ => ‘name‘]);
    }

    /**
     * @return \yii\db\ActiveQuery
     */
    public function getRuleName()
    {
        return $this->hasOne(AuthRule::className(), [‘name‘ => ‘rule_name‘]);
    }

    /**
     * @return \yii\db\ActiveQuery
     */
    public function getAuthItemChildren()
    {
        return $this->hasMany(AuthItemChild::className(), [‘parent‘ => ‘name‘]);
    }

    /**
     * @return \yii\db\ActiveQuery
     */
    public function getAuthItemChildren0()
    {
        return $this->hasMany(AuthItemChild::className(), [‘child‘ => ‘name‘]);
    }

    /**
     * @return \yii\db\ActiveQuery
     */
    public function getChildren()
    {
        return $this->hasMany(AuthItem::className(), [‘name‘ => ‘child‘])->viaTable(‘auth_item_child‘, [‘parent‘ => ‘name‘]);
    }

    /**
     * @return \yii\db\ActiveQuery
     */
    public function getParents()
    {
        return $this->hasMany(AuthItem::className(), [‘name‘ => ‘parent‘])->viaTable(‘auth_item_child‘, [‘child‘ => ‘name‘]);
    }
}

Rbac.php

<?php
namespace backend\models;
class Rbac extends \yii\base\Model
{
    public $power;
    public $role;
    public $user;

    public function rules()
    {
        return [
            // 在這裏定義驗證規則
        ];
    }

    public function attributeLabels()
    {
        return [
            ‘user‘=>‘用戶‘,
           ‘power‘=>‘權限‘,
            ‘role‘=>‘角色‘,
        ];
    }

}

User.php

<?php

namespace app\models;

use Yii;

/**
 * This is the model class for table "user".
 *
 * @property integer $id
 * @property string $username
 * @property string $auth_key
 * @property string $password_hash
 * @property string $password_reset_token
 * @property string $email
 * @property integer $role
 * @property integer $status
 * @property integer $created_at
 * @property integer $updated_at
 */
class User extends \yii\db\ActiveRecord
{
    /**
     * @inheritdoc
     */
    public static function tableName()
    {
        return ‘user‘;
    }

    /**
     * @inheritdoc
     */
    public function rules()
    {
        return [
            [[‘username‘, ‘auth_key‘, ‘password_hash‘, ‘email‘, ‘created_at‘, ‘updated_at‘], ‘required‘],
            [[‘role‘, ‘status‘, ‘created_at‘, ‘updated_at‘], ‘integer‘],
            [[‘username‘, ‘password_hash‘, ‘password_reset_token‘, ‘email‘], ‘string‘, ‘max‘ => 255],
            [[‘auth_key‘], ‘string‘, ‘max‘ => 32],
        ];
    }

    /**
     * @inheritdoc
     */
    public function attributeLabels()
    {
        return [
            ‘id‘ => ‘ID‘,
            ‘username‘ => ‘Username‘,
            ‘auth_key‘ => ‘Auth Key‘,
            ‘password_hash‘ => ‘Password Hash‘,
            ‘password_reset_token‘ => ‘Password Reset Token‘,
            ‘email‘ => ‘Email‘,
            ‘role‘ => ‘Role‘,
            ‘status‘ => ‘Status‘,
            ‘created_at‘ => ‘Created At‘,
            ‘updated_at‘ => ‘Updated At‘,
        ];
    }
}

添加view

rbac/index.php

<?php
/**
 * Created by PhpStorm.
 * User: jinlei
 * Date: 2017/2/16
 * Time: 10:06
 */

use yii\helpers\Html;
use yii\widgets\ActiveForm;

$form = ActiveForm::begin([
    ‘id‘ => ‘login-form‘,
    ‘options‘ => [‘class‘ => ‘form-horizontal‘],
    ‘action‘=>‘?r=rbac/power‘,
    ‘method‘=>‘post‘,
]) ?>
    <?= $form->field($model, ‘power‘) ?>

    <div class="form-group">
        <div class="col-lg-offset-1 col-lg-11">
            <?= Html::submitButton(‘添加權限‘, [‘class‘ => ‘btn btn-primary‘]) ?>
        </div>
    </div>
<?php ActiveForm::end() ?>

rbac/fenpei

<?php
/**
 * Created by PhpStorm.
 * User: jinlei
 * Date: 2017/2/16
 * Time: 14:05
 */

use yii\helpers\Html;
use yii\widgets\ActiveForm;

$form = ActiveForm::begin([
    ‘id‘ => ‘login-form‘,
    ‘options‘ => [‘class‘ => ‘form-horizontal‘],
    ‘action‘=>‘?r=rbac/ur‘,
    ‘method‘=>‘post‘,
]) ?>
<?= $form->field($model, ‘user‘)->checkboxList($user) ?>
<?= $form->field($model, ‘role‘)->checkboxList($role) ?>


    <div class="form-group">
        <div class="col-lg-offset-1 col-lg-11">
            <?= Html::submitButton(‘提交‘, [‘class‘ => ‘btn btn-primary‘]) ?>
        </div>
    </div>
<?php ActiveForm::end() ?>

rbac/role.php

<?php
/**
 * Created by PhpStorm.
 * User: jinlei
 * Date: 2017/2/16
 * Time: 13:52
 */

use yii\helpers\Html;
use yii\widgets\ActiveForm;

$form = ActiveForm::begin([
    ‘id‘ => ‘login-form‘,
    ‘options‘ => [‘class‘ => ‘form-horizontal‘],
    ‘action‘=>‘?r=rbac/addrole‘,
    ‘method‘=>‘post‘,
]) ?>
<?= $form->field($model, ‘role‘) ?>

    <div class="form-group">
        <div class="col-lg-offset-1 col-lg-11">
            <?= Html::submitButton(‘添加角色‘, [‘class‘ => ‘btn btn-primary‘]) ?>
        </div>
    </div>
<?php ActiveForm::end() ?>

rbac/rp.php

<?php
/**
 * Created by PhpStorm.
 * User: jinlei
 * Date: 2017/2/16
 * Time: 14:05
 */

use yii\helpers\Html;
use yii\widgets\ActiveForm;

$form = ActiveForm::begin([
    ‘id‘ => ‘login-form‘,
    ‘options‘ => [‘class‘ => ‘form-horizontal‘],
    ‘action‘=>‘?r=rbac/empowerment‘,
    ‘method‘=>‘post‘,
]) ?>
<?= $form->field($model, ‘role‘)->checkboxList($role) ?>
<?= $form->field($model, ‘power‘)->checkboxList($power) ?>

    <div class="form-group">


        <div class="col-lg-offset-1 col-lg-11">
            <?= Html::submitButton(‘提交‘, [‘class‘ => ‘btn btn-primary‘]) ?>
        </div>
    </div>
<?php ActiveForm::end() ?>

Yii RBAC

yii rbac管理

read pac phpstorm 好的 span from 繼續 action extend 以下是Controller代碼 <?php /** * Created by PhpStorm. * User: zhoukang * Date: 2017/6/1

Yii RBAC

res setattr pro group add ray mtab reat edi \common\config\main.php或者\backend\config\main.php中加 ‘authManager‘ => [ ‘class

Yii 2.0 搭建基於RBAC許可權的後臺管理系統（二）

三、RBAC整合AdminLTE後臺主題對選單進行控制1. 配置APACHE虛擬主機在 <XAMPP安裝路徑>\apache\conf\extra\httpd-vhosts.conf檔案末尾追加<VirtualHost *:80> Serve

Yii 2.0 搭建基於RBAC許可權的後臺管理系統（一）

自己學習Yii 2.0搭建RBAC的一些筆記整理了一下發來和大家分享下，大神勿噴。一、安裝PHP依賴管理工具 1. 配置PHP證書確保可以使用php訪問http下載 ca-bundle.crt和cacert.pem將這兩個檔案放在<XAMPP的安裝路徑>/<

Yii-Casbin：在 Yii 裡使用 Casbin，支援 ACL、RBAC多種模型的許可權管理框架

PHP-Casbin 是一個用 PHP 語言打造的輕量級開源訪問控制框架（ https://github.com/php-casbin... )，目前在 GitHub 開源。PHP-Casbin 採用了元模型的設計思想，支援多種經典的訪問控制方案，如基於角色的訪問控

YII框架分析筆記2：組件和事件行為管理

reac 設置有變相關 article class ces col cal Yii是一個基於組件、用於開發大型 Web 應用的高性能 PHP 框架。CComponent幾乎是所有類的基類，它控制著組件與事件的管理，其方法與屬性如下，私有變量$_e數據存放事件(evnet

yii開發第一部分之執行流程

soap active def 情況 bug 控制 actions 時也哈希一目錄文件 |-framework 框架核心庫 |--base 底層類庫文件夾，包含CApplication(應用類，負責全局的用戶請求處理，它管理的應用

php yii 學習筆記

code https lease nbsp utf8 down title 應用 nload yii 歸檔安裝 1,下載 yii Yii2的高級應用程序模板 2,解壓模板到目錄,進入控制臺進入目錄運行 php init 安裝YII 3,進入 http://loc

【Yii系列】處理請求

入口實現官方 cookie this sender att 只需要 ota 緣起這一章是Yii系列的第三章，前兩章給大夥講解了Yii2.0的安裝與Yii2.0的基本框架及基礎概念，傳送門：【Yii2.0的安裝與調試】：http://www.cnblogs.com/r

YII數據流程淺析

art model 原生 ews .net area 一個控制器 href MVC就不解釋，直接上代碼分析數據流程：數據庫圖：模型部分介紹： <?php /* * 前兩個方法必須寫 * 繼承自CAct

YII用戶註冊和用戶登錄（三）之模型中規則制定和分析

模型 als del 郵箱收信 com unique mark div 3 模型中規則制定和分析 YII模型主要分為兩類，一個數據模型，處理和數據庫相關的增刪改查。繼承CActiveRecord。還有一個是表單模型，繼承CFormModel。不與數據庫進行交互。操作

基於thinkphp的RBAC權限控制

名稱 bsp 基於也有沒有權限 path 我們 ids images RBAC Role-Based Access Control 權限控制在後臺管理中是十分常見的，它的模型大體上是下面這張圖的形式我用的字段和上面不一樣，圖只是個示例一個簡易的權限控制模型只需要

yii框架的session

name nbsp user pre log open() pan clas color $session = Yii::$app->session; $session->open(); $se

yii advanced的安裝

bsp reat 程序包目錄 compose 通過 -a 開發目錄項這裏使用composer進行安裝(請確保你已經安裝過composer),我們打開yii中文網站,官網說明如下　　通過 Composer 安裝　　這是安裝Yii2.0的首選方法。如

RBAC權限設計實例

log nbsp blog video http ins mooc 權限 lin http://blog.csdn.net/painsonline/article/details/7183629 http://www.noahweb.net/mail/2/Project.

Yii創建一個module+restful提示

mod logs blog 分享接下來親測 9.png uic 手冊如上圖所示，首先我們需要創建好module，首先要知道自己想要創建的module是啥然後在根目錄的config文件裏面打開配置文件更改如下內容接下來就是訪問的路由了正

yii2 rbac權限控制之菜單menu詳細教程

cheng gda zhong ssl print ads xiv sheng bce %E5%90%91%E9%87%8F%E8%87%AA%E5%9B%9E%E5%BD%92%E6%A8%A1%E5%9E%8BVS%E9%A3%8E%E9%99%A9%E4%BB%B7%

yii自己定義CLinkPager分頁

widget col creat var 自己首頁 turn calculate none 在components中自己定義LinkPager。並繼承CLinkPager 代碼例如以下： <?php /** * CLinkPager class file

Azure RBAC（Roles Based Access Control）正式上線了

如果 ext 授權開發 fonts style clas 應用程序 tex 期盼已久的Azure RBAC（Roles Based Access Control）正式上線了。在非常多情況下。客戶須要對各種類型的用戶加以區分，以便做出適當的授權決定。基於角色的訪問控制

yii2.0中yiiaseApplication的一些屬性

one all ron 名稱 def 運行第三方庫 yii2 臨時文件必要屬性 yii\base\Application::id 區分其他應用的唯一標識ID yii\base\Application::basePath 該應用的根目錄其他屬性 yii\ba

Yii RBAC

相關推薦