| 123456789101112131415161718192021 |
- [request_definition]
- r = sub, dom, obj, act
- [policy_definition]
- p = sub, dom, obj, act, eft
- [role_definition]
- #角色
- g = _, _, _
- #菜单
- g2 = _, _, _
- #部门
- g3 = _, _, _
- #区域
- g4 = _, _, _
- [policy_effect]
- e = some(where (p.eft == allow))
- [matchers]
- m = g(r.sub, p.sub, r.dom) && g2(r.sub, r.dom, p.sub) && g3(r.sub, r.dom, p.sub) && g4(r.sub, r.dom, p.sub) && r.dom == p.dom && r.obj == p.obj && r.act == p.act
|
