Etusivu Tutki Apua
Rekisteröidy Kirjaudu sisään
csx
/
XT_New
Tarkkaile 1
Äänestä 0
Fork 0
Koodi Ongelmat 24 Pull-pyynnöt 0 Julkaisut 0 Wiki Activity
89 Commitit
14 Branchit
Puu: 6ade040368
Branchit Tagit
${ item.name }
Create branch ${ searchTerm }
from '6ade040368'
${ noResults }
XT_New/controllers/role_controller.go

role_controller.go 26KB
Historia Raaka

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805806807808809810811812813814815816817818819820821822823824825826827828829830831832833834835836837838839840841842 
  1. package controllers

  2. 

  3. import (

  4. 	"strconv"

  5. 	"strings"

  6. 	"time"

  7. 

  8. 	"XT_New/enums"

  9. 	"XT_New/models"

  10. 	"XT_New/service"

  11. 

  12. 	"github.com/astaxie/beego"

  13. )

  14. 

  15. func RoleAPIControllerRegistRouters() {

  16. 	beego.Router("/api/roles", &RoleAPIController{}, "get:GetRoles")

  17. 	beego.Router("/api/role/create", &RoleAPIController{}, "post:CreateRole")

  18. 	beego.Router("/api/role/modify", &RoleAPIController{}, "post:ModifyRole")

  19. 	beego.Router("/api/role/setstatus", &RoleAPIController{}, "post:ModifyRoleStatus")

  20. 

  21. 	beego.Router("/role/purview/editinit", &RoleAPIController{}, "get:EditPurviewInitData")

  22. 	beego.Router("/role/purview/edit", &RoleAPIController{}, "post:EditPurview")

  23. 

  24. 	beego.Router("/api/adminmain", &RoleAPIController{}, "get:AdminMainView")

  25. 	beego.Router("/api/admins", &RoleAPIController{}, "get:Admins")

  26. 	beego.Router("/api/admin/addinit", &RoleAPIController{}, "get:AddAdminInitData")

  27. 	beego.Router("/api/admin/add", &RoleAPIController{}, "post:AddAdmin")

  28. 	beego.Router("/api/admin/editinit", &RoleAPIController{}, "get:EditAdminInitData")

  29. 	beego.Router("/api/admin/edit", &RoleAPIController{}, "post:EditAdmin")

  30. 	beego.Router("/api/admin/setstatus", &RoleAPIController{}, "post:AdminSetStatus")

  31. 

  32. 	beego.Router("/api/admin/specialpermission/initdata", &RoleAPIController{}, "get:SpecialPermissionInitData")

  33. 	beego.Router("/api/admin/specialpermission/dialysisrecord/submit", &RoleAPIController{}, "post:SubmitDialysisRecordPermission")

  34. 

  35. 	beego.Router("/api/roles/list", &RoleAPIController{}, "get:GetAllOrgRole")

  36. 	beego.Router("/api/staff", &RoleAPIController{}, "get:GetAllOrgUser")

  37. 	beego.Router("/api/role/addStaff", &RoleAPIController{}, "post:AddRoleStaff")

  38. 

  39. 	beego.Router("/api/role/staff", &RoleAPIController{}, "get:GetRoleStaff")

  40. 

  41. }

  42. 

  43. type RoleAPIController struct {

  44. 	BaseAuthAPIController

  45. }

  46. 

  47. // /api/roles [get]

  48. // @param page?:int

  49. func (this *RoleAPIController) GetRoles() {

  50. 	page, _ := this.GetInt("page")

  51. 	adminUserInfo := this.GetAdminUserInfo()

  52. 	//beego.Alert(adminUserInfo.AdminUser)

  53. 	//if adminUserInfo.AdminUser.IsSuperAdmin == false {

  54. 	//	this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodePermissionDenied)

  55. 	//	return

  56. 	//}

  57. 	if page <= 0 {

  58. 		page = 1

  59. 	}

  60. 	roles, total, getRoleErr := service.GetRoles(adminUserInfo.CurrentOrgId, adminUserInfo.CurrentAppId, page, 100)

  61. 	if getRoleErr != nil {

  62. 		//beego.Error("获取角色列表失败:", getRoleErr)

  63. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDataException)

  64. 	} else {

  65. 		this.ServeSuccessJSON(map[string]interface{}{

  66. 			"roles":       roles,

  67. 			"total_count": total,

  68. 		})

  69. 	}

  70. }

  71. 

  72. // /api/role/create [post]

  73. // @param name:string

  74. // @param intro:string

  75. func (this *RoleAPIController) CreateRole() {

  76. 	name := this.GetString("name")

  77. 	intro := this.GetString("intro")

  78. 	if len(name) == 0 || len(intro) == 0 {

  79. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeParamWrong)

  80. 		return

  81. 	}

  82. 	adminUserInfo := this.GetAdminUserInfo()

  83. 	//if adminUserInfo.AdminUser.IsSuperAdmin == false {

  84. 	//	this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodePermissionDenied)

  85. 	//	return

  86. 	//}

  87. 

  88. 	total := service.FindRoleRecordByRoleName(name, adminUserInfo.CurrentOrgId)

  89. 	if total > 0 {

  90. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeRoleNameIsExist)

  91. 		return

  92. 	}

  93. 	role, createErr := service.CreateRole(adminUserInfo.AdminUser.Id, adminUserInfo.CurrentOrgId, adminUserInfo.CurrentAppId, name, intro)

  94. 	if createErr != nil {

  95. 		//beego.Error("创建角色失败:", createErr)

  96. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDBCreate)

  97. 	} else {

  98. 		this.ServeSuccessJSON(map[string]interface{}{

  99. 			"id":     role.Id,

  100. 			"name":   role.RoleName,

  101. 			"intro":  role.RoleIntro,

  102. 			"status": role.Status,

  103. 		})

  104. 	}

  105. }

  106. 

  107. // /api/role/modify

  108. // @param role_id:int

  109. // @param name:string

  110. // @param intro:string

  111. func (this *RoleAPIController) ModifyRole() {

  112. 	roleID, _ := this.GetInt64("role_id")

  113. 	name := this.GetString("name")

  114. 	intro := this.GetString("intro")

  115. 	if roleID <= 0 || len(name) == 0 || len(intro) == 0 {

  116. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeParamWrong)

  117. 		return

  118. 	}

  119. 	//adminUserInfo := this.GetAdminUserInfo()

  120. 	//if adminUserInfo.AdminUser.IsSuperAdmin == false {

  121. 	//	this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodePermissionDenied)

  122. 	//	return

  123. 	//}

  124. 

  125. 	role, getRoleErr := service.GetRoleByRoleID(roleID)

  126. 	if getRoleErr != nil {

  127. 		//beego.Error("获取角色失败:", getRoleErr)

  128. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDataException)

  129. 		return

  130. 	} else if role == nil {

  131. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeRoleNotExist)

  132. 		return

  133. 	}

  134. 

  135. 	role.RoleName = name

  136. 	role.RoleIntro = intro

  137. 	role.ModifyTime = time.Now().Unix()

  138. 	saveErr := service.ModifyRole(role)

  139. 	if saveErr != nil {

  140. 		//beego.Error("修改角色失败:", role.Id, saveErr)

  141. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDBUpdate)

  142. 	} else {

  143. 		this.ServeSuccessJSON(nil)

  144. 	}

  145. }

  146. 

  147. // /api/role/setstatus

  148. // @param role_id:int

  149. // @param enable:bool

  150. func (this *RoleAPIController) ModifyRoleStatus() {

  151. 	roleID, _ := this.GetInt64("role_id")

  152. 	enable, _ := this.GetBool("enable")

  153. 	if roleID <= 0 {

  154. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeParamWrong)

  155. 		return

  156. 	}

  157. 

  158. 	adminUserInfo := this.GetAdminUserInfo()

  159. 	//if adminUserInfo.AdminUser.IsSuperAdmin == false {

  160. 	//	this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodePermissionDenied)

  161. 	//	return

  162. 	//}

  163. 

  164. 	role, getRoleErr := service.GetRoleByRoleID(roleID)

  165. 	if getRoleErr != nil {

  166. 		//beego.Error("获取角色失败:", getRoleErr)

  167. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDataException)

  168. 		return

  169. 	} else if role == nil {

  170. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeRoleNotExist)

  171. 		return

  172. 	}

  173. 

  174. 	if enable == false {

  175. 		if count, _ := service.RoleAdminUserCount(adminUserInfo.CurrentOrgId, adminUserInfo.CurrentAppId, roleID); count != 0 {

  176. 			this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeCannotRemoveRole)

  177. 			return

  178. 		}

  179. 	}

  180. 

  181. 	if enable {

  182. 		role.Status = 1

  183. 	} else {

  184. 		role.Status = 2

  185. 	}

  186. 	role.ModifyTime = time.Now().Unix()

  187. 	saveErr := service.ModifyRole(role)

  188. 	if saveErr != nil {

  189. 		//beego.Error("修改角色失败:", role.Id, saveErr)

  190. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDBUpdate)

  191. 	} else {

  192. 		this.ServeSuccessJSON(nil)

  193. 	}

  194. }

  195. 

  196. // /role/purview/editinit [get]

  197. // @param role_id:int

  198. func (this *RoleAPIController) EditPurviewInitData() {

  199. 	//adminUserInfo := this.GetAdminUserInfo()

  200. 	//if adminUserInfo.AdminUser.IsSuperAdmin == false {

  201. 	//	this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodePermissionDenied)

  202. 	//	return

  203. 	//}

  204. 

  205. 	roleId, _ := this.GetInt64("role_id")

  206. 	if roleId <= 0 {

  207. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeParamWrong)

  208. 		return

  209. 	}

  210. 	purviews, getPurviewsErr := service.GetAllGeneralPurviewVMsProcessed()

  211. 	if getPurviewsErr != nil {

  212. 		//beego.Error("获取所有权限时出错:", getPurviewsErr)

  213. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDataException)

  214. 		return

  215. 	}

  216. 	rolePurviewIdStr, getRPIdsErr := service.GetRolePurviewIds(roleId)

  217. 	if getRPIdsErr != nil {

  218. 		//beego.Error("获取角色的权限时出错:", getRPIdsErr)

  219. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDataException)

  220. 		return

  221. 	}

  222. 

  223. 	this.ServeSuccessJSON(map[string]interface{}{

  224. 		"purviews":         purviews,

  225. 		"role_purview_ids": rolePurviewIdStr,

  226. 	})

  227. }

  228. 

  229. // /role/purview/edit [post]

  230. // @param role_id:int

  231. // @param purview_ids:string

  232. func (this *RoleAPIController) EditPurview() {

  233. 	adminUserInfo := this.GetAdminUserInfo()

  234. 	//if adminUserInfo.AdminUser.IsSuperAdmin == false {

  235. 	//	this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodePermissionDenied)

  236. 	//	return

  237. 	//}

  238. 	roleId, _ := this.GetInt64("role_id")

  239. 	purviewIds := this.GetString("purview_ids")

  240. 	if roleId <= 0 {

  241. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeParamWrong)

  242. 		return

  243. 	}

  244. 

  245. 	err := service.SaveRolePurviewIds(adminUserInfo.CurrentOrgId, adminUserInfo.CurrentAppId, roleId, purviewIds)

  246. 	if err != nil {

  247. 		//beego.Error("设置角色的权限时出错:", err)

  248. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDBUpdate)

  249. 	} else {

  250. 		this.ServeSuccessJSON(nil)

  251. 	}

  252. }

  253. 

  254. // func (this *RoleAPIController) doesUserHaveAccess(userID int64) bool {

  255. // 	adminUser, getAdminUserErr := service.GetAdminUserByUserID(userID)

  256. // 	if getAdminUserErr != nil {

  257. // 		beego.Error("获取用户信息失败:%v", getAdminUserErr)

  258. // 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDataException)

  259. // 		return false

  260. // 	} else if adminUser == nil {

  261. // 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeAdminUserNotExist)

  262. // 		return false

  263. // 	} else if adminUser.Status == 2 {

  264. // 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeUserWasForbidden)

  265. // 		return false

  266. // 	} else if adminUser.IsSuperAdmin == false {

  267. // 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodePermissionDenied)

  268. // 		return false

  269. // 	}

  270. // 	return true

  271. // }

  272. 

  273. // func (this *RoleAPIController) isAppRoleExist(orgID int64, appID int64, userID int64) bool {

  274. // 	appRole, getAppRoleErr := service.GetAppRole(orgID, appID, userID)

  275. // 	if getAppRoleErr != nil {

  276. // 		beego.Error("检查用户和机构应用对应关系时失败:%v", getAppRoleErr)

  277. // 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDataException)

  278. // 		return false

  279. // 	} else if appRole == nil {

  280. // 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodePermissionDenied)

  281. // 		return false

  282. // 	}

  283. // 	return true

  284. // }

  285. 

  286. // /api/adminmain [get]

  287. func (this *RoleAPIController) AdminMainView() {

  288. 	adminUserInfo := this.GetAdminUserInfo()

  289. 

  290. 	//org, _ := service.GetOrgById(adminUserInfo.CurrentOrgId)

  291. 

  292. 	var isSubSuperAdmin bool = false

  293. 	adminUserRole, _ := service.GetAppRole(adminUserInfo.CurrentOrgId, adminUserInfo.CurrentAppId, adminUserInfo.AdminUser.Id)

  294. 

  295. 	//app_role, _ := service.GetAppRoleById(adminUserInfo.)

  296. 	role_ids := strings.Split(adminUserRole.RoleIds, ",")

  297. 

  298. 	org, _ := service.GetOrgById(adminUserInfo.CurrentOrgId)

  299. 

  300. 	if adminUserInfo.AdminUser.Id != org.Creator {

  301. 		for _, item := range role_ids {

  302. 			id, _ := strconv.ParseInt(item, 10, 64)

  303. 			role, _ := service.GetRoleByRoleID(id)

  304. 			if role.IsSystem == 1 && role.RoleName == "子管理员" {

  305. 				isSubSuperAdmin = true

  306. 			}

  307. 		}

  308. 	}

  309. 

  310. 	viewModels, _, getAdminsErr := service.GetAdminUsersAndLoginInfo(adminUserInfo.CurrentOrgId, adminUserInfo.CurrentAppId, 1, 100)

  311. 	if getAdminsErr != nil {

  312. 		//beego.Error("获取管理员列表失败:", getAdminsErr)

  313. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDataException)

  314. 		return

  315. 	}

  316. 

  317. 	this.ServeSuccessJSON(map[string]interface{}{

  318. 		"admins":          viewModels,

  319. 		"org":             org,

  320. 		"isSubSuperAdmin": isSubSuperAdmin,

  321. 	})

  322. }

  323. 

  324. // /api/admins [get]

  325. // @param page?:int

  326. func (this *RoleAPIController) Admins() {

  327. 	adminUserInfo := this.GetAdminUserInfo()

  328. 	//if adminUserInfo.AdminUser.IsSuperAdmin == false {

  329. 	//	this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodePermissionDenied)

  330. 	//	return

  331. 	//}

  332. 

  333. 	page, _ := this.GetInt("page")

  334. 	viewModels, total, getAdminsErr := service.GetAdminUsersAndLoginInfo(adminUserInfo.CurrentOrgId, adminUserInfo.CurrentAppId, page, 100)

  335. 	if getAdminsErr != nil {

  336. 		//beego.Error("获取管理员列表失败:", getAdminsErr)

  337. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDataException)

  338. 	} else {

  339. 		this.ServeSuccessJSON(map[string]interface{}{

  340. 			"admins":      viewModels,

  341. 			"total_count": total,

  342. 		})

  343. 	}

  344. }

  345. 

  346. // /api/admin/addinit [get]

  347. func (this *RoleAPIController) AddAdminInitData() {

  348. 	adminUserInfo := this.GetAdminUserInfo()

  349. 	//if adminUserInfo.AdminUser.IsSuperAdmin == false {

  350. 	//	this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodePermissionDenied)

  351. 	//	return

  352. 	//}

  353. 

  354. 	var isSubSuperAdmin bool = false

  355. 	adminUserRole, _ := service.GetAppRole(adminUserInfo.CurrentOrgId, adminUserInfo.CurrentAppId, adminUserInfo.AdminUser.Id)

  356. 

  357. 	//app_role, _ := service.GetAppRoleById(adminUserInfo.)

  358. 	role_ids := strings.Split(adminUserRole.RoleIds, ",")

  359. 

  360. 	org, _ := service.GetOrgById(adminUserInfo.CurrentOrgId)

  361. 

  362. 	if adminUserInfo.AdminUser.Id != org.Creator {

  363. 		for _, item := range role_ids {

  364. 			id, _ := strconv.ParseInt(item, 10, 64)

  365. 			role, _ := service.GetRoleByRoleID(id)

  366. 			if role.IsSystem == 1 && role.RoleName == "子管理员" {

  367. 				isSubSuperAdmin = true

  368. 			}

  369. 		}

  370. 	}

  371. 

  372. 	roles, getRoleErr := service.GetAllValidRoles(adminUserInfo.CurrentOrgId, adminUserInfo.CurrentAppId)

  373. 	if getRoleErr != nil {

  374. 		//beego.Error("获取所有角色失败:", getRoleErr)

  375. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDataException)

  376. 		return

  377. 	}

  378. 

  379. 	redisClient := service.RedisClient()

  380. 	defer redisClient.Close()

  381. 	qntoken, _ := redisClient.Get("qn_token").Result()

  382. 

  383. 	this.ServeSuccessJSON(map[string]interface{}{

  384. 		"roles":           roles,

  385. 		"qntoken":         qntoken,

  386. 		"isSubSuperAdmin": isSubSuperAdmin,

  387. 		"org":             org,

  388. 	})

  389. }

  390. 

  391. // /api/admin/add [post]

  392. // @param mobile:string

  393. // @param name:string

  394. // @param type:int 管理员类型:2.医生 3.护士 4.运营

  395. // @param title:int 用户职称(1.医士;2.医师;3.住院医师;4.主治医师;5.副主任医师;6.主任医师;7.护士;8.护师;9.主管护师;10.副主任护师;11.主任护师;12.运营专员;13.运营主管)

  396. // @param role:int

  397. // @param intro?:string

  398. func (this *RoleAPIController) AddAdmin() {

  399. 	adminUserInfo := this.GetAdminUserInfo()

  400. 	//if adminUserInfo.AdminUser.IsSuperAdmin == false {

  401. 	//	this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodePermissionDenied)

  402. 	//	return

  403. 	//}

  404. 

  405. 	mobile := this.GetString("mobile")

  406. 	name := this.GetString("name")

  407. 	userType, _ := this.GetInt("type")

  408. 	userTitle, _ := this.GetInt("title")

  409. 	roleIds := this.GetString("role")

  410. 	user_title_name := this.GetString("user_title_name")

  411. 

  412. 	if len(mobile) == 0 || len(name) == 0 || (userType != 2 && userType != 3 && userType != 4) || len(roleIds) <= 0 {

  413. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeParamWrong)

  414. 		return

  415. 	}

  416. 

  417. 	// 判断是否已存在该手机号

  418. 	if adminUser, err := service.GetValidAdminUserByMobileReturnErr(mobile); err != nil {

  419. 		//beego.Error("查询用户是否已被添加为管理员时失败:", err)

  420. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDataException)

  421. 		return

  422. 	} else {

  423. 		if adminUser == nil { //新增账号和用户

  424. 			_, password, createErr := service.CreateGeneralAdminUser(adminUserInfo.CurrentOrgId, adminUserInfo.CurrentAppId, mobile, name, user_title_name, roleIds, userType, userTitle)

  425. 			if createErr != nil {

  426. 				//beego.Error("创建管理员失败:", createErr)

  427. 				this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDBCreate)

  428. 				return

  429. 

  430. 			} else {

  431. 				sendSMSErr := service.SMSSendInviteMobileToJoinOrgAdmin(name, mobile, password)

  432. 				if sendSMSErr != nil {

  433. 				}

  434. 

  435. 				this.ServeSuccessJSON(nil)

  436. 				return

  437. 			}

  438. 		} else {

  439. 

  440. 			total, _ := service.FindAdminUserByID(adminUser.Id, adminUserInfo.CurrentOrgId)

  441. 

  442. 			if total <= 0 {

  443. 				//新增用户

  444. 				app_role := &models.App_Role{

  445. 					AdminUserId:   adminUser.Id,

  446. 					OrgId:         adminUserInfo.CurrentOrgId,

  447. 					AppId:         adminUserInfo.CurrentAppId,

  448. 					Avatar:        "",

  449. 					UserName:      name,

  450. 					UserTitleName: user_title_name,

  451. 					Status:        1,

  452. 					UserType:      int8(userType),

  453. 					UserTitle:     int8(userTitle),

  454. 					CreateTime:    time.Now().Unix(),

  455. 					ModifyTime:    time.Now().Unix(),

  456. 					RoleIds:       roleIds,

  457. 				}

  458. 				err := service.CreateUserRole(app_role)

  459. 				if err != nil {

  460. 					this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDBCreate)

  461. 					return

  462. 				}

  463. 				this.ServeSuccessJSON(nil)

  464. 			} else {

  465. 				this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeRepeatCreateStaffException)

  466. 				return

  467. 			}

  468. 

  469. 			return

  470. 		}

  471. 	}

  472. 

  473. }

  474. 

  475. // /api/admin/editinit [get]

  476. // @param uid:int

  477. func (this *RoleAPIController) EditAdminInitData() {

  478. 	adminUserInfo := this.GetAdminUserInfo()

  479. 

  480. 	admin_user_id, _ := this.GetInt64("uid")

  481. 	if admin_user_id <= 0 {

  482. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeParamWrong)

  483. 		return

  484. 	}

  485. 

  486. 	appRole, getAppRoleErr := service.GetAppRole(adminUserInfo.CurrentOrgId, adminUserInfo.CurrentAppId, admin_user_id)

  487. 	if getAppRoleErr != nil {

  488. 		//beego.Error("查询管理员信息时失败:", getAppRoleErr)

  489. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDataException)

  490. 		return

  491. 	}

  492. 	if appRole == nil {

  493. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeAdminUserNotExist)

  494. 		return

  495. 	}

  496. 

  497. 	roles, getRoleErr := service.GetAllValidRoles(adminUserInfo.CurrentOrgId, adminUserInfo.CurrentAppId)

  498. 	if getRoleErr != nil {

  499. 		//beego.Error("获取所有角色失败:", getRoleErr)

  500. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDataException)

  501. 		return

  502. 	}

  503. 

  504. 	var isSubSuperAdmin bool = false

  505. 	adminUserRole, _ := service.GetAppRole(adminUserInfo.CurrentOrgId, adminUserInfo.CurrentAppId, adminUserInfo.AdminUser.Id)

  506. 

  507. 	//app_role, _ := service.GetAppRoleById(adminUserInfo.)

  508. 	role_ids := strings.Split(adminUserRole.RoleIds, ",")

  509. 

  510. 	org, _ := service.GetOrgById(adminUserInfo.CurrentOrgId)

  511. 

  512. 	if adminUserInfo.AdminUser.Id != org.Creator {

  513. 		for _, item := range role_ids {

  514. 			id, _ := strconv.ParseInt(item, 10, 64)

  515. 			role, _ := service.GetRoleByRoleID(id)

  516. 			if role.IsSystem == 1 && role.RoleName == "子管理员" {

  517. 				isSubSuperAdmin = true

  518. 			}

  519. 		}

  520. 	}

  521. 

  522. 	redisClient := service.RedisClient()

  523. 	defer redisClient.Close()

  524. 	qntoken, _ := redisClient.Get("qn_token").Result()

  525. 

  526. 	this.ServeSuccessJSON(map[string]interface{}{

  527. 		"admin":           appRole,

  528. 		"roles":           roles,

  529. 		"qntoken":         qntoken,

  530. 		"isSubSuperAdmin": isSubSuperAdmin,

  531. 	})

  532. }

  533. 

  534. // /api/admin/edit [post]

  535. // @param uid:int

  536. // @param name:string

  537. // @param type:int

  538. // @param title:int

  539. // @param role:int

  540. // @param intro?:string

  541. func (this *RoleAPIController) EditAdmin() {

  542. 	adminUserInfo := this.GetAdminUserInfo()

  543. 	//if adminUserInfo.AdminUser.IsSuperAdmin == false {

  544. 	//	this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodePermissionDenied)

  545. 	//	return

  546. 	//}

  547. 

  548. 	adminUserId, _ := this.GetInt64("uid")

  549. 	name := this.GetString("name")

  550. 	userType, _ := this.GetInt("type")

  551. 	userTitle, _ := this.GetInt("title")

  552. 	roleIds := this.GetString("role")

  553. 	intro := this.GetString("intro")

  554. 	user_title_name := this.GetString("user_title_name")

  555. 

  556. 	_, titleExist := models.UserTitle[userTitle]

  557. 	if adminUserId <= 0 || len(name) == 0 || (userType != 2 && userType != 3 && userType != 4) || !titleExist || len(roleIds) <= 0 {

  558. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeParamWrong)

  559. 		return

  560. 	}

  561. 

  562. 	appRole, getAppRoleErr := service.GetAppRole(adminUserInfo.CurrentOrgId, adminUserInfo.CurrentAppId, adminUserId)

  563. 	if getAppRoleErr != nil {

  564. 		//beego.Error("查询管理员信息时失败:", getAppRoleErr)

  565. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDataException)

  566. 		return

  567. 	}

  568. 	if appRole == nil {

  569. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeAdminUserNotExist)

  570. 		return

  571. 	}

  572. 

  573. 	appRole.UserName = name

  574. 	appRole.UserType = int8(userType)

  575. 	appRole.UserTitle = int8(userTitle)

  576. 	appRole.RoleIds = roleIds

  577. 	appRole.Intro = intro

  578. 	appRole.UserTitleName = user_title_name

  579. 	appRole.ModifyTime = time.Now().Unix()

  580. 	saveErr := service.SaveAppRole(appRole)

  581. 	if saveErr != nil {

  582. 		//beego.Error("修改App_Role失败:", saveErr)

  583. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDBUpdate)

  584. 

  585. 	} else {

  586. 		this.ServeSuccessJSON(nil)

  587. 	}

  588. }

  589. 

  590. // /api/admin/setstatus [post]

  591. // @param uid:int

  592. // @param enable:bool

  593. func (this *RoleAPIController) AdminSetStatus() {

  594. 	adminUserInfo := this.GetAdminUserInfo()

  595. 	//if adminUserInfo.AdminUser.IsSuperAdmin == false {

  596. 	//	this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodePermissionDenied)

  597. 	//	return

  598. 	//}

  599. 

  600. 	userID, _ := this.GetInt64("uid")

  601. 	if userID <= 0 {

  602. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeParamWrong)

  603. 		return

  604. 	}

  605. 	appRole, getAppRoleErr := service.GetAppRole(adminUserInfo.CurrentOrgId, adminUserInfo.CurrentAppId, userID)

  606. 	if getAppRoleErr != nil {

  607. 		//beego.Error("查询管理员信息失败:", getAppRoleErr)

  608. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDataException)

  609. 		return

  610. 	} else if appRole == nil {

  611. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeAdminUserNotExist)

  612. 		return

  613. 	}

  614. 

  615. 	enable, _ := this.GetBool("enable")

  616. 

  617. 	if enable {

  618. 		appRole.Status = 1

  619. 	} else {

  620. 		appRole.Status = 0

  621. 	}

  622. 	appRole.ModifyTime = time.Now().Unix()

  623. 	saveErr := service.SaveAppRole(appRole)

  624. 	if saveErr != nil {

  625. 		//beego.Error("保存AppRole失败:", saveErr)

  626. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDBUpdate)

  627. 

  628. 	} else {

  629. 		this.ServeSuccessJSON(nil)

  630. 	}

  631. }

  632. 

  633. // /api/admin/specialpermission/initdata [get]

  634. func (this *RoleAPIController) SpecialPermissionInitData() {

  635. 	adminUserInfo := this.GetAdminUserInfo()

  636. 	//if adminUserInfo.AdminUser.IsSuperAdmin == false {

  637. 	//	this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodePermissionDenied)

  638. 	//	return

  639. 	//}

  640. 

  641. 	adminUsers, getAdminUsersErr := service.GetAllGeneralAdminUsers(adminUserInfo.CurrentOrgId, adminUserInfo.CurrentAppId)

  642. 	if getAdminUsersErr != nil {

  643. 		this.ErrorLog("获取所有普通用户失败:%v", getAdminUsersErr)

  644. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDataException)

  645. 		return

  646. 	}

  647. 

  648. 	headNurses, getAllHeadNursesErr := service.GetAllValidAdminUsersWithSpecialPermission(adminUserInfo.CurrentOrgId, adminUserInfo.CurrentAppId, models.SpecialPermissionTypeHeadNurse)

  649. 	if getAllHeadNursesErr != nil {

  650. 		this.ErrorLog("获取所有拥有护士长特殊权限的用户失败:%v", getAllHeadNursesErr)

  651. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDataException)

  652. 		return

  653. 	}

  654. 

  655. 	this.ServeSuccessJSON(map[string]interface{}{

  656. 		"users":       adminUsers,

  657. 		"head_nurses": headNurses,

  658. 	})

  659. }

  660. 

  661. // /api/admin/specialpermission/dialysisrecord/submit [post]

  662. // @param ids:string ("1,2,5")

  663. func (this *RoleAPIController) SubmitDialysisRecordPermission() {

  664. 	adminUserInfo := this.GetAdminUserInfo()

  665. 	//if adminUserInfo.AdminUser.IsSuperAdmin == false {

  666. 	//	this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodePermissionDenied)

  667. 	//	return

  668. 	//}

  669. 

  670. 	idsString := this.GetString("ids")

  671. 	if len(idsString) == 0 {

  672. 		// 取消所有用户的护士长权限

  673. 		cancelErr := service.CancelAllSpecialPermissionAdminUsers(adminUserInfo.CurrentOrgId, adminUserInfo.CurrentAppId, models.SpecialPermissionTypeHeadNurse)

  674. 		if cancelErr != nil {

  675. 			this.ErrorLog("取消所有用户的护士长权限失败:%v", cancelErr)

  676. 			this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDataException)

  677. 			return

  678. 		} else {

  679. 			this.ServeSuccessJSON(nil)

  680. 			return

  681. 		}

  682. 

  683. 	} else {

  684. 		ids := make([]int64, 0)

  685. 		idStrs := strings.Split(idsString, ",")

  686. 		for _, idStr := range idStrs {

  687. 			id, parseErr := strconv.Atoi(idStr)

  688. 			if parseErr != nil {

  689. 				this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeParamWrong)

  690. 				return

  691. 			}

  692. 			ids = append(ids, int64(id))

  693. 		}

  694. 

  695. 		headNurses, getAllHeadNursesErr := service.GetAllSpecialPermissionAdminUsersWithoutStatus(adminUserInfo.CurrentOrgId, adminUserInfo.CurrentAppId, models.SpecialPermissionTypeHeadNurse)

  696. 		if getAllHeadNursesErr != nil {

  697. 			this.ErrorLog("获取所有拥有或曾拥有护士长特殊权限的用户失败:%v", getAllHeadNursesErr)

  698. 			this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDataException)

  699. 			return

  700. 		}

  701. 

  702. 		cancelList := make([]*models.AdminUserSpecialPermission, 0)

  703. 		addList := make([]*models.AdminUserSpecialPermission, 0)

  704. 		for _, id := range ids {

  705. 			exit := false

  706. 			for _, headNurse := range headNurses {

  707. 				if headNurse.AdminUserID == id {

  708. 					exit = true

  709. 					if headNurse.Status != 1 {

  710. 						headNurse.Status = 1

  711. 						headNurse.ModifyTime = time.Now().Unix()

  712. 						addList = append(addList, headNurse)

  713. 					}

  714. 					break

  715. 				}

  716. 			}

  717. 			if exit == false {

  718. 				newHeadNurse := &models.AdminUserSpecialPermission{

  719. 					OrgID:       adminUserInfo.CurrentOrgId,

  720. 					AppID:       adminUserInfo.CurrentAppId,

  721. 					AdminUserID: id,

  722. 					Permission:  int64(models.SpecialPermissionTypeHeadNurse),

  723. 					Status:      1,

  724. 					CreateTime:  time.Now().Unix(),

  725. 					ModifyTime:  time.Now().Unix(),

  726. 				}

  727. 				addList = append(addList, newHeadNurse)

  728. 			}

  729. 		}

  730. 

  731. 		for _, headNurse := range headNurses {

  732. 			cancel := true

  733. 			for _, willAdd := range addList {

  734. 				if willAdd.AdminUserID == headNurse.AdminUserID {

  735. 					cancel = false

  736. 					break

  737. 				}

  738. 			}

  739. 			if cancel {

  740. 				headNurse.Status = 0

  741. 				headNurse.ModifyTime = time.Now().Unix()

  742. 				cancelList = append(cancelList, headNurse)

  743. 			}

  744. 		}

  745. 

  746. 		addErr := service.BatchSaveSpecialPermissionAdminUsers(addList)

  747. 		if addErr != nil {

  748. 			this.ErrorLog("授权失败:%v", addErr)

  749. 			this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDataException)

  750. 			return

  751. 		}

  752. 

  753. 		cancelErr := service.BatchSaveSpecialPermissionAdminUsers(cancelList)

  754. 		if cancelErr != nil {

  755. 			this.ErrorLog("取消授权失败:%v", cancelErr)

  756. 			this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDataException)

  757. 			return

  758. 		}

  759. 

  760. 		this.ServeSuccessJSON(nil)

  761. 	}

  762. 

  763. }

  764. 

  765. func (this *RoleAPIController) GetAllOrgRole() {

  766. 	adminUserInfo := this.GetAdminUserInfo()

  767. 

  768. 	var isSubSuperAdmin bool = false

  769. 	adminUserRole, _ := service.GetAppRole(adminUserInfo.CurrentOrgId, adminUserInfo.CurrentAppId, adminUserInfo.AdminUser.Id)

  770. 

  771. 	//app_role, _ := service.GetAppRoleById(adminUserInfo.)

  772. 	role_ids := strings.Split(adminUserRole.RoleIds, ",")

  773. 

  774. 	org, _ := service.GetOrgById(adminUserInfo.CurrentOrgId)

  775. 

  776. 	if adminUserInfo.AdminUser.Id != org.Creator {

  777. 		for _, item := range role_ids {

  778. 			id, _ := strconv.ParseInt(item, 10, 64)

  779. 			role, _ := service.GetRoleByRoleID(id)

  780. 			if role.IsSystem == 1 && role.RoleName == "子管理员" {

  781. 				isSubSuperAdmin = true

  782. 			}

  783. 		}

  784. 	}

  785. 

  786. 	roles, err := service.GetAllOrgValidRoles(adminUserInfo.CurrentOrgId, isSubSuperAdmin)

  787. 	if err != nil {

  788. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDataException)

  789. 		return

  790. 	} else {

  791. 		this.ServeSuccessJSON(map[string]interface{}{

  792. 			"roles": roles,

  793. 		})

  794. 	}

  795. 

  796. }

  797. 

  798. func (this *RoleAPIController) GetAllOrgUser() {

  799. 	adminUserInfo := this.GetAdminUserInfo()

  800. 	org, _ := service.GetOrgById(adminUserInfo.CurrentOrgId)

  801. 	viewModels, _, _ := service.GetAllAdminUsersAndRole(adminUserInfo.CurrentOrgId, adminUserInfo.CurrentAppId, 1, 100)

  802. 	this.ServeSuccessJSON(map[string]interface{}{

  803. 		"admins": viewModels,

  804. 		"org":    org,

  805. 	})

  806. }

  807. 

  808. func (this *RoleAPIController) AddRoleStaff() {

  809. 	//adminUserInfo := this.GetMobileAdminUserInfo()

  810. 	role_id, _ := this.GetInt64("id", 0)

  811. 	staff_ids := this.GetString("ids")

  812. 	ids := strings.Split(staff_ids, ",")

  813. 	for _, item := range ids {

  814. 		id, _ := strconv.ParseInt(item, 10, 64)

  815. 		role, _ := service.FindAdminUserID(id)

  816. 		role.RoleIds = role.RoleIds + "," + strconv.FormatInt(role_id, 10)

  817. 		service.SaveAdminUser(&role)

  818. 	}

  819. 	this.ServeSuccessJSON(map[string]interface{}{

  820. 		"msg": "添加成功",

  821. 	})

  822. 

  823. }

  824. 

  825. func (this *RoleAPIController) GetRoleStaff() {

  826. 	adminUserInfo := this.GetAdminUserInfo()

  827. 

  828. 	viewModels, _, getAdminsErr := service.GetAdminUsersAndLoginInfo(adminUserInfo.CurrentOrgId, adminUserInfo.CurrentAppId, 1, 100)

  829. 	if getAdminsErr != nil {

  830. 		//beego.Error("获取管理员列表失败:", getAdminsErr)

  831. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDataException)

  832. 		return

  833. 	}

  834. 	org, _ := service.GetOrgById(adminUserInfo.CurrentOrgId)

  835. 

  836. 	this.ServeSuccessJSON(map[string]interface{}{

  837. 		"admins": viewModels,

  838. 		"org":    org,

  839. 	})

  840. 

  841. }