Home Esplora Aiuto
Registrati Accedi
csx
/
XT_New
Segui 1
Vota 0
Forka 0
Codice Problemi 9 Pull Requests 0 Rilasci 0 Wiki Activity
95 Commit
13 Rami (Branch)
Albero (Tree): 6f1a2f229b
Rami (Branch) Tag
${ item.name }
Create branch ${ searchTerm }
from '6f1a2f229b'
${ noResults }
XT_New/controllers/role_controller.go

role_controller.go 28KB
Cronologia Originale

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805806807808809810811812813814815816817818819820821822823824825826827828829830831832833834835836837838839840841842843844845846847848849850851852853854855856857858859860861862863864865866867868869870871872873874875876877878879880881882883884885886887888889890891892893894895896897898899900901902 
  1. package controllers

  2. 

  3. import (

  4. 	"github.com/jinzhu/gorm"

  5. 	"strconv"

  6. 	"strings"

  7. 	"time"

  8. 

  9. 	"XT_New/enums"

  10. 	"XT_New/models"

  11. 	"XT_New/service"

  12. 

  13. 	"github.com/astaxie/beego"

  14. )

  15. 

  16. func RoleAPIControllerRegistRouters() {

  17. 	beego.Router("/api/roles", &RoleAPIController{}, "get:GetRoles")

  18. 	beego.Router("/api/role/create", &RoleAPIController{}, "post:CreateRole")

  19. 	beego.Router("/api/role/modify", &RoleAPIController{}, "post:ModifyRole")

  20. 	beego.Router("/api/role/setstatus", &RoleAPIController{}, "post:ModifyRoleStatus")

  21. 

  22. 	beego.Router("/role/purview/editinit", &RoleAPIController{}, "get:EditPurviewInitData")

  23. 	beego.Router("/role/purview/edit", &RoleAPIController{}, "post:EditPurview")

  24. 

  25. 	beego.Router("/api/adminmain", &RoleAPIController{}, "get:AdminMainView")

  26. 	beego.Router("/api/admins", &RoleAPIController{}, "get:Admins")

  27. 	beego.Router("/api/admin/addinit", &RoleAPIController{}, "get:AddAdminInitData")

  28. 	beego.Router("/api/admin/add", &RoleAPIController{}, "post:AddAdmin")

  29. 	beego.Router("/api/admin/editinit", &RoleAPIController{}, "get:EditAdminInitData")

  30. 	beego.Router("/api/admin/edit", &RoleAPIController{}, "post:EditAdmin")

  31. 	beego.Router("/api/admin/setstatus", &RoleAPIController{}, "post:AdminSetStatus")

  32. 

  33. 	beego.Router("/api/admin/specialpermission/initdata", &RoleAPIController{}, "get:SpecialPermissionInitData")

  34. 	beego.Router("/api/admin/specialpermission/dialysisrecord/submit", &RoleAPIController{}, "post:SubmitDialysisRecordPermission")

  35. 

  36. 	beego.Router("/api/roles/list", &RoleAPIController{}, "get:GetAllOrgRole")

  37. 	beego.Router("/api/staff", &RoleAPIController{}, "get:GetAllOrgUser")

  38. 	beego.Router("/api/role/addStaff", &RoleAPIController{}, "post:AddRoleStaff")

  39. 

  40. 	beego.Router("/api/role/staff", &RoleAPIController{}, "get:GetRoleStaff")

  41. 

  42. }

  43. 

  44. type RoleAPIController struct {

  45. 	BaseAuthAPIController

  46. }

  47. 

  48. // /api/roles [get]

  49. // @param page?:int

  50. func (this *RoleAPIController) GetRoles() {

  51. 	page, _ := this.GetInt("page")

  52. 	adminUserInfo := this.GetAdminUserInfo()

  53. 	//beego.Alert(adminUserInfo.AdminUser)

  54. 	//if adminUserInfo.AdminUser.IsSuperAdmin == false {

  55. 	//	this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodePermissionDenied)

  56. 	//	return

  57. 	//}

  58. 	if page <= 0 {

  59. 		page = 1

  60. 	}

  61. 	roles, total, getRoleErr := service.GetRoles(adminUserInfo.CurrentOrgId, adminUserInfo.CurrentAppId, page, 100)

  62. 	if getRoleErr != nil {

  63. 		//beego.Error("获取角色列表失败:", getRoleErr)

  64. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDataException)

  65. 	} else {

  66. 		this.ServeSuccessJSON(map[string]interface{}{

  67. 			"roles":       roles,

  68. 			"total_count": total,

  69. 		})

  70. 	}

  71. }

  72. 

  73. // /api/role/create [post]

  74. // @param name:string

  75. // @param intro:string

  76. func (this *RoleAPIController) CreateRole() {

  77. 	name := this.GetString("name")

  78. 	intro := this.GetString("intro")

  79. 	if len(name) == 0 {

  80. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeParamWrong)

  81. 		return

  82. 	}

  83. 	adminUserInfo := this.GetAdminUserInfo()

  84. 	//if adminUserInfo.AdminUser.IsSuperAdmin == false {

  85. 	//	this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodePermissionDenied)

  86. 	//	return

  87. 	//}

  88. 

  89. 	total := service.FindRoleRecordByRoleName(name, adminUserInfo.CurrentOrgId)

  90. 	if total > 0 {

  91. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeRoleNameIsExist)

  92. 		return

  93. 	}

  94. 	role, createErr := service.CreateRole(adminUserInfo.AdminUser.Id, adminUserInfo.CurrentOrgId, adminUserInfo.CurrentAppId, name, intro)

  95. 	if createErr != nil {

  96. 		//beego.Error("创建角色失败:", createErr)

  97. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDBCreate)

  98. 	} else {

  99. 		this.ServeSuccessJSON(map[string]interface{}{

  100. 			"id":     role.Id,

  101. 			"name":   role.RoleName,

  102. 			"intro":  role.RoleIntro,

  103. 			"status": role.Status,

  104. 		})

  105. 	}

  106. }

  107. 

  108. // /api/role/modify

  109. // @param role_id:int

  110. // @param name:string

  111. // @param intro:string

  112. func (this *RoleAPIController) ModifyRole() {

  113. 	roleID, _ := this.GetInt64("role_id")

  114. 	name := this.GetString("name")

  115. 	intro := this.GetString("intro")

  116. 	if roleID <= 0 || len(name) == 0 || len(intro) == 0 {

  117. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeParamWrong)

  118. 		return

  119. 	}

  120. 	//adminUserInfo := this.GetAdminUserInfo()

  121. 	//if adminUserInfo.AdminUser.IsSuperAdmin == false {

  122. 	//	this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodePermissionDenied)

  123. 	//	return

  124. 	//}

  125. 

  126. 	role, getRoleErr := service.GetRoleByRoleID(roleID)

  127. 	if getRoleErr != nil {

  128. 		//beego.Error("获取角色失败:", getRoleErr)

  129. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDataException)

  130. 		return

  131. 	} else if role == nil {

  132. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeRoleNotExist)

  133. 		return

  134. 	}

  135. 

  136. 	role.RoleName = name

  137. 	role.RoleIntro = intro

  138. 	role.ModifyTime = time.Now().Unix()

  139. 	saveErr := service.ModifyRole(role)

  140. 	if saveErr != nil {

  141. 		//beego.Error("修改角色失败:", role.Id, saveErr)

  142. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDBUpdate)

  143. 	} else {

  144. 		this.ServeSuccessJSON(nil)

  145. 	}

  146. }

  147. 

  148. // /api/role/setstatus

  149. // @param role_id:int

  150. // @param enable:bool

  151. func (this *RoleAPIController) ModifyRoleStatus() {

  152. 	roleID, _ := this.GetInt64("role_id")

  153. 	enable, _ := this.GetBool("enable")

  154. 	if roleID <= 0 {

  155. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeParamWrong)

  156. 		return

  157. 	}

  158. 

  159. 	adminUserInfo := this.GetAdminUserInfo()

  160. 	//if adminUserInfo.AdminUser.IsSuperAdmin == false {

  161. 	//	this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodePermissionDenied)

  162. 	//	return

  163. 	//}

  164. 

  165. 	role, getRoleErr := service.GetRoleByRoleID(roleID)

  166. 	if getRoleErr != nil {

  167. 		//beego.Error("获取角色失败:", getRoleErr)

  168. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDataException)

  169. 		return

  170. 	} else if role == nil {

  171. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeRoleNotExist)

  172. 		return

  173. 	}

  174. 

  175. 	if enable == false {

  176. 		if count, _ := service.RoleAdminUserCountTwo(adminUserInfo.CurrentOrgId, adminUserInfo.CurrentAppId, roleID); count != 0 {

  177. 			this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeCannotRemoveRole)

  178. 			return

  179. 		}

  180. 	}

  181. 

  182. 	if enable {

  183. 		role.Status = 1

  184. 	} else {

  185. 		role.Status = 2

  186. 	}

  187. 	role.ModifyTime = time.Now().Unix()

  188. 	saveErr := service.ModifyRole(role)

  189. 	if saveErr != nil {

  190. 		//beego.Error("修改角色失败:", role.Id, saveErr)

  191. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDBUpdate)

  192. 	} else {

  193. 		this.ServeSuccessJSON(nil)

  194. 	}

  195. }

  196. 

  197. // /role/purview/editinit [get]

  198. // @param role_id:int

  199. func (this *RoleAPIController) EditPurviewInitData() {

  200. 	//adminUserInfo := this.GetAdminUserInfo()

  201. 	//if adminUserInfo.AdminUser.IsSuperAdmin == false {

  202. 	//	this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodePermissionDenied)

  203. 	//	return

  204. 	//}

  205. 

  206. 	roleId, _ := this.GetInt64("role_id")

  207. 	if roleId <= 0 {

  208. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeParamWrong)

  209. 		return

  210. 	}

  211. 

  212. 	role, _ := service.GetRoleByRoleID(roleId)

  213. 

  214. 	purviews_xt, getPurviewsErr := service.GetAllGeneralPurviewVMsProcessed(3)

  215. 	purviews_scrm, getPurviewsErr := service.GetAllGeneralPurviewVMsProcessed(6)

  216. 	purviews_cdm, getPurviewsErr := service.GetAllGeneralPurviewVMsProcessed(4)

  217. 	purviews_mall, getPurviewsErr := service.GetAllGeneralPurviewVMsProcessed(7)

  218. 

  219. 	purviews_func, getPurviewsErr := service.GetAllGeneralFuncPurviewVMsProcessed()

  220. 	for _, item := range purviews_xt {

  221. 		for _, childItem := range item.Childs {

  222. 			if childItem.Name == "透析记录" {

  223. 				childItem.Childs = purviews_func

  224. 			}

  225. 		}

  226. 	}

  227. 	scrm := &service.PurviewTreeViewModel{

  228. 		ID:     0,

  229. 		PID:    0,

  230. 		Name:   "SCRM",

  231. 		Number: 3,

  232. 		Childs: purviews_scrm,

  233. 	}

  234. 

  235. 	cdm := &service.PurviewTreeViewModel{

  236. 		ID:     0,

  237. 		PID:    0,

  238. 		Number: 3,

  239. 		Name:   "慢病管理",

  240. 		Childs: purviews_cdm,

  241. 	}

  242. 

  243. 	purviews_xt = append(purviews_xt, scrm)

  244. 	purviews_xt = append(purviews_xt, cdm)

  245. 	purviews_xt = append(purviews_xt, purviews_mall...)

  246. 

  247. 	//purviews_xt = append(purviews_xt,purviews_cdm...)

  248. 

  249. 	if getPurviewsErr != nil {

  250. 		//beego.Error("获取所有权限时出错:", getPurviewsErr)

  251. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDataException)

  252. 		return

  253. 	}

  254. 	rolePurviewIdStr, getRPIdsErr := service.GetRolePurviewIds(roleId)

  255. 	if getRPIdsErr != nil {

  256. 		//beego.Error("获取角色的权限时出错:", getRPIdsErr)

  257. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDataException)

  258. 		return

  259. 	}

  260. 

  261. 	roleFuncPurview, getFuncRPIdsErr := service.GetRoleFuncPurview(roleId)

  262. 	if getFuncRPIdsErr == gorm.ErrRecordNotFound {

  263. 		//beego.Error("获取角色的权限时出错:", getRPIdsErr)

  264. 		if roleFuncPurview.ID == 0 {

  265. 			rolePurviewIdStr = rolePurviewIdStr

  266. 

  267. 		} else {

  268. 			rolePurviewIdStr = rolePurviewIdStr + "," + roleFuncPurview.PurviewIds

  269. 		}

  270. 	} else if getFuncRPIdsErr != nil {

  271. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDataException)

  272. 		return

  273. 

  274. 	} else {

  275. 		if roleFuncPurview.ID == 0 {

  276. 			rolePurviewIdStr = rolePurviewIdStr

  277. 		} else {

  278. 			rolePurviewIdStr = rolePurviewIdStr + "," + roleFuncPurview.PurviewIds

  279. 		}

  280. 	}

  281. 

  282. 	this.ServeSuccessJSON(map[string]interface{}{

  283. 		"purviews":         purviews_xt,

  284. 		"role":             role,

  285. 		"role_purview_ids": rolePurviewIdStr + "," + roleFuncPurview.PurviewIds,

  286. 	})

  287. }

  288. 

  289. // /role/purview/edit [post]

  290. // @param role_id:int

  291. // @param purview_ids:string

  292. func (this *RoleAPIController) EditPurview() {

  293. 	adminUserInfo := this.GetAdminUserInfo()

  294. 	roleId, _ := this.GetInt64("role_id")

  295. 	purviewIds := this.GetString("purview_ids")

  296. 	funcPurviewIds := this.GetString("func_purview_ids")

  297. 

  298. 	if roleId <= 0 {

  299. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeParamWrong)

  300. 		return

  301. 	}

  302. 

  303. 	err := service.SaveRolePurviewIds(adminUserInfo.CurrentOrgId, adminUserInfo.CurrentAppId, roleId, purviewIds)

  304. 	err = service.SaveFuncRolePurviewIds(adminUserInfo.CurrentOrgId, adminUserInfo.CurrentAppId, roleId, funcPurviewIds)

  305. 

  306. 	if err != nil {

  307. 		//beego.Error("设置角色的权限时出错:", err)

  308. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDBUpdate)

  309. 	} else {

  310. 		this.ServeSuccessJSON(nil)

  311. 	}

  312. }

  313. 

  314. // func (this *RoleAPIController) doesUserHaveAccess(userID int64) bool {

  315. // 	adminUser, getAdminUserErr := service.GetAdminUserByUserID(userID)

  316. // 	if getAdminUserErr != nil {

  317. // 		beego.Error("获取用户信息失败:%v", getAdminUserErr)

  318. // 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDataException)

  319. // 		return false

  320. // 	} else if adminUser == nil {

  321. // 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeAdminUserNotExist)

  322. // 		return false

  323. // 	} else if adminUser.Status == 2 {

  324. // 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeUserWasForbidden)

  325. // 		return false

  326. // 	} else if adminUser.IsSuperAdmin == false {

  327. // 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodePermissionDenied)

  328. // 		return false

  329. // 	}

  330. // 	return true

  331. // }

  332. 

  333. // func (this *RoleAPIController) isAppRoleExist(orgID int64, appID int64, userID int64) bool {

  334. // 	appRole, getAppRoleErr := service.GetAppRole(orgID, appID, userID)

  335. // 	if getAppRoleErr != nil {

  336. // 		beego.Error("检查用户和机构应用对应关系时失败:%v", getAppRoleErr)

  337. // 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDataException)

  338. // 		return false

  339. // 	} else if appRole == nil {

  340. // 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodePermissionDenied)

  341. // 		return false

  342. // 	}

  343. // 	return true

  344. // }

  345. 

  346. // /api/adminmain [get]

  347. func (this *RoleAPIController) AdminMainView() {

  348. 	adminUserInfo := this.GetAdminUserInfo()

  349. 

  350. 	//org, _ := service.GetOrgById(adminUserInfo.CurrentOrgId)

  351. 

  352. 	var isSubSuperAdmin bool = false

  353. 	adminUserRole, _ := service.GetAppRole(adminUserInfo.CurrentOrgId, adminUserInfo.CurrentAppId, adminUserInfo.AdminUser.Id)

  354. 

  355. 	//app_role, _ := service.GetAppRoleById(adminUserInfo.)

  356. 	role_ids := strings.Split(adminUserRole.RoleIds, ",")

  357. 

  358. 	org, _ := service.GetOrgById(adminUserInfo.CurrentOrgId)

  359. 

  360. 	if adminUserInfo.AdminUser.Id != org.Creator {

  361. 		for _, item := range role_ids {

  362. 			id, _ := strconv.ParseInt(item, 10, 64)

  363. 			role, _ := service.GetRoleByRoleID(id)

  364. 			if role.IsSystem == 1 && role.RoleName == "子管理员" {

  365. 				isSubSuperAdmin = true

  366. 			}

  367. 		}

  368. 	}

  369. 

  370. 	viewModels, _, getAdminsErr := service.GetAdminUsersAndLoginInfo(adminUserInfo.CurrentOrgId, adminUserInfo.CurrentAppId, 1, 100)

  371. 	if getAdminsErr != nil {

  372. 		//beego.Error("获取管理员列表失败:", getAdminsErr)

  373. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDataException)

  374. 		return

  375. 	}

  376. 

  377. 	this.ServeSuccessJSON(map[string]interface{}{

  378. 		"admins":          viewModels,

  379. 		"org":             org,

  380. 		"isSubSuperAdmin": isSubSuperAdmin,

  381. 	})

  382. }

  383. 

  384. // /api/admins [get]

  385. // @param page?:int

  386. func (this *RoleAPIController) Admins() {

  387. 	adminUserInfo := this.GetAdminUserInfo()

  388. 	//if adminUserInfo.AdminUser.IsSuperAdmin == false {

  389. 	//	this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodePermissionDenied)

  390. 	//	return

  391. 	//}

  392. 

  393. 	page, _ := this.GetInt("page")

  394. 	viewModels, total, getAdminsErr := service.GetAdminUsersAndLoginInfo(adminUserInfo.CurrentOrgId, adminUserInfo.CurrentAppId, page, 100)

  395. 	if getAdminsErr != nil {

  396. 		//beego.Error("获取管理员列表失败:", getAdminsErr)

  397. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDataException)

  398. 	} else {

  399. 		this.ServeSuccessJSON(map[string]interface{}{

  400. 			"admins":      viewModels,

  401. 			"total_count": total,

  402. 		})

  403. 	}

  404. }

  405. 

  406. // /api/admin/addinit [get]

  407. func (this *RoleAPIController) AddAdminInitData() {

  408. 	adminUserInfo := this.GetAdminUserInfo()

  409. 	//if adminUserInfo.AdminUser.IsSuperAdmin == false {

  410. 	//	this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodePermissionDenied)

  411. 	//	return

  412. 	//}

  413. 

  414. 	var isSubSuperAdmin bool = false

  415. 	adminUserRole, _ := service.GetAppRole(adminUserInfo.CurrentOrgId, adminUserInfo.CurrentAppId, adminUserInfo.AdminUser.Id)

  416. 

  417. 	//app_role, _ := service.GetAppRoleById(adminUserInfo.)

  418. 	role_ids := strings.Split(adminUserRole.RoleIds, ",")

  419. 

  420. 	org, _ := service.GetOrgById(adminUserInfo.CurrentOrgId)

  421. 

  422. 	if adminUserInfo.AdminUser.Id != org.Creator {

  423. 		for _, item := range role_ids {

  424. 			id, _ := strconv.ParseInt(item, 10, 64)

  425. 			role, _ := service.GetRoleByRoleID(id)

  426. 			if role.IsSystem == 1 && role.RoleName == "子管理员" {

  427. 				isSubSuperAdmin = true

  428. 			}

  429. 		}

  430. 	}

  431. 

  432. 	roles, getRoleErr := service.GetAllValidRoles(adminUserInfo.CurrentOrgId, adminUserInfo.CurrentAppId)

  433. 	if getRoleErr != nil {

  434. 		//beego.Error("获取所有角色失败:", getRoleErr)

  435. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDataException)

  436. 		return

  437. 	}

  438. 

  439. 	redisClient := service.RedisClient()

  440. 	defer redisClient.Close()

  441. 	qntoken, _ := redisClient.Get("qn_token").Result()

  442. 

  443. 	this.ServeSuccessJSON(map[string]interface{}{

  444. 		"roles":           roles,

  445. 		"qntoken":         qntoken,

  446. 		"isSubSuperAdmin": isSubSuperAdmin,

  447. 		"org":             org,

  448. 	})

  449. }

  450. 

  451. // /api/admin/add [post]

  452. // @param mobile:string

  453. // @param name:string

  454. // @param type:int 管理员类型:2.医生 3.护士 4.运营

  455. // @param title:int 用户职称(1.医士;2.医师;3.住院医师;4.主治医师;5.副主任医师;6.主任医师;7.护士;8.护师;9.主管护师;10.副主任护师;11.主任护师;12.运营专员;13.运营主管)

  456. // @param role:int

  457. // @param intro?:string

  458. func (this *RoleAPIController) AddAdmin() {

  459. 	adminUserInfo := this.GetAdminUserInfo()

  460. 	//if adminUserInfo.AdminUser.IsSuperAdmin == false {

  461. 	//	this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodePermissionDenied)

  462. 	//	return

  463. 	//}

  464. 

  465. 	mobile := this.GetString("mobile")

  466. 	name := this.GetString("name")

  467. 	userType, _ := this.GetInt("type")

  468. 	userTitle, _ := this.GetInt("title")

  469. 	roleIds := this.GetString("role")

  470. 	user_title_name := this.GetString("user_title_name")

  471. 

  472. 	if len(mobile) == 0 || len(name) == 0 || (userType != 2 && userType != 3 && userType != 4) || len(roleIds) <= 0 {

  473. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeParamWrong)

  474. 		return

  475. 	}

  476. 

  477. 	// 判断是否已存在该手机号

  478. 	if adminUser, err := service.GetValidAdminUserByMobileReturnErr(mobile); err != nil {

  479. 		//beego.Error("查询用户是否已被添加为管理员时失败:", err)

  480. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDataException)

  481. 		return

  482. 	} else {

  483. 		if adminUser == nil { //新增账号和用户

  484. 			_, password, createErr := service.CreateGeneralAdminUser(adminUserInfo.CurrentOrgId, adminUserInfo.CurrentAppId, mobile, name, user_title_name, roleIds, userType, userTitle)

  485. 			if createErr != nil {

  486. 				//beego.Error("创建管理员失败:", createErr)

  487. 				this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDBCreate)

  488. 				return

  489. 

  490. 			} else {

  491. 				sendSMSErr := service.SMSSendInviteMobileToJoinOrgAdmin(name, mobile, password)

  492. 				if sendSMSErr != nil {

  493. 				}

  494. 

  495. 				this.ServeSuccessJSON(nil)

  496. 				return

  497. 			}

  498. 		} else {

  499. 

  500. 			total, _ := service.FindAdminUserByID(adminUser.Id, adminUserInfo.CurrentOrgId)

  501. 

  502. 			if total <= 0 {

  503. 				//新增用户

  504. 				app_role := &models.App_Role{

  505. 					AdminUserId:   adminUser.Id,

  506. 					OrgId:         adminUserInfo.CurrentOrgId,

  507. 					AppId:         adminUserInfo.CurrentAppId,

  508. 					Avatar:        "",

  509. 					UserName:      name,

  510. 					UserTitleName: user_title_name,

  511. 					Status:        1,

  512. 					UserType:      int8(userType),

  513. 					UserTitle:     int8(userTitle),

  514. 					CreateTime:    time.Now().Unix(),

  515. 					ModifyTime:    time.Now().Unix(),

  516. 					RoleIds:       roleIds,

  517. 				}

  518. 				err := service.CreateUserRole(app_role)

  519. 				if err != nil {

  520. 					this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDBCreate)

  521. 					return

  522. 				}

  523. 				this.ServeSuccessJSON(nil)

  524. 			} else {

  525. 				this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeRepeatCreateStaffException)

  526. 				return

  527. 			}

  528. 

  529. 			return

  530. 		}

  531. 	}

  532. 

  533. }

  534. 

  535. // /api/admin/editinit [get]

  536. // @param uid:int

  537. func (this *RoleAPIController) EditAdminInitData() {

  538. 	adminUserInfo := this.GetAdminUserInfo()

  539. 

  540. 	admin_user_id, _ := this.GetInt64("uid")

  541. 	if admin_user_id <= 0 {

  542. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeParamWrong)

  543. 		return

  544. 	}

  545. 

  546. 	appRole, getAppRoleErr := service.GetAppRole(adminUserInfo.CurrentOrgId, adminUserInfo.CurrentAppId, admin_user_id)

  547. 	if getAppRoleErr != nil {

  548. 		//beego.Error("查询管理员信息时失败:", getAppRoleErr)

  549. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDataException)

  550. 		return

  551. 	}

  552. 	if appRole == nil {

  553. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeAdminUserNotExist)

  554. 		return

  555. 	}

  556. 

  557. 	roles, getRoleErr := service.GetAllValidRoles(adminUserInfo.CurrentOrgId, adminUserInfo.CurrentAppId)

  558. 	if getRoleErr != nil {

  559. 		//beego.Error("获取所有角色失败:", getRoleErr)

  560. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDataException)

  561. 		return

  562. 	}

  563. 

  564. 	var isSubSuperAdmin bool = false

  565. 	adminUserRole, _ := service.GetAppRole(adminUserInfo.CurrentOrgId, adminUserInfo.CurrentAppId, adminUserInfo.AdminUser.Id)

  566. 

  567. 	//app_role, _ := service.GetAppRoleById(adminUserInfo.)

  568. 	role_ids := strings.Split(adminUserRole.RoleIds, ",")

  569. 

  570. 	org, _ := service.GetOrgById(adminUserInfo.CurrentOrgId)

  571. 

  572. 	if adminUserInfo.AdminUser.Id != org.Creator {

  573. 		for _, item := range role_ids {

  574. 			id, _ := strconv.ParseInt(item, 10, 64)

  575. 			role, _ := service.GetRoleByRoleID(id)

  576. 			if role.IsSystem == 1 && role.RoleName == "子管理员" {

  577. 				isSubSuperAdmin = true

  578. 			}

  579. 		}

  580. 	}

  581. 

  582. 	redisClient := service.RedisClient()

  583. 	defer redisClient.Close()

  584. 	qntoken, _ := redisClient.Get("qn_token").Result()

  585. 

  586. 	this.ServeSuccessJSON(map[string]interface{}{

  587. 		"admin":           appRole,

  588. 		"roles":           roles,

  589. 		"qntoken":         qntoken,

  590. 		"isSubSuperAdmin": isSubSuperAdmin,

  591. 	})

  592. }

  593. 

  594. // /api/admin/edit [post]

  595. // @param uid:int

  596. // @param name:string

  597. // @param type:int

  598. // @param title:int

  599. // @param role:int

  600. // @param intro?:string

  601. func (this *RoleAPIController) EditAdmin() {

  602. 	adminUserInfo := this.GetAdminUserInfo()

  603. 	//if adminUserInfo.AdminUser.IsSuperAdmin == false {

  604. 	//	this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodePermissionDenied)

  605. 	//	return

  606. 	//}

  607. 

  608. 	adminUserId, _ := this.GetInt64("uid")

  609. 	name := this.GetString("name")

  610. 	userType, _ := this.GetInt("type")

  611. 	userTitle, _ := this.GetInt("title")

  612. 	roleIds := this.GetString("role")

  613. 	intro := this.GetString("intro")

  614. 	user_title_name := this.GetString("user_title_name")

  615. 

  616. 	_, titleExist := models.UserTitle[userTitle]

  617. 	if adminUserId <= 0 || len(name) == 0 || (userType != 2 && userType != 3 && userType != 4) || !titleExist || len(roleIds) <= 0 {

  618. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeParamWrong)

  619. 		return

  620. 	}

  621. 

  622. 	appRole, getAppRoleErr := service.GetAppRole(adminUserInfo.CurrentOrgId, adminUserInfo.CurrentAppId, adminUserId)

  623. 	if getAppRoleErr != nil {

  624. 		//beego.Error("查询管理员信息时失败:", getAppRoleErr)

  625. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDataException)

  626. 		return

  627. 	}

  628. 	if appRole == nil {

  629. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeAdminUserNotExist)

  630. 		return

  631. 	}

  632. 

  633. 	appRole.UserName = name

  634. 	appRole.UserType = int8(userType)

  635. 	appRole.UserTitle = int8(userTitle)

  636. 	appRole.RoleIds = roleIds

  637. 	appRole.Intro = intro

  638. 	appRole.UserTitleName = user_title_name

  639. 	appRole.ModifyTime = time.Now().Unix()

  640. 	saveErr := service.SaveAppRole(appRole)

  641. 	if saveErr != nil {

  642. 		//beego.Error("修改App_Role失败:", saveErr)

  643. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDBUpdate)

  644. 

  645. 	} else {

  646. 		this.ServeSuccessJSON(nil)

  647. 	}

  648. }

  649. 

  650. // /api/admin/setstatus [post]

  651. // @param uid:int

  652. // @param enable:bool

  653. func (this *RoleAPIController) AdminSetStatus() {

  654. 	adminUserInfo := this.GetAdminUserInfo()

  655. 	//if adminUserInfo.AdminUser.IsSuperAdmin == false {

  656. 	//	this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodePermissionDenied)

  657. 	//	return

  658. 	//}

  659. 

  660. 	userID, _ := this.GetInt64("uid")

  661. 	if userID <= 0 {

  662. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeParamWrong)

  663. 		return

  664. 	}

  665. 	appRole, getAppRoleErr := service.GetAppRole(adminUserInfo.CurrentOrgId, adminUserInfo.CurrentAppId, userID)

  666. 	if getAppRoleErr != nil {

  667. 		//beego.Error("查询管理员信息失败:", getAppRoleErr)

  668. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDataException)

  669. 		return

  670. 	} else if appRole == nil {

  671. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeAdminUserNotExist)

  672. 		return

  673. 	}

  674. 

  675. 	enable, _ := this.GetBool("enable")

  676. 

  677. 	if enable {

  678. 		appRole.Status = 1

  679. 	} else {

  680. 		appRole.Status = 0

  681. 	}

  682. 	appRole.ModifyTime = time.Now().Unix()

  683. 	saveErr := service.SaveAppRole(appRole)

  684. 	if saveErr != nil {

  685. 		//beego.Error("保存AppRole失败:", saveErr)

  686. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDBUpdate)

  687. 

  688. 	} else {

  689. 		this.ServeSuccessJSON(nil)

  690. 	}

  691. }

  692. 

  693. // /api/admin/specialpermission/initdata [get]

  694. func (this *RoleAPIController) SpecialPermissionInitData() {

  695. 	adminUserInfo := this.GetAdminUserInfo()

  696. 	//if adminUserInfo.AdminUser.IsSuperAdmin == false {

  697. 	//	this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodePermissionDenied)

  698. 	//	return

  699. 	//}

  700. 

  701. 	adminUsers, getAdminUsersErr := service.GetAllGeneralAdminUsers(adminUserInfo.CurrentOrgId, adminUserInfo.CurrentAppId)

  702. 	if getAdminUsersErr != nil {

  703. 		this.ErrorLog("获取所有普通用户失败:%v", getAdminUsersErr)

  704. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDataException)

  705. 		return

  706. 	}

  707. 

  708. 	headNurses, getAllHeadNursesErr := service.GetAllValidAdminUsersWithSpecialPermission(adminUserInfo.CurrentOrgId, adminUserInfo.CurrentAppId, models.SpecialPermissionTypeHeadNurse)

  709. 	if getAllHeadNursesErr != nil {

  710. 		this.ErrorLog("获取所有拥有护士长特殊权限的用户失败:%v", getAllHeadNursesErr)

  711. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDataException)

  712. 		return

  713. 	}

  714. 

  715. 	this.ServeSuccessJSON(map[string]interface{}{

  716. 		"users":       adminUsers,

  717. 		"head_nurses": headNurses,

  718. 	})

  719. }

  720. 

  721. // /api/admin/specialpermission/dialysisrecord/submit [post]

  722. // @param ids:string ("1,2,5")

  723. func (this *RoleAPIController) SubmitDialysisRecordPermission() {

  724. 	adminUserInfo := this.GetAdminUserInfo()

  725. 	//if adminUserInfo.AdminUser.IsSuperAdmin == false {

  726. 	//	this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodePermissionDenied)

  727. 	//	return

  728. 	//}

  729. 

  730. 	idsString := this.GetString("ids")

  731. 	if len(idsString) == 0 {

  732. 		// 取消所有用户的护士长权限

  733. 		cancelErr := service.CancelAllSpecialPermissionAdminUsers(adminUserInfo.CurrentOrgId, adminUserInfo.CurrentAppId, models.SpecialPermissionTypeHeadNurse)

  734. 		if cancelErr != nil {

  735. 			this.ErrorLog("取消所有用户的护士长权限失败:%v", cancelErr)

  736. 			this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDataException)

  737. 			return

  738. 		} else {

  739. 			this.ServeSuccessJSON(nil)

  740. 			return

  741. 		}

  742. 

  743. 	} else {

  744. 		ids := make([]int64, 0)

  745. 		idStrs := strings.Split(idsString, ",")

  746. 		for _, idStr := range idStrs {

  747. 			id, parseErr := strconv.Atoi(idStr)

  748. 			if parseErr != nil {

  749. 				this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeParamWrong)

  750. 				return

  751. 			}

  752. 			ids = append(ids, int64(id))

  753. 		}

  754. 

  755. 		headNurses, getAllHeadNursesErr := service.GetAllSpecialPermissionAdminUsersWithoutStatus(adminUserInfo.CurrentOrgId, adminUserInfo.CurrentAppId, models.SpecialPermissionTypeHeadNurse)

  756. 		if getAllHeadNursesErr != nil {

  757. 			this.ErrorLog("获取所有拥有或曾拥有护士长特殊权限的用户失败:%v", getAllHeadNursesErr)

  758. 			this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDataException)

  759. 			return

  760. 		}

  761. 

  762. 		cancelList := make([]*models.AdminUserSpecialPermission, 0)

  763. 		addList := make([]*models.AdminUserSpecialPermission, 0)

  764. 		for _, id := range ids {

  765. 			exit := false

  766. 			for _, headNurse := range headNurses {

  767. 				if headNurse.AdminUserID == id {

  768. 					exit = true

  769. 					if headNurse.Status != 1 {

  770. 						headNurse.Status = 1

  771. 						headNurse.ModifyTime = time.Now().Unix()

  772. 						addList = append(addList, headNurse)

  773. 					}

  774. 					break

  775. 				}

  776. 			}

  777. 			if exit == false {

  778. 				newHeadNurse := &models.AdminUserSpecialPermission{

  779. 					OrgID:       adminUserInfo.CurrentOrgId,

  780. 					AppID:       adminUserInfo.CurrentAppId,

  781. 					AdminUserID: id,

  782. 					Permission:  int64(models.SpecialPermissionTypeHeadNurse),

  783. 					Status:      1,

  784. 					CreateTime:  time.Now().Unix(),

  785. 					ModifyTime:  time.Now().Unix(),

  786. 				}

  787. 				addList = append(addList, newHeadNurse)

  788. 			}

  789. 		}

  790. 

  791. 		for _, headNurse := range headNurses {

  792. 			cancel := true

  793. 			for _, willAdd := range addList {

  794. 				if willAdd.AdminUserID == headNurse.AdminUserID {

  795. 					cancel = false

  796. 					break

  797. 				}

  798. 			}

  799. 			if cancel {

  800. 				headNurse.Status = 0

  801. 				headNurse.ModifyTime = time.Now().Unix()

  802. 				cancelList = append(cancelList, headNurse)

  803. 			}

  804. 		}

  805. 

  806. 		addErr := service.BatchSaveSpecialPermissionAdminUsers(addList)

  807. 		if addErr != nil {

  808. 			this.ErrorLog("授权失败:%v", addErr)

  809. 			this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDataException)

  810. 			return

  811. 		}

  812. 

  813. 		cancelErr := service.BatchSaveSpecialPermissionAdminUsers(cancelList)

  814. 		if cancelErr != nil {

  815. 			this.ErrorLog("取消授权失败:%v", cancelErr)

  816. 			this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDataException)

  817. 			return

  818. 		}

  819. 

  820. 		this.ServeSuccessJSON(nil)

  821. 	}

  822. 

  823. }

  824. 

  825. func (this *RoleAPIController) GetAllOrgRole() {

  826. 	adminUserInfo := this.GetAdminUserInfo()

  827. 

  828. 	var isSubSuperAdmin bool = false

  829. 	adminUserRole, _ := service.GetAppRole(adminUserInfo.CurrentOrgId, adminUserInfo.CurrentAppId, adminUserInfo.AdminUser.Id)

  830. 

  831. 	//app_role, _ := service.GetAppRoleById(adminUserInfo.)

  832. 	role_ids := strings.Split(adminUserRole.RoleIds, ",")

  833. 

  834. 	org, _ := service.GetOrgById(adminUserInfo.CurrentOrgId)

  835. 

  836. 	if adminUserInfo.AdminUser.Id != org.Creator {

  837. 		for _, item := range role_ids {

  838. 			id, _ := strconv.ParseInt(item, 10, 64)

  839. 			role, _ := service.GetRoleByRoleID(id)

  840. 			if role.IsSystem == 1 && role.RoleName == "子管理员" {

  841. 				isSubSuperAdmin = true

  842. 			}

  843. 		}

  844. 	}

  845. 

  846. 	roles, err := service.GetAllOrgValidRoles(adminUserInfo.CurrentOrgId, isSubSuperAdmin)

  847. 	if err != nil {

  848. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDataException)

  849. 		return

  850. 	} else {

  851. 		this.ServeSuccessJSON(map[string]interface{}{

  852. 			"roles": roles,

  853. 		})

  854. 	}

  855. 

  856. }

  857. 

  858. func (this *RoleAPIController) GetAllOrgUser() {

  859. 	adminUserInfo := this.GetAdminUserInfo()

  860. 	org, _ := service.GetOrgById(adminUserInfo.CurrentOrgId)

  861. 	viewModels, _, _ := service.GetAllAdminUsersAndRole(adminUserInfo.CurrentOrgId, adminUserInfo.CurrentAppId, 1, 100)

  862. 	this.ServeSuccessJSON(map[string]interface{}{

  863. 		"admins": viewModels,

  864. 		"org":    org,

  865. 	})

  866. }

  867. 

  868. func (this *RoleAPIController) AddRoleStaff() {

  869. 	//adminUserInfo := this.GetMobileAdminUserInfo()

  870. 	role_id, _ := this.GetInt64("id", 0)

  871. 	staff_ids := this.GetString("ids")

  872. 	ids := strings.Split(staff_ids, ",")

  873. 	for _, item := range ids {

  874. 		id, _ := strconv.ParseInt(item, 10, 64)

  875. 		role, _ := service.FindAdminUserID(id)

  876. 		role.RoleIds = role.RoleIds + "," + strconv.FormatInt(role_id, 10)

  877. 		service.SaveAdminUser(&role)

  878. 	}

  879. 	this.ServeSuccessJSON(map[string]interface{}{

  880. 		"msg": "添加成功",

  881. 	})

  882. 

  883. }

  884. 

  885. func (this *RoleAPIController) GetRoleStaff() {

  886. 	adminUserInfo := this.GetAdminUserInfo()

  887. 

  888. 	viewModels, _, getAdminsErr := service.GetAdminUsersAndLoginInfo(adminUserInfo.CurrentOrgId, adminUserInfo.CurrentAppId, 1, 100)

  889. 	if getAdminsErr != nil {

  890. 		//beego.Error("获取管理员列表失败:", getAdminsErr)

  891. 		this.ServeFailJSONWithSGJErrorCode(enums.ErrorCodeDataException)

  892. 		return

  893. 	}

  894. 	org, _ := service.GetOrgById(adminUserInfo.CurrentOrgId)

  895. 

  896. 	this.ServeSuccessJSON(map[string]interface{}{

  897. 		"admins": viewModels,

  898. 		"org":    org,

  899. 	})

  900. 

  901. }