EasyUi之权限划分

针对于上一个easyui界面加权限

链接：

https://blog.csdn.net/weixin_45174537/article/details/93982608

1.user与menu是一对多的关系！

user
zhangsan
lisi

UserMenu
001 zhangsan
001	lisi
......

menu
001	zhangsan
002	zhangsan
003
004

弊端：一个菜单不能对应多个用户！

2.思考：我们想一个用户对应多个菜单
然后一个菜单可以对应多个用户
其实这就是user与menu的多对多的关系

思路：
1、菜单不同的原因在于，利用不同menuid进行查询，原本默认查询的是所有菜单，是通过-1去查的；
2、menuid由来：是登录用户id查询中间表数据所得来的

创建dao

MenuDao（继承 JsonBaseDao）

package com.caoguangli.dao;

import java.sql.SQLException;
import java.util.ArrayList;
import java.util.HashMap;
import java.util.List;
import java.util.Map;

import com.caoguangli.entity.TreeNode;
import com.caoguangli.util.JsonBaseDao;
import com.caoguangli.util.JsonUtils;
import com.caoguangli.util.PageBean;
import com.caoguangli.util.StringUtils;

public class MenuDao extends JsonBaseDao {

	/**
	 * 给前台返回tree_data1.json的字符串
	 * @param paMap   从前台jsp传递过来的参数集合
	 * @param pageBean
	 * @return
	 * @throws SQLException 
	 * @throws IllegalAccessException 
	 * @throws InstantiationException 
	 */
	
	public List<TreeNode> listTreeNode(Map<String, String[]> paMap,PageBean pageBean) throws InstantiationException, IllegalAccessException, SQLException{
		List<Map<String, Object>> listMap = this.listMapAuth(paMap, pageBean);
		List<TreeNode> listTreeNode = new ArrayList<>();
		this.listMapToListTreeNode(listMap, listTreeNode);
		
		return listTreeNode;
	}
	
	/**
	 * [{'menuId':001,'menuName':'学生管理'},{{'menuId':001,'menuName':'后勤管理'}}]
	 * @param paMap
	 * @param pageBean
	 * @return
	 * @throws InstantiationException
	 * @throws IllegalAccessException
	 * @throws SQLException
	 */
	public List<Map<String, Object>> listMap(Map<String, String[]> paMap,PageBean pageBean) throws InstantiationException, IllegalAccessException, SQLException{
		String sql = "select * from t_easyui_menu where true";
		String menuId = JsonUtils.getParamVal(paMap, "Menuid");
		if(StringUtils.isNotBlank(menuId)) {
			sql += " and parentid="+menuId;
		}else {
			sql += " and parentid=-1";
		}
//		这里面存放的是数据库中的菜单信息
		List<Map<String, Object>> listMap = super.executeQuery(sql, pageBean);
		return listMap;
	}
	
	public List<Map<String, Object>> listMapAuth(Map<String, String[]> paMap,PageBean pageBean) throws InstantiationException, IllegalAccessException, SQLException{
		String sql = "select * from t_easyui_menu where true";
		String menuId = JsonUtils.getParamVal(paMap, "Menuid");
//		为什么将parentid改成menuid？
//		原因在于之前的方法，只能查询当前节点的所有子节点集合，不能将当前节点给查询出来
//		002 ---> 0020001,  002002,  002003.....
//		002,  0020001,  002002,  002003.....
		if(StringUtils.isNotBlank(menuId)) {
			sql += " and menuId in ("+menuId+")";
		}else {
			sql += " and menuId=000";
		}
//		这里面存放的是数据库中的菜单信息
		List<Map<String, Object>> listMap = super.executeQuery(sql, pageBean);
		return listMap;
	}
	/**
	 * {'menuId':001,'menuName':'学生管理'}
	 * --->
	 * {id:....,text:....}
	 * @param map
	 * @param treeNode
	 * @throws SQLException 
	 * @throws IllegalAccessException 
	 * @throws InstantiationException 
	 */
	private void mapToTreeNode(Map<String, Object> map, TreeNode treeNode) throws InstantiationException, IllegalAccessException, SQLException {
		treeNode.setId(map.get("Menuid")+"");
		treeNode.setText(map.get("Menuname")+"");
		treeNode.setAttributes(map);
//		将子节点添加到父节点当中，建立数据之间的父子关系
//		treeNode.setChildren(children);
		Map<String, String[]> childrenMap = new HashMap<>();
		childrenMap.put("Menuid", new String[] {treeNode.getId()});
		List<Map<String, Object>> listMap = this.listMap(childrenMap, null);
		List<TreeNode> listTreeNode = new ArrayList<>();
		this.listMapToListTreeNode(listMap, listTreeNode);
		treeNode.setChildren(listTreeNode);
	}
	/**
	 * [{'menuId':001,'menuName':'学生管理'},{{'menuId':001,'menuName':'后勤管理'}}]
	 * -->
	 * tree_data1.json
	 * @param listMap
	 * @param listTreeNode
	 * @throws SQLException 
	 * @throws IllegalAccessException 
	 * @throws InstantiationException 
	 */
   private void listMapToListTreeNode(List<Map<String, Object>> listMap, List<TreeNode> listTreeNode) throws InstantiationException, IllegalAccessException, SQLException {
		TreeNode treeNode = null;
		for (Map<String, Object> map : listMap) {
			treeNode = new TreeNode();
			mapToTreeNode(map, treeNode);
			listTreeNode.add(treeNode);
		}
	}
}

userDao（继承 JsonBaseDao）

package com.caoguangli.dao;

import java.sql.SQLException;
import java.util.List;
import java.util.Map;

import com.caoguangli.util.JsonBaseDao;
import com.caoguangli.util.JsonUtils;
import com.caoguangli.util.PageBean;
import com.caoguangli.util.StringUtils;

public class userDao extends JsonBaseDao {

	/**
	 * 用户登录或者查询用户分页信息的 公共方法
	 * @param paMap
	 * @param pageBean
	 * @return
	 * @throws InstantiationException
	 * @throws IllegalAccessException
	 * @throws SQLException
	 */
	public List<Map<String, Object>> list(Map<String, String[]> paMap,PageBean pageBean) throws InstantiationException, IllegalAccessException, SQLException{
		String sql = "select * from t_easyui_user_version2 where true ";
		String uid = JsonUtils.getParamVal(paMap, "uid");
		String upwd = JsonUtils.getParamVal(paMap, "upwd");
		if(StringUtils.isNotBlank(uid)) {
			sql +=" and uid="+uid;
		}
		if(StringUtils.isNotBlank(uid)) {
			sql +=" and upwd="+upwd;
		}
		return super.executeQuery(sql, pageBean);
		
	}
	
	/**
	 * 根据当前用户登录的id去查询对应的所有菜单
	 * @param paMap
	 * @param pageBean
	 * @return
	 * @throws InstantiationException
	 * @throws IllegalAccessException
	 * @throws SQLException
	 */
	public List<Map<String, Object>> getMenuByUid(Map<String, String[]> paMap,PageBean pageBean) throws InstantiationException, IllegalAccessException, SQLException{
		String sql = "select * from t_easyui_usermenu where true";
		String uid = JsonUtils.getParamVal(paMap, "uid");
		if(StringUtils.isNotBlank(uid)) {
			sql +=" and uid="+uid;
		}
		return super.executeQuery(sql, pageBean);
	}
}

userAction

public class UserAction extends ActionSupport {
	private UserDao userDao = new UserDao();
	
	/**
	 * 登录成功后跳转index.jsp
	 * @param req
	 * @param resp
	 * @return
	 */
	public String login(HttpServletRequest req,HttpServletResponse resp) {
//		系统中是否有当前用户
		try {
			Map<String, Object> map = null;
			try {
				map = this.userDao.list(req.getParameterMap(), null).get(0);
			} catch (Exception e) {
				req.setAttribute("msg", "用户不存在");
				return "login";
			}
//		有
//		查询用户菜单中间表，获取对应的menuid的集合
			if(map != null && map.size() > 0) {
//				[{Menuid:002,...},{Menuid:003}]
				StringBuilder sb = new StringBuilder();
				List<Map<String, Object>> menuIdArr = this.userDao.getMenuByUid(req.getParameterMap(), null);
				for (Map<String, Object> m : menuIdArr) {
//					002,003
					sb.append(","+m.get("menuId"));
				}
				req.setAttribute("menuIds", sb.substring(1));
				return "index";
			}else {
//		没有
				req.setAttribute("msg", "用户不存在");
				return "login";
			}
			
		} catch (InstantiationException | IllegalAccessException | SQLException e) {
			e.printStackTrace();
		}
	}
}

mvc.xml

<?xml version="1.0" encoding="UTF-8"?>
<config>
	<!-- <action path="/regAction" type="test.RegAction">
		<forward name="failed" path="/reg.jsp" redirect="false" />
		<forward name="success" path="/login.jsp" redirect="true" />
	</action> -->
	
	<action path="/menuAction" type="com.caoguangli.web.MenuAction"></action>
	<action path="/userAction" type="com.caoguangli.web.UserAction">
		<forward name="index" path="/index.jsp" redirect="false" />
		<forward name="login" path="/login.jsp" redirect="false" />
	</action>
</config>

index.jsp 页面

在index.jsp页面body里面加一个隐藏域在index.js接收它

<input type="hidden" id="menuIds" value="${menuIds }">

index.js

$(function() {
	$('#tt').tree({    
	    url:'menuAction.action?methodName=menuTree&&Menuid='+$("#menuIds").val(),
	    	onClick: function(node){
	    		alert(node.text);  // 在用户点击的时候提示
	    		// add a new tab panel    $.extends
	    		var content = '<iframe scrolling="no" frameborder="0" src="'+node.attributes.menuURL+'" width="99%" height="99%"></iframe>';
	    		if($('#menuTab').tabs('exists',node.text)){
//	    			存在执行选项卡选中已有的选项卡操作
	    			$('#menuTab').tabs('select',node.text);
	    		}else{
//	    			不存在执行新增的操作
	    			$('#menuTab').tabs('add',{    
		    		    title:node.text,    
		    		    content:content,    
		    		    closable:true   
		    		}); 
	    		}    		
	    	}
	});  
})

login.jsp 页面

<%@ page language="java" contentType="text/html; charset=UTF-8"
    pageEncoding="UTF-8"%>
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
<title>Insert title here</title>
</head>
<body>
  <form action="${pageContext.request.contextPath }/userAction.action?methodName=login" method="post">
     uid:<input type="text" name="uid"><br>
     upwd:<input type="text" name="upwd"><br>
          <input type="submit">
   </form>
   <span style="color: red">${msg }</span>
</body>
</html>

页面 效果

1.最大权限（看所有）

2.部分权限