Skip to main content

RoleManager API

RoleManagerโ€‹

RoleManager provides interface to define the operations for managing roles. Adding matching function to rolemanager allows using wildcards in role name and domain.

AddNamedMatchingFunc()โ€‹

AddNamedMatchingFunc add MatchingFunc by ptype to RoleManager. MatchingFunc will work when operating role matching.

    e.AddNamedMatchingFunc("g", "", util.KeyMatch)
_, _ = e.AddGroupingPolicies([][]string{{"*", "admin", "domain1"}})
_, _ = e.GetRoleManager().HasLink("bob", "admin", "domain1") // -> true, nil

For example:

    e, _ := casbin.NewEnforcer("path/to/model", "path/to/policy")
e.AddNamedMatchingFunc("g", "", util.MatchKey)

AddNamedDomainMatchingFunc()โ€‹

AddNamedDomainMatchingFunc add MatchingFunc by ptype to RoleManager. DomainMatchingFunc is similar to MatchingFunc listed above.

For example:

    e, _ := casbin.NewEnforcer("path/to/model", "path/to/policy")
e.AddNamedDomainMatchingFunc("g", "", util.MatchKey)

GetRoleManager()โ€‹

GetRoleManager gets the current role manager for g.

For example:

    rm := e.GetRoleManager()

GetNamedRoleManager()โ€‹

GetNamedRoleManager gets the role manager by named ptype.

For example:

    rm := e.GetNamedRoleManager("g2")

SetRoleManager()โ€‹

SetRoleManager sets the current role manager for g.

For example:

    e.SetRoleManager(rm)

SetNamedRoleManager()โ€‹

SetNamedRoleManager sets the role manager by named ptype.

For example:

    rm := e.SetNamedRoleManager("g2", rm)

Clear()โ€‹

Clear clears all stored data and resets the role manager to the initial state.

For example:

    rm.Clear()

AddLink adds the inheritance link between two roles. role: name1 and role: name2. Domain is a prefix to the roles (can be used for other purposes).

For example:

    rm.AddLink("u1", "g1", "domain1")

DeleteLink deletes the inheritance link between two roles. role: name1 and role: name2. Domain is a prefix to the roles (can be used for other purposes).

For example:

    rm.DeleteLink("u1", "g1", "domain1")

HasLink determines whether a link exists between two roles. role: name1 inherits role: name2. Domain is a prefix to the roles (can be used for other purposes).

For example:

    rm.HasLink("u1", "g1", "domain1")

GetRoles()โ€‹

GetRoles gets the roles that a user inherits. Domain is a prefix to the roles (can be used for other purposes).

For example:

    rm.GetRoles("u1", "domain1")

GetUsers()โ€‹

GetUsers gets the users that inherits a role. Domain is a prefix to the users (can be used for other purposes).

For example:

    rm.GetUsers("g1")

PrintRoles()โ€‹

PrintRoles prints all the roles to log.

For example:

    rm.PrintRoles()

SetLogger()โ€‹

SetLogger sets role manager's logger.

For example:

    logger := log.DefaultLogger{}
logger.EnableLog(true)
rm.SetLogger(&logger)
_ = rm.PrintRoles()

GetDomains()โ€‹

GetDomains gets domains that a user has

For example:

    result, err := rm.GetDomains(name)