hejl
/
manta
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
267 Commits
1 Branch
0 Tags
625 MiB
Branch: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
manta/gofaster/backend/internal/shared/middleware/permission_middleware.go

112 lines
2.8 KiB
Raw Permalink Normal View History Unescape

new create
1 month ago
package middleware
import (
权限管理功能--自动路由信息提取
1 week ago
"fmt"
统一图标方案,增加角色管理,修复界面错误
1 week ago
"net/http"
权限管理功能--自动路由信息提取
1 week ago
"gofaster/internal/auth/model"
统一图标方案,增加角色管理,修复界面错误
1 week ago
"gofaster/internal/auth/repository"
new create
1 month ago
"github.com/gin-gonic/gin"
统一图标方案,增加角色管理,修复界面错误
1 week ago
"gorm.io/gorm"
new create
1 month ago
)
权限管理功能--自动路由信息提取
1 week ago
// PermissionMiddleware 权限中间件
func PermissionMiddleware(db *gorm.DB, jwtSecret string) gin.HandlerFunc {
new create
1 month ago
return func(c *gin.Context) {
权限管理功能--自动路由信息提取
1 week ago
// 获取用户信息
userID := GetUserID(c)
if userID == 0 {
c.JSON(http.StatusUnauthorized, gin.H{"error": "用户未认证"})
c.Abort()
new create
1 month ago
return
}
权限管理功能--自动路由信息提取
1 week ago
// 获取当前请求的路由信息
path := c.Request.URL.Path
统一图标方案,增加角色管理,修复界面错误
1 week ago
权限管理功能--自动路由信息提取
1 week ago
// 检查路由映射
清理权限表结构
9 hours ago
authResourcesRepo := repository.NewAuthResourcesRepository(db)
routeMappings, err := authResourcesRepo.FindByBackendRoute(path)
清理权限模型
10 hours ago
if err != nil || len(routeMappings) == 0 {
权限管理功能--自动路由信息提取
1 week ago
// 如果找不到路由映射,允许通过(可能是公开接口)
c.Next()
统一图标方案,增加角色管理,修复界面错误
1 week ago
return
}
权限管理功能--自动路由信息提取
1 week ago
// 检查用户是否有权限访问该路由
清理权限模型
10 hours ago
if err := checkUserPermission(db, userID, routeMappings[0]); err != nil {
权限管理功能--自动路由信息提取
1 week ago
c.JSON(http.StatusForbidden, gin.H{"error": fmt.Sprintf("权限不足: %s", err.Error())})
c.Abort()
统一图标方案,增加角色管理,修复界面错误
1 week ago
return
}
c.Next()
}
}
权限管理功能--自动路由信息提取
1 week ago
// checkUserPermission 检查用户权限
清理权限表结构
9 hours ago
func checkUserPermission(db *gorm.DB, userID uint, routeMapping *model.AuthResources) error {
权限管理功能--自动路由信息提取
1 week ago
// 这里实现三级权限检查逻辑
// 1. 菜单级别权限
// 2. 权限组级别权限
// 3. 路由级别权限
修复了窗口启动和jwt令牌信息存储
2 weeks ago
权限管理功能--自动路由信息提取
1 week ago
// 暂时返回nil,允许所有已认证用户访问
// TODO: 实现完整的权限检查逻辑
return nil
}
修复了窗口启动和jwt令牌信息存储
2 weeks ago
权限管理功能--自动路由信息提取
1 week ago
// GetRouteAuthGroup 获取路由的权限分组
func GetRouteAuthGroup(c *gin.Context, db *gorm.DB) string {
path := c.Request.URL.Path
method := c.Request.Method
统一图标方案,增加角色管理,修复界面错误
1 week ago
清理权限表结构
9 hours ago
authResourcesRepo := repository.NewAuthResourcesRepository(db)
routeMappings, err := authResourcesRepo.FindByBackendRoute(path)
清理权限模型
10 hours ago
if err != nil || len(routeMappings) == 0 {
权限管理功能--自动路由信息提取
1 week ago
return "Unknown"
}
统一图标方案,增加角色管理,修复界面错误
1 week ago
后台路由收集完成
4 days ago
// 根据模块和HTTP方法确定权限组
清理权限模型
10 hours ago
return getAuthGroupByMethod(routeMappings[0].Module, method)
后台路由收集完成
4 days ago
}
// getAuthGroupByMethod 根据模块和HTTP方法确定权限组
func getAuthGroupByMethod(module, method string) string {
switch method {
case "GET":
return "read"
case "POST":
return "create"
case "PUT", "PATCH":
return "update"
case "DELETE":
return "delete"
default:
return "unknown"
}
权限管理功能--自动路由信息提取
1 week ago
}
统一图标方案,增加角色管理,修复界面错误
1 week ago
权限管理功能--自动路由信息提取
1 week ago
// HasPermission 检查用户是否有指定权限
func HasPermission(c *gin.Context, db *gorm.DB, requiredAuthGroup string) bool {
userID := GetUserID(c)
if userID == 0 {
return false
}
统一图标方案,增加角色管理,修复界面错误
1 week ago
权限管理功能--自动路由信息提取
1 week ago
// 获取当前路由的权限分组
currentAuthGroup := GetRouteAuthGroup(c, db)
统一图标方案,增加角色管理,修复界面错误
1 week ago
权限管理功能--自动路由信息提取
1 week ago
// 简单的权限检查逻辑
// Read权限可以访问Read和Edit
// Edit权限只能访问Edit
if requiredAuthGroup == "Read" {
return currentAuthGroup == "Read" || currentAuthGroup == "Edit"
} else if requiredAuthGroup == "Edit" {
return currentAuthGroup == "Edit"
统一图标方案,增加角色管理,修复界面错误
1 week ago
}
权限管理功能--自动路由信息提取
1 week ago
return false
修复了窗口启动和jwt令牌信息存储
2 weeks ago
}