- 前言
权限管理是在项目中经常要使用到的模块,有着极其重要的功能。比较出名的权限框架,分别为 Shiro 和 Spring Security,两者各有优缺,这次我们不用任何权限框架来实现 RBAC 权限管理。
- RBAC 简介
RBAC (Role-Based Access Control) 基于角色的权限访问控制。
即用户拥有角色,角色拥有权限。具体关于 RBAC 的好处我就不再多说,如感兴趣请自行查询。
- 数据库设计
共有五张表,分别为用户表、角色表、权限表、用户-角色关系表、角色-权限关系表。其中用户表于角色表是多对多的关系,角色表于权限表也是多对多关系。具体每个字段的含义请查看相应的注释。
SET NAMES utf8mb4;
SET FOREIGN_KEY_CHECKS = 0;
– Table structure for permission
DROP TABLE IF EXISTS permission
;
CREATE TABLE permission
(
id
int(11) NOT NULL AUTO_INCREMENT,
name
varchar(20) CHARACTER SET utf8 COLLATE utf8_general_ci NULL DEFAULT NULL COMMENT ‘权限名称’,
description
varchar(50) CHARACTER SET utf8 COLLATE utf8_general_ci NULL DEFAULT NULL COMMENT ‘权限描述表’,
PRIMARY KEY (id
) USING BTREE
)
ENGINE = InnoDB CHARACTER SET = utf8 COLLATE = utf8_general_ci COMMENT = ‘权限表’ ROW_FORMAT = Dynamic;
– Table structure for role
DROP TABLE IF EXISTS role
;
CREATE TABLE role
(
id
int(11) NOT NULL AUTO_INCREMENT,
name
varchar(20) CHARACTER SET utf8 COLLATE utf8_general_ci NULL DEFAULT NULL COMMENT ‘权限名称’,
description
varchar(50) CHARACTER SET utf8 COLLATE utf8_general_ci NULL DEFAULT NULL COMMENT ‘权限描述’,
PRIMARY KEY (id
) USING BTREE
)
ENGINE = InnoDB CHARACTER SET = utf8 COLLATE = utf8_general_ci COMMENT = ‘角色表’ ROW_FORMAT = Dynamic;
– Table structure for role_premission
DROP TABLE IF EXISTS role_premission
;
CREATE TABLE role_premission
(
role_id
int(11) NULL DEFAULT NULL,
permission_id
int(11) NULL DEFAULT NULL,
INDEX role_premission_uid_fk
(role_id
) USING BTREE,
INDEX role_premission_pid_fk
(permission_id
) USING BTREE,
CONSTRAINT role_premission_pid_fk
FOREIGN KEY (permission_id
) REFERENCES permission
(id
) ON DELETE RESTRICT ON UPDATE RESTRICT,
CONSTRAINT role_premission_uid_fk
FOREIGN KEY (role_id
) REFERENCES role
(id
) ON DELETE RESTRICT ON UPDATE RESTRICT
) ENGINE = InnoDB CHARACTER SET = utf8 COLLATE = utf8_general_ci ROW_FORMAT = Dynamic;
– Table structure for user
DROP TABLE IF EXISTS user
;
CREATE TABLE user
(
id
int(11) NOT NULL AUTO_INCREMENT,
username
varchar(20) CHARACTER SET utf8 COLLATE utf8_general_ci NULL DEFAULT NULL COMMENT ‘用户名’,
password
varchar(50) CHARACTER SET utf8 COLLATE utf8_general_ci NULL DEFAULT NULL COMMENT ‘密码’,
PRIMARY KEY (id
) USING BTREE
) ENGINE = InnoDB CHARACTER SET = utf8 COLLATE = utf8_general_ci COMMENT = ‘用户表’ ROW_FORMAT = Dynamic;
– Table structure for user_role
DROP TABLE IF EXISTS user_role
;
CREATE TABLE user_role
(
user_id
int(11) NULL DEFAULT NULL,
role_id
int(11) NULL DEFAULT NULL,
INDEX user_role_uid_fk
(user_id
) USING BTREE,
INDEX user_role_rid_fk
(role_id
) USING BTREE,
CONSTRAINT user_role_rid_fk
FOREIGN KEY (role_id
) REFERENCES role
(id
) ON DELETE RESTRICT ON UPDATE RESTRI