完成角色权限分配功能的迁移

pull/3/head
YunaiV 2020-07-13 19:24:42 +08:00
parent 99c591d6f9
commit 61e5cfe617
54 changed files with 314 additions and 691 deletions

View File

@ -33,7 +33,7 @@ public class AdminController {
@ApiOperation(value = "管理员分页") @ApiOperation(value = "管理员分页")
@GetMapping("/page") @GetMapping("/page")
@RequiresPermissions("system.admin.page") @RequiresPermissions("system:page")
public CommonResult<PageResult<AdminPageItemVO>> page(AdminPageDTO adminPageDTO) { public CommonResult<PageResult<AdminPageItemVO>> page(AdminPageDTO adminPageDTO) {
return success(adminManager.pageAdmin(adminPageDTO)); return success(adminManager.pageAdmin(adminPageDTO));
} }

View File

@ -3,4 +3,9 @@ GET {{baseUrl}}/permission/list-role-resource?roleId=1
Content-Type: application/x-www-form-urlencoded Content-Type: application/x-www-form-urlencoded
Authorization: Bearer {{accessToken}} Authorization: Bearer {{accessToken}}
### /permission/list-admin-roles 成功
GET {{baseUrl}}/permission/list-admin-roles?adminId=1
Content-Type: application/x-www-form-urlencoded
Authorization: Bearer {{accessToken}}
### ###

View File

@ -1,6 +1,7 @@
package cn.iocoder.mall.managementweb.controller.permission; package cn.iocoder.mall.managementweb.controller.permission;
import cn.iocoder.common.framework.vo.CommonResult; import cn.iocoder.common.framework.vo.CommonResult;
import cn.iocoder.mall.managementweb.controller.permission.dto.PermissionAssignAdminRoleDTO;
import cn.iocoder.mall.managementweb.controller.permission.dto.PermissionAssignRoleResourceDTO; import cn.iocoder.mall.managementweb.controller.permission.dto.PermissionAssignRoleResourceDTO;
import cn.iocoder.mall.managementweb.manager.permission.PermissionManager; import cn.iocoder.mall.managementweb.manager.permission.PermissionManager;
import io.swagger.annotations.Api; import io.swagger.annotations.Api;
@ -29,11 +30,11 @@ public class PermissionController {
@Autowired @Autowired
private PermissionManager permissionManager; private PermissionManager permissionManager;
@GetMapping("/list-role-resource") @GetMapping("/list-role-resources")
@ApiOperation("获得角色拥有的资源编号") @ApiOperation("获得角色拥有的资源编号")
@ApiImplicitParam(name = "roleId", value = "角色编号", required = true) @ApiImplicitParam(name = "roleId", value = "角色编号", required = true)
public CommonResult<Set<Integer>> listRoleResource(Integer roleId) { public CommonResult<Set<Integer>> listRoleResources(Integer roleId) {
return success(permissionManager.listRoleResource(roleId)); return success(permissionManager.listRoleResources(roleId));
} }
@PostMapping("/assign-role-resource") @PostMapping("/assign-role-resource")
@ -43,4 +44,18 @@ public class PermissionController {
return success(true); return success(true);
} }
@GetMapping("/list-admin-roles")
@ApiOperation("获得管理员拥有的角色编号列表")
@ApiImplicitParam(name = "adminId", value = "管理员编号", required = true)
public CommonResult<Set<Integer>> listAdminRoles(Integer adminId) {
return success(permissionManager.listAdminRoles(adminId));
}
@PostMapping("/assign-admin-role")
@ApiOperation("赋予用户角色")
public CommonResult<Boolean> assignAdminRole(PermissionAssignAdminRoleDTO assignAdminRoleDTO) {
permissionManager.assignAdminRole(assignAdminRoleDTO);
return success(true);
}
} }

View File

@ -61,8 +61,8 @@ public class ResourceController {
@GetMapping("/list") @GetMapping("/list")
@ApiOperation("获得资源列表") @ApiOperation("获得资源列表")
@ApiImplicitParam(name = "resourceId", value = "资源编号列表", required = true) @ApiImplicitParam(name = "resourceId", value = "资源编号列表", required = true)
public CommonResult<List<ResourceVO>> listResource(@RequestParam("resourceIds") List<Integer> resourceIds) { public CommonResult<List<ResourceVO>> listResources(@RequestParam("resourceIds") List<Integer> resourceIds) {
return success(resourceManager.listResource(resourceIds)); return success(resourceManager.listResources(resourceIds));
} }
@GetMapping("/tree") @GetMapping("/tree")

View File

@ -24,6 +24,11 @@ GET {{baseUrl}}/role/get?roleId=13
Content-Type: application/x-www-form-urlencoded Content-Type: application/x-www-form-urlencoded
Authorization: Bearer {{accessToken}} Authorization: Bearer {{accessToken}}
### /role/list-all 成功
GET {{baseUrl}}/role/list-all
Content-Type: application/x-www-form-urlencoded
Authorization: Bearer {{accessToken}}
### /role/list 成功 ### /role/list 成功
GET {{baseUrl}}/role/list?roleIds=1,13 GET {{baseUrl}}/role/list?roleIds=1,13
Content-Type: application/x-www-form-urlencoded Content-Type: application/x-www-form-urlencoded

View File

@ -60,11 +60,17 @@ public class RoleController {
return success(roleManager.getRole(roleId)); return success(roleManager.getRole(roleId));
} }
@GetMapping("/list-all")
@ApiOperation("获得所有角色列表")
public CommonResult<List<RoleVO>> listAllRoles() {
return success(roleManager.listAllRoles());
}
@GetMapping("/list") @GetMapping("/list")
@ApiOperation("获得角色列表") @ApiOperation("获得角色列表")
@ApiImplicitParam(name = "roleIds", value = "角色编号列表", required = true) @ApiImplicitParam(name = "roleIds", value = "角色编号列表", required = true)
public CommonResult<List<RoleVO>> getRoles(@RequestParam("roleIds") List<Integer> roleIds) { public CommonResult<List<RoleVO>> listRoles(@RequestParam("roleIds") List<Integer> roleIds) {
return success(roleManager.listRole(roleIds)); return success(roleManager.listRoles(roleIds));
} }
@GetMapping("/page") @GetMapping("/page")

View File

@ -0,0 +1,20 @@
package cn.iocoder.mall.managementweb.controller.permission.dto;
import io.swagger.annotations.ApiModel;
import io.swagger.annotations.ApiModelProperty;
import lombok.Data;
import javax.validation.constraints.NotNull;
import java.util.Set;
@ApiModel("赋予用户角色 DTO")
@Data
public class PermissionAssignAdminRoleDTO {
@ApiModelProperty(value = "管理员编号", required = true, example = "1")
@NotNull(message = "管理员编号不能为空")
private Integer adminId;
@ApiModelProperty(value = "角色编号列表", example = "1,3,5")
private Set<Integer> roleIds;
}

View File

@ -11,10 +11,10 @@ import java.util.Set;
@Data @Data
public class PermissionAssignRoleResourceDTO { public class PermissionAssignRoleResourceDTO {
@ApiModelProperty(value = "角色名", required = true, example = "管理员") @ApiModelProperty(value = "角色名", required = true, example = "1")
@NotNull(message = "角色编号不能为空") @NotNull(message = "角色编号不能为空")
private Integer roleId; private Integer roleId;
@ApiModelProperty(value = "资源编号列表", required = true, example = "1,3,5") @ApiModelProperty(value = "资源编号列表", example = "1,3,5")
private Set<Integer> resourceIds; private Set<Integer> resourceIds;
} }

View File

@ -1,5 +1,6 @@
package cn.iocoder.mall.managementweb.convert.permission; package cn.iocoder.mall.managementweb.convert.permission;
import cn.iocoder.mall.systemservice.rpc.permission.dto.PermissionAssignAdminRoleDTO;
import cn.iocoder.mall.systemservice.rpc.permission.dto.PermissionAssignRoleResourceDTO; import cn.iocoder.mall.systemservice.rpc.permission.dto.PermissionAssignRoleResourceDTO;
import org.mapstruct.Mapper; import org.mapstruct.Mapper;
import org.mapstruct.factory.Mappers; import org.mapstruct.factory.Mappers;
@ -11,4 +12,6 @@ public interface PermissionConvert {
PermissionAssignRoleResourceDTO convert(cn.iocoder.mall.managementweb.controller.permission.dto.PermissionAssignRoleResourceDTO bean); PermissionAssignRoleResourceDTO convert(cn.iocoder.mall.managementweb.controller.permission.dto.PermissionAssignRoleResourceDTO bean);
PermissionAssignAdminRoleDTO convert(cn.iocoder.mall.managementweb.controller.permission.dto.PermissionAssignAdminRoleDTO bean);
} }

View File

@ -1,6 +1,7 @@
package cn.iocoder.mall.managementweb.manager.permission; package cn.iocoder.mall.managementweb.manager.permission;
import cn.iocoder.common.framework.vo.CommonResult; import cn.iocoder.common.framework.vo.CommonResult;
import cn.iocoder.mall.managementweb.controller.permission.dto.PermissionAssignAdminRoleDTO;
import cn.iocoder.mall.managementweb.controller.permission.dto.PermissionAssignRoleResourceDTO; import cn.iocoder.mall.managementweb.controller.permission.dto.PermissionAssignRoleResourceDTO;
import cn.iocoder.mall.managementweb.convert.permission.PermissionConvert; import cn.iocoder.mall.managementweb.convert.permission.PermissionConvert;
import cn.iocoder.mall.systemservice.rpc.permission.PermissionRpc; import cn.iocoder.mall.systemservice.rpc.permission.PermissionRpc;
@ -19,15 +20,15 @@ public class PermissionManager {
private PermissionRpc permissionRpc; private PermissionRpc permissionRpc;
/** /**
* *
* *
* @param roleId * @param roleId
* @return * @return
*/ */
public Set<Integer> listRoleResource(Integer roleId) { public Set<Integer> listRoleResources(Integer roleId) {
CommonResult<Set<Integer>> listAdminRoleIdsResult = permissionRpc.listRoleResourceId(roleId); CommonResult<Set<Integer>> listRoleResourceIdsResult = permissionRpc.listRoleResourceIds(roleId);
listAdminRoleIdsResult.checkError(); listRoleResourceIdsResult.checkError();
return listAdminRoleIdsResult.getData(); return listRoleResourceIdsResult.getData();
} }
/** /**
@ -41,4 +42,27 @@ public class PermissionManager {
assignRoleResourceResult.checkError(); assignRoleResourceResult.checkError();
} }
/**
*
*
* @param assignAdminRoleDTO DTO
*/
public void assignAdminRole(PermissionAssignAdminRoleDTO assignAdminRoleDTO) {
CommonResult<Boolean> assignAdminRoleResult = permissionRpc.assignAdminRole(
PermissionConvert.INSTANCE.convert(assignAdminRoleDTO));
assignAdminRoleResult.checkError();
}
/**
*
*
* @param adminId
* @return
*/
public Set<Integer> listAdminRoles(Integer adminId) {
CommonResult<Set<Integer>> listAdminRoleIdsResult = permissionRpc.listAdminRoleIds(adminId);
listAdminRoleIdsResult.checkError();
return listAdminRoleIdsResult.getData();
}
} }

View File

@ -79,7 +79,7 @@ public class ResourceManager {
* @param resourceIds * @param resourceIds
* @return * @return
*/ */
public List<ResourceVO> listResource(List<Integer> resourceIds) { public List<ResourceVO> listResources(List<Integer> resourceIds) {
CommonResult<List<cn.iocoder.mall.systemservice.rpc.permission.vo.ResourceVO>> listResourceResult = resourceRpc.listResource(resourceIds); CommonResult<List<cn.iocoder.mall.systemservice.rpc.permission.vo.ResourceVO>> listResourceResult = resourceRpc.listResource(resourceIds);
return ResourceConvert.INSTANCE.convertList(listResourceResult.getData()); return ResourceConvert.INSTANCE.convertList(listResourceResult.getData());
} }

View File

@ -66,14 +66,25 @@ public class RoleManager {
return RoleConvert.INSTANCE.convert(getRoleResult.getData()); return RoleConvert.INSTANCE.convert(getRoleResult.getData());
} }
/**
*
*
* @return
*/
public List<RoleVO> listAllRoles() {
CommonResult<List<cn.iocoder.mall.systemservice.rpc.permission.vo.RoleVO>> listRoleResult = roleRpc.listAllRoles();
listRoleResult.checkError();
return RoleConvert.INSTANCE.convertList(listRoleResult.getData());
}
/** /**
* *
* *
* @param roleIds * @param roleIds
* @return * @return
*/ */
public List<RoleVO> listRole(List<Integer> roleIds) { public List<RoleVO> listRoles(List<Integer> roleIds) {
CommonResult<List<cn.iocoder.mall.systemservice.rpc.permission.vo.RoleVO>> listRoleResult = roleRpc.listRole(roleIds); CommonResult<List<cn.iocoder.mall.systemservice.rpc.permission.vo.RoleVO>> listRoleResult = roleRpc.listRoles(roleIds);
listRoleResult.checkError(); listRoleResult.checkError();
return RoleConvert.INSTANCE.convertList(listRoleResult.getData()); return RoleConvert.INSTANCE.convertList(listRoleResult.getData());
} }

View File

@ -30,7 +30,7 @@ public enum SystemErrorCodeEnum implements ServiceExceptionUtil.Enumerable<Syste
ADMIN_STATUS_EQUALS(1002002003, "账号已经是该状态"), ADMIN_STATUS_EQUALS(1002002003, "账号已经是该状态"),
// ADMIN_DELETE_ONLY_DISABLE(1002002004, "只有关闭的账号才可以删除"), // ADMIN_DELETE_ONLY_DISABLE(1002002004, "只有关闭的账号才可以删除"),
ADMIN_ADMIN_STATUS_CAN_NOT_UPDATE(1002002005, "管理员的账号状态不允许变更"), ADMIN_ADMIN_STATUS_CAN_NOT_UPDATE(1002002005, "管理员的账号状态不允许变更"),
// ADMIN_ASSIGN_ROLE_NOT_EXISTS(1002002006, "分配员工角色时,有角色不存在"), ADMIN_ASSIGN_ROLE_NOT_EXISTS(1002002006, "分配员工角色时,有角色不存在"),
ADMIN_ADMIN_CAN_NOT_UPDATE(1002002008, "管理员的账号不允许变更"), ADMIN_ADMIN_CAN_NOT_UPDATE(1002002008, "管理员的账号不允许变更"),
ADMIN_USERNAME_NOT_EXISTS(1002002008, "账号不存在"), ADMIN_USERNAME_NOT_EXISTS(1002002008, "账号不存在"),

View File

@ -1,6 +1,7 @@
package cn.iocoder.mall.systemservice.rpc.permission; package cn.iocoder.mall.systemservice.rpc.permission;
import cn.iocoder.common.framework.vo.CommonResult; import cn.iocoder.common.framework.vo.CommonResult;
import cn.iocoder.mall.systemservice.rpc.permission.dto.PermissionAssignAdminRoleDTO;
import cn.iocoder.mall.systemservice.rpc.permission.dto.PermissionAssignRoleResourceDTO; import cn.iocoder.mall.systemservice.rpc.permission.dto.PermissionAssignRoleResourceDTO;
import java.util.Set; import java.util.Set;
@ -16,7 +17,7 @@ public interface PermissionRpc {
* @param roleId * @param roleId
* @return * @return
*/ */
CommonResult<Set<Integer>> listRoleResourceId(Integer roleId); CommonResult<Set<Integer>> listRoleResourceIds(Integer roleId);
/** /**
* *
@ -26,4 +27,20 @@ public interface PermissionRpc {
*/ */
CommonResult<Boolean> assignRoleResource(PermissionAssignRoleResourceDTO assignRoleResourceDTO); CommonResult<Boolean> assignRoleResource(PermissionAssignRoleResourceDTO assignRoleResourceDTO);
/**
*
*
* @param adminId
* @return
*/
CommonResult<Set<Integer>> listAdminRoleIds(Integer adminId);
/**
*
*
* @param assignAdminRoleDTO DTO
* @return
*/
CommonResult<Boolean> assignAdminRole(PermissionAssignAdminRoleDTO assignAdminRoleDTO);
} }

View File

@ -45,13 +45,20 @@ public interface RoleRpc {
*/ */
CommonResult<RoleVO> getRole(Integer roleId); CommonResult<RoleVO> getRole(Integer roleId);
/**
*
*
* @return
*/
CommonResult<List<RoleVO>> listAllRoles();
/** /**
* *
* *
* @param roleIds * @param roleIds
* @return * @return
*/ */
CommonResult<List<RoleVO>> listRole(List<Integer> roleIds); CommonResult<List<RoleVO>> listRoles(List<Integer> roleIds);
/** /**
* *

View File

@ -0,0 +1,27 @@
package cn.iocoder.mall.systemservice.rpc.permission.dto;
import lombok.Data;
import lombok.experimental.Accessors;
import javax.validation.constraints.NotNull;
import java.io.Serializable;
import java.util.Set;
/**
* DTO
*/
@Data
@Accessors(chain = true)
public class PermissionAssignAdminRoleDTO implements Serializable {
/**
*
*/
@NotNull(message = "管理员编号不能为空")
private Integer adminId;
/**
*
*/
private Set<Integer> roleIds;
}

View File

@ -15,23 +15,23 @@ public interface AdminRoleMapper extends BaseMapper<AdminRoleDO> {
return selectList(new QueryWrapper<AdminRoleDO>().eq("admin_id", adminId)); return selectList(new QueryWrapper<AdminRoleDO>().eq("admin_id", adminId));
} }
// default List<AdminRoleDO> selectListByAccountIds(Collection<Integer> accountIds) { default List<AdminRoleDO> selectListByAdminId(Integer adminId) {
// return selectList(new QueryWrapper<AdminRoleDO>().in("account_id", accountIds)); return selectList(new QueryWrapper<AdminRoleDO>().eq("admin_id", adminId));
// } }
//
// default int deleteByAccountId(Integer accountId) { default int deleteByAdminId(Integer adminId) {
// return delete(new QueryWrapper<AdminRoleDO>().eq("account_id", accountId)); return delete(new QueryWrapper<AdminRoleDO>().eq("admin_id", adminId));
// } }
//
// default int deleteByRoleId(Integer roleId) { default int deleteByRoleId(Integer roleId) {
// return delete(new QueryWrapper<AdminRoleDO>().eq("role_id", roleId)); return delete(new QueryWrapper<AdminRoleDO>().eq("role_id", roleId));
// } }
/** /**
* MyBaits Plus Service XML * MyBaits Plus Service XML
* *
* @param accountRoleDOs * @param adminRoleDOs
*/ */
int insertList(@Param("accountRoleDOs") List<AdminRoleDO> accountRoleDOs); int insertList(@Param("adminRoleDOs") List<AdminRoleDO> adminRoleDOs);
} }

View File

@ -1,6 +1,7 @@
package cn.iocoder.mall.systemservice.manager.permission; package cn.iocoder.mall.systemservice.manager.permission;
import cn.iocoder.common.framework.util.CollectionUtils; import cn.iocoder.common.framework.util.CollectionUtils;
import cn.iocoder.mall.systemservice.rpc.permission.dto.PermissionAssignAdminRoleDTO;
import cn.iocoder.mall.systemservice.rpc.permission.dto.PermissionAssignRoleResourceDTO; import cn.iocoder.mall.systemservice.rpc.permission.dto.PermissionAssignRoleResourceDTO;
import cn.iocoder.mall.systemservice.service.permission.PermissionService; import cn.iocoder.mall.systemservice.service.permission.PermissionService;
import cn.iocoder.mall.systemservice.service.permission.ResourceService; import cn.iocoder.mall.systemservice.service.permission.ResourceService;
@ -31,13 +32,13 @@ public class PermissionManager {
* @param roleId * @param roleId
* @return * @return
*/ */
public Set<Integer> listRoleResourceId(Integer roleId) { public Set<Integer> listRoleResourceIds(Integer roleId) {
// 超级管理员,拥有所有资源 // 超级管理员,拥有所有资源
if (roleService.hasSuperAdmin(Collections.singleton(roleId))) { if (roleService.hasSuperAdmin(Collections.singleton(roleId))) {
return CollectionUtils.convertSet(resourceService.listResource(), ResourceBO::getId); return CollectionUtils.convertSet(resourceService.listResources(), ResourceBO::getId);
} }
// 非超级管理员,查询拥有资源 // 非超级管理员,查询拥有资源
return permissionService.listRoleResourceId(roleId); return permissionService.listRoleResourceIds(roleId);
} }
/** /**
@ -49,4 +50,24 @@ public class PermissionManager {
permissionService.assignRoleResource(assignResourceDTO.getRoleId(), assignResourceDTO.getResourceIds()); permissionService.assignRoleResource(assignResourceDTO.getRoleId(), assignResourceDTO.getResourceIds());
} }
/**
*
*
* @param adminId
* @return
*/
public Set<Integer> listAdminRoleIds(Integer adminId) {
return permissionService.listAdminRoleIds(adminId);
}
/**
*
*
* @param assignAdminRoleDTO DTO
*/
public void assignAdminRole(PermissionAssignAdminRoleDTO assignAdminRoleDTO) {
permissionService.assignAdminRole(assignAdminRoleDTO.getAdminId(), assignAdminRoleDTO.getRoleIds());
}
} }

View File

@ -69,8 +69,8 @@ public class ResourceManager {
* *
* @return * @return
*/ */
public List<ResourceVO> listResource() { public List<ResourceVO> listResources() {
List<ResourceBO> resourceBOs = resourceService.listResource(); List<ResourceBO> resourceBOs = resourceService.listResources();
return ResourceConvert.INSTANCE.convertList02(resourceBOs); return ResourceConvert.INSTANCE.convertList02(resourceBOs);
} }
@ -80,8 +80,8 @@ public class ResourceManager {
* @param resourceIds * @param resourceIds
* @return * @return
*/ */
public List<ResourceVO> listResource(List<Integer> resourceIds) { public List<ResourceVO> listResources(List<Integer> resourceIds) {
List<ResourceBO> resourceBOs = resourceService.listResource(resourceIds); List<ResourceBO> resourceBOs = resourceService.listResources(resourceIds);
return ResourceConvert.INSTANCE.convertList02(resourceBOs); return ResourceConvert.INSTANCE.convertList02(resourceBOs);
} }
@ -92,13 +92,13 @@ public class ResourceManager {
* @param type * @param type
* @return * @return
*/ */
public List<ResourceVO> listRoleResource(Collection<Integer> roleIds, Integer type) { public List<ResourceVO> listRoleResources(Collection<Integer> roleIds, Integer type) {
List<ResourceBO> resourceBOs; List<ResourceBO> resourceBOs;
// 判断是否为超管。若是超管,默认有所有权限 // 判断是否为超管。若是超管,默认有所有权限
if (roleService.hasSuperAdmin(roleIds)) { if (roleService.hasSuperAdmin(roleIds)) {
resourceBOs = resourceService.listResourceByType(type); resourceBOs = resourceService.listResourcesByType(type);
} else { } else {
resourceBOs = resourceService.listRoleResourceByType(roleIds, type); resourceBOs = resourceService.listRoleResourcesByType(roleIds, type);
} }
return ResourceConvert.INSTANCE.convertList02(resourceBOs); return ResourceConvert.INSTANCE.convertList02(resourceBOs);
} }

View File

@ -63,13 +63,23 @@ public class RoleManager {
return RoleConvert.INSTANCE.convert(roleBO); return RoleConvert.INSTANCE.convert(roleBO);
} }
/**
*
*
* @return
*/
public List<RoleVO> listAllRoles() {
List<RoleBO> roleBOs = roleService.listAllRole();
return RoleConvert.INSTANCE.convertList02(roleBOs);
}
/** /**
* *
* *
* @param roleIds * @param roleIds
* @return * @return
*/ */
public List<RoleVO> listRole(List<Integer> roleIds) { public List<RoleVO> listRoles(List<Integer> roleIds) {
List<RoleBO> roleBOs = roleService.listRole(roleIds); List<RoleBO> roleBOs = roleService.listRole(roleIds);
return RoleConvert.INSTANCE.convertList02(roleBOs); return RoleConvert.INSTANCE.convertList02(roleBOs);
} }

View File

@ -2,6 +2,7 @@ package cn.iocoder.mall.systemservice.rpc.permission;
import cn.iocoder.common.framework.vo.CommonResult; import cn.iocoder.common.framework.vo.CommonResult;
import cn.iocoder.mall.systemservice.manager.permission.PermissionManager; import cn.iocoder.mall.systemservice.manager.permission.PermissionManager;
import cn.iocoder.mall.systemservice.rpc.permission.dto.PermissionAssignAdminRoleDTO;
import cn.iocoder.mall.systemservice.rpc.permission.dto.PermissionAssignRoleResourceDTO; import cn.iocoder.mall.systemservice.rpc.permission.dto.PermissionAssignRoleResourceDTO;
import org.apache.dubbo.config.annotation.Service; import org.apache.dubbo.config.annotation.Service;
import org.springframework.beans.factory.annotation.Autowired; import org.springframework.beans.factory.annotation.Autowired;
@ -20,8 +21,8 @@ public class PermissionRpcImpl implements PermissionRpc {
private PermissionManager permissionManager; private PermissionManager permissionManager;
@Override @Override
public CommonResult<Set<Integer>> listRoleResourceId(Integer roleId) { public CommonResult<Set<Integer>> listRoleResourceIds(Integer roleId) {
return success(permissionManager.listRoleResourceId(roleId)); return success(permissionManager.listRoleResourceIds(roleId));
} }
@Override @Override
@ -30,4 +31,15 @@ public class PermissionRpcImpl implements PermissionRpc {
return success(true); return success(true);
} }
@Override
public CommonResult<Set<Integer>> listAdminRoleIds(Integer adminId) {
return success(permissionManager.listAdminRoleIds(adminId));
}
@Override
public CommonResult<Boolean> assignAdminRole(PermissionAssignAdminRoleDTO assignAdminRoleDTO) {
permissionManager.assignAdminRole(assignAdminRoleDTO);
return success(true);
}
} }

View File

@ -46,17 +46,17 @@ public class ResourceRpcImpl implements ResourceRpc {
@Override @Override
public CommonResult<List<ResourceVO>> listResource() { public CommonResult<List<ResourceVO>> listResource() {
return success(resourceManager.listResource()); return success(resourceManager.listResources());
} }
@Override @Override
public CommonResult<List<ResourceVO>> listResource(List<Integer> resourceIds) { public CommonResult<List<ResourceVO>> listResource(List<Integer> resourceIds) {
return success(resourceManager.listResource(resourceIds)); return success(resourceManager.listResources(resourceIds));
} }
@Override @Override
public CommonResult<List<ResourceVO>> listRoleResource(Collection<Integer> roleIds, Integer type) { public CommonResult<List<ResourceVO>> listRoleResource(Collection<Integer> roleIds, Integer type) {
return success(resourceManager.listRoleResource(roleIds, type)); return success(resourceManager.listRoleResources(roleIds, type));
} }
} }

View File

@ -47,8 +47,13 @@ public class RoleRpcImpl implements RoleRpc {
} }
@Override @Override
public CommonResult<List<RoleVO>> listRole(List<Integer> roleIds) { public CommonResult<List<RoleVO>> listAllRoles() {
return success(roleManager.listRole(roleIds)); return success(roleManager.listAllRoles());
}
@Override
public CommonResult<List<RoleVO>> listRoles(List<Integer> roleIds) {
return success(roleManager.listRoles(roleIds));
} }
@Override @Override

View File

@ -1,23 +1,26 @@
package cn.iocoder.mall.systemservice.service.permission; package cn.iocoder.mall.systemservice.service.permission;
import cn.hutool.core.collection.CollectionUtil;
import cn.iocoder.common.framework.util.CollectionUtils; import cn.iocoder.common.framework.util.CollectionUtils;
import cn.iocoder.common.framework.util.ServiceExceptionUtil; import cn.iocoder.common.framework.util.ServiceExceptionUtil;
import cn.iocoder.mall.mybatis.enums.DeletedStatusEnum; import cn.iocoder.mall.systemservice.dal.mysql.dataobject.admin.AdminDO;
import cn.iocoder.mall.systemservice.dal.mysql.dataobject.permission.AdminRoleDO;
import cn.iocoder.mall.systemservice.dal.mysql.dataobject.permission.RoleDO;
import cn.iocoder.mall.systemservice.dal.mysql.dataobject.permission.RoleResourceDO; import cn.iocoder.mall.systemservice.dal.mysql.dataobject.permission.RoleResourceDO;
import cn.iocoder.mall.systemservice.dal.mysql.mapper.admin.AdminMapper;
import cn.iocoder.mall.systemservice.dal.mysql.mapper.permission.AdminRoleMapper; import cn.iocoder.mall.systemservice.dal.mysql.mapper.permission.AdminRoleMapper;
import cn.iocoder.mall.systemservice.dal.mysql.mapper.permission.ResourceMapper; import cn.iocoder.mall.systemservice.dal.mysql.mapper.permission.ResourceMapper;
import cn.iocoder.mall.systemservice.dal.mysql.mapper.permission.RoleMapper; import cn.iocoder.mall.systemservice.dal.mysql.mapper.permission.RoleMapper;
import cn.iocoder.mall.systemservice.dal.mysql.mapper.permission.RoleResourceMapper; import cn.iocoder.mall.systemservice.dal.mysql.mapper.permission.RoleResourceMapper;
import org.springframework.beans.factory.annotation.Autowired; import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.stereotype.Service; import org.springframework.stereotype.Service;
import org.springframework.transaction.annotation.Transactional;
import java.util.Date;
import java.util.List; import java.util.List;
import java.util.Set; import java.util.Set;
import java.util.stream.Collectors; import java.util.stream.Collectors;
import static cn.iocoder.mall.systemservice.enums.SystemErrorCodeEnum.AUTHORIZATION_ROLE_ASSIGN_RESOURCE_NOT_EXISTS; import static cn.iocoder.mall.systemservice.enums.SystemErrorCodeEnum.*;
import static cn.iocoder.mall.systemservice.enums.SystemErrorCodeEnum.ROLE_NOT_EXISTS;
/** /**
* Service * Service
@ -25,6 +28,8 @@ import static cn.iocoder.mall.systemservice.enums.SystemErrorCodeEnum.ROLE_NOT_E
@Service @Service
public class PermissionService { public class PermissionService {
@Autowired
private AdminMapper adminMapper;
@Autowired @Autowired
private RoleMapper roleMapper; private RoleMapper roleMapper;
@Autowired @Autowired
@ -40,7 +45,7 @@ public class PermissionService {
* @param roleId * @param roleId
* @return * @return
*/ */
public Set<Integer> listRoleResourceId(Integer roleId) { public Set<Integer> listRoleResourceIds(Integer roleId) {
List<RoleResourceDO> roleResourceDOs = roleResourceMapper.selectListByRoleId(roleId); List<RoleResourceDO> roleResourceDOs = roleResourceMapper.selectListByRoleId(roleId);
return CollectionUtils.convertSet(roleResourceDOs, RoleResourceDO::getResourceId); return CollectionUtils.convertSet(roleResourceDOs, RoleResourceDO::getResourceId);
} }
@ -51,6 +56,7 @@ public class PermissionService {
* @param roleId * @param roleId
* @param resourceIds * @param resourceIds
*/ */
@Transactional
public void assignRoleResource(Integer roleId, Set<Integer> resourceIds) { public void assignRoleResource(Integer roleId, Set<Integer> resourceIds) {
// 校验角色是否存在 // 校验角色是否存在
if (roleMapper.selectById(roleId) == null) { if (roleMapper.selectById(roleId) == null) {
@ -68,14 +74,52 @@ public class PermissionService {
roleResourceMapper.deleteByRoleId(roleId); roleResourceMapper.deleteByRoleId(roleId);
// 创建 RoleResourceDO 数组,并插入到数据库 // 创建 RoleResourceDO 数组,并插入到数据库
if (!CollectionUtils.isEmpty(resourceIds)) { if (!CollectionUtils.isEmpty(resourceIds)) {
List<RoleResourceDO> roleResources = resourceIds.stream().map(resourceId -> { List<RoleResourceDO> roleResources = resourceIds.stream()
RoleResourceDO roleResource = new RoleResourceDO().setRoleId(roleId).setResourceId(resourceId); .map(resourceId -> new RoleResourceDO().setRoleId(roleId).setResourceId(resourceId)).collect(Collectors.toList());
roleResource.setCreateTime(new Date());
roleResource.setDeleted(DeletedStatusEnum.DELETED_NO.getValue());
return roleResource;
}).collect(Collectors.toList());
roleResourceMapper.insertList(roleResources); roleResourceMapper.insertList(roleResources);
} }
} }
/**
*
*
* @param adminId
* @param roleIds
*/
@Transactional
public void assignAdminRole(Integer adminId, Set<Integer> roleIds) {
// 校验账号存在
AdminDO admin = adminMapper.selectById(adminId);
if (admin == null) {
throw ServiceExceptionUtil.exception(ADMIN_NOT_FOUND);
}
// 校验是否有不存在的角色
if (!CollectionUtils.isEmpty(roleIds)) {
List<RoleDO> roles = roleMapper.selectBatchIds(roleIds);
if (roles.size() != roleIds.size()) {
throw ServiceExceptionUtil.exception(ADMIN_ASSIGN_ROLE_NOT_EXISTS);
}
}
// TODO 芋艿,这里先简单实现。即方式是,删除老的分配的角色关系,然后添加新的分配的角色关系
// 标记管理员角色源关系都为删除
adminRoleMapper.deleteByAdminId(adminId);
// 创建 RoleResourceDO 数组,并插入到数据库
if (!CollectionUtil.isEmpty(roleIds)) {
List<AdminRoleDO> adminRoleDOs = roleIds.stream()
.map(roleId -> new AdminRoleDO().setAdminId(adminId).setRoleId(roleId)).collect(Collectors.toList());
adminRoleMapper.insertList(adminRoleDOs);
}
}
/**
*
*
* @param adminId
* @return
*/
public Set<Integer> listAdminRoleIds(Integer adminId) {
List<AdminRoleDO> adminRoleDOs = adminRoleMapper.selectListByAdminId(adminId);
return CollectionUtils.convertSet(adminRoleDOs, AdminRoleDO::getRoleId);
}
} }

View File

@ -114,7 +114,7 @@ public class ResourceService {
* @param resourceIds * @param resourceIds
* @return * @return
*/ */
public List<ResourceBO> listResource(List<Integer> resourceIds) { public List<ResourceBO> listResources(List<Integer> resourceIds) {
List<ResourceDO> resourceDOs = resourceMapper.selectBatchIds(resourceIds); List<ResourceDO> resourceDOs = resourceMapper.selectBatchIds(resourceIds);
return ResourceConvert.INSTANCE.convertList(resourceDOs); return ResourceConvert.INSTANCE.convertList(resourceDOs);
} }
@ -124,7 +124,7 @@ public class ResourceService {
* *
* @return * @return
*/ */
public List<ResourceBO> listResource() { public List<ResourceBO> listResources() {
List<ResourceDO> resourceDOs = resourceMapper.selectList(null); List<ResourceDO> resourceDOs = resourceMapper.selectList(null);
return ResourceConvert.INSTANCE.convertList(resourceDOs); return ResourceConvert.INSTANCE.convertList(resourceDOs);
} }
@ -135,7 +135,7 @@ public class ResourceService {
* @param type * @param type
* @return * @return
*/ */
public List<ResourceBO> listResourceByType(Integer type) { public List<ResourceBO> listResourcesByType(Integer type) {
List<ResourceDO> resourceDOs = resourceMapper.selectListByType(type); List<ResourceDO> resourceDOs = resourceMapper.selectListByType(type);
return ResourceConvert.INSTANCE.convertList(resourceDOs); return ResourceConvert.INSTANCE.convertList(resourceDOs);
} }
@ -147,7 +147,7 @@ public class ResourceService {
* @param type * @param type
* @return * @return
*/ */
public List<ResourceBO> listRoleResourceByType(Collection<Integer> roleIds, Integer type) { public List<ResourceBO> listRoleResourcesByType(Collection<Integer> roleIds, Integer type) {
List<RoleResourceDO> roleResourceDOs = roleResourceMapper.selectListByRoleIds(roleIds); List<RoleResourceDO> roleResourceDOs = roleResourceMapper.selectListByRoleIds(roleIds);
if (CollectionUtils.isEmpty(roleResourceDOs)) { if (CollectionUtils.isEmpty(roleResourceDOs)) {
return Collections.emptyList(); return Collections.emptyList();

View File

@ -110,6 +110,16 @@ public class RoleService {
return RoleConvert.INSTANCE.convert(roleDO); return RoleConvert.INSTANCE.convert(roleDO);
} }
/**
*
*
* @return
*/
public List<RoleBO> listAllRole() {
List<RoleDO> roleDOs = roleMapper.selectList(null);
return RoleConvert.INSTANCE.convertList(roleDOs);
}
/** /**
* *
* *

View File

@ -5,7 +5,6 @@ import lombok.Data;
import lombok.experimental.Accessors; import lombok.experimental.Accessors;
import javax.validation.constraints.NotNull; import javax.validation.constraints.NotNull;
import java.io.Serializable;
import java.util.Date; import java.util.Date;
/** /**
@ -13,7 +12,7 @@ import java.util.Date;
*/ */
@Data @Data
@Accessors(chain = true) @Accessors(chain = true)
public class ExceptionLogAddBO implements Serializable { public class ExceptionLogAddBO {
/** /**
* *

View File

@ -4,10 +4,10 @@
<insert id="insertList"> <insert id="insertList">
INSERT INTO permission_admin_role ( INSERT INTO permission_admin_role (
admin_id, role_id, create_time, deleted admin_id, role_id
) VALUES ) VALUES
<foreach collection="adminRoleDOs" item="adminRole" separator=","> <foreach collection="adminRoleDOs" item="adminRole" separator=",">
(#{adminRole.adminId}, #{adminRole.roleId}, #{adminRole.createTime}, #{adminRole.deleted}) (#{adminRole.adminId}, #{adminRole.roleId})
</foreach> </foreach>
</insert> </insert>

View File

@ -4,10 +4,10 @@
<insert id="insertList"> <insert id="insertList">
INSERT INTO permission_role_resource ( INSERT INTO permission_role_resource (
resource_id, role_id, create_time, deleted resource_id, role_id
) VALUES ) VALUES
<foreach collection="roleResources" item="roleResource" separator=","> <foreach collection="roleResources" item="roleResource" separator=",">
(#{roleResource.resourceId}, #{roleResource.roleId}, #{roleResource.createTime}, #{roleResource.deleted}) (#{roleResource.resourceId}, #{roleResource.roleId})
</foreach> </foreach>
</insert> </insert>

View File

@ -1,15 +0,0 @@
package cn.iocoder.mall.system.biz.bo.authorization;
import lombok.Data;
import lombok.experimental.Accessors;
/**
* - BO
*/
@Data
@Accessors(chain = true)
public class AuthorizationBO {
}

View File

@ -1,24 +0,0 @@
package cn.iocoder.mall.system.biz.bo.authorization;
import lombok.Data;
import lombok.experimental.Accessors;
import java.util.List;
/**
* - BO
*/
@Data
@Accessors(chain = true)
public class ResourceTreeNodeBO {
/**
*
*/
private ResourceBO node;
/**
*
*/
private List<ResourceTreeNodeBO> children;
}

View File

@ -1,36 +0,0 @@
package cn.iocoder.mall.system.biz.bo.authorization;
import lombok.Data;
import lombok.experimental.Accessors;
import java.util.Date;
/**
* - BO
*/
@Data
@Accessors(chain = true)
public class RoleBO {
/**
*
*/
private Integer id;
/**
*
*/
private String name;
/**
*
*/
private String code;
/**
*
*/
private Integer type;
/**
*
*/
private Date createTime;
}

View File

@ -1,22 +0,0 @@
package cn.iocoder.mall.system.biz.convert.authorization;
import cn.iocoder.mall.system.biz.bo.authorization.ResourceBO;
import cn.iocoder.mall.system.biz.bo.authorization.ResourceTreeNodeBO;
import cn.iocoder.mall.system.biz.dataobject.authorization.ResourceDO;
import cn.iocoder.mall.system.biz.dto.authorization.ResourceAddDTO;
import cn.iocoder.mall.system.biz.dto.authorization.ResourceUpdateDTO;
import org.mapstruct.Mapper;
import org.mapstruct.Mapping;
import org.mapstruct.factory.Mappers;
import java.util.List;
@Mapper
public interface ResourceConvert {
ResourceConvert INSTANCE = Mappers.getMapper(ResourceConvert.class);
@Mapping(source = "bean", target = "node")
ResourceTreeNodeBO convertTreeNode(ResourceDO bean);
}

View File

@ -1,27 +0,0 @@
package cn.iocoder.mall.system.biz.dto.authorization;
import lombok.Data;
import lombok.experimental.Accessors;
import javax.validation.constraints.NotNull;
import java.util.Set;
/**
* - DTO
*/
@Data
@Accessors(chain = true)
public class AuthorizationAssignRoleResourceDTO {
@NotNull(message = "管理员编号不能为空")
private Integer adminId;
@NotNull(message = "角色编号不能为空")
private Integer roleId;
/**
*
*/
private Set<Integer> resourceIds;
}

View File

@ -1,22 +0,0 @@
package cn.iocoder.mall.system.biz.dto.authorization;
import lombok.Data;
import lombok.experimental.Accessors;
import javax.validation.constraints.NotNull;
/**
* - DTO
*/
@Data
@Accessors(chain = true)
public class AuthorizationGetResourcesByAccountIdDTO {
@NotNull(message = "账号编号不能为空")
private Integer accountId;
/**
*
*/
private Integer type;
}

View File

@ -1,19 +0,0 @@
package cn.iocoder.mall.system.biz.dto.authorization;
import lombok.Data;
import lombok.experimental.Accessors;
import javax.validation.constraints.NotNull;
import java.util.Collection;
/**
* - DTO
*/
@Data
@Accessors(chain = true)
public class AuthorizationGetRoleMapByAccountIdsDTO {
@NotNull(message = "账号编号数组不能为空")
private Collection<Integer> accountIds;
}

View File

@ -1,18 +0,0 @@
package cn.iocoder.mall.system.biz.dto.authorization;
import lombok.Data;
import lombok.experimental.Accessors;
import javax.validation.constraints.NotNull;
/**
* - DTO
*/
@Data
@Accessors(chain = true)
public class AuthorizationGetRoleResourcesDTO {
@NotNull(message = "角色编号不能为空")
private Integer roleId;
}

View File

@ -1,25 +0,0 @@
package cn.iocoder.mall.system.biz.dto.authorization;
import lombok.Data;
import lombok.experimental.Accessors;
import java.util.Collection;
/**
* - DTO
*/
@Data
@Accessors(chain = true)
public class ResourceCountDTO {
/**
*
*/
private Collection<Integer> ids;
/**
*
*/
private Integer type;
}

View File

@ -1,27 +0,0 @@
package cn.iocoder.mall.system.biz.dto.authorization;
import lombok.Data;
import lombok.experimental.Accessors;
import java.util.Collection;
/**
* - DTO
*/
@Data
@Accessors(chain = true)
public class ResourceGetListDTO {
/**
*
*
*
*/
private Collection<Integer> ids;
/**
*
*/
private Integer type;
}

View File

@ -1,25 +0,0 @@
package cn.iocoder.mall.system.biz.dto.authorization;
import lombok.Data;
import lombok.experimental.Accessors;
import java.util.Collection;
/**
* - DTO
*/
@Data
@Accessors(chain = true)
public class ResourceGetTreeDTO {
/**
*
*/
private Collection<Integer> ids;
/**
*
*/
private Integer type;
}

View File

@ -1,20 +0,0 @@
package cn.iocoder.mall.system.biz.dto.oatuh2;
import lombok.Data;
import lombok.experimental.Accessors;
import javax.validation.constraints.NotEmpty;
/**
* - 访 DTO
*/
@Data
@Accessors(chain = true)
public class OAuth2AccessTokenAuthenticateDTO {
@NotEmpty(message = "访问令牌不能为空")
private String accessToken;
@NotEmpty(message = "IP 不能为空")
private String ip;
}

View File

@ -1,14 +0,0 @@
package cn.iocoder.mall.system.biz.dto.oatuh2;
import lombok.Data;
import lombok.experimental.Accessors;
// TODO 注释
@Data
@Accessors(chain = true)
public class OAuth2MobileCodAuthenticateDTO {
private String mobile;
private String code;
}

View File

@ -1,15 +0,0 @@
package cn.iocoder.mall.system.biz.dto.oatuh2;
import lombok.Data;
import lombok.experimental.Accessors;
// TODO 注释
@Data
@Accessors(chain = true)
public class OAuth2MobileCodeAuthenticateDTO {
private String mobile;
private String code;
private String ip;
}

View File

@ -1,14 +0,0 @@
package cn.iocoder.mall.system.biz.dto.oatuh2;
import lombok.Data;
import lombok.experimental.Accessors;
// TODO 注释
@Data
@Accessors(chain = true)
public class OAuth2MobileCodeSendDTO {
private String mobile;
private String ip;
}

View File

@ -1,20 +0,0 @@
package cn.iocoder.mall.system.biz.dto.oatuh2;
import lombok.Data;
import lombok.experimental.Accessors;
import javax.validation.constraints.NotEmpty;
/**
* - 访 DTO
*/
@Data
@Accessors(chain = true)
public class OAuth2RefreshTokenAuthenticateDTO {
@NotEmpty(message = "访问令牌不能为空")
private String refreshToken;
@NotEmpty(message = "IP 不能为空")
private String ip;
}

View File

@ -1,21 +0,0 @@
package cn.iocoder.mall.system.biz.dto.oatuh2;
import lombok.Data;
import lombok.experimental.Accessors;
import javax.validation.constraints.NotEmpty;
import javax.validation.constraints.NotNull;
/**
* - + DTO
*/
@Data
@Accessors(chain = true)
public class OAuth2UsernameAuthenticateDTO {
@NotEmpty(message = "账号不能为空")
private String username;
@NotNull(message = "密码不能为空")
private String password;
}

View File

@ -1,29 +0,0 @@
package cn.iocoder.mall.system.biz.event.authorization;
import cn.iocoder.mall.system.biz.dataobject.authorization.ResourceDO;
import org.springframework.context.ApplicationEvent;
/**
* {@link ResourceDO}
*/
public class ResourceDeleteEvent extends ApplicationEvent {
/**
*
*/
private Integer id;
public ResourceDeleteEvent(Object source) {
super(source);
}
public ResourceDeleteEvent(Object source, Integer id) {
super(source);
this.id = id;
}
public Integer getId() {
return id;
}
}

View File

@ -1,28 +0,0 @@
package cn.iocoder.mall.system.biz.event.authorization;
import cn.iocoder.mall.system.biz.dataobject.authorization.RoleDO;
import org.springframework.context.ApplicationEvent;
/**
* {@link RoleDO}
*/
public class RoleDeleteEvent extends ApplicationEvent {
/**
*
*/
private Integer id;
public RoleDeleteEvent(Object source) {
super(source);
}
public RoleDeleteEvent(Object source, Integer id) {
super(source);
this.id = id;
}
public Integer getId() {
return id;
}
}

View File

@ -73,62 +73,6 @@ public class AuthorizationServiceImpl implements AuthorizationService {
} }
} }
@Override
public List<ResourceBO> getResourcesByAccountId(AuthorizationGetResourcesByAccountIdDTO getResourcesByAccountIdDTO) {
// 查询管理员拥有的角色关联数据
List<AccountRoleDO> accountRoleDOs = accountRoleMapper.selectByAccountId(getResourcesByAccountIdDTO.getAccountId());
if (CollectionUtil.isEmpty(accountRoleDOs)) {
return Collections.emptyList();
}
Set<Integer> roleIds = CollectionUtil.convertSet(accountRoleDOs, AccountRoleDO::getRoleId);
// 判断是否为超管。若是超管,默认有所有权限
if (roleService.hasSuperAdmin(roleIds)) {
return resourceService.getResources(new ResourceGetListDTO().setType(getResourcesByAccountIdDTO.getType()));
}
// 查询角色拥有的资源关联数据
List<RoleResourceDO> roleResourceDOs = roleResourceMapper.selectListByRoleIds(roleIds);
if (CollectionUtil.isEmpty(roleResourceDOs)) {
return Collections.emptyList();
}
Set<Integer> resourceIds = CollectionUtil.convertSet(roleResourceDOs, RoleResourceDO::getResourceId);
// 查询对应资源列表
return resourceService.getResources(new ResourceGetListDTO().setIds(resourceIds).setType(getResourcesByAccountIdDTO.getType()));
}
@Override
public Map<Integer, Set<RoleBO>> getRoleMapByAccountIds(AuthorizationGetRoleMapByAccountIdsDTO getRoleMapByAccountIdsDTO) {
return null;
}
// @Override
// public Map<Integer, Set<RoleBO>> getRoleIdMapByAccountIds(AuthorizationGetRoleMapByAccountIdsDTO getRoleMapByAccountIdsDTO) {
// // 查询管理员拥有的角色关联数据
// List<AccountRoleDO> accountRoleDOs = accountRoleMapper.selectListByAccountIds(getRoleMapByAccountIdsDTO.getAccountIds());
// if (CollectionUtil.isEmpty(accountRoleDOs)) {
// return Collections.emptyMap();
// }
// // 构建结果
// Map<Integer, Set<Integer>> accountRoleMap = CollectionUtil.convertMultiMap2(accountRoleDOs,
// AccountRoleDO::getAccountId, AccountRoleDO::getRoleId);
// getRoleMapByAccountIdsDTO.getAccountIds().forEach(accountId -> accountRoleMap.putIfAbsent(accountId, Collections.emptySet()));
// return accountRoleMap;
// }
@Override
public Set<Integer> getRoleResources(AuthorizationGetRoleResourcesDTO getRoleResourcesDTO) {
Set<Integer> roleIds = Collections.singleton(getRoleResourcesDTO.getRoleId());
// 判断是否为超管。若是超管,默认有所有权限
if (roleService.hasSuperAdmin(roleIds)) {
return CollectionUtil.convertSet(resourceService.getResources(new ResourceGetListDTO()), ResourceBO::getId);
}
// 查询角色拥有的资源关联数据
List<RoleResourceDO> roleResourceDOs = roleResourceMapper.selectListByRoleIds(roleIds);
if (CollectionUtil.isEmpty(roleResourceDOs)) {
return Collections.emptySet();
}
return CollectionUtil.convertSet(roleResourceDOs, RoleResourceDO::getResourceId);
}
@EventListener @EventListener
public void handleResourceDeleteEvent(ResourceDeleteEvent event) { public void handleResourceDeleteEvent(ResourceDeleteEvent event) {
roleResourceMapper.deleteByResourceId(event.getId()); roleResourceMapper.deleteByResourceId(event.getId());

View File

@ -1,23 +0,0 @@
package cn.iocoder.mall.system.biz.service.authorization;
import cn.iocoder.mall.system.biz.bo.authorization.ResourceBO;
import cn.iocoder.mall.system.biz.bo.authorization.ResourceTreeNodeBO;
import cn.iocoder.mall.system.biz.dto.authorization.ResourceCountDTO;
import cn.iocoder.mall.system.biz.dto.authorization.ResourceGetListDTO;
import cn.iocoder.mall.system.biz.dto.authorization.ResourceGetTreeDTO;
import java.util.Collection;
import java.util.List;
/**
* - Service
*/
public interface ResourceService {
List<ResourceBO> getResourcesByPermissions(Collection<String> permissions);
List<ResourceBO> getResources(ResourceGetListDTO getListDTO);
int countResource(ResourceCountDTO countDTO);
}

View File

@ -1,45 +0,0 @@
package cn.iocoder.mall.system.biz.service.authorization;
import cn.iocoder.common.framework.util.ServiceExceptionUtil;
import cn.iocoder.mall.mybatis.enums.DeletedStatusEnum;
import cn.iocoder.mall.system.biz.bo.authorization.ResourceBO;
import cn.iocoder.mall.system.biz.bo.authorization.ResourceTreeNodeBO;
import cn.iocoder.mall.system.biz.convert.authorization.ResourceConvert;
import cn.iocoder.mall.system.biz.dao.authorization.ResourceMapper;
import cn.iocoder.mall.system.biz.dataobject.authorization.ResourceDO;
import cn.iocoder.mall.system.biz.dto.authorization.*;
import cn.iocoder.mall.system.biz.enums.SystemErrorCodeEnum;
import cn.iocoder.mall.system.biz.enums.authorization.ResourceIdEnum;
import cn.iocoder.mall.system.biz.enums.authorization.ResourceTypeEnum;
import cn.iocoder.mall.system.biz.event.authorization.ResourceDeleteEvent;
import lombok.extern.slf4j.Slf4j;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.context.ApplicationEventPublisher;
import org.springframework.stereotype.Service;
import org.springframework.transaction.annotation.Transactional;
import java.util.*;
import java.util.stream.Collectors;
@Service
@Slf4j
public class ResourceServiceImpl implements ResourceService {
@Autowired
private ApplicationEventPublisher eventPublisher;
@Override
public List<ResourceBO> getResourcesByPermissions(Collection<String> permissions) {
List<ResourceDO> resourceDOs = resourceMapper.selectListByPermissions(permissions);
return ResourceConvert.INSTANCE.convertList(resourceDOs);
}
@Override
public List<ResourceBO> getResources(ResourceGetListDTO getListDTO) {
List<ResourceDO> resourceDOs = resourceMapper.selectListByIdsAndType(getListDTO.getIds(), getListDTO.getType());
return ResourceConvert.INSTANCE.convertList(resourceDOs);
}
}

View File

@ -42,45 +42,6 @@ public class AdminsAuthorizationController {
@Autowired @Autowired
private RoleService roleService; private RoleService roleService;
@GetMapping("/menu-resource-tree")
@ApiOperation(value = "获得当前账号的菜单资源树", notes = "以树结构返回")
public CommonResult<List<AdminsAuthorizationMenuTreeResponse>> menuResourceTree() {
List<ResourceTreeNodeBO> resourceTreeNodeBOs = authorizationService.getResourceTreeByAccountId(new AuthorizationGetResourcesByAccountIdDTO()
.setAccountId(AdminSecurityContextHolder.getAccountId()).setType(ResourceTypeEnum.MENU.getType()));
return CommonResult.success(AdminsAuthorizationConvert.INSTANCE.convertList(resourceTreeNodeBOs));
}
@GetMapping("/resource-permissions")
@ApiOperation(value = "获得当前账号的资源权限列表")
public CommonResult<Set<String>> resourcePermissions() {
List<ResourceBO> resources = authorizationService.getResourcesByAccountId(new AuthorizationGetResourcesByAccountIdDTO()
.setAccountId(AdminSecurityContextHolder.getAccountId()));
return CommonResult.success(resources.stream().map(ResourceBO::getRoute).collect(Collectors.toSet()));
}
@GetMapping("/role_resource_tree")
@ApiOperation(value = "获得角色拥有的菜单权限", notes = "以树结构返回。注意,返回的资源树是完整的结构,会标记每个资源节点是否被角色所拥有")
@ApiImplicitParam(name = "roleId", value = "角色编号", required = true, example = "1")
@RequiresPermissions("system:authorization:assign_role_resource")
public CommonResult<List<AdminsAuthorizationRoleResourceTreeResponse>> roleResourceTree(@RequestParam("roleId") Integer roleId) {
// 1. 获得完整的资源树
List<ResourceTreeNodeBO> resourceTreeNodeBOs = resourceService.getResourceTree(new ResourceGetTreeDTO());
// 2. 获得角色拥有的子树
Set<Integer> roleResourceIds = authorizationService.getRoleResources(new AuthorizationGetRoleResourcesDTO().setRoleId(roleId));
// 3. 拼接,返回结果
return CommonResult.success(AdminsAuthorizationConvert.INSTANCE.convertList(resourceTreeNodeBOs, roleResourceIds));
}
@PostMapping("/assign_role_resource")
@ApiOperation(value = "分配角色资源")
@RequiresPermissions("system:authorization:assign_role_resource")
public CommonResult<Boolean> assignRoleResource(AdminsAuthorizationAssignRoleResourceRequest request) {
AuthorizationAssignRoleResourceDTO authorizationAssignRoleResourceDTO = AdminsAuthorizationConvert.INSTANCE.convert(request)
.setAdminId(AdminSecurityContextHolder.getAdminId());
authorizationService.assignRoleResource(authorizationAssignRoleResourceDTO);
return CommonResult.success(true);
}
// @GetMapping("/role_list") // @GetMapping("/role_list")
// @ApiOperation(value = "指定账号拥有的角色列表") // @ApiOperation(value = "指定账号拥有的角色列表")
// @ApiImplicitParam(name = "accountId", value = "账号编号", required = true, example = "1") // @ApiImplicitParam(name = "accountId", value = "账号编号", required = true, example = "1")

View File

@ -1,4 +0,0 @@
/**
* system RPC
*/
package cn.iocoder.mall.system.rpc;

View File

@ -1,30 +0,0 @@
package cn.iocoder.mall.system.rpc.rpc.oauth2;
import cn.iocoder.common.framework.vo.CommonResult;
import cn.iocoder.mall.system.biz.bo.ouath2.OAuth2AuthenticateBO;
import cn.iocoder.mall.system.biz.dto.oatuh2.OAuth2AccessTokenAuthenticateDTO;
import cn.iocoder.mall.system.biz.service.oauth2.OAuth2Service;
import cn.iocoder.mall.system.rpc.api.oauth2.OAuth2RPC;
import cn.iocoder.mall.system.rpc.convert.oauth2.OAuth2Convert;
import cn.iocoder.mall.system.rpc.request.oauth2.OAuth2AccessTokenAuthenticateRequest;
import cn.iocoder.mall.system.rpc.response.oauth2.OAuth2AccessTokenResponse;
import org.apache.dubbo.config.annotation.Service;
import org.springframework.beans.factory.annotation.Autowired;
@Service(version = "${dubbo.provider.OAuth2RPC.version}", validation = "true")
public class OAuth2RPCImpl implements OAuth2RPC {
@Autowired
private OAuth2Service oauth2Service;
@Override
public CommonResult<OAuth2AccessTokenResponse> authenticate(OAuth2AccessTokenAuthenticateRequest authenticateRequest) {
// 执行认证
OAuth2AccessTokenAuthenticateDTO authenticateDTO = OAuth2Convert.INSTANCE.convert(authenticateRequest);
OAuth2AuthenticateBO accessTokenBO = oauth2Service.authenticate(authenticateDTO);
// 返回结果
OAuth2AccessTokenResponse accessTokenResponse = OAuth2Convert.INSTANCE.convert(accessTokenBO);
return CommonResult.success(accessTokenResponse);
}
}