mobile_api_base_controller.go 5.7KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190
  1. package mobile_api_controllers
  2. import (
  3. "XT_New/controllers"
  4. "XT_New/enums"
  5. "XT_New/models"
  6. "XT_New/service"
  7. "fmt"
  8. "strconv"
  9. "strings"
  10. )
  11. type MobileBaseAPIController struct {
  12. controllers.BaseAPIController
  13. }
  14. func (this *MobileBaseAPIController) Prepare() {
  15. this.BaseAPIController.Prepare()
  16. // beego.Trace("============================================================")
  17. // beego.Trace("session ID: %v", this.Ctx.Input.Cookie("beegosessionID"))
  18. // beego.Trace("session : %v", this.GetSession("info"))
  19. // this.SetSession("info", time.Now().Format("2006/01/02 15:04:05"))
  20. // beego.Trace("============================================================")
  21. }
  22. func (this *MobileBaseAPIController) GetMobileAdminUserInfo() *MobileAdminUserInfo {
  23. userInfo := this.GetSession("mobile_admin_user_info")
  24. if userInfo == nil {
  25. return nil
  26. } else {
  27. return userInfo.(*MobileAdminUserInfo)
  28. }
  29. }
  30. type MobileAdminUserInfo struct {
  31. AdminUser *models.AdminUser
  32. Org *models.Org
  33. App *models.OrgApp
  34. AppRole *models.App_Role
  35. Subscibe *models.ServeSubscibe
  36. TemplateInfo *models.GobalTemplate
  37. }
  38. type MobileBaseAPIAuthController struct {
  39. MobileBaseAPIController
  40. }
  41. func (this *MobileBaseAPIAuthController) Prepare() {
  42. token := this.Ctx.GetCookie("token_cookie")
  43. //if len(token) == 0{
  44. // this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeNotLogin)
  45. // this.StopRun()
  46. //}
  47. this.MobileBaseAPIController.Prepare()
  48. adminUserInfo := this.GetMobileAdminUserInfo()
  49. if adminUserInfo == nil {
  50. this.DelSession("mobile_admin_user_info")
  51. this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeNotLogin)
  52. this.StopRun()
  53. }
  54. if len(token) == 0 {
  55. this.DelSession("mobile_admin_user_info")
  56. this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeLoginTimeout)
  57. this.StopRun()
  58. }
  59. //if this.Ctx.Request.Method != "GET" {
  60. // err := service.GetOrgSubscibeState(adminUserInfo.Subscibe)
  61. // if err != nil || adminUserInfo.Subscibe.State == 3 {
  62. // this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeNotSubscibe)
  63. // this.StopRun()
  64. // }
  65. //}
  66. if adminUserInfo.AppRole != nil {
  67. if adminUserInfo.AppRole.Id > 0 {
  68. app_role, _ := service.FindAppRoleById(adminUserInfo.AppRole.Id)
  69. if app_role != nil {
  70. if app_role.Status != 1 {
  71. this.DelSession("mobile_admin_user_info")
  72. this.Ctx.SetCookie("token_cookie", "")
  73. this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeForbidden)
  74. this.StopRun()
  75. }
  76. }
  77. }
  78. }
  79. if this.Ctx.Request.Header.Get("Permission") == "1" {
  80. if adminUserInfo.AdminUser.Id != adminUserInfo.Org.Creator { //超级管理员不受此限制
  81. isPermission := false
  82. adminUserInfo := this.GetMobileAdminUserInfo()
  83. //该机构下该用户有多少个
  84. role, _ := service.GetUserAllRole(adminUserInfo.Org.Id, adminUserInfo.AdminUser.Id)
  85. var roles []string
  86. if len(role.RoleIds) <= 0 { //该用户没有设置角色
  87. } else {
  88. roles = strings.Split(role.RoleIds, ",")
  89. }
  90. fmt.Println(roles)
  91. //获取该用户下所有角色的权限总集
  92. var userRolePurviews string
  93. var userRolePurviewsArr []string
  94. for _, item := range roles {
  95. role_id, _ := strconv.ParseInt(item, 10, 64)
  96. purviews, _ := service.GetRoleFuncPurviewIds(role_id)
  97. if len(userRolePurviews) == 0 {
  98. userRolePurviews = purviews
  99. } else {
  100. userRolePurviews = userRolePurviews + "," + purviews
  101. }
  102. }
  103. //该用户所拥有角色的权限的总集
  104. userRolePurviewsArr = RemoveRepeatedPurviewElement(strings.Split(userRolePurviews, ","))
  105. fmt.Println(userRolePurviewsArr)
  106. //系统所记录的权限列表
  107. allPermission, _ := service.GetAllFunctionPurview()
  108. for _, item := range allPermission {
  109. fmt.Println(strings.Split(item.Urlfor, ",")[0])
  110. fmt.Println(strings.Split(this.Ctx.Request.RequestURI, "?")[0] + "?" + "mode=" + this.GetString("mode"))
  111. //判断当前路由是否在权限路由列表里面
  112. if strings.Split(item.Urlfor, ",")[0] == strings.Split(this.Ctx.Request.RequestURI, "?")[0]+"?"+"mode="+this.GetString("mode") {
  113. //获取该角色的所有权限
  114. for _, items := range userRolePurviewsArr {
  115. id, _ := strconv.ParseInt(items, 10, 64)
  116. fmt.Println(id)
  117. fmt.Println(item.ID)
  118. if id == item.ID {
  119. isPermission = true
  120. }
  121. }
  122. if !isPermission {
  123. msg, _ := service.FindErrorMsgByStr(strings.Split(this.Ctx.Request.RequestURI, "?")[0] + "?" + "mode=" + this.GetString("mode"))
  124. json := make(map[string]interface{})
  125. json["msg"] = msg
  126. json["code"] = 0
  127. json["state"] = 0
  128. this.Data["json"] = json
  129. this.ServeJSON()
  130. this.StopRun()
  131. }
  132. }
  133. }
  134. }
  135. }
  136. }
  137. func RemoveRepeatedPurviewElement(arr []string) (newArr []string) {
  138. newArr = make([]string, 0)
  139. for i := 0; i < len(arr); i++ {
  140. repeat := false
  141. for j := i + 1; j < len(arr); j++ {
  142. if arr[i] == arr[j] {
  143. repeat = true
  144. break
  145. }
  146. }
  147. if !repeat {
  148. newArr = append(newArr, arr[i])
  149. }
  150. }
  151. return
  152. }
  153. type AdminUserInfo struct {
  154. AdminUser *models.AdminUser `json:"user"`
  155. CurrentOrgId int64 `json:"current_org_id"`
  156. CurrentAppId int64 `json:"current_app_id"`
  157. OrgIds []int64 `json:"org_ids"`
  158. Orgs map[int64]*models.Org `json:"orgs"`
  159. OrgAppIds map[int64][]int64 `json:"org_app_ids"`
  160. OrgApps map[int64](map[int64]*models.OrgApp) `json:"org_apps"`
  161. App2OrgIds map[int64]int64 `json:"app_to_org_ids"`
  162. AppRoles map[int64]*models.App_Role `json:"app_roles"`
  163. AppPurviews map[int64][]*models.Purview `json:"app_purviews"`
  164. AppUrlfors map[int64][]string `json:"app_urlfors"`
  165. Subscibes map[int64]*models.ServeSubscibe `json:"org_subscibes"`
  166. }