🐇 Webman Authorization Plugin Based on Casbin 🐇

🐇 An Authorization Library for Webman Plugin 🐇

🐇 Webman Authorization Plugin Based on Casbin 🐇

An authorization library that supports access control models like ACL, RBAC, ABAC for Webman plugin.

Installation

Install the package via Composer:

composer require -W casbin/webman-permission

Configuration

Dependency Injection

Modify the config/container.php configuration file as follows:

$builder = new \DI\ContainerBuilder();
$builder->addDefinitions(config('dependence', []));
$builder->useAutowiring(true);
return $builder->build();

Database Configuration

By default, the policy storage uses ThinkORM.

1. Model Configuration

The default uses ThinkORM. Modify the database configuration in config/thinkorm.php.

Note: If using Laravel database, configure as follows:

Modify the database configuration in config/database.php

Change the adapter in config/plugin/casbin/webman-permission/permission.php to the Laravel adapter

2. Create `casbin_rule` Table

Execute the following SQL to create the policy rules table:

CREATE TABLE `casbin_rule` (
    `id` BIGINT(20) UNSIGNED NOT NULL AUTO_INCREMENT,
    `ptype` VARCHAR(128) NOT NULL DEFAULT '',
    `v0` VARCHAR(128) NOT NULL DEFAULT '',
    `v1` VARCHAR(128) NOT NULL DEFAULT '',
    `v2` VARCHAR(128) NOT NULL DEFAULT '',
    `v3` VARCHAR(128) NOT NULL DEFAULT '',
    `v4` VARCHAR(128) NOT NULL DEFAULT '',
    `v5` VARCHAR(128) NOT NULL DEFAULT '',
    PRIMARY KEY (`id`) USING BTREE,
    KEY `idx_ptype` (`ptype`) USING BTREE,
    KEY `idx_v0` (`v0`) USING BTREE,
    KEY `idx_v1` (`v1`) USING BTREE,
    KEY `idx_v2` (`v2`) USING BTREE,
    KEY `idx_v3` (`v3`) USING BTREE,
    KEY `idx_v4` (`v4`) USING BTREE,
    KEY `idx_v5` (`v5`) USING BTREE
) ENGINE = INNODB CHARSET = utf8mb4 COMMENT = 'Casbin Policy Rules Table';

3. Configure Redis

Configure your Redis settings in config/redis.php.

4. Restart Webman

# Restart in foreground
php start.php restart

# Or restart in daemon mode
php start.php restart -d

Usage

After successful installation, you can use the library as follows:

Basic Operations

use Casbin\WebmanPermission\Permission;

// Add permissions to a user
Permission::addPermissionForUser('eve', 'articles', 'read');

// Add a role for a user
Permission::addRoleForUser('eve', 'writer');

// Add permissions to a role
Permission::addPolicy('writer', 'articles', 'edit');

Permission Check

if (\Casbin\WebmanPermission\Permission::enforce('eve', 'articles', 'edit')) {
    echo 'Congratulations! Permission granted.';
} else {
    echo 'Sorry, you do not have access to this resource.';
}

Multiple Driver Configuration

You can use multiple driver configurations:

$permission = \Casbin\WebmanPermission\Permission::driver('restful_conf');

// Add permissions to a user
$permission->addPermissionForUser('eve', 'articles', 'read');

// Add a role for a user
$permission->addRoleForUser('eve', 'writer');

// Add permissions to a role
$permission->addPolicy('writer', 'articles', 'edit');

// Check permissions
if ($permission->enforce('eve', 'articles', 'edit')) {
    echo 'Congratulations! Permission granted.';
} else {
    echo 'Sorry, you do not have access to this resource.';
}

For more API details, refer to the Casbin API Documentation.

Tutorials

Testing

This project includes a comprehensive unit test suite covering the following aspects:

Test File Structure

tests/
├── Adapter.php                    # Basic adapter tests
├── PermissionTest.php            # Permission class tests
├── AdapterTest.php               # Detailed adapter tests
├── EdgeCaseTest.php              # Edge case tests
├── IntegrationTest.php           # Integration tests
├── LaravelDatabase/
│   ├── LaravelDatabaseAdapterTest.php
│   └── TestCase.php
├── ThinkphpDatabase/
│   ├── DatabaseAdapterTest.php
│   └── TestCase.php
└── config/
    └── plugin/
        └── casbin/
            └── webman-permission/
                └── permission.php

Test Coverage

Basic Functionality
- Permission add, remove, check
- Role assignment, removal
- Policy management
Adapter Tests
- Database operations
- Filter functionality
- Batch operations
- Transaction handling
Edge Cases
- Null value handling
- Special characters
- Large data volumes
- Performance testing
Integration Tests
- Complete RBAC workflow
- Domain permission control
- Multi-driver support
- Complex business scenarios
Error Handling
- Exception scenarios
- Invalid input
- Concurrent access

Running Tests

# Run all tests
php vendor/bin/phpunit tests/

# Run specific test file
php vendor/bin/phpunit tests/PermissionTest.php

# Run specific test method
php vendor/bin/phpunit --filter testAddPermissionForUser tests/PermissionTest.php

# Generate coverage report
php vendor/bin/phpunit --coverage-html coverage tests/

Requirements

PHP >= 8.1
PHPUnit >= 9.0
Database connection
Redis connection

Test Environment

The test environment automatically creates the following tables:

casbin_rule - Default policy table
other_casbin_rule - Other driver policy table

Best Practices

Writing New Tests
- Inherit from appropriate test base classes
- Follow naming conventions
- Add necessary assertions
Test Data Management
- Use setUp() and tearDown() methods
- Ensure test data isolation
- Clean up test data
Test Coverage
- Cover normal workflows
- Test exception scenarios
- Verify boundary conditions

Contributing

Adding New Features

Write corresponding test cases for new features
Ensure test coverage meets requirements
Run the complete test suite
Check test status before submitting code

Bug Fixes

Write reproduction tests for bugs
Verify tests pass after fixing bugs
Ensure existing functionality is not affected

Credits

Built on top of Casbin. For full documentation, visit the official website.

Advanced Configuration

Removing PHP-DI Dependency (Not Recommended)

Uninstall the DI dependency package:

composer remove php-di/php-di

Modify the Casbin\WebmanPermission\Permission file:

Replace:

if (is_null(static::$_manager)) {
    static::$_manager = new Enforcer($model, Container::get($config['adapter']), false);
}

With:

if (is_null(static::$_manager)) {
    if ($config['adapter'] == DatabaseAdapter::class) {
        $_model = new RuleModel();
    } elseif ($config['adapter'] == LaravelDatabaseAdapter::class) {
        $_model = new LaravelRuleModel();
    }
    static::$_manager = new Enforcer($model, new $config['adapter']($_model), false);
}

Warning: This approach has high coupling and is not recommended. For more information, visit: https://www.workerman.net/doc/webman/di.html

Troubleshooting

Laravel Driver Error

Error: Call to a member function connection() on null

Solution: Check if your local database proxy is working correctly. Using Docker container host addresses like dnmp-mysql may cause this issue.

License

MIT License

Name		Name	Last commit message	Last commit date
Latest commit History 102 Commits
.github/workflows		.github/workflows
src		src
tests		tests
.gitignore		.gitignore
LICENSE		LICENSE
README.md		README.md
composer.json		composer.json
phpunit.xml		phpunit.xml
phpunit.xml.dist		phpunit.xml.dist
workbunny-logo.png		workbunny-logo.png

License

php-casbin/webman-permission

Folders and files

Latest commit

History

Repository files navigation

🐇 Webman Authorization Plugin Based on Casbin 🐇

Table of Contents

Installation

Configuration

Dependency Injection

Database Configuration

1. Model Configuration

2. Create casbin_rule Table

3. Configure Redis

4. Restart Webman

Usage

Basic Operations

Permission Check

Multiple Driver Configuration

Tutorials

Testing

Test File Structure

Test Coverage

Running Tests

Requirements

Test Environment

Best Practices

Contributing

Adding New Features

Bug Fixes

Credits

Advanced Configuration

Troubleshooting

Laravel Driver Error

License

About

Topics

Resources

License

Uh oh!

Stars

Watchers

Forks

Releases 23

Packages 0

Contributors 8

Uh oh!

Languages

2. Create `casbin_rule` Table

Packages