php项目中的RBAC权限

首先我们需要三张表

1.权限表

2.角色表

3.用户表

在登录的方法执行下列代码

public function index(){        $admin=D('admin');        $verify = new \Think\Verify();        if (IS_POST) {            $username=I('username');            $password=md5(I('password'));            $checkverify=I('checkverify');            $info = $admin->where(['username'=>$username])->find();            if ($verify->check($checkverify)) {                if ($info['password']==$password) {                    session('id',$info['id']);                    session('username',$info['username']);                    $this->getpri($info['roleid']);                    $this->success('登录成功...',U("Index/index"));                }else{                    $this->error('用户名或密码错误！');                }            }else{                $this->error('验证码错误！');            }            return false;        }        $this->display();    }    public function getpri($roleid){        $role=D('role');        $roles=$role->find($roleid);        $pri=D('privilege');        if($roles['pri_id_list']=='*'){            session('privilege','*');        }else{            $pris=$pri->field('pri_name,CONCAT(mname,"/",cname,"/",aname)')->where("id IN({$roles['pri_id_list']})")->select();            $ret = array();            foreach ($pris as $k => $v){                $ret[]=$v['CONCAT(mname,"/",`cname`,"/",aname)'];            }            session('privilege',$ret);        }    }

构造函数

<?phpnamespace Admin\Controller;use Think\Controller;class CommonController extends Controller {    public function __construct(){       parent::__construct();       if (!session('id')) {          $this->error('请先登录！',U('Login/index'));       }       if(MODULE_NAME=='Admin' && CONTROLLER_NAME=='Index'){           return true;       }       if(session('privilege')!='*' && !in_array(MODULE_NAME.'/'.CONTROLLER_NAME.'/'.ACTION_NAME,session('privilege'))){           $this->error('没有该权限！');       }    }}