package cms.service.staff.impl;
import java.util.ArrayList;
import java.util.HashMap;
import java.util.Iterator;
import java.util.LinkedHashMap;
import java.util.List;
import java.util.Map;
import javax.persistence.Query;
import cms.bean.PermissionObject;
import cms.bean.QueryResult;
import cms.bean.SaveResourcesObject;
import cms.bean.staff.SysPermission;
import cms.bean.staff.SysPermissionResources;
import cms.bean.staff.SysResources;
import cms.bean.staff.SysRoles;
import cms.bean.staff.SysRolesPermission;
import cms.service.besa.DaoSupport;
import cms.service.staff.ACLService;
import org.springframework.stereotype.Service;
import org.springframework.transaction.annotation.Propagation;
import org.springframework.transaction.annotation.Transactional;
/**
* ACL管理
* @author Administrator
*
*/
@Service
@Transactional
public class ACLServiceBean extends DaoSupport implements ACLService {
/**
* 取得所有模块的权限
*/
@Transactional(readOnly=true,propagation=Propagation.NOT_SUPPORTED)
public List<PermissionObject> findModulePermission(){
Query query = em.createQuery("" +
"select b.url, c.methods,c.name,b.module,b.urlParentId,c.id,c.remarks from SysPermissionResources a,SysResources b," +
"SysPermission c where a.resourceId = b.id and " +
"a.permissionId = c.id ORDER BY b.priority ASC , c.priority ASC");
query.getResultList();
List<PermissionObject> permissionObjectList = new ArrayList<PermissionObject>();
Iterator iter = query.getResultList().iterator();
while (iter.hasNext()){
Object[] o = (Object[]) iter.next();
PermissionObject permissionObject = new PermissionObject();
String url = (String) o[0];
String methods = (String) o[1];
String permissionName = (String) o[2];
String module = (String) o[3];
String urlParentId = (String) o[4];
String permissionId = (String) o[5];
String remarks = (String) o[6];
permissionObject.setUrl(url);
permissionObject.setMethods(methods);
permissionObject.setPermissionName(permissionName);
permissionObject.setModule(module);
if(urlParentId != null && !"".equals(urlParentId.trim())){
permissionObject.setAppendUrl(true);
}else{
permissionObject.setAppendUrl(false);
}
permissionObject.setPermissionId(permissionId);
permissionObject.setRemarks(remarks);
permissionObjectList.add(permissionObject);
}
return permissionObjectList;
}
/**
* 根据资源表Id查询权限
* @param resourcesId 资源表Id
* @return
*/
@Transactional(readOnly=true,propagation=Propagation.NOT_SUPPORTED)
public List<SysPermission> findPermissionByResourcesId(String resourcesId){
Query query = em.createQuery("select b from SysPermissionResources a," +
"SysPermission b where a.permissionId = b.id and " +
"a.resourceId = ?1");
query.setParameter(1, resourcesId);
return query.getResultList();
}
/**
* 根据资源Id集合取得资源
* @param sysResourcesIdList 资源Id集合
* @return
*/
@Transactional(readOnly=true,propagation=Propagation.NOT_SUPPORTED)
public List<SysResources> findSysResourcesBysysResourcesId(List<String> sysResourcesIdList){
Query query = em.createQuery("select o from SysResources o where o.id in(:sysResourcesId)");
query.setParameter("sysResourcesId", sysResourcesIdList);
return query.getResultList();
}
/******************* SysPermissionDao权限 *********************/
/**
* 得到权限列表。
*/
@Transactional(readOnly=true,propagation=Propagation.NOT_SUPPORTED)
public List<SysPermission> findPermissionList() {
Query query = em.createQuery("select o from SysPermission o ");
return query.getResultList();
}
/******************* SysResourcesDao资源 *********************/
/**
* 保存资源
* @param sysResourcesList 资源对象
*/
public void saveResources(List<SaveResourcesObject> sysResourcesList){
for(SaveResourcesObject saveResourcesObject: sysResourcesList){
//保存权限
if(saveResourcesObject.getSysPermission() != null){
this.save(saveResourcesObject.getSysPermission());
}
//保存资源
if(saveResourcesObject.getSysResources() != null){
this.save(saveResourcesObject.getSysResources());
}
//权限资源表
if(saveResourcesObject.getSysPermissionResources() != null){
this.save(saveResourcesObject.getSysPermissionResources());
}
}
}
/**
* 修改资源权限
* @param sysResources 资源
* @param sysPermission_NULL 权限NULL方式
* @param sysPermission_GET 权限GET方式
* @param sysPermission_POST 权限POST方式
* @param sysPermissionResources_NULL 权限资源NULL方式
* @param sysPermissionResources_GET 权限资源GET方式
* @param sysPermissionResources_POST 权限资源POST方式
* @param allOldPermissionId 所有旧权限Id
* @param delete_resourcesId 权限资源的资源Id集合
* @param resourcesObjectList 附加资源对象
*/
public void updateResources(SysResources sysResources,SysPermission sysPermission_NULL,
SysPermission sysPermission_GET,SysPermission sysPermission_POST,
SysPermissionResources sysPermissionResources_NULL,SysPermissionResources sysPermissionResources_GET,SysPermissionResources sysPermissionResources_POST,
List<String> allOldPermissionId,List<String> delete_resourcesId, List<SaveResourcesObject> resourcesObjectList){
//修改资源
this.update(sysResources);
//修改权限
if(sysPermission_NULL != null){
this.update(sysPermission_NULL);
allOldPermissionId.remove(sysPermission_NULL.getId());
}
if(sysPermission_GET != null){
this.update(sysPermission_GET);
allOldPermissionId.remove(sysPermission_GET.getId());
}
if(sysPermission_POST != null){
this.update(sysPermission_POST);
allOldPermissionId.remove(sysPermission_POST.getId());
}
//删除权限
deletePermission(allOldPermissionId);
//删除所有权限资源
deletePermissionResources(delete_resourcesId);
//添加权限资源
if(sysPermissionResources_NULL != null){
this.save(sysPermissionResources_NULL);
}
if(sysPermissionResources_GET != null){
this.save(sysPermissionResources_GET);
}
if(sysPermissionResources_POST != null){
this.save(sysPermissionResources_POST);
}
//删除附加资源
deleteAppendResources(sysResources.getId());
//添加附加资源
if(resourcesObjectList != null && resourcesObjectList.size() >0){
for(SaveResourcesObject saveResourcesObject :resourcesObjectList){
//保存资源
if(saveResourcesObject.getSysResources() != null){
this.save(saveResourcesObject.getSysResources());
}
//权限资源表
if(saveResourcesObject.getSysPermissionResources() != null){
this.save(saveResourcesObject.getSysPermissionResources());
}
}
}
}
//删除附加资源
private void deleteAppendResources(String urlParentId){
if(urlParentId != null && !"".equals(urlParentId)){
Query query = em.createQuery("delete from SysResources o where o.urlParentId=?1 ")
.setParameter(1,urlParentId);
query.executeUpdate();
}
}
//删除权限资源
private void deletePermissionResources(List<String> delete_resourcesId){
if(delete_resourcesId != null && delete_resourcesId.size() >0){
Query query = em.createQuery("delete from SysPermissionResources o where o.resourceId in(:resourcesId) ")
.setParameter("resourcesId",delete_resourcesId);
query.executeUpdate();
}
}
//删除权限
private void deletePermission(List<String> permissionIdList){
if(permissionIdList != null && permissionIdList.size() >0){
Query query = em.createQuery("delete from SysPermission o where o.id in(:permissionId)")
.setParameter("permissionId",permissionIdList);
query.executeUpdate();
}
}
/**
* 删除资源
* @param resourcesId 资源Id
* @param permissionIdList 权限Id集合
* @param delete_resourcesId 权限资源的资源Id集合
*/
public void deleteResources(String resourcesId,List<String> permissionIdList,List<String> delete_resourcesId){
//删除资源
this.delete(SysResources.class, resourcesId);
//删除附加资源
deleteAppendResources(resourcesId);
//删除权限
deletePermission(permissionIdList);
//删除所有权限资源
deletePermissionResources(delete_resourcesId);
}
/**
* 得到资源列表
*/
@Transactional(readOnly=true,propagation=Propagation.NOT_SUPPORTED)
public List<SysResources> getResourcesList() {
Query query = em.createQuery("select o from SysResources o ");
return query.getResultList();
}
/**
* 模块分页显示
*/
@Transactional(readOnly=true,propagation=Propagation.NOT_SUPPORTED)
public QueryResult<String> modulePage(int firstindex, int maxresult,LinkedHashMap<String , String >orderby){
QueryResult<String> qr = new QueryResult<String>();
Query query = em.createQuery("select distinct o.module from SysResources o "+ buildOrderby(orderby));
if(firstindex != -1 && maxresult != -1){
//索引开始,即从哪条记录开始
query.setFirstResult(firstindex);
//获取多少条数据
query.setMaxResults(maxresult);
}
//把查询结果设进去
qr.setResultlist(query.getResultList());
//获取总记录数
query = em.createQuery("select count(distinct o.module) from SysResources o");
//因为统计返回的是一行一列的值,所以用getSingleResult()获取一行一列形式的值
qr.setTotalrecord((Long)query.getSingleResult());
return qr;
}
/**
* 根据附加URL所属父ID查询资源
*/
@Transactional(readOnly=true,propagation=Propagation.NOT_SUPPORTED)
public List<SysResources> findResourcesByUrlParentId(String urlParentId) {
Query query = em.createQuery("select o from SysResources o where o.urlParentId=?1 ORDER BY o.priority ASC");
query.setParameter(1, urlParentId);
return query.getResultList();
}
/******************* SysRolesDao角色 *********************/
/**
* 根据 用户账号查询角色名称
* @param userAccount 用户账号
*/
@Transactional(readOnly=true,propagation=Propagation.NOT_SUPPORTED)
public Map<String,List<String>> findRolesByUserAccount(List<String> userAccountList) {
Query query = em.createQuery("select b.userAccount,a.name from SysRoles a,SysUsersRoles b where a.id=b.roleId and b.userAccount in(:userAccount)");
query.setParameter("userAccount", userAccountList);
List objectList = query.getResultList();
//角色名称
Map<String,List<String>> rolesNameList = new HashMap<String,List<String>>();
if(objectList != null && objectList.size() >0){
Iterator iter = objectList.iterator();
while (iter.hasNext()){
Object[] o = (Object[]) iter.next();
String _userAccount = (String) o[0];
String _rolesName = (String) o[1];
List<String> rolesName = rolesNameList.get(_userAccount);
if(rolesName != null){
rolesName.add(_rolesName);
}else{
rolesName = new ArrayList<String>();
rolesName.add(_rolesName);
}
rolesNameList.put(_userAccount, rolesName);
}
}
return rolesNameList;
}
/**
* 根据角色Id查询权限
* @param rolesId 角色Id
*/
@Transactional(readOnly=true,propagation=Propagation.NOT_SUPPORTED)
public List<SysPermission> findPermissionByRolesId(String rolesId) {
Query query = em.createQuery("select b from SysRolesPermission a,SysPermission b where a.permissionId=b.id and a.roleId=?1");
query.setParameter(1, rolesId);
return query.getResultList();
}
/**
* 得到角色列表
*/
public List<SysRoles> findRolesList(){
Query query = em.createQuery("select o from SysRoles o ");
return query.getResultList();
}
/**
* 保存角色
* @param sysResources 角色
* @param sysRolesPermissionList 角色权限集合
*/
public void saveRoles(SysRoles sysRoles,List<SysRolesPermission> sysRolesPermissionList){
this.save(sysRoles);
if(sysRolesPermissionList != null && sysRolesPermissionList.size() >0){
for(SysRolesPermission sysRolesPermission : sysRolesPermissionList){
this.save(sysRolesPermission);
}
}
}
/**
* 删除角色权限
* @param roleId 角色Id
*/
private void deleteRolesPermission(String roleId){
if(roleId != null && !"".equals(roleId)){
Query query = em.createQuery("delete from SysRolesPermission o where o.roleId=?1")
.setParameter(1,roleId);
query.executeUpdate();
}
}
/**
* 修改角色
* @param sysResources 角色
* @param rolesPermissionList 角色权限集合
*/
public void updateRoles(SysRoles sysRoles,List<SysRolesPermission> rolesPermissionList){
//修改角色
this.update(sysRoles);
//删除角色权限
this.deleteRolesPermission(sysRoles.getId());
//保存角色权限
if(rolesPermissionList != null && rolesPermissionList.size() >0){
for(SysRolesPermission rolesPermission :rolesPermissionList){
this.save(rolesPermission);
}
}
}
/**
* 删除角色
* @param roleId 角色Id
*/
public void deleteRoles(String roleId){
//删除角色
this.delete(SysRoles.class, roleId);
//删除角色权限
this.deleteRolesPermission(roleId);
}
}
