php教程

超轻量级php框架startmvc

Laravel框架实现的rbac权限管理操作示例

更新时间:2020-04-01 21:39:31 作者:startmvc
本文实例讲述了Laravel框架实现的rbac权限管理操作。分享给大家供大家参考,具体如下:介

本文实例讲述了Laravel框架实现的rbac权限管理操作。分享给大家供大家参考,具体如下:

介绍:根据不同的权限,在菜单栏显示不同的功能,只对菜单进行了限制,若对路由也进行限制,请自行完善

1、建表(用户表、角色表、权限表、用户角色表、角色权限表)


CREATE TABLE IF NOT EXISTS mr_role
(
id int(11) PRIMARY KEY AUTO_INCREMENT COMMENT '自增id',
name varchar(30) NOT NULL COMMENT '角色名'
)ENGINE=innodb DEFAULT CHARSET=utf8 COMMENT='角色表';
CREATE TABLE IF NOT EXISTS mr_privilege
(
id int(11) PRIMARY KEY AUTO_INCREMENT COMMENT '自增id',
name varchar(30) NOT NULL COMMENT '权限名',
route varchar(50) NOT NULL COMMENT '权限所有的路由',
description varchar(100) NOT NULL COMMENT '权限的描述'
)ENGINE=innodb DEFAULT CHARSET=utf8 COMMENT='权限表';
CREATE TABLE IF NOT EXISTS mr_user_role
(
id int(11) PRIMARY KEY AUTO_INCREMENT COMMENT '自增id',
user_id int(11) NOT NULL COMMENT '用户id',
role_id int(11) NOT NULL COMMENT '角色id'
)ENGINE=innodb DEFAULT CHARSET=utf8 COMMENT='用户角色表';
CREATE TABLE IF NOT EXISTS mr_role_privilege
(
id int(11) PRIMARY KEY AUTO_INCREMENT COMMENT '自增id',
role_id int(11) NOT NULL COMMENT '角色id',
privilege_id int(11) NOT NULL COMMENT '权限id'
)ENGINE=innodb DEFAULT CHARSET=utf8 COMMENT='角色权限表';

2、在用户模型和角色模型中实现多对多


class User extends Model
{
 protected $primaryKey = 'id';
 protected $table = 'user';
 public $timestamps = false;
 public $guarded = [];
 public function roles()
 {
 return $this->belongsToMany('App\Model\Role', 'user_role', 'user_id', 'role_id')->withPivot('user_id', 'role_id');
 }
}
class Role extends Model
{
 protected $table = 'role';
 protected $primaryKey = 'id';
 public $timestamps = false;
 public $guarded = [];
 public function privileges()
 {
 return $this->belongsToMany('App\Model\Privilege', 'role_privilege', 'role_id', 'privilege_id')->withPivot(['role_id', 'privilege_id']);
 }
}

3、将菜单视为公共区域,在app\Providers\AppServiceProvider.php里写


public function boot()
{
 \View::composer('layout.slide', function($view) {
 $roles_id = User::find(session('user')['id'])->roles->map(function ($role) {
 return $role->id;
 }); // 使用map,最终得到的结果$roles_id = [1, 2, ...]
 $privileges = [];
 foreach ($roles_id as $role) {
 $privileges = array_merge($privileges, Role::find($role)->privileges->map(function ($privilege) {
 return [$privilege->name, $privilege->route];
 })->toArray());
 } // 得到的结果,$prpvileges = [['index/..', '列表'], ['', '']]
 $view->with('privileges', $privileges);
 });
}

4、菜单的实现(可以直接遍历一个div,我这里因为有不同的样式,便用了判断)


@foreach ($privileges as $privilege)
 @if ($privilege[1] == 'key/index' && $privilege[0] == '键名列表')
 <div class="slide__left__key" style="margin-top: 10px;"><a href="{{ url('key/index') }}" rel="external nofollow" ><span class="glyphicon glyphicon-th"></span> 键名列表</a></div>
 @endif
 @if ($privilege[1] == 'key/create' && $privilege[0] == '添加键名')
 <div class="slide__left__key"><a href="{{ url('key/create') }}" rel="external nofollow" ><span class="glyphicon glyphicon-plus"></span> 添加键名</a></div>
 @endif
 @if ($privilege[1] == 'project/index' && $privilege[0] == '项目列表')
 <div class="slide__left__key" style="margin-top: 20px;"><a href="{{ url('project/index') }}" rel="external nofollow" ><span class="glyphicon glyphicon-th-list"></span> 项目列表</a></div>
 @endif
 @if ($privilege[1] == 'project/create' && $privilege[0] == '添加项目')
 <div class="slide__left__key"><a href="{{ url('project/create') }}" rel="external nofollow" ><span class="glyphicon glyphicon-edit"></span> 添加项目</a></div>
 @endif
 @if ($privilege[1] == 'user/index' && $privilege[0] == '用户列表')
 <div class="slide__left__key" style="margin-top: 20px;"><a href="{{ url('user/index') }}" rel="external nofollow" ><span class="glyphicon glyphicon-th-large"></span> 用户列表</a></div>
 @endif
 @if ($privilege[1] == 'user/create' && $privilege[0] == '添加用户')
 <div class="slide__left__key"><a href="{{ url('user/create') }}" rel="external nofollow" ><span class="glyphicon glyphicon-plus-sign"></span> 添加用户</a></div>
 @endif
 @endforeach

Laravel框架 rbac 权限管理