From 72ca54b5a36818de16acf81c9c395e9f35a39a67 Mon Sep 17 00:00:00 2001
From: skyouc
Date: 星期三, 11 六月 2025 09:53:27 +0800
Subject: [PATCH] 下发执行页，添加默认请求方法

---
 rsf-server/src/main/java/com/vincent/rsf/server/system/controller/UserController.java |   15 +++++++++++++++
 1 files changed, 15 insertions(+), 0 deletions(-)

diff --git a/rsf-server/src/main/java/com/vincent/rsf/server/system/controller/UserController.java b/rsf-server/src/main/java/com/vincent/rsf/server/system/controller/UserController.java
index c9a21fd..9f2f7fd 100644
--- a/rsf-server/src/main/java/com/vincent/rsf/server/system/controller/UserController.java
+++ b/rsf-server/src/main/java/com/vincent/rsf/server/system/controller/UserController.java
@@ -2,6 +2,7 @@
 
 import com.baomidou.mybatisplus.core.conditions.query.LambdaQueryWrapper;
 import com.baomidou.mybatisplus.extension.plugins.pagination.Page;
+import com.vincent.rsf.framework.common.BaseRes;
 import com.vincent.rsf.framework.common.Cools;
 import com.vincent.rsf.framework.common.R;
 import com.vincent.rsf.framework.exception.CoolException;
@@ -11,9 +12,11 @@
 import com.vincent.rsf.server.common.domain.PageParam;
 import com.vincent.rsf.server.common.domain.PageResult;
 import com.vincent.rsf.server.common.utils.ExcelUtil;
+import com.vincent.rsf.server.system.entity.Tenant;
 import com.vincent.rsf.server.system.entity.User;
 import com.vincent.rsf.server.system.entity.UserRole;
 import com.vincent.rsf.server.system.enums.StatusType;
+import com.vincent.rsf.server.system.service.TenantService;
 import com.vincent.rsf.server.system.service.UserRoleService;
 import com.vincent.rsf.server.system.service.UserService;
 import org.springframework.beans.factory.annotation.Autowired;
@@ -31,6 +34,8 @@
 
     @Autowired
     private UserService userService;
+    @Autowired
+    private TenantService tenantService;
     @Autowired
     private UserRoleService userRoleService;
 
@@ -117,6 +122,11 @@
     @PostMapping("/user/update")
     @Transactional
     public R update(@RequestBody User user) {
+        Tenant tenant = tenantService.getById(getTenantId());
+        if (!user.getId().equals(getLoginUserId()) && tenant.getRoot().equals(user.getId())) {
+            return R.parse(BaseRes.LIMIT);
+        }
+
         if (user.getPassword() != null && user.getPassword().equals("")) {
             user.setPassword(null);
         }
@@ -169,7 +179,12 @@
     @PostMapping("/user/remove/{ids}")
     @Transactional
     public R remove(@PathVariable Long[] ids) {
+        Tenant tenant = tenantService.getById(getTenantId());
+        Long loginUserId = getLoginUserId();
         for (Long userId : ids) {
+            if (!userId.equals(loginUserId) && tenant.getRoot().equals(userId)) {
+                return R.parse(BaseRes.LIMIT);
+            }
             if (!userService.removeById(userId)) {
                 throw new CoolException("Internal Server Error");
             }

--
Gitblit v1.9.1