tongtong/youlai-boot
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix: 非超级管理员限制无权限查看超级管理员账号的问题修复

Browse Source
This commit is contained in:
Ray.Hao
2025-03-09 23:38:47 +08:00
parent ace1e95d8b
commit c820abb027
3 changed files with 64 additions and 13 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
src/main/java/com/youlai/boot/system/model/query/UserPageQuery.java
View File

@@ -1,6 +1,7 @@
package com.youlai.boot.system.model.query; package com.youlai.boot.system.model.query;
import cn.hutool.db.sql.Direction; import cn.hutool.db.sql.Direction;
import com.fasterxml.jackson.annotation.JsonIgnore;
import com.youlai.boot.common.base.BasePageQuery; import com.youlai.boot.common.base.BasePageQuery;
import com.youlai.boot.common.annotation.ValidField; import com.youlai.boot.common.annotation.ValidField;
import io.swagger.v3.oas.annotations.media.Schema; import io.swagger.v3.oas.annotations.media.Schema;
@@ -36,11 +37,17 @@ public class UserPageQuery extends BasePageQuery {
private List<String> createTime; private List<String> createTime;
@Schema(description = "排序的字段") @Schema(description = "排序的字段")
@ValidField(allowedValues = {"create_time","update_time"}) @ValidField(allowedValues = {"create_time", "update_time"})
private String field; private String field;
@Schema(description = "排序方式(正序:ASC反序:DESC") @Schema(description = "排序方式(正序:ASC反序:DESC")
private Direction direction; private Direction direction;
/**
* 是否超级管理员
*/
@JsonIgnore
@Schema(hidden = true)
private Boolean isRoot;
} }

42
src/main/java/com/youlai/boot/system/service/impl/UserServiceImpl.java
View File

@@ -86,6 +86,10 @@ public class UserServiceImpl extends ServiceImpl<UserMapper, User> implements Us
int pageNum = queryParams.getPageNum(); int pageNum = queryParams.getPageNum();
int pageSize = queryParams.getPageSize(); int pageSize = queryParams.getPageSize();
Page<UserBO> page = new Page<>(pageNum, pageSize); Page<UserBO> page = new Page<>(pageNum, pageSize);
boolean isRoot = SecurityUtils.isRoot();
queryParams.setIsRoot(isRoot);
// 查询数据 // 查询数据
Page<UserBO> userPage = this.baseMapper.getUserPage(page, queryParams); Page<UserBO> userPage = this.baseMapper.getUserPage(page, queryParams);
@@ -276,15 +280,35 @@ public class UserServiceImpl extends ServiceImpl<UserMapper, User> implements Us
*/ */
@Override @Override
public List<UserExportDTO> listExportUsers(UserPageQuery queryParams) { public List<UserExportDTO> listExportUsers(UserPageQuery queryParams) {
List<UserExportDTO> userExportDTOS = this.baseMapper.listExportUsers(queryParams);
//获取角色的字典数据 boolean isRoot = SecurityUtils.isRoot();
List<DictData> list = dictDataService.list(new LambdaQueryWrapper<DictData>().eq(DictData::getDictCode, DictCodeEnum.GENDER.getValue())); queryParams.setIsRoot(isRoot);
Map<String, String> genderMap = list.stream().collect(Collectors.toMap(DictData::getValue, DictData::getLabel));
userExportDTOS.forEach(userExportDTO -> { List<UserExportDTO> exportUsers = this.baseMapper.listExportUsers(queryParams);
String genderLabel = genderMap.get(userExportDTO.getGender()); if (CollectionUtil.isNotEmpty(exportUsers)) {
userExportDTO.setGender(genderLabel); //获取角色的字典数据
}); Map<String, String> genderMap = dictDataService.list(
return null; new LambdaQueryWrapper<DictData>().eq(DictData::getDictCode,
DictCodeEnum.GENDER.getValue())
).stream()
.collect(Collectors.toMap(DictData::getValue, DictData::getLabel)
);
exportUsers.forEach(item -> {
String gender = item.getGender();
if (StrUtil.isBlank(gender)) {
return;
}
// 判断map是否为空
if (genderMap.isEmpty()) {
return;
}
item.setGender(genderMap.get(gender));
});
}
return exportUsers;
} }
/** /**

26
src/main/resources/mapper/system/UserMapper.xml
View File

@@ -24,9 +24,18 @@
LEFT JOIN sys_user_role sur ON u.id = sur.user_id LEFT JOIN sys_user_role sur ON u.id = sur.user_id
LEFT JOIN sys_role r ON sur.role_id = r.id LEFT JOIN sys_role r ON sur.role_id = r.id
<where> <where>
u.is_deleted = 0 AND u.username != 'root' u.is_deleted = 0
<!-- 超级管理员不显示在列表 --> <if test="!queryParams.isRoot">
AND r.code != '${@com.youlai.boot.common.constant.SystemConstants@ROOT_ROLE_CODE}' AND NOT EXISTS (
SELECT
1
FROM sys_user_role sur
INNER JOIN sys_role r ON sur.role_id = r.id
WHERE
sur.user_id = u.id
AND r.code = '${@com.youlai.boot.common.constant.SystemConstants@ROOT_ROLE_CODE}'
)
</if>
<if test='queryParams.keywords!=null and queryParams.keywords.trim() neq ""'> <if test='queryParams.keywords!=null and queryParams.keywords.trim() neq ""'>
AND ( AND (
u.username LIKE CONCAT('%',#{queryParams.keywords},'%') u.username LIKE CONCAT('%',#{queryParams.keywords},'%')
@@ -188,6 +197,17 @@
LEFT JOIN sys_dept d ON u.dept_id = d.id LEFT JOIN sys_dept d ON u.dept_id = d.id
<where> <where>
u.is_deleted = 0 u.is_deleted = 0
<if test="!isRoot">
AND NOT EXISTS (
SELECT
1
FROM sys_user_role sur
INNER JOIN sys_role r ON sur.role_id = r.id
WHERE
sur.user_id = u.id
AND r.code = '${@com.youlai.boot.common.constant.SystemConstants@ROOT_ROLE_CODE}'
)
</if>
<if test='keywords!=null and keywords.trim() neq ""'> <if test='keywords!=null and keywords.trim() neq ""'>
AND (u.username LIKE CONCAT('%',#{keywords},'%') AND (u.username LIKE CONCAT('%',#{keywords},'%')
OR u.nickname LIKE CONCAT('%',#{keywords},'%') OR u.nickname LIKE CONCAT('%',#{keywords},'%')