OneAuth/libs/auth/auth.go

package auth

import (
	"github.com/veypi/OneAuth/models"
	"github.com/veypi/OneAuth/oalib"
	"github.com/veypi/utils"
	"gorm.io/gorm"
)

// 定义oa系统权限

type Resource = string

const (
	// ruid 皆为app uuid
	User Resource = "user"
	APP  Resource = "app"
	Res  Resource = "resource"
	Role Resource = "role"
	Auth Resource = "auth"
)

func BindUserRole(tx *gorm.DB, userID uint, roleID uint) error {
	r := &models.Role{}
	r.ID = roleID
	err := tx.Where(r).First(r).Error
	if err != nil {
		return err
	}
	ur := &models.UserRole{}
	ur.RoleID = roleID
	ur.UserID = userID
	err = utils.MultiErr(
		tx.Where(ur).FirstOrCreate(ur).Error,
		tx.Model(&models.Role{}).Where("ID = ?", roleID).
			Update("UserCount", gorm.Expr("UserCount + ?", 1)).Error,
	)
	return err
}

func BindUserAuth(tx *gorm.DB, userID uint, resID uint, level oalib.AuthLevel, ruid string) error {
	return bind(tx, userID, resID, level, ruid, false)
}

func BindRoleAuth(tx *gorm.DB, roleID uint, resID uint, level oalib.AuthLevel, ruid string) error {
	return bind(tx, roleID, resID, level, ruid, true)
}

func bind(tx *gorm.DB, id uint, resID uint, level oalib.AuthLevel, ruid string, isRole bool) error {
	r := &models.Resource{}
	r.ID = resID
	err := tx.Where(r).First(r).Error
	if err != nil {
		return err
	}
	au := &models.Auth{
		AppUUID:    r.AppUUID,
		ResourceID: resID,
		RID:        r.Name,
		RUID:       ruid,
		Level:      level,
	}
	if isRole {
		au.RoleID = &id
	} else {
		au.UserID = &id
	}
	return tx.Where(au).FirstOrCreate(au).Error
}
用户加密机制设计初步完成 3 years ago			`package auth`

			`import (`
change name of pack, add oalib 3 years ago			`"github.com/veypi/OneAuth/models"`
			`"github.com/veypi/OneAuth/oalib"`
add user role auth page 3 years ago			`"github.com/veypi/utils"`
用户加密机制设计初步完成 3 years ago			`"gorm.io/gorm"`
			`)`

			`// 定义oa系统权限`

			`type Resource = string`

			`const (`
add user role auth page 3 years ago			`// ruid 皆为app uuid`
用户加密机制设计初步完成 3 years ago			`User Resource = "user"`
			`APP Resource = "app"`
			`Res Resource = "resource"`
			`Role Resource = "role"`
			`Auth Resource = "auth"`
			`)`

			`func BindUserRole(tx *gorm.DB, userID uint, roleID uint) error {`
			`r := &models.Role{}`
			`r.ID = roleID`
			`err := tx.Where(r).First(r).Error`
			`if err != nil {`
			`return err`
			`}`
			`ur := &models.UserRole{}`
			`ur.RoleID = roleID`
add user role auth page 3 years ago			`ur.UserID = userID`
			`err = utils.MultiErr(`
			`tx.Where(ur).FirstOrCreate(ur).Error,`
命名规则统一改为驼峰式 3 years ago			`tx.Model(&models.Role{}).Where("ID = ?", roleID).`
			`Update("UserCount", gorm.Expr("UserCount + ?", 1)).Error,`
add user role auth page 3 years ago			`)`
用户加密机制设计初步完成 3 years ago			`return err`
			`}`

change name of pack, add oalib 3 years ago			`func BindUserAuth(tx *gorm.DB, userID uint, resID uint, level oalib.AuthLevel, ruid string) error {`
用户加密机制设计初步完成 3 years ago			`return bind(tx, userID, resID, level, ruid, false)`
			`}`

change name of pack, add oalib 3 years ago			`func BindRoleAuth(tx *gorm.DB, roleID uint, resID uint, level oalib.AuthLevel, ruid string) error {`
用户加密机制设计初步完成 3 years ago			`return bind(tx, roleID, resID, level, ruid, true)`
			`}`

change name of pack, add oalib 3 years ago			`func bind(tx *gorm.DB, id uint, resID uint, level oalib.AuthLevel, ruid string, isRole bool) error {`
用户加密机制设计初步完成 3 years ago			`r := &models.Resource{}`
			`r.ID = resID`
			`err := tx.Where(r).First(r).Error`
			`if err != nil {`
			`return err`
			`}`
			`au := &models.Auth{`
add user role auth page 3 years ago			`AppUUID: r.AppUUID,`
用户加密机制设计初步完成 3 years ago			`ResourceID: resID,`
			`RID: r.Name,`
			`RUID: ruid,`
			`Level: level,`
			`}`
			`if isRole {`
			`au.RoleID = &id`
			`} else {`
			`au.UserID = &id`
			`}`
			`return tx.Where(au).FirstOrCreate(au).Error`
			`}`