zhimeng
/
ad_platform
2
0
Fork 0
Koodi Ongelmat 0 Pull-pyynnöt 0 Julkaisut 0 Wiki Toiminta
广告平台(站长使用)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
158 Commitit
1 Haara
4.2 MiB
 
 
 
 
 
Puu: 5ec067cc0e
Branchit Tagit
${ item.name }
Create branch ${ searchTerm }
from '5ec067cc0e'
${ noResults }
ad_platform/app/svc/svc_role.go

247 rivejä
6.6 KiB
Raaka Blame Historia 

  1. package svc

  2. 

  3. import (

  4. 	"applet/app/md"

  5. 	"applet/app/utils"

  6. 	"applet/app/utils/cache"

  7. 	db "code.fnuoos.com/zhimeng/model.git/src"

  8. 	"code.fnuoos.com/zhimeng/model.git/src/implement"

  9. 	"code.fnuoos.com/zhimeng/model.git/src/model"

  10. 	implement2 "code.fnuoos.com/zhimeng/model.git/src/super/implement"

  11. 	"encoding/json"

  12. 	"errors"

  13. 	"fmt"

  14. 	"github.com/gin-gonic/gin"

  15. 	"regexp"

  16. 	"strings"

  17. 	"time"

  18. )

  19. 

  20. func CheckUserRole(c *gin.Context, cacheKey, uri string, admId int) (isHasPermission bool, err error) {

  21. 	uri = utils.UriFilterExcludeQueryString(uri) // 去除uri中?后的query参数

  22. 	isHasPermission = false

  23. 	var rolePermission []string

  24. 	var rolePermissionString string

  25. 	rolePermissionString, _ = cache.GetString(cacheKey)

  26. 

  27. 	// TODO::判断是否在白名单中

  28. 	if utils.InArr(uri, md.WhiteUri) {

  29. 		isHasPermission = true

  30. 		return

  31. 	}

  32. 

  33. 	if rolePermissionString != "" {

  34. 		// if false {

  35. 		if err = json.Unmarshal([]byte(rolePermissionString), &rolePermission); err != nil {

  36. 			return

  37. 		}

  38. 	} else {

  39. 		adminDb := implement.NewAdminDb(db.DBs[GetMasterId(c)])

  40. 		list, _, err1 := adminDb.GetAdminRolePermission(admId)

  41. 		if err1 != nil {

  42. 			return isHasPermission, err1

  43. 		}

  44. 		for _, v := range list {

  45. 			rolePermission = append(rolePermission, v.Permission.Action)

  46. 		}

  47. 		marshal, err1 := json.Marshal(rolePermission)

  48. 		if err1 != nil {

  49. 			return isHasPermission, err1

  50. 		}

  51. 		rolePermissionString = string(marshal)

  52. 		_, err = cache.SetEx(cacheKey, rolePermissionString, md.AdminRolePermissionCacheTime)

  53. 	}

  54. 

  55. 	if utils.InArr(uri, rolePermission) {

  56. 		isHasPermission = true

  57. 	} else {

  58. 		// 正则匹配占位符情况

  59. 		compileRegex := regexp.MustCompile("[0-9]+")

  60. 		matchArr := compileRegex.FindAllString(uri, -1)

  61. 		if len(matchArr) > 0 {

  62. 			uri = strings.Replace(uri, matchArr[len(matchArr)-1], ":id", 1)

  63. 			if utils.InArr(uri, rolePermission) {

  64. 				isHasPermission = true

  65. 			}

  66. 		}

  67. 	}

  68. 	return

  69. }

  70. 

  71. func CheckUserRoleByOpen(c *gin.Context, cacheKey, uri string, masterId int) (isHasPermission bool, err error) {

  72. 	uri = utils.UriFilterExcludeQueryString(uri) // 去除uri中?后的query参数

  73. 	isHasPermission = false

  74. 	var rolePermission []string

  75. 	var rolePermissionString string

  76. 	rolePermissionString, _ = cache.GetString(cacheKey)

  77. 

  78. 	// TODO::判断是否在白名单中

  79. 	if utils.InArr(uri, md.WhiteUri) {

  80. 		isHasPermission = true

  81. 		return

  82. 	}

  83. 

  84. 	if rolePermissionString != "" {

  85. 		if err = json.Unmarshal([]byte(rolePermissionString), &rolePermission); err != nil {

  86. 			return

  87. 		}

  88. 	} else {

  89. 		userOpenPermissionDb := implement2.NewUserOpenPermissionDb(db.Db)

  90. 		list, _, err1 := userOpenPermissionDb.GetUserOpenPermission(masterId)

  91. 		if err1 != nil {

  92. 			return isHasPermission, err1

  93. 		}

  94. 		for _, v := range list {

  95. 			rolePermission = append(rolePermission, v.OpenPermission.Action)

  96. 		}

  97. 		marshal, err1 := json.Marshal(rolePermission)

  98. 		if err1 != nil {

  99. 			return isHasPermission, err1

  100. 		}

  101. 		rolePermissionString = string(marshal)

  102. 		_, err = cache.SetEx(cacheKey, rolePermissionString, md.AdminRolePermissionByOpenCacheTime)

  103. 	}

  104. 

  105. 	if utils.InArr(uri, rolePermission) {

  106. 		isHasPermission = true

  107. 	} else {

  108. 		// 正则匹配占位符情况

  109. 		compileRegex := regexp.MustCompile("[0-9]+")

  110. 		matchArr := compileRegex.FindAllString(uri, -1)

  111. 		if len(matchArr) > 0 {

  112. 			uri = strings.Replace(uri, matchArr[len(matchArr)-1], ":id", 1)

  113. 			if utils.InArr(uri, rolePermission) {

  114. 				isHasPermission = true

  115. 			}

  116. 		}

  117. 	}

  118. 	return

  119. }

  120. 

  121. func DeleteRole(c *gin.Context, roleId int) (err error) {

  122. 	engine := db.DBs[GetMasterId(c)]

  123. 	session := engine.NewSession()

  124. 	defer session.Close()

  125. 	session.Begin()

  126. 

  127. 	// 1、删除 `role`

  128. 	roleDb := implement.NewRoleDb(engine, roleId)

  129. 	_, err = roleDb.RoleDeleteBySession(session, roleId)

  130. 	if err != nil {

  131. 		_ = session.Rollback()

  132. 		return

  133. 	}

  134. 

  135. 	// 2、删除 `role_permission_group`

  136. 	rolePermissionGroupDb := implement.NewRolePermissionGroupDb(db.DBs[GetMasterId(c)])

  137. 	_, err = rolePermissionGroupDb.RolePermissionGroupDeleteForRoleBySession(session, roleId)

  138. 	if err != nil {

  139. 		_ = session.Rollback()

  140. 		return

  141. 	}

  142. 

  143. 	// 3、删除 `admin_role`

  144. 	adminRoleDb := implement.NewAdminRoleDb(db.DBs[GetMasterId(c)])

  145. 	_, err = adminRoleDb.AdminRoleDeleteForRoleBySession(session, roleId)

  146. 	if err != nil {

  147. 		_ = session.Rollback()

  148. 		return

  149. 	}

  150. 

  151. 	return session.Commit()

  152. }

  153. 

  154. func RoleBindPermissionGroup(c *gin.Context, req md.RoleBindPermissionGroupReq) (err error) {

  155. 	engine := db.DBs[GetMasterId(c)]

  156. 	session := engine.NewSession()

  157. 	defer session.Close()

  158. 	session.Begin()

  159. 	// 1、查询 `role`

  160. 	roleDb := implement.NewRoleDb(db.DBs[GetMasterId(c)], req.RoleId)

  161. 	role, err := roleDb.GetRole()

  162. 	if err != nil {

  163. 		return

  164. 	}

  165. 	if role == nil {

  166. 		return errors.New("未查询到相应记录")

  167. 	}

  168. 

  169. 	// 1、删除 `role_permission_group`

  170. 	rolePermissionGroupDb := implement.NewRolePermissionGroupDb(db.DBs[GetMasterId(c)])

  171. 	_, err = rolePermissionGroupDb.RolePermissionGroupDeleteForRoleBySession(session, req.RoleId)

  172. 	if err != nil {

  173. 		_ = session.Rollback()

  174. 		return

  175. 	}

  176. 

  177. 	// 2、新增 `role_permission_group``

  178. 	var mm []*model.RolePermissionGroup

  179. 	now := time.Now()

  180. 	for _, v := range req.PermissionIds {

  181. 		mm = append(mm, &model.RolePermissionGroup{

  182. 			RoleId:   role.Id,

  183. 			GroupId:  v,

  184. 			CreateAt: now.Format("2006-01-02 15:04:05"),

  185. 			UpdateAt: now.Format("2006-01-02 15:04:05"),

  186. 		})

  187. 	}

  188. 	_, err = rolePermissionGroupDb.BatchAddRolePermissionGroupBySession(session, mm)

  189. 	if err != nil {

  190. 		_ = session.Rollback()

  191. 		return

  192. 	}

  193. 

  194. 	session.Commit()

  195. 	var data []model.AdminRole

  196. 	MasterDb(c).Where("role_id=?", role.Id).Find(&data)

  197. 	for _, v := range data {

  198. 		rolePermissionKey := fmt.Sprintf(md.AdminRolePermissionKey, c.GetString("mid"), utils.AnyToString(v.AdmId))

  199. 		cache.Del(rolePermissionKey)

  200. 	}

  201. 	return nil

  202. }

  203. 

  204. func BindAdminRole(c *gin.Context, req md.BindAdminRoleReq) (err error) {

  205. 	engine := db.DBs[GetMasterId(c)]

  206. 	session := engine.NewSession()

  207. 	defer session.Close()

  208. 	session.Begin()

  209. 	// 1、查询 `role`

  210. 	adminDb := implement.NewAdminDb(db.DBs[GetMasterId(c)])

  211. 	role, err := adminDb.GetAdmin(req.AdmId)

  212. 	if err != nil {

  213. 		return

  214. 	}

  215. 	if role == nil {

  216. 		return errors.New("未查询到相应记录")

  217. 	}

  218. 

  219. 	// 1、删除 `admin_role`

  220. 	adminRoleDb := implement.NewAdminRoleDb(db.DBs[GetMasterId(c)])

  221. 	_, err = adminRoleDb.AdminRoleDeleteBySession(session, req.AdmId)

  222. 	if err != nil {

  223. 		_ = session.Rollback()

  224. 		return

  225. 	}

  226. 

  227. 	// 2、新增 `删除 `admin_role``

  228. 	var mm []*model.AdminRole

  229. 	now := time.Now()

  230. 	for _, v := range req.RoleIds {

  231. 		mm = append(mm, &model.AdminRole{

  232. 			AdmId:    req.AdmId,

  233. 			RoleId:   v,

  234. 			State:    1,

  235. 			CreateAt: now.Format("2006-01-02 15:04:05"),

  236. 			UpdateAt: now.Format("2006-01-02 15:04:05"),

  237. 		})

  238. 	}

  239. 	_, err = adminRoleDb.BatchAddAdminRoleBySession(session, mm)

  240. 	if err != nil {

  241. 		_ = session.Rollback()

  242. 		return

  243. 	}

  244. 

  245. 	return session.Commit()

  246. }