alicorn-dev/KintoneAppBuilder
3
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

app&appversion&flowhistory&role&permission

Browse Source
This commit is contained in:
方 柏
2024-11-22 15:19:49 +09:00
parent fa120d2ce9
commit fa1d3b01b0
7 changed files with 259 additions and 69 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
backend/app/api/api_v1/routers/auth.py
View File

@@ -25,11 +25,15 @@ async def login(
minutes=security.ACCESS_TOKEN_EXPIRE_MINUTES
)
if user.is_superuser:
permissions = "admin"
roles = "super"
permissions = "ALL"
else:
permissions = "user"
roles = ";".join(role.name for role in user.roles)
perlst = [perm.privilege for role in user.roles for perm in role.permissions]
permissions =";".join(list(set(perlst)))
access_token = security.create_access_token(
data={"sub": user.id, "permissions": permissions},
data={"sub": user.id, "roles":roles,"permissions": permissions ,},
expires_delta=access_token_expires,
)

42
backend/app/api/api_v1/routers/platform.py
View File

@@ -23,7 +23,7 @@ platform_router = r = APIRouter()
)
async def apps_list(
request: Request,
user = Depends(get_current_user),
user = Depends(get_current_active_user),
db=Depends(get_db),
):
try:
@@ -60,7 +60,7 @@ async def apps_list(
async def apps_update(
request: Request,
app: AppVersion,
user=Depends(get_current_user),
user=Depends(get_current_active_user),
db=Depends(get_db),
):
try:
@@ -68,7 +68,21 @@ async def apps_update(
except Exception as e:
raise APIException('platform:apps',request.url._url,f"Error occurred while get create app :",e)
@r.delete(
"/apps/{domainurl}/{appid}", response_model_exclude_none=True
)
async def apps_delete(
request: Request,
domainurl:str,
appid: str,
user=Depends(get_current_active_user),
db=Depends(get_db),
):
try:
return delete_apps(db, domainurl,appid)
except Exception as e:
raise APIException('platform:apps',request.url._url,f"Error occurred while delete apps({domainurl}:{appid}):",e)
@r.get(
"/appsettings/{id}",
response_model=App,
@@ -183,7 +197,7 @@ async def flow_details(
async def flow_list(
request: Request,
appid: str,
user=Depends(get_current_user),
user=Depends(get_current_active_user),
db=Depends(get_db),
):
try:
@@ -198,8 +212,8 @@ async def flow_list(
@r.post("/flow", response_model=Flow, response_model_exclude_none=True)
async def flow_create(
request: Request,
flow: FlowBase,
user=Depends(get_current_user),
flow: FlowIn,
user=Depends(get_current_active_user),
db=Depends(get_db),
):
try:
@@ -214,11 +228,12 @@ async def flow_create(
)
async def flow_edit(
request: Request,
flow: FlowBase,
flow: FlowIn,
user=Depends(get_current_active_user),
db=Depends(get_db),
):
try:
return edit_flow(db, flow)
return edit_flow(db, flow,user.id)
except Exception as e:
raise APIException('platform:flow',request.url._url,f"Error occurred while edit flow:",e)
@@ -256,7 +271,7 @@ async def domain_details(
async def domain_create(
request: Request,
domain: DomainBase,
user=Depends(get_current_user),
user=Depends(get_current_active_user),
db=Depends(get_db),
):
try:
@@ -271,10 +286,11 @@ async def domain_create(
async def domain_edit(
request: Request,
domain: DomainBase,
user=Depends(get_current_active_user),
db=Depends(get_db),
):
try:
return edit_domain(db, domain)
return edit_domain(db, domain,user.id)
except Exception as e:
raise APIException('platform:domain',request.url._url,f"Error occurred while edit domain:",e)
@@ -300,7 +316,7 @@ async def domain_delete(
async def userdomain_details(
request: Request,
userId: Optional[int] = Query(None, alias="userId"),
user=Depends(get_current_user),
user=Depends(get_current_active_user),
db=Depends(get_db),
):
try:
@@ -348,7 +364,7 @@ async def userdomain_delete(
async def get_useractivedomain(
request: Request,
userId: Optional[int] = Query(None, alias="userId"),
user=Depends(get_current_user),
user=Depends(get_current_active_user),
db=Depends(get_db),
):
try:
@@ -368,7 +384,7 @@ async def update_activeuserdomain(
request: Request,
domainid:int,
userId: Optional[int] = Query(None, alias="userId"),
user=Depends(get_current_user),
user=Depends(get_current_active_user),
db=Depends(get_db),
):
try:

41
backend/app/api/api_v1/routers/users.py
View File

@@ -1,4 +1,4 @@
from fastapi import APIRouter, Request, Depends, Response, encoders
from fastapi import APIRouter, Request, Depends, Response, Security, encoders
import typing as t
from app.db.session import get_db
@@ -8,9 +8,11 @@ from app.db.crud import (
create_user,
delete_user,
edit_user,
assign_userrole,
get_roles,
)
from app.db.schemas import UserCreate, UserEdit, User, UserOut
from app.core.auth import get_current_active_user, get_current_active_superuser
from app.db.schemas import UserCreate, UserEdit, User, UserOut,Role
from app.core.auth import get_current_user,get_current_active_user, get_current_active_superuser
users_router = r = APIRouter()
@@ -23,14 +25,14 @@ users_router = r = APIRouter()
async def users_list(
response: Response,
db=Depends(get_db),
current_user=Depends(get_current_active_superuser),
current_user=Depends(get_current_active_user),
):
"""
Get all users
"""
users = get_users(db)
users = get_users(db,current_user.is_superuser)
# This is necessary for react-admin to work
response.headers["Content-Range"] = f"0-9/{len(users)}"
#response.headers["Content-Range"] = f"0-9/{len(users)}"
return users
@@ -105,3 +107,30 @@ async def user_delete(
Delete existing user
"""
return delete_user(db, user_id)
@r.post("/userrole",
response_model=User,
response_model_exclude_none=True,)
async def assign_role(
request: Request,
userid:int,
roles:t.List[int],
db=Depends(get_db)
):
return assign_userrole(db,userid,roles)
@r.get(
"/roles",
response_model=t.List[Role],
response_model_exclude_none=True,
)
async def roles_list(
response: Response,
db=Depends(get_db),
current_user=Security(get_current_active_user, scopes=["role_list"]),
):
roles = get_roles(db)
return roles