工业互联网平台
blame | 历史 | 原始文档
潘志宝
2024-12-25 8a6b19bf5c50ebb54e965645a9366f6cfea02351 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99

package com.iailab.module.system.controller.admin.permission;


 


import cn.hutool.core.collection.CollUtil;


import com.iailab.framework.common.pojo.CommonResult;


import com.iailab.module.system.controller.admin.permission.vo.permission.PermissionAssignRoleDataScopeReqVO;


import com.iailab.module.system.controller.admin.permission.vo.permission.PermissionAssignRoleMenuReqVO;


import com.iailab.module.system.controller.admin.permission.vo.permission.PermissionAssignUserRoleReqVO;


import com.iailab.module.system.service.permission.PermissionService;


import com.iailab.module.system.service.tenant.TenantService;


import io.swagger.v3.oas.annotations.Operation;


import io.swagger.v3.oas.annotations.Parameter;


import io.swagger.v3.oas.annotations.tags.Tag;


import org.springframework.security.access.prepost.PreAuthorize;


import org.springframework.validation.annotation.Validated;


import org.springframework.web.bind.annotation.*;


 


import javax.annotation.Resource;


import javax.validation.Valid;


import java.util.Set;


 


import static com.iailab.framework.common.pojo.CommonResult.success;


 


/**


 * 权限 Controller,提供赋予用户、角色的权限的 API 接口


 *


 * @author iailab


 */


@Tag(name = "管理后台 - 权限")


@RestController


@RequestMapping("/system/permission")


public class PermissionController {


 


    @Resource


    private PermissionService permissionService;


    @Resource


    private TenantService tenantService;


 


    @Operation(summary = "获得角色拥有的菜单编号")


    @Parameter(name = "roleId", description = "角色编号", required = true)


    @GetMapping("/list-role-menus")


    @PreAuthorize("@ss.hasPermission('system:permission:assign-role-menu')")


    public CommonResult<Set<Long>> getRoleMenuList(Long roleId) {


        return success(permissionService.getRoleMenuListByRoleId(roleId));


    }


 


    @Operation(summary = "获得角色拥有的菜单编号")


    @Parameter(name = "roleId", description = "角色编号", required = true)


    @GetMapping("/list-role-app-menus")


    @PreAuthorize("@ss.hasPermission('system:permission:assign-role-menu')")


    public CommonResult<Set<Long>> getRoleAppMenuList(Long roleId) {


        return success(permissionService.getRoleAppMenuListByRoleId(roleId));


    }


 


    @PostMapping("/assign-role-menu")


    @Operation(summary = "赋予角色菜单")


    @PreAuthorize("@ss.hasPermission('system:permission:assign-role-menu')")


    public CommonResult<Boolean> assignRoleMenu(@Validated @RequestBody PermissionAssignRoleMenuReqVO reqVO) {


        // 开启多租户的情况下,需要过滤掉未开通的菜单


        tenantService.handleTenantMenu(menuIds -> reqVO.getMenuIds().removeIf(menuId -> !CollUtil.contains(menuIds, menuId)));


 


        // 执行菜单的分配


        permissionService.assignRoleMenu(reqVO.getRoleId(), reqVO.getMenuIds());


        return success(true);


    }


 


//    @PostMapping("/assign-role-app-menu")


//    @Operation(summary = "赋予角色菜单")


//    @PreAuthorize("@ss.hasPermission('system:permission:assign-role-menu')")


//    public CommonResult<Boolean> assignRoleAppMenu(@Validated @RequestBody PermissionAssignRoleMenuReqVO reqVO) {


//        // 执行菜单的分配


//        permissionService.assignRoleAppMenu(reqVO.getRoleId(), reqVO.getMenuIds());


//        return success(true);


//    }


 


    @PostMapping("/assign-role-data-scope")


    @Operation(summary = "赋予角色数据权限")


    @PreAuthorize("@ss.hasPermission('system:permission:assign-role-data-scope')")


    public CommonResult<Boolean> assignRoleDataScope(@Valid @RequestBody PermissionAssignRoleDataScopeReqVO reqVO) {


        permissionService.assignRoleDataScope(reqVO.getRoleId(), reqVO.getDataScope(), reqVO.getDataScopeDeptIds());


        return success(true);


    }


 


    @Operation(summary = "获得管理员拥有的角色编号列表")


    @Parameter(name = "userId", description = "用户编号", required = true)


    @GetMapping("/list-user-roles")


    @PreAuthorize("@ss.hasPermission('system:permission:assign-user-role')")


    public CommonResult<Set<Long>> listAdminRoles(@RequestParam("userId") Long userId) {


        return success(permissionService.getUserRoleIdListByUserId(userId));


    }


 


    @Operation(summary = "赋予用户角色")


    @PostMapping("/assign-user-role")


    @PreAuthorize("@ss.hasPermission('system:permission:assign-user-role')")


    public CommonResult<Boolean> assignUserRole(@Validated @RequestBody PermissionAssignUserRoleReqVO reqVO) {


        permissionService.assignUserRole(reqVO.getUserId(), reqVO.getRoleIds());


        return success(true);


    }


 


}