-
Notifications
You must be signed in to change notification settings - Fork 0
/
rbac.go
44 lines (39 loc) 路 1.04 KB
/
rbac.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
package auth
import (
"reflect"
"github.com/fatih/structs"
"github.com/nguyentrungtin/go-echo-boilerplate/lib"
)
var RBAC = struct {
AllRBAC []string `role:"ALL"`
SuperRBAC []string `role:"SUPER"`
AdminRBAC []string `role:"ADMIN"`
UserRBAC []string `role:"USER"`
DeveloperRBAC []string `role:"DEVELOPER"`
}{
AllRBAC: []string{"SUPER", "ADMIN", "DEVELOPER", "USER"},
SuperRBAC: []string{"SUPER", "ADMIN", "DEVELOPER", "USER"},
AdminRBAC: []string{"ADMIN", "USER"},
UserRBAC: []string{"USER"},
DeveloperRBAC: []string{"DEVELOPER"},
}
func GetRBACByRole(role string) ([]string, bool) {
s := structs.New(RBAC)
t := reflect.TypeOf(RBAC)
for i := 0; i < t.NumField(); i++ {
if t.Field(i).Tag.Get("role") == role {
fn := t.Field(i).Name
name := s.Field(fn)
value := name.Value().([]string)
return value, true
}
}
return []string{}, false
}
func CheckPermission(role, object string) bool {
rbac, _ := GetRBACByRole(role)
if _, ok := lib.Find(rbac, object); !ok {
return false
}
return true
}