|
|
@@ -0,0 +1,36 @@
|
|
|
+package middleware
|
|
|
+
|
|
|
+import (
|
|
|
+ "github.com/gin-gonic/gin"
|
|
|
+ "hongze/hongze_yb/controller/response"
|
|
|
+ "hongze/hongze_yb/services/company"
|
|
|
+ "hongze/hongze_yb/services/user"
|
|
|
+ "hongze/hongze_yb/utils"
|
|
|
+)
|
|
|
+
|
|
|
+// CheckCygxAuth 如果带thirdCode就可以看,如果有权限也给其他权限
|
|
|
+func CheckCygxAuth() gin.HandlerFunc {
|
|
|
+
|
|
|
+ return func(c *gin.Context) {
|
|
|
+
|
|
|
+ userInfo := user.GetInfoByClaims(c)
|
|
|
+
|
|
|
+ thirdCodeEncrypt := c.Request.Header.Get("thirdCode")
|
|
|
+ thirdCode := utils.DesBase64Encrypt([]byte(thirdCodeEncrypt))
|
|
|
+ if string(thirdCode) == "" {
|
|
|
+ ok, checkInfo, _, err := company.CheckBaseFiccPermission(userInfo.CompanyID, int(userInfo.UserID))
|
|
|
+ if err != nil {
|
|
|
+ response.FailMsg("用户权限验证失败", "CheckBaseAuth-用户权限验证失败"+err.Error(), c)
|
|
|
+ c.Abort()
|
|
|
+ return
|
|
|
+ }
|
|
|
+ if !ok {
|
|
|
+ response.AuthError(checkInfo, "暂无权限", c)
|
|
|
+ c.Abort()
|
|
|
+ return
|
|
|
+ }
|
|
|
+ }
|
|
|
+
|
|
|
+ c.Next()
|
|
|
+ }
|
|
|
+}
|
zwxi