EggPlanet
/
egg_admin
3
0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
蛋蛋星球 后台端
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
172 Commits
1 Branch
17 MiB
 
 
 
 
 
Tree: 51a9ac25fb
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '51a9ac25fb'
${ noResults }
egg_admin/app/svc/svc_role.go

197 lines
4.9 KiB
Raw Blame History 

  1. package svc

  2. 

  3. import (

  4. 	"applet/app/cfg"

  5. 	"applet/app/db"

  6. 	"applet/app/md"

  7. 	"applet/app/utils"

  8. 	"applet/app/utils/cache"

  9. 	"code.fnuoos.com/EggPlanet/egg_models.git/src/implement"

  10. 	"code.fnuoos.com/EggPlanet/egg_models.git/src/model"

  11. 	"encoding/json"

  12. 	"errors"

  13. 	"fmt"

  14. 	"github.com/gin-gonic/gin"

  15. 	"regexp"

  16. 	"strings"

  17. 	"time"

  18. )

  19. 

  20. func CheckUserRole(c *gin.Context, cacheKey, uri string, admId int) (isHasPermission bool, err error) {

  21. 	uri = utils.UriFilterExcludeQueryString(uri) // 去除uri中?后的query参数

  22. 	isHasPermission = false

  23. 	var rolePermission []string

  24. 	var rolePermissionString string

  25. 	rolePermissionString, _ = cache.GetString(cacheKey)

  26. 

  27. 	// TODO::判断是否在白名单中

  28. 	if utils.InArr(uri, md.WhiteUri) {

  29. 		isHasPermission = true

  30. 		return

  31. 	}

  32. 

  33. 	if rolePermissionString != "" {

  34. 		// if false {

  35. 		if err = json.Unmarshal([]byte(rolePermissionString), &rolePermission); err != nil {

  36. 			return

  37. 		}

  38. 	} else {

  39. 		adminDb := implement.NewAdminDb(db.Db)

  40. 		list, _, err1 := adminDb.GetAdminRolePermission(admId)

  41. 		if err1 != nil {

  42. 			return isHasPermission, err1

  43. 		}

  44. 		for _, v := range list {

  45. 			rolePermission = append(rolePermission, v.Permission.Action)

  46. 		}

  47. 		marshal, err1 := json.Marshal(rolePermission)

  48. 		if err1 != nil {

  49. 			return isHasPermission, err1

  50. 		}

  51. 		rolePermissionString = string(marshal)

  52. 		_, err = cache.SetEx(cacheKey, rolePermissionString, cfg.AdminRolePermissionCacheTime)

  53. 	}

  54. 

  55. 	if utils.InArr(uri, rolePermission) {

  56. 		isHasPermission = true

  57. 	} else {

  58. 		// 正则匹配占位符情况

  59. 		compileRegex := regexp.MustCompile("[0-9]+")

  60. 		matchArr := compileRegex.FindAllString(uri, -1)

  61. 		if len(matchArr) > 0 {

  62. 			uri = strings.Replace(uri, matchArr[len(matchArr)-1], ":id", 1)

  63. 			if utils.InArr(uri, rolePermission) {

  64. 				isHasPermission = true

  65. 			}

  66. 		}

  67. 	}

  68. 	return

  69. }

  70. 

  71. func DeleteRole(c *gin.Context, roleId int) (err error) {

  72. 	engine := db.Db

  73. 	session := engine.NewSession()

  74. 	defer session.Close()

  75. 	session.Begin()

  76. 

  77. 	// 1、删除 `role`

  78. 	roleDb := implement.NewRoleDb(engine, roleId)

  79. 	_, err = roleDb.RoleDeleteBySession(session, roleId)

  80. 	if err != nil {

  81. 		_ = session.Rollback()

  82. 		return

  83. 	}

  84. 

  85. 	// 2、删除 `role_permission_group`

  86. 	rolePermissionGroupDb := implement.NewRolePermissionGroupDb(db.Db)

  87. 	_, err = rolePermissionGroupDb.RolePermissionGroupDeleteForRoleBySession(session, roleId)

  88. 	if err != nil {

  89. 		_ = session.Rollback()

  90. 		return

  91. 	}

  92. 

  93. 	// 3、删除 `admin_role`

  94. 	adminRoleDb := implement.NewAdminRoleDb(db.Db)

  95. 	_, err = adminRoleDb.AdminRoleDeleteForRoleBySession(session, roleId)

  96. 	if err != nil {

  97. 		_ = session.Rollback()

  98. 		return

  99. 	}

  100. 

  101. 	return session.Commit()

  102. }

  103. 

  104. func RoleBindPermissionGroup(c *gin.Context, req md.RoleBindPermissionGroupReq) (err error) {

  105. 	engine := db.Db

  106. 	session := engine.NewSession()

  107. 	defer session.Close()

  108. 	session.Begin()

  109. 	// 1、查询 `role`

  110. 	roleDb := implement.NewRoleDb(db.Db, req.RoleId)

  111. 	role, err := roleDb.GetRole()

  112. 	if err != nil {

  113. 		return

  114. 	}

  115. 	if role == nil {

  116. 		return errors.New("未查询到相应记录")

  117. 	}

  118. 

  119. 	// 1、删除 `role_permission_group`

  120. 	rolePermissionGroupDb := implement.NewRolePermissionGroupDb(db.Db)

  121. 	_, err = rolePermissionGroupDb.RolePermissionGroupDeleteForRoleBySession(session, req.RoleId)

  122. 	if err != nil {

  123. 		_ = session.Rollback()

  124. 		return

  125. 	}

  126. 

  127. 	// 2、新增 `role_permission_group``

  128. 	var mm []*model.RolePermissionGroup

  129. 	now := time.Now()

  130. 	for _, v := range req.PermissionIds {

  131. 		mm = append(mm, &model.RolePermissionGroup{

  132. 			RoleId:   role.Id,

  133. 			GroupId:  v,

  134. 			CreateAt: now.Format("2006-01-02 15:04:05"),

  135. 			UpdateAt: now.Format("2006-01-02 15:04:05"),

  136. 		})

  137. 	}

  138. 	_, err = rolePermissionGroupDb.BatchAddRolePermissionGroupBySession(session, mm)

  139. 	if err != nil {

  140. 		_ = session.Rollback()

  141. 		return

  142. 	}

  143. 

  144. 	session.Commit()

  145. 	var data []model.AdminRole

  146. 	engine.Where("role_id=?", role.Id).Find(&data)

  147. 	for _, v := range data {

  148. 		rolePermissionKey := fmt.Sprintf(cfg.AdminRolePermissionKey, utils.AnyToString(v.AdmId))

  149. 		cache.Del(rolePermissionKey)

  150. 	}

  151. 	return nil

  152. }

  153. 

  154. func BindAdminRole(c *gin.Context, req md.BindAdminRoleReq) (err error) {

  155. 	engine := db.Db

  156. 	session := engine.NewSession()

  157. 	defer session.Close()

  158. 	session.Begin()

  159. 	// 1、查询 `role`

  160. 	adminDb := implement.NewAdminDb(db.Db)

  161. 	role, err := adminDb.GetAdmin(req.AdmId)

  162. 	if err != nil {

  163. 		return

  164. 	}

  165. 	if role == nil {

  166. 		return errors.New("未查询到相应记录")

  167. 	}

  168. 

  169. 	// 1、删除 `admin_role`

  170. 	adminRoleDb := implement.NewAdminRoleDb(db.Db)

  171. 	_, err = adminRoleDb.AdminRoleDeleteBySession(session, req.AdmId)

  172. 	if err != nil {

  173. 		_ = session.Rollback()

  174. 		return

  175. 	}

  176. 

  177. 	// 2、新增 `删除 `admin_role``

  178. 	var mm []*model.AdminRole

  179. 	now := time.Now()

  180. 	for _, v := range req.RoleIds {

  181. 		mm = append(mm, &model.AdminRole{

  182. 			AdmId:    req.AdmId,

  183. 			RoleId:   v,

  184. 			State:    1,

  185. 			CreateAt: now.Format("2006-01-02 15:04:05"),

  186. 			UpdateAt: now.Format("2006-01-02 15:04:05"),

  187. 		})

  188. 	}

  189. 	_, err = adminRoleDb.BatchAddAdminRoleBySession(session, mm)

  190. 	if err != nil {

  191. 		_ = session.Rollback()

  192. 		return

  193. 	}

  194. 

  195. 	return session.Commit()

  196. }