npm - @kne/fastify-account - Versions diffs - 1.0.0-alpha.0 - Mend

@kne/fastify-account 1.0.0-alpha.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (37) hide show

package/README.md +1436 -0
package/index.js +54 -0
package/libs/controllers/account.js +189 -0
package/libs/controllers/admin.js +153 -0
package/libs/controllers/adminPermission.js +230 -0
package/libs/controllers/adminRole.js +145 -0
package/libs/controllers/adminTenant.js +461 -0
package/libs/controllers/tenant.js +22 -0
package/libs/controllers/user.js +12 -0
package/libs/models/admin-role.js +19 -0
package/libs/models/application.js +36 -0
package/libs/models/login-log.js +15 -0
package/libs/models/permission.js +53 -0
package/libs/models/tenant-application.js +28 -0
package/libs/models/tenant-org.js +30 -0
package/libs/models/tenant-permission.js +28 -0
package/libs/models/tenant-role-application.js +32 -0
package/libs/models/tenant-role-permission.js +32 -0
package/libs/models/tenant-role.js +27 -0
package/libs/models/tenant-share-group-permission.js +22 -0
package/libs/models/tenant-share-group.js +22 -0
package/libs/models/tenant-source-user-share-group.js +22 -0
package/libs/models/tenant-token.js +32 -0
package/libs/models/tenant-user-org.js +22 -0
package/libs/models/tenant-user-role.js +22 -0
package/libs/models/tenant-user-share-group.js +22 -0
package/libs/models/tenant-user.js +56 -0
package/libs/models/tenant.js +38 -0
package/libs/models/user-account.js +26 -0
package/libs/models/user.js +50 -0
package/libs/models/verification-code.js +26 -0
package/libs/services/account.js +200 -0
package/libs/services/admin.js +183 -0
package/libs/services/permission.js +465 -0
package/libs/services/tenant.js +576 -0
package/libs/services/user.js +108 -0
package/package.json +61 -0

package/libs/services/permission.js ADDED Viewed

@@ -0,0 +1,465 @@
+const fp = require('fastify-plugin');
+const isNil = require('lodash/isNil');
+module.exports = fp(async (fastify, options) => {
+  const addApplication = async application => {
+    return fastify.account.models.application.create(application);
+  };
+  const saveApplication = async ({ id, ...others }) => {
+    const application = await fastify.account.models.application.findByPk(id);
+    if (!application) {
+      throw new Error('应用不存在');
+    }
+    ['name', 'code', 'avatar', 'url', 'description'].forEach(name => {
+      if (!isNil(others[name])) {
+        application[name] = others[name];
+      }
+    });
+    await application.save();
+  };
+  const deleteApplication = async ({ id }) => {
+    const application = await fastify.account.models.application.findByPk(id);
+    if (!application) {
+      throw new Error('应用不存在');
+    }
+    if (
+      (await fastify.account.models.tenantApplication.count({
+        where: {
+          applicationId: application.id
+        }
+      })) > 0
+    ) {
+      throw new Error('应用已经开放给其他租户使用，不能删除');
+    }
+    const permissionIdList = (
+      await fastify.account.models.permission.findAll({
+        where: { applicationId: application.id }
+      })
+    ).map(({ id }) => id);
+    const t = await fastify.sequelize.instance.transaction();
+    try {
+      await fastify.account.models.tenantPermission.destroy(
+        {
+          where: {
+            permissionId: {
+              [fastify.sequelize.Sequelize.Op.in]: permissionIdList
+            }
+          }
+        },
+        { transaction: t }
+      );
+      await fastify.account.models.tenantRolePermission.destroy(
+        {
+          where: {
+            permissionId: {
+              [fastify.sequelize.Sequelize.Op.in]: permissionIdList
+            }
+          }
+        },
+        { transaction: t }
+      );
+      await fastify.account.models.permission.destroy({
+        where: {
+          applicationId: application.id
+        },
+        transaction: t
+      });
+      await application.destroy({ transaction: t });
+      await t.commit();
+    } catch (e) {
+      await t.rollback();
+      throw e;
+    }
+  };
+  const getApplicationList = async ({ tenantId }) => {
+    const query = {};
+    if (tenantId) {
+      const tenant = await fastify.account.models.tenant.findByPk(tenantId);
+      if (!tenant) {
+        throw new Error('租户不存在');
+      }
+      const tenantApplications = await fastify.account.models.tenantApplication.findAll({
+        where: { tenantId }
+      });
+      query.id = {
+        [fastify.sequelize.Sequelize.Op.in]: tenantApplications.map(({ applicationId }) => applicationId)
+      };
+    }
+    return await fastify.account.models.application.findAll({
+      where: query
+    });
+  };
+  const addPermission = async ({ applicationId, pid, code, name, type, isModule, isMust, description }) => {
+    if (!(await fastify.account.models.application.findByPk(applicationId))) {
+      throw new Error('应用不存在');
+    }
+    const paths = [];
+    if (pid > 0) {
+      const parentNode = await fastify.account.models.permission.findByPk(pid);
+      if (!parentNode) {
+        throw new Error('未找到父级');
+      }
+      paths.push(...parentNode.paths, parentNode.id);
+    }
+    if (
+      (await fastify.account.models.permission.count({
+        where: {
+          pid,
+          code,
+          applicationId
+        }
+      })) > 0
+    ) {
+      throw new Error('同一级权限code不能重复');
+    }
+    return await fastify.account.models.permission.create({
+      applicationId,
+      code,
+      description,
+      name,
+      type,
+      pid,
+      isModule,
+      isMust,
+      paths
+    });
+  };
+  const getPermissionList = async ({ applicationId, tenantId }) => {
+    const query = {};
+    if (tenantId) {
+      const tenant = await fastify.account.models.tenant.findByPk(tenantId);
+      if (!tenant) {
+        throw new Error('租户不存在');
+      }
+      const tenantPermissions = await fastify.account.models.tenantPermission.findAll({
+        where: { tenantId }
+      });
+      query[fastify.sequelize.Sequelize.Op.or] = [
+        {
+          id: {
+            [fastify.sequelize.Sequelize.Op.in]: tenantPermissions.map(({ permissionId }) => permissionId)
+          }
+        },
+        { isMust: 1 }
+      ];
+    }
+    return await fastify.account.models.permission.findAll({
+      where: Object.assign({}, { applicationId }, query)
+    });
+  };
+  const deletePermission = async ({ id }) => {
+    const currentPermission = await fastify.account.models.permission.findByPk(id);
+    if (!currentPermission) {
+      throw new Error('权限不存在');
+    }
+    const permissionList = await fastify.account.models.permission.findAll({
+      where: {
+        applicationId: currentPermission.applicationId
+      }
+    });
+    const childrenNode = permissionList.filter(({ paths }) => {
+      return paths.indexOf(currentPermission.id) > -1;
+    });
+    const permissionIdList = [currentPermission.id, ...childrenNode.map(({ id }) => id)];
+    const t = await fastify.sequelize.instance.transaction();
+    try {
+      await fastify.account.models.tenantPermission.destroy({
+        where: {
+          permissionId: {
+            [fastify.sequelize.Sequelize.Op.in]: permissionIdList
+          }
+        },
+        transaction: t
+      });
+      await fastify.account.models.tenantRolePermission.destroy({
+        where: {
+          permissionId: {
+            [fastify.sequelize.Sequelize.Op.in]: permissionIdList
+          }
+        },
+        transaction: t
+      });
+      await fastify.account.models.permission.destroy({
+        where: {
+          id: {
+            [fastify.sequelize.Sequelize.Op.in]: permissionIdList
+          }
+        },
+        transaction: t
+      });
+      await t.commit();
+    } catch (e) {
+      await t.rollback();
+      throw e;
+    }
+  };
+  const savePermission = async permission => {
+    const currentPermission = await fastify.account.models.permission.findByPk(permission.id);
+    if (!permission) {
+      throw new Error('权限不存在');
+    }
+    ['name', 'type', 'isMust', 'description'].forEach(name => {
+      if (!isNil(permission[name])) {
+        currentPermission[name] = permission[name];
+      }
+    });
+    await currentPermission.save();
+  };
+  const saveTenantPermissionList = async ({ tenantId, applications, permissions }) => {
+    if (!(await fastify.account.models.tenant.findByPk(tenantId))) {
+      throw new Error('租户不存在');
+    }
+    const currentApplications = await fastify.account.models.tenantApplication.findAll({
+      where: { tenantId }
+    });
+    const currentApplicationIds = currentApplications.map(({ applicationId }) => applicationId);
+    const currentPermissions = await fastify.account.models.tenantPermission.findAll({
+      where: { tenantId }
+    });
+    const currentPermissionIds = currentPermissions.map(({ permissionId }) => permissionId);
+    const t = await fastify.sequelize.instance.transaction();
+    try {
+      //先删除，后添加
+      const needDeleteApplications = currentApplications.filter(item => applications.indexOf(item.applicationId) === -1).map(({ applicationId }) => applicationId);
+      const needAddApplications = applications.filter(applicationId => currentApplicationIds.indexOf(applicationId) === -1);
+      const needDeletePermissions = currentPermissions.filter(item => permissions.indexOf(item.permissionId) === -1).map(({ permissionId }) => permissionId);
+      const needAddPermissions = permissions.filter(permissionId => currentPermissionIds.indexOf(permissionId) === -1);
+      await fastify.account.models.tenantRoleApplication.destroy({
+        where: {
+          applicationId: {
+            [fastify.sequelize.Sequelize.Op.in]: needDeleteApplications
+          },
+          tenantId
+        },
+        transaction: t
+      });
+      await fastify.account.models.tenantRolePermission.destroy({
+        where: {
+          permissionId: {
+            [fastify.sequelize.Sequelize.Op.in]: needDeletePermissions
+          },
+          tenantId
+        },
+        transaction: t
+      });
+      await fastify.account.models.tenantApplication.destroy({
+        where: {
+          applicationId: {
+            [fastify.sequelize.Sequelize.Op.in]: needDeleteApplications
+          },
+          tenantId
+        },
+        transaction: t
+      });
+      await fastify.account.models.tenantPermission.destroy({
+        where: {
+          permissionId: {
+            [fastify.sequelize.Sequelize.Op.in]: needDeletePermissions
+          },
+          tenantId
+        },
+        transaction: t
+      });
+      needAddApplications.length > 0 &&
+        (await fastify.account.models.tenantApplication.bulkCreate(
+          needAddApplications.map(applicationId => {
+            return { tenantId, applicationId };
+          }),
+          { transaction: t }
+        ));
+      needAddPermissions.length > 0 &&
+        (await fastify.account.models.tenantPermission.bulkCreate(
+          needAddPermissions.map(permissionId => {
+            return { tenantId, permissionId };
+          }),
+          { transaction: t }
+        ));
+      await t.commit();
+    } catch (e) {
+      await t.rollback();
+      throw e;
+    }
+  };
+  const saveRolePermissionList = async ({ roleId, applications, permissions }) => {
+    const role = await fastify.account.models.tenantRole.findByPk(roleId);
+    if (!role) {
+      throw new Error('角色不存在');
+    }
+    if (!(await fastify.account.models.tenant.findByPk(role.tenantId))) {
+      throw new Error('租户不存在');
+    }
+    const tenantId = role.tenantId;
+    const tenantApplications = await fastify.account.models.tenantApplication.findAll({
+      attributes: ['applicationId'],
+      where: { tenantId }
+    });
+    const tenantPermissions = await fastify.account.models.tenantPermission.findAll({
+      attributes: ['permissionId'],
+      where: { tenantId }
+    });
+    const tenantApplicationIds = tenantApplications.map(({ applicationId }) => applicationId);
+    const tenantPermissionIds = tenantPermissions.map(({ permissionId }) => permissionId);
+    const currentApplications = await fastify.account.models.tenantRoleApplication.findAll({
+      where: {
+        roleId: role.id,
+        tenantId,
+        applicationId: {
+          [fastify.sequelize.Sequelize.Op.in]: tenantApplicationIds
+        }
+      }
+    });
+    const currentPermissions = await fastify.account.models.tenantRolePermission.findAll({
+      where: {
+        roleId: role.id,
+        tenantId,
+        permissionId: { [fastify.sequelize.Sequelize.Op.in]: tenantPermissionIds }
+      }
+    });
+    const currentApplicationIds = currentApplications.map(({ applicationId }) => applicationId);
+    const currentPermissionIds = currentPermissions.map(({ permissionId }) => permissionId);
+    const t = await fastify.sequelize.instance.transaction();
+    try {
+      //先删除，后添加
+      const needDeleteApplications = currentApplicationIds.filter(applicationId => applications.indexOf(applicationId) === -1);
+      const needAddApplications = applications.filter(applicationId => currentApplicationIds.indexOf(applicationId) === -1 && tenantApplicationIds.indexOf(applicationId) > -1);
+      const needDeletePermissions = currentPermissionIds.filter(permissionId => permissions.indexOf(permissionId) === -1);
+      const needAddPermissions = permissions.filter(permissionId => currentPermissionIds.indexOf(permissionId) === -1 && tenantPermissionIds.indexOf(permissionId) > -1);
+      needDeleteApplications.length > 0 &&
+        (await fastify.account.models.tenantRoleApplication.destroy({
+          where: {
+            applicationId: {
+              [fastify.sequelize.Sequelize.Op.in]: needDeleteApplications
+            },
+            tenantId
+          },
+          transaction: t
+        }));
+      needDeletePermissions.length > 0 &&
+        (await fastify.account.models.tenantRolePermission.destroy({
+          where: {
+            permissionId: {
+              [fastify.sequelize.Sequelize.Op.in]: needDeletePermissions
+            },
+            tenantId
+          },
+          transaction: t
+        }));
+      needAddApplications.length > 0 &&
+        (await fastify.account.models.tenantRoleApplication.bulkCreate(
+          needAddApplications.map(applicationId => {
+            return {
+              tenantId,
+              roleId,
+              applicationId
+            };
+          }),
+          { transaction: t }
+        ));
+      needAddPermissions.length > 0 &&
+        (await fastify.account.models.tenantRolePermission.bulkCreate(
+          needAddPermissions.map(permissionId => {
+            return {
+              tenantId,
+              roleId,
+              permissionId
+            };
+          }),
+          { transaction: t }
+        ));
+      await t.commit();
+    } catch (e) {
+      await t.rollback();
+      throw e;
+    }
+  };
+  const getTenantPermissionList = async ({ tenantId }) => {
+    await fastify.account.services.tenant.getTenantInfo({ id: tenantId });
+    const applications = await fastify.account.models.tenantApplication.findAll({
+      where: { tenantId, status: 0 }
+    });
+    const permissions = await fastify.account.models.tenantPermission.findAll({
+      where: { tenantId, status: 0 }
+    });
+    return { applications, permissions };
+  };
+  const getRolePermissionList = async ({ roleId }) => {
+    const role = await fastify.account.models.tenantRole.findByPk(roleId);
+    if (!role) {
+      throw new Error('角色不存在');
+    }
+    const applications = await fastify.account.models.tenantRoleApplication.findAll({
+      where: { roleId: role.id, tenantId: role.tenantId }
+    });
+    const permissions = await fastify.account.models.tenantRolePermission.findAll({
+      where: { roleId: role.id, tenantId: role.tenantId }
+    });
+    return { applications, permissions };
+  };
+  fastify.account.services.permission = {
+    addApplication,
+    saveApplication,
+    deleteApplication,
+    getApplicationList,
+    addPermission,
+    getPermissionList,
+    deletePermission,
+    savePermission,
+    saveTenantPermissionList,
+    saveRolePermissionList,
+    getTenantPermissionList,
+    getRolePermissionList
+  };
+});