From 1337f249608bcbd7ad6cf244870e560a95821727 Mon Sep 17 00:00:00 2001
From: 潘志宝 <979469083@qq.com>
Date: 星期二, 12 十一月 2024 11:30:11 +0800
Subject: [PATCH] Merge remote-tracking branch 'origin/master'
---
iailab-module-system/iailab-module-system-biz/src/main/java/com/iailab/module/system/service/permission/MenuServiceImpl.java | 118 +++++++++++++++++++++++++++++++++++++++++++++++++++++++++-
1 files changed, 115 insertions(+), 3 deletions(-)
diff --git a/iailab-module-system/iailab-module-system-biz/src/main/java/com/iailab/module/system/service/permission/MenuServiceImpl.java b/iailab-module-system/iailab-module-system-biz/src/main/java/com/iailab/module/system/service/permission/MenuServiceImpl.java
index 9c90502..1497663 100644
--- a/iailab-module-system/iailab-module-system-biz/src/main/java/com/iailab/module/system/service/permission/MenuServiceImpl.java
+++ b/iailab-module-system/iailab-module-system-biz/src/main/java/com/iailab/module/system/service/permission/MenuServiceImpl.java
@@ -2,16 +2,26 @@
import cn.hutool.core.collection.CollUtil;
import cn.hutool.core.util.ObjUtil;
+import com.baomidou.mybatisplus.core.conditions.query.LambdaQueryWrapper;
import com.google.common.annotations.VisibleForTesting;
import com.google.common.collect.Lists;
import com.iailab.framework.common.enums.CommonStatusEnum;
import com.iailab.framework.common.util.object.BeanUtils;
import com.iailab.module.system.controller.admin.permission.vo.menu.MenuListReqVO;
import com.iailab.module.system.controller.admin.permission.vo.menu.MenuSaveVO;
+import com.iailab.module.system.controller.admin.tenant.vo.packages.TenantPackageSaveReqVO;
+import com.iailab.module.system.dal.dataobject.app.AppDO;
import com.iailab.module.system.dal.dataobject.permission.MenuDO;
+import com.iailab.module.system.dal.dataobject.permission.RoleDO;
+import com.iailab.module.system.dal.dataobject.permission.RoleMenuDO;
+import com.iailab.module.system.dal.dataobject.tenant.TenantDO;
+import com.iailab.module.system.dal.dataobject.tenant.TenantPackageDO;
import com.iailab.module.system.dal.mysql.permission.MenuMapper;
+import com.iailab.module.system.dal.mysql.permission.RoleMenuMapper;
import com.iailab.module.system.dal.redis.RedisKeyConstants;
import com.iailab.module.system.enums.permission.MenuTypeEnum;
+import com.iailab.module.system.service.app.AppService;
+import com.iailab.module.system.service.tenant.TenantPackageService;
import com.iailab.module.system.service.tenant.TenantService;
import lombok.extern.slf4j.Slf4j;
import org.springframework.cache.annotation.CacheEvict;
@@ -22,10 +32,13 @@
import javax.annotation.Resource;
import java.util.*;
+import java.util.stream.Collectors;
import static com.iailab.framework.common.exception.util.ServiceExceptionUtil.exception;
-import static com.iailab.framework.common.util.collection.CollectionUtils.convertList;
-import static com.iailab.framework.common.util.collection.CollectionUtils.convertMap;
+import static com.iailab.framework.common.pojo.CommonResult.success;
+import static com.iailab.framework.common.util.collection.CollectionUtils.*;
+import static com.iailab.framework.security.core.util.SecurityFrameworkUtils.getLoginUserId;
+import static com.iailab.framework.tenant.core.context.TenantContextHolder.getTenantId;
import static com.iailab.module.system.dal.dataobject.permission.MenuDO.ID_ROOT;
import static com.iailab.module.system.enums.ErrorCodeConstants.*;
@@ -33,7 +46,7 @@
/**
* 菜单 Service 实现
*
- * @author 芋道源码
+ * @author iailab
*/
@Service
@Slf4j
@@ -47,9 +60,22 @@
@Lazy // 延迟,避免循环依赖报错
private TenantService tenantService;
+ @Resource
+ private TenantPackageService tenantPackageService;
+
+ @Resource
+ private AppService appService;
+
+ @Resource
+ private RoleService roleService;
+
+ @Resource
+ private RoleMenuMapper roleMenuMapper;
+
@Override
@CacheEvict(value = RedisKeyConstants.PERMISSION_MENU_ID_LIST, key = "#createReqVO.permission",
condition = "#createReqVO.permission != null")
+ @Transactional(rollbackFor = Exception.class)
public Long createMenu(MenuSaveVO createReqVO) {
// 校验父菜单存在
validateParentMenu(createReqVO.getParentId(), null);
@@ -59,7 +85,15 @@
// 插入数据库
MenuDO menu = BeanUtils.toBean(createReqVO, MenuDO.class);
initMenuProperty(menu);
+
+ //菜单归属租户和应用
+ Long tenantId = getTenantId();
+ menu.setTenantId(tenantId);
+ menu.setAppId(createReqVO.getAppId());
menuMapper.insert(menu);
+ if(tenantId != 1L) {
+ dealPermission(menu);
+ }
// 返回
return menu.getId();
}
@@ -67,6 +101,7 @@
@Override
@CacheEvict(value = RedisKeyConstants.PERMISSION_MENU_ID_LIST,
allEntries = true) // allEntries 清空所有缓存,因为 permission 如果变更,涉及到新老两个 permission。直接清理,简单有效
+ @Transactional(rollbackFor = Exception.class)
public void updateMenu(MenuSaveVO updateReqVO) {
// 校验更新的菜单是否存在
if (menuMapper.selectById(updateReqVO.getId()) == null) {
@@ -80,6 +115,11 @@
// 更新到数据库
MenuDO updateObj = BeanUtils.toBean(updateReqVO, MenuDO.class);
initMenuProperty(updateObj);
+ //菜单归属租户和应用
+ Long tenantId = getTenantId();
+ AppDO appDO = appService.getAppByTenantId(tenantId);
+ updateObj.setTenantId(tenantId);
+ updateObj.setAppId(appDO.getId());
menuMapper.updateById(updateObj);
}
@@ -111,6 +151,17 @@
public List<MenuDO> getMenuListByTenant(MenuListReqVO reqVO) {
// 查询所有菜单,并过滤掉关闭的节点
List<MenuDO> menus = getMenuList(reqVO);
+ // 开启多租户的情况下,需要过滤掉未开通的菜单
+ tenantService.handleTenantMenu(menuIds -> menus.removeIf(menu -> !CollUtil.contains(menuIds, menu.getId())));
+ return menus;
+ }
+
+ @Override
+ public List<MenuDO> getAppMenuListByTenant(MenuListReqVO reqVO) {
+ // 获取 tenantId
+ Long tenantId = getTenantId();
+ // 查询所有菜单,并过滤掉关闭的节点
+ List<MenuDO> menus = getAppMenuList(tenantId, reqVO);
// 开启多租户的情况下,需要过滤掉未开通的菜单
tenantService.handleTenantMenu(menuIds -> menus.removeIf(menu -> !CollUtil.contains(menuIds, menu.getId())));
return menus;
@@ -166,6 +217,26 @@
}
@Override
+ public List<MenuDO> getAppMenuList(Long tenantId, MenuListReqVO reqVO) {
+ List<MenuDO> menuDOS = menuMapper.selectAppMenuList(tenantId, reqVO);
+ Set<Long> menuDOIds = menuDOS.stream().map(MenuDO::getId).collect(Collectors.toSet());
+ // 获得角色列表
+ Set<Long> roleIds = permissionService.getUserRoleIdListByUserId(getLoginUserId());
+ List<RoleDO> roles = roleService.getRoleList(roleIds);
+ roles.removeIf(role -> !CommonStatusEnum.ENABLE.getStatus().equals(role.getStatus())); // 移除禁用的角色
+ if (roles.stream().noneMatch(role -> role.getCode().equals("tenant_admin"))) {
+ // 获得菜单列表
+ Set<Long> menuIds = permissionService.getRoleMenuListByRoleId(convertSet(roles, RoleDO::getId));
+ //取交集
+ menuIds.retainAll(menuDOIds);
+ List<MenuDO> menuList = getMenuList(menuIds);
+ menuList = filterDisableMenus(menuList);
+ return menuList;
+ }
+ return menuDOS;
+ }
+
+ @Override
@Cacheable(value = RedisKeyConstants.PERMISSION_MENU_ID_LIST, key = "#permission")
public List<Long> getMenuIdListByPermissionFromCache(String permission) {
List<MenuDO> menus = menuMapper.selectListByPermission(permission);
@@ -178,12 +249,22 @@
}
@Override
+ public MenuDO getMenuByAppId(Long id) {
+ return menuMapper.selectOne(new LambdaQueryWrapper<MenuDO>().eq(MenuDO::getAppId, id).eq(MenuDO::getParentId, 0l));
+ }
+
+ @Override
public List<MenuDO> getMenuList(Collection<Long> ids) {
// 当 ids 为空时,返回一个空的实例对象
if (CollUtil.isEmpty(ids)) {
return Lists.newArrayList();
}
return menuMapper.selectBatchIds(ids);
+ }
+
+ @Override
+ public List<MenuDO> selectListByParentId(Collection<Long> ids) {
+ return menuMapper.selectListByParentId(ids);
}
/**
@@ -258,4 +339,35 @@
}
}
+ /**
+ * 新创建菜单赋权给租户管理员
+ */
+
+ private void dealPermission(MenuDO menu) {
+ Long tenantId = menu.getTenantId();
+ RoleDO tenantRole = roleService.getTenantAdminRole(tenantId);
+ TenantDO tenant = tenantService.getTenant(tenantId);
+ TenantPackageDO tenantPackage = tenantPackageService.getTenantPackage(tenant.getPackageId());
+ Set<Long> menuIds = tenantPackage.getMenuIds();
+ menuIds.add(menu.getId());
+ tenantPackage.setMenuIds(menuIds);
+ tenantPackageService.updateTenantPackage(BeanUtils.toBean(tenantPackage, TenantPackageSaveReqVO.class));
+ permissionService.assignRoleMenu(tenantRole.getId(), menuIds);
+ // 开发者自己创建的应用菜单默认赋权给创建者所拥有的角色
+ //查询当前用户所拥有的角色
+ Set<Long> roleIds = permissionService.getUserRoleIdListByUserId(getLoginUserId());
+ List<RoleDO> roles = roleService.getRoleList(roleIds);
+ roles.removeIf(role -> !CommonStatusEnum.ENABLE.getStatus().equals(role.getStatus())); // 移除禁用的角色
+ roles.removeIf(role -> tenantRole.getId().equals(role.getId())); // 移除租户管理员角色
+ if (!roles.isEmpty()) {
+ roles.stream().forEach(roleDO -> {
+ RoleMenuDO roleMenuDO = new RoleMenuDO();
+ roleMenuDO.setMenuId(menu.getId());
+ roleMenuDO.setRoleId(roleDO.getId());
+ roleMenuDO.setTenantId(tenant.getId());
+ roleMenuMapper.insert(roleMenuDO);
+ });
+ }
+ }
+
}
--
Gitblit v1.9.3