From c0144e9d03472072f6c9eecef3f4347520b8328e Mon Sep 17 00:00:00 2001
From: 龚焕茏 <2842157468@qq.com>
Date: 星期五, 19 四月 2024 10:47:51 +0800
Subject: [PATCH] 接口权限精确到按钮补充
---
ycl-server/src/main/java/com/ycl/platform/controller/WorkOrderController.java | 12 ++++++++++++
1 files changed, 12 insertions(+), 0 deletions(-)
diff --git a/ycl-server/src/main/java/com/ycl/platform/controller/WorkOrderController.java b/ycl-server/src/main/java/com/ycl/platform/controller/WorkOrderController.java
index 1356a02..93cb878 100644
--- a/ycl-server/src/main/java/com/ycl/platform/controller/WorkOrderController.java
+++ b/ycl-server/src/main/java/com/ycl/platform/controller/WorkOrderController.java
@@ -12,6 +12,7 @@
import io.swagger.annotations.ApiOperation;
import jakarta.validation.constraints.NotEmpty;
import lombok.RequiredArgsConstructor;
+import org.springframework.security.access.prepost.PreAuthorize;
import org.springframework.validation.annotation.Validated;
import org.springframework.web.bind.annotation.*;
@@ -35,18 +36,21 @@
@PostMapping
@ApiOperation(value = "娣诲姞", notes = "娣诲姞")
+ @PreAuthorize("@ss.hasPermi('work:order:add')")
public Result add(@RequestBody @Validated(Add.class) WorkOrderForm form) {
return workOrderService.add(form);
}
@PutMapping
@ApiOperation(value = "淇敼", notes = "淇敼")
+ @PreAuthorize("@ss.hasPermi('work:order:edit')")
public Result update(@RequestBody @Validated(Update.class) WorkOrderForm form) {
return workOrderService.update(form);
}
@PutMapping("/auditing")
@ApiOperation(value = "瀹℃牳", notes = "宸ュ崟瀹℃牳")
+ @PreAuthorize("@ss.hasPermi('work:order:audit')")
public Result auditing(@RequestBody @Validated(Update.class) WorkOrderAuditingForm form) {
return workOrderService.auditing(form);
}
@@ -89,48 +93,56 @@
@DeleteMapping("/{id}")
@ApiOperation(value = "ID鍒犻櫎", notes = "ID鍒犻櫎")
+ @PreAuthorize("@ss.hasPermi('work:order:remove')")
public Result removeById(@PathVariable("id") String id) {
return workOrderService.removeById(id);
}
@DeleteMapping("/batch")
@ApiOperation(value = "鎵归噺鍒犻櫎", notes = "鎵归噺鍒犻櫎")
+ @PreAuthorize("@ss.hasPermi('work:order:remove')")
public Result remove(@RequestBody @NotEmpty(message = "璇烽�夋嫨鏁版嵁") List<String> ids) {
return workOrderService.remove(ids);
}
@PostMapping("/page")
@ApiOperation(value = "鍒嗛〉", notes = "鍒嗛〉")
+ @PreAuthorize("@ss.hasPermi('work:order:page')")
public Result page(@RequestBody WorkOrderQuery query) {
return workOrderService.page(query);
}
@PostMapping("/distribute/page")
@ApiOperation(value = "涓嬪彂鍒嗛〉", notes = "涓嬪彂鍒嗛〉")
+ @PreAuthorize("@ss.hasPermi('work:order:distribute')")
public Result distributePage(@RequestBody DistributeWorkOrderQuery query) {
return workOrderService.distributePage(query);
}
@PostMapping("/distribute/fast")
@ApiOperation(value = "蹇�熶笅鍙�", notes = "蹇�熶笅鍙�")
+ @PreAuthorize("@ss.hasPermi('work:order:distribute')")
public Result distributeFast(@RequestBody @Validated DistributeWorkOrderVO data) {
return workOrderService.distributeFast(data);
}
@PostMapping("/distribute/ids")
@ApiOperation(value = "涓嬪彂閫夋嫨", notes = "涓嬪彂閫夋嫨")
+ @PreAuthorize("@ss.hasPermi('work:order:distribute')")
public Result selectedIdsDistribute(@RequestBody DistributeWorkOrderQuery query) {
return workOrderService.selectedIdsDistribute(query);
}
@GetMapping("/{id}")
@ApiOperation(value = "璇︽儏", notes = "璇︽儏")
+ @PreAuthorize("@ss.hasPermi('work:order:query')")
public Result detail(@PathVariable("id") String id) {
return workOrderService.detail(id);
}
@GetMapping("/list")
@ApiOperation(value = "鍒楄〃", notes = "鍒楄〃")
+ @PreAuthorize("@ss.hasPermi('work:order:list')")
public Result list() {
return workOrderService.all();
}
--
Gitblit v1.8.0