關於用戶角色權限的設計

一直想整理一篇關於用戶角色權限的設計，這幾天通過網上資料和自己實際工作中運用到的資源把用戶角色權限的數據庫表設計出來。

基礎表有3張：

角色表--用來記錄角色名稱

用戶表--用來記錄登錄用戶名稱和登錄密碼

菜單表--用來記錄菜單名稱、子菜單名稱

每個用戶會有多個角色、而一個角色也會有多個用戶，即角色和用戶的關係是n:m，多對多的關係。

每個角色會有多個菜單權限、每個菜單也會有多個角色擁有，即角色和菜單的關係也是n:m，多對多的關係。

所以還有有兩張關聯表：

角色用戶對應表--用來記錄角色和用戶的關係

角色菜單對應表--用來記錄角色和菜單的關係

這裏是下載地址

http://download.csdn.net/detail/u010192842/6819561

下面是數據庫表設計：

----------------------------------------------------------------
-- Author    :Yole_JZ
-- Date      :2014-01-07 7:44:00
-- Table Name:[Sys_Role]
----------------------------------------------------------------
SET ANSI_NULLS ON
GO
SET QUOTED_IDENTIFIER ON
GO
SET ANSI_PADDING ON
GO
CREATE TABLE [dbo].[Sys_Role](
 [ID] [int] IDENTITY(1,1) NOT NULL,
 [RoleName] [varchar](20) NULL,
 [DeleteFlag] [int] NOT NULL CONSTRAINT [DF_Sys_Role_DeleteFlag]  DEFAULT ((0)),
 [RoleRemark] [varchar](50) NULL,
 CONSTRAINT [PK_Sys_Role] PRIMARY KEY CLUSTERED 
(
 [ID] ASC
)WITH (IGNORE_DUP_KEY = OFF) ON [PRIMARY]
) ON [PRIMARY]

GO
SET ANSI_PADDING OFF
GO
EXEC sys.sp_addextendedproperty @name=N'MS_Description', @value=N'0：正常  1：刪除' ,@level0type=N'SCHEMA', @level0name=N'dbo', @level1type=N'TABLE', @level1name=N'Sys_Role', @level2type=N'COLUMN', @level2name=N'DeleteFlag'

----------------------------------------------------------------
-- Author    :Yole_JZ
-- Date      :2014-01-07 7:45:00
-- Table Name:[Sys_Use]
----------------------------------------------------------------
SET ANSI_NULLS ON
GO
SET QUOTED_IDENTIFIER ON
GO
SET ANSI_PADDING ON
GO
CREATE TABLE [dbo].[Sys_User](
 [ID] [int] IDENTITY(1,1) NOT NULL,
 [UserName] [varchar](20) NOT NULL,
 [UserPassword] [varchar](50) NOT NULL,
 [StaffID] [int] NOT NULL,
 [DeleteFlag] [int] NOT NULL CONSTRAINT [DF_Sys_User_DeleteFlag]  DEFAULT ((0)),
 [UserRemark] [varchar](50) NULL,
 CONSTRAINT [PK_Sys_User] PRIMARY KEY CLUSTERED 
(
 [ID] ASC
)WITH (IGNORE_DUP_KEY = OFF) ON [PRIMARY]
) ON [PRIMARY]

GO
SET ANSI_PADDING OFF
GO
EXEC sys.sp_addextendedproperty @name=N'MS_Description', @value=N'職工信息表ID' ,@level0type=N'SCHEMA', @level0name=N'dbo', @level1type=N'TABLE', @level1name=N'Sys_User', @level2type=N'COLUMN', @level2name=N'StaffID'

GO
EXEC sys.sp_addextendedproperty @name=N'MS_Description', @value=N'0：正常  1：刪除' ,@level0type=N'SCHEMA', @level0name=N'dbo', @level1type=N'TABLE', @level1name=N'Sys_User', @level2type=N'COLUMN', @level2name=N'DeleteFlag'

----------------------------------------------------------------
-- Author    :Yole_JZ
-- Date      :2014-01-07 8:10:00
-- Table Name:[Sys_Menu]
----------------------------------------------------------------
SET ANSI_NULLS ON
GO
SET QUOTED_IDENTIFIER ON
GO
SET ANSI_PADDING ON
GO
CREATE TABLE [dbo].[Sys_Menu](
 [ID] [int] NOT NULL,
 [MenuPID] [int] NULL,
 [MenuName] [varchar](50) NOT NULL,
 [DeleteFlag] [int] NOT NULL CONSTRAINT [DF_Sys_Menu_DeleteFlag]  DEFAULT ((0)),
 [MenuRemark] [varchar](50) NULL,
 CONSTRAINT [PK_Sys_Menu] PRIMARY KEY CLUSTERED 
(
 [ID] ASC
)WITH (IGNORE_DUP_KEY = OFF) ON [PRIMARY]
) ON [PRIMARY]

GO
SET ANSI_PADDING OFF
GO
EXEC sys.sp_addextendedproperty @name=N'MS_Description', @value=N'菜單表ID' ,@level0type=N'SCHEMA', @level0name=N'dbo', @level1type=N'TABLE', @level1name=N'Sys_Menu', @level2type=N'COLUMN', @level2name=N'MenuPID'

GO
EXEC sys.sp_addextendedproperty @name=N'MS_Description', @value=N'0：正常  1：刪除' ,@level0type=N'SCHEMA', @level0name=N'dbo', @level1type=N'TABLE', @level1name=N'Sys_Menu', @level2type=N'COLUMN', @level2name=N'DeleteFlag'

----------------------------------------------------------------
-- Author    :Yole_JZ
-- Date      :2014-01-07 8:22:00
-- Table Name:[Sys_Role_User]
----------------------------------------------------------------
SET ANSI_NULLS ON
GO
SET QUOTED_IDENTIFIER ON
GO
SET ANSI_PADDING ON
GO
CREATE TABLE [dbo].[Sys_Role_User](
 [ID] [int] NOT NULL,
 [RoleID] [int] NOT NULL,
 [UserID] [int] NOT NULL,
 [DeleteFlag] [int] NOT NULL CONSTRAINT [DF_Sys_Role_User_DeleteFlag]  DEFAULT ((0)),
 [MenuRemark] [varchar](50) NULL,
 CONSTRAINT [PK_Sys_Role_User] PRIMARY KEY CLUSTERED 
(
 [ID] ASC
)WITH (IGNORE_DUP_KEY = OFF) ON [PRIMARY]
) ON [PRIMARY]

GO
SET ANSI_PADDING OFF

GO
EXEC sys.sp_addextendedproperty @name=N'MS_Description', @value=N'角色表ID' ,@level0type=N'SCHEMA', @level0name=N'dbo', @level1type=N'TABLE', @level1name=N'Sys_Role_User', @level2type=N'COLUMN', @level2name=N'RoleID'

GO
EXEC sys.sp_addextendedproperty @name=N'MS_Description', @value=N'用戶表ID' ,@level0type=N'SCHEMA', @level0name=N'dbo', @level1type=N'TABLE', @level1name=N'Sys_Role_User', @level2type=N'COLUMN', @level2name=N'UserID'

GO
EXEC sys.sp_addextendedproperty @name=N'MS_Description', @value=N'0：正常  1：刪除' ,@level0type=N'SCHEMA', @level0name=N'dbo', @level1type=N'TABLE', @level1name=N'Sys_Role_User', @level2type=N'COLUMN', @level2name=N'DeleteFlag'

----------------------------------------------------------------
-- Author    :Yole_JZ
-- Date      :2014-01-07 8:32:00
-- Table Name:[Sys_Role_Menu]
----------------------------------------------------------------
SET ANSI_NULLS ON
GO
SET QUOTED_IDENTIFIER ON
GO
SET ANSI_PADDING ON
GO
CREATE TABLE [dbo].[Sys_Role_Menu](
 [ID] [int] NOT NULL,
 [RoleID] [int] NOT NULL,
 [MenuID] [int] NOT NULL,
 [PermissionType] [int] NOT NULL CONSTRAINT [DF_Sys_Role_Menu_PermissionType]  DEFAULT ((31)),
 [DeleteFlag] [int] NOT NULL CONSTRAINT [DF_Sys_Role_Menu_DeleteFlag]  DEFAULT ((0)),
 [MenuRemark] [varchar](50) NULL,
 CONSTRAINT [PK_Sys_Role_Menu] PRIMARY KEY CLUSTERED 
(
 [ID] ASC
)WITH (IGNORE_DUP_KEY = OFF) ON [PRIMARY]
) ON [PRIMARY]

GO
SET ANSI_PADDING OFF
GO
EXEC sys.sp_addextendedproperty @name=N'MS_Description', @value=N'角色表ID' ,@level0type=N'SCHEMA', @level0name=N'dbo', @level1type=N'TABLE', @level1name=N'Sys_Role_Menu', @level2type=N'COLUMN', @level2name=N'RoleID'

GO
EXEC sys.sp_addextendedproperty @name=N'MS_Description', @value=N'菜單表ID' ,@level0type=N'SCHEMA', @level0name=N'dbo', @level1type=N'TABLE', @level1name=N'Sys_Role_Menu', @level2type=N'COLUMN', @level2name=N'MenuID'

GO
EXEC sys.sp_addextendedproperty @name=N'MS_Description', @value=N'eg.1：錄入 2：瀏覽 4：修改 8：刪除 16：執行（默認所有權限）' ,@level0type=N'SCHEMA', @level0name=N'dbo', @level1type=N'TABLE', @level1name=N'Sys_Role_Menu', @level2type=N'COLUMN', @level2name=N'PermissionType'

GO
EXEC sys.sp_addextendedproperty @name=N'MS_Description', @value=N'0：正常  1：刪除' ,@level0type=N'SCHEMA', @level0name=N'dbo', @level1type=N'TABLE', @level1name=N'Sys_Role_Menu', @level2type=N'COLUMN', @level2name=N'DeleteFlag'

PS.這裏的權限類型沒有單獨做成一個表，是因爲要是再加上權限表（增刪改查）會是角色和菜單關係過於複雜，不利於後期的維護。

如果遇到同一個菜單需要有不同的權限，可以用權限類型來控制，例如：1：錄入 2：瀏覽 4：修改 8：刪除 16：執行（默認所有權限）

如果是增刪改查權限，這個權限類型就是15（1+2+4+8=15），當然這樣做會有弊端，例如有修改權限就會相應的有瀏覽權限，會出現權限包含的情況。遇到這樣的情況需要判斷一下即可。

Yole

發佈了50 篇原創文章 · 獲贊 7 · 訪問量 7萬+

私信關注

關於用戶角色權限的設計

使用neovim打造go ide(支持代碼跳轉, 代碼補全, 實時語法檢查)

挑戰程序設計競賽 2.3章習題 poj 3046 Ant Counting

Shell/Python中的用戶名獲取

SQL Server 級聯刪除 ON DELETE CASCADE

論【IT需求】中的矛與盾

SQL Server2005 表分區（第二章）

SQL BULK INSERT

SQL Server實現split功能

https://yachay.unat.edu.pe/blog/index.php?comment_area=format_blog&comment_component=blog&comment_co

linux以太網驅動總結