您的位置: 首页  >  技术问答  >  什么是在Laravel 5中存储用户角色权限的最佳方式? [关闭]

什么是在Laravel 5中存储用户角色权限的最佳方式? [关闭]

分类: 技术问答 2022-03-16 16:59:19

什么是在Laravel 5中存储用户角色权限的最佳方式? [关闭]

问题描述:

I'm building a web app in Laravel 5.2. I'm relatively new to Laravel, and want to follow best practices. I have a table called Roles that have several named user roles (i.e.: admin, editor, etc). I want the admin to be able to edit the permissions for these roles and create new ones. What would be the best way to store the permissions?

  1. Use an integer field with each bit representing one permission? (I think this would quickly get out of hand)
  2. Use a pivot table and a many-many connection to permissions?
  3. Use a string field and just serialize the chosen privileges?

New privileges are likely to be added in the future, and my goal is to be able to easily determine if a user has a certain role or not. I.e.: $user->roles->hasAdmin() or something simirar.

我正在Laravel 5.2中构建一个Web应用程序。 我对Laravel来说比较新,并且想要遵循最佳实践。 我有一个名为Roles的表,它有几个命名的用户角色(即:admin,editor等)。 我希望管理员能够编辑这些角色的权限并创建新角色。 存储权限的最佳方法是什么? p>

  1. 使用整数字段,每个位代表一个权限? (我认为这很快就会失控) li>
  2. 使用数据透视表和许多权限连接? li>
  3. 使用字符串字段并仅序列化 选择的权限? li> ol>

    将来可能会添加新的权限,我的目标是能够轻松确定用户是否具有某个角色 。 即:$ user-> roles-> hasAdmin()或simirar。 p> div>

You may want to borrow best practices for role/permissions table from the Laravel Entrust package:

    // Create table for storing roles
    Schema::create('{{ $rolesTable }}', function (Blueprint $table) {
        $table->increments('id');
        $table->string('name')->unique();
        $table->string('display_name')->nullable();
        $table->string('description')->nullable();
        $table->timestamps();
    });

    // Create table for associating roles to users (Many-to-Many)
    Schema::create('{{ $roleUserTable }}', function (Blueprint $table) {
        $table->integer('user_id')->unsigned();
        $table->integer('role_id')->unsigned();

        $table->foreign('user_id')->references('{{ $userKeyName }}')->on('{{ $usersTable }}')
            ->onUpdate('cascade')->onDelete('cascade');
        $table->foreign('role_id')->references('id')->on('{{ $rolesTable }}')
            ->onUpdate('cascade')->onDelete('cascade');

        $table->primary(['user_id', 'role_id']);
    });

    // Create table for storing permissions
    Schema::create('{{ $permissionsTable }}', function (Blueprint $table) {
        $table->increments('id');
        $table->string('name')->unique();
        $table->string('display_name')->nullable();
        $table->string('description')->nullable();
        $table->timestamps();
    });

    // Create table for associating permissions to roles (Many-to-Many)
    Schema::create('{{ $permissionRoleTable }}', function (Blueprint $table) {
        $table->integer('permission_id')->unsigned();
        $table->integer('role_id')->unsigned();

        $table->foreign('permission_id')->references('id')->on('{{ $permissionsTable }}')
            ->onUpdate('cascade')->onDelete('cascade');
        $table->foreign('role_id')->references('id')->on('{{ $rolesTable }}')
            ->onUpdate('cascade')->onDelete('cascade');

        $table->primary(['permission_id', 'role_id']);
    });

相关推荐