云易保客户服务系统
blame | 历史 | 原始文档
jiangping
2024-03-05 2e1ac74716f62ca5712d0187cb7d7d25ee13efe5 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84

package com.doumee.core.aware;


 


import com.doumee.core.constants.DataPermissionConstants;


import com.doumee.core.model.LoginUserInfo;


import com.doumee.dao.system.model.SystemDataPermission;


import com.doumee.service.system.SystemDataPermissionService;


import lombok.extern.slf4j.Slf4j;


import org.apache.shiro.SecurityUtils;


import org.springframework.beans.factory.annotation.Autowired;


import org.springframework.core.annotation.AnnotationConfigurationException;


import org.springframework.stereotype.Component;


import org.springframework.util.CollectionUtils;


 


import java.lang.reflect.Method;


import java.util.*;


 


/**


 * 默认数据权限控制


 *


 * @author Eva.Caesar Liu


 * @date 2023/02/14 11:14


 */


@Slf4j


@Component


public abstract class DefaultDataPermissionAware<T> implements DataPermissionAware<T> {


 


    @Autowired


    private SystemDataPermissionService systemDataPermissionService;


 


    /**


     * 执行数据权限查询


     *


     * @return List<T>


     */


    public List<T> execute() {


        try {


            // 获取登录用户


            LoginUserInfo loginUserInfo = (LoginUserInfo) SecurityUtils.getSubject().getPrincipal();


            // 获取数据权限配置


            List<SystemDataPermission> dataPermissions = systemDataPermissionService.findDataPermission(this.module().getBusinessCode(), loginUserInfo.getRoles());


            // - 无数据权限配置返回默认数据


            if (CollectionUtils.isEmpty(dataPermissions)) {


                return this.defaultData(loginUserInfo.getId());


            }


            // 按角色的数据权限优先级返回数据


            // - 将权限方法优先级排列


            Method[] methods = this.getClass().getDeclaredMethods();


            Map<Integer, Method> sortedMethods = new TreeMap<>();


            for (Method method : methods) {


                DataPermissionMapping mapping = method.getAnnotation(DataPermissionMapping.class);


                if (mapping == null) {


                    continue;


                }


                if (sortedMethods.get(mapping.priority()) != null) {


                    throw new AnnotationConfigurationException("Data permission contains the same priority.");


                }


                sortedMethods.put(mapping.priority(), method);


            }


            // - 按序执行权限方法


            for (Map.Entry<Integer, Method> entry : sortedMethods.entrySet()) {


                Method method = entry.getValue();


                DataPermissionMapping mapping = method.getAnnotation(DataPermissionMapping.class);


                for (SystemDataPermission dataPermission : dataPermissions) {


                    if (dataPermission.getType().equals(mapping.value().getCode())) {


                        if (mapping.injectCustomData() && mapping.injectUser()) {


                            return (List<T>) method.invoke(this, loginUserInfo.getId(), dataPermission.getCustomData());


                        }


                        if (mapping.injectUser()) {


                            return (List<T>) method.invoke(this, loginUserInfo.getId());


                        }


                        if (mapping.injectCustomData()) {


                            return (List<T>) method.invoke(this, dataPermission.getCustomData());


                        }


                        return (List<T>) method.invoke(this);


                    }


                }


            }


        } catch (Exception e) {


            throw new AnnotationConfigurationException("Data permission dead.", e);


        }


        throw new IllegalStateException("No type found of data permission.");


    }


 


}