chakra-coder
diff --git a/‎hsweb-authorization/hsweb-authorization-api/src/main/java/org/hswebframework/web/authorization/Authorization.java
Lines changed: 73 additions & 7 deletions b/‎hsweb-authorization/hsweb-authorization-api/src/main/java/org/hswebframework/web/authorization/Authorization.java
Lines changed: 73 additions & 7 deletions
diff --git a/‎hsweb-authorization/hsweb-authorization-api/src/main/java/org/hswebframework/web/authorization/AuthorizationHolder.java
Lines changed: 12 additions & 1 deletion b/‎hsweb-authorization/hsweb-authorization-api/src/main/java/org/hswebframework/web/authorization/AuthorizationHolder.java
Lines changed: 12 additions & 1 deletion
diff --git a/‎hsweb-authorization/hsweb-authorization-api/src/main/java/org/hswebframework/web/authorization/Permission.java
Lines changed: 2 additions & 0 deletions b/‎hsweb-authorization/hsweb-authorization-api/src/main/java/org/hswebframework/web/authorization/Permission.java
Lines changed: 2 additions & 0 deletions
diff --git a/‎hsweb-authorization/hsweb-authorization-api/src/main/java/org/hswebframework/web/authorization/Role.java
Lines changed: 1 addition & 1 deletion b/‎hsweb-authorization/hsweb-authorization-api/src/main/java/org/hswebframework/web/authorization/Role.java
Lines changed: 1 addition & 1 deletion
diff --git a/‎hsweb-authorization/hsweb-authorization-api/src/main/java/org/hswebframework/web/authorization/access/CustomDataAccess.java
Lines changed: 6 additions & 0 deletions b/‎hsweb-authorization/hsweb-authorization-api/src/main/java/org/hswebframework/web/authorization/access/CustomDataAccess.java
Lines changed: 6 additions & 0 deletions
diff --git a/‎hsweb-authorization/hsweb-authorization-api/src/main/java/org/hswebframework/web/authorization/access/DataAccessController.java
Lines changed: 2 additions & 2 deletions b/‎hsweb-authorization/hsweb-authorization-api/src/main/java/org/hswebframework/web/authorization/access/DataAccessController.java
Lines changed: 2 additions & 2 deletions
diff --git a/‎hsweb-authorization/hsweb-authorization-api/src/main/java/org/hswebframework/web/authorization/access/FieldAccess.java
Lines changed: 1 addition & 1 deletion b/‎hsweb-authorization/hsweb-authorization-api/src/main/java/org/hswebframework/web/authorization/access/FieldAccess.java
Lines changed: 1 addition & 1 deletion
diff --git a/‎hsweb-authorization/hsweb-authorization-api/src/main/java/org/hswebframework/web/authorization/access/FieldAccessController.java
Lines changed: 12 additions & 1 deletion b/‎hsweb-authorization/hsweb-authorization-api/src/main/java/org/hswebframework/web/authorization/access/FieldAccessController.java
Lines changed: 12 additions & 1 deletion
diff --git a/‎hsweb-authorization/hsweb-authorization-api/src/main/java/org/hswebframework/web/authorization/access/OwnCreatedDataAccess.java
Lines changed: 1 addition & 1 deletion b/‎hsweb-authorization/hsweb-authorization-api/src/main/java/org/hswebframework/web/authorization/access/OwnCreatedDataAccess.java
Lines changed: 1 addition & 1 deletion
diff --git a/‎hsweb-authorization/hsweb-authorization-api/src/main/java/org/hswebframework/web/authorization/access/ParamContext.java
Lines changed: 3 additions & 3 deletions b/‎hsweb-authorization/hsweb-authorization-api/src/main/java/org/hswebframework/web/authorization/access/ParamContext.java
Lines changed: 3 additions & 3 deletions
diff --git a/‎hsweb-authorization/hsweb-authorization-api/src/main/java/org/hswebframework/web/authorization/access/ScriptDataAccess.java
Lines changed: 1 addition & 1 deletion b/‎hsweb-authorization/hsweb-authorization-api/src/main/java/org/hswebframework/web/authorization/access/ScriptDataAccess.java
Lines changed: 1 addition & 1 deletion
diff --git a/‎hsweb-authorization/hsweb-authorization-api/src/main/java/org/hswebframework/web/authorization/annotation/AuthInfo.java
Lines changed: 11 additions & 1 deletion b/‎hsweb-authorization/hsweb-authorization-api/src/main/java/org/hswebframework/web/authorization/annotation/AuthInfo.java
Lines changed: 11 additions & 1 deletion
diff --git a/‎hsweb-authorization/hsweb-authorization-api/src/main/java/org/hswebframework/web/authorization/annotation/Authorize.java
Lines changed: 21 additions & 23 deletions b/‎hsweb-authorization/hsweb-authorization-api/src/main/java/org/hswebframework/web/authorization/annotation/Authorize.java
Lines changed: 21 additions & 23 deletions
@@ -21,20 +21,51 @@
 import java.util.List;
 import java.util.Map;
 import java.util.Objects;
+import java.util.Optional;
 import java.util.function.Supplier;
 
 /**
- * TODO 完成注释
+ * 用户授权信息,当前登录用户的权限信息,包括用户的基本信息,角色,权限集合等常用信息<br>
+ * 如何获取:
+ * <ul>
+ * <li>springmvc 入参方式: ResponseMessage myTest(@AuthInfo Authorization auth){}</li>
+ * <li>静态方法方式:AuthorizationHolder.get();</li>
+ * </ul>
  *
  * @author zhouhao
+ * @see AuthorizationHolder
+ * @see org.hswebframework.web.authorization.annotation.AuthInfo
+ * @since 3.0
  */
 public interface Authorization extends Serializable {
+
+    /**
+     * 获取用户基本信息
+     *
+     * @return 用户信息
+     */
     User getUser();
 
+    /**
+     * 获取持有的角色集合
+     *
+     * @return 角色集合
+     */
     List<Role> getRoles();
 
+    /**
+     * 获取持有的权限集合
+     *
+     * @return 权限集合
+     */
     List<Permission> getPermissions();
 
+    /**
+     * 根据id获取角色,角色不存在则返回null
+     *
+     * @param id 角色id
+     * @return 角色信息
+     */
     default Role getRole(String id) {
         if (null == id) return null;
         return getRoles().stream()
@@ -43,6 +74,12 @@ default Role getRole(String id) {
                 .orElse(null);
     }
 
+    /**
+     * 根据权限id获取权限信息,权限不存在则返回null
+     *
+     * @param id 权限id
+     * @return 权限信息
+     */
     default Permission getPermission(String id) {
         if (null == id) return null;
         return getPermissions().parallelStream()
@@ -51,17 +88,46 @@ default Permission getPermission(String id) {
                 .orElse(null);
     }
 
+    /**
+     * 根据属性名获取属性值,返回一个{@link Optional}对象。<br>
+     * 此方法可用于获取自定义的属性信息
+     *
+     * @param name 属性名
+     * @param <T>  属性值类型
+     * @return Optional属性值
+     */
+    <T extends Serializable> Optional<T> getAttribute(String name);
 
-    <T extends Serializable> T getAttribute(String name);
-
-    <T extends Serializable> T getAttribute(String name, T defaultValue);
-
-    <T extends Serializable> T getAttribute(String name, Supplier<T> supplier);
-
+    /**
+     * 设置一个属性值,如果属性名称已经存在,则将其覆盖。<br>
+     * 注意:由于权限信息可能会被序列化,属性值必须实现{@link Serializable}接口
+     *
+     * @param name   属性名称
+     * @param object 属性值
+     */
     void setAttribute(String name, Serializable object);
 
+    /**
+     * 设置多个属性值,参数为map类型,key为属性名称,value为属性值
+     *
+     * @param attributes 属性值map
+     */
     void setAttributes(Map<String, Serializable> attributes);
 
+    /**
+     * 删除属性,并返回被删除的值
+     *
+     * @param name 属性名
+     * @param <T>  被删除的值类型
+     * @return 被删除的值
+     */
+    <T extends Serializable> T removeAttributes(String name);
+
+    /**
+     * 获取全部属性,此属性为通过{@link this#setAttribute(String, Serializable)}或{@link this#setAttributes(Map)}设置的属性。
+     *
+     * @return 全部属性集合
+     */
     Map<String, Serializable> getAttributes();
 
 }
@@ -19,7 +19,15 @@
 package org.hswebframework.web.authorization;
 
 /**
- * 权限获取器,用于静态方式获取当前登录用户的权限信息
+ * 权限获取器,用于静态方式获取当前登录用户的权限信息.
+ * 例如:
+ * <pre>
+ *     &#064;RequestMapping("/example")
+ *     public ResponseMessage example(){
+ *         Authorization auth = AuthorizationHolder.get();
+ *         return ResponseMessage.ok();
+ *     }
+ * </pre>
  *
  * @author zhouhao
  * @see AuthorizationSupplier
@@ -28,6 +36,9 @@
 public final class AuthorizationHolder {
     private static AuthorizationSupplier supplier;
 
+    /**
+     * @return 当前登录用户信息
+     */
     public static Authorization get() {
         if (null == supplier) {
             throw new UnsupportedOperationException("AuthorizationSupplier is null!");
 
@@ -27,6 +27,8 @@
  * 用户持有的权限信息
  *
  * @author zhouhao
+ * @see Authorization
+ * @since 3.0
  */
 public interface Permission extends Serializable {
 
 
@@ -23,6 +23,7 @@
  * 角色信息
  *
  * @author zhouhao
+ * @since 3.0
  */
 public interface Role extends Serializable {
 
@@ -32,7 +33,6 @@ public interface Role extends Serializable {
     String getId();
 
     /**
-     *
      * @return 角色名
      */
     String getName();
 
@@ -1,10 +1,16 @@
 package org.hswebframework.web.authorization.access;
 
 /**
+ * 自定义控制器的数据级权限控制器
+ *
  * @author zhouhao
  * @see DataAccess.Type#CUSTOM
  */
 public interface CustomDataAccess extends DataAccess {
+
+    /**
+     * @return 自定义的控制器
+     */
     DataAccessController getController();
 
     default String getType() {
 
@@ -5,14 +5,14 @@
  * 如：A用户只能查询自己创建的B数据,A用户只能修改自己创建的B数据
  *
  * @author zhouhao
- * @see 3.0
+ * @since  3.0
  */
 public interface DataAccessController {
     /**
      * 执行权限控制
      * @param access 控制方式以及配置
      * @param params 当前操作的方法的参数上下文
-     * @return
+     * @return 授权是否通过
      */
     boolean doAccess(DataAccess access, ParamContext params);
 }
@@ -4,7 +4,7 @@
 import java.util.Set;
 
 /**
- * 字段级别权限控制
+ * 字段级别权限控制配置,表示此用户不能对字段{@link this#getField()} 执行 {@link this#getActions()}操作
  *
  * @author zhouhao
  * @see FieldAccessController
 
@@ -1,12 +1,23 @@
 package org.hswebframework.web.authorization.access;
 
+import org.hswebframework.web.authorization.Permission;
+
 import java.util.Set;
 
 /**
- * TODO 完成注释
+ * 字段级权限控制器,用于控制对字段的操作权限。如:不同角色,可操作的字段不同等
  *
  * @author zhouhao
  */
 public interface FieldAccessController {
+
+    /**
+     * 执行权限验证。根据当前被拦截的操作类型,以及此类型可操作的字段集合进行权限验证
+     *
+     * @param action   当前操作的类型 {@link Permission#getActions()}
+     * @param accesses 不可操作的字段
+     * @param params   参数上下文
+     * @return 验证是否通过
+     */
     boolean doAccess(String action, Set<FieldAccess> accesses, ParamContext params);
 }
@@ -1,7 +1,7 @@
 package org.hswebframework.web.authorization.access;
 
 /**
- * TODO 完成注释
+ * 只能操作由自己创建的数据
  *
  * @author zhouhao
  */
 
@@ -29,9 +29,9 @@ public interface ParamContext extends Serializable {
     Method getMethod();
 
     /**
-     * 根据参数名获取参数值,此参数为方法的参数,而非http参数 <br/>
-     * 如：当前被操作的方法为 query(QueryParam param); 调用getParameter("param"); 则返回QueryParam实例<br/>
-     * 注意:返回值为Optional对象,使用方法见{@link Optional}<br/>
+     * 根据参数名获取参数值,此参数为方法的参数,而非http参数 <br>
+     * 如：当前被操作的方法为 query(QueryParam param); 调用getParameter("param"); 则返回QueryParam实例<br>
+     * 注意:返回值为Optional对象,使用方法见{@link Optional}<br>
      *
      * @param name 参数名称
      * @param <T>  参数泛型
 
@@ -1,7 +1,7 @@
 package org.hswebframework.web.authorization.access;
 
 /**
- * 动态脚本数据权限控制
+ * 通过脚本来控制数据操作权限.脚本可以在前端设置角色的时候进行编辑
  *
  * @author zhouhao
  */
 
@@ -20,9 +20,19 @@
 import java.lang.annotation.*;
 
 /**
- * TODO 完成注释
+ * 用于springmvc中,将授权信息自动注入到参数中.
+ * 例如:
+ * <pre>
+ *    &#064;ReuqestMapping("/example")
+ *    public ResponseMessage(&#064;AuthInfo Authorization auth){
+ *      User user = auth.getUser();
+ *      return ok();
+ *    }
+ * </pre>
  *
  * @author zhouhao
+ * @see org.hswebframework.web.authorization.Authorization
+ * @since 3.0
  */
 @Target(ElementType.PARAMETER)
 @Retention(RetentionPolicy.RUNTIME)
 
@@ -18,10 +18,17 @@
 
 package org.hswebframework.web.authorization.annotation;
 
+import org.hswebframework.web.authorization.Permission;
+import org.hswebframework.web.authorization.Role;
+import org.hswebframework.web.authorization.User;
+
 import java.lang.annotation.*;
 
 /**
- * 权限注解
+ * 基础权限控制注解,提供基本的控制配置
+ *
+ * @author zhouhao
+ * @since 3.0
  */
 @Target({ElementType.TYPE, ElementType.METHOD})
 @Retention(RetentionPolicy.RUNTIME)
@@ -32,67 +39,58 @@
     /**
      * 对角色授权,当使用按角色授权时，对模块以及操作级别授权方式失效
      *
-     * @return 进行授权的角色数组
+     * @return 进 role id array
+     * @see Role#getId()
      */
     String[] role() default {};
 
     /**
      * 对模块授权
      *
-     * @return 进行授权的模块
+     * @return permission id array
+     * @see Permission#getId()
      */
     String[] permission() default {};
 
     /**
      * 如增删改查等
      *
-     * @return
+     * @return action array
+     * @see Permission#getActions()
      */
     String[] action() default {};
 
-
     /**
      * 验证是否为指定user
      *
-     * @return
+     * @return user id array
+     * @see User#getId()
      */
     String[] user() default {};
 
     /**
      * 验证失败时返回的消息
      *
-     * @return
+     * @return 验证失败提示的消息
      */
     String message() default "{unauthorized}";
 
     /**
      * 表达式验证
      *
-     * @return
+     * @return 表达式
+     * @see RequiresExpression#value()
      */
     String expression() default "";
 
     /**
      * 表达式语言，默认spring表达式
      *
      * @return 表达式语言
+     * @see RequiresExpression#language()
      */
     String expressionLanguage() default "spel";
 
-    /**
-     * 是否为api接口，为true时，可使用api方式请求。
-     *
-     * @return
-     */
-    boolean api() default false;
-
-    /**
-     * 可匿名访问
-     *
-     * @return 是否可匿名访问, 匿名访问将不用登录
-     */
-    boolean anonymous() default false;
-
     /**
      * 是否合并类上的注解
      *
@@ -103,7 +101,7 @@
     /**
      * 验证模式，在使用多个验证条件时有效
      *
-     * @return
+     * @return logical
      */
     Logical logical() default Logical.OR;
Original file line number	Diff line number	Diff line change
`@@ -27,6 +27,8 @@`
`27`	`27`	`* 用户持有的权限信息`
`28`	`28`	`*`
`29`	`29`	`* @author zhouhao`
	`30`	`+ * @see Authorization`
	`31`	`+ * @since 3.0`
`30`	`32`	`*/`
`31`	`33`	`public interface Permission extends Serializable {`
`32`	`34`
Original file line number	Diff line number	Diff line change
`@@ -4,7 +4,7 @@`
`4`	`4`	`import java.util.Set;`
`5`	`5`
`6`	`6`	`/**`
`7`		`- * 字段级别权限控制`
	`7`	`+ * 字段级别权限控制配置,表示此用户不能对字段{@link this#getField()} 执行 {@link this#getActions()}操作`
`8`	`8`	`*`
`9`	`9`	`* @author zhouhao`
`10`	`10`	`* @see FieldAccessController`
Original file line number	Diff line number	Diff line change
`@@ -1,7 +1,7 @@`
`1`	`1`	`package org.hswebframework.web.authorization.access;`
`2`	`2`
`3`	`3`	`/**`
`4`		`- * TODO 完成注释`
	`4`	`+ * 只能操作由自己创建的数据`
`5`	`5`	`*`
`6`	`6`	`* @author zhouhao`
`7`	`7`	`*/`