EdgeAPI/internal/rpc/services/service_http_auth_policy.go

// Copyright 2021 Liuxiangchao iwind.liu@gmail.com. All rights reserved.

package services

import (
	"context"
	"github.com/TeaOSLab/EdgeAPI/internal/db/models"
	"github.com/TeaOSLab/EdgeCommon/pkg/rpc/pb"
)

// HTTPAuthPolicyService 服务认证策略服务
type HTTPAuthPolicyService struct {
	BaseService
}

// CreateHTTPAuthPolicy 创建策略
func (this *HTTPAuthPolicyService) CreateHTTPAuthPolicy(ctx context.Context, req *pb.CreateHTTPAuthPolicyRequest) (*pb.CreateHTTPAuthPolicyResponse, error) {
	_, userId, err := this.ValidateAdminAndUser(ctx, false)
	if err != nil {
		return nil, err
	}

	var tx = this.NullTx()
	policyId, err := models.SharedHTTPAuthPolicyDAO.CreateHTTPAuthPolicy(tx, userId, req.Name, req.Type, req.ParamsJSON)
	if err != nil {
		return nil, err
	}
	return &pb.CreateHTTPAuthPolicyResponse{HttpAuthPolicyId: policyId}, nil
}

// UpdateHTTPAuthPolicy 修改策略
func (this *HTTPAuthPolicyService) UpdateHTTPAuthPolicy(ctx context.Context, req *pb.UpdateHTTPAuthPolicyRequest) (*pb.RPCSuccess, error) {
	_, userId, err := this.ValidateAdminAndUser(ctx, false)
	if err != nil {
		return nil, err
	}

	var tx = this.NullTx()

	// 检查用户权限
	if userId > 0 {
		err = models.SharedHTTPAuthPolicyDAO.CheckUserPolicy(tx, userId, req.HttpAuthPolicyId)
		if err != nil {
			return nil, err
		}
	}

	err = models.SharedHTTPAuthPolicyDAO.UpdateHTTPAuthPolicy(tx, req.HttpAuthPolicyId, req.Name, req.ParamsJSON, req.IsOn)
	if err != nil {
		return nil, err
	}
	return this.Success()
}

// FindEnabledHTTPAuthPolicy 查找策略信息
func (this *HTTPAuthPolicyService) FindEnabledHTTPAuthPolicy(ctx context.Context, req *pb.FindEnabledHTTPAuthPolicyRequest) (*pb.FindEnabledHTTPAuthPolicyResponse, error) {
	_, userId, err := this.ValidateAdminAndUser(ctx, false)
	if err != nil {
		return nil, err
	}

	var tx = this.NullTx()

	// 检查用户权限
	if userId > 0 {
		err = models.SharedHTTPAuthPolicyDAO.CheckUserPolicy(tx, userId, req.HttpAuthPolicyId)
		if err != nil {
			return nil, err
		}
	}

	policy, err := models.SharedHTTPAuthPolicyDAO.FindEnabledHTTPAuthPolicy(tx, req.HttpAuthPolicyId)
	if err != nil {
		return nil, err
	}
	if policy == nil {
		return &pb.FindEnabledHTTPAuthPolicyResponse{HttpAuthPolicy: nil}, nil
	}

	return &pb.FindEnabledHTTPAuthPolicyResponse{HttpAuthPolicy: &pb.HTTPAuthPolicy{
		Id:         int64(policy.Id),
		IsOn:       policy.IsOn,
		Name:       policy.Name,
		Type:       policy.Type,
		ParamsJSON: policy.Params,
	}}, nil
}
阶段性提交 2021-06-17 21:17:53 +08:00			`// Copyright 2021 Liuxiangchao iwind.liu@gmail.com. All rights reserved.`

			`package services`

			`import (`
			`"context"`
			`"github.com/TeaOSLab/EdgeAPI/internal/db/models"`
			`"github.com/TeaOSLab/EdgeCommon/pkg/rpc/pb"`
			`)`

			`// HTTPAuthPolicyService 服务认证策略服务`
			`type HTTPAuthPolicyService struct {`
			`BaseService`
			`}`

			`// CreateHTTPAuthPolicy 创建策略`
			`func (this HTTPAuthPolicyService) CreateHTTPAuthPolicy(ctx context.Context, req pb.CreateHTTPAuthPolicyRequest) (*pb.CreateHTTPAuthPolicyResponse, error) {`
优化接口权限 2022-09-17 16:07:37 +08:00			`_, userId, err := this.ValidateAdminAndUser(ctx, false)`
阶段性提交 2021-06-17 21:17:53 +08:00			`if err != nil {`
			`return nil, err`
			`}`

			`var tx = this.NullTx()`
可以通过用户API修改鉴权 2022-08-30 11:23:35 +08:00			`policyId, err := models.SharedHTTPAuthPolicyDAO.CreateHTTPAuthPolicy(tx, userId, req.Name, req.Type, req.ParamsJSON)`
阶段性提交 2021-06-17 21:17:53 +08:00			`if err != nil {`
			`return nil, err`
			`}`
			`return &pb.CreateHTTPAuthPolicyResponse{HttpAuthPolicyId: policyId}, nil`
			`}`

			`// UpdateHTTPAuthPolicy 修改策略`
			`func (this HTTPAuthPolicyService) UpdateHTTPAuthPolicy(ctx context.Context, req pb.UpdateHTTPAuthPolicyRequest) (*pb.RPCSuccess, error) {`
优化接口权限 2022-09-17 16:07:37 +08:00			`_, userId, err := this.ValidateAdminAndUser(ctx, false)`
阶段性提交 2021-06-17 21:17:53 +08:00			`if err != nil {`
			`return nil, err`
			`}`

			`var tx = this.NullTx()`
可以通过用户API修改鉴权 2022-08-30 11:23:35 +08:00
			`// 检查用户权限`
			`if userId > 0 {`
			`err = models.SharedHTTPAuthPolicyDAO.CheckUserPolicy(tx, userId, req.HttpAuthPolicyId)`
			`if err != nil {`
			`return nil, err`
			`}`
			`}`

阶段性提交 2021-06-17 21:17:53 +08:00			`err = models.SharedHTTPAuthPolicyDAO.UpdateHTTPAuthPolicy(tx, req.HttpAuthPolicyId, req.Name, req.ParamsJSON, req.IsOn)`
			`if err != nil {`
			`return nil, err`
			`}`
			`return this.Success()`
			`}`

			`// FindEnabledHTTPAuthPolicy 查找策略信息`
			`func (this HTTPAuthPolicyService) FindEnabledHTTPAuthPolicy(ctx context.Context, req pb.FindEnabledHTTPAuthPolicyRequest) (*pb.FindEnabledHTTPAuthPolicyResponse, error) {`
优化接口权限 2022-09-17 16:07:37 +08:00			`_, userId, err := this.ValidateAdminAndUser(ctx, false)`
阶段性提交 2021-06-17 21:17:53 +08:00			`if err != nil {`
			`return nil, err`
			`}`

			`var tx = this.NullTx()`
可以通过用户API修改鉴权 2022-08-30 11:23:35 +08:00
			`// 检查用户权限`
			`if userId > 0 {`
			`err = models.SharedHTTPAuthPolicyDAO.CheckUserPolicy(tx, userId, req.HttpAuthPolicyId)`
			`if err != nil {`
			`return nil, err`
			`}`
			`}`

阶段性提交 2021-06-17 21:17:53 +08:00			`policy, err := models.SharedHTTPAuthPolicyDAO.FindEnabledHTTPAuthPolicy(tx, req.HttpAuthPolicyId)`
			`if err != nil {`
			`return nil, err`
			`}`
			`if policy == nil {`
			`return &pb.FindEnabledHTTPAuthPolicyResponse{HttpAuthPolicy: nil}, nil`
			`}`

			`return &pb.FindEnabledHTTPAuthPolicyResponse{HttpAuthPolicy: &pb.HTTPAuthPolicy{`
			`Id: int64(policy.Id),`
优化代码 2022-03-22 21:45:07 +08:00			`IsOn: policy.IsOn,`
阶段性提交 2021-06-17 21:17:53 +08:00			`Name: policy.Name,`
			`Type: policy.Type,`
优化代码 2022-03-22 19:30:30 +08:00			`ParamsJSON: policy.Params,`
阶段性提交 2021-06-17 21:17:53 +08:00			`}}, nil`
			`}`