Implementing a role based access control is a very easy process and you can even load your roles from the database if you want.

实现基于角色的访问控制是一个非常简单的过程，如果需要，您甚至可以从数据库加载您的角色。

Step1: Creating necessary tables in the database [ You can also apply migrations with console command yii migrateinstead of step 1 ]

步骤 1：在数据库中创建必要的表 [您也可以使用控制台命令yii migrate而不是步骤 1应用迁移]

The first step is to create necessary tables in the database.Below is the sql you need to run in the database.

第一步是在数据库中创建必要的表。下面是你需要在数据库中运行的sql。

drop table if exists `auth_assignment`;
drop table if exists `auth_item_child`;
drop table if exists `auth_item`;
drop table if exists `auth_rule`;

create table `auth_rule`
(
`name` varchar(64) not null,
`data` text,
`created_at` integer,
`updated_at` integer,
    primary key (`name`)
) engine InnoDB;

create table `auth_item`
(
`name` varchar(64) not null,
`type` integer not null,
`description` text,
`rule_name` varchar(64),
`data` text,
`created_at` integer,
`updated_at` integer,
primary key (`name`),
foreign key (`rule_name`) references `auth_rule` (`name`) on delete set null on update cascade,
key `type` (`type`)
) engine InnoDB;

create table `auth_item_child`
(
`parent` varchar(64) not null,
`child` varchar(64) not null,
primary key (`parent`, `child`),
foreign key (`parent`) references `auth_item` (`name`) on delete cascade on update cascade,
foreign key (`child`) references `auth_item` (`name`) on delete cascade on update cascade
) engine InnoDB;

create table `auth_assignment`
(
`item_name` varchar(64) not null,
`user_id` varchar(64) not null,
`created_at` integer,
primary key (`item_name`, `user_id`),
foreign key (`item_name`) references `auth_item` (`name`) on delete cascade on update cascade
) engine InnoDB;

Step2: Setting up the config file

第二步：设置配置文件

Now you can set up the config file to use the authmanager as DbManager. This is done by adding the following lines to the components section of your config file

现在您可以设置配置文件以将 authmanager 用作DbManager. 这是通过将以下行添加到配置文件的 components 部分来完成的

     'authManager' => [
                           'class' => 'yii\rbac\DbManager',
                           'defaultRoles' => ['guest'],
          ],

Step3: Adding and assigning roles.

第三步：添加和分配角色。

Now you can add roles by simply writing the following code to your corresponding controller.

现在，您只需将以下代码写入相应的控制器即可添加角色。

    use yii\rbac\DbManager;
    $r=new DbManager;
    $r->init();
    $test = $r->createRole('test');
    $r->add($test);

And you can assign it to the users by

您可以通过以下方式将其分配给用户

    $r->assign($test, 2);

http://www.yiiframework.com/doc-2.0/guide-security-authorization.html

http://www.yiiframework.com/doc-2.0/guide-security-authorization.html

Updated link from official docs: http://www.yiiframework.com/doc-2.0/guide-security-authorization.html

来自官方文档的更新链接：http: //www.yiiframework.com/doc-2.0/guide-security-authorization.html

If you are working with database you have to add authmanager to your application components:

如果您正在使用数据库，则必须将 authmanager 添加到应用程序组件中：

return [
// ...
'components' => [
    'authManager' => [
        'class' => 'yii\rbac\DbManager',
    ],
    // ...
],

];

];

And then execute a migration:

然后执行迁移：

yii migrate --migrationPath=@yii/rbac/migrations

It will create automatically the required tables in your database. Now you can access the AuthManager via

它将自动在您的数据库中创建所需的表。现在您可以通过访问 AuthManager

yii migrate --migrationPath=@yii/rbac/migrations

yii migrate --migrationPath=@yii/rbac/migrations