yii2 RBAC使用DbManager实现后台权限判断的方法

<?phpnamespace app/models;use Yii;use app/models/AuthItem;use yii/rbac/Item;/* * 角色model * 指尖上的艺术家 */class RoleForm extends AuthItem{  public function init() {    parent::init();    $this->type = Item::TYPE_ROLE;//yii-rbac-Role隐藏继承常量这里的值是1  }}

<?phpnamespace app/models;use Yii;use app/models/AuthItem;use yii/rbac/Item;/* * 权限model * 指尖上的艺术家 */class PermissionForm extends AuthItem{  public function init() {    parent::init();    $this->type = Item::TYPE_PERMISSION;//常量值 2  }}

<?phpclass AuthItem.....public $child;//用于角色权限添加......

/* * 权限添加 */public function actionCreate() {  $model = new PermissionForm();  if( $model->load( Yii::$app->request->post() ) && $model->validate() ) {    //rbac中permission对象    $permission = new Permission();    $permission->name = trim( $model->name );    $permission->type = $model->type;    //权限添加    Yii::$app->authManager->add( $permission );  }}

/* * param string $name 修改的权限名 * param Object $permission 跟添加一样提交上来的数据 */Yii::$app->authManager->update( $name, $permission );

//Returns the named permission.$permission = Yii::$app->authManager->getPermission( $name );//Removes a permission or rule from the RBAC system.Yii::$app->authManager->remove( $permission );

use yii/rbac/Role;/* * 角色添加 */public function actionCreate() {  $model = new RoleForm();  if ( $model->load( Yii::$app->request->post() ) && $model->validate() ) {      //实例化角色对象      $role = new Role();      $role->name = $model->name;      $role->type = $model->type;      //添加角色      Yii::$app->authManager->add( $role );  }  //权限列表( 添加角色的时候我们就可看到当前有没有权限来添加 )  $permissions = $this->loadPermission();  //将$model跟$permissions....渲染到视图就好了}

/* * 修改 * param string $name 修改的角色名 * param Object $role 跟添加一样提交上来的数据 */$bool = Yii::$app->authManager->update( $name, $role );

/* * param string $name 角色名 */$role = Yii::$app->authManager->getRole( $name );//获取当前角色对象//Returns the child roles.$childAll = Yii::$app->authManager->getChildren( $role );if ( isset($childAll) ) {//逐一删除权限  foreach ($childAll as $value) {    //Returns the named permission.    $perObj = Yii::$app->authManager->getPermission($value);    //Removes a child from its parent.    Yii::$app->authManager->removeChild( $role, $perObj );  }}Yii::$app->authManager->remove( $role );//最后删除我们的角色了

//当前角色所拥有的权限$childArray = $this->loadRolePermission( $model->name );//这个就是返回权限数组if ( !empty( $childArray ) ) {  $model->child = $childArray;}else {  $model->child = array();}//Returns all permissions in the system.$permissions = Yii::$app->authManager->getPermissions();$perArr = array();foreach ($permissions as $key => $value) {  $perArr[$value->name] = $value->name;}if ( $model->load( Yii::$app->request->post() ) && $model->validate() ) {  //角色对象  $child = isset( $_POST['AuthItem']['child'] ) ? $_POST['AuthItem']['child'] : NULL;  //表单无法验证child所以当为空的时候跳回原页面  if ( empty( $child ) ) {    return $this->redirect(..你们要跳的页面..);  }  //判断角色是否分配权限，已分配则删除，反之增加新的  if ( !empty( $childArray ) ) {    //Removed all children form their parent.    $bool = Yii::$app->authManager->removeChildren( $model );    if ( !$bool ) {      throw new HttpException(404, '别想糊弄我！凑你一脸～～～');    }  }  //当前角色对象  $role = Yii::$app->authManager->getRole( $model->name );  //child权限添加  if( isset( $child ) ) {    foreach ( $child as $val) {      //获取权限      $childObj = Yii::$app->authManager->getPermission($val);      //给item_child表写入数据（权限表）      Yii::$app->authManager->addChild( $role, $childObj );    }    return $this->redirect(..你们要跳的页面..);  }}

/* * 创建角色跟用户之间关联的关键部分代码 *///Returns the named role.$role =Yii::$app->authManager->getRole( $roleName );// Assigns a role to a user.Yii::$app->authManager->assign( $role, $userId );<pre name="code" class="php">/* * 权限检测 * param int| string $userId 用户id * param string $permission 权限名 */Yii::$app->authManager->checkAccess( $userId , $permission ) )

/* * 权限检测 * param int| string $userId 用户id * param string $permission 权限名 */Yii::$app->authManager->checkAccess( $userId , $permission ) )