/
bookMember.go
167 lines (140 loc) · 3.98 KB
/
bookMember.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
package bookMember
import (
"errors"
"strconv"
"github.com/i2eco/ecology/appgo/dao"
"github.com/i2eco/ecology/appgo/model/mysql"
"github.com/i2eco/ecology/appgo/pkg/conf"
"github.com/i2eco/ecology/appgo/pkg/mus"
"github.com/i2eco/ecology/appgo/router/core"
)
// AddMember 参加参与用户.
func AddMember(c *core.Context) {
identify := c.PostForm("identify")
account := c.PostForm("account")
// todo fix
//roleId, _ := this.GetInt("role_id", 3)
roleId, _ := strconv.Atoi(c.PostForm("role_id"))
if identify == "" || account == "" {
c.JSONErrStr(6001, "参数错误")
return
}
book, err := isPermission(c)
if err != nil {
c.JSONErrStr(6001, err.Error())
return
}
var member *mysql.Member
if member, err = dao.Member.FindByAccount(account); err != nil {
c.JSONErrStr(404, "用户不存在")
return
}
if member.Status == 1 {
c.JSONErrStr(6003, "用户已被禁用")
return
}
if _, err := dao.Relationship.FindForRoleId(book.BookId, member.MemberId); err == nil {
c.JSONErrStr(6003, "用户已存在该项目中")
return
}
relationship := mysql.Relationship{}
relationship.BookId = book.BookId
relationship.MemberId = member.MemberId
relationship.RoleId = roleId
if err := dao.Relationship.Insert(mus.Db, &relationship); err != nil {
c.JSONErrStr(500, err.Error())
return
}
result := mysql.NewMemberRelationshipResult().FromMember(member)
result.RoleId = roleId
result.RelationshipId = relationship.RelationshipId
result.BookId = book.BookId
result.ResolveRoleName()
c.JSONOK(result)
}
// 变更指定用户在指定项目中的权限
func ChangeRole(c *core.Context) {
identify := c.GetPostFormString("identify")
memberId, _ := strconv.Atoi(c.GetPostFormString("member_id"))
role, _ := strconv.Atoi(c.GetPostFormString("role_id"))
userMember := c.Member()
if identify == "" || memberId <= 0 {
c.JSONErrStr(6001, "参数错误")
return
}
if memberId == userMember.MemberId {
c.JSONErrStr(6006, "不能变更自己的权限")
return
}
book, err := dao.Book.ResultFindByIdentify(identify, userMember.MemberId)
if err != nil {
c.JSONErrStr(6002, err.Error())
return
}
if book.RoleId != 0 && book.RoleId != 1 {
c.JSONErrStr(403, "权限不足")
return
}
var member *mysql.Member
if member, err = dao.Member.Find(memberId); err != nil {
c.JSONErrStr(6003, "用户不存在")
return
}
if member.Status == 1 {
c.JSONErrStr(6004, "用户已被禁用")
return
}
relationship, err := dao.Relationship.UpdateRoleId(book.BookId, memberId, role)
if err != nil {
c.JSONErrStr(6005, err.Error())
return
}
result := mysql.NewMemberRelationshipResult().FromMember(member)
result.RoleId = relationship.RoleId
result.RelationshipId = relationship.RelationshipId
result.BookId = book.BookId
result.ResolveRoleName()
c.JSONOK(result)
}
// 删除参与者.
func RemoveMember(c *core.Context) {
identify := c.GetPostFormString("identify")
memberId, _ := strconv.Atoi(c.GetPostFormString("member_id"))
userMember := c.Member()
if identify == "" || memberId <= 0 {
c.JSONErrStr(6001, "参数错误")
return
}
if memberId == userMember.MemberId {
c.JSONErrStr(6006, "不能删除自己")
return
}
book, err := dao.Book.ResultFindByIdentify(identify, userMember.MemberId)
if err != nil {
c.JSONErrStr(6002, err.Error())
return
}
//如果不是创始人也不是管理员则不能操作
if book.RoleId != conf.Conf.Info.BookFounder && book.RoleId != conf.BookAdmin {
c.JSONErrStr(403, "权限不足")
return
}
err = dao.Relationship.DeleteByBookIdAndMemberId(book.BookId, memberId)
if err != nil {
c.JSONErrStr(6007, err.Error())
return
}
c.JSONOK()
}
func isPermission(c *core.Context) (*mysql.BookResult, error) {
identify := c.GetPostFormString("identify")
member := c.Member()
book, err := dao.Book.ResultFindByIdentify(identify, member.MemberId)
if err != nil {
return book, err
}
if book.RoleId != conf.BookAdmin && book.RoleId != conf.BookFounder {
return book, errors.New("权限不足")
}
return book, nil
}