ferry/middleware/permission.go

package middleware

import (
	"ferry/global/orm"
	"ferry/models/system"
	mycasbin "ferry/pkg/casbin"
	"ferry/pkg/jwtauth"
	_ "ferry/pkg/jwtauth"
	"ferry/pkg/logger"
	"ferry/tools"
	"fmt"
	"net/http"

	"github.com/gin-gonic/gin"
)

//权限检查中间件
func AuthCheckRole() gin.HandlerFunc {
	return func(c *gin.Context) {
		var menuValue system.Menu

		data, _ := c.Get("JWT_PAYLOAD")
		v := data.(jwtauth.MapClaims)
		e, err := mycasbin.Casbin()
		tools.HasError(err, "", 500)
		//检查权限
		res, err := e.Enforce(v["rolekey"], c.Request.URL.Path, c.Request.Method)
		logger.Info(v["rolekey"], c.Request.URL.Path, c.Request.Method)

		tools.HasError(err, "", 500)

		err = orm.Eloquent.Model(&menuValue).
			Where("path = ? and action = ?", c.Request.URL.Path, c.Request.Method).
			Find(&menuValue).Error
		tools.HasError(err, "", 500)

		if res {
			c.Next()
		} else {
			c.JSON(http.StatusOK, gin.H{
				"code": 403,
				"msg":  fmt.Sprintf("对不起，您没有 <%v> 访问权限，请联系管理员", menuValue.Title),
			})
			c.Abort()
			return
		}
	}
}
new 2020-07-13 20:33:20 +08:00			`package middleware`

			`import (`
feat: 若无接口权限，提示没有那个接口权限。 2020-09-08 23:01:53 +08:00			`"ferry/global/orm"`
			`"ferry/models/system"`
new 2020-07-13 20:33:20 +08:00			`mycasbin "ferry/pkg/casbin"`
			`"ferry/pkg/jwtauth"`
			`_ "ferry/pkg/jwtauth"`
调整日志库为zap。 2020-08-15 23:34:37 +08:00			`"ferry/pkg/logger"`
new 2020-07-13 20:33:20 +08:00			`"ferry/tools"`
feat: 若无接口权限，提示没有那个接口权限。 2020-09-08 23:01:53 +08:00			`"fmt"`
new 2020-07-13 20:33:20 +08:00			`"net/http"`

			`"github.com/gin-gonic/gin"`
			`)`

			`//权限检查中间件`
			`func AuthCheckRole() gin.HandlerFunc {`
			`return func(c *gin.Context) {`
feat: 若无接口权限，提示没有那个接口权限。 2020-09-08 23:01:53 +08:00			`var menuValue system.Menu`

new 2020-07-13 20:33:20 +08:00			`data, _ := c.Get("JWT_PAYLOAD")`
			`v := data.(jwtauth.MapClaims)`
			`e, err := mycasbin.Casbin()`
			`tools.HasError(err, "", 500)`
			`//检查权限`
			`res, err := e.Enforce(v["rolekey"], c.Request.URL.Path, c.Request.Method)`
调整日志库为zap。 2020-08-15 23:34:37 +08:00			`logger.Info(v["rolekey"], c.Request.URL.Path, c.Request.Method)`
new 2020-07-13 20:33:20 +08:00
			`tools.HasError(err, "", 500)`

feat: 若无接口权限，提示没有那个接口权限。 2020-09-08 23:01:53 +08:00			`err = orm.Eloquent.Model(&menuValue).`
			`Where("path = ? and action = ?", c.Request.URL.Path, c.Request.Method).`
			`Find(&menuValue).Error`
			`tools.HasError(err, "", 500)`

new 2020-07-13 20:33:20 +08:00			`if res {`
			`c.Next()`
			`} else {`
			`c.JSON(http.StatusOK, gin.H{`
			`"code": 403,`
feat: 若无接口权限，提示没有那个接口权限。 2020-09-08 23:01:53 +08:00			`"msg": fmt.Sprintf("对不起，您没有 <%v> 访问权限，请联系管理员", menuValue.Title),`
new 2020-07-13 20:33:20 +08:00			`})`
			`c.Abort()`
			`return`
			`}`
			`}`
			`}`