/**
* Search authitem
* @param array $params
* @return \yii\data\ActiveDataProvider|\yii\data\ArrayDataProvider
*/
public function search($params)
{
/* @var \yii\rbac\Manager $authManager */
$authManager = Configs::authManager();
if ($this->type == Item::TYPE_ROLE) {
$items = $authManager->getRoles();
} else {
$items = array_filter($authManager->getPermissions(), function ($item) {
return $this->type == Item::TYPE_PERMISSION xor strncmp($item->name, '/', 1) === 0;
});
}
$this->load($params);
if ($this->validate()) {
$search = mb_strtolower(trim($this->name));
$desc = mb_strtolower(trim($this->description));
$ruleName = $this->ruleName;
foreach ($items as $name => $item) {
$f = (empty($search) || mb_strpos(mb_strtolower($item->name), $search) !== false) && (empty($desc) || mb_strpos(mb_strtolower($item->description), $desc) !== false) && (empty($ruleName) || $item->ruleName == $ruleName);
if (!$f) {
unset($items[$name]);
}
}
}
return new ArrayDataProvider(['allModels' => $items]);
}
public function down()
{
$userTable = Configs::instance()->userTable;
if ($this->db->schema->getTableSchema($userTable, true) !== null) {
$this->dropTable($userTable);
}
}
/**
* @inheritdoc
*/
public static function getDb()
{
if (Configs::instance()->db !== null) {
return Configs::instance()->db;
} else {
return parent::getDb();
}
}
/**
* Search BizRule
* @param array $params
* @return \yii\data\ActiveDataProvider|\yii\data\ArrayDataProvider
*/
public function search($params)
{
/* @var \yii\rbac\Manager $authManager */
$authManager = Configs::authManager();
$models = [];
$included = !($this->load($params) && $this->validate() && trim($this->name) !== '');
foreach ($authManager->getRules() as $name => $item) {
if ($name != RouteRule::RULE_NAME && ($included || stripos($item->name, $this->name) !== false)) {
$models[$name] = new MBizRule($item);
}
}
return new ArrayDataProvider(['allModels' => $models]);
}
/**
* Get core menu
* @return array
* @var $ids array has 'Menu Lable' => 'Controller' pairs
*/
protected function getCoreMenus()
{
$mid = '/' . $this->getUniqueId() . '/';
$ids = ['Assignments' => 'assignment', 'Roles' => 'role', 'Permissions' => 'permission', 'Routes' => 'route', 'Rules' => 'rule', 'Menus' => 'menu'];
$config = components\Configs::instance();
$result = [];
foreach ($ids as $lable => $id) {
if ($id !== 'menu' || $config->db !== null && $config->db->schema->getTableSchema($config->menuTable) !== null) {
$result[$id] = ['label' => Yii::t('rbac-admin', $lable), 'url' => [$mid . $id]];
}
}
foreach (array_keys($this->controllerMap) as $id) {
$result[$id] = ['label' => Yii::t('rbac-admin', Inflector::humanize($id)), 'url' => [$mid . $id]];
}
return $result;
}
/**
* Get all available and assigned roles/permission
* @return array
*/
public function getItems()
{
$manager = Configs::authManager();
$available = [];
foreach (array_keys($manager->getRoles()) as $name) {
$available[$name] = 'role';
}
foreach (array_keys($manager->getPermissions()) as $name) {
if ($name[0] != '/') {
$available[$name] = 'permission';
}
}
$assigned = [];
foreach ($manager->getAssignments($this->id) as $item) {
$assigned[$item->roleName] = $available[$item->roleName];
unset($available[$item->roleName]);
}
return ['available' => $available, 'assigned' => $assigned];
}
/**
* Get items
* @return array
*/
public function getItems()
{
$manager = Configs::authManager();
$avaliable = [];
if ($this->type == Item::TYPE_ROLE) {
foreach (array_keys($manager->getRoles()) as $name) {
$avaliable[$name] = 'role';
}
}
foreach (array_keys($manager->getPermissions()) as $name) {
$avaliable[$name] = $name[0] == '/' ? 'route' : 'permission';
}
$assigned = [];
foreach ($manager->getChildren($this->_item->name) as $item) {
$assigned[$item->name] = $item->type == 1 ? 'role' : ($item->name[0] == '/' ? 'route' : 'permission');
unset($avaliable[$item->name]);
}
unset($avaliable[$this->name]);
return ['avaliable' => $avaliable, 'assigned' => $assigned];
}
/**
* Get available menu.
* @return array
*/
public function getMenus()
{
if ($this->_normalizeMenus === null) {
$mid = '/' . $this->getUniqueId() . '/';
// resolve core menus
$this->_normalizeMenus = [];
$config = components\Configs::instance();
$conditions = ['user' => $config->db && $config->db->schema->getTableSchema($config->userTable), 'assignment' => ($userClass = Yii::$app->getUser()->identityClass) && is_subclass_of($userClass, 'yii\\db\\BaseActiveRecord'), 'menu' => $config->db && $config->db->schema->getTableSchema($config->menuTable)];
foreach ($this->_coreItems as $id => $lable) {
if (!isset($conditions[$id]) || $conditions[$id]) {
$this->_normalizeMenus[$id] = ['label' => Yii::t('rbac-admin', $lable), 'url' => [$mid . $id]];
}
}
foreach (array_keys($this->controllerMap) as $id) {
$this->_normalizeMenus[$id] = ['label' => Yii::t('rbac-admin', Inflector::humanize($id)), 'url' => [$mid . $id]];
}
// user configure menus
foreach ($this->_menus as $id => $value) {
if (empty($value)) {
unset($this->_normalizeMenus[$id]);
continue;
}
if (is_string($value)) {
$value = ['label' => $value];
}
$this->_normalizeMenus[$id] = isset($this->_normalizeMenus[$id]) ? array_merge($this->_normalizeMenus[$id], $value) : $value;
if (!isset($this->_normalizeMenus[$id]['url'])) {
$this->_normalizeMenus[$id]['url'] = [$mid . $id];
}
}
}
return $this->_normalizeMenus;
}
/**
* Get saved routes.
* @return array
*/
public static function getSavedRoutes()
{
if (self::$_routes === null) {
self::$_routes = [];
foreach (Configs::authManager()->getPermissions() as $name => $value) {
if ($name[0] === '/' && substr($name, -1) != '*') {
self::$_routes[] = $name;
}
}
}
return self::$_routes;
}
)
DROP dbo.trigger_auth_item_child;
GO
SQL;
$command->setSql($sql)->execute();
}
if ($schema->getTableSchema($authManager->assignmentTable)) {
$command->dropTable($authManager->assignmentTable)->execute();
}
if ($schema->getTableSchema($authManager->itemChildTable)) {
$command->dropTable($authManager->itemChildTable)->execute();
}
if ($schema->getTableSchema($authManager->itemTable)) {
$command->dropTable($authManager->itemTable)->execute();
}
if ($schema->getTableSchema($authManager->ruleTable)) {
$command->dropTable($authManager->ruleTable)->execute();
}
// mdm/admin
if ($schema->getTableSchema(Configs::menuTable())) {
$command->dropTable(Configs::menuTable())->execute();
}
if ($schema->getTableSchema(Configs::userTable())) {
$command->dropTable(Configs::userTable())->execute();
}
foreach ($migrations as $migration => $path) {
$file = Yii::getAlias($path . '/' . $migration . '.php');
include_once $file;
$migration = new $migration();
$migration->up();
}
<?php
use yii\helpers\Html;
use yii\widgets\ActiveForm;
use mdm\admin\components\RouteRule;
use mdm\admin\AutocompleteAsset;
use yii\helpers\Json;
use mdm\admin\components\Configs;
/* @var $this yii\web\View */
/* @var $model mdm\admin\models\AuthItem */
/* @var $form yii\widgets\ActiveForm */
/* @var $context mdm\admin\components\ItemController */
$context = $this->context;
$labels = $context->labels();
$rules = Configs::authManager()->getRules();
unset($rules[RouteRule::RULE_NAME]);
$source = Json::htmlEncode(array_keys($rules));
$js = <<<JS
\$('#rule_name').autocomplete({
source: {$source},
});
JS;
AutocompleteAsset::register($this);
$this->registerJs($js);
?>
<div class="auth-item-form">
<?php
$form = ActiveForm::begin(['id' => 'item-form']);
?>
<div class="row">
/**
* Ivalidate cache
*/
protected function invalidate()
{
if (Configs::instance()->cache !== null) {
TagDependency::invalidate(Configs::instance()->cache, self::CACHE_TAG);
}
}
/**
* Get avalible menu.
* @return array
*/
public function getMenus()
{
if ($this->_normalizeMenus === null) {
$mid = '/' . $this->getUniqueId() . '/';
// resolve core menus
$this->_normalizeMenus = [];
$config = components\Configs::instance();
foreach ($this->_coreItems as $id => $lable) {
if ($id !== 'menu' || $config->db !== null && $config->db->schema->getTableSchema($config->menuTable) !== null) {
$this->_normalizeMenus[$id] = ['label' => Yii::t('rbac-admin', $lable), 'url' => [$mid . $id]];
}
}
foreach (array_keys($this->controllerMap) as $id) {
$this->_normalizeMenus[$id] = ['label' => Yii::t('rbac-admin', Inflector::humanize($id)), 'url' => [$mid . $id]];
}
// user configure menus
foreach ($this->_menus as $id => $value) {
if (empty($value)) {
unset($this->_normalizeMenus[$id]);
} else {
if (is_string($value)) {
$value = ['label' => $value];
}
$this->_normalizeMenus[$id] = isset($this->_normalizeMenus[$id]) ? array_merge($this->_normalizeMenus[$id], $value) : $value;
if (!isset($this->_normalizeMenus[$id]['url'])) {
$this->_normalizeMenus[$id]['url'] = [$mid . $id];
}
}
}
}
return $this->_normalizeMenus;
}
/**
* Save model to authManager
* @return boolean
*/
public function save()
{
if ($this->validate()) {
$manager = Configs::authManager();
$class = $this->className;
if ($this->_item === null) {
$this->_item = new $class();
$isNew = true;
} else {
$isNew = false;
$oldName = $this->_item->name;
}
$this->_item->name = $this->name;
if ($isNew) {
$manager->add($this->_item);
} else {
$manager->update($oldName, $this->_item);
}
return true;
} else {
return false;
}
}
/**
* Finds the AuthItem model based on its primary key value.
* If the model is not found, a 404 HTTP exception will be thrown.
* @param string $id
* @return AuthItem the loaded model
* @throws HttpException if the model cannot be found
*/
protected function findModel($id)
{
$item = Configs::authManager()->getRule($id);
if ($item) {
return new BizRule($item);
} else {
throw new NotFoundHttpException('The requested page does not exist.');
}
}
/**
* Set default rule of parameterize route.
*/
protected function setDefaultRule()
{
if (Configs::authManager()->getRule(RouteRule::RULE_NAME) === null) {
Configs::authManager()->add(new RouteRule());
}
}
/**
* Use to get assigned menu of user.
* @param mixed $userId
* @param integer $root
* @param \Closure $callback use to reformat output.
* callback should have format like
*
* ```
* function ($menu) {
* return [
* 'label' => $menu['name'],
* 'url' => [$menu['route']],
* 'options' => $data,
* 'items' => $menu['children']
* ]
* ]
* }
* ```
* @param boolean $refresh
* @return array
*/
public static function getAssignedMenu($userId, $root = null, $callback = null, $refresh = false)
{
$config = Configs::instance();
/* @var $manager \yii\rbac\BaseManager */
$manager = Yii::$app->getAuthManager();
$menus = Menu::find()->asArray()->indexBy('id')->all();
$key = [__METHOD__, $userId, $manager->defaultRoles];
$cache = $config->cache;
if ($refresh || $cache === null || ($assigned = $cache->get($key)) === false) {
$routes = $filter1 = $filter2 = [];
if ($userId !== null) {
foreach ($manager->getPermissionsByUser($userId) as $name => $value) {
if ($name[0] === '/') {
if (substr($name, -2) === '/*') {
$name = substr($name, 0, -1);
}
$routes[] = $name;
}
}
}
foreach ($manager->defaultRoles as $role) {
foreach ($manager->getPermissionsByRole($role) as $name => $value) {
if ($name[0] === '/') {
if (substr($name, -2) === '/*') {
$name = substr($name, 0, -1);
}
$routes[] = $name;
}
}
}
$routes = array_unique($routes);
sort($routes);
$prefix = '\\';
foreach ($routes as $route) {
if (strpos($route, $prefix) !== 0) {
if (substr($route, -1) === '/') {
$prefix = $route;
$filter1[] = $route . '%';
} else {
$filter2[] = $route;
}
}
}
$assigned = [];
$query = Menu::find()->select(['id'])->asArray();
if (count($filter2)) {
$assigned = $query->where(['route' => $filter2])->column();
}
if (count($filter1)) {
$query->where('route like :filter');
foreach ($filter1 as $filter) {
$assigned = array_merge($assigned, $query->params([':filter' => $filter])->column());
}
}
$assigned = static::requiredParent($assigned, $menus);
if ($cache !== null) {
$cache->set($key, $assigned, $config->cacheDuration, new TagDependency(['tags' => Configs::CACHE_TAG]));
}
}
$key = [__METHOD__, $assigned, $root];
if ($refresh || $callback !== null || $cache === null || ($result = $cache->get($key)) === false) {
$result = static::normalizeMenu($assigned, $menus, $callback, $root);
if ($cache !== null && $callback === null) {
$cache->set($key, $result, $config->cacheDuration, new TagDependency(['tags' => Configs::CACHE_TAG]));
}
}
return $result;
}
/**
* Core controller of moduls.
* @return array
*/
protected function getCoreItems()
{
$config = components\Configs::instance();
return ['assigment' => ['class' => 'mdm\\admin\\items\\AssigmentController'], 'role' => ['class' => 'mdm\\admin\\items\\RoleController'], 'permission' => ['class' => 'mdm\\admin\\items\\PermissionController'], 'route' => ['class' => 'mdm\\admin\\items\\RouteController'], 'rule' => ['class' => 'mdm\\admin\\items\\RuleController'], 'menu' => ['class' => 'mdm\\admin\\items\\MenuController', 'visible' => $config->db !== null && $config->db->schema->getTableSchema($config->menuTable) !== null]];
}
public function safeDown()
{
$this->dropTable(Configs::instance()->menuTable);
}
public static function getDb()
{
return Configs::userDb();
}
/**
* Ivalidate cache
*/
public static function invalidate()
{
if (Configs::cache() !== null) {
TagDependency::invalidate(Configs::cache(), self::CACHE_TAG);
}
}
<?php
use yii\helpers\Html;
use yii\grid\GridView;
use mdm\admin\components\RouteRule;
use mdm\admin\components\Configs;
/* @var $this yii\web\View */
/* @var $dataProvider yii\data\ActiveDataProvider */
/* @var $searchModel mdm\admin\models\searchs\AuthItem */
/* @var $context mdm\admin\components\ItemController */
$context = $this->context;
$labels = $context->labels();
$this->title = Yii::t('rbac-admin', $labels['Items']);
$this->params['breadcrumbs'][] = $this->title;
$rules = array_keys(Configs::authManager()->getRules());
$rules = array_combine($rules, $rules);
unset($rules[RouteRule::RULE_NAME]);
?>
<div class="role-index">
<h1><?php
echo Html::encode($this->title);
?>
</h1>
<p>
<?php
echo Html::a(Yii::t('rbac-admin', 'Create ' . $labels['Item']), ['create'], ['class' => 'btn btn-success']);
?>
</p>
<?php
echo GridView::widget(['dataProvider' => $dataProvider, 'filterModel' => $searchModel, 'columns' => [['class' => 'yii\\grid\\SerialColumn'], ['attribute' => 'name', 'label' => Yii::t('rbac-admin', 'Name')], ['attribute' => 'ruleName', 'label' => Yii::t('rbac-admin', 'Rule Name'), 'filter' => $rules], ['attribute' => 'description', 'label' => Yii::t('rbac-admin', 'Description')], ['class' => 'yii\\grid\\ActionColumn']]]);
?>
/**
* @inheritdoc
*/
public static function tableName()
{
return Configs::instance()->menuTable;
}
/**
* Finds the AuthItem model based on its primary key value.
* If the model is not found, a 404 HTTP exception will be thrown.
* @param string $id
* @return AuthItem the loaded model
* @throws NotFoundHttpException if the model cannot be found
*/
protected function findModel($id)
{
$auth = Configs::authManager();
$item = $this->type === Item::TYPE_ROLE ? $auth->getRole($id) : $auth->getPermission($id);
if ($item) {
return new AuthItem($item);
} else {
throw new NotFoundHttpException('The requested page does not exist.');
}
}
