package com.java110.order.smo.impl; import com.alibaba.fastjson.JSONObject; import com.java110.utils.cache.MappingCache; import com.java110.utils.constant.MappingConstant; import com.java110.utils.exception.SMOException; import com.java110.utils.util.Assert; import com.java110.core.factory.GenerateCodeFactory; import com.java110.order.dao.IPrivilegeDAO; import com.java110.order.smo.IPrivilegeSMO; import org.slf4j.Logger; import org.slf4j.LoggerFactory; import org.springframework.beans.factory.annotation.Autowired; import org.springframework.http.HttpStatus; import org.springframework.http.ResponseEntity; import org.springframework.stereotype.Service; import java.util.List; import java.util.Map; /** * 用户权限处理类 * Created by Administrator on 2019/4/1. */ @Service("privilegeSMOImpl") public class PrivilegeSMOImpl implements IPrivilegeSMO { private final static Logger logger = LoggerFactory.getLogger(PrivilegeSMOImpl.class); @Autowired private IPrivilegeDAO privilegeDAOImpl; @Override public ResponseEntity saveUserDefaultPrivilege(String privilegeInfo) { Assert.isJsonObject(privilegeInfo,"请求报文不是有效的json格式"); Assert.jsonObjectHaveKey(privilegeInfo,"userId","请求报文中未包含userId节点"); Assert.jsonObjectHaveKey(privilegeInfo,"storeTypeCd","请求报文中未包含storeTypeCd节点"); Assert.jsonObjectHaveKey(privilegeInfo,"userFlag","请求报文中未包含userFlag节点"); JSONObject privilegeObj = JSONObject.parseObject(privilegeInfo); String storeTypeCd = privilegeObj.getString("storeTypeCd"); String privilegeDomain = "admin".equals(privilegeObj.getString("userFlag")) ?MappingConstant.DOMAIN_DEFAULT_PRIVILEGE_ADMIN:MappingConstant.DOMAIN_DEFAULT_PRIVILEGE; String defaultPrivilege = MappingCache.getValue(privilegeDomain,storeTypeCd); Assert.hasLength(defaultPrivilege,"在c_mapping 表中未配置商户类型为"+storeTypeCd+" 的默认权限组"); privilegeObj.put("pId",defaultPrivilege); if(privilegeDAOImpl.saveUserDefaultPrivilege(privilegeObj)){ return new ResponseEntity("成功", HttpStatus.OK); } return new ResponseEntity("未知异常", HttpStatus.INTERNAL_SERVER_ERROR); } /** * 删除用户权限 * @param privilegeInfo * @return */ @Override public ResponseEntity deleteUserAllPrivilege(String privilegeInfo) { Assert.isJsonObject(privilegeInfo,"请求报文不是有效的json格式"); Assert.jsonObjectHaveKey(privilegeInfo,"userId","请求报文中未包含userId节点"); JSONObject privilegeObj = JSONObject.parseObject(privilegeInfo); if(privilegeDAOImpl.deleteUserAllPrivilege(privilegeObj)){ return new ResponseEntity("成功", HttpStatus.OK); } return new ResponseEntity("未知异常", HttpStatus.INTERNAL_SERVER_ERROR); } @Override public ResponseEntity savePrivilegeGroup(String privilegeGroupInfo) { Assert.isJsonObject(privilegeGroupInfo,"请求报文不是有效的json格式"); Assert.jsonObjectHaveKey(privilegeGroupInfo,"name","请求报文中未包含name节点"); Assert.jsonObjectHaveKey(privilegeGroupInfo,"storeId","请求报文中未包含storeId节点"); Assert.jsonObjectHaveKey(privilegeGroupInfo,"storeTypeCd","请求报文中未包含storeTypeCd节点"); JSONObject privilegeGroupObj = JSONObject.parseObject(privilegeGroupInfo); privilegeGroupObj.put("pgId",GenerateCodeFactory.getPgId()); if(privilegeDAOImpl.savePrivilegeGroup(privilegeGroupObj)){ return new ResponseEntity("成功", HttpStatus.OK); } return new ResponseEntity("未知异常", HttpStatus.INTERNAL_SERVER_ERROR); } /** * 删除权限组 * @param privilegeGroupInfo * @return */ @Override public ResponseEntity deletePrivilegeGroup(String privilegeGroupInfo) { Assert.isJsonObject(privilegeGroupInfo,"请求报文不是有效的json格式"); Assert.jsonObjectHaveKey(privilegeGroupInfo,"pgId","请求报文中未包含pgId节点"); Assert.jsonObjectHaveKey(privilegeGroupInfo,"storeId","请求报文中未包含storeId节点"); Assert.jsonObjectHaveKey(privilegeGroupInfo,"storeTypeCd","请求报文中未包含storeTypeCd节点"); JSONObject privilegeGroupObj = JSONObject.parseObject(privilegeGroupInfo); //删除权限组 privilegeDAOImpl.deletePrivilegeGroup(privilegeGroupObj); List privileges = privilegeDAOImpl.queryPrivilegeRel(privilegeGroupObj); if(privileges !=null && privileges.size()>0) { //删除权限组和权限关系 privilegeDAOImpl.deletePrivilegeRel(privilegeGroupObj); } return new ResponseEntity("成功", HttpStatus.OK); } @Override public ResponseEntity addPrivilegeToPrivilegeGroup(String privilegeInfo) { Assert.isJsonObject(privilegeInfo, "请求报文不是有效的json格式"); Assert.jsonObjectHaveKey(privilegeInfo, "pgId", "请求报文中未包含pgId节点"); Assert.jsonObjectHaveKey(privilegeInfo, "storeId", "请求报文中未包含storeId节点"); Assert.jsonObjectHaveKey(privilegeInfo, "pId", "请求报文中未包含pId节点"); JSONObject privilegeObj = JSONObject.parseObject(privilegeInfo); //根据权限组ID和商户ID查询是否有数据 List privilegeGroups = privilegeDAOImpl.queryPrivilegeGroup(privilegeObj); Assert.isNotNull(privilegeGroups, "当前没有权限操作权限组pgId = " + privilegeObj.getString("pgId")); if (!privilegeDAOImpl.addPrivilegeRel(privilegeObj)) { return new ResponseEntity("添加权限失败", HttpStatus.INTERNAL_SERVER_ERROR); } return new ResponseEntity("成功", HttpStatus.OK); } /** * * @param privilegeInfo * @return */ @Override public ResponseEntity deletePrivilegeToPrivilegeGroup(String privilegeInfo) { Assert.isJsonObject(privilegeInfo, "请求报文不是有效的json格式"); Assert.jsonObjectHaveKey(privilegeInfo, "pgId", "请求报文中未包含pgId节点"); Assert.jsonObjectHaveKey(privilegeInfo, "storeId", "请求报文中未包含storeId节点"); Assert.jsonObjectHaveKey(privilegeInfo, "pId", "请求报文中未包含pId节点"); JSONObject privilegeObj = JSONObject.parseObject(privilegeInfo); //根据权限组ID和商户ID查询是否有数据 List privilegeGroups = privilegeDAOImpl.queryPrivilegeGroup(privilegeObj); Assert.isNotNull(privilegeGroups, "当前没有权限操作权限组pgId = " + privilegeObj.getString("pgId")); if (!privilegeDAOImpl.deletePrivilegeRel(privilegeObj)) { return new ResponseEntity("删除权限失败", HttpStatus.INTERNAL_SERVER_ERROR); } return new ResponseEntity("成功", HttpStatus.OK); } /** * 员工添加权限或权限组 * @param privilegeInfo * @return */ @Override public ResponseEntity addStaffPrivilegeOrPrivilegeGroup(String privilegeInfo) { JSONObject privilegeObj = validateData(privilegeInfo); //根据权限组ID和商户ID查询是否有数据 String pFlag = privilegeObj.getString("pFlag");//权限组 privilegeObj.put("privilegeFlag","1".equals(pFlag)?"1":"0"); List privilegeGroups = privilegeDAOImpl.queryUserPrivilege(privilegeObj); Assert.listIsNull(privilegeGroups, "已经存在该权限无需多次添加" + privilegeInfo); if (!privilegeDAOImpl.addUserPrivilege(privilegeObj)) { return new ResponseEntity("添加权限失败", HttpStatus.INTERNAL_SERVER_ERROR); } return new ResponseEntity("成功", HttpStatus.OK); } /** * 删除员工权限 * @param privilegeInfo * @return */ @Override public ResponseEntity deleteStaffPrivilegeOrPrivilegeGroup(String privilegeInfo) { JSONObject privilegeObj = validateDeleteStaffPrivilegeData(privilegeInfo); //根据权限组ID和商户ID查询是否有数据 String pFlag = privilegeObj.getString("pFlag");//权限组 privilegeObj.put("privilegeFlag","1".equals(pFlag)?"1":"0"); List privilegeGroups = privilegeDAOImpl.queryUserPrivilege(privilegeObj); Assert.isNotNull(privilegeGroups, "不存在该权限" + privilegeInfo); if (!privilegeDAOImpl.deleteUserPrivilege(privilegeObj)) { return new ResponseEntity("添加权限失败", HttpStatus.INTERNAL_SERVER_ERROR); } return new ResponseEntity("成功", HttpStatus.OK); } /** * 数据校验 * @param privilegeInfo * @return */ private JSONObject validateDeleteStaffPrivilegeData(String privilegeInfo) { Assert.isJsonObject(privilegeInfo, "请求报文不是有效的json格式"); Assert.jsonObjectHaveKey(privilegeInfo, "pId", "请求报文中未包含pId节点"); Assert.jsonObjectHaveKey(privilegeInfo, "pFlag", "请求报文中未包含pFlag节点"); Assert.jsonObjectHaveKey(privilegeInfo, "userId", "请求报文中未包含userId节点"); Assert.jsonObjectHaveKey(privilegeInfo, "storeId", "请求报文中未包含storeId节点"); Assert.jsonObjectHaveKey(privilegeInfo, "storeTypeCd", "请求报文中未包含storeTypeCd节点"); JSONObject privilegeObj = JSONObject.parseObject(privilegeInfo); String pFlag = privilegeObj.getString("pFlag");//权限组 if("1".equals(pFlag)){ validatePrivilegeGroup(privilegeObj); return privilegeObj; } validatePrivilege(privilegeObj); return privilegeObj; } private JSONObject validateData(String privilegeInfo) { Assert.isJsonObject(privilegeInfo, "请求报文不是有效的json格式"); Assert.jsonObjectHaveKey(privilegeInfo, "pId", "请求报文中未包含pId节点"); Assert.jsonObjectHaveKey(privilegeInfo, "pFlag", "请求报文中未包含pFlag节点"); Assert.jsonObjectHaveKey(privilegeInfo, "userId", "请求报文中未包含userId节点"); Assert.jsonObjectHaveKey(privilegeInfo, "storeId", "请求报文中未包含storeId节点"); Assert.jsonObjectHaveKey(privilegeInfo, "storeTypeCd", "请求报文中未包含storeTypeCd节点"); JSONObject privilegeObj = JSONObject.parseObject(privilegeInfo); String pFlag = privilegeObj.getString("pFlag");//权限组 if("1".equals(pFlag)){ validatePrivilegeGroup(privilegeObj); return privilegeObj; } validatePrivilege(privilegeObj); return privilegeObj; } /** * 权限组数据校验 * @param privilegeObj */ private void validatePrivilegeGroup(JSONObject privilegeObj){ //判断当前权限组是否隶属于 当前商户 privilegeObj.put("pgId",privilegeObj.getString("pId")); List privilegeGroups = privilegeDAOImpl.queryPrivilegeGroup(privilegeObj); if(privilegeGroups == null || privilegeGroups.size() == 0){ throw new SMOException(1999,"当前没有权限操作该权限组"+privilegeGroups.toString()); } } /** * 权限数据校验 * @param privilegeObj */ private void validatePrivilege(JSONObject privilegeObj){ privilegeObj.put("domain",privilegeObj.getString("storeTypeCd")); List privileges = privilegeDAOImpl.queryPrivilege(privilegeObj); if(privileges == null || privileges.size() == 0){ throw new SMOException(1999,"当前没有权限操作该权限"+privileges.toString()); } } public IPrivilegeDAO getPrivilegeDAOImpl() { return privilegeDAOImpl; } public void setPrivilegeDAOImpl(IPrivilegeDAO privilegeDAOImpl) { this.privilegeDAOImpl = privilegeDAOImpl; } }