if I understand it correctly, the operation permissions of the project are only related to the user's role (that is, your identity)

• A separate table for the project has a many-to-many relationship with the user table. You can pull an associated table of userId and projectId (for more information, please see hibernate's manytomany)
• different roles have different operation permissions, and different roles have different permissions in different projects. You can pull a separate permission table with a total of four columns, self-increasing primary key, project id, role id, project permissions , where the project id+ role id is the joint unique key, enumerated variables can be used in the project permission business, and numbers can be used to represent
in the table.

digression

in fact, all designs should go back to their origin, that is, business requirements. "different roles have different permissions, and different roles have different permissions in different projects." what is this specific scenario? Is there an administrator platform for Super Admin to set permissions for each role in each project?

in fact, I think a more reasonable solution: user rights and project decoupling, may only be used for the login of the system and the operation rights of other modules. Project permissions are configured directly through the page and are user latitude, that is, change the role id in the second table to user id. That is, each project administrator can assign permissions to users, so the configuration of project permissions in user latitude is more reasonable