jonston/symfony-permission
Composer 安装命令:
composer require jonston/symfony-permission
包简介
A basic permission management bundle for Symfony, similar to spatie/laravel-permission
README 文档
README
A flexible and extensible permission and role management bundle for Symfony applications, inspired by spatie/laravel-permission.
Concept & Paradigm
This bundle brings the best practices of access control from Spatie Laravel Permission to Symfony:
- Explicit modeling: Permissions and roles are first-class entities, not just strings.
- Flexible relationships: Users (or any domain entity) can have many roles and permissions, and roles aggregate permissions.
- Traits & interfaces: Easily add permission/role logic to your models via traits and interfaces.
- DTOs & services: All business logic and data transfer are handled via DTOs and service classes, keeping your domain clean.
- Doctrine attributes: All relations are described via Doctrine attributes for correct migrations and schema generation.
Step-by-step Integration Guide
1. Install the Bundle
composer require jonston/symfony-permission
2. Configure Your Models
User Entity Example
Add traits, interfaces, and Doctrine relations:
use Doctrine\ORM\Mapping as ORM; use Jonston\SymfonyPermission\Trait\HasRoles; use Jonston\SymfonyPermission\Contract\HasRolesInterface; use Jonston\SymfonyPermission\Entity\Role; use Jonston\SymfonyPermission\Entity\Permission; #[ORM\Entity] class User implements HasRolesInterface { use HasRoles; #[ORM\Id] #[ORM\GeneratedValue] #[ORM\Column(type: 'integer')] private ?int $id = null; #[ORM\ManyToMany(targetEntity: Role::class)] #[ORM\JoinTable(name: 'user_role')] protected Collection $roles; #[ORM\ManyToMany(targetEntity: Permission::class)] #[ORM\JoinTable(name: 'user_permission')] protected Collection $permissions; public function __construct() { $this->roles = new \Doctrine\Common\Collections\ArrayCollection(); $this->permissions = new \Doctrine\Common\Collections\ArrayCollection(); } // ... your logic ... }
Role Entity Example
Already provided by the bundle, but you can extend:
#[ORM\Entity] class Role implements HasPermissionsInterface { use HasPermissions; // ...existing code... #[ORM\ManyToMany(targetEntity: Permission::class, inversedBy: 'roles')] #[ORM\JoinTable(name: 'role_permission')] protected Collection $permissions; // ...existing code... }
Permission Entity Example
Already provided by the bundle, but you can extend:
#[ORM\Entity] class Permission { #[ORM\ManyToMany(targetEntity: Role::class, mappedBy: 'permissions')] private Collection $roles; // ...existing code... }
3. Run Doctrine Migrations
After configuring your models, generate and apply migrations:
php bin/console doctrine:migrations:diff php bin/console doctrine:migrations:migrate
This will create all necessary tables and relations: roles, permissions, user_role, user_permission, role_permission.
4. Use DTOs and Services for Business Logic
- Use DTOs (e.g.
CreateRoleDto,UpdatePermissionDto) for all input to services. - Use
RoleServiceandPermissionServicefor CRUD operations and assignment logic.
Example: Creating and Assigning Roles/Permissions
$role = $roleService->createRole(new CreateRoleDto('admin', 'Administrator role')); $permission = $permissionService->createPermission(new CreatePermissionDto('edit articles', 'Can edit articles')); $user->addRole($role); $user->addPermission($permission); $role->addPermission($permission);
Example: Revoking Roles/Permissions
$user->removeRole($role); $user->removePermission($permission); $role->removePermission($permission);
Example: Checking Permissions
$accessControlService->hasPermission($user, 'edit articles'); // true if user or any role has permission $accessControlService->hasAnyPermission($user, [$permission1, $permission2]); $accessControlService->hasAllPermissions($user, [$permission1, $permission2]);
5. Advanced Use Cases
- Multiple models: You can add HasRoles/HasPermissions to any entity (Team, Organization, etc).
- Custom queries: Use repositories for advanced queries (e.g. find all users with a specific permission).
- Validation: DTOs support Symfony Validator attributes for future validation needs.
- Extending entities: Add custom fields, methods, or override logic as needed.
6. Best Practices
- Keep all business logic in services, not in entities.
- Use DTOs for all input to services.
- Use traits and interfaces for your domain models.
- Write tests for your business logic and permission checks.
- Use Doctrine attributes for all relations to ensure correct migrations.
Example Use Case Scenarios
- RBAC for admin panel: Assign roles like
admin,editor,viewerto users, and granular permissions to roles. - Feature toggles: Use permissions to enable/disable features for specific users or groups.
- Multi-tenancy: Assign roles/permissions to teams or organizations, not just users.
- API access control: Check permissions in controllers, security voters, or middleware.
License
MIT
Author
Jonston
jonston/symfony-permission 适用场景与选型建议
jonston/symfony-permission 是一款 基于 PHP 开发的 Composer 扩展包,目前已累计 11 次下载、GitHub Stars 达 2, 最近一次更新时间为 2025 年 09 月 09 日, 在 PHP 生态内属于活跃度较高的组件。
它主要适用于以下技术方向: 「symfony」 「security」 「bundle」 「acl」 「roles」 「permissions」 等业务场景。在实际项目中,围绕这些方向常见需要落地的问题包括:接口对接、性能调优、并发安全、与既有框架(Laravel / ThinkPHP / Yii / Webman 等)的兼容适配,以及生产环境的日志埋点与稳定性保障。
我们在过去多个企业项目中使用过 jonston/symfony-permission 或与其功能相近的方案,如果你在选型或落地过程中遇到问题,例如 版本兼容、二次改造、私有化封装、与内部系统对接、生产 BUG 排查,欢迎联系我们协助评估。
基于 jonston/symfony-permission 在你已有业务上做功能扩展、字段裁剪、UI 适配、与内部账号 / 权限 / 日志系统的深度对接。
线上偶发问题、内存泄漏、慢查询、并发异常等排查修复;针对高流量场景做缓存、队列、索引层面的调优。
承接完整的项目从需求 → 设计 → 开发 → 上线 → 长期运维;也可按月提供技术保姆服务。
与 jonston/symfony-permission 相关的其它包
同方向 / 同关键字的高下载量 PHP Composer 包推荐,方便对比选型:
2lenet/EasyAdminPlusBundle
The bundle for easy using json-rpc api on your project
Provide a way to secure accesses to all routes of an symfony application.
DMS Meetup API Bundle, enables Meetup API clients in services
It's a barebone security class written on PHP
Bundle Symfony DaplosBundle
统计信息
- 总下载量: 11
- 月度下载量: 0
- 日度下载量: 0
- 收藏数: 2
- 点击次数: 13
- 依赖项目数: 0
- 推荐数: 0
其他信息
- 授权协议: MIT
- 更新时间: 2025-09-09