import { ALL, Body, Controller, Inject, Post, Provide, Query } from "@midwayjs/core"; import { Constants, CrudController } from "@certd/lib-server"; import { AccessService } from "@certd/lib-server"; import { AuthService } from "../../../modules/sys/authority/service/auth-service.js"; import { AccessDefine } from "@certd/pipeline"; import { ApiTags } from "@midwayjs/swagger"; import { AuditType } from "../../../modules/sys/enterprise/service/audit-constants.js"; /** * 授权 */ @Provide() @ApiTags(["pipeline-access"]) @Controller("/api/pi/access") export class AccessController extends CrudController { @Inject() service: AccessService; @Inject() authService: AuthService; getService(): AccessService { return this.service; } getAuditType(): string { return AuditType.access.value; } @Post("/page", { description: Constants.per.authOnly, summary: "查询授权配置分页列表" }) async page(@Body(ALL) body) { const { projectId, userId } = await this.getProjectUserIdRead(); body.query = body.query ?? {}; delete body.query.userId; body.query.userId = userId; body.query.projectId = projectId; const name = body.query?.name; delete body.query.name; const buildQuery = qb => { if (name) { qb.andWhere("name like :name", { name: `%${name.trim()}%` }); } }; const res = await this.service.page({ query: body.query, page: body.page, sort: body.sort, buildQuery, }); return this.ok(res); } @Post("/list", { description: Constants.per.authOnly, summary: "查询授权配置列表" }) async list(@Body(ALL) body) { const { projectId, userId } = await this.getProjectUserIdRead(); body.query = body.query ?? {}; body.query.userId = userId; body.query.projectId = projectId; return super.list(body); } @Post("/add", { description: Constants.per.authOnly, summary: "添加授权配置" }) async add(@Body(ALL) bean) { const { projectId, userId } = await this.getProjectUserIdWrite(); bean.userId = userId; bean.projectId = projectId; const res = await super.add(bean); this.auditLog({ content: `新增了授权「${bean.name}」(ID:${res.data}, 类型:${bean.type})`, }); return res; } @Post("/update", { description: Constants.per.authOnly, summary: "更新授权配置" }) async update(@Body(ALL) bean) { await this.checkOwner(this.getService(), bean.id, "write"); delete bean.userId; delete bean.projectId; const res = await super.update(bean); this.auditLog({ content: `修改了授权「${bean.name}」(ID:${bean.id})`, }); return res; } @Post("/info", { description: Constants.per.authOnly, summary: "查询授权配置详情" }) async info(@Query("id") id: number) { await this.checkOwner(this.getService(), id, "read"); return super.info(id); } @Post("/delete", { description: Constants.per.authOnly, summary: "删除授权配置" }) async delete(@Query("id") id: number) { await this.checkOwner(this.getService(), id, "write"); const res = await super.delete(id); this.auditLog({ content: `删除了授权(ID:${id})`, }); return res; } @Post("/define", { description: Constants.per.authOnly, summary: "查询授权插件定义" }) async define(@Query("type") type: string) { const access = this.service.getDefineByType(type); return this.ok(access); } @Post("/getSecretPlain", { description: Constants.per.authOnly, summary: "获取授权配置明文密钥" }) async getSecretPlain(@Body(ALL) body: { id: number; key: string }) { const { userId, projectId } = await this.checkOwner(this.getService(), body.id, "read"); const value = await this.service.getById(body.id, userId, projectId); return this.ok(value[body.key]); } @Post("/accessTypeDict", { description: Constants.per.authOnly, summary: "查询授权类型字典" }) async getAccessTypeDict() { let list: AccessDefine[] = this.service.getDefineList(); list = list.sort((a, b) => { return (a.order ?? 10) - (b.order ?? 10); }); const dict = []; for (const item of list) { dict.push({ value: item.name, label: item.title, icon: item.icon, }); } return this.ok(dict); } @Post("/simpleInfo", { description: Constants.per.authOnly, summary: "查询授权配置简单信息" }) async simpleInfo(@Query("id") id: number) { // await this.authService.checkUserIdButAllowAdmin(this.ctx, this.service, id); // await this.checkOwner(this.getService(), id, "read",true); const res = await this.service.getSimpleInfo(id); return this.ok(res); } @Post("/getDictByIds", { description: Constants.per.authOnly, summary: "根据ID列表获取授权配置字典" }) async getDictByIds(@Body("ids") ids: number[]) { const { userId, projectId } = await this.getProjectUserIdRead(); const res = await this.service.getSimpleByIds(ids, userId, projectId); return this.ok(res); } }