2026-03-18 10:19:42 +08:00
|
|
|
/*
|
|
|
|
|
* @desc:用户处理
|
|
|
|
|
* @company:云南奇讯科技有限公司
|
|
|
|
|
* @Author: yixiaohu<yxh669@qq.com>
|
|
|
|
|
* @Date: 2022/9/23 15:08
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
package sysUser
|
|
|
|
|
|
|
|
|
|
import (
|
|
|
|
|
"context"
|
|
|
|
|
"fmt"
|
2026-05-09 10:30:31 +08:00
|
|
|
|
2026-03-18 10:19:42 +08:00
|
|
|
"gitea.com/red-future/common/beans"
|
|
|
|
|
"gitea.com/red-future/common/utils"
|
|
|
|
|
"github.com/gogf/gf/v2/container/gset"
|
|
|
|
|
"github.com/gogf/gf/v2/database/gdb"
|
|
|
|
|
"github.com/gogf/gf/v2/errors/gerror"
|
|
|
|
|
"github.com/gogf/gf/v2/frame/g"
|
|
|
|
|
"github.com/gogf/gf/v2/os/gtime"
|
|
|
|
|
"github.com/gogf/gf/v2/text/gstr"
|
|
|
|
|
"github.com/gogf/gf/v2/util/gconv"
|
|
|
|
|
"github.com/gogf/gf/v2/util/grand"
|
|
|
|
|
"github.com/mssola/user_agent"
|
|
|
|
|
"github.com/tiger1103/gfast/v3/api/v1/system"
|
|
|
|
|
commonService "github.com/tiger1103/gfast/v3/internal/app/common/service"
|
|
|
|
|
"github.com/tiger1103/gfast/v3/internal/app/system/consts"
|
|
|
|
|
"github.com/tiger1103/gfast/v3/internal/app/system/dao"
|
|
|
|
|
"github.com/tiger1103/gfast/v3/internal/app/system/model"
|
|
|
|
|
"github.com/tiger1103/gfast/v3/internal/app/system/model/do"
|
|
|
|
|
"github.com/tiger1103/gfast/v3/internal/app/system/model/entity"
|
|
|
|
|
"github.com/tiger1103/gfast/v3/internal/app/system/service"
|
|
|
|
|
"github.com/tiger1103/gfast/v3/library/libUtils"
|
|
|
|
|
"github.com/tiger1103/gfast/v3/library/liberr"
|
|
|
|
|
)
|
|
|
|
|
|
|
|
|
|
func init() {
|
|
|
|
|
service.RegisterSysUser(New())
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
type sSysUser struct {
|
|
|
|
|
casBinUserPrefix string //CasBin 用户id前缀
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func New() *sSysUser {
|
|
|
|
|
return &sSysUser{
|
|
|
|
|
casBinUserPrefix: "u_",
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (s *sSysUser) GetCasBinUserPrefix() string {
|
|
|
|
|
return s.casBinUserPrefix
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (s *sSysUser) NotCheckAuthAdminIds(ctx context.Context) *gset.Set {
|
|
|
|
|
ids := g.Cfg().MustGet(ctx, "system.notCheckAuthAdminIds")
|
|
|
|
|
if !g.IsNil(ids) {
|
|
|
|
|
return gset.NewFrom(ids)
|
|
|
|
|
}
|
|
|
|
|
return gset.New()
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (s *sSysUser) GetAdminUserByUsernamePassword(ctx context.Context, req *system.UserLoginReq) (user *model.LoginUserRes, err error) {
|
|
|
|
|
err = g.Try(ctx, func(ctx context.Context) {
|
|
|
|
|
user, err = s.GetUserByUsername(ctx, req.Username)
|
|
|
|
|
liberr.ErrIsNil(ctx, err)
|
|
|
|
|
liberr.ValueIsNil(user, "账号密码错误")
|
2026-06-08 11:37:54 +08:00
|
|
|
//验证密码复杂度
|
|
|
|
|
err = s.validatePasswordComplexity(ctx, req.Password)
|
|
|
|
|
liberr.ErrIsNil(ctx, err)
|
2026-03-18 10:19:42 +08:00
|
|
|
//验证密码
|
|
|
|
|
if libUtils.EncryptPassword(req.Password, user.UserSalt) != user.UserPassword {
|
|
|
|
|
liberr.ErrIsNil(ctx, gerror.New("账号密码错误"))
|
|
|
|
|
}
|
|
|
|
|
//账号状态
|
|
|
|
|
if user.UserStatus == 0 {
|
|
|
|
|
liberr.ErrIsNil(ctx, gerror.New("账号已被冻结"))
|
|
|
|
|
}
|
|
|
|
|
})
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
2026-06-08 11:37:54 +08:00
|
|
|
// validatePasswordComplexity 验证密码复杂度
|
|
|
|
|
func (s *sSysUser) validatePasswordComplexity(ctx context.Context, password string) (err error) {
|
|
|
|
|
dict, err := commonService.SysDictData().GetDictWithDataByType(ctx, &system.GetDictReq{
|
|
|
|
|
DictType: "pass_config",
|
|
|
|
|
})
|
|
|
|
|
if err != nil || dict == nil || len(dict.Values) == 0 {
|
|
|
|
|
// 如果没有配置密码复杂度,则默认放行
|
|
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
config := make(map[string]string)
|
|
|
|
|
for _, v := range dict.Values {
|
|
|
|
|
config[v.DictValue] = v.Remark
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// 检查是否启用密码策略
|
|
|
|
|
if enabled, ok := config["enabled"]; ok && enabled != "true" {
|
|
|
|
|
// 未启用密码策略,直接放行
|
|
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// 验证最小长度
|
|
|
|
|
if minLen, ok := config["min_length"]; ok {
|
|
|
|
|
if len(password) < gconv.Int(minLen) {
|
|
|
|
|
return gerror.Newf("密码长度不能少于%s位", minLen)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// 验证最大长度
|
|
|
|
|
if maxLen, ok := config["max_length"]; ok {
|
|
|
|
|
if len(password) > gconv.Int(maxLen) {
|
|
|
|
|
return gerror.Newf("密码长度不能超过%s位", maxLen)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// 验证是否需要包含数字
|
|
|
|
|
if needNumber, ok := config["need_number"]; ok && needNumber == "true" {
|
|
|
|
|
hasNumber := false
|
|
|
|
|
for _, c := range password {
|
|
|
|
|
if c >= '0' && c <= '9' {
|
|
|
|
|
hasNumber = true
|
|
|
|
|
break
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
if !hasNumber {
|
|
|
|
|
return gerror.New("密码必须包含数字")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// 验证是否需要包含小写字母
|
|
|
|
|
if needLower, ok := config["need_lower"]; ok && needLower == "true" {
|
|
|
|
|
hasLower := false
|
|
|
|
|
for _, c := range password {
|
|
|
|
|
if c >= 'a' && c <= 'z' {
|
|
|
|
|
hasLower = true
|
|
|
|
|
break
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
if !hasLower {
|
|
|
|
|
return gerror.New("密码必须包含小写字母")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// 验证是否需要包含大写字母
|
|
|
|
|
if needUpper, ok := config["need_upper"]; ok && needUpper == "true" {
|
|
|
|
|
hasUpper := false
|
|
|
|
|
for _, c := range password {
|
|
|
|
|
if c >= 'A' && c <= 'Z' {
|
|
|
|
|
hasUpper = true
|
|
|
|
|
break
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
if !hasUpper {
|
|
|
|
|
return gerror.New("密码必须包含大写字母")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// 验证是否需要包含特殊字符
|
|
|
|
|
if needSpecial, ok := config["need_special"]; ok && needSpecial == "true" {
|
|
|
|
|
hasSpecial := false
|
|
|
|
|
specialChars := "!@#$%^&*()_+-=[]{}|;':\",./<>?`~"
|
|
|
|
|
for _, c := range password {
|
|
|
|
|
if gstr.Contains(specialChars, string(c)) {
|
|
|
|
|
hasSpecial = true
|
|
|
|
|
break
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
if !hasSpecial {
|
|
|
|
|
return gerror.New("密码必须包含特殊字符")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
|
2026-03-18 10:19:42 +08:00
|
|
|
// GetUserByUsername 通过用户名获取用户信息
|
|
|
|
|
func (s *sSysUser) GetUserByUsername(ctx context.Context, userName string) (user *model.LoginUserRes, err error) {
|
|
|
|
|
err = g.Try(ctx, func(ctx context.Context) {
|
|
|
|
|
user = &model.LoginUserRes{}
|
|
|
|
|
err = dao.SysUser.Ctx(ctx).Fields(user).Where(dao.SysUser.Columns().UserName, userName).Scan(user)
|
|
|
|
|
liberr.ErrIsNil(ctx, err, "账号密码错误")
|
|
|
|
|
})
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// GetUserById 通过用户名获取用户信息
|
|
|
|
|
func (s *sSysUser) GetUserById(ctx context.Context, id uint64) (user *model.LoginUserRes, err error) {
|
|
|
|
|
err = g.Try(ctx, func(ctx context.Context) {
|
|
|
|
|
user = &model.LoginUserRes{}
|
|
|
|
|
err = dao.SysUser.Ctx(ctx).Fields(user).WherePri(id).Scan(user)
|
|
|
|
|
liberr.ErrIsNil(ctx, err, "获取用户信息失败")
|
|
|
|
|
})
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// LoginLog 记录登录日志
|
|
|
|
|
func (s *sSysUser) LoginLog(ctx context.Context, params *model.LoginLogParams) {
|
|
|
|
|
ua := user_agent.New(params.UserAgent)
|
|
|
|
|
browser, _ := ua.Browser()
|
|
|
|
|
loginData := &do.SysLoginLog{
|
|
|
|
|
LoginName: params.Username,
|
|
|
|
|
Ipaddr: params.Ip,
|
|
|
|
|
LoginLocation: libUtils.GetCityByIp(params.Ip),
|
|
|
|
|
Browser: browser,
|
|
|
|
|
Os: ua.OS(),
|
|
|
|
|
Status: params.Status,
|
|
|
|
|
Msg: params.Msg,
|
|
|
|
|
LoginTime: gtime.Now(),
|
|
|
|
|
Module: params.Module,
|
|
|
|
|
}
|
|
|
|
|
_, err := dao.SysLoginLog.Ctx(ctx).Insert(loginData)
|
|
|
|
|
if err != nil {
|
|
|
|
|
g.Log().Error(ctx, err)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (s *sSysUser) UpdateLoginInfo(ctx context.Context, id uint64, ip string) (err error) {
|
|
|
|
|
g.Try(ctx, func(ctx context.Context) {
|
|
|
|
|
_, err = dao.SysUser.Ctx(ctx).WherePri(id).Unscoped().Update(g.Map{
|
|
|
|
|
dao.SysUser.Columns().LastLoginIp: ip,
|
|
|
|
|
dao.SysUser.Columns().LastLoginTime: gtime.Now(),
|
|
|
|
|
})
|
|
|
|
|
liberr.ErrIsNil(ctx, err, "更新用户登录信息失败")
|
|
|
|
|
})
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// GetAdminRules 获取用户菜单数据
|
|
|
|
|
func (s *sSysUser) GetAdminRules(ctx context.Context, userId uint64) (menuList []*model.UserMenus, permissions []string, err error) {
|
|
|
|
|
err = g.Try(ctx, func(ctx context.Context) {
|
|
|
|
|
//是否超管
|
|
|
|
|
isSuperAdmin := false
|
|
|
|
|
//获取无需验证权限的用户id
|
|
|
|
|
s.NotCheckAuthAdminIds(ctx).Iterator(func(v interface{}) bool {
|
|
|
|
|
if gconv.Uint64(v) == userId {
|
|
|
|
|
isSuperAdmin = true
|
|
|
|
|
return false
|
|
|
|
|
}
|
|
|
|
|
return true
|
|
|
|
|
})
|
|
|
|
|
//获取用户菜单数据
|
|
|
|
|
allRoles, err := service.SysRole().GetRoleList(ctx)
|
|
|
|
|
liberr.ErrIsNil(ctx, err)
|
|
|
|
|
roles, err := s.GetAdminRole(ctx, userId, allRoles)
|
|
|
|
|
liberr.ErrIsNil(ctx, err)
|
|
|
|
|
name := make([]string, len(roles))
|
|
|
|
|
roleIds := make([]uint, len(roles))
|
|
|
|
|
for k, v := range roles {
|
|
|
|
|
name[k] = v.Name
|
|
|
|
|
roleIds[k] = v.Id
|
|
|
|
|
}
|
|
|
|
|
//获取菜单信息
|
|
|
|
|
if isSuperAdmin {
|
|
|
|
|
//超管获取所有菜单
|
|
|
|
|
permissions = []string{"*/*/*"}
|
|
|
|
|
menuList, err = s.GetAllMenus(ctx)
|
|
|
|
|
liberr.ErrIsNil(ctx, err)
|
|
|
|
|
} else {
|
|
|
|
|
menuList, err = s.GetAdminMenusByRoleIds(ctx, roleIds)
|
|
|
|
|
liberr.ErrIsNil(ctx, err)
|
|
|
|
|
permissions, err = s.GetPermissions(ctx, roleIds)
|
|
|
|
|
liberr.ErrIsNil(ctx, err)
|
|
|
|
|
}
|
|
|
|
|
})
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// GetAdminRole 获取用户角色
|
|
|
|
|
func (s *sSysUser) GetAdminRole(ctx context.Context, userId uint64, allRoleList []*entity.SysRole) (roles []*entity.SysRole, err error) {
|
|
|
|
|
var roleIds []uint
|
|
|
|
|
roleIds, err = s.GetAdminRoleIds(ctx, userId)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
roles = make([]*entity.SysRole, 0, len(allRoleList))
|
|
|
|
|
for _, v := range allRoleList {
|
|
|
|
|
for _, id := range roleIds {
|
|
|
|
|
if id == v.Id {
|
|
|
|
|
roles = append(roles, v)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
if len(roles) == len(roleIds) {
|
|
|
|
|
break
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// GetAdminRoleIds 获取用户角色ids
|
|
|
|
|
func (s *sSysUser) GetAdminRoleIds(ctx context.Context, userId uint64) (roleIds []uint, err error) {
|
|
|
|
|
enforcer, e := commonService.CasbinEnforcer(ctx)
|
|
|
|
|
if e != nil {
|
|
|
|
|
err = e
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
//查询关联角色规则
|
|
|
|
|
groupPolicy := enforcer.GetFilteredGroupingPolicy(0, fmt.Sprintf("%s%d", s.casBinUserPrefix, userId))
|
|
|
|
|
if len(groupPolicy) > 0 {
|
|
|
|
|
roleIds = make([]uint, len(groupPolicy))
|
|
|
|
|
//得到角色id的切片
|
|
|
|
|
for k, v := range groupPolicy {
|
|
|
|
|
roleIds[k] = gconv.Uint(v[1])
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (s *sSysUser) GetAllMenus(ctx context.Context) (menus []*model.UserMenus, err error) {
|
|
|
|
|
//获取所有开启的菜单
|
|
|
|
|
var allMenus []*model.SysAuthRuleInfoRes
|
|
|
|
|
allMenus, err = service.SysAuthRule().GetIsMenuList(ctx)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
menus = make([]*model.UserMenus, len(allMenus))
|
|
|
|
|
for k, v := range allMenus {
|
|
|
|
|
var menu *model.UserMenu
|
|
|
|
|
menu = s.setMenuData(menu, v)
|
|
|
|
|
menus[k] = &model.UserMenus{UserMenu: menu}
|
|
|
|
|
}
|
|
|
|
|
menus = s.GetMenusTree(menus, 0)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (s *sSysUser) GetAdminMenusByRoleIds(ctx context.Context, roleIds []uint) (menus []*model.UserMenus, err error) {
|
|
|
|
|
//获取角色对应的菜单id
|
|
|
|
|
err = g.Try(ctx, func(ctx context.Context) {
|
|
|
|
|
enforcer, e := commonService.CasbinEnforcer(ctx)
|
|
|
|
|
liberr.ErrIsNil(ctx, e)
|
|
|
|
|
menuIds := map[int64]int64{}
|
|
|
|
|
for _, roleId := range roleIds {
|
|
|
|
|
//查询当前权限
|
|
|
|
|
gp := enforcer.GetFilteredPolicy(0, gconv.String(roleId))
|
|
|
|
|
for _, p := range gp {
|
|
|
|
|
mid := gconv.Int64(p[1])
|
|
|
|
|
menuIds[mid] = mid
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
//获取所有开启的菜单
|
|
|
|
|
allMenus, err := service.SysAuthRule().GetIsMenuList(ctx)
|
|
|
|
|
liberr.ErrIsNil(ctx, err)
|
|
|
|
|
menus = make([]*model.UserMenus, 0, len(allMenus))
|
|
|
|
|
for _, v := range allMenus {
|
|
|
|
|
if _, ok := menuIds[gconv.Int64(v.Id)]; gstr.Equal(v.Condition, "nocheck") || ok {
|
|
|
|
|
var roleMenu *model.UserMenu
|
|
|
|
|
roleMenu = s.setMenuData(roleMenu, v)
|
|
|
|
|
menus = append(menus, &model.UserMenus{UserMenu: roleMenu})
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
menus = s.GetMenusTree(menus, 0)
|
|
|
|
|
})
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (s *sSysUser) GetMenusTree(menus []*model.UserMenus, pid uint) []*model.UserMenus {
|
|
|
|
|
returnList := make([]*model.UserMenus, 0, len(menus))
|
|
|
|
|
for _, menu := range menus {
|
|
|
|
|
if menu.Pid == pid {
|
|
|
|
|
menu.Children = s.GetMenusTree(menus, menu.Id)
|
|
|
|
|
returnList = append(returnList, menu)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return returnList
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (s *sSysUser) setMenuData(menu *model.UserMenu, entity *model.SysAuthRuleInfoRes) *model.UserMenu {
|
|
|
|
|
menu = &model.UserMenu{
|
|
|
|
|
Id: entity.Id,
|
|
|
|
|
Pid: entity.Pid,
|
|
|
|
|
Name: gstr.CaseCamelLower(gstr.Replace(entity.Name, "/", "_")),
|
|
|
|
|
Component: entity.Component,
|
|
|
|
|
Path: entity.Path,
|
|
|
|
|
MenuMeta: &model.MenuMeta{
|
|
|
|
|
Icon: entity.Icon,
|
|
|
|
|
Title: entity.Title,
|
|
|
|
|
IsLink: "",
|
|
|
|
|
IsHide: entity.IsHide == 1,
|
|
|
|
|
IsKeepAlive: entity.IsCached == 1,
|
|
|
|
|
IsAffix: entity.IsAffix == 1,
|
|
|
|
|
IsIframe: entity.IsIframe == 1,
|
|
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
if menu.MenuMeta.IsIframe || entity.IsLink == 1 {
|
|
|
|
|
menu.MenuMeta.IsLink = entity.LinkUrl
|
|
|
|
|
}
|
|
|
|
|
return menu
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (s *sSysUser) GetPermissions(ctx context.Context, roleIds []uint) (userButtons []string, err error) {
|
|
|
|
|
err = g.Try(ctx, func(ctx context.Context) {
|
|
|
|
|
//获取角色对应的菜单id
|
|
|
|
|
enforcer, err := commonService.CasbinEnforcer(ctx)
|
|
|
|
|
liberr.ErrIsNil(ctx, err)
|
|
|
|
|
menuIds := map[int64]int64{}
|
|
|
|
|
for _, roleId := range roleIds {
|
|
|
|
|
//查询当前权限
|
|
|
|
|
gp := enforcer.GetFilteredPolicy(0, gconv.String(roleId))
|
|
|
|
|
for _, p := range gp {
|
|
|
|
|
mid := gconv.Int64(p[1])
|
|
|
|
|
menuIds[mid] = mid
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
//获取所有开启的按钮
|
|
|
|
|
allButtons, err := service.SysAuthRule().GetIsButtonList(ctx)
|
|
|
|
|
liberr.ErrIsNil(ctx, err)
|
|
|
|
|
userButtons = make([]string, 0, len(allButtons))
|
|
|
|
|
for _, button := range allButtons {
|
|
|
|
|
if _, ok := menuIds[gconv.Int64(button.Id)]; gstr.Equal(button.Condition, "nocheck") || ok {
|
|
|
|
|
userButtons = append(userButtons, button.Name)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
})
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// List 用户列表
|
|
|
|
|
func (s *sSysUser) List(ctx context.Context, req *system.UserSearchReq) (total interface{}, userList []*entity.SysUser, err error) {
|
|
|
|
|
err = g.Try(ctx, func(ctx context.Context) {
|
|
|
|
|
m := dao.SysUser.Ctx(ctx)
|
|
|
|
|
if req.KeyWords != "" {
|
|
|
|
|
keyWords := "%" + req.KeyWords + "%"
|
|
|
|
|
m = m.Where("user_name like ? or user_nickname like ?", keyWords, keyWords)
|
|
|
|
|
}
|
|
|
|
|
if req.DeptId != "" {
|
|
|
|
|
deptIds, e := s.getSearchDeptIds(ctx, gconv.Uint64(req.DeptId))
|
|
|
|
|
liberr.ErrIsNil(ctx, e)
|
|
|
|
|
m = m.Where("dept_id in (?)", deptIds)
|
|
|
|
|
}
|
|
|
|
|
if req.Status != "" {
|
|
|
|
|
m = m.Where("user_status", gconv.Int(req.Status))
|
|
|
|
|
}
|
|
|
|
|
if req.Mobile != "" {
|
|
|
|
|
m = m.Where("mobile like ?", "%"+req.Mobile+"%")
|
|
|
|
|
}
|
|
|
|
|
if len(req.DateRange) > 0 {
|
|
|
|
|
m = m.Where("created_at >=? AND created_at <=?", req.DateRange[0], req.DateRange[1])
|
|
|
|
|
}
|
|
|
|
|
if req.PageSize == 0 {
|
|
|
|
|
req.PageSize = consts.PageSize
|
|
|
|
|
}
|
|
|
|
|
if req.PageNum == 0 {
|
|
|
|
|
req.PageNum = 1
|
|
|
|
|
}
|
|
|
|
|
total, err = m.Count()
|
|
|
|
|
liberr.ErrIsNil(ctx, err, "获取用户数据失败")
|
|
|
|
|
err = m.FieldsEx(dao.SysUser.Columns().UserPassword, dao.SysUser.Columns().UserSalt).
|
|
|
|
|
Page(req.PageNum, req.PageSize).Order("id asc").Scan(&userList)
|
|
|
|
|
liberr.ErrIsNil(ctx, err, "获取用户列表失败")
|
|
|
|
|
})
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// GetUsersRoleDept 获取多个用户角色 部门信息
|
|
|
|
|
func (s *sSysUser) GetUsersRoleDept(ctx context.Context, userList []*entity.SysUser) (users []*model.SysUserRoleDeptRes, err error) {
|
|
|
|
|
err = g.Try(ctx, func(ctx context.Context) {
|
|
|
|
|
allRoles, e := service.SysRole().GetRoleList(ctx)
|
|
|
|
|
liberr.ErrIsNil(ctx, e)
|
|
|
|
|
depts, e := service.SysDept().GetFromCache(ctx)
|
|
|
|
|
liberr.ErrIsNil(ctx, e)
|
|
|
|
|
users = make([]*model.SysUserRoleDeptRes, len(userList))
|
|
|
|
|
for k, u := range userList {
|
|
|
|
|
var dept *entity.SysDept
|
|
|
|
|
users[k] = &model.SysUserRoleDeptRes{
|
|
|
|
|
SysUser: u,
|
|
|
|
|
}
|
|
|
|
|
for _, d := range depts {
|
|
|
|
|
if u.DeptId == uint64(d.DeptId) {
|
|
|
|
|
dept = d
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
users[k].Dept = dept
|
|
|
|
|
roles, e := s.GetAdminRole(ctx, u.Id, allRoles)
|
|
|
|
|
liberr.ErrIsNil(ctx, e)
|
|
|
|
|
for _, r := range roles {
|
|
|
|
|
users[k].RoleInfo = append(users[k].RoleInfo, &model.SysUserRoleInfoRes{RoleId: r.Id, Name: r.Name})
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
})
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// GetList 用户列表(根据当前租户)
|
|
|
|
|
func (s *sSysUser) GetList(ctx context.Context, req *system.GetUserSearchReq) (total interface{}, userList []*entity.SysUser, err error) {
|
|
|
|
|
err = g.Try(ctx, func(ctx context.Context) {
|
|
|
|
|
m := dao.SysUser.Ctx(ctx)
|
|
|
|
|
|
|
|
|
|
var getUserInfo *beans.User
|
|
|
|
|
getUserInfo, err = utils.GetUserInfo(ctx)
|
|
|
|
|
liberr.ErrIsNil(ctx, err)
|
|
|
|
|
var tenantDetails *entity.Tenant
|
|
|
|
|
tenantDetails, err = service.Tenant().GetTenantDetails(ctx, gconv.Uint64(getUserInfo.TenantId))
|
|
|
|
|
liberr.ErrIsNil(ctx, err)
|
|
|
|
|
if tenantDetails.TenantType == consts.TenantTypeAgent {
|
|
|
|
|
var adminByIdList []entity.Tenant
|
|
|
|
|
adminByIdList, err = service.Tenant().GetTenantAdminById(ctx, tenantDetails.Id)
|
|
|
|
|
liberr.ErrIsNil(ctx, err)
|
|
|
|
|
idList := make([]uint64, 0)
|
|
|
|
|
for _, user := range adminByIdList {
|
|
|
|
|
idList = append(idList, gconv.Uint64(user.AdminBy))
|
|
|
|
|
}
|
|
|
|
|
m = m.Where("id in (?)", idList)
|
|
|
|
|
} else {
|
|
|
|
|
m = m.Where("tenant_id", tenantDetails.Id)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if req.KeyWords != "" {
|
|
|
|
|
keyWords := "%" + req.KeyWords + "%"
|
|
|
|
|
m = m.Where("user_name like ? or user_nickname like ?", keyWords, keyWords)
|
|
|
|
|
}
|
|
|
|
|
if req.DeptId != "" {
|
|
|
|
|
deptIds, e := s.getSearchDeptIds(ctx, gconv.Uint64(req.DeptId))
|
|
|
|
|
liberr.ErrIsNil(ctx, e)
|
|
|
|
|
m = m.Where("dept_id in (?)", deptIds)
|
|
|
|
|
}
|
|
|
|
|
if req.Status != "" {
|
|
|
|
|
m = m.Where("user_status", gconv.Int(req.Status))
|
|
|
|
|
}
|
|
|
|
|
if req.Mobile != "" {
|
|
|
|
|
m = m.Where("mobile like ?", "%"+req.Mobile+"%")
|
|
|
|
|
}
|
|
|
|
|
if len(req.DateRange) > 0 {
|
|
|
|
|
m = m.Where("created_at >=? AND created_at <=?", req.DateRange[0], req.DateRange[1])
|
|
|
|
|
}
|
|
|
|
|
if req.PageSize == 0 {
|
|
|
|
|
req.PageSize = consts.PageSize
|
|
|
|
|
}
|
|
|
|
|
if req.PageNum == 0 {
|
|
|
|
|
req.PageNum = 1
|
|
|
|
|
}
|
|
|
|
|
total, err = m.Count()
|
|
|
|
|
liberr.ErrIsNil(ctx, err, "获取用户数据失败")
|
|
|
|
|
err = m.FieldsEx(dao.SysUser.Columns().UserPassword, dao.SysUser.Columns().UserSalt).
|
|
|
|
|
Page(req.PageNum, req.PageSize).Order("id asc").Scan(&userList)
|
|
|
|
|
liberr.ErrIsNil(ctx, err, "获取用户列表失败")
|
|
|
|
|
})
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// GetUsersRoleDeptInfo 获取多个用户角色 部门信息
|
|
|
|
|
func (s *sSysUser) GetUsersRoleDeptInfo(ctx context.Context, userList []*entity.SysUser) (users []*model.SysUserRoleDeptRes, err error) {
|
|
|
|
|
err = g.Try(ctx, func(ctx context.Context) {
|
|
|
|
|
allRoles, e := service.SysRole().GetRoleList(ctx)
|
|
|
|
|
liberr.ErrIsNil(ctx, e)
|
|
|
|
|
depts, e := service.SysDept().GetFromCache(ctx)
|
|
|
|
|
liberr.ErrIsNil(ctx, e)
|
|
|
|
|
users = make([]*model.SysUserRoleDeptRes, len(userList))
|
|
|
|
|
for k, u := range userList {
|
|
|
|
|
var dept *entity.SysDept
|
|
|
|
|
users[k] = &model.SysUserRoleDeptRes{
|
|
|
|
|
SysUser: u,
|
|
|
|
|
}
|
|
|
|
|
for _, d := range depts {
|
|
|
|
|
if u.DeptId == d.DeptId {
|
|
|
|
|
dept = d
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
users[k].Dept = dept
|
|
|
|
|
roles, e := s.GetAdminRole(ctx, u.Id, allRoles)
|
|
|
|
|
liberr.ErrIsNil(ctx, e)
|
|
|
|
|
|
|
|
|
|
for _, r := range roles {
|
|
|
|
|
users[k].IsOperation = true
|
|
|
|
|
if r.Id == consts.SuperAdminId || r.Id == consts.SalesAgentId || r.Id == consts.SiteAdminId {
|
|
|
|
|
users[k].IsOperation = false
|
|
|
|
|
}
|
|
|
|
|
users[k].RoleInfo = append(users[k].RoleInfo, &model.SysUserRoleInfoRes{RoleId: r.Id, Name: r.Name})
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
})
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (s *sSysUser) GetTenantInfo(ctx context.Context, userList []*model.SysUserRoleDeptRes) (user []*model.SysUserRoleDeptRes, err error) {
|
|
|
|
|
// 1. 创建一个用于存放 ID 的空字符串切片
|
|
|
|
|
idList := make([]uint64, 0, len(userList))
|
|
|
|
|
// 2. 遍历原始列表
|
|
|
|
|
for _, user := range userList {
|
|
|
|
|
idList = append(idList, gconv.Uint64(user.TenantId))
|
|
|
|
|
}
|
|
|
|
|
var tenantList *system.GetTenantDetailsByIdsRes
|
|
|
|
|
tenantList, err = service.Tenant().GetTenantDetailsByIds(ctx, &system.GetTenantDetailsByIdsReq{
|
|
|
|
|
TenantIds: idList,
|
|
|
|
|
})
|
|
|
|
|
liberr.ErrIsNil(ctx, err)
|
|
|
|
|
for _, user := range userList {
|
|
|
|
|
for _, tenant := range tenantList.List {
|
|
|
|
|
if user.TenantId == tenant.Id {
|
|
|
|
|
user.TenantName = tenant.TenantName
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return userList, nil
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (s *sSysUser) getSearchDeptIds(ctx context.Context, deptId uint64) (deptIds []uint64, err error) {
|
|
|
|
|
err = g.Try(ctx, func(ctx context.Context) {
|
|
|
|
|
deptAll, e := service.SysDept().GetFromCache(ctx)
|
|
|
|
|
liberr.ErrIsNil(ctx, e)
|
|
|
|
|
deptWithChildren := service.SysDept().FindSonByParentId(deptAll, deptId)
|
|
|
|
|
deptIds = make([]uint64, len(deptWithChildren))
|
|
|
|
|
for k, v := range deptWithChildren {
|
|
|
|
|
deptIds[k] = v.DeptId
|
|
|
|
|
}
|
|
|
|
|
deptIds = append(deptIds, deptId)
|
|
|
|
|
})
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (s *sSysUser) Add(ctx context.Context, req *system.UserAddReq) (res *system.UserAddRes, err error) {
|
|
|
|
|
err = s.UserNameOrMobileExists(ctx, req.UserName, req.Mobile)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
var getUserInfo *beans.User
|
|
|
|
|
getUserInfo, err = utils.GetUserInfo(ctx)
|
|
|
|
|
liberr.ErrIsNil(ctx, err)
|
|
|
|
|
req.UserSalt = grand.S(10)
|
|
|
|
|
req.Password = libUtils.EncryptPassword(req.Password, req.UserSalt)
|
|
|
|
|
err = g.DB().Transaction(ctx, func(ctx context.Context, tx gdb.TX) error {
|
|
|
|
|
err = g.Try(ctx, func(ctx context.Context) {
|
|
|
|
|
userId, e := dao.SysUser.Ctx(ctx).TX(tx).InsertAndGetId(do.SysUser{
|
|
|
|
|
UserName: req.UserName,
|
|
|
|
|
Mobile: req.Mobile,
|
|
|
|
|
UserNickname: req.NickName,
|
|
|
|
|
UserPassword: req.Password,
|
|
|
|
|
UserSalt: req.UserSalt,
|
|
|
|
|
UserStatus: req.Status,
|
|
|
|
|
UserEmail: req.Email,
|
|
|
|
|
Sex: req.Sex,
|
|
|
|
|
DeptId: req.DeptId,
|
|
|
|
|
Remark: req.Remark,
|
|
|
|
|
IsAdmin: req.IsAdmin,
|
|
|
|
|
TenantId: gconv.Uint64(getUserInfo.TenantId),
|
|
|
|
|
})
|
|
|
|
|
res = new(system.UserAddRes)
|
|
|
|
|
res.UserId = userId
|
|
|
|
|
liberr.ErrIsNil(ctx, e, "添加用户失败")
|
|
|
|
|
e = s.addUserRole(ctx, req.RoleIds, userId)
|
|
|
|
|
liberr.ErrIsNil(ctx, e, "设置用户权限失败")
|
|
|
|
|
e = s.AddUserPost(ctx, tx, req.PostIds, userId)
|
|
|
|
|
liberr.ErrIsNil(ctx, e)
|
|
|
|
|
})
|
|
|
|
|
return err
|
|
|
|
|
})
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (s *sSysUser) Edit(ctx context.Context, req *system.UserEditReq) (err error) {
|
|
|
|
|
err = s.UserNameOrMobileExists(ctx, "", req.Mobile, req.UserId)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
err = g.DB().Transaction(ctx, func(ctx context.Context, tx gdb.TX) error {
|
|
|
|
|
err = g.Try(ctx, func(ctx context.Context) {
|
|
|
|
|
_, err = dao.SysUser.Ctx(ctx).TX(tx).WherePri(req.UserId).Update(do.SysUser{
|
|
|
|
|
Mobile: req.Mobile,
|
|
|
|
|
UserNickname: req.NickName,
|
|
|
|
|
UserStatus: req.Status,
|
|
|
|
|
UserEmail: req.Email,
|
|
|
|
|
Sex: req.Sex,
|
|
|
|
|
DeptId: req.DeptId,
|
|
|
|
|
Remark: req.Remark,
|
|
|
|
|
IsAdmin: req.IsAdmin,
|
|
|
|
|
})
|
|
|
|
|
liberr.ErrIsNil(ctx, err, "修改用户信息失败")
|
|
|
|
|
//设置用户所属角色信息
|
|
|
|
|
err = s.EditUserRole(ctx, req.RoleIds, req.UserId)
|
|
|
|
|
liberr.ErrIsNil(ctx, err, "设置用户权限失败")
|
|
|
|
|
err = s.AddUserPost(ctx, tx, req.PostIds, req.UserId)
|
|
|
|
|
liberr.ErrIsNil(ctx, err)
|
|
|
|
|
})
|
|
|
|
|
return err
|
|
|
|
|
})
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// AddUserPost 添加用户岗位信息
|
|
|
|
|
func (s *sSysUser) AddUserPost(ctx context.Context, tx gdb.TX, postIds []int64, userId int64) (err error) {
|
|
|
|
|
err = g.Try(ctx, func(ctx context.Context) {
|
|
|
|
|
//删除旧岗位信息
|
|
|
|
|
_, err = dao.SysUserPost.Ctx(ctx).TX(tx).Where(dao.SysUserPost.Columns().UserId, userId).Delete()
|
|
|
|
|
liberr.ErrIsNil(ctx, err, "设置用户岗位失败")
|
|
|
|
|
if len(postIds) == 0 {
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
//添加用户岗位信息
|
|
|
|
|
data := g.List{}
|
|
|
|
|
for _, v := range postIds {
|
|
|
|
|
data = append(data, g.Map{
|
|
|
|
|
dao.SysUserPost.Columns().UserId: userId,
|
|
|
|
|
dao.SysUserPost.Columns().PostId: v,
|
|
|
|
|
})
|
|
|
|
|
}
|
|
|
|
|
_, err = dao.SysUserPost.Ctx(ctx).TX(tx).Data(data).Insert()
|
|
|
|
|
liberr.ErrIsNil(ctx, err, "设置用户岗位失败")
|
|
|
|
|
})
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// AddUserRole 添加用户角色信息
|
|
|
|
|
func (s *sSysUser) addUserRole(ctx context.Context, roleIds []int64, userId int64) (err error) {
|
|
|
|
|
err = g.Try(ctx, func(ctx context.Context) {
|
|
|
|
|
enforcer, e := commonService.CasbinEnforcer(ctx)
|
|
|
|
|
liberr.ErrIsNil(ctx, e)
|
|
|
|
|
for _, v := range roleIds {
|
|
|
|
|
_, e = enforcer.AddGroupingPolicy(fmt.Sprintf("%s%d", s.casBinUserPrefix, userId), gconv.String(v))
|
|
|
|
|
liberr.ErrIsNil(ctx, e)
|
|
|
|
|
}
|
|
|
|
|
})
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// EditUserRole 修改用户角色信息
|
|
|
|
|
func (s *sSysUser) EditUserRole(ctx context.Context, roleIds []int64, userId int64) (err error) {
|
|
|
|
|
err = g.Try(ctx, func(ctx context.Context) {
|
|
|
|
|
enforcer, e := commonService.CasbinEnforcer(ctx)
|
|
|
|
|
liberr.ErrIsNil(ctx, e)
|
|
|
|
|
|
|
|
|
|
//删除用户旧角色信息
|
|
|
|
|
enforcer.RemoveFilteredGroupingPolicy(0, fmt.Sprintf("%s%d", s.casBinUserPrefix, userId))
|
|
|
|
|
for _, v := range roleIds {
|
|
|
|
|
_, err = enforcer.AddGroupingPolicy(fmt.Sprintf("%s%d", s.casBinUserPrefix, userId), gconv.String(v))
|
|
|
|
|
liberr.ErrIsNil(ctx, err)
|
|
|
|
|
}
|
|
|
|
|
})
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (s *sSysUser) UserNameOrMobileExists(ctx context.Context, userName, mobile string, id ...int64) error {
|
|
|
|
|
user := (*entity.SysUser)(nil)
|
|
|
|
|
err := g.Try(ctx, func(ctx context.Context) {
|
|
|
|
|
m := dao.SysUser.Ctx(ctx)
|
|
|
|
|
if len(id) > 0 {
|
|
|
|
|
m = m.Where(dao.SysUser.Columns().Id+" != ", id)
|
|
|
|
|
}
|
|
|
|
|
m = m.Where(fmt.Sprintf("%s='%s' OR %s='%s'",
|
|
|
|
|
dao.SysUser.Columns().UserName,
|
|
|
|
|
userName,
|
|
|
|
|
dao.SysUser.Columns().Mobile,
|
|
|
|
|
mobile))
|
|
|
|
|
err := m.Limit(1).Scan(&user)
|
|
|
|
|
liberr.ErrIsNil(ctx, err, "获取用户信息失败")
|
|
|
|
|
if user == nil {
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
if user.UserName == userName {
|
|
|
|
|
liberr.ErrIsNil(ctx, gerror.New("账号已存在"))
|
|
|
|
|
}
|
|
|
|
|
if user.Mobile == mobile {
|
|
|
|
|
liberr.ErrIsNil(ctx, gerror.New("手机号已存在"))
|
|
|
|
|
}
|
|
|
|
|
})
|
|
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// GetEditUser 获取编辑用户信息
|
|
|
|
|
func (s *sSysUser) GetEditUser(ctx context.Context, id uint64) (res *system.UserGetEditRes, err error) {
|
|
|
|
|
res = new(system.UserGetEditRes)
|
|
|
|
|
err = g.Try(ctx, func(ctx context.Context) {
|
|
|
|
|
//获取用户信息
|
|
|
|
|
res.User, err = s.GetUserInfoById(ctx, id)
|
|
|
|
|
liberr.ErrIsNil(ctx, err)
|
|
|
|
|
//获取已选择的角色信息
|
|
|
|
|
res.CheckedRoleIds, err = s.GetAdminRoleIds(ctx, id)
|
|
|
|
|
liberr.ErrIsNil(ctx, err)
|
|
|
|
|
res.CheckedPosts, err = s.GetUserPostIds(ctx, id)
|
|
|
|
|
liberr.ErrIsNil(ctx, err)
|
|
|
|
|
})
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// GetUserInfoById 通过Id获取用户信息
|
|
|
|
|
func (s *sSysUser) GetUserInfoById(ctx context.Context, id uint64, withPwd ...bool) (user *entity.SysUser, err error) {
|
|
|
|
|
err = g.Try(ctx, func(ctx context.Context) {
|
|
|
|
|
if len(withPwd) > 0 && withPwd[0] {
|
|
|
|
|
//用户用户信息
|
|
|
|
|
err = dao.SysUser.Ctx(ctx).Where(dao.SysUser.Columns().Id, id).Scan(&user)
|
|
|
|
|
} else {
|
|
|
|
|
//用户用户信息
|
|
|
|
|
err = dao.SysUser.Ctx(ctx).Where(dao.SysUser.Columns().Id, id).
|
|
|
|
|
FieldsEx(dao.SysUser.Columns().UserPassword, dao.SysUser.Columns().UserSalt).Scan(&user)
|
|
|
|
|
}
|
|
|
|
|
liberr.ErrIsNil(ctx, err, "获取用户数据失败")
|
|
|
|
|
})
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// GetUserPostIds 获取用户岗位
|
|
|
|
|
func (s *sSysUser) GetUserPostIds(ctx context.Context, userId uint64) (postIds []int64, err error) {
|
|
|
|
|
err = g.Try(ctx, func(ctx context.Context) {
|
|
|
|
|
var list []*entity.SysUserPost
|
|
|
|
|
err = dao.SysUserPost.Ctx(ctx).Where(dao.SysUserPost.Columns().UserId, userId).Scan(&list)
|
|
|
|
|
liberr.ErrIsNil(ctx, err, "获取用户岗位信息失败")
|
|
|
|
|
postIds = make([]int64, 0)
|
|
|
|
|
for _, entity := range list {
|
|
|
|
|
postIds = append(postIds, entity.PostId)
|
|
|
|
|
}
|
|
|
|
|
})
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// ResetUserPwd 重置用户密码
|
|
|
|
|
func (s *sSysUser) ResetUserPwd(ctx context.Context, req *system.UserResetPwdReq) (err error) {
|
|
|
|
|
salt := grand.S(10)
|
|
|
|
|
password := libUtils.EncryptPassword(req.Password, salt)
|
|
|
|
|
err = g.Try(ctx, func(ctx context.Context) {
|
|
|
|
|
_, err = dao.SysUser.Ctx(ctx).WherePri(req.Id).Update(g.Map{
|
|
|
|
|
dao.SysUser.Columns().UserSalt: salt,
|
|
|
|
|
dao.SysUser.Columns().UserPassword: password,
|
|
|
|
|
})
|
|
|
|
|
liberr.ErrIsNil(ctx, err, "重置用户密码失败")
|
|
|
|
|
})
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (s *sSysUser) ChangeUserStatus(ctx context.Context, req *system.UserStatusReq) (err error) {
|
|
|
|
|
err = g.Try(ctx, func(ctx context.Context) {
|
|
|
|
|
_, err = dao.SysUser.Ctx(ctx).WherePri(req.Id).Update(do.SysUser{UserStatus: req.UserStatus})
|
|
|
|
|
liberr.ErrIsNil(ctx, err, "设置用户状态失败")
|
|
|
|
|
})
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Delete 删除用户
|
|
|
|
|
func (s *sSysUser) Delete(ctx context.Context, ids []int) (err error) {
|
|
|
|
|
err = g.DB().Transaction(ctx, func(ctx context.Context, tx gdb.TX) error {
|
|
|
|
|
err = g.Try(ctx, func(ctx context.Context) {
|
|
|
|
|
_, err = dao.SysUser.Ctx(ctx).TX(tx).Where(dao.SysUser.Columns().Id+" in(?)", ids).Delete()
|
|
|
|
|
liberr.ErrIsNil(ctx, err, "删除用户失败")
|
|
|
|
|
//删除对应权限
|
|
|
|
|
enforcer, e := commonService.CasbinEnforcer(ctx)
|
|
|
|
|
liberr.ErrIsNil(ctx, e)
|
|
|
|
|
for _, v := range ids {
|
|
|
|
|
enforcer.RemoveFilteredGroupingPolicy(0, fmt.Sprintf("%s%d", s.casBinUserPrefix, v))
|
|
|
|
|
}
|
|
|
|
|
//删除用户对应的岗位
|
|
|
|
|
_, err = dao.SysUserPost.Ctx(ctx).TX(tx).Delete(dao.SysUserPost.Columns().UserId+" in (?)", ids)
|
|
|
|
|
liberr.ErrIsNil(ctx, err, "删除用户的岗位失败")
|
|
|
|
|
})
|
|
|
|
|
return err
|
|
|
|
|
})
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// GetUsers 通过用户ids查询多个用户信息
|
|
|
|
|
func (s *sSysUser) GetUsers(ctx context.Context, ids []int) (users []*model.SysUserSimpleRes, err error) {
|
|
|
|
|
if len(ids) == 0 {
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
idsSet := gset.NewIntSetFrom(ids).Slice()
|
|
|
|
|
err = g.Try(ctx, func(ctx context.Context) {
|
|
|
|
|
err = dao.SysUser.Ctx(ctx).Where(dao.SysUser.Columns().Id+" in(?)", idsSet).
|
|
|
|
|
Order(dao.SysUser.Columns().Id + " ASC").Scan(&users)
|
|
|
|
|
})
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (s *sSysUser) IsSuperAdmin(ctx context.Context, req *system.IsSuperAdminReq) (isSuperAdmin bool, err error) {
|
|
|
|
|
_ = req
|
|
|
|
|
isSuperAdmin = false
|
|
|
|
|
// 获取用户id
|
|
|
|
|
getUserInfo, err := utils.GetUserInfo(ctx)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
userId := getUserInfo.Id
|
|
|
|
|
if !g.IsEmpty(userId) {
|
|
|
|
|
var roleIds []uint
|
|
|
|
|
roleIds, err = service.SysUser().GetAdminRoleIds(ctx, gconv.Uint64(userId))
|
|
|
|
|
liberr.ErrIsNil(ctx, err, "获取用户角色失败")
|
|
|
|
|
for _, v := range roleIds {
|
|
|
|
|
if v == consts.SuperAdminId {
|
|
|
|
|
isSuperAdmin = true
|
|
|
|
|
return
|
|
|
|
|
} else {
|
|
|
|
|
isSuperAdmin = false
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return
|
|
|
|
|
}
|
2026-05-09 10:30:31 +08:00
|
|
|
|
|
|
|
|
func (s *sSysUser) IsAdmin(ctx context.Context, req *system.IsAdminReq) (isSuperAdmin bool, err error) {
|
|
|
|
|
_ = req
|
|
|
|
|
isSuperAdmin = false
|
|
|
|
|
// 获取用户id
|
|
|
|
|
getUserInfo, err := utils.GetUserInfo(ctx)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
userId := getUserInfo.Id
|
|
|
|
|
if !g.IsEmpty(userId) {
|
|
|
|
|
var roleIds []uint
|
|
|
|
|
roleIds, err = service.SysUser().GetAdminRoleIds(ctx, gconv.Uint64(userId))
|
|
|
|
|
liberr.ErrIsNil(ctx, err, "获取用户角色失败")
|
|
|
|
|
for _, v := range roleIds {
|
|
|
|
|
if v == consts.SuperAdminId || v == consts.SiteAdminId {
|
|
|
|
|
isSuperAdmin = true
|
|
|
|
|
return
|
|
|
|
|
} else {
|
|
|
|
|
isSuperAdmin = false
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return
|
|
|
|
|
}
|
