OptimusX
/
OneAuth
mirror of https://github.com/veypi/OneAuth.git
3
0
Fork 0
Code Issues Projects Releases Wiki Activity
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
master
v3
v2
v1.0.0
v0.1.0
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'd7ee1a1f4e'
${ noResults }
OneAuth/api/org/create.go

105 lines
2.7 KiB
Go
Raw Blame History

// Copyright (C) 2024 veypi <i@veypi.com>
// 2025-03-04 16:08:06
// Distributed under terms of the MIT license.
package org
import (
"github.com/veypi/vbase/auth"
"github.com/veypi/vbase/cfg"
"github.com/veypi/vbase/models"
"github.com/veypi/vigo"
)
type CreateRequest struct {
Name string `json:"name" src:"json" desc:"组织名称"`
Code string `json:"code" src:"json" desc:"组织代码"`
Description string `json:"description,omitempty" src:"json" desc:"描述"`
Logo string `json:"logo,omitempty" src:"json" desc:"Logo"`
ParentID *string `json:"parent_id,omitempty" src:"json" desc:"父组织ID"`
}
func create(x *vigo.X, req *CreateRequest) (*models.Org, error) {
// 检查代码是否已存在
var count int64
cfg.DB().Model(&models.Org{}).Where("code = ?", req.Code).Count(&count)
if count > 0 {
return nil, vigo.ErrInvalidArg.WithString("organization code already exists")
}
// 获取当前用户ID作为所有者
ownerID := getCurrentUserID(x)
if ownerID == "" {
return nil, vigo.ErrUnauthorized
}
org := &models.Org{
Name: req.Name,
Code: req.Code,
Description: req.Description,
Logo: req.Logo,
OwnerID: ownerID,
ParentID: req.ParentID,
Status: models.OrgStatusActive,
}
if err := cfg.DB().Create(org).Error; err != nil {
return nil, vigo.ErrInternalServer.WithError(err)
}
// 创建组织的默认角色
adminRole := &models.Role{
OrgID: &org.ID,
Code: "admin",
Name: "管理员",
Status: 1,
IsSystem: true,
}
memberRole := &models.Role{
OrgID: &org.ID,
Code: "member",
Name: "成员",
Status: 1,
IsSystem: true,
}
if err := cfg.DB().Create(adminRole).Error; err != nil {
cfg.DB().Delete(org)
return nil, vigo.ErrInternalServer.WithError(err)
}
if err := cfg.DB().Create(memberRole).Error; err != nil {
cfg.DB().Delete(org)
cfg.DB().Delete(adminRole)
return nil, vigo.ErrInternalServer.WithError(err)
}
// 授予创建者 admin 角色
if err := auth.VBaseAuth.GrantRole(x.Context(), ownerID, org.ID, "admin"); err != nil {
// 回滚
cfg.DB().Delete(&models.Role{}).Where("org_id = ?", org.ID)
cfg.DB().Delete(org)
return nil, vigo.ErrInternalServer.WithError(err)
}
member := &models.OrgMember{
OrgID: org.ID,
UserID: ownerID,
Status: models.MemberStatusActive,
JoinedAt: org.CreatedAt.Format("2006-01-02 15:04:05"),
}
if err := cfg.DB().Create(member).Error; err != nil {
// 回滚
auth.VBaseAuth.RevokeRole(x.Context(), ownerID, org.ID, "admin")
cfg.DB().Delete(org)
return nil, vigo.ErrInternalServer.WithError(err)
}
return org, nil
}
func getCurrentUserID(x *vigo.X) string {
if uid, ok := x.Get("user_id").(string); ok {
return uid
}
return ""
}
Reference in New Issue View Git Blame Copy Permalink