// the find
elunez/eladmin
eladmin jpa 版本:项目基于 Spring Boot 2.7.18、 Jpa、 Spring Security、Redis、Vue的前后端分离的后台管理系统,项目采用分模块开发方式, 权限控制采用 RBAC,支持数据字典与数据权限管理,支持一键生成前后端代码,支持动态路由
eladmin is a Spring Boot 2.7 + Vue 2 admin scaffold with RBAC, JPA, Redis-backed sessions, and a code generator that spits out full CRUD front and back from a DB table. It's aimed at Chinese enterprise dev teams who need an internal admin panel fast and don't want to wire up the standard stack themselves. 21k stars and a mybatis-plus fork suggest it's genuinely used, not just starred.
The RBAC implementation is thorough — menu-level permissions, data-scope permissions per department, and a custom @DataPermission annotation that hooks into JPA queries rather than doing post-fetch filtering. The code generator is the real draw: it reads column metadata and writes Entity/DTO/Repository/Service/ServiceImpl/Controller on the backend plus api.js and the Vue table page on the frontend, which is actually useful for internal tools. Rate limiting via @Limit annotation backed by Redis is clean and avoids a full gateway dependency. Module separation (logging, tools, generator as optional Maven modules) means you can strip what you don't need without surgery.
Spring Boot 2.7 hit EOL in November 2023 — the Spring Security and JPA APIs changed meaningfully in Boot 3.x and migration is non-trivial given how deep the security config goes here; there's no Boot 3 branch. Vue 2 is also EOL (end of 2023), and the frontend depends on Element UI which is similarly frozen; anyone starting a new project today is walking into a support cliff. The deploy/devops module lets admin users run arbitrary shell commands on remote servers over SSH — this is powerful but the access controls around it are soft (any user with the maint permission can deploy), which is a real risk in multi-admin setups. No integration tests: the test directory has only unit tests for utility classes, so you're on your own verifying that the JPA queries and security rules actually work together.