Policy

Policy(即策略)是在特定模型或者资源中组织授权逻辑的类,用来处理用户授权动作。

安装

  1. composer require easyswoole/policy

使用方法

  2. use EasySwoole\Policy\PolicyNode;
  3. use EasySwoole\Policy\Policy;
  5. //授权动作
  6. //PolicyNode::EFFECT_ALLOW   允许
  7. //PolicyNode::EFFECT_DENY    拒绝
  8. //PolicyNode::EFFECT_UNKNOWN 未知
  11. $policy = new Policy();
  12. //添加节点授权   
  13. $policy->addPath('/user/add',PolicyNode::EFFECT_ALLOW);
  14. $policy->addPath('/user/update',PolicyNode::EFFECT_ALLOW);
  15. $policy->addPath('/user/delete',PolicyNode::EFFECT_DENY);
  16. $policy->addPath('/user/*',PolicyNode::EFFECT_DENY);
  18. //验证节点权限
  19. var_dump($policy->check('user/asdasd'));//deny
  20. var_dump($policy->check('user/add'));   //allow
  21. var_dump($policy->check('user/update'));//allow
  23. /*
  24.  * 允许/api/*,但是唯独拒绝/api/order/charge,/api/order/info,/api/sys/*
  25.  */
  27. $policy->addPath('/api/*',PolicyNode::EFFECT_ALLOW);
  28. $policy->addPath('/api/order/charge',PolicyNode::EFFECT_DENY);
  29. $policy->addPath('/api/order/info',PolicyNode::EFFECT_DENY);
  30. $policy->addPath('/api/sys/*',PolicyNode::EFFECT_DENY);
  32. var_dump($policy->check('/api/whatever'));
  33. var_dump($policy->check('/api/order/charge'));
  34. var_dump($policy->check('/api/order/info'));
  35. var_dump($policy->check('/api/sys/whatever'));
  38. //对象添加
  39. $root = new PolicyNode('*');
  40. $userChild = $root->addChild('user');
  41. $userAddChild = $userChild->addChild('add');
  42. $userAddChild->addChild('aaaaaa')->setAllow(PolicyNode::EFFECT_ALLOW);
  43. $userChild->addChild('update')->setAllow(PolicyNode::EFFECT_DENY);
  44. $userChild->addChild('*')->setAllow(PolicyNode::EFFECT_ALLOW);
  46. $apiChild = $root->addChild('charge');
  47. $apiChild->addChild('*');
  49. $node = $root->search('/user/add/aaaa');
  50. if ($node) {
  51.     var_dump($node->isAllow());
  52. }