format + lint
This commit is contained in:
@@ -1,3 +1,4 @@
|
||||
import { SetMetadata } from "@nestjs/common";
|
||||
import { SetMetadata } from '@nestjs/common';
|
||||
|
||||
export const Permissions = (...permissions: string[]) => SetMetadata('permissions', permissions);
|
||||
export const Permissions = (...permissions: string[]) =>
|
||||
SetMetadata('permissions', permissions);
|
||||
|
||||
@@ -1,3 +1,3 @@
|
||||
import { SetMetadata } from "@nestjs/common";
|
||||
import { SetMetadata } from '@nestjs/common';
|
||||
|
||||
export const Roles = (...roles: string[]) => SetMetadata('roles', roles);
|
||||
export const Roles = (...roles: string[]) => SetMetadata('roles', roles);
|
||||
|
||||
@@ -1,40 +1,47 @@
|
||||
import { CanActivate, ExecutionContext, Injectable } from "@nestjs/common";
|
||||
import { CanActivate, ExecutionContext, Injectable } from '@nestjs/common';
|
||||
import { Reflector } from '@nestjs/core';
|
||||
import { PermissionService } from "src/role/services/permission.service";
|
||||
import { RolePermissionService } from "src/role/services/role-permission.service";
|
||||
import { UserRoleService } from "src/role/services/user-role.service";
|
||||
import { PermissionService } from 'src/role/services/permission.service';
|
||||
import { RolePermissionService } from 'src/role/services/role-permission.service';
|
||||
import { UserRoleService } from 'src/role/services/user-role.service';
|
||||
|
||||
@Injectable()
|
||||
export class PermissionGuard implements CanActivate {
|
||||
constructor(
|
||||
private reflector: Reflector,
|
||||
private readonly userRoleService: UserRoleService,
|
||||
private readonly rolePermissionService: RolePermissionService,
|
||||
private readonly permissionService: PermissionService,
|
||||
) { }
|
||||
constructor(
|
||||
private reflector: Reflector,
|
||||
private readonly userRoleService: UserRoleService,
|
||||
private readonly rolePermissionService: RolePermissionService,
|
||||
private readonly permissionService: PermissionService,
|
||||
) {}
|
||||
|
||||
async canActivate(context: ExecutionContext): Promise<boolean> {
|
||||
const requiredPermissions = this.reflector.getAllAndOverride<string[]>('permissions', [
|
||||
context.getHandler(),
|
||||
context.getClass(),
|
||||
]);
|
||||
async canActivate(context: ExecutionContext): Promise<boolean> {
|
||||
const requiredPermissions = this.reflector.getAllAndOverride<string[]>(
|
||||
'permissions',
|
||||
[context.getHandler(), context.getClass()],
|
||||
);
|
||||
|
||||
if (!requiredPermissions) return true;
|
||||
if (!requiredPermissions) return true;
|
||||
|
||||
const request = context.switchToHttp().getRequest();
|
||||
const userId = request.user?.userId;
|
||||
const request = context.switchToHttp().getRequest();
|
||||
const userId = request.user?.userId;
|
||||
|
||||
if (!userId) return false;
|
||||
if (!userId) return false;
|
||||
|
||||
// 查询用户拥有的有效角色ID
|
||||
const userRoleIds = await this.userRoleService.findValidRoleIdsByUserId(userId);
|
||||
// 查询用户拥有的有效角色ID
|
||||
const userRoleIds =
|
||||
await this.userRoleService.findValidRoleIdsByUserId(userId);
|
||||
|
||||
// 查询用户拥有的有效角色ID对应的权限ID
|
||||
const userPermissionIds = await this.rolePermissionService.findPermissionIdsByRoleIds(userRoleIds);
|
||||
// 查询用户拥有的有效角色ID对应的权限ID
|
||||
const userPermissionIds =
|
||||
await this.rolePermissionService.findPermissionIdsByRoleIds(userRoleIds);
|
||||
|
||||
// 查询用户拥有的权限ID对应的权限名
|
||||
const userPermissionNames = await this.permissionService.findPermissionNamesByPermissionIds(userPermissionIds);
|
||||
// 查询用户拥有的权限ID对应的权限名
|
||||
const userPermissionNames =
|
||||
await this.permissionService.findPermissionNamesByPermissionIds(
|
||||
userPermissionIds,
|
||||
);
|
||||
|
||||
return requiredPermissions.every(permission => userPermissionNames.includes(permission))
|
||||
}
|
||||
}
|
||||
return requiredPermissions.every((permission) =>
|
||||
userPermissionNames.includes(permission),
|
||||
);
|
||||
}
|
||||
}
|
||||
|
||||
@@ -1,36 +1,37 @@
|
||||
import { CanActivate, ExecutionContext, Injectable } from "@nestjs/common";
|
||||
import { CanActivate, ExecutionContext, Injectable } from '@nestjs/common';
|
||||
import { Reflector } from '@nestjs/core';
|
||||
import { RoleService } from "src/role/services/role.service";
|
||||
import { UserRoleService } from "src/role/services/user-role.service";
|
||||
import { RoleService } from 'src/role/services/role.service';
|
||||
import { UserRoleService } from 'src/role/services/user-role.service';
|
||||
|
||||
@Injectable()
|
||||
export class RolesGuard implements CanActivate {
|
||||
constructor(
|
||||
private reflector: Reflector,
|
||||
private readonly userRoleService: UserRoleService,
|
||||
private readonly roleService: RoleService,
|
||||
) { }
|
||||
constructor(
|
||||
private reflector: Reflector,
|
||||
private readonly userRoleService: UserRoleService,
|
||||
private readonly roleService: RoleService,
|
||||
) {}
|
||||
|
||||
async canActivate(context: ExecutionContext): Promise<boolean> {
|
||||
const requiredRoles = this.reflector.getAllAndOverride<string[]>('roles', [
|
||||
context.getHandler(),
|
||||
context.getClass(),
|
||||
]);
|
||||
async canActivate(context: ExecutionContext): Promise<boolean> {
|
||||
const requiredRoles = this.reflector.getAllAndOverride<string[]>('roles', [
|
||||
context.getHandler(),
|
||||
context.getClass(),
|
||||
]);
|
||||
|
||||
if (!requiredRoles) return true;
|
||||
|
||||
if (!requiredRoles) return true;
|
||||
|
||||
const request = context.switchToHttp().getRequest();
|
||||
const userId = request.user?.userId;
|
||||
const request = context.switchToHttp().getRequest();
|
||||
const userId = request.user?.userId;
|
||||
|
||||
if (!userId) return false;
|
||||
if (!userId) return false;
|
||||
|
||||
// 查询用户拥有的有效角色Id
|
||||
const userRoleIds = await this.userRoleService.findValidRoleIdsByUserId(userId);
|
||||
// 查询用户拥有的有效角色Id
|
||||
const userRoleIds =
|
||||
await this.userRoleService.findValidRoleIdsByUserId(userId);
|
||||
|
||||
// 查询用户角色Id对应的角色名
|
||||
const userRoleNames = await this.roleService.findRoleNamesByRoleIds(userRoleIds);
|
||||
// 查询用户角色Id对应的角色名
|
||||
const userRoleNames =
|
||||
await this.roleService.findRoleNamesByRoleIds(userRoleIds);
|
||||
|
||||
return requiredRoles.some(role => userRoleNames.includes(role));
|
||||
}
|
||||
}
|
||||
return requiredRoles.some((role) => userRoleNames.includes(role));
|
||||
}
|
||||
}
|
||||
|
||||
@@ -1,16 +1,24 @@
|
||||
import { CallHandler, ExecutionContext, Injectable, NestInterceptor } from "@nestjs/common";
|
||||
import { Observable } from "rxjs";
|
||||
import { map } from "rxjs/operators";
|
||||
import {
|
||||
CallHandler,
|
||||
ExecutionContext,
|
||||
Injectable,
|
||||
NestInterceptor,
|
||||
} from '@nestjs/common';
|
||||
import { Observable } from 'rxjs';
|
||||
import { map } from 'rxjs/operators';
|
||||
|
||||
@Injectable()
|
||||
export class ResponseInterceptor implements NestInterceptor {
|
||||
intercept(context: ExecutionContext, next: CallHandler<any>): Observable<any> | Promise<Observable<any>> {
|
||||
return next.handle().pipe(
|
||||
map(data => ({
|
||||
statusCode: 200,
|
||||
message: '请求成功',
|
||||
data,
|
||||
})),
|
||||
);
|
||||
}
|
||||
}
|
||||
intercept(
|
||||
context: ExecutionContext,
|
||||
next: CallHandler<any>,
|
||||
): Observable<any> | Promise<Observable<any>> {
|
||||
return next.handle().pipe(
|
||||
map((data) => ({
|
||||
statusCode: 200,
|
||||
message: '请求成功',
|
||||
data,
|
||||
})),
|
||||
);
|
||||
}
|
||||
}
|
||||
|
||||
Reference in New Issue
Block a user