在需要驗證項目人員權限的控制器中加入如下代碼
~~~
//訪問范圍
public $visitRange;
protected function init()
{
$request = Request::instance();
$action = $request->action(true);
//獲取當前action名稱
switch ($action) {
case "addSubcontractContract":
case "listSubcontractContract":
case "editSubcontractContract":
case "delSubcontractContract":
//設置請求類型
$this->requestType = "post";
break;
case "getSubcontractContractById":
//設置請求類型
$this->requestType = "get|post";
break;
}
/**
* manager_staff 項目經理ID
* management_staff 項目人員ID
* material_staff 材料人員
* design_staff 設計人員
* special_staff 特殊人員ID
*/
//采用switch來處理每個請求接口不同的訪問人
switch ($action) {
//有權限添加分包合同:項目經理,項目人員,特殊人員
case "addSubcontractContract":
$this->visitRange = 'manager_staff,management_staff,special_staff';
break;
case 'listSubcontractContract':
case 'getSubcontractContractById':
case "editSubcontractContract":
//有權限刪除分包合同:項目經理,特殊權限人員
case "delSubcontractContract":
$this->visitRange = 'manager_staff,special_staff';
break;
}
//self::check($this->visitRange);
}
/**
* Note:
* Think:
* User: HuYang-TSJ
* Date: 2019/2/28 9:36
* @param $visitRange
* @throws RequestException
* @throws \think\db\exception\DataNotFoundException
* @throws \think\db\exception\ModelNotFoundException
* @throws \think\exception\DbException
*/
public function check($visitRange)
{
$projectIdArray = input('project_id');
$id = input('id');
if (!empty($id)) {
$res = SubConModel::field('id,project_id')->select($id);
$projectIdArray = array();
foreach ($res as $item) {
array_push($projectIdArray, $item['project_id']);
}
}
$project = ProjectStaff::where('project_id', 'in', $projectIdArray)->field('id,' . $visitRange)
->select();
$tempStaffId = '';
$visitRange = explode(',', $visitRange);
foreach ($project as $p) {
$p = $p->getData();
foreach ($visitRange as $item) {
$tempStaffId = $tempStaffId . $p[$item] . ',';
}
}
if (!empty($project)) {
$user = WebSys::getTokenUser()['id'];
if (!in_array($user, explode(',', $tempStaffId))) {
throw new RequestException([
'code' => 403,
'msg' => "無權訪問,請在項目人員中修改所處職位!"
]);
}
}
}
~~~
