mgr
/
GoClouds
1
1
Fork 1
Code Issues Pull Requests Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
9 Commits
1 Branch
0 Tags
410 KiB
 
 
 
Tree: ad581c1189
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'ad581c1189'
${ noResults }
GoClouds/service/userService/role.go

225 lines
5.4 KiB
Raw Blame History

package userService
import (
"GoClouds/core/comm"
"GoClouds/models"
"GoClouds/modeluis"
"GoClouds/service/sysService"
"encoding/json"
"fmt"
"github.com/go-macaron/cache"
ruisUtil "github.com/mgr9525/go-ruisutil"
"github.com/xormplus/builder"
"gopkg.in/macaron.v1"
"strings"
)
func FindTreePermission() []*modeluis.TreePermssion {
rets := make([]*modeluis.TreePermssion, 0)
err := comm.DbSys.Where("parent is null or parent=''").OrderBy("sort ASC,id ASC").Find(&rets)
if err != nil {
println("findPermChilds err:" + err.Error())
return nil
}
for _, v := range rets {
findPermChilds(v, nil)
}
return rets
}
func findPermChilds(parent *modeluis.TreePermssion, upms map[string]bool) {
if parent == nil {
return
}
childs := make([]*modeluis.TreePermssion, 0)
err := comm.DbSys.Where("parent=?", parent.Xid).OrderBy("sort ASC,id ASC").Find(&childs)
if err != nil {
println("findPermChilds err:" + err.Error())
return
}
for _, v := range childs {
findPermChilds(v, upms)
}
if len(childs) > 0 && len(parent.Value) > 0 {
t := *parent
ts := []*modeluis.TreePermssion{&t}
childs = append(ts, childs...)
parent.Xid = ""
}
parent.Childs = childs
}
func FindUPermissions(uid string) []*modeluis.SysPermssion {
if len(uid) <= 0 {
return nil
}
perms := make(map[string]*modeluis.SysPermssion)
userRole := FindUserRole(uid)
//comm.DbSys.SqlTemplateClient("role.stpl")
//rids:=strings.Split(userRole.RoleCodes,",")
ses := comm.DbSys.Where("xid='common'")
if len(userRole.RoleCodes) > 0 {
rcds := strings.Split(userRole.RoleCodes, ",")
ses.Or(builder.In("xid", rcds))
}
roles := make([]*models.SysRole, 0)
err := ses.Find(&roles)
if err != nil {
println("FindUserPermission err:" + err.Error())
return nil
}
for _, role := range roles {
if len(role.Perms) <= 0 {
continue
}
permssions := make([]*modeluis.SysPermssion, 0)
ses := comm.DbSys.Where(builder.In("xid", strings.Split(role.Perms, ",")))
err := ses.Find(&permssions)
if err != nil {
println("FindUserPermission err:" + err.Error())
continue
}
limids := map[string]bool{}
if len(userRole.Limits) > 0 {
rcds := strings.Split(userRole.Limits, ",")
for _, v := range rcds {
limids[v] = true
}
}
for _, perm := range permssions {
if len(perm.Value) > 0 {
if limids[perm.Xid] == true {
perm.Had = true
}
perms[perm.Value] = perm
}
}
}
rets := make([]*modeluis.SysPermssion, 0)
for _, v := range perms {
rets = append(rets, v)
}
return rets
}
func FindUserRole(uid string) *models.SysUserRole {
userRole := new(models.SysUserRole)
ok, err := comm.DbSys.Where("user_code=?", uid).Get(userRole)
if err != nil {
println("FindUserPermission err:" + err.Error())
} else if !ok {
userRole.UserCode = uid
comm.DbSys.Insert(userRole)
}
return userRole
}
func FindUserRoles(uid string) []*modeluis.SysURole {
userRole := FindUserRole(uid)
rcds := make(map[string]bool)
if len(userRole.RoleCodes) > 0 {
rids := strings.Split(userRole.RoleCodes, ",")
for _, v := range rids {
rcds[v] = true
}
}
roles := make([]*modeluis.SysURole, 0)
err := comm.DbSys.Where("xid!='common'").Find(&roles)
if err != nil {
println("FindUserRoles:" + err.Error())
}
for _, v := range roles {
v.Had = rcds[v.Xid] == true
v.Permls = sysService.FindPermissions(v.Perms)
}
return roles
}
func FindUserPermission(uid string) map[string]bool {
perms := make(map[string]bool)
userRole := FindUserRole(uid)
//comm.DbSys.SqlTemplateClient("role.stpl")
//rids:=strings.Split(userRole.RoleCodes,",")
ses := comm.DbSys.Where("xid='common'")
if len(userRole.RoleCodes) > 0 {
rcds := strings.Split(userRole.RoleCodes, ",")
ses.Or(builder.In("xid", rcds))
}
roles := make([]*models.SysRole, 0)
err := ses.Find(&roles)
if err != nil {
println("FindUserPermission err:" + err.Error())
return perms
}
for _, role := range roles {
if len(role.Perms) <= 0 {
continue
}
permssions := make([]*models.SysPermssion, 0)
ses := comm.DbSys.Where(builder.In("xid", strings.Split(role.Perms, ",")))
if len(userRole.Limits) > 0 {
rcds := strings.Split(userRole.Limits, ",")
ses.And(builder.NotIn("xid", rcds))
}
err := ses.Find(&permssions)
if err != nil {
println("FindUserPermission err:" + err.Error())
continue
}
for _, perm := range permssions {
if len(perm.Value) > 0 {
perms[perm.Value] = true
}
}
}
return perms
}
func FindUserPermissionCache(uid string, ch cache.Cache) map[string]bool {
key := fmt.Sprintf("user-permission:%s", uid)
perms := make(map[string]bool)
if ch.IsExist(key) {
bts := ch.Get(key).([]byte)
json.Unmarshal(bts, &perms)
} else {
perms = FindUserPermission(uid)
bts, err := json.Marshal(perms)
if err == nil {
err = ch.Put(key, bts, 3600*10)
if err != nil {
println("cache put err:" + err.Error())
}
}
}
return perms
}
func CheckPermission(uid, perm string, ch cache.Cache) (rb bool) {
key := fmt.Sprintf("user-permission:%s", uid)
defer ruisUtil.Recovers("CheckPermmsion", func(errs string) {
rb = false
ch.Delete(key)
})
if len(perm) <= 0 {
return false
}
perms := FindUserPermissionCache(uid, ch)
return perms[perm]
}
func CheckUPermission(perm string, c *macaron.Context, ch cache.Cache) (rb bool) {
defer ruisUtil.Recovers("CheckUPermmsion", func(errs string) {
rb = false
})
lguser := GetCurrentUser(c)
if lguser == nil {
return false
}
return CheckPermission(lguser.Xid, perm, ch)
}