【发布时间】:2014-10-27 10:43:41
【问题描述】:
所以我可以从这个列表中为角色分配权限,还是必须将这些权限存储在数据库中?有时,我不确定它们是否相同。
例如,如果有@RequiresPermissions之类的
@RequiresPermissions("resourceA:create")
@RequiresPermissions("resourceA:update,delete")
@RequiresPermissions("resourceA:read")
@RequiresPermissions("resourceB:create,read,update,delete")
我可以获得如下权限列表:
["resourceA:create","resourceA:update","resourceA:delete","resourceA:read",
"resourceB:create","resourceB:update","resourceB:delete","resourceB:read"]
或喜欢
{"resourceA":{"create","update","delete","read"},
"resourceB":{"create","update","delete","read"}}
【问题讨论】:
标签: security permissions shiro