✨ add DataPermi.cs
This commit is contained in:
不做码农
parent
c3e024f7b5
commit
046a470ea4
121
ZR.Admin.WebApi/Extensions/DataPermi.cs
Normal file
121
ZR.Admin.WebApi/Extensions/DataPermi.cs
Normal file
@ -0,0 +1,121 @@
|
||||
using Infrastructure;
|
||||
using SqlSugar.IOC;
|
||||
using SqlSugar;
|
||||
using ZR.Admin.WebApi.Framework;
|
||||
using ZR.Model.System;
|
||||
|
||||
namespace ZR.Admin.WebApi.Extensions
|
||||
{
|
||||
public enum DataPermiEnum
|
||||
{
|
||||
None = 0,
|
||||
/// <summary>
|
||||
/// 全部数据权限
|
||||
/// </summary>
|
||||
All = 1,
|
||||
/// <summary>
|
||||
/// 仅本人数据权限
|
||||
/// </summary>
|
||||
SELF = 5,
|
||||
/// <summary>
|
||||
/// 部门数据权限
|
||||
/// </summary>
|
||||
DEPT = 3,
|
||||
/// <summary>
|
||||
/// 自定数据权限
|
||||
/// </summary>
|
||||
CUSTOM = 2,
|
||||
/// <summary>
|
||||
/// 部门及以下数据权限
|
||||
/// </summary>
|
||||
DEPT_CHILD = 4
|
||||
}
|
||||
/// <summary>
|
||||
/// 数据权限
|
||||
/// </summary>
|
||||
public class DataPermi
|
||||
{
|
||||
/// <summary>
|
||||
/// 数据过滤
|
||||
/// </summary>
|
||||
/// <param name="configId">多库id</param>
|
||||
public static void FilterData(int configId)
|
||||
{
|
||||
//获取当前用户的信息
|
||||
var user = JwtUtil.GetLoginUser(App.HttpContext);
|
||||
if (user == null) return;
|
||||
//管理员不过滤
|
||||
if (user.RoleIds.Any(f => f.Equals(GlobalConstant.AdminRole))) return;
|
||||
var db = DbScoped.SugarScope.GetConnectionScope(configId);
|
||||
var expUser = Expressionable.Create<SysUser>();
|
||||
var expRole = Expressionable.Create<SysRole>();
|
||||
var expLoginlog = Expressionable.Create<SysLogininfor>();
|
||||
|
||||
foreach (var role in user.Roles.OrderBy(f => f.DataScope))
|
||||
{
|
||||
var dataScope = (DataPermiEnum)role.DataScope;
|
||||
if (DataPermiEnum.All.Equals(dataScope))//所有权限
|
||||
{
|
||||
break;
|
||||
}
|
||||
else if (DataPermiEnum.CUSTOM.Equals(dataScope))//自定数据权限
|
||||
{
|
||||
//" OR {}.dept_id IN ( SELECT dept_id FROM sys_role_dept WHERE role_id = {} ) ", deptAlias, role.getRoleId()));
|
||||
|
||||
expUser.Or(it => SqlFunc.Subqueryable<SysRoleDept>().Where(f => f.DeptId == it.DeptId && f.RoleId == role.RoleId).Any());
|
||||
}
|
||||
else if (DataPermiEnum.DEPT.Equals(dataScope))//本部门数据
|
||||
{
|
||||
expUser.Or(it => it.DeptId == user.DeptId);
|
||||
}
|
||||
else if (DataPermiEnum.DEPT_CHILD.Equals(dataScope))//本部门及以下数据
|
||||
{
|
||||
//SQl OR {}.dept_id IN ( SELECT dept_id FROM sys_dept WHERE dept_id = {} or find_in_set( {} , ancestors ) )
|
||||
var allChildDepts = db.Queryable<SysDept>().ToChildList(it => it.ParentId, user.DeptId);
|
||||
|
||||
expUser.Or(it => allChildDepts.Select(f => f.DeptId).ToList().Contains(it.DeptId));
|
||||
}
|
||||
else if (DataPermiEnum.SELF.Equals(dataScope))//仅本人数据
|
||||
{
|
||||
expUser.Or(it => it.UserId == user.UserId);
|
||||
expRole.Or(it => user.RoleIds.Contains(it.RoleKey));
|
||||
expLoginlog.And(it => it.UserName == user.UserName);
|
||||
}
|
||||
}
|
||||
|
||||
db.QueryFilter.AddTableFilter(expUser.ToExpression());
|
||||
db.QueryFilter.AddTableFilter(expRole.ToExpression());
|
||||
db.QueryFilter.AddTableFilter(expLoginlog.ToExpression());
|
||||
}
|
||||
|
||||
public static void FilterData1(int configId)
|
||||
{
|
||||
//获取当前用户的信息
|
||||
var user = JwtUtil.GetLoginUser(App.HttpContext);
|
||||
if (user == null) return;
|
||||
var db = DbScoped.SugarScope.GetConnectionScope(configId);
|
||||
|
||||
foreach (var role in user.Roles.OrderBy(f => f.DataScope))
|
||||
{
|
||||
var dataScope = (DataPermiEnum)role.DataScope;
|
||||
if (DataPermiEnum.All.Equals(dataScope))//所有权限
|
||||
{
|
||||
break;
|
||||
}
|
||||
else if (DataPermiEnum.CUSTOM.Equals(dataScope))//自定数据权限
|
||||
{
|
||||
}
|
||||
else if (DataPermiEnum.DEPT.Equals(dataScope))//本部门数据
|
||||
{
|
||||
}
|
||||
else if (DataPermiEnum.DEPT_CHILD.Equals(dataScope))//本部门及以下数据
|
||||
{
|
||||
|
||||
}
|
||||
else if (DataPermiEnum.SELF.Equals(dataScope))//仅本人数据
|
||||
{
|
||||
}
|
||||
}
|
||||
}
|
||||
}
|
||||
}
|
||||
Loading…
x
Reference in New Issue
Block a user