/** * Copyright (C) 2018-2020 * All rights reserved, Designed By www.yixiang.co */ package co.yixiang.modules.system.rest; import cn.hutool.core.lang.Dict; import co.yixiang.dozer.service.IGenerator; import co.yixiang.exception.BadRequestException; import co.yixiang.logging.aop.log.Log; import co.yixiang.modules.system.domain.Role; import co.yixiang.modules.system.service.RoleService; import co.yixiang.modules.system.service.UserService; import co.yixiang.modules.system.service.dto.RoleDto; import co.yixiang.modules.system.service.dto.RoleQueryCriteria; import co.yixiang.modules.system.service.dto.RoleSmallDto; import co.yixiang.modules.system.service.dto.UserDto; import co.yixiang.utils.SecurityUtils; import io.swagger.annotations.Api; import io.swagger.annotations.ApiOperation; import org.springframework.data.domain.Pageable; import org.springframework.data.domain.Sort; import org.springframework.data.web.PageableDefault; import org.springframework.http.HttpStatus; import org.springframework.http.ResponseEntity; import org.springframework.security.access.prepost.PreAuthorize; import org.springframework.validation.annotation.Validated; import org.springframework.web.bind.annotation.DeleteMapping; import org.springframework.web.bind.annotation.GetMapping; import org.springframework.web.bind.annotation.PathVariable; import org.springframework.web.bind.annotation.PostMapping; import org.springframework.web.bind.annotation.PutMapping; import org.springframework.web.bind.annotation.RequestBody; import org.springframework.web.bind.annotation.RequestMapping; import org.springframework.web.bind.annotation.RestController; import javax.servlet.http.HttpServletResponse; import java.io.IOException; import java.util.Collections; import java.util.List; import java.util.Set; import java.util.stream.Collectors; /** * @author hupeng * @date 2018-12-03 */ @Api(tags = "系统:角色管理") @RestController @RequestMapping("/api/roles") public class RoleController { private final RoleService roleService; private final UserService userService; private final IGenerator generator; private static final String ENTITY_NAME = "role"; public RoleController(RoleService roleService, UserService userService, IGenerator generator) { this.roleService = roleService; this.userService = userService; this.generator = generator; } @ApiOperation("获取单个role") @GetMapping(value = "/{id}") @PreAuthorize("@el.check('roles:list')") public ResponseEntity<Object> getRoles(@PathVariable Long id){ return new ResponseEntity<>(roleService.findById(id), HttpStatus.OK); } @Log("导出角色数据") @ApiOperation("导出角色数据") @GetMapping(value = "/download") @PreAuthorize("@el.check('role:list')") public void download(HttpServletResponse response, RoleQueryCriteria criteria) throws IOException { roleService.download(generator.convert(roleService.queryAll(criteria),RoleDto.class), response); } @ApiOperation("返回全部的角色") @GetMapping(value = "/all") @PreAuthorize("@el.check('roles:list','user:add','user:edit')") public ResponseEntity<Object> getAll(RoleQueryCriteria criteria ,@PageableDefault(value = 2000, sort = {"level"}, direction = Sort.Direction.ASC) Pageable pageable){ return new ResponseEntity<>(roleService.queryAlls(criteria,pageable),HttpStatus.OK); } @Log("查询角色") @ApiOperation("查询角色") @GetMapping @PreAuthorize("@el.check('roles:list')") public ResponseEntity<Object> getRoles(RoleQueryCriteria criteria, Pageable pageable){ return new ResponseEntity<>(roleService.queryAll(criteria,pageable),HttpStatus.OK); } @ApiOperation("获取用户级别") @GetMapping(value = "/level") public ResponseEntity<Object> getLevel(){ return new ResponseEntity<>(Dict.create().set("level", getLevels(null)),HttpStatus.OK); } @Log("新增角色") @ApiOperation("新增角色") @PostMapping @PreAuthorize("@el.check('roles:add')") public ResponseEntity<Object> create(@Validated @RequestBody Role resources){ if (resources.getId() != null) { throw new BadRequestException("A new "+ ENTITY_NAME +" cannot already have an ID"); } getLevels(resources.getLevel()); return new ResponseEntity<>(roleService.create(resources),HttpStatus.CREATED); } @Log("修改角色") @ApiOperation("修改角色") @PutMapping @PreAuthorize("@el.check('roles:edit')") public ResponseEntity<Object> update(@Validated @RequestBody Role resources){ getLevels(resources.getLevel()); roleService.update(resources); return new ResponseEntity<>(HttpStatus.NO_CONTENT); } @Log("修改角色菜单") @ApiOperation("修改角色菜单") @PutMapping(value = "/menu") @PreAuthorize("@el.check('roles:edit')") public ResponseEntity<Object> updateMenu(@RequestBody Role resources){ RoleDto role = roleService.findById(resources.getId()); getLevels(role.getLevel()); roleService.updateMenu(resources,role); return new ResponseEntity<>(HttpStatus.NO_CONTENT); } @Log("删除角色") @ApiOperation("删除角色") @DeleteMapping @PreAuthorize("@el.check('roles:del')") public ResponseEntity<Object> delete(@RequestBody Set<Long> ids){ for (Long id : ids) { RoleDto role = roleService.findById(id); getLevels(role.getLevel()); } try { roleService.delete(ids); } catch (Throwable e){ throw new BadRequestException("所选角色存在用户关联,请取消关联后再试"); } return new ResponseEntity<>(HttpStatus.OK); } /** * 获取用户的角色级别 * @return / */ private int getLevels(Integer level){ UserDto user = userService.findByName(SecurityUtils.getUsername()); List<Integer> levels = roleService.findByUsersId(user.getId()).stream().map(RoleSmallDto::getLevel).collect(Collectors.toList()); int min = Collections.min(levels); if(level != null){ if(level < min){ throw new BadRequestException("权限不足,你的角色级别:" + min + ",低于操作的角色级别:" + level); } } return min; } }