lbqms.git - Gitblit

			@@ -17,6 +17,7 @@
			import lombok.extern.slf4j.Slf4j;
			import net.sf.jsqlparser.JSQLParserException;
			import net.sf.jsqlparser.expression.Expression;
			import net.sf.jsqlparser.expression.Parenthesis;
			import net.sf.jsqlparser.expression.operators.conditional.AndExpression;
			import net.sf.jsqlparser.parser.CCJSqlParserUtil;
			import org.springframework.context.expression.BeanFactoryResolver;
			@@ -60,10 +61,12 @@
			}
			try {
			Expression expression = CCJSqlParserUtil.parseExpression(dataFilterSql);
			// 数据权限使用单独的括号防止与其他条件冲突
			Parenthesis parenthesis = new Parenthesis(expression);
			if (ObjectUtil.isNotNull(where)) {
			return new AndExpression(where, expression);
			return new AndExpression(where, parenthesis);
			} else {
			return expression;
			return parenthesis;
			}
			} catch (JSQLParserException e) {
			throw new ServiceException("数据权限解析异常 => " + e.getMessage());
			@@ -75,40 +78,44 @@
			*/
			private String buildDataFilter(SysUser user, DataColumn[] dataColumns, boolean isSelect) {
			StringBuilder sqlString = new StringBuilder();

			// 更新或删除需满足所有条件
			String joinStr = isSelect ? " OR " : " AND ";
			StandardEvaluationContext context = new StandardEvaluationContext();
			context.setBeanResolver(beanResolver);
			context.setVariable("user", user);

			for (DataColumn dataColumn : dataColumns) {
			// 设置注解变量 key 为表达式变量 value 为变量值
			context.setVariable(dataColumn.key(), dataColumn.value());
			for (SysRole role : user.getRoles()) {
			user.setRoleId(role.getRoleId());

			// 获取角色权限泛型
			DataScopeType type = DataScopeType.findCode(role.getDataScope());
			if (ObjectUtil.isNull(type)) {
			throw new ServiceException("角色数据范围异常 => " + role.getDataScope());
			}
			// 全部数据权限直接返回
			if (type == DataScopeType.ALL) {
			return "";
			}
			for (SysRole role : user.getRoles()) {
			user.setRoleId(role.getRoleId());
			// 获取角色权限泛型
			DataScopeType type = DataScopeType.findCode(role.getDataScope());
			if (ObjectUtil.isNull(type)) {
			throw new ServiceException("角色数据范围异常 => " + role.getDataScope());
			}
			// 全部数据权限直接返回
			if (type == DataScopeType.ALL) {
			return "";
			}
			boolean isSuccess = false;
			for (DataColumn dataColumn : dataColumns) {
			// 不包含 key 变量则不处理
			if (!StringUtils.contains(type.getSql(), "#" + dataColumn.key())) {
			if (!StringUtils.contains(type.getSqlTemplate(), "#" + dataColumn.key())) {
			continue;
			}
			// 更新或删除需满足所有条件
			sqlString.append(isSelect ? " OR " : " AND ");
			// 设置注解变量 key 为表达式变量 value 为变量值
			context.setVariable(dataColumn.key(), dataColumn.value());

			// 解析sql模板并填充
			String sql = parser.parseExpression(type.getSql(), parserContext).getValue(context, String.class);
			sqlString.append(sql);
			String sql = parser.parseExpression(type.getSqlTemplate(), parserContext).getValue(context, String.class);
			sqlString.append(joinStr).append(sql);
			isSuccess = true;
			}
			// 未处理成功则填充兜底方案
			if (!isSuccess) {
			sqlString.append(joinStr).append(type.getElseSql());
			}
			}

			if (StringUtils.isNotBlank(sqlString.toString())) {
			return sqlString.substring(isSelect ? 4 : 5);
			return sqlString.substring(joinStr.length());
			}
			return "";
			}
			@@ -122,12 +129,18 @@
			List<Method> methods = Arrays.stream(ClassUtil.getDeclaredMethods(clazz))
			.filter(method -> method.getName().equals(methodName)).collect(Collectors.toList());
			DataPermission dataPermission;
			// 获取方法注解
			for (Method method : methods) {
			if (AnnotationUtil.hasAnnotation(method, DataPermission.class)) {
			dataPermission = AnnotationUtil.getAnnotation(method, DataPermission.class);
			return dataPermission.value();
			}
			}
			// 获取类注解
			if (AnnotationUtil.hasAnnotation(clazz, DataPermission.class)) {
			dataPermission = AnnotationUtil.getAnnotation(clazz, DataPermission.class);
			return dataPermission.value();
			}
			return null;
			}
			}