正则实现权限控制

auth-re.php

<?php
/**
 * 验证权限
 * @param $path : controller/action
 * @param $rount_rule
 * array (
    'allow' =>
        array (
            'test/test',
            'Doc/*',        //允许project/所有方法
            '*'             //允许所有
        ),
    'refuse' =>
        array (
            'test/index',
            'project/*',    //禁止project/所有方法
            '*'             //禁止所有
        ),
    )'
 * @return bool
 */
function checkRoute($path, $rount_rule)
{
    if (!$rount_rule) {//如果没写规则就都拒绝
        return false;
    }

    if (isset($rount_rule['refuse']) && $rount_rule['refuse']) {//先验证拒绝权限
        $route_arr = array_filter($rount_rule['refuse']);
        if (in_array('*', $route_arr)) {
            return false;
        }
        $route_pattern = "/" . str_ireplace('/', '\/', join('|', $route_arr)) . "/i";
        if (preg_match($route_pattern, $path)) {
            return false;
        }
    }

    if (isset($rount_rule['allow']) && $rount_rule['allow']) {//验证允许权限
        $route_arr = array_filter($rount_rule['allow']);
        if (in_array('*', $route_arr)) {
            return true;
        }
        $route_pattern = "/" . str_ireplace('/', '\/', join('|', $route_arr)) . "/i";
        if (preg_match($route_pattern, $path)) {
            return true;
        }
    }
    return false;
}