Details
-
New Feature
-
Status: Resolved
-
Minor
-
Resolution: Incomplete
-
1.3.0
-
None
Description
Attached is a proposal patch to add another special token in the WildcardPermission, the any token '?'.
When granting the any token on a permission level, it behaves exactly as the wildcard, and implies everything:
any -> any
any -> wildcard
any -> literals
When querying the any token on a permission level, it is implied by everything:
any -> any
wildcard -> any
literals -> any
Thus, it is quite similar to say: i don't care about the detail of this level, it's fine if the user is granted something on it. Typical use case is when using shiro permission to perform some fined-grained access control.
For instance to give read access on newsletter 13 to anyone who has been granted the access to read, edit or delete it. Instead of checking for:
newsletter:view:13 or newsletter:edit:13 or newsletter:delete:13
we can simply check for:
newsletter:?:13