xtiawxf 2015-10-26
role1=createUser
subject.isPermitted("createUser");
role1=user:create
某个资源多个权限
role1=user:create,
user:deletesubject().checkPermissions("user:create","user:delete");
role1=user:create,delete
subject().checkPermissions("user:create,delete");
某个资源所有权限
role1=user:create,update,delete,view
role1=user:*
subject().checkPermissions("user:*");
role1=*:view
subject().checkPermissions("user:view");
role1=user:update:1
role1=app1:system:user:update:1
if(SecurityUtils.getSubject().isPermitted("user:update:1"){
}
role1=user:update,delete:1
role1=user:*:1
role1=user:update:*
subject().checkPermissions("user:update:1","user:update:2")
所有实例的所有权限
role1=user:*:*
user:update
user:update:*
例如
user
user:*:*