kefu/middleware/rbac.go

package middleware

import (
	"fmt"
	"github.com/gin-gonic/gin"
	"kefu/models"
	"kefu/types"
	"strings"
)

func RbacAuth(c *gin.Context) {
	roleId, _ := c.Get("role_id")
	role := models.FindRole(roleId)
	var flag bool
	rPaths := strings.Split(c.Request.RequestURI, "?")
	uriParam := fmt.Sprintf("%s:%s", c.Request.Method, rPaths[0])
	if role.Method != "*" || role.Path != "*" {
		paths := strings.Split(role.Path, ",")
		for _, p := range paths {
			if uriParam == p {
				flag = true
				break
			}
		}
		if !flag {
			c.JSON(200, gin.H{
				"code": 403,
				"msg":  "没有权限:" + uriParam,
			})
			c.Abort()
			return
		}
		//methods := strings.Split(role.Method, ",")
		//for _, m := range methods {
		//	if c.Request.Method == m {
		//		methodFlag = true
		//		break
		//	}
		//}
		//if !methodFlag {
		//	c.JSON(200, gin.H{
		//		"code": 403,
		//		"msg":  "没有权限:" + c.Request.Method + "," + rPaths[0],
		//	})
		//	c.Abort()
		//	return
		//}
	}
	//var flag bool
	//if role.Path != "*" {
	//	paths := strings.Split(role.Path, ",")
	//	for _, p := range paths {
	//		if rPaths[0] == p {
	//			flag = true
	//			break
	//		}
	//	}
	//	if !flag {
	//		c.JSON(200, gin.H{
	//			"code": 403,
	//			"msg":  "没有权限:" + rPaths[0],
	//		})
	//		c.Abort()
	//		return
	//	}
	//}
}
func AdminAuth(c *gin.Context) {
	roleId, _ := c.Get("role_id")
	if roleId.(float64) != 1 {
		c.JSON(200, gin.H{
			"code": types.ApiCode.NO_ADMIN_AUTH,
			"msg":  types.ApiCode.GetMessage(types.ApiCode.NO_ADMIN_AUTH),
		})
		c.Abort()
		return
	}

}
第一次 2024-12-10 02:50:12 +00:00			`package middleware`

			`import (`
			`"fmt"`
			`"github.com/gin-gonic/gin"`
			`"kefu/models"`
			`"kefu/types"`
			`"strings"`
			`)`

			`func RbacAuth(c *gin.Context) {`
			`roleId, _ := c.Get("role_id")`
			`role := models.FindRole(roleId)`
			`var flag bool`
			`rPaths := strings.Split(c.Request.RequestURI, "?")`
			`uriParam := fmt.Sprintf("%s:%s", c.Request.Method, rPaths[0])`
			`if role.Method != "" \|\| role.Path != "" {`
			`paths := strings.Split(role.Path, ",")`
			`for _, p := range paths {`
			`if uriParam == p {`
			`flag = true`
			`break`
			`}`
			`}`
			`if !flag {`
			`c.JSON(200, gin.H{`
			`"code": 403,`
			`"msg": "没有权限:" + uriParam,`
			`})`
			`c.Abort()`
			`return`
			`}`
			`//methods := strings.Split(role.Method, ",")`
			`//for _, m := range methods {`
			`// if c.Request.Method == m {`
			`// methodFlag = true`
			`// break`
			`// }`
			`//}`
			`//if !methodFlag {`
			`// c.JSON(200, gin.H{`
			`// "code": 403,`
			`// "msg": "没有权限:" + c.Request.Method + "," + rPaths[0],`
			`// })`
			`// c.Abort()`
			`// return`
			`//}`
			`}`
			`//var flag bool`
			`//if role.Path != "*" {`
			`// paths := strings.Split(role.Path, ",")`
			`// for _, p := range paths {`
			`// if rPaths[0] == p {`
			`// flag = true`
			`// break`
			`// }`
			`// }`
			`// if !flag {`
			`// c.JSON(200, gin.H{`
			`// "code": 403,`
			`// "msg": "没有权限:" + rPaths[0],`
			`// })`
			`// c.Abort()`
			`// return`
			`// }`
			`//}`
			`}`
			`func AdminAuth(c *gin.Context) {`
			`roleId, _ := c.Get("role_id")`
			`if roleId.(float64) != 1 {`
			`c.JSON(200, gin.H{`
			`"code": types.ApiCode.NO_ADMIN_AUTH,`
			`"msg": types.ApiCode.GetMessage(types.ApiCode.NO_ADMIN_AUTH),`
			`})`
			`c.Abort()`
			`return`
			`}`

			`}`