go/contracts
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

[fix] 修复数据权限使用云函数错误bug

Browse Source
This commit is contained in:
what 2023-05-04 14:02:19 +08:00
parent a1104e57d8
commit 8826cec03a
2 changed files with 10 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
base/resource.go
View File

@ -13,6 +13,7 @@ import (
"git.fsdpf.net/go/contracts" "git.fsdpf.net/go/contracts"
"git.fsdpf.net/go/contracts/helper" "git.fsdpf.net/go/contracts/helper"
"git.fsdpf.net/go/contracts/res_type" "git.fsdpf.net/go/contracts/res_type"
"git.fsdpf.net/go/contracts/support"
"git.fsdpf.net/go/db" "git.fsdpf.net/go/db"
) )
@ -149,7 +150,7 @@ func (this Resource) GetAuthDBTable(u contracts.User, params ...any) *db.Builder
// 数据权限过滤 // 数据权限过滤
builder.Before(func(b *db.Builder, t string, data ...map[string]any) { builder.Before(func(b *db.Builder, t string, data ...map[string]any) {
if t == db.TYPE_SELECT || t == db.TYPE_UPDATE || t == db.TYPE_DELETE { if t == db.TYPE_SELECT || t == db.TYPE_UPDATE || t == db.TYPE_DELETE {
this.WithRolesCondition(b, t, u.Roles()...) this.WithRolesCondition(b, t, u)
} }
}) })
@ -209,10 +210,11 @@ func (this Resource) GetDBTable(params ...any) *db.Builder {
return builder.Table(string(this.GetTable()), alias) return builder.Table(string(this.GetTable()), alias)
} }
func (this Resource) WithRolesCondition(b *db.Builder, t string, roles ...string) error { func (this Resource) WithRolesCondition(b *db.Builder, t string, u contracts.User) error {
isFullRight := false isFullRight := false
isFullNot := false isFullNot := false
NewOrm := do.MustInvoke[helper.NewOrm](this.container)
NewOrmModel := do.MustInvoke[helper.NewOrmModel](this.container) NewOrmModel := do.MustInvoke[helper.NewOrmModel](this.container)
NewOrmJoin := do.MustInvoke[helper.NewOrmJoin](this.container) NewOrmJoin := do.MustInvoke[helper.NewOrmJoin](this.container)
@ -221,7 +223,7 @@ func (this Resource) WithRolesCondition(b *db.Builder, t string, roles ...string
GetResource := do.MustInvoke[contracts.GetResource](this.container) GetResource := do.MustInvoke[contracts.GetResource](this.container)
GetOrmConditionByRes := do.MustInvoke[GetOrmConditionByRes](this.container) GetOrmConditionByRes := do.MustInvoke[GetOrmConditionByRes](this.container)
items := do.MustInvoke[GetResRoles](this.container)(this.GetUuid(), roles...) items := do.MustInvoke[GetResRoles](this.container)(this.GetUuid(), u.Roles()...)
subTables := lo.Reduce(items, func(carry string, item ResRole, _ int) string { subTables := lo.Reduce(items, func(carry string, item ResRole, _ int) string {
db := this.GetDB().Table(string(this.GetTable()), this.GetCode()).Select(db.Raw("`" + this.GetCode() + "`.*")) db := this.GetDB().Table(string(this.GetTable()), this.GetCode()).Select(db.Raw("`" + this.GetCode() + "`.*"))
@ -262,7 +264,10 @@ func (this Resource) WithRolesCondition(b *db.Builder, t string, roles ...string
isFullRight = true isFullRight = true
return db.ToSql() return db.ToSql()
} else if conditions.IsNotEmpty() { } else if conditions.IsNotEmpty() {
db.Where(conditions.ToSql(nil)) oOrm := NewOrm(this, nil)
oOrm.SetGlobalParams(support.NewGlobalParam("{}", u))
db.Where(conditions.ToSql(oOrm.GetModel()))
// 如果前面是无权限的sql查看, 这直接返回本次查询 // 如果前面是无权限的sql查看, 这直接返回本次查询
if isFullNot { if isFullNot {

2
resource.go
View File

@ -54,7 +54,7 @@ type Resource interface {
GetStruct(extends ...reflect.StructField) any GetStruct(extends ...reflect.StructField) any
GetSliceStruct(extends ...reflect.StructField) any GetSliceStruct(extends ...reflect.StructField) any
WithRolesCondition(b *db.Builder, t string, roles ...string) error WithRolesCondition(b *db.Builder, t string, u User) error
// 是否虚拟资源 // 是否虚拟资源
IsVirtual() bool IsVirtual() bool