vue-admin-template和vue-element-admin需要区别开,前者是“阉割版”没有实现权限控制,这里讲的动态路由的实现也是基于"阉割版"进行的。
【这里讲的动态路由实现是基于模拟数据,并非从后端真实接口获取的,不需要看的请自行跳过,后面会单独写一篇基于真实接口实现的动态路由】
首先Gitee上下载一份代码下来:https://gitee.com/panjiachen/vue-admin-template
npm install 后将代码在本地跑起来。
先看看在 src/router/index.js
import Vue from 'vue'
import Router from 'vue-router'
Vue.use(Router)
/* Layout */
import Layout from '@/layout'
export const constantRoutes = [
{
path: '/redirect',
component: Layout,
hidden: true,
children: [
{
path: '/redirect/:path(.*)',
component: () => import('@/views/redirect/index')
}
]
},
{
path: '/login',
component: () => import('@/views/login/index'),
hidden: true
},
{
path: '/auth-redirect',
component: () => import('@/views/login/auth-redirect'),
hidden: true
},
{
path: '/',
component: Layout,
redirect: '/dashboard',
children: [
{
path: 'dashboard',
component: () => import('@/views/dashboard/index'),
name: 'Dashboard',
meta: { title: '工作台', icon: 'dashboard', affix: false }
}
]
},
]
/**
* asyncRoutes
* 只有拥有权限的用户,才能显示的路由表
*/
export const asyncRoutes = [
{
path: '/permission',
component: Layout,
redirect: '/permission/page',
alwaysShow: true, // will always show the root menu
name: 'Permission',
meta: {
title: '权限',
icon: 'lock',
roles: ['admin', 'editor'] // you can set roles in root nav
},
children: [
{
path: 'page',
component: () => import('@/views/permission/page'),
name: 'PagePermission',
meta: {
title: '权限页面',
roles: ['admin'] // or you can only set roles in sub nav
}
},
{
path: 'directive',
component: () => import('@/views/permission/directive'),
name: 'DirectivePermission',
meta: {
title: '权限控制'
// if do not set roles, means: this page does not require permission
}
},
{
path: 'role',
component: () => import('@/views/permission/role'),
name: 'RolePermission',
meta: {
title: '角色权限',
roles: ['admin']
}
}
]
}
]
const createRouter = () => new Router({
// mode: 'history', // require service support
scrollBehavior: () => ({ y: 0 }),
routes: constantRoutes
})
const router = createRouter()
// Detail see: https://github.com/vuejs/vue-router/issues/1234#issuecomment-357941465
export function resetRouter() {
const newRouter = createRouter()
router.matcher = newRouter.matcher // reset router
}
export default router
上面 asyncRoutes 里面显示的是有权限才可以看到的路由。如果你项目中没有permission下的这些文件,需要自己先创建这些文件。
接下来看看根目录下permission.js文件中代码
import router from './router'
import store from './store'
import { Message } from 'element-ui'
import NProgress from 'nprogress'
import 'nprogress/nprogress.css'
import { getToken } from '@/utils/auth'
import getPageTitle from '@/utils/get-page-title'
NProgress.configure({ showSpinner: false })
const whiteList = ['/login']
router.beforeEach(async(to, from, next) => {
NProgress.start()
document.title = getPageTitle(to.meta.title)
const hasToken = getToken()
if (hasToken) {
if (to.path === '/login') {
next({ path: '/' })
NProgress.done()
} else {
const hasRoles = store.getters.roles && store.getters.roles.length > 0
if (hasRoles) {
next()
} else {
try {
// 获取roles
const { roles } = await store.dispatch('user/getInfo')
// 获取通过权限的路由
const accessRoutes = await store.dispatch('permission/generateRoutes', roles)
// 更新路由
router.options.routes = store.getters.permission_routes
router.addRoutes(accessRoutes)
next({ ...to, replace: true })
} catch (error) {
await store.dispatch('user/resetToken')
Message.error(error || 'Has Error')
next(`/login?redirect=${to.path}`)
NProgress.done()
}
}
}
} else {
if (whiteList.indexOf(to.path) !== -1) {
next()
} else {
next(`/login?redirect=${to.path}`)
NProgress.done()
}
}
})
router.afterEach(() => {
NProgress.done()
})
关键代码是 获取roles , 通过roles筛选出路由,最后更新路由。
有人会问这里roles 是从哪里来。在这之前需要将 roles 和 introduction 存到vuex中,也就是在项目的store/modules/user.js。然后再在这里再取出来
store/modules/user.js
import { login, logout, getInfo } from '@/api/user'
import { getToken, setToken, removeToken } from '@/utils/auth'
import { resetRouter } from '@/router'
const getDefaultState = () => {
return {
token: getToken(),
name: '',
avatar: '',
roles: [],
introduction: ''
}
}
const state = getDefaultState()
const mutations = {
RESET_STATE: (state) => {
Object.assign(state, getDefaultState())
},
SET_TOKEN: (state, token) => {
state.token = token
},
SET_NAME: (state, name) => {
state.name = name
},
SET_AVATAR: (state, avatar) => {
state.avatar = avatar
},
SET_ROLES: (state, roles) => {
state.roles = roles
},
SET_INTRODUCTION: (state, introduction) => {
state.introduction = introduction
}
}
const actions = {
// user login
login({ commit }, userInfo) {
const { username, password } = userInfo
return new Promise((resolve, reject) => {
login({ username: username.trim(), password: password }).then(response => {
const { data } = response
commit('SET_TOKEN', data.token)
setToken(data.token)
resolve()
}).catch(error => {
reject(error)
})
})
},
// get user info
getInfo({ commit, state }) {
return new Promise((resolve, reject) => {
getInfo(state.token).then(response => {
const { data } = response
if (!data) {
return reject('Verification failed, please Login again.')
}
const { name, avatar, roles, introduction } = data
if(!roles || roles.lengty <= 0) {
reject('获取role失败')
}
commit('SET_ROLES', roles)
commit('SET_INTRODUCTION', introduction)
commit('SET_NAME', name)
commit('SET_AVATAR', avatar)
resolve(data)
}).catch(error => {
reject(error)
})
})
},
// user logout`在这里插入代码片`
logout({ commit, state }) {
return new Promise((resolve, reject) => {
logout(state.token).then(() => {
removeToken() // must remove token first
resetRouter()
commit('RESET_STATE')
resolve()
}).catch(error => {
reject(error)
})
})
},
// remove token
resetToken({ commit }) {
return new Promise(resolve => {
removeToken() // must remove token first
commit('RESET_STATE')
resolve()
})
}
}
export default {
namespaced: true,
state,
mutations,
actions
}
可能有人要问获取通过权限的路由在哪,因为我们用的是基本“阉割版”的二次开发,没有实现权限控制,所以需要我们手动将vue-element-admin里的store/modules/permission.js文件完整的复制过来。同时在“阉割版”中相同位置新建该文件copy过来就行。
import { asyncRoutes, constantRoutes } from '@/router'
/**
* Use meta.role to determine if the current user has permission
* @param roles
* @param route
*/
function hasPermission(roles, route) {
if (route.meta && route.meta.roles) {
return roles.some(role => route.meta.roles.includes(role))
} else {
return true
}
}
/**
* Filter asynchronous routing tables by recursion
* @param routes asyncRoutes
* @param roles
*/
export function filterAsyncRoutes(routes, roles) {
const res = []
routes.forEach(route => {
const tmp = { ...route }
if (hasPermission(roles, tmp)) {
if (tmp.children) {
tmp.children = filterAsyncRoutes(tmp.children, roles)
}
res.push(tmp)
}
})
return res
}
const state = {
routes: [],
addRoutes: []
}
const mutations = {
SET_ROUTES: (state, routes) => {
state.routes = constantRoutes.concat(routes)
}
}
const actions = {
generateRoutes({ commit }, roles) {
return new Promise(resolve => {
// 定义一个变量,用来存放可以访问的路由表
let accessedRoutes
// 判断当前用户是否包含admin
if (roles.includes('admin')) {
// 如果包含就可以访问所有路由
// 实现动态路由的思路关键点在这里,将ansyncRoutes改造成从数据库中获取
accessedRoutes = asyncRoutes || []
} else {
// 否则根据角色过滤掉不能访问的路由表
accessedRoutes = filterAsyncRoutes(asyncRoutes, roles)
}
// commit
commit('SET_ROUTES', accessedRoutes)
// 返回
resolve(accessedRoutes)
})
}
}
export default {
namespaced: true,
state,
mutations,
actions
}
这样复制过来还没完,需要在store/index.js中引入permission,并且在getters.js文件中注册才生效
store/index.js
import Vue from 'vue'
import Vuex from 'vuex'
import getters from './getters'
import app from './modules/app'
import settings from './modules/settings'
import user from './modules/user'
import permission from './modules/permission'
Vue.use(Vuex)
const store = new Vuex.Store({
modules: {
app,
settings,
user,
permission
},
getters
})
export default store
store/getters.js
const getters = {
sidebar: state => state.app.sidebar,
device: state => state.app.device,
token: state => state.user.token,
avatar: state => state.user.avatar,
name: state => state.user.name,
permission_routes: state => state.permission.routes
}
export default getters
这样就完成!!!
整个思路是围绕着src/permission中的四行代码进行了,
第一行:
const { roles } = await store.dispatch('user/getInfo')
第二行:
const accessRoutes = await store.dispatch('permission/generateRoutes', roles)
第三行:
router.options.routes = store.getters.permission_routes
第四行:
router.addRoutes(accessRoutes)
理解了着四行代码,整个逻辑也就理通了。