zy-asrs.git - Gitblit

			@@ -22,6 +22,7 @@

			import javax.servlet.http.HttpServletResponse;
			import java.util.*;
			import java.util.stream.Collectors;

			/**
			* Created by vincent on 2019-07-30
			@@ -48,15 +49,15 @@

			@RequestMapping("/login.action")
			@ManagerAuth(value = ManagerAuth.Auth.NONE, memo = "登录")
			public R loginAction(String mobile, String password){
			if (mobile.equals("super") && password.equals(Cools.md5(superPwd))) {
			public R loginAction(String username, String password){
			if (username.equals("super") && password.equals(Cools.md5(superPwd))) {
			Map<String, Object> res = new HashMap<>();
			res.put("username", mobile);
			res.put("token", Cools.enToken(System.currentTimeMillis() + mobile, superPwd));
			res.put("username", username);
			res.put("token", Cools.enToken(System.currentTimeMillis() + username, superPwd));
			return R.ok(res);
			}
			EntityWrapper<User> userWrapper = new EntityWrapper<>();
			userWrapper.eq("mobile", mobile);
			userWrapper.eq("username", username);
			User user = userService.selectOne(userWrapper);
			if (Cools.isEmpty(user)){
			return R.parse(CodeRes.USER_10001);
			@@ -67,7 +68,7 @@
			if (!user.getPassword().equals(password)){
			return R.parse(CodeRes.USER_10003);
			}
			String token = Cools.enToken(System.currentTimeMillis() + mobile, user.getPassword());
			String token = Cools.enToken(System.currentTimeMillis() + username, user.getPassword());
			userLoginService.delete(new EntityWrapper<UserLogin>().eq("user_id", user.getId()));
			UserLogin userLogin = new UserLogin();
			userLogin.setUserId(user.getId());
			@@ -273,19 +274,21 @@
			if (!Cools.isEmpty(powers)){
			List<PowerDto> dtos = JSON.parseArray(powers, PowerDto.class);
			for (PowerDto dto : dtos) {
			Resource resource = resourceService.selectOne(new EntityWrapper<Resource>().eq("id", dto.getTwo()).eq("level", 2));
			if (!Cools.isEmpty(resource)) {
			// 校验上级权限
			if (leaderId != null) {
			RoleResource roleResource = roleResourceService.selectOne(new EntityWrapper<RoleResource>().eq("role_id", leaderId).eq("resource_id", resource.getId()));
			if (null == roleResource) {
			throw new CoolException(resource.getName().concat("无法授权给").concat(role.getName()));
			if (isNumber(dto.getTwo())) {
			Resource resource = resourceService.selectOne(new EntityWrapper<Resource>().eq("id", dto.getTwo()).eq("level", 2));
			if (!Cools.isEmpty(resource)) {
			// 校验上级权限
			if (leaderId != null) {
			RoleResource roleResource = roleResourceService.selectOne(new EntityWrapper<RoleResource>().eq("role_id", leaderId).eq("resource_id", resource.getId()));
			if (null == roleResource) {
			throw new CoolException(resource.getName().concat("无法授权给").concat(role.getName()));
			}
			}
			RoleResource roleResource = new RoleResource();
			roleResource.setRoleId(roleId);
			roleResource.setResourceId(resource.getId());
			roleResourceService.insert(roleResource);
			}
			RoleResource roleResource = new RoleResource();
			roleResource.setRoleId(roleId);
			roleResource.setResourceId(resource.getId());
			roleResourceService.insert(roleResource);
			} else {
			Permission permission = permissionService.selectOne(new EntityWrapper<Permission>().eq("action", dto.getTwo()));
			if (!Cools.isEmpty(permission)){
			@@ -302,7 +305,7 @@
			if (leaderId != null) {
			RoleResource roleResource = roleResourceService.selectOne(new EntityWrapper<RoleResource>().eq("role_id", leaderId).eq("resource_id", resource1.getId()));
			if (null == roleResource) {
			throw new CoolException(resource.getName().concat("的").concat(resource1.getName().concat("无法授权给").concat(role.getName())));
			throw new CoolException(resource1.getName().concat("无法授权给").concat(role.getName()));
			}
			}
			RoleResource roleResource = new RoleResource();
			@@ -352,14 +355,14 @@
			}
			}

			@PostMapping(value = "/system/secret/auth")
			@PostMapping(value = "/system/license/auth")
			@ManagerAuth
			public R systemSecret(@RequestParam(value = "secret") String secret) {
			if (Cools.isEmpty(secret)) {
			public R systemSecret(@RequestParam(value = "license") String license) {
			if (Cools.isEmpty(license)) {
			return R.error("请输入激活码");
			}
			// 验证激活码
			String timeStr = AesUtils.decrypt(secret, SystemProperties.SALT);
			String timeStr = AesUtils.decrypt(license, SystemProperties.SALT);
			if (null == timeStr) {
			return R.error("激活码错误");
			}
			@@ -367,7 +370,7 @@
			if (new Date().getTime() >= exprTime.getTime()) {
			return R.error("激活码已失效");
			}
			boolean result = SystemProperties.saveActivationCode(OSinfo.getOSname().getActivationCodePath(), secret);
			boolean result = SystemProperties.saveActivationCode(OSinfo.getOSname().getActivationCodePath(), license);
			if (!result) {
			return R.error("激活失败");
			}
			@@ -375,4 +378,23 @@
			return R.ok("激活成功，有效期至"+DateUtils.convert(exprTime));
			}

			@RequestMapping("/menu/pda/auth")
			@ManagerAuth
			public R menuPda(){
			Long userId = getUserId();
			List<RolePermission> rolePermissions;
			if (userId == 9527L) {
			rolePermissions = rolePermissionService.selectList(new EntityWrapper<>());
			} else {
			Long roleId = getUser().getRoleId();
			rolePermissions = rolePermissionService.selectList(new EntityWrapper<RolePermission>().eq("role_id", roleId));
			}
			if (Cools.isEmpty(rolePermissions)) {
			return R.ok();
			}
			List<Long> collect = rolePermissions.stream().map(RolePermission::getPermissionId).distinct().collect(Collectors.toList());
			List<Permission> permissions = permissionService.selectBatchIds(collect);
			return R.ok().add(permissions);
			}

			}