mirror of
https://github.com/certd/certd.git
synced 2026-07-13 08:47:34 +08:00
144 lines
5.0 KiB
TypeScript
144 lines
5.0 KiB
TypeScript
import { ALL, Body, Controller, Inject, Post, Provide, Query } from "@midwayjs/core";
|
|
import { Constants, CrudController } from "@certd/lib-server";
|
|
import { AccessService } from "@certd/lib-server";
|
|
import { AuthService } from "../../../modules/sys/authority/service/auth-service.js";
|
|
import { AccessDefine } from "@certd/pipeline";
|
|
import { ApiTags } from "@midwayjs/swagger";
|
|
import { AuditType } from "../../../modules/sys/enterprise/service/audit-constants.js";
|
|
|
|
/**
|
|
* 授权
|
|
*/
|
|
@Provide()
|
|
@ApiTags(["pipeline-access"])
|
|
@Controller("/api/pi/access")
|
|
export class AccessController extends CrudController<AccessService> {
|
|
@Inject()
|
|
service: AccessService;
|
|
@Inject()
|
|
authService: AuthService;
|
|
getService(): AccessService {
|
|
return this.service;
|
|
}
|
|
|
|
getAuditType(): string {
|
|
return AuditType.access.value;
|
|
}
|
|
|
|
@Post("/page", { description: Constants.per.authOnly, summary: "查询授权配置分页列表" })
|
|
async page(@Body(ALL) body) {
|
|
const { projectId, userId } = await this.getProjectUserIdRead();
|
|
body.query = body.query ?? {};
|
|
delete body.query.userId;
|
|
body.query.userId = userId;
|
|
body.query.projectId = projectId;
|
|
const name = body.query?.name;
|
|
delete body.query.name;
|
|
const buildQuery = qb => {
|
|
if (name) {
|
|
qb.andWhere("name like :name", { name: `%${name.trim()}%` });
|
|
}
|
|
};
|
|
const res = await this.service.page({
|
|
query: body.query,
|
|
page: body.page,
|
|
sort: body.sort,
|
|
buildQuery,
|
|
});
|
|
return this.ok(res);
|
|
}
|
|
|
|
@Post("/list", { description: Constants.per.authOnly, summary: "查询授权配置列表" })
|
|
async list(@Body(ALL) body) {
|
|
const { projectId, userId } = await this.getProjectUserIdRead();
|
|
body.query = body.query ?? {};
|
|
body.query.userId = userId;
|
|
body.query.projectId = projectId;
|
|
return super.list(body);
|
|
}
|
|
|
|
@Post("/add", { description: Constants.per.authOnly, summary: "添加授权配置" })
|
|
async add(@Body(ALL) bean) {
|
|
const { projectId, userId } = await this.getProjectUserIdWrite();
|
|
bean.userId = userId;
|
|
bean.projectId = projectId;
|
|
const res = await super.add(bean);
|
|
this.auditLog({
|
|
content: `新增了授权「${bean.name}」(ID:${res.data}, 类型:${bean.type})`,
|
|
});
|
|
return res;
|
|
}
|
|
|
|
@Post("/update", { description: Constants.per.authOnly, summary: "更新授权配置" })
|
|
async update(@Body(ALL) bean) {
|
|
await this.checkOwner(this.getService(), bean.id, "write");
|
|
delete bean.userId;
|
|
delete bean.projectId;
|
|
const res = await super.update(bean);
|
|
this.auditLog({
|
|
content: `修改了授权「${bean.name}」(ID:${bean.id})`,
|
|
});
|
|
return res;
|
|
}
|
|
@Post("/info", { description: Constants.per.authOnly, summary: "查询授权配置详情" })
|
|
async info(@Query("id") id: number) {
|
|
await this.checkOwner(this.getService(), id, "read");
|
|
return super.info(id);
|
|
}
|
|
|
|
@Post("/delete", { description: Constants.per.authOnly, summary: "删除授权配置" })
|
|
async delete(@Query("id") id: number) {
|
|
await this.checkOwner(this.getService(), id, "write");
|
|
const res = await super.delete(id);
|
|
this.auditLog({
|
|
content: `删除了授权(ID:${id})`,
|
|
});
|
|
return res;
|
|
}
|
|
|
|
@Post("/define", { description: Constants.per.authOnly, summary: "查询授权插件定义" })
|
|
async define(@Query("type") type: string) {
|
|
const access = this.service.getDefineByType(type);
|
|
return this.ok(access);
|
|
}
|
|
|
|
@Post("/getSecretPlain", { description: Constants.per.authOnly, summary: "获取授权配置明文密钥" })
|
|
async getSecretPlain(@Body(ALL) body: { id: number; key: string }) {
|
|
const { userId, projectId } = await this.checkOwner(this.getService(), body.id, "read");
|
|
const value = await this.service.getById(body.id, userId, projectId);
|
|
return this.ok(value[body.key]);
|
|
}
|
|
|
|
@Post("/accessTypeDict", { description: Constants.per.authOnly, summary: "查询授权类型字典" })
|
|
async getAccessTypeDict() {
|
|
let list: AccessDefine[] = this.service.getDefineList();
|
|
list = list.sort((a, b) => {
|
|
return (a.order ?? 10) - (b.order ?? 10);
|
|
});
|
|
const dict = [];
|
|
for (const item of list) {
|
|
dict.push({
|
|
value: item.name,
|
|
label: item.title,
|
|
icon: item.icon,
|
|
});
|
|
}
|
|
return this.ok(dict);
|
|
}
|
|
|
|
@Post("/simpleInfo", { description: Constants.per.authOnly, summary: "查询授权配置简单信息" })
|
|
async simpleInfo(@Query("id") id: number) {
|
|
// await this.authService.checkUserIdButAllowAdmin(this.ctx, this.service, id);
|
|
// await this.checkOwner(this.getService(), id, "read",true);
|
|
const res = await this.service.getSimpleInfo(id);
|
|
return this.ok(res);
|
|
}
|
|
|
|
@Post("/getDictByIds", { description: Constants.per.authOnly, summary: "根据ID列表获取授权配置字典" })
|
|
async getDictByIds(@Body("ids") ids: number[]) {
|
|
const { userId, projectId } = await this.getProjectUserIdRead();
|
|
const res = await this.service.getSimpleByIds(ids, userId, projectId);
|
|
return this.ok(res);
|
|
}
|
|
}
|