You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
121 lines
3.8 KiB
121 lines
3.8 KiB
package service
|
|
|
|
import (
|
|
"errors"
|
|
"gin-vue-admin/global"
|
|
"gin-vue-admin/model"
|
|
"gin-vue-admin/model/request"
|
|
"github.com/casbin/casbin"
|
|
"github.com/casbin/casbin/util"
|
|
gormadapter "github.com/casbin/gorm-adapter"
|
|
"strings"
|
|
)
|
|
|
|
// @title UpdateCasbin
|
|
// @description update casbin authority, 更新casbin权限
|
|
// @auth (2020/04/05 20:22 )
|
|
// @param authorityId string
|
|
// @param casbinInfos []CasbinInfo
|
|
// @return error
|
|
func UpdateCasbin(authorityId string, casbinInfos []request.CasbinInfo) error {
|
|
ClearCasbin(0, authorityId)
|
|
for _, v := range casbinInfos {
|
|
cm := model.CasbinModel{
|
|
ID: 0,
|
|
Ptype: "p",
|
|
AuthorityId: authorityId,
|
|
Path: v.Path,
|
|
Method: v.Method,
|
|
}
|
|
addflag := AddCasbin(cm)
|
|
if addflag == false {
|
|
return errors.New("存在相同api,添加失败,请联系管理员")
|
|
}
|
|
}
|
|
return nil
|
|
}
|
|
|
|
// @title AddCasbin
|
|
// @description add casbin authority, 添加权限
|
|
// @auth (2020/04/05 20:22 )
|
|
// @param cm CasbinModel
|
|
// @return bool
|
|
func AddCasbin(cm model.CasbinModel) bool {
|
|
e := Casbin()
|
|
return e.AddPolicy(cm.AuthorityId, cm.Path, cm.Method)
|
|
}
|
|
|
|
// @title UpdateCasbinApi
|
|
// @description update casbin apis, API更新随动
|
|
// @auth (2020/04/05 20:22 )
|
|
// @param oldPath string
|
|
// @param newPath string
|
|
// @return error
|
|
func UpdateCasbinApi(oldPath string, newPath string,oldMethod string, newMethod string) error {
|
|
var cs []model.CasbinModel
|
|
err := global.GVA_DB.Table("casbin_rule").Where("v1 = ? AND v2 = ?", oldPath,oldMethod).Find(&cs).Update("v1", newPath).Update("v2", newMethod).Error
|
|
return err
|
|
}
|
|
|
|
// @title GetPolicyPathByAuthorityId
|
|
// @description get policy path by authorityId, 获取权限列表
|
|
// @auth (2020/04/05 20:22 )
|
|
// @param authorityId string
|
|
// @return []string
|
|
func GetPolicyPathByAuthorityId(authorityId string) []string {
|
|
e := Casbin()
|
|
var pathList []string
|
|
list := e.GetFilteredPolicy(0, authorityId)
|
|
for _, v := range list {
|
|
pathList = append(pathList, v[1])
|
|
}
|
|
return pathList
|
|
}
|
|
|
|
// @title ClearCasbin
|
|
// @description 清除匹配的权限
|
|
// @auth (2020/04/05 20:22 )
|
|
// @param v int
|
|
// @param p string
|
|
// @return bool
|
|
func ClearCasbin(v int, p ...string) bool {
|
|
e := Casbin()
|
|
return e.RemoveFilteredPolicy(v, p...)
|
|
|
|
}
|
|
|
|
// @title Casbin
|
|
// @description store to DB, 持久化到数据库 引入自定义规则
|
|
// @auth (2020/04/05 20:22 )
|
|
func Casbin() *casbin.Enforcer {
|
|
a := gormadapter.NewAdapterByDB(global.GVA_DB)
|
|
e := casbin.NewEnforcer(global.GVA_CONFIG.Casbin.ModelPath, a)
|
|
e.AddFunction("ParamsMatch", ParamsMatchFunc)
|
|
_ = e.LoadPolicy()
|
|
return e
|
|
}
|
|
|
|
// @title ParamsMatch
|
|
// @description customized rule, 自定义规则函数
|
|
// @auth (2020/04/05 20:22 )
|
|
// @param fullNameKey1 string
|
|
// @param key2 string
|
|
// @return bool
|
|
func ParamsMatch(fullNameKey1 string, key2 string) bool {
|
|
key1 := strings.Split(fullNameKey1, "?")[0]
|
|
//剥离路径后再使用casbin的keyMatch2
|
|
return util.KeyMatch2(key1, key2)
|
|
}
|
|
|
|
// @title ParamsMatchFunc
|
|
// @description customized function, 自定义规则函数
|
|
// @auth (2020/04/05 20:22 )
|
|
// @param args ...interface{}
|
|
// @return interface{}
|
|
// @return error
|
|
func ParamsMatchFunc(args ...interface{}) (interface{}, error) {
|
|
name1 := args[0].(string)
|
|
name2 := args[1].(string)
|
|
|
|
return (bool)(ParamsMatch(name1, name2)), nil
|
|
}
|