Yii2 RBAC组分配混乱

I am trying to implement RBAC in my project by following the tutorial* on the Yii website. However I am confused when trying to implement the permissions by group.

For this example I have added a group field into the user table and have defined two groups, user (2) and admin (1).

I then created a console command which looks like this:

class RbacController extends Controller
{
    public function actionInit()
    {
        $auth = \Yii::$app->authManager;

        $rule = new \appbac\UserGroupRule;
        $auth->add($rule);

        $search = $auth->createPermission('search');
        $search->description = 'Search';
        $search->ruleName = $rule->name;
        $auth->add($search);

        $user = $auth->createRole('user');
        $user->ruleName = $rule->name;
        $auth->add($user);

        $admin = $auth->createRole('admin');
        $admin->ruleName = $rule->name;
        $auth->add($admin);
        $auth->addChild($admin, $user);
    }
}

And I have this file: rbac/UserGroupRule.php

class UserGroupRule extends Rule
{
    public $name = 'userGroup';

    public function execute($user, $item, $params)
    {
        // return true; // force return to true for test
        if(!Yii::$app->user->isGuest) {
            $group = Yii::$app->user->identity->group;
            if($item->name === 'search') {
                return $group == 1;
        }
        return false;
    }
}

I'm trying to test the permission with if(\Yii::$app->user->can('search')).

Firstly, I wonder why the console command is required here as I can't see where it's being used.
The $item parameter in the execute method has the value of search, but the tutorial shows that it expects this value to be role type.
Regardless of what I return in the execute method, it seems to return false.

Can anyone answer these questions?

http://www.yiiframework.com/doc-2.0/guide-security-authorization.html

写回答
好问题 0 提建议
追加酬金
关注问题
分享
邀请回答
编辑收藏删除结题
收藏举报

1条回答默认最新

关注

码龄粉丝数原力等级 --

被采纳

被点赞

采纳率
doulun1666 2015-09-08 08:01
关注
I guess you have an authManager with DbManager ?

'authManager' => [ 'class' => 'yiibac\DbManager', ],

to init the rbac from the console just use yii rbac/init in a console (in correct project dir) then the database entries were done (before that the rbac tables should be empty)

if you haven't done yet create the tables with

yii migrate --migrationPath=@yii/rbac/migrations

$item is just the auth permission or role entry. The rule is called for every entry, if you have added a rule. In your case for permission "search" and roles "user" and "admin" the rules is executed.

your have added entries with rule checking. So if you e.g. check if the user can "search" by e.g.

if (\Yii::$app->user->can('search')) { // can search }

then the rule is checked or executed (which is your UserGroupRule). And in your case it would return true for admins and false for user given by the group field.

edit: I hope you have added this to your components in your config file.

return [ // ... 'components' => [ 'authManager' => [ 'class' => 'yiibac\DbManager', ], // ... ], ];

You have created 2 roles in your rbac (user/admin) and as far as i understand your are using a group column in the User table to allocate those roles to the user. And in your code you will need to have to check the permissions or roles. So from the DB the correct Entry is selected and if a Rule is attached this rule is then executed. And this checks the current user group and returns true or false. So in your case no assignments to those roles or permissions are done. It uses the Rule to return true or false depending on the user group. But here are other extensions search for yii2admin or yii2rbac, where you can also assign user to roles/permissions etc by database entries.

I would say you should get more help where you can "chat" e.g. the yii chat which is linked on the yii homepage.
解决无用
评论打赏
分享
举报

评论

按下Enter换行，Ctrl+Enter发表内容

报告相同问题？

关注问题

问：Yii2集成了Rbac和按钮识别功能 php
2018-10-10 16:19

回答 1 已采纳 This seems to be a two-in-one question. First, RBAC. This is explained very well in the docs. Yo
Yii 2 RBAC异常'yii \ base \ UnknownMethodException'，消息'调用未知方法：yii bac \ DbManager :: getItem（）' php
2017-05-17 07:47

回答 1 已采纳 Yii2 DbManager Docs - getItem() method is protected. PHP: Visibility - check out here for visibil
Yii2 RBAC DbManager错误在null上调用成员函数getRole（） php
2014-11-10 23:30

回答 2 已采纳 You've gone the wrong way about it. The issue here seems to be that Yii::$app->authManager is
thinkphp和纯php,thinkphp和yii2的优缺点是什么？
2021-04-11 13:40

元宝在考试路上的博客 ThinkPHP是免费开源的，快速的，简单的，面向对象的轻量级PHP开发框架，ThinkPHP可以支持windows/Unix/Linux等服务器环境，正式版需要PHP5.0以上版本支持，支持MySql、PgSQL、Sqlite多种数据库以及PDO扩展，ThinkPHP...
聚合数据组为Yii2关系 mysql php
2017-05-04 16:29

回答 1 已采纳 /** * @return \yii\db\ActiveQuery */ public function getTotalAndAveFeedback() { return $this
如何在yii2中使用pjax和分页 php
2019-06-04 10:19

回答 1 已采纳 You should move the LinkPager inside the Pjax scope. <?php Pjax::begin(['id' => 'gallery_r'
如何在yii2中隐藏php警告？ php
2016-06-28 11:32

回答 4 已采纳 This can be achieved by changing two parameters in index.php file. 1) Setting YII_DEBUG to false
Thinkphp CI YII框架对比
2018-05-14 17:04

宋同学灬的博客转载： ...从语言方面：Tp与Yii都可以满足中文用户的需求，但是由于Yii是国际化的项目，所以代码注释仍旧是英文，不过呢两个框架的创始人依旧都是中国...
Yii simple rbac - checkAccess未执行 php
2012-11-05 21:19

回答 1 已采纳 Try changing 'users'=>array('admin') to 'roles'=>array('admin')
控制台Yii2中的runAction模块 php
2017-11-27 15:15

回答 2 已采纳 Ok i found a solution but remember that the structure you desired isn't a good solution. Becouse y
Yii2：如何从searchModel回显参数 php
2018-04-26 07:22

回答 1 已采纳 What looks like is that your date value is not loading in the searchModel otherwise it would show
一文搞定权限设计模型（RBAC，ABAC）超详细图文解析
2021-06-30 17:06

Hi丶ImViper的博客首先我们看看PHP框架Yii 1.X的解决方案（2.X中代码更为优雅，但1.X的示例代码更容易看明白）： $auth=Yii::app()->authManager; $auth->createOperation('createPost','create a post'); $auth->createOperation('...
Yii2 GridView CheckboxColumn php
2018-06-07 18:52

回答 1 已采纳 it should be '\kartik\grid\CheckboxColumn' rather than '\kartik\grid\checkboxColumn' you must be w
PHP 常用框架
2022-10-11 10:57

云三木的博客小型项目：CodeIngiter中型项目：CakePHP、Zend Framework、Laravel、Thinkphp大型重量级项目：Yii、Symfony、Laravel以上划分也不绝对，在项目选型的时候,要充分考虑框架的可以定制性、扩展性，因为每个项目都无法...
PHP - 主流开发框架 - 介绍
2020-01-02 22:31

宁小法的博客了解php流行框架，帮助选择适合的框架进行开发.
没有解决我的问题, 去提问

悬赏问题

¥15 关于#matlab#的问题：在模糊控制器中选出线路信息，在simulink中根据线路信息生成速度时间目标曲线（初速度为20m/s，15秒后减为0的速度时间图像）我想问线路信息是什么
¥15 banner广告展示设置多少时间不怎么会消耗用户价值
¥16 mybatis的代理对象无法通过@Autowired装填
¥15 可见光定位matlab仿真
¥15 arduino 四自由度机械臂
¥15 wordpress 产品图片 GIF 没法显示
¥15 求三国群英传pl国战时间的修改方法
¥15 matlab代码代写，需写出详细代码，代价私
¥15 ROS系统搭建请教（跨境电商用途）
¥15 AIC3204的示例代码有吗，想用AIC3204测量血氧，找不到相关的代码。

Yii2 RBAC组分配混乱

1条回答 默认 最新

悬赏问题

1条回答默认最新