package middleware
|
|
import (
|
"aps_crm/constvar"
|
"aps_crm/pkg/contextx"
|
"aps_crm/pkg/ecode"
|
"aps_crm/service"
|
"aps_crm/utils"
|
"strconv"
|
"strings"
|
|
"github.com/gin-gonic/gin"
|
)
|
|
var casbinService = service.ServiceGroup.CasbinService
|
|
// CasbinHandler 拦截器
|
func CasbinHandler() gin.HandlerFunc {
|
//return func(c *gin.Context) {
|
// waitUse, _ := utils.GetClaims(c)
|
// ctx := new(contextx.Context).SetCtx(c)
|
// //获取请求的PATH
|
// path := c.Request.URL.Path
|
// //obj := strings.TrimPrefix(path, global.GVA_CONFIG.System.RouterPrefix)
|
// obj := strings.TrimPrefix(path, "")
|
// // 获取请求方法
|
// act := c.Request.Method
|
// // 获取用户的角色
|
// sub := strconv.Itoa(int(waitUse.AuthorityId))
|
// e := casbinService.Casbin() // 判断策略中是否存在
|
// success, _ := e.Enforce(sub, obj, act)
|
// if !success {
|
// // response.FailWithDetailed(gin.H{}, "权限不足", c)
|
// c.Abort()
|
// ctx.Fail(ecode.NoPowerErr)
|
// return
|
// }
|
// c.Next()
|
//}
|
|
return func(c *gin.Context) {
|
waitUse, _ := utils.GetClaims(c)
|
ctx := new(contextx.Context).SetCtx(c)
|
//获取请求的PATH
|
path := c.Request.URL.Path
|
//obj := strings.TrimPrefix(path, global.GVA_CONFIG.System.RouterPrefix)
|
obj := strings.TrimPrefix(path, "")
|
// 获取请求方法
|
act := c.Request.Method
|
// 获取用户的角色
|
sub := strconv.Itoa(int(waitUse.AuthorityId))
|
|
// 超级管理员不需要验证权限
|
if waitUse.UserType == constvar.UserTypeSuper {
|
c.Next()
|
}
|
|
e := casbinService.Casbin() // 判断策略中是否存在
|
success, _ := e.Enforce(sub, obj, act)
|
if !success {
|
// response.FailWithDetailed(gin.H{}, "权限不足", c)
|
c.Abort()
|
ctx.Fail(ecode.NoPowerErr)
|
return
|
}
|
c.Next()
|
}
|
}
|
