Главная Обзор Помощь
Регистрация Вход
Pp_study
/
pp_cms
Следить 2
В избранное 0
Ответвить 0
Файлы Обсуждения 0 Запросы на слияние 0 Вики
Дерево: 951d7f54c0
Ветки Метки
pp_cms
/
webApp
/
console
/
controllers
/
helpers
/
BackendAuth.php

BackendAuth.php 10 KB
История Исходник

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295 
  1. <?php
    2. 

  2. /**
    3. 

  3.  * Author: lf
    4. 

  4.  * Blog: https://blog.feehi.com
    5. 

  5.  * Email: job@feehi.com
    6. 

  6.  * Created at: 2018-11-26 12:43
    7. 

  7.  */
    8. 

  8. namespace console\controllers\helpers;
    9. 

  9. 

  10. use Yii;
    11. 

  11. use ReflectionClass;
    12. 

  12. use yii\base\Exception;
    13. 

  13. use yii\helpers\FileHelper;
    14. 

  14. 

  15. class BackendAuth extends \yii\base\BaseObject
    16. 

  16. {
    17. 

  17.     /**
    18. 

  18.      * @var string Directory where you want to generate RBAC Permission rules, often is backend/controllers
    19. 

  19.      */
    20. 

  20.     private $_controllerPath = "@backend/controllers";
    21. 

  21. 

  22.     /**
    23. 

  23.      * @var array a list of $generateRBACControllerPath directory that to need generate controllers
    24. 

  24.      */
    25. 

  25.     private $_noNeedRBACControllers = ['AssetsController', 'SiteController'];
    26. 

  26. 

  27.     /**
    28. 

  28.      * @var array a list of none generate RBAc items(execute result, collected the annotations of controller::actions() or controller::actionX())
    29. 

  29.      */
    30. 

  30.     private $_noNeedRBACRoutes = [];
    31. 

  31. 

  32.     private $_unPropertyDocCommentsRoutes = [];
    33. 

  33. 

  34.     private $_authItems = [];
    35. 

  35. 

  36.     private $_dbAuthItems = null;
    37. 

  37. 

  38.     public $error = null;
    39. 

  39. 

  40.     public function init()
    41. 

  41.     {
    42. 

  42.         parent::init();
    43. 

  43.         $this->parseAuthItems();
    44. 

  44.     }
    45. 

  45. 

  46. 

  47.     public function setControllerPath($controllerPath)
    48. 

  48.     {
    49. 

  49.         $this->_controllerPath = $controllerPath;
    50. 

  50.     }
    51. 

  51. 

  52.     public function getControllerPath()
    53. 

  53.     {
    54. 

  54.         return Yii::getAlias($this->_controllerPath);
    55. 

  55.     }
    56. 

  56. 

  57.     public function setNoNeedRBACControllers(array $noNeedRbacControllers)
    58. 

  58.     {
    59. 

  59.         $this->_noNeedRBACControllers = $noNeedRbacControllers;
    60. 

  60.     }
    61. 

  61. 

  62.     public function getNoNeedRBACControllers()
    63. 

  63.     {
    64. 

  64.         return $this->_noNeedRBACControllers;
    65. 

  65.     }
    66. 

  66. 

  67.     public function setNoNeedRBACRoutes($routes)
    68. 

  68.     {
    69. 

  69.         $this->_noNeedRBACRoutes = $routes;
    70. 

  70.     }
    71. 

  71. 

  72.     public function getNoNeedRBACRoutes()
    73. 

  73.     {
    74. 

  74.         return $this->_noNeedRBACRoutes;
    75. 

  75.     }
    76. 

  76. 

  77.     public function getAuthItems()
    78. 

  78.     {
    79. 

  79.         return $this->_authItems;
    80. 

  80.     }
    81. 

  81. 

  82.     public function getDbAuthItems()
    83. 

  83.     {
    84. 

  84.         if( $this->_dbAuthItems === null ) {
    85. 

  85.             $dbAuthItems = Yii::$app->getAuthManager()->getPermissions();
    86. 

  86.             $this->_dbAuthItems = $dbAuthItems;
    87. 

  87.         }
    88. 

  88.         return $this->_dbAuthItems;
    89. 

  89.     }
    90. 

  90. 

  91.     public function setError($error){
    92. 

  92.         $this->error = $error;
    93. 

  93.     }
    94. 

  94. 

  95.     public function getError()
    96. 

  96.     {
    97. 

  97.         return $this->error;
    98. 

  98.     }
    99. 

  99. 

  100.     public function parseControllerPartialUrl($subDirControllerName)
    101. 

  101.     {
    102. 

  102.         $subDirControllerName = explode('/', $subDirControllerName);
    103. 

  103.         $controllerName = str_replace('Controller', '', array_pop($subDirControllerName));
    104. 

  104.         $controllerTemp = lcfirst($controllerName);
    105. 

  105.         $controllerString = "";
    106. 

  106.         for ($i = 0; $i < strlen($controllerTemp); $i++) {
    107. 

  107. 

  108.             $str = ord($controllerTemp[$i]);
    109. 

  109.             if ($str > 64 && $str < 91) {
    110. 

  110.                 $controllerString .= '-' . strtolower($controllerTemp[$i]);
    111. 

  111.             } else {
    112. 

  112.                 $controllerString .= $controllerTemp[$i];
    113. 

  113.             }
    114. 

  114.         }
    115. 

  115. 

  116.         $subDirControllerName[] = $controllerString;
    117. 

  117. 

  118.         return implode('/', $subDirControllerName);
    119. 

  119.     }
    120. 

  120. 

  121.     public function getActionAuthItemsByDocComment($docComments)
    122. 

  122.     {
    123. 

  123.         if( strpos( $docComments, "@auth - item" ) !== false ){
    124. 

  124.             $temp = explode("@auth", $docComments)[1];
    125. 

  125.         }else if( strpos( $docComments, "@auth" ) !== false ){
    126. 

  126.             $temp = explode("@auth", $docComments)[1];
    127. 

  127.         }else{
    128. 

  128.             return false;
    129. 

  129.         }
    130. 

  130.         if( strpos($temp, '@') !== false ){
    131. 

  131.             $temp = explode('@', $temp)[0];
    132. 

  132.             $temp = trim($temp);
    133. 

  133.             $temp = trim($temp, "*");
    134. 

  134.             $temp = trim($temp);
    135. 

  135.         }else{
    136. 

  136.             $temp = explode('*/', $temp)[0];
    137. 

  137.             $temp = trim($temp);
    138. 

  138.         }
    139. 

  139.         $arr = explode("\n", $temp);
    140. 

  140.         $authItems = [];
    141. 

  141.         foreach ($arr as $s) {
    142. 

  142.             if (strpos($s, '- item') === false) {
    143. 

  143.                 continue;
    144. 

  144.             };
    145. 

  145.             $s = explode('- item', $s)[1];
    146. 

  146.             $s = trim($s);
    147. 

  147.             $row = explode(" ", $s);
    148. 

  148.             $authItem = [];
    149. 

  149.             foreach ($row as $v) {
    150. 

  150.                 $t = explode("=", $v);
    151. 

  151.                 if (isset($t[1])) {
    152. 

  152.                     $authItem[$t[0]] = $t[1];
    153. 

  153.                 }
    154. 

  154.             }
    155. 

  155.             if( isset( $authItem['rbac'] ) && ($authItem['rbac'] == 'false' || $authItem['rbac'] == 'no' ) ){
    156. 

  156.                 $authItems[] = $authItem;
    157. 

  157.             }else {
    158. 

  158.                 $httpMethods = [];
    159. 

  159.                 if( strpos($authItem['method'], ',') !== false ) {
    160. 

  160.                     $httpMethods = explode(',', $authItem['method']);
    161. 

  161.                     foreach ($httpMethods as $key => $httpMethod){
    162. 

  162.                         $httpMethod = trim($httpMethod);
    163. 

  163.                         $httpMethods[$key] = $this->filterAlphabetToLower($httpMethod);
    164. 

  164.                     }
    165. 

  165.                 }else{
    166. 

  166.                     $authItem['method'] = trim($authItem['method']);
    167. 

  167.                     $httpMethod = $this->filterAlphabetToLower($authItem['method']);
    168. 

  168.                     $httpMethods[] = $httpMethod;
    169. 

  169.                 }
    170. 

  170.                 $authItem['methods'] = $httpMethods;
    171. 

  171.                 unset($authItem['method']);
    172. 

  172.                 $authItems[] = $authItem;
    173. 

  173.             }
    174. 

  174.         }
    175. 

  175.         return $authItems;
    176. 

  176.     }
    177. 

  177. 

  178.     public function parseActionPartialUrl($actionName)
    179. 

  179.     {
    180. 

  180.         $actionTemp = lcfirst($actionName);
    181. 

  181.         $actionString = "";
    182. 

  182.         for ($i = 0; $i < strlen($actionTemp); $i++) {
    183. 

  183. 

  184.             $str = ord($actionTemp[$i]);
    185. 

  185.             if ($str > 64 && $str < 91) {
    186. 

  186.                 $actionString .= '-' . strtolower($actionTemp[$i]);
    187. 

  187.             } else {
    188. 

  188.                 $actionString .= $actionTemp[$i];
    189. 

  189.             }
    190. 

  190.         }
    191. 

  191.         return $actionString;
    192. 

  192.     }
    193. 

  193. 

  194.     public function parseAuthItems()
    195. 

  195.     {
    196. 

  196.         $controllerPath = $this->getControllerPath();
    197. 

  197. 

  198.         $files = [];
    199. 

  199.         foreach (FileHelper::findFiles($controllerPath) as $file) {
    200. 

  200.             $files[] = str_replace($controllerPath . DIRECTORY_SEPARATOR, '', $file);
    201. 

  201.         }
    202. 

  202. 

  203.         foreach($files as $file ) {
    204. 

  204.             if( !strpos($file, "Controller") ) continue;
    205. 

  205.             $subDirControllerName = str_replace('.php', '', $file);
    206. 

  206.             if (in_array($subDirControllerName, $this->getNoNeedRBACControllers())) {
    207. 

  207.                 Yii::info($subDirControllerName . "不受权限控制,跳过");
    208. 

  208.                 continue;
    209. 

  209.             }
    210. 

  210.             $class = new ReflectionClass("\\backend\\controllers\\" . str_replace('/', '\\', $subDirControllerName));
    211. 

  211.             $controllerPartialUrl = $this->parseControllerPartialUrl($subDirControllerName);
    212. 

  212.             $methods = $class->getMethods();
    213. 

  213.             foreach ($methods as $method) {
    214. 

  214.                 $actions = [];
    215. 

  215.                 $authItems = [];
    216. 

  216.                 $actionNum = 0;
    217. 

  217.                 if ($method->getName() === 'actions') {
    218. 

  218.                     $obj = $class->newInstanceArgs([1, 2]);
    219. 

  219.                     $actions = $obj->actions();
    220. 

  220.                     if( empty($actions) ) continue;
    221. 

  221.                     $authItems = $this->getActionAuthItemsByDocComment($method->getDocComment());
    222. 

  222.                     $actionNum = count($actions);
    223. 

  223.                 } else if (strpos($method->getName(), 'action') === 0) {
    224. 

  224.                     $action = str_replace('action', '', $method->getName());
    225. 

  225.                     $authItems = $this->getActionAuthItemsByDocComment($method->getDocComment());
    226. 

  226.                     $actions[$action] = $action;
    227. 

  227.                     $actionNum = 1;
    228. 

  228.                 }
    229. 

  229. 

  230.                 if (!is_array($authItems)) {
    231. 

  231.                     continue;
    232. 

  232.                 }
    233. 

  233. 

  234.                 if ( count($authItems) !== $actionNum ) {
    235. 

  235.                     $this->_unPropertyDocCommentsRoutes[] = $controllerPartialUrl;
    236. 

  236.                     $error = "$subDirControllerName::actions或actionX 注释和action数量不匹配 注释(doc comment)数量" . count($authItems) . " 方法(action method)数量" . count($actions) . "(actions or actionX doc comment not equal action method quantity)";
    237. 

  237.                     throw new Exception($error);
    238. 

  238.                 }
    239. 

  239.                 $j = 0;
    240. 

  240.                 foreach ($actions as $action => $none) {
    241. 

  241.                     $actionPartialUrl = $this->parseActionPartialUrl($action);
    242. 

  242.                     $url = '/' . $controllerPartialUrl . '/' . $actionPartialUrl;
    243. 

  243.                     if( isset( $authItems[$j]['rbac'] ) && ( in_array($authItems[$j]['rbac'], ['false', 'no']) ) ){
    244. 

  244.                         $this->_noNeedRBACRoutes[] = $url;
    245. 

  245.                         continue;
    246. 

  246.                     }
    247. 

  247. 

  248.                     foreach ($authItems[$j]['methods'] as $httpMethod) {
    249. 

  249.                         $httpMethod = strtoupper(trim($httpMethod));
    250. 

  250.                         $description = call_user_func(function()use($httpMethod, $authItems, $j){
    251. 

  251.                             if( isset($authItems[$j]['description-' . strtolower($httpMethod)]) ){
    252. 

  252.                                 return $authItems[$j]['description-' . strtolower($httpMethod)];
    253. 

  253.                             }
    254. 

  254.                             switch ($httpMethod){
    255. 

  255.                                 case 'GET':
    256. 

  256.                                     return $authItems[$j]['description'] . '(查看)';
    257. 

  257.                                 case 'POST':
    258. 

  258.                                     return $authItems[$j]['description'] . '(确定)';
    259. 

  259.                             }
    260. 

  260.                         });
    261. 

  261.                         $sort = call_user_func(function()use($httpMethod, $authItems, $j){
    262. 

  262.                             if( isset($authItems[$j]['sort-' . strtolower($httpMethod)]) ){
    263. 

  263.                                 return $authItems[$j]['sort-' . strtolower($httpMethod)];
    264. 

  264.                             }
    265. 

  265.                             $sort = isset( $authItems[$j]['sort'] ) ? $authItems[$j]['sort'] : 0;
    266. 

  266.                             return $sort;
    267. 

  267.                         });
    268. 

  268.                         $this->_authItems = array_merge($this->_authItems, [[
    269. 

  269.                             'name' => $url . ':' . $httpMethod,
    270. 

  270.                             'route' => $url,
    271. 

  271.                             'description' => $description,
    272. 

  272.                             'group' => $authItems[$j]['group'],
    273. 

  273.                             'category' => $authItems[$j]['category'],
    274. 

  274.                             'method' => $httpMethod,
    275. 

  275.                             'sort' => $sort,
    276. 

  276.                         ]]);
    277. 

  277.                     }
    278. 

  278.                     $j++;
    279. 

  279.                 }
    280. 

  280.             }
    281. 

  281.         }
    282. 

  282.     }
    283. 

  283. 

  284.     private function filterAlphabetToLower($str)
    285. 

  285.     {
    286. 

  286.         $alphabet = "";
    287. 

  287.         for ($i = 0; $i < strlen($str); $i++) {
    288. 

  288.             $n = ord($str[$i]);
    289. 

  289.             if ($n > 64 && $n < 123) {
    290. 

  290.                 $alphabet .= strtolower($str[$i]);
    291. 

  291.             }
    292. 

  292.         }
    293. 

  293.         return $alphabet;
    294. 

  294.     }
    295. 

  295. }
    296.