vue-admin-template添加权限控制路由功能
vue-admin-template添加权限控制路由功能
vue-admin-template 是没有实现路由权限控制的,网上相关的资料也不少,直接照搬总是会各种各样的问题。所以最后还是研究了一下vue-element-admin的实现方式。
1、 变更@/router/index.js
首先,需要对@/router/index.js 路由文件进行改造,将原有的constantRoutes数组拆分成constantRoutes和asyncRoutes 两个数组,constantRoutes为静态路由表,所有登录用户都可以访问,asyncRoutes 为动态路由,在此数组里的元素通过配置meta中的roles字段设置角色要求
constantRoutes 略
export const asyncRoutes = [
{
path: '/tools',
component: Layout,
redirect: '/tools/QuestionBank',
alwaysShow: true,
name: 'tools',
meta: { title: '工具箱', icon: 'el-icon-goods', keepAlive: true },
children: [{
path: 'QuestionBank',
name: 'QuestionBank',
component: () => import('@/views/tools/QuestionBank'),
meta: { title: '题库查询', icon: 'el-icon-search', keepAlive: true,roles: ['admin'] }
},]
},
{
path: '/uiauto',
component: Layout,
redirect: '/uiauto/UiTestcases',
alwaysShow: true,
name: 'tools',
meta: { title: 'UI自动化', icon: 'el-icon-goods', keepAlive: true,roles: ['admin', 'dev'] },
children: [{
path: 'UiTestcases',
name: 'UiTestcases',
component: () => import('@/views/uiauto/UiTestcases'),
meta: { title: 'UI脚本维护', icon: 'el-icon-s-tools', keepAlive: true }
},]
},
// 404 page must be placed at the end !!!
{ path: '*', redirect: '/404', hidden: true }
];
2、添加@/store/modules/permission.js
在 @/store/modules/ 目录添加文件 permission.js 这个文件是直接从admin中复制过来的,注意要核对一下 asyncRoutes, constantRoutes 这两个名称是否一致
import { asyncRoutes, constantRoutes } from '@/router'
/**
* Use meta.role to determine if the current user has permission
* @param roles
* @param route
*/
function hasPermission(roles, route) {
if (route.meta && route.meta.roles) {
return roles.some(role => route.meta.roles.includes(role))
} else {
return true
}
}
/**
* Filter asynchronous routing tables by recursion
* @param routes asyncRoutes
* @param roles
*/
export function filterAsyncRoutes(routes, roles) {
const res = []
routes.forEach(route => {
const tmp = { ...route }
if (hasPermission(roles, tmp)) {
if (tmp.children) {
tmp.children = filterAsyncRoutes(tmp.children, roles)
}
res.push(tmp)
}
})
return res
}
const state = {
routes: [],
addRoutes: []
}
const mutations = {
SET_ROUTES: (state, routes) => {
state.addRoutes = routes
state.routes = constantRoutes.concat(routes)
}
}
const actions = {
generateRoutes({ commit }, roles) {
return new Promise(resolve => {
let accessedRoutes
if (roles.includes('admin')) {
accessedRoutes = asyncRoutes || []
} else {
accessedRoutes = filterAsyncRoutes(asyncRoutes, roles)
}
commit('SET_ROUTES', accessedRoutes)
resolve(accessedRoutes)
})
}
}
export default {
namespaced: true,
state,
mutations,
actions
}
3、改造数据库与实体
修改数据库表结构和其对应的服务端实体类,之前的user表是没有roles这个字段的,我们要把它加上,并且为现有的用户给一个角色的值,比如 admin 、 dev、guest 之类
4、变更@/store/modules/user.js
变更 @/store/modules/user.js 增加与roles相关的信息
注意这里的roles必须是array,而库中存储的是一个字符串,所以从服务端获取后需要转换一下
import { login, logout, getInfo } from '@/api/user'
import { getToken, setToken, removeToken } from '@/utils/auth'
import router, { resetRouter } from '@/router'
const getDefaultState = () => {
return {
token: getToken(),
name: '',
avatar: '',
roles: []
}
}
const state = getDefaultState()
const mutations = {
RESET_STATE: (state) => {
Object.assign(state, getDefaultState())
},
SET_TOKEN: (state, token) => {
state.token = token
},
SET_NAME: (state, name) => {
state.name = name
},
SET_AVATAR: (state, avatar) => {
state.avatar = avatar
},
SET_ROLES: (state, roles) => {
state.roles = roles
}
}
const actions = {
// user login
login({ commit }, userInfo) {
const { username, password } = userInfo
return new Promise((resolve, reject) => {
login({ username: username.trim(), password: password }).then(response => {
// const { data } = response
// console.log(response)
commit('SET_TOKEN', response.data)
setToken(response.data)
resolve()
}).catch(error => {
reject(error)
})
})
},
// get user info
getInfo({ commit, state }) {
return new Promise((resolve, reject) => {
getInfo(state.token).then(response => {
const { data } = response
if (!data) {
reject('Verification failed, please Login again.')
}
// const { roles, name, avatar } = data
const name = data.username
const avatar = data.avatar
//这里没有用原有的赋值方式,因为一是字段名不完全对应,二是roles必须是数组,而库里存的是个字符串 所以这里需要用split转一下
const roles = data.roles.split(',')
// roles must be a non-empty array
if (!roles || roles.length <= 0) {
reject('getInfo: roles must be a non-null array!')
}
commit('SET_ROLES', roles)
commit('SET_NAME', name)
commit('SET_AVATAR', avatar)
resolve(data)
}).catch(error => {
reject(error)
})
})
},
// user logout
logout({ commit, state }) {
return new Promise((resolve, reject) => {
logout(state.token).then(() => {
removeToken() // must remove token first
resetRouter()
commit('RESET_STATE')
commit('SET_ROLES', [])
//logut时这里会报错,暂时先注释掉
// dispatch('tagsView/delAllViews', null, { root: true })
resolve()
}).catch(error => {
reject(error)
})
})
},
// remove token
resetToken({ commit }) {
return new Promise(resolve => {
removeToken() // must remove token first
commit('RESET_STATE')
commit('SET_ROLES', [])
resolve()
})
},
// dynamically modify permissions
//变更角色时动态更新路由表,这个也先复制过来
async changeRoles({ commit, dispatch }, role) {
const token = role + '-token'
commit('SET_TOKEN', token)
setToken(token)
const { roles } = await dispatch('getInfo')
resetRouter()
// generate accessible routes map based on roles
const accessRoutes = await dispatch('permission/generateRoutes', roles, { root: true })
// dynamically add accessible routes
router.addRoutes(accessRoutes)
// reset visited views and cached views
dispatch('tagsView/delAllViews', null, { root: true })
}
}
export default {
namespaced: true,
state,
mutations,
actions
}
5、变更 getter.js 和 index.js
diff
const getters = {
sidebar: state => state.app.sidebar,
device: state => state.app.device,
token: state => state.user.token,
avatar: state => state.user.avatar,
name: state => state.user.name,
roles: state => state.user.roles,
permission_routers: state => state.permission.routes, //路由列表
}
export default getters
diff
这里参考了admin中的方法,使用动态方式来加载,这样以后再增加模块就不需要维护index了
import Vue from 'vue'
import Vuex from 'vuex'
import getters from './getters'
Vue.use(Vuex)
// https://webpack.js.org/guides/dependency-management/#requirecontext
const modulesFiles = require.context('./modules', true, /\.js$/)
// you do not need `import app from './modules/app'`
// it will auto require all vuex module from modules file
const modules = modulesFiles.keys().reduce((modules, modulePath) => {
// set './app.js' => 'app'
const moduleName = modulePath.replace(/^\.\/(.*)\.\w+$/, '$1')
const value = modulesFiles(modulePath)
modules[moduleName] = value.default
return modules
}, {})
const store = new Vuex.Store({
modules,
getters
})
export default store
6、变更 @/permission.js
diff
全文
import router from './router'
import store from './store'
import { Message } from 'element-ui'
import NProgress from 'nprogress' // progress bar
import 'nprogress/nprogress.css' // progress bar style
import { getToken } from '@/utils/auth' // get token from cookie
import getPageTitle from '@/utils/get-page-title'
NProgress.configure({ showSpinner: false }) // NProgress Configuration
const whiteList = ['/login', '/auth-redirect'] // no redirect whitelist
router.beforeEach(async(to, from, next) => {
// start progress bar
NProgress.start()
// set page title
document.title = getPageTitle(to.meta.title)
// determine whether the user has logged in
const hasToken = getToken()
if (hasToken) {
if (to.path === '/login') {
// if is logged in, redirect to the home page
next({ path: '/' })
NProgress.done() // hack: https://github.com/PanJiaChen/vue-element-admin/pull/2939
} else {
// determine whether the user has obtained his permission roles through getInfo
const hasRoles = store.getters.roles && store.getters.roles.length > 0
if (hasRoles) {
next()
} else {
try {
// get user info
// note: roles must be a object array! such as: ['admin'] or ,['developer','editor']
let data = await store.dispatch('user/getInfo')
//这里也要把roles由字符串转为数组
let roles = data.roles.split(',')
// generate accessible routes map based on roles
const accessRoutes = await store.dispatch('permission/generateRoutes', roles)
// dynamically add accessible routes
router.addRoutes(accessRoutes)
// hack method to ensure that addRoutes is complete
// set the replace: true, so the navigation will not leave a history record
next({ ...to, replace: true })
} catch (error) {
// remove token and go to login page to re-login
await store.dispatch('user/resetToken')
//这里会报个参数类型异常,所以将参数 由error 改为了 error.message
Message.error(error.message || 'Has Error')
next(`/login?redirect=${to.path}`)
NProgress.done()
}
}
}
} else {
/* has no token*/
if (whiteList.indexOf(to.path) !== -1) {
// in the free login whitelist, go directly
next()
} else {
// other pages that do not have permission to access are redirected to the login page.
next(`/login?redirect=${to.path}`)
NProgress.done()
}
}
})
router.afterEach(() => {
// finish progress bar
NProgress.done()
})
7、变更 @/layout/components/Sidebar/index.vue
diff
<template>
<div :class="{'has-logo':showLogo}">
<logo v-if="showLogo" :collapse="isCollapse" />
<el-scrollbar wrap-class="scrollbar-wrapper">
<el-menu
:default-active="activeMenu"
:collapse="isCollapse"
:background-color="variables.menuBg"
:text-color="variables.menuText"
:unique-opened="false"
:active-text-color="variables.menuActiveText"
:collapse-transition="false"
mode="vertical"
>
<sidebar-item v-for="route in permission_routers" :key="route.path" :item="route" :base-path="route.path" />
</el-menu>
</el-scrollbar>
</div>
</template>
<script>
import { mapGetters } from 'vuex'
import Logo from './Logo'
import SidebarItem from './SidebarItem'
import variables from '@/styles/variables.scss'
export default {
components: { SidebarItem, Logo },
computed: {
...mapGetters([
'permission_routers',
'sidebar',
]),
activeMenu() {
const route = this.$route
const { meta, path } = route
// if set path, the sidebar will highlight the path you set
if (meta.activeMenu) {
return meta.activeMenu
}
return path
},
showLogo() {
return this.$store.state.settings.sidebarLogo
},
variables() {
return variables
},
isCollapse() {
return !this.sidebar.opened
}
},
}
</script>
3818
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
