Created
May 22, 2013 03:09
-
-
Save zhoumengkang/5624991 to your computer and use it in GitHub Desktop.
kaige.txt
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| 表还是原来的5张表: | |
| group、user、role、access、node,做的改动是node表增加了一个字段filter_field,用来规定该操作是否要根据角色来过滤字段,可以在节点管理里添加该限制。 | |
| access表里增加了一个fields字段,存放该角色在该节点上可以操作的字段列表,可以在后台的授权操作中来设置该列表。 | |
| 比如, | |
| node表有一个显示订单列表的操作index: | |
| node_id title filter_field | |
| 83 列表 1 | |
| role表有两个角色,领导leader和员工member: | |
| role_id title | |
| 7 领导 | |
| 9 员工 | |
| access表里针对不同角色,显示不同字段: | |
| access_id role_id node_id fileds | |
| 1 7 83 order_num,name,price,email | |
| 2 9 83 order_num,name,email | |
| 在实现index操作的时候,根据access表里的fields字段列表来读取数据。。。这样就实现了基于角色和字段的权限访问控制了。。 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment