eta_api/models/data_manage/data_manage_permission.go

package data_manage

import (
	"eta/eta_api/utils"
	"fmt"
	"github.com/beego/beego/v2/client/orm"
	"strconv"
	"time"
)

// SetPermissionEdbChartReq
// @Description: 设置数据权限请求
type SetPermissionEdbChartReq struct {
	Source       int      `description:"来源id"`
	SubSource    int      `description:"子来源id"`
	UserId       int      `description:"用户筛选"`
	DataIdList   []string `description:"指标/图表唯一id列表"`
	NoDataIdList []string `description:"指标/图表唯一id列表"`
	UserList     []int    `description:"赋权用户id列表，如果为空，说明要给这些指标移除权限管控"`
	IsSelectAll  bool     `description:"是否选择所有指标"`
	ClassifyId   string   `description:"分类id，支持多选，用英文,隔开"`
	Keyword      string   `description:"关键字"`
}

type EdbInfoPermission struct {
	PermissionId int64     `json:"permission_id" orm:"column(permission_id);pk"`
	EdbInfoId    int32     `json:"edb_info_id"` // 指标id
	SysUserId    int32     `json:"sys_user_id"` // 系统用户id
	ModifyTime   time.Time `json:"modify_time"` // 变更时间
	CreateTime   time.Time `json:"create_time"` // 关系建立时间
}

type EdbClassifyPermission struct {
	PermissionId  int64     `json:"permission_id" orm:"column(permission_id);pk"`
	EdbClassifyId int32     `json:"edb_classify_id"` // 分类id
	SysUserId     int32     `json:"sys_user_id"`     // 系统用户id
	ModifyTime    time.Time `json:"modify_time"`     // 变更时间
	CreateTime    time.Time `json:"create_time"`     // 关系建立时间
}

// SetPermissionEdbChartByEdbIdList 根据指标ID列表设置指标的用户权限
func SetPermissionEdbChartByEdbIdList(edbIdList []string, userIdList []int) (err error) {
	edbNum := len(edbIdList)
	if edbNum <= 0 {
		return
	}
	o, err := orm.NewOrmUsingDB("data").Begin()
	if err != nil {
		return
	}
	defer func() {
		if err != nil {
			_ = o.Rollback()
		} else {
			_ = o.Commit()
		}
	}()

	// 获取已经配置的指标权限用户
	edbInfoPermissionList := make([]*EdbInfoPermission, 0)
	sql := `SELECT * FROM edb_info_permission WHERE edb_info_id in (` + utils.GetOrmInReplace(edbNum) + `) `
	_, err = o.Raw(sql, edbIdList).QueryRows(&edbInfoPermissionList)
	if err != nil {
		return
	}
	edbInfoPermissionMap := make(map[string]*EdbInfoPermission)
	for _, v := range edbInfoPermissionList {
		edbInfoPermissionMap[fmt.Sprint(v.EdbInfoId, "_", v.SysUserId)] = v
	}

	// 用户不选的情况下，说明是要给这些指标移除权限管控
	if len(userIdList) <= 0 {
		// 标记指标为不纳入权限管控
		sql = `UPDATE edb_info SET is_join_permission=?,modify_time=now() WHERE edb_info_id in (` + utils.GetOrmInReplace(edbNum) + `) `
		_, err = o.Raw(sql, 0, edbIdList).Exec()
		return
	} else {
		// 标记指标为纳入权限管控
		sql = `UPDATE edb_info SET is_join_permission=?,modify_time=now() WHERE edb_info_id in (` + utils.GetOrmInReplace(edbNum) + `) `
		_, err = o.Raw(sql, 1, edbIdList).Exec()
	}

	// 待添加的配置项
	addList := make([]*EdbInfoPermission, 0)

	// 遍历待配置的指标和用户，筛选出需要添加的配置项
	for _, edbInfoIdStr := range edbIdList {
		edbInfoId, tmpErr := strconv.ParseInt(edbInfoIdStr, 10, 64)
		if tmpErr != nil {
			err = tmpErr
			return
		}
		for _, userId := range userIdList {
			key := fmt.Sprint(edbInfoId, "_", userId)
			if _, ok := edbInfoPermissionMap[key]; ok {
				// 如果存在那么就移除，说明不需要处理了
				delete(edbInfoPermissionMap, key)
			} else {
				// 如果不存在，那么就提那家
				addList = append(addList, &EdbInfoPermission{
					//PermissionId: 0,
					EdbInfoId:  int32(edbInfoId),
					SysUserId:  int32(userId),
					ModifyTime: time.Now(),
					CreateTime: time.Now(),
				})
			}
		}
	}

	// 添加待配置项
	if len(addList) > 0 {
		_, err = o.InsertMulti(500, addList)
		if err != nil {
			return
		}
	}

	// 移除废弃的配置项
	{
		// 获取移除的配置项
		deletePermissionIdList := make([]int64, 0)
		for _, v := range edbInfoPermissionMap {
			deletePermissionIdList = append(deletePermissionIdList, v.PermissionId)
		}

		deletePermissionIdNum := len(deletePermissionIdList)
		if deletePermissionIdNum > 0 {
			sql = "DELETE FROM edb_info_permission WHERE permission_id in (" + utils.GetOrmInReplace(deletePermissionIdNum) + ")"
			_, err = o.Raw(sql, deletePermissionIdList).Exec()
			if err != nil {
				return
			}
		}
	}

	return
}