8 anos atrás · 5d6f12afbe
--- a/hsweb-authorization/hsweb-authorization-shiro/README.md
+++ b/hsweb-authorization/hsweb-authorization-shiro/README.md
@@ -4,18 +4,20 @@
 
				 
			
 
				 本模块对shiro进行拓展,增加对[hsweb-authorization-api](../hsweb-authorization-api)中的注解进行实现。
			
 
				 实现类如下:
			
 
				-| 注解名称       | 实现类        | 
			
 
				+
			
 
				+| 注解名称       | 实现类       | 
			
 
				 | ------------- |:-------------:| 
			
 
				-| [`@Authorize`](src/main/java/org/hswebframework/web/authorization/annotation/Authorize.java)    | 暂未实现 | 
			
 
				-| [`@RequiresExpression`](src/main/java/org/hswebframework/web/authorization/annotation/RequiresExpression.java)      | [ExpressionAnnotationMethodInterceptor](src/main/java/org/hswebframework/web/authorization/shiro/boost/ExpressionAnnotationMethodInterceptor.java)      | 
			
 
				-| [`@RequiresDataAccess`](src/main/java/org/hswebframework/web/authorization/annotation/RequiresDataAccess.java)      | [DataAccessAnnotationMethodInterceptor](src/main/java/org/hswebframework/web/authorization/shiro/boost/DataAccessAnnotationMethodInterceptor.java)      | 
			
 
				-| [`@RequiresFieldAccess`](src/main/java/org/hswebframework/web/authorization/annotation/RequiresFieldAccess.java)      | [FieldAccessAnnotationMethodInterceptor](src/main/java/org/hswebframework/web/authorization/shiro/boost/FieldAccessAnnotationMethodInterceptor.java)      | 
			
 
				+| [`@Authorize`](src/main/java/org/hswebframework/web/authorization/annotation/Authorize.java)    |      暂未实现        |
			
 
				+| [`@RequiresExpression`](src/main/java/org/hswebframework/web/authorization/annotation/RequiresExpression.java)    | [ExpressionAnnotationMethodInterceptor](src/main/java/org/hswebframework/web/authorization/shiro/boost/ExpressionAnnotationMethodInterceptor.java)      | 
			
 
				+| [`@RequiresDataAccess`](src/main/java/org/hswebframework/web/authorization/annotation/RequiresDataAccess.java)    | [DataAccessAnnotationMethodInterceptor](src/main/java/org/hswebframework/web/authorization/shiro/boost/DataAccessAnnotationMethodInterceptor.java)      | 
			
 
				+| [`@RequiresFieldAccess`](src/main/java/org/hswebframework/web/authorization/annotation/RequiresFieldAccess.java)  | [FieldAccessAnnotationMethodInterceptor](src/main/java/org/hswebframework/web/authorization/shiro/boost/FieldAccessAnnotationMethodInterceptor.java)   | 
			
 
				 
			
 
				 ## 拓展接口
			
 
				 
			
 
				 ### 行级权限控制器
			
 
				 
			
 
				 控制逻辑简述:
			
 
				+
			
 
				 1. 获取被拦截方法的注解信息,取得当前需要验证的permission,action。如: user,query
			
 
				 2. 根据上一步获取到需要验证的permission和action获取当前登录用户权限信息中配置的控制规则（控制规则可以在前端进行设置）
			
 
				 3. 调用控制器进行验证
			
@@ -23,6 +25,7 @@
 
				 可自己实现DataAccessHandler接口并注入spring以实现自定义的控制方式
			
 
				 
			
 
				 现已实现3中控制器
			
 
				+
			
 
				 1. [CustomDataAccessHandler](src/main/java/org/hswebframework/web/authorization/shiro/boost/handler/CustomDataAccessHandler.java) 自定义控制器
			
 
				 2. [OwnCreatedDataAccessHandler](src/main/java/org/hswebframework/web/authorization/shiro/boost/handler/OwnCreatedDataAccessHandler.java) 控制只能操作自己创建的数据
			
 
				 3. [ScriptDataAccessHandler](src/main/java/org/hswebframework/web/authorization/shiro/boost/handler/ScriptDataAccessHandler.java) 使用脚本方式控制