alien
/
group_manage


			
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237
							# -*- coding: utf-8 -*-
# @Author  : YY

from typing import Annotated, List
from pydantic import BeforeValidator, Field

from ruoyi_common.constant import UserConstants
from ruoyi_common.base.transformer import ids_to_list
from ruoyi_common.base.model import AjaxResponse, TableResponse
from ruoyi_common.domain.entity import SysRole
from ruoyi_common.domain.enum import BusinessType
from ruoyi_common.descriptor.serializer import BaseSerializer, JsonSerializer
from ruoyi_common.descriptor.validator import BodyValidator, QueryValidator,PathValidator
from ruoyi_common.utils import security_util as SecurityUtil
from ruoyi_system.domain.entity import SysUserRole
from ruoyi_system.service import SysRoleService,SysUserService
from ruoyi_framework.descriptor.log import Log
from ruoyi_framework.descriptor.permission import HasPerm, PreAuthorize
from ... import reg


@reg.api.route("/system/role/list", methods=["GET"])
@QueryValidator(is_page=True)
@PreAuthorize(HasPerm("system:role:list"))
@JsonSerializer()
def system_role_list(dto:SysRole):
    '''
        获取角色列表
    '''
    rows = SysRoleService.select_role_list(dto)
    return TableResponse(rows=rows)


@reg.api.route("/system/role/<int:id>", methods=["GET"])
@PathValidator()
@PreAuthorize(HasPerm("system:role:query"))
@JsonSerializer()
def system_role_detail(id:int):
    '''
        获取角色详情
    '''
    SysRoleService.check_role_data_scope(id)
    eo = SysRoleService.select_role_by_id(id)
    return AjaxResponse.from_success(data=eo) \
        if eo else AjaxResponse.from_error()


@reg.api.route("/system/role/export", methods=["POST"])
@BodyValidator()
@PreAuthorize(HasPerm("system:role:export"))
@Log(title="角色管理",business_type=BusinessType.EXPORT)
@BaseSerializer()
def system_role_export(dto:SysRole):
    '''
        导出角色
    '''
    # todo
    rows = SysRoleService.select_role_list(dto)
    table_response = TableResponse(rows=rows)
    return table_response


@reg.api.route("/system/role", methods=["POST"])
@BodyValidator()
@PreAuthorize(HasPerm("system:role:add"))
@Log(title="角色管理",business_type=BusinessType.INSERT)
@JsonSerializer()
def system_role_create(dto:SysRole):
    '''
        创建角色
    '''
    if UserConstants.NOT_UNIQUE == SysRoleService.check_role_name_unique(dto):
        return AjaxResponse.from_error(f"新增角色'{dto.role_name}'失败，角色名称已存在")
    elif UserConstants.NOT_UNIQUE == \
        SysRoleService.check_role_key_unique(dto):
        return AjaxResponse.from_error(f"新增角色'{dto.role_name}'失败，角色权限已存在")
    dto.create_by_user(SecurityUtil.get_username())
    SysRoleService.insert_role(dto)
    return AjaxResponse.from_success()


@reg.api.route("/system/role", methods=["PUT"])
@BodyValidator()
@PreAuthorize(HasPerm("system:role:edit"))
@Log(title="角色管理",business_type=BusinessType.UPDATE)
@JsonSerializer()
def system_role_update(dto:SysRole):
    '''
        修改角色
    '''
    SysRoleService.check_role_allowed(dto)
    SysRoleService.check_role_data_scope(dto.role_id)
    if UserConstants.NOT_UNIQUE == SysRoleService.check_role_name_unique(dto):
        return AjaxResponse.from_error(f"新增角色'{dto.role_name}'失败，角色名称已存在")
    elif UserConstants.NOT_UNIQUE == \
        SysRoleService.check_role_key_unique(dto):
        return AjaxResponse.from_error(f"新增角色'{dto.role_name}'失败，角色权限已存在")
    dto.update_by_user(SecurityUtil.get_username())
    SysRoleService.update_role(dto)
    return AjaxResponse.from_success()


@reg.api.route("/system/role/dataScope", methods=["PUT"])
@BodyValidator()
@PreAuthorize(HasPerm("system:role:edit"))
@Log(title="角色管理",business_type=BusinessType.UPDATE)
@JsonSerializer()
def system_data_scope_update(dto:SysRole):
    '''
        修改数据权限
    '''
    # 校验是否允许操作该角色、以及当前用户是否有该角色的数据权限
    SysRoleService.check_role_allowed(dto)
    SysRoleService.check_role_data_scope(dto.role_id)
    # 记录操作人
    dto.update_by_user(SecurityUtil.get_username())
    # 保存数据范围与角色-部门关联
    flag = SysRoleService.auth_data_scope(dto)
    return AjaxResponse.from_success() if flag else AjaxResponse.from_error()


@reg.api.route("/system/role/changeStatus", methods=["PUT"])
@BodyValidator()
@PreAuthorize(HasPerm("system:role:edit"))
@Log(title="角色管理",business_type=BusinessType.UPDATE)
@JsonSerializer()
def system_role_change_status(dto:SysRole):
    '''
        修改角色状态
    '''
    SysRoleService.check_role_allowed(dto)
    SysRoleService.check_role_data_scope(dto.role_id)
    flag = SysRoleService.update_role_status(dto)
    return AjaxResponse.from_success() if flag else AjaxResponse.from_error()


@reg.api.route("/system/role/<ids>", methods=["DELETE"])
@PathValidator()
@PreAuthorize(HasPerm("system:role:remove"))
@Log(title="角色管理",business_type=BusinessType.DELETE)
@JsonSerializer()
def system_role_delete(
    ids: Annotated[List[int],BeforeValidator(ids_to_list)]
):
    '''
        删除角色
    '''
    SysRoleService.delete_role_by_ids(ids)
    return AjaxResponse.from_success()


@reg.api.route("/system/role/optionselect", methods=["GET"])
@PreAuthorize(HasPerm("system:role:query"))
@JsonSerializer()
def system_role_options():
    '''
        获取角色选择框列表
    '''
    rows = SysRoleService.select_role_all()
    return AjaxResponse.from_success(data=rows)


@reg.api.route("/system/role/authUser/allocatedList", methods=["GET"])
@QueryValidator(is_page=True)
@PreAuthorize(HasPerm("system:role:list"))
@JsonSerializer()
def system_role_user_allocated_list(dto:SysRole):
    '''
        获取角色选择框列表
    '''
    rows = SysUserService.select_allocated_list(dto)
    return TableResponse(rows=rows)


@reg.api.route("/system/role/authUser/unallocatedList", methods=["GET"])
@QueryValidator(is_page=True)
@PreAuthorize(HasPerm("system:role:list"))
@JsonSerializer()
def system_role_user_unallocated_list(dto:SysRole):
    '''
        查询未分配用户角色列表
    '''
    rows = SysUserService.select_unallocated_list(dto)
    return TableResponse(rows=rows)


@reg.api.route("/system/role/authUser/cancel", methods=["PUT"])
@BodyValidator()
@PreAuthorize(HasPerm("system:role:edit"))
@Log(title="角色管理",business_type=BusinessType.GRANT)
@JsonSerializer()
def system_role_user_cancel(dto:SysUserRole):
    '''
        取消授权用户
    '''
    flag = SysRoleService.delete_auth_user(dto)
    return AjaxResponse.from_success() if flag else AjaxResponse.from_error()


@reg.api.route("/system/role/authUser/cancelAll", methods=["PUT"])
@BodyValidator()
@PreAuthorize(HasPerm("system:role:edit"))
@Log(title="角色管理",business_type=BusinessType.GRANT)
@JsonSerializer()
def system_role_user_cancel_all(
    role_id:Annotated[int,Field(gt=0)], 
    user_ids:Annotated[List[int],Field(default_factory=List)]
):
    '''
        批量取消授权用户
    '''
    flag = SysRoleService.delete_auth_users(
        role_id=role_id, 
        user_ids=user_ids
        )
    return AjaxResponse.from_success() if flag else AjaxResponse.from_error()


@reg.api.route("/system/role/authUser/selectAll", methods=["PUT"])
@BodyValidator()
@PreAuthorize(HasPerm("system:role:edit"))
@Log(title="角色管理",business_type=BusinessType.GRANT)
@JsonSerializer()
def system_role_user_select_all(
    role_id:Annotated[int,Field(gt=0)], 
    user_ids:Annotated[List[int],Field(default_factory=List)]
):
    '''
        批量选择授权用户
    '''
    SysRoleService.check_role_data_scope(role_id)
    flag = SysRoleService.insert_auth_users(
        role_id=role_id, 
        user_ids=user_ids
        )
    return AjaxResponse.from_success() if flag else AjaxResponse.from_error()