package system import ( "errors" "strconv" systemReq "github.com/flipped-aurora/gin-vue-admin/server/model/system/request" "github.com/flipped-aurora/gin-vue-admin/server/global" "github.com/flipped-aurora/gin-vue-admin/server/model/common/request" "github.com/flipped-aurora/gin-vue-admin/server/model/system" "github.com/flipped-aurora/gin-vue-admin/server/model/system/response" "gorm.io/gorm" ) var ErrRoleExistence = errors.New("存在相同角色id") //@author: [piexlmax](https://github.com/piexlmax) //@function: CreateAuthority //@description: 创建一个角色 //@param: auth model.SysAuthority //@return: authority system.SysAuthority, err error type AuthorityService struct{} var AuthorityServiceApp = new(AuthorityService) func (authorityService *AuthorityService) CreateAuthority(auth system.SysAuthority) (authority system.SysAuthority, err error) { if err = global.GVA_DB.Where("authority_id = ?", auth.AuthorityId).First(&system.SysAuthority{}).Error; !errors.Is(err, gorm.ErrRecordNotFound) { return auth, ErrRoleExistence } e := global.GVA_DB.Transaction(func(tx *gorm.DB) error { if err = tx.Create(&auth).Error; err != nil { return err } auth.SysBaseMenus = systemReq.DefaultMenu() if err = tx.Model(&auth).Association("SysBaseMenus").Replace(&auth.SysBaseMenus); err != nil { return err } casbinInfos := systemReq.DefaultCasbin() authorityId := strconv.Itoa(int(auth.AuthorityId)) rules := [][]string{} for _, v := range casbinInfos { rules = append(rules, []string{authorityId, v.Path, v.Method}) } return CasbinServiceApp.AddPolicies(tx, rules) }) return auth, e } //@author: [piexlmax](https://github.com/piexlmax) //@function: CopyAuthority //@description: 复制一个角色 //@param: copyInfo response.SysAuthorityCopyResponse //@return: authority system.SysAuthority, err error func (authorityService *AuthorityService) CopyAuthority(adminAuthorityID uint, copyInfo response.SysAuthorityCopyResponse) (authority system.SysAuthority, err error) { var authorityBox system.SysAuthority if !errors.Is(global.GVA_DB.Where("authority_id = ?", copyInfo.Authority.AuthorityId).First(&authorityBox).Error, gorm.ErrRecordNotFound) { return authority, ErrRoleExistence } copyInfo.Authority.Children = []system.SysAuthority{} menus, err := MenuServiceApp.GetMenuAuthority(&request.GetAuthorityId{AuthorityId: copyInfo.OldAuthorityId}) if err != nil { return } var baseMenu []system.SysBaseMenu for _, v := range menus { intNum := v.MenuId v.SysBaseMenu.ID = uint(intNum) baseMenu = append(baseMenu, v.SysBaseMenu) } copyInfo.Authority.SysBaseMenus = baseMenu err = global.GVA_DB.Create(©Info.Authority).Error if err != nil { return } var btns []system.SysAuthorityBtn err = global.GVA_DB.Find(&btns, "authority_id = ?", copyInfo.OldAuthorityId).Error if err != nil { return } if len(btns) > 0 { for i := range btns { btns[i].AuthorityId = copyInfo.Authority.AuthorityId } err = global.GVA_DB.Create(&btns).Error if err != nil { return } } paths := CasbinServiceApp.GetPolicyPathByAuthorityId(copyInfo.OldAuthorityId) err = CasbinServiceApp.UpdateCasbin(adminAuthorityID, copyInfo.Authority.AuthorityId, paths) if err != nil { _ = authorityService.DeleteAuthority(©Info.Authority) } return copyInfo.Authority, err } //@author: [piexlmax](https://github.com/piexlmax) //@function: UpdateAuthority //@description: 更改一个角色 //@param: auth model.SysAuthority //@return: authority system.SysAuthority, err error func (authorityService *AuthorityService) UpdateAuthority(auth system.SysAuthority) (authority system.SysAuthority, err error) { var oldAuthority system.SysAuthority err = global.GVA_DB.Where("authority_id = ?", auth.AuthorityId).First(&oldAuthority).Error if err != nil { global.GVA_LOG.Debug(err.Error()) return system.SysAuthority{}, errors.New("查询角色数据失败") } err = global.GVA_DB.Model(&oldAuthority).Updates(&auth).Error return auth, err } //@author: [piexlmax](https://github.com/piexlmax) //@function: DeleteAuthority //@description: 删除角色 //@param: auth *model.SysAuthority //@return: err error func (authorityService *AuthorityService) DeleteAuthority(auth *system.SysAuthority) error { if errors.Is(global.GVA_DB.Debug().Preload("Users").First(&auth).Error, gorm.ErrRecordNotFound) { return errors.New("该角色不存在") } if len(auth.Users) != 0 { return errors.New("此角色有用户正在使用禁止删除") } if !errors.Is(global.GVA_DB.Where("authority_id = ?", auth.AuthorityId).First(&system.SysUser{}).Error, gorm.ErrRecordNotFound) { return errors.New("此角色有用户正在使用禁止删除") } if !errors.Is(global.GVA_DB.Where("parent_id = ?", auth.AuthorityId).First(&system.SysAuthority{}).Error, gorm.ErrRecordNotFound) { return errors.New("此角色存在子角色不允许删除") } return global.GVA_DB.Transaction(func(tx *gorm.DB) error { var err error if err = tx.Preload("SysBaseMenus").Preload("DataAuthorityId").Where("authority_id = ?", auth.AuthorityId).First(auth).Unscoped().Delete(auth).Error; err != nil { return err } if len(auth.SysBaseMenus) > 0 { if err = tx.Model(auth).Association("SysBaseMenus").Delete(auth.SysBaseMenus); err != nil { return err } // err = db.Association("SysBaseMenus").Delete(&auth) } if len(auth.DataAuthorityId) > 0 { if err = tx.Model(auth).Association("DataAuthorityId").Delete(auth.DataAuthorityId); err != nil { return err } } if err = tx.Delete(&system.SysUserAuthority{}, "sys_authority_authority_id = ?", auth.AuthorityId).Error; err != nil { return err } if err = tx.Where("authority_id = ?", auth.AuthorityId).Delete(&[]system.SysAuthorityBtn{}).Error; err != nil { return err } authorityId := strconv.Itoa(int(auth.AuthorityId)) if err = CasbinServiceApp.RemoveFilteredPolicy(tx, authorityId); err != nil { return err } return nil }) } //@author: [piexlmax](https://github.com/piexlmax) //@function: GetAuthorityInfoList //@description: 分页获取数据 //@param: info request.PageInfo //@return: list interface{}, total int64, err error func (authorityService *AuthorityService) GetAuthorityInfoList(authorityID uint) (list []system.SysAuthority, err error) { var authority system.SysAuthority err = global.GVA_DB.Where("authority_id = ?", authorityID).First(&authority).Error if err != nil { return nil, err } var authorities []system.SysAuthority db := global.GVA_DB.Model(&system.SysAuthority{}) if global.GVA_CONFIG.System.UseStrictAuth { // 当开启了严格树形结构后 if *authority.ParentId == 0 { // 只有顶级角色可以修改自己的权限和以下权限 err = db.Preload("DataAuthorityId").Where("authority_id = ?", authorityID).Find(&authorities).Error } else { // 非顶级角色只能修改以下权限 err = db.Debug().Preload("DataAuthorityId").Where("parent_id = ?", authorityID).Find(&authorities).Error } } else { err = db.Preload("DataAuthorityId").Where("parent_id = ?", "0").Find(&authorities).Error } for k := range authorities { err = authorityService.findChildrenAuthority(&authorities[k]) } return authorities, err } //@author: [piexlmax](https://github.com/piexlmax) //@function: GetAuthorityInfoList //@description: 分页获取数据 //@param: info request.PageInfo //@return: list interface{}, total int64, err error func (authorityService *AuthorityService) GetStructAuthorityList(authorityID uint) (list []uint, err error) { var auth system.SysAuthority _ = global.GVA_DB.First(&auth, "authority_id = ?", authorityID).Error var authorities []system.SysAuthority err = global.GVA_DB.Preload("DataAuthorityId").Where("parent_id = ?", authorityID).Find(&authorities).Error if len(authorities) > 0 { for k := range authorities { list = append(list, authorities[k].AuthorityId) childrenList, err := authorityService.GetStructAuthorityList(authorities[k].AuthorityId) if err == nil { list = append(list, childrenList...) } } } if *auth.ParentId == 0 { list = append(list, authorityID) } return list, err } func (authorityService *AuthorityService) CheckAuthorityIDAuth(authorityID, targetID uint) (err error) { if !global.GVA_CONFIG.System.UseStrictAuth { return nil } authIDS, err := authorityService.GetStructAuthorityList(authorityID) if err != nil { return err } hasAuth := false for _, v := range authIDS { if v == targetID { hasAuth = true break } } if !hasAuth { return errors.New("您提交的角色ID不合法") } return nil } //@author: [piexlmax](https://github.com/piexlmax) //@function: GetAuthorityInfo //@description: 获取所有角色信息 //@param: auth model.SysAuthority //@return: sa system.SysAuthority, err error func (authorityService *AuthorityService) GetAuthorityInfo(auth system.SysAuthority) (sa system.SysAuthority, err error) { err = global.GVA_DB.Preload("DataAuthorityId").Where("authority_id = ?", auth.AuthorityId).First(&sa).Error return sa, err } //@author: [piexlmax](https://github.com/piexlmax) //@function: SetDataAuthority //@description: 设置角色资源权限 //@param: auth model.SysAuthority //@return: error func (authorityService *AuthorityService) SetDataAuthority(adminAuthorityID uint, auth system.SysAuthority) error { var checkIDs []uint checkIDs = append(checkIDs, auth.AuthorityId) for i := range auth.DataAuthorityId { checkIDs = append(checkIDs, auth.DataAuthorityId[i].AuthorityId) } for i := range checkIDs { err := authorityService.CheckAuthorityIDAuth(adminAuthorityID, checkIDs[i]) if err != nil { return err } } var s system.SysAuthority global.GVA_DB.Preload("DataAuthorityId").First(&s, "authority_id = ?", auth.AuthorityId) err := global.GVA_DB.Model(&s).Association("DataAuthorityId").Replace(&auth.DataAuthorityId) return err } //@author: [piexlmax](https://github.com/piexlmax) //@function: SetMenuAuthority //@description: 菜单与角色绑定 //@param: auth *model.SysAuthority //@return: error func (authorityService *AuthorityService) SetMenuAuthority(auth *system.SysAuthority) error { var s system.SysAuthority global.GVA_DB.Preload("SysBaseMenus").First(&s, "authority_id = ?", auth.AuthorityId) err := global.GVA_DB.Model(&s).Association("SysBaseMenus").Replace(&auth.SysBaseMenus) return err } //@author: [piexlmax](https://github.com/piexlmax) //@function: findChildrenAuthority //@description: 查询子角色 //@param: authority *model.SysAuthority //@return: err error func (authorityService *AuthorityService) findChildrenAuthority(authority *system.SysAuthority) (err error) { err = global.GVA_DB.Preload("DataAuthorityId").Where("parent_id = ?", authority.AuthorityId).Find(&authority.Children).Error if len(authority.Children) > 0 { for k := range authority.Children { err = authorityService.findChildrenAuthority(&authority.Children[k]) } } return err } func (authorityService *AuthorityService) GetParentAuthorityID(authorityID uint) (parentID uint, err error) { var authority system.SysAuthority err = global.GVA_DB.Where("authority_id = ?", authorityID).First(&authority).Error if err != nil { return } return *authority.ParentId, nil }