/** * 取得当前登录的用户的权限角色对应表中的信息。 * * @param object $userObj * @param int $userOrGroup * @access public * @return array|null */ public function getUserAccessPermission($userObj, $userOrGroup = false) { $permission = new Permission(); $access = new Access(); //如果是超级管理员或者创始人登陆,那么返回所有的权限 if ($userObj->group_id == self::ADMIN_ROLE_ID or $userObj->id == self::ADMIN_ID) { return $permission->getAllAccessPermission(); } //如果需要对比用户和用户组的权限或者返回用户的权限 if ($userOrGroup == self::AP_USER or !$userOrGroup) { $userAccessPermissionInfo = $access->getUserAccessPermission($userObj->id); } //如果用户的权限数据为空或者指定了需要查询的权限的类型为用户组,或者需要对比用户和用户组的权限 if ($userOrGroup == self::AP_GROUP or !$userAccessPermissionInfo or !$userOrGroup) { $groupAccessPermissionInfo = $access->getGroupAccessPermission($userObj->group_id); } //根据条件返回权限信息,注意的是用户的权限会覆盖用户组的权限 return $userOrGroup == self::AP_USER ? $userAccessPermissionInfo : ($userOrGroup == self::AP_GROUP ? $groupAccessPermissionInfo : ($userAccessPermissionInfo ? $userAccessPermissionInfo : $groupAccessPermissionInfo)); }
/** * 编辑权限功能 * * @access public */ public function edit(PermissionModel $permissionModel) { if (Request::method() == 'POST') { return $this->updatePermission(); } Session::flashInput(['http_referer' => Session::getOldInput('http_referer')]); $id = Request::input('id'); $permissionId = url_param_decode($id); if (!$permissionId or !is_numeric($permissionId)) { return Js::error(Lang::get('common.illegal_operation'), true); } $list = (array) Tree::genTree($permissionModel->getAllAccessPermission()); $permissionInfo = $permissionModel->getOnePermissionById(intval($permissionId)); if (empty($permissionInfo)) { return Js::error(Lang::get('acl.acl_not_found'), true); } $select = Tree::dropDownSelect($list, $permissionInfo['pid']); $formUrl = route('foundation.acl.edit'); return view('admin.acl.add', compact('select', 'permissionInfo', 'formUrl', 'id')); }