5表联查yii框架权限控制
2024-09-02 13:46:12
一:控制器部分
<?php
namespace app\controllers; use yii\web\Controller; class PreController extends Controller{
public $enableCsrfValidation=false; function actionIndex(){ return $this->render('index');
} function actionLogin(){
$username= \Yii::$app->request->post('user'); $pwd=\Yii::$app->request->post('password');
$data=\Yii::$app->db->createCommand("select*from `user` where username='$username' and password='$pwd'")->queryOne(); if($data){
$session = \Yii::$app->session; $session->set('uid', $data['id']);
$id=$data['id'];
//五表连查
$res=\Yii::$app->db->createCommand("select *from user join u_r on user.id=u_r.u_id join role on u_r.r_id=role.r_id join r_p on role.r_id=r_p.rid join power on r_p.p_id=power.power_id where user.id=$id")->queryAll();
//将查出的数据存储到session
$session->set('power',json_encode($res));
//跳转至权限页面
return $this->redirect(['one/show']);
}else{
echo "<a href='index'>输入错误</a>";die;
}
} }
二:权限部分,并进行CURD
<?php
namespace app\controllers; use app\models\Zs;
use yii\web\Controller; class OneController extends Controller{
//相当与构造函数
function init()
{ $session = \Yii::$app->session;
$id=$session->get('uid');
//非法登陆限制
if(empty($id)){
echo "<a href='/pre/index'>请先登陆</a>";die;
}
$power=$session->get('power');
$data=json_decode($power);
//当前访问的控制器和方法
$now_url=\Yii::$app->requestedRoute; foreach ($data as $k=>$v){
//数据库中定义的控制器和方法
$arr[]=$v->controller.'/'.$v->function;
}
//权限控制
if(!in_array($now_url,$arr)){
echo "<a href='/pre/index'>权限不够,请重新登陆</a>";die;
} } function actionShow(){ $session = \Yii::$app->session;
$data=json_decode($session->get('power'),1); $res=$this->gettree($data,0);
return $this->render('show',['data'=>$res]);
}
//递归实现
function gettree($data,$pid){
$tree=[];
foreach ($data as $k=>$v){
if($v['pid']==$pid){
$v['son']=$this->gettree($data,$v['power_id']);
$tree[]=$v;
} }
return $tree;
}
//这是为了展示,方法名没有改
function actionAdd(){
$data=\Yii::$app->db->createCommand("select*from zs")->queryAll();
return $this->render('add',['data'=>$data]);
}
//删除
function actionDel(){
$id=\Yii::$app->request->get('id');
$res=\Yii::$app->db->createCommand("delete from zs where id=$id")->execute();
if($res){
return $this->redirect('add');
}
}
}
三:展示用户当前权限
<!doctype html>
<html lang="en">
<head>
<meta charset="UTF-8">
<meta name="viewport"
content="width=device-width, user-scalable=no, initial-scale=1.0, maximum-scale=1.0, minimum-scale=1.0">
<meta http-equiv="X-UA-Compatible" content="ie=edge">
<title>Document</title>
</head>
<body>
<table>
<!-- 递归展示数据-->
<?php foreach ($data as $k=>$v) {?>
<tr>
<?php echo $v['power'] ?><br>
<?php foreach ($v['son'] as $kk=>$vv) {?>
<a href="<?php echo $vv['function'] ?>"> <?php echo $vv['power'] ?></a><br>
</tr>
<?php }?>
<?php }?>
</table>
</body>
</html>
四:展示页面
<?php
$session = \Yii::$app->session; ?>
<!doctype html>
<html lang="en">
<head>
<meta charset="UTF-8">
<meta name="viewport"
content="width=device-width, user-scalable=no, initial-scale=1.0, maximum-scale=1.0, minimum-scale=1.0">
<meta http-equiv="X-UA-Compatible" content="ie=edge">
<title>Document</title>
</head>
<body>
<table border="1" class="table">
<tr>
<td>id</td>
<td>用户</td>
<td>手机</td>
<td>街道</td>
<td>操作</td>
</tr>
<?php foreach ($data as $k=>$v) {?>
<tr>
<td><?php echo $v['id'] ?></td>
<td><?php echo $v['name'] ?></td>
<td><?php echo $v['tel'] ?></td>
<td><?php echo $v['stree'] ?></td>
<!-- 删除按钮:管理员可删除,普通用户点击不会删除-->
<?php if($session->get('uid')==1){?> <td><a href="del?id=<?php echo $v['id'] ?>" class="del" id="<?php echo $v['id'] ?>">删除</a></td> <?php }else {?>
<td><a href="#" class="del" id="<?php echo $v['id'] ?>">删除</a></td>
<?php }?>
</tr>
<?php }?>
</table>
</body>
</html>
<script src="../jquery-3.3.1.min.js"></script>
<script> </script>
最新文章
- vcf格式
- 分享公司DAO层数据库结果映射到对象的方法
- XmlRpc.net 出参字符串还原为结构体
- 爱上MVC系列~过滤器实现对响应流的处理
- 常用的工具类4-IP类
- Python中整数和浮点数
- pages 元素(ASP.NET 设置架构)web.config 详解
- Educational Codeforces Round 7 C. Not Equal on a Segment 并查集
- shell中for循环总结
- matplotlib入门--1(条形图, 直方图, 盒须图, 饼图)
- DedeCMS安装及目录结构
- System.Diagnostics.Process 执行.EXE
- js中的随机数
- UVa 706 & ZOJ 1146 LC-Display
- Wpf中鼠标样式的修改,作用点修改
- BotVS开发基础—2.5 绘制图表
- Apache POI
- CentOS 6.8下二级域名及目录的绑定
- AE二次开发中几个功能速成归纳(符号设计器、创建要素、图形编辑、属性表编辑、缓冲区分析)
- 面试:atoi() 与 itoa()函数的内部实现(转)