wenyongda/ZrAdminNetCore
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

增加非管理员账号一些操作权限判断

Browse Source
This commit is contained in:
不做码农 2022-03-22 11:34:23 +08:00
parent 480843147f
commit 971c22ce47
3 changed files with 27 additions and 9 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
ZR.Admin.WebApi/Controllers/System/monitor/SysLogininforController.cs
View File

@ -1,14 +1,14 @@
using Infrastructure;
using Infrastructure.Attribute;
using Infrastructure.Enums;
using Infrastructure.Model;
using Microsoft.AspNetCore.Mvc;
using SqlSugar;
using System.Linq.Expressions;
using ZR.Admin.WebApi.Extensions;
using ZR.Admin.WebApi.Filters;
using ZR.Common;
using ZR.Model;
using ZR.Model.System;
using ZR.Model.Vo;
using ZR.Service.System.IService;
namespace ZR.Admin.WebApi.Controllers.monitor
@ -52,6 +52,10 @@ namespace ZR.Admin.WebApi.Controllers.monitor
[HttpDelete("clean")]
public IActionResult CleanLoginInfo()
{
if (!HttpContextExtension.IsAdmin(HttpContext))
{
return ToResponse(ApiResult.Error("操作失败"));
}
sysLoginService.TruncateLogininfo();
return SUCCESS(1);
}
@ -66,6 +70,10 @@ namespace ZR.Admin.WebApi.Controllers.monitor
[ActionPermissionFilter(Permission = "monitor:logininfor:remove")]
public IActionResult Remove(string infoIds)
{
if (!HttpContextExtension.IsAdmin(HttpContext))
{
return ToResponse(ApiResult.Error("操作失败"));
}
long[] infoIdss = Tools.SpitLongArrary(infoIds);
return SUCCESS(sysLoginService.DeleteLogininforByIds(infoIdss));
}

18
ZR.Admin.WebApi/Controllers/System/monitor/SysOperlogController.cs
View File

@ -1,19 +1,14 @@
using Infrastructure.Attribute;
using Infrastructure.Enums;
using Infrastructure.Model;
using Microsoft.AspNetCore.Hosting;
using Microsoft.AspNetCore.Mvc;
using ZR.Admin.WebApi.Extensions;
using ZR.Admin.WebApi.Filters;
using ZR.Common;
using ZR.Model;
using ZR.Model.System.Dto;
using ZR.Model.System;
using ZR.Model.Vo;
using ZR.Service.System.IService;
using System;
using System.IO;
using OfficeOpenXml;
using Microsoft.AspNetCore.Hosting;
using System.Collections.Generic;
namespace ZR.Admin.WebApi.Controllers.monitor
{
@ -40,6 +35,7 @@ namespace ZR.Admin.WebApi.Controllers.monitor
{
PagerInfo pagerInfo = new(sysOperLog.pageNum, sysOperLog.PageSize);
sysOperLog.operName = !HttpContextExtension.IsAdmin(HttpContext) ? HttpContextExtension.GetName(HttpContext) : sysOperLog.operName;
var list = sysOperLogService.SelectOperLogList(sysOperLog, pagerInfo);
return SUCCESS(list, "MM/dd HH:mm");
@ -55,6 +51,10 @@ namespace ZR.Admin.WebApi.Controllers.monitor
[HttpDelete("{operIds}")]
public IActionResult Remove(string operIds)
{
if (!HttpContextExtension.IsAdmin(HttpContext))
{
return ToResponse(ApiResult.Error("操作失败"));
}
long[] operIdss = Tools.SpitLongArrary(operIds);
return SUCCESS(sysOperLogService.DeleteOperLogByIds(operIdss));
}
@ -68,6 +68,10 @@ namespace ZR.Admin.WebApi.Controllers.monitor
[HttpDelete("clean")]
public ApiResult ClearOperLog()
{
if (!HttpContextExtension.IsAdmin(HttpContext))
{
return ApiResult.Error("操作失败");
}
sysOperLogService.CleanOperLog();
return ToJson(1);

6
ZR.Admin.WebApi/Extensions/HttpContextExtension.cs
View File

@ -79,6 +79,12 @@ namespace ZR.Admin.WebApi.Extensions
return uid;
}
public static bool IsAdmin(this HttpContext context)
{
long id = GetUId(context);
return id == 1;
}
/// <summary>
/// ClaimsIdentity
/// </summary>