接口增加对应的权限码表数据值，在函数中使用，同时将token认证的信息存储到ngx.var.uid中看在函数中是否能用

修改配置文件形式，直接使用配置的值进行获取
增加配置，和定时操作初始化时将时间内容提前加载到内存中，用于后续的权限认证使用
2025-11-06 15:36:15 +08:00 · 2025-11-06 13:27:47 +08:00 · 2025-11-06 11:51:06 +08:00 · 2025-11-05 22:00:43 +08:00 · 2025-11-05 20:21:25 +08:00 · 2025-11-05 16:17:17 +08:00
24 changed files with 326 additions and 322 deletions
--- a/conf/nginx.conf
+++ b/conf/nginx.conf
@ -25,20 +25,22 @@ http {
    #lua_ssl_verify_depth 3;
    #在Nginx启动时执行的Lua代码块
-    lua_shared_dict dict_a 1m;
+    #初始化用户角色权限相关的共享内存
-    init_by_lua_block {
+    lua_shared_dict dict 10m;
-        -- 定义一个全局变量
+    #init_by_lua_block {
-        ngx.log(ngx.INFO, "Initializing global variable")
+    #    -- 定义一个全局变量
-        global_var = "Hello, Nginx with Lua!"
+    #    ngx.log(ngx.INFO, "Initializing global variable")
-
+    #    global_var = "Hello, Nginx with Lua!"
-        -- 初始化一个共享字典（需要 lua-shared-dict 模块）
+    #    -- 初始化一个共享字典（需要 lua-shared-dict 模块）
-        local shared_dict = ngx.shared.dict_a
+    #    local shared_dict = ngx.shared.dict_a
-        shared_dict:set("key", "value")
+    #    shared_dict:set("key", "value")
-    }
+    #}
    #init_by_lua_block 与 init_by_lua_file 只能初始化其中的一个，不能同时启用
    #否则报错nginx: [emerg] "init_by_lua_file" directive is duplicate
    #init_by_lua_file '/home/frankly/work/AuthPlatform/src/init.lua';
    init_worker_by_lua_file '/home/frankly/work/AuthPlatform/src/init.lua';
    server {
        listen       9080;
        server_name  127.0.0.1;
@ -60,7 +62,7 @@ http {
        location /testRBAC {
            content_by_lua_file '${APP_PATH}/src/test/testRBAC.lua';
        }
-        location /cjson {
+        location /test {
            content_by_lua_file '${APP_PATH}/src/test/test.lua';
        }
        location = /testSM {
--- a/conf/system/system.conf
+++ b/conf/system/system.conf
@ -24,12 +24,6 @@ location /api/system/departments {
    content_by_lua_file '${APP_PATH}/src/api/system/department.lua';
 }
 #菜单信息数据接口
 location /api/system/menus {
    access_by_lua_file '${APP_PATH}/src/auth/jwt-auth.lua';
    content_by_lua_file '${APP_PATH}/src/api/system/menu.lua';
 }
 #权限信息数据接口
 location /api/system/permissions {
    access_by_lua_file '${APP_PATH}/src/auth/jwt-auth.lua';
--- a/src/api/system/account.lua
+++ b/src/api/system/account.lua
@ -16,26 +16,31 @@ local routes = {
        paths = { "/api/system/accounts" },
        methods = { "GET" },
        handler = systemAccount.getSystemAccounts,
        metadata = "system::accounts::list",
    },
    {
        paths = { "/api/system/accounts/:id" },
        methods = { "GET" },
        handler = systemAccount.getSystemAccount,
        metadata = "system::accounts::view",
    },
    {
        paths = { "/api/system/accounts" },
        methods = { "POST" },
        handler = systemAccount.addSystemAccount,
        metadata = "system::accounts::add",
    },
    {
        paths = { "/api/system/accounts/:id" },
        methods = { "DELETE" },
        handler = systemAccount.deleteSystemAccount,
        metadata = "system::accounts::delete",
    },
    {
        paths = { "/api/system/accounts/:id" },
        methods = { "PUT" },
        handler = systemAccount.updateSystemAccount,
        metadata = "system::accounts::edit",
    },
 }
--- a/src/api/system/application.lua
+++ b/src/api/system/application.lua
@ -16,26 +16,31 @@ local routes = {
        paths = { "/api/system/applications" },
        methods = { "GET" },
        handler = systemApplication.getSystemApplications,
        metadata = "system::applications::list",
    },
    {
        paths = { "/api/system/applications/:id" },
        methods = { "GET" },
        handler = systemApplication.getSystemApplication,
        metadata = "system::applications::view",
    },
    {
        paths = { "/api/system/applications" },
        methods = { "POST" },
        handler = systemApplication.addSystemApplication,
        metadata = "system::applications::add",
    },
    {
        paths = { "/api/system/applications/:id" },
        methods = { "DELETE" },
        handler = systemApplication.deleteSystemApplication,
        metadata = "system::applications::delete",
    },
    {
        paths = { "/api/system/applications/:id" },
        methods = { "PUT" },
        handler = systemApplication.updateSystemApplication,
        metadata = "system::applications::edit",
    },
 }
--- a/src/api/system/department.lua
+++ b/src/api/system/department.lua
@ -16,26 +16,31 @@ local routes = {
        paths = { "/api/system/departments" },
        methods = { "GET" },
        handler = systemDepartment.getSystemDepartments,
        metadata = "system::departments::list",
    },
    {
        paths = { "/api/system/departments/:id" },
        methods = { "GET" },
        handler = systemDepartment.getSystemDepartment,
        metadata = "system::departments::view",
    },
    {
        paths = { "/api/system/departments" },
        methods = { "POST" },
        handler = systemDepartment.addSystemDepartment,
        metadata = "system::departments::add",
    },
    {
        paths = { "/api/system/departments/:id" },
        methods = { "DELETE" },
        handler = systemDepartment.deleteSystemDepartment,
        metadata = "system::departments::delete",
    },
    {
        paths = { "/api/system/departments/:id" },
        methods = { "PUT" },
        handler = systemDepartment.updateSystemDepartment,
        metadata = "system::departments::edit",
    },
 }
--- a/src/api/system/menu.lua
+++ b/src/api/system/menu.lua
@ -1,61 +0,0 @@
 ---
 --- Generated by EmmyLua(https://github.com/EmmyLua)
 --- Created by admin.
 --- DateTime: 2025/11/04 10:45
 ---
 --解析url路由过滤库
 local radix = require("resty.radixtree")
 --数据表业务处理
 local systemMenu = require("service.system.menu")
 --定义相关路由，前端接口url地址
 local routes = {
    --菜单相关路由接口
    {
        paths = { "/api/system/menus" },
        methods = { "GET" },
        handler = systemMenu.getSystemMenus,
    },
    {
        paths = { "/api/system/menus/:id" },
        methods = { "GET" },
        handler = systemMenu.getSystemMenu,
    },
    {
        paths = { "/api/system/menus" },
        methods = { "POST" },
        handler = systemMenu.addSystemMenu,
    },
    {
        paths = { "/api/system/menus/:id" },
        methods = { "DELETE" },
        handler = systemMenu.deleteSystemMenu,
    },
    {
        paths = { "/api/system/menus/:id" },
        methods = { "PUT" },
        handler = systemMenu.updateSystemMenu,
    },
 }
 -- 初始化路由
 local rx, err = radix.new(routes)
 if not rx then
    ngx.say("Not Found")
    ngx.exit(ngx.HTTP_NOT_FOUND)
 end
 --获取访问的uri地址
 local uri = ngx.var.uri
 local opts = {
    method = ngx.var.request_method,
    matched = {}
 }
 -- 进行路由匹配和相关函数调用
 local ok = rx:dispatch(uri, opts, opts.matched)
 if not ok then
    ngx.say("Not Found")
    ngx.exit(ngx.HTTP_NOT_FOUND)
 end
--- a/src/api/system/permission.lua
+++ b/src/api/system/permission.lua
@ -16,26 +16,31 @@ local routes = {
        paths = { "/api/system/permissions" },
        methods = { "GET" },
        handler = systemPermission.getSystemPermissions,
        metadata = "system::permissions::list",
    },
    {
        paths = { "/api/system/permissions/:id" },
        methods = { "GET" },
        handler = systemPermission.getSystemPermission,
        metadata = "system::permissions::view",
    },
    {
        paths = { "/api/system/permissions" },
        methods = { "POST" },
        handler = systemPermission.addSystemPermission,
        metadata = "system::permissions::add",
    },
    {
        paths = { "/api/system/permissions/:id" },
        methods = { "DELETE" },
        handler = systemPermission.deleteSystemPermission,
        metadata = "system::permissions::delete",
    },
    {
-        paths = { "/api/system/permission/:id" },
+        paths = { "/api/system/permissions/:id" },
        methods = { "PUT" },
        handler = systemPermission.updateSystemPermission,
        metadata = "system::permissions::edit",
    },
 }
--- a/src/api/system/postion.lua
+++ b/src/api/system/postion.lua
@ -16,26 +16,31 @@ local routes = {
        paths = { "/api/system/positions" },
        methods = { "GET" },
        handler = systemPosition.getSystemPositions,
        metadata = "system::positions::list",
    },
    {
        paths = { "/api/system/positions/:id" },
        methods = { "GET" },
        handler = systemPosition.getSystemPosition,
        metadata = "system::positions::list",
    },
    {
        paths = { "/api/system/positions" },
        methods = { "POST" },
        handler = systemPosition.addSystemPosition,
        metadata = "system::positions::list",
    },
    {
        paths = { "/api/system/positions/:id" },
        methods = { "DELETE" },
        handler = systemPosition.deleteSystemPosition,
        metadata = "system::positions::list",
    },
    {
        paths = { "/api/system/positions/:id" },
        methods = { "PUT" },
        handler = systemPosition.updateSystemPosition,
        metadata = "system::positions::list",
    },
 }
--- a/src/api/system/role.lua
+++ b/src/api/system/role.lua
@ -16,26 +16,31 @@ local routes = {
        paths = { "/api/system/roles" },
        methods = { "GET" },
        handler = systemRole.getSystemRoles,
        metadata = "system::roles::list",
    },
    {
        paths = { "/api/system/roles/:id" },
        methods = { "GET" },
        handler = systemRole.getSystemRole,
        metadata = "system::roles::view",
    },
    {
        paths = { "/api/system/roles" },
        methods = { "POST" },
        handler = systemRole.addSystemRole,
        metadata = "system::roles::add",
    },
    {
        paths = { "/api/system/roles/:id" },
        methods = { "DELETE" },
        handler = systemRole.deleteSystemRole,
        metadata = "system::roles::delete",
    },
    {
        paths = { "/api/system/roles/:id" },
        methods = { "PUT" },
        handler = systemRole.updateSystemRole,
        metadata = "system::roles::edit",
    },
 }
--- a/src/api/system/user.lua
+++ b/src/api/system/user.lua
@ -15,26 +15,31 @@ local routes = {
        paths = { "/api/system/users" },
        methods = { "GET" },
        handler = systemUser.getSystemUsers,
        metadata = "system::users::list",
    },
    {
        paths = { "/api/system/users/:id" },
        methods = { "GET" },
        handler = systemUser.getSystemUser,
        metadata = "system::users::view",
    },
    {
        paths = { "/api/system/users" },
        methods = { "POST" },
        handler = systemUser.addSystemUser,
        metadata = "system::users::add",
    },
    {
        paths = { "/api/system/users/:id" },
        methods = { "DELETE" },
        handler = systemUser.deleteSystemUser,
        metadata = "system::users::delete",
    },
    {
        paths = { "/api/system/users/:id" },
        methods = { "PUT" },
        handler = systemUser.updateSystemUser,
        metadata = "system::users::edit",
    },
 }
--- a/src/auth/jwt-auth.lua
+++ b/src/auth/jwt-auth.lua
@ -1,6 +1,5 @@
 local jwt = require "resty.jwt"
 local cjson = require("cjson.safe")
 local conf = require("config")
 local jsonschema = require("jsonschema")
 -- 定义一个JSON Schema
@ -34,7 +33,7 @@ end
 --获取token的数据值
 local token = string.sub(auth_header,8)
 --校验令牌
-local jwt_obj = jwt:verify(conf.secret_key, token)
+local jwt_obj = jwt:verify(SYSTEM_CONFIG.secret_key, token)
 --如果校验结果中的verified==false，则表示令牌无效
 if jwt_obj.verified == false then
    ngx.log(ngx.WARN, "Invalid token: ".. jwt_obj.reason)
@ -49,5 +48,10 @@ if jwt_obj.payload.exp and ngx.time() > jwt_obj.payload.exp then
    ngx.exit(ngx.HTTP_UNAUTHORIZED)
 end
 -- Access claims in the payload
 local claims = verified.claims
 -- write the uid variable
 ngx.var.uid = jwt_obj.payload
 --全部校验完成后，说明令牌有效，返回令牌数据
 ngx.log(ngx.INFO, "令牌校验通过 JWT: " .. cjson.encode(jwt_obj))
--- a/src/config.lua
+++ b/src/config.lua
@ -2,9 +2,9 @@
 --- Generated by EmmyLua(https://github.com/EmmyLua)
 --- Created by admin.
 --- DateTime: 2025/9/24 16:31
---
+--- 配置文件配置信息
-return {
+SYSTEM_CONFIG = {
    APP_ENV = "dev", -- dev/prod
    locale = 'zh',
@ -18,7 +18,11 @@ return {
    REDIS = {
        HOST = "127.0.0.1", -- redis host
        PORT = 6379,        -- redis port
-        PASSWORD = nil      -- redis password
+        PASSWORD = nil,     -- redis password
        POOL_MAX_IDLE_TIME = 10000,
        POOL_TIMEOUT = 1000, -- pool timeout
        POOL_SIZE = 20,      -- pool size
        TIMEOUT = 1000,      -- timeout
    },
    -- 配置PostgresSQL数据库连接
--- a/src/dao/menu.lua
+++ b/src/dao/menu.lua
@ -1,91 +0,0 @@
 ---
 --- Generated by EmmyLua(https://github.com/EmmyLua)
 --- Created by admin.
 --- DateTime: 2025/11/04 15:06
 --- 数据表模型文件
 local helpers = require("share.helpers")
 --引用使用的库文件
 local model = require("share.model")
 --创建一个数据表相关的模型
 local menuModel = model:new('sys_menu')
 local _M = {}
 --判断菜单是否存在
 local function isExistMenu(id)
    --根据菜单id进行验证菜单是否存在
    local code, res = menuModel:find(id)
    if code ~= 0 then
        return false
    end
    local num = 0
    if res ~= nil then
        num = table.getn(res)
    end
    --组织不存在返回错误
    if num <= 0 then
        return false
    end
    return true
 end
 -- 查询数据表中的所有菜单信息
 function _M.getSystemMenus(pageNum, pageSize)
    return menuModel:paginate(pageNum, pageSize)
 end
 --根据菜单id获取菜单信息
 function _M.getSystemMenu(id)
    return menuModel.find(id)
 end
 --增加菜单息到数据表
 function _M.addSystemMenu(jsonData)
    --解析json中的键和数据值
    local menuid = jsonData['menu_id']
    --根据菜单名称进行验证菜单是否存在
    local code, res = menuModel:where("menu_id", "=", menuid):get()
    if code ~= 0 then
        return 0x000001,res
    end
    local num = 0
    if res ~= nil then
        num = table.getn(res)
    end
    --菜单存在时返回菜单已经存在
    if num > 0 then
        return 0x01000C, nil
    end
    --键值为id产生uuid数据值，增加到json中
    jsonData.id = helpers.getUuid()
    -- 创建一个菜单
    return menuModel:create(jsonData)
 end
 --删除菜单信息到数据表
 function _M.deleteSystemDepartment(id)
    --根据菜单id进行验证菜单是否存在
    local ok = isExistMenu(id)
    --菜单不存在则返回
    if ok == false then
        return 0x000001,nil
    end
    return menuModel:delete(id)
 end
 --更新菜单信息到数据表
 function _M.updateSystemMenu(id, jsonData)
    --根据菜单id进行验证菜单是否存在
    local ok = isExistMenu(id)
    --组织不存在则返回
    if ok == false then
        return 0x000001,nil
    end
    jsonData.update_time = ngx.time()
    --对数据内容进行更新
    return menuModel:where('menu_id', '=', id):update(jsonData)
 end
 return _M
--- a/src/init.lua
+++ b/src/init.lua
@ -9,10 +9,96 @@
 --]]
 print("init application...")
--初始化，获取系统默认的用户权限，为实现RBAC框架做权限数据准备
+--判断程序是否加载权限数据
-cjson = require "cjson"
+--local dict = ngx.shared.dict
-local dict_a = ngx.shared.dict_a
+--local load = dict:get("RBAC")
-local v = dict_a:get("abc")
+--if load then
-if not v then
+--    return
-   dict_a:set("abc", 9)
+--end
 --只在第一个worker进程中执行一次
 if ngx.worker.id() ~= 0 then
    return
 end
 --初始化，获取系统默认的用户权限，为实现RBAC框架做权限数据准备
 local function handler()
    --引用使用的库文件
    local Model = require("share.model")
    --创建一个数据表相关的模型
    local userModel = Model:new('sys_user')
    --读取用户表、角色表和权限表中配置的权限数据
    --获取数据表中的记录数
    local code, res = userModel:count()
    ngx.log(ngx.INFO, "user count:"..res)
    local redis = require("resty.redis")
    local red = redis:new()
    -- 设置超时时间
    red:set_timeout(conf.REDIS.TIMEOUT) -- 1秒
    -- 连接到 Redis
    local ok, err = red:connect(SYSTEM_CONFIG.REDIS.HOST, SYSTEM_CONFIG.REDIS.PORT)
    if not ok then
        ngx.log(ngx.ERR, "redis failed to connect: "..err)
        return
    end
    --需要密码时对密码进行处理
    if SYSTEM_CONFIG.REDIS.PASSWORD ~= nil then
        local res, err = red:auth(SYSTEM_CONFIG.REDIS.PASSWORD)
        if not res then
            ngx.log(ngx.ERR, "redis failed to connect, password error: "..err)
            return
        end
    end
    -- 从连接池中获取连接
    red:set_keepalive(SYSTEM_CONFIG.REDIS.POOL_MAX_IDLE_TIME, SYSTEM_CONFIG.REDIS.POOL_SIZE)
    -- 设置 key-value
    local ok, err = red:set("admin-system:user:add", "1")
    if not ok then
        ngx.log(ngx.ERR, "redis failed to set key: "..err)
        return
    end
    local ok, err = red:set("admin-system:user:edit", "1")
    if not ok then
        ngx.log(ngx.ERR, "failed to set key: "..err)
        return
    end
    local ok, err = red:set("admin-system:user:delete", "1")
    if not ok then
        ngx.log(ngx.ERR, "failed to set key: "..err)
        return
    end
    local ok, err = red:set("admin-system:user:view", "1")
    if not ok then
        ngx.log(ngx.ERR, "failed to set key: "..err)
        return
    end
    local ok, err = red:set("admin-system:user:list", "1")
    if not ok then
        ngx.log(ngx.ERR, "failed to set key: "..err)
        return
    end
    ngx.log(ngx.INFO, "set key successfully")
    --关闭redis连接
    red:close()
    --dict:set("RBAC", "1")
 end
 -- 设置定时器，执行一次handler函数
 local ok, err = ngx.timer.at(0, handler)
 if not ok then
    ngx.log(ngx.ERR, "failed to create timer")
    return
 end
--- a/src/service/auth/auth.lua
+++ b/src/service/auth/auth.lua
@ -95,7 +95,8 @@ function _M.logout()
    --验证成功记录登出的日志信息
    local userid = ret["body"]["payload"]["userid"]
    local username = ret["body"]["payload"]["username"]
-    ngx.log(ngx.INFO, "userid:"..userid.." username:"..username.." logout system")
+    local rolename = ret["body"]["payload"]["username"]
    ngx.log(ngx.INFO, "userid:"..userid.." username:"..username.." rolename:"..rolename.." logout system")
    local result = resp:json(0, "用户退出系统成功")
    resp:send(result)
 end
--- a/src/service/system/menu.lua
+++ b/src/service/system/menu.lua
@ -1,76 +0,0 @@
 ---
 --- Generated by EmmyLua(https://github.com/EmmyLua)
 --- Created by .
 --- DateTime: 2025/11/04 14:35
 --- 业务逻辑 对菜单数据表进行数据表业务处理
 local resp = require("util.response")
 local menuDao = require("dao.menu")
 local validatorJson = require("validator.system.menu")
 local cjson = require("cjson.safe")
 local _M = {}
 --获取所有菜单信息
 function _M.getSystemMenus()
    --获取页码和请求的数据量
    local pageNum = ngx.var.pagenum or 1
    local pageSize = ngx.var.pagesize or 10
    local code,ret = menuDao.getSystemMenus(pageNum, pageSize)
    local result = resp:json(code, ret)
    resp:send(result)
 end
 --根据菜单id获取菜单信息
 function _M.getSystemMenu(m)
    local code,ret = menuDao.getSystemMenu(m.id)
    local result = resp:json(code, ret)
    resp:send(result)
 end
 --根据菜单id添加菜单信息
 function _M.addSystemMenu()
    --读取请求体的数据
    ngx.req.read_body()
    --获取请求数据
    local body_data = ngx.req.get_body_data()
    -- 验证数据是否符合schema
    local ok = validatorJson.validatorJson(body_data)
    --验证失败则返回
    if not ok then
        local result = resp:json(0x000001)
        resp:send(result)
        return
    end
    --ngx.say(body_data)
    local code, ret = menuDao.addSystemMenu(cjson.decode(body_data))
    local result = resp:json(code, ret)
    resp:send(result)
 end
 --根据菜单id删除菜单信息
 function _M.deleteSystemMenu(m)
    local code, ret = menuDao.deleteSystemMenu(m.id)
    local result = resp:json(code, ret)
    resp:send(result)
 end
 --根据菜单id删除菜单信息
 function _M.updateSystemMenu(m)
    --读取请求体的数据
    ngx.req.read_body()
    --获取请求数据
    local body_data = ngx.req.get_body_data()
    -- 验证数据是否符合schema
    local ok = validatorJson.validatorJson(body_data)
    --验证失败则返回
    if not ok then
        local result = resp:json(0x000001)
        resp:send(result)
        return
    end
    local code, ret = menuDao.updateSystemMenu(m.id, cjson.decode(body_data))
    local result = resp:json(code, ret)
    resp:send(result)
 end
 return _M
--- a/src/service/system/user.lua
+++ b/src/service/system/user.lua
@ -23,8 +23,15 @@ local function getUserId()
    return userid
 end
 --判断用户是都有权限使用接口
 --local payload = ngx.var.uid
 --获取所有用户信息
-function _M.getSystemUsers()
+function _M.getSystemUsers(m)
    --获取登录的用户信息
    local payload = ngx.var.uid
    local metadata = m.metadata
    ngx.log(ngx.INFO, "metadata value:"..metadata)
    --获取页码和请求的数据量
    --local args = ngx.req.get_uri_args()
    local pageNum = ngx.var.pagenum or 1
@ -36,6 +43,11 @@ end
 --根据用户id获取用户信息
 function _M.getSystemUser(m)
    --获取登录的用户信息
    local payload = ngx.var.uid
    local metadata = m.metadata
    ngx.log(ngx.INFO, "metadata value:"..metadata)
    local userid = getUserId()
    if userid ~= m.id then
        ngx.log(ngx.WARN, "用户与使用token中的用户id不一致")
@ -48,7 +60,7 @@ function _M.getSystemUser(m)
 end
 --根据用户id获取用户信息
-function _M.addSystemUser()
+function _M.addSystemUser(m)
    --读取请求体的数据
    ngx.req.read_body()
    --获取请求数据
--- a/src/share/helpers.lua
+++ b/src/share/helpers.lua
@ -127,8 +127,7 @@ local function get_cookie(key)
 end
 local function get_local_time()
-    local config = require("config")
+    local time_zone = ngx.re.match(SYSTEM_CONFIG.time_zone, "[0-9]+")
    local time_zone = ngx.re.match(config.time_zone, "[0-9]+")
    if time_zone == nil then
        local err = "not set time zone or format error, time zone should look like `+8:00` current is: " .. config.time_zone
        ngx.log(ngx.ERR, err)
--- a/src/share/model.lua
+++ b/src/share/model.lua
@ -1,6 +1,4 @@
 local Database = require('share.database')
 local conf = require("config")
 local helpers = require('share.helpers')
 local implode = helpers.implode
 local unique = helpers.unique
@ -12,28 +10,28 @@ local WRITE = 'WRITE'
 local READ = 'READ'
 local database_write = Database:new({
-	host = conf.POSTGRES.HOST,
+	host = SYSTEM_CONFIG.POSTGRES.HOST,
-	port = conf.POSTGRES.PORT,
+	port = SYSTEM_CONFIG.POSTGRES.PORT,
-	user = conf.POSTGRES.USERNAME,
+	user = SYSTEM_CONFIG.POSTGRES.USERNAME,
-	password = conf.POSTGRES.PASSWORD,
+	password = SYSTEM_CONFIG.POSTGRES.PASSWORD,
-    database = conf.POSTGRES.DATABASE,
+    database = SYSTEM_CONFIG.POSTGRES.DATABASE,
-	charset = conf.POSTGRES.CHARSET,
+	charset = SYSTEM_CONFIG.POSTGRES.CHARSET,
-	timeout = conf.POSTGRES.TIMEOUT,
+	timeout = SYSTEM_CONFIG.POSTGRES.TIMEOUT,
-	db_pool_timeout = conf.POSTGRES.POOL_TIMEOUT,
+	db_pool_timeout = SYSTEM_CONFIG.POSTGRES.POOL_TIMEOUT,
-	db_pool_size = conf.POSTGRES.POOL_SIZE,
+	db_pool_size = SYSTEM_CONFIG.POSTGRES.POOL_SIZE,
 	db_type = WRITE
 })
 local database_read = Database:new({
-	host = conf.POSTGRES.HOST,
+	host = SYSTEM_CONFIG.POSTGRES.HOST,
-	port = conf.POSTGRES.PORT,
+	port = SYSTEM_CONFIG.POSTGRES.PORT,
-	user = conf.POSTGRES.USERNAME,
+	user = SYSTEM_CONFIG.POSTGRES.USERNAME,
-	password = conf.POSTGRES.PASSWORD,
+	password = SYSTEM_CONFIG.POSTGRES.PASSWORD,
-	database = conf.POSTGRES.DATABASE,
+	database = SYSTEM_CONFIG.POSTGRES.DATABASE,
-	charset = conf.POSTGRES.CHARSET,
+	charset = SYSTEM_CONFIG.POSTGRES.CHARSET,
-	timeout = conf.POSTGRES.TIMEOUT,
+	timeout = SYSTEM_CONFIG.POSTGRES.TIMEOUT,
-	db_pool_timeout = conf.POSTGRES.POOL_TIMEOUT,
+	db_pool_timeout = SYSTEM_CONFIG.POSTGRES.POOL_TIMEOUT,
-	db_pool_size = conf.POSTGRES.POOL_SIZE,
+	db_pool_size = SYSTEM_CONFIG.POSTGRES.POOL_SIZE,
 	db_type = READ
 })
--- a/src/share/redis.lua
+++ b/src/share/redis.lua
@ -0,0 +1,61 @@
 local redis = require("resty.redis")
 local _M = setmetatable({}, {__index = function(self, key)
    local red = redis:new()
    local ok, err = red:connect(SYSTEM_CONFIG.REDIS.HOST, SYSTEM_CONFIG.REDIS.PORT)
    if not ok then
        ngx.log(ngx.ERR, err)
    end
    if key == "red" then
        return red
    end
 end})
 function _M:set(key, value, time)
 	local ok, err = self.red:set(key, value)
 	if not ok then
 	    return false, "redis failed to set data: " .. err
 	end
 	if time then
 		ok,err = self.red:expire(key, time) -- default expire time is seconds
 		if not ok then
 			return false,err
 		end
 	end
 	return true
 end
 function _M:get(key)
 	local value = self.red:get(key)
 	if value == ngx.null then
 		return nil
 	else
 		return value
 	end
 end
 function _M:del(key)
 	return self.red:del(key)
 end
 function _M:expire(key, time)
 	local ok,err = self.red:expire(key, time) -- default time is seconds
 	if not ok then
 		return false,err
 	end
 	return true
 end
 function _M:incr(key)
 	local ok,err = self.red:incr(key)
 	if not ok then
 		return false, err
 	end
 	return true
 end
 function _M:ttl(key)
 	return self.red:ttl(key)
 end
 return _M
--- a/src/test/test.lua
+++ b/src/test/test.lua
@ -7,6 +7,7 @@
 local helpers = require("share.helpers")
 local jsonschema = require("jsonschema")
 local cjson = require("cjson.safe")
 local redis = require("share.redis")
 --local workerId = 0 -- 假设当前机器的ID是1，范围在[0, 31]之间
 --local datacenterId = 0 -- 数据中心ID，范围在[0, 31]之间
@ -16,9 +17,67 @@ local cjson = require("cjson.safe")
 --max =a and b or c--a?b:c
 --[[
 --获取用户相关的角色数据的数据
 local function init_task()
    local redis = require("share.redis")
    --引用使用的库文件
    local Model = require("share.model")
    --创建一个数据表相关的模型
    local userModel = Model:new('sys_user')
    --获取数据表中的记录数
    local code, res = userModel:count()
    --redis:set("admin-system:user:add", "1")
    --redis:set("admin-system:user:edit", "1")
    --redis:set("admin-system:user:delete", "1")
    --redis:set("admin-system:user:view", "1")
    --local ok, err = redis:set("admin-system:user:list", "1")
    --if not ok then
    --    ngx.log(ngx.ERR, "failed to set key in Redis: ", err)
    --else
    --    ngx.log(ngx.INFO, "updated key: ", key, " with value: ", value)
    --end
    --dict:set("RBAC", "1")
    ngx.thread.kill(t)
 end
 --启动线程进行处理
 t = ngx.thread.spawn(init_task)
 --]]
 --[[
 --调用c库相关例子
 local mylib = require "addlib"
 ngx.say(addlib.add(5,7))
 --]]
 --local dict = ngx.shared.dictRBAC
 --local value, err = dict:get("zhangsan-system:user:list")
 --if value then
 --    ngx.say("zhangsan-system:user:list is exist")
 --else
 --    ngx.say("zhangsan-system:user:list is not exist")
 --end
 local val1, err = redis:get("admin-system:user:add")
 local val2, err = redis:get("admin-system:user:edit")
 local val3, err = redis:get("admin-system:user:delete")
 local val4, err = redis:get("admin-system:user:view")
 local val5, err = redis:get("admin-system:user:list")
 ngx.say("add:"..val1)
 ngx.say("edit:"..val2)
 ngx.say("delete:"..val3)
 ngx.say("view:"..val4)
 ngx.say("list:"..val5)
 local val6, err = redis:get("admin-system:user:test")
 if val6 ~= nil then
    ngx.say("test:"..val6)
 end
 --[[
 local uuid = require("resty.jit-uuid")
 uuid.seed()
--- a/src/util/rbac.lua
+++ b/src/util/rbac.lua
@ -75,4 +75,19 @@ function RBAC:get_user_permissions(user_id)
    return user_permissions
 end
 -- 添加角色
 --_, err = permit.AddPolicy(roleName, roleId, action)
 -- 赋予用户角色
 --_, err = permit.AddRoleForUser(user, roleName)
 -- 查看具有某角色的所有用户
 --res, err = permit.GetUsersForRole(roleName)
 -- 移除用户具有的角色
 --_, err = permit.DeleteRoleForUser(user, roleName)
 -- 移除角色，跟角色相关联的用户都被移除
 --_, err = permit.DeleteRole(roleName)
 return RBAC
--- a/src/util/token.lua
+++ b/src/util/token.lua
@ -5,7 +5,6 @@
 ---
 local jwt = require("resty.jwt")
 local conf = require("config")
 local jsonschema = require("jsonschema")
 local _M = {}
@ -39,7 +38,7 @@ function _M.generateToken(userid, username)
    obj.payload.userid = userid
    obj.payload.username = username
    --获取的登陆的用户信息，返回tocken
-    local jwt_token = jwt:sign(conf.secret_key, obj)
+    local jwt_token = jwt:sign(SYSTEM_CONFIG.secret_key, obj)
    return "Bearer "..jwt_token
 end
@ -68,7 +67,7 @@ function _M.authorizationToken(auth_header)
    --查找令牌中的Bearer前缀字符，并进行截取
    local token = string.sub(auth_header,8)
    --校验令牌
-    local jwt_obj = jwt:verify(conf.secret_key, token)
+    local jwt_obj = jwt:verify(SYSTEM_CONFIG.secret_key, token)
    --如果校验结果中的verified==false，则表示令牌无效
    if jwt_obj.verified == false then
        response["code"] = 401
--- a/src/validator/system/menu.lua
+++ b/src/validator/system/menu.lua
@ -1,37 +0,0 @@
 ---
 --- Generated by EmmyLua(https://github.com/EmmyLua)
 --- Created by .
 --- DateTime: 2025/11/04 11:12
 --- 业务逻辑 对菜单数据进行参数数据的验证
 local jsonschema = require("jsonschema")
 local _M = {}
 -- 定义一个JSON Schema
 local schema = {
    {type = "object", properties = {
        {name = "menu_id", type = "string"},
        {name = "menu_name", type = "string"},
        {name = "parent_id", type = "string"},
        {name = "order_num", type = "number"},
        {name = "url", type = "string"},
        {name = "target", type = "string"},
        {name = "menu_type", type = "string"},
        {name = "status", type = "string"},
        {name = "is_refresh", type = "string"},
        {name = "perms", type = "string"},
        {name = "perms", type = "string"},
        {name = "create_by", type = "string"},
        {name = "update_by", type = "string"},
        {name = "remark", type = "string"},
    }, required = {"menu_id", "menu_name"}}
 }
 function _M.validatorJson(jsonData)
    -- 验证数据是否符合schema
    local validator = jsonschema.generate_validator(schema)
    local result = validator(jsonData)
    return result
 end
 return _M
Author	SHA1	Message	Date
wanglei	22226239da	接口增加对应的权限码表数据值，在函数中使用，同时将token认证的信息存储到ngx.var.uid中看在函数中是否能用	2025-11-06 15:36:15 +08:00
wanglei	5e6f9aa94e	修改配置文件形式，直接使用配置的值进行获取	2025-11-06 13:27:47 +08:00
wanglei	32b50a90c1	增加配置，和定时操作初始化时将时间内容提前加载到内存中，用于后续的权限认证使用	2025-11-06 11:51:06 +08:00
wanglei	5660d561be	增加redis类进行redis数据库的操作	2025-11-05 22:00:43 +08:00
wanglei	5e6777e48b	去掉菜单暂时不使用菜单	2025-11-05 20:21:25 +08:00
wanglei	f12c32db08	修改配置文件，增加lua使用的共享内存例子，用于测试使用	2025-11-05 16:17:17 +08:00