🐇 An Authorization For Webman Plugin. 🐇
An authorization library that supports access control models like ACL, RBAC, ABAC for webman plugin
Composer Install
composer require -W casbin/webman-permission
Modify the config/container.php
configuration to perform the following final contents:
$builder = new \DI\ContainerBuilder();
$builder->addDefinitions(config('dependence', []));
$builder->useAutowiring(true);
return $builder->build();
默认策略存储是使用的ThinkORM。
默认使用ThinkORM。修改数据库 thinkorm.php
配置
如使用laravel数据库,配置参考如下
- 修改数据库
database.php
配置 - 修改数据库
permission.php
的adapter
适配器为laravel适配器
CREATE TABLE `casbin_rule` (
`id` BIGINT ( 20 ) UNSIGNED NOT NULL AUTO_INCREMENT,
`ptype` VARCHAR ( 128 ) NOT NULL DEFAULT '',
`v0` VARCHAR ( 128 ) NOT NULL DEFAULT '',
`v1` VARCHAR ( 128 ) NOT NULL DEFAULT '',
`v2` VARCHAR ( 128 ) NOT NULL DEFAULT '',
`v3` VARCHAR ( 128 ) NOT NULL DEFAULT '',
`v4` VARCHAR ( 128 ) NOT NULL DEFAULT '',
`v5` VARCHAR ( 128 ) NOT NULL DEFAULT '',
PRIMARY KEY ( `id` ) USING BTREE,
KEY `idx_ptype` ( `ptype` ) USING BTREE,
KEY `idx_v0` ( `v0` ) USING BTREE,
KEY `idx_v1` ( `v1` ) USING BTREE,
KEY `idx_v2` ( `v2` ) USING BTREE,
KEY `idx_v3` ( `v3` ) USING BTREE,
KEY `idx_v4` ( `v4` ) USING BTREE,
KEY `idx_v5` ( `v5` ) USING BTREE
) ENGINE = INNODB CHARSET = utf8mb4 COMMENT = '策略规则表';
php start.php restart
或者
php start.php restart -d
安装成功后,可以这样使用:
use Casbin\WebmanPermission\Permission;
// adds permissions to a user
Permission::addPermissionForUser('eve', 'articles', 'read');
// adds a role for a user.
Permission::addRoleForUser('eve', 'writer');
// adds permissions to a rule
Permission::addPolicy('writer', 'articles','edit');
你可以检查一个用户是否拥有某个权限:
if (\Casbin\WebmanPermission\Permission::enforce('eve', 'articles', 'edit')) {
echo '恭喜你!通过权限认证';
} else {
echo '对不起,您没有该资源访问权限';
}
$permission = \Casbin\WebmanPermission\Permission::driver('restful_conf');
// adds permissions to a user
$permission->addPermissionForUser('eve', 'articles', 'read');
// adds a role for a user.
$permission->addRoleForUser('eve', 'writer');
// adds permissions to a rule
$permission->addPolicy('writer', 'articles','edit');
if ($permission->enforce('eve', 'articles', 'edit')) {
echo '恭喜你!通过权限认证';
} else {
echo '对不起,您没有该资源访问权限';
}
更多 API
参考 Casbin API 。
- Casbin权限实战:入门分享(中文)
- Casbin权限实战:基于角色的RBAC授权
- Casbin权限实战:RESTful及中间件使用
- Casbin权限实战:如何使用自定义匹配函数
- Webman实战教程:如何使用casbin权限控制
解除 https://github.com/PHP-DI/PHP-DI依赖的解决方案(不推荐)
1、卸载DI依赖包:composer remove php-di/php-di
2、修改:Casbin\WebmanPermission\Permission
文件
if (is_null(static::$_manager)) {
static::$_manager = new Enforcer($model, Container::get($config['adapter']),false);
}
替换为
if (is_null(static::$_manager)) {
if ($config['adapter'] == DatabaseAdapter::class) {
$_model = new RuleModel();
} elseif ($config['adapter'] == LaravelDatabaseAdapter::class) {
$_model = new LaravelRuleModel();
}
static::$_manager = new Enforcer($model, new $config['adapter']($_model), false);
}
耦合太高,不建议这么搞,更多了解:https://www.workerman.net/doc/webman/di.html