manager/my-worker
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

优化 超级管理员作为普通员工时的角色数据查询,允许修改超级管理员员工信息,不允许停用禁用删除超管

Browse Source
This commit is contained in:
thinkgem
2024-11-07 10:12:54 +08:00
parent 8c86d1534c
commit 283d27d0df
3 changed files with 0 additions and 12 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
modules/core/src/main/java/com/jeesite/modules/sys/web/user/CorpAdminController.java
View File

@@ -110,9 +110,6 @@ public class CorpAdminController extends BaseController {
if (!user.currentUser().isSuperAdmin()){ if (!user.currentUser().isSuperAdmin()){
return renderResult(Global.FALSE, text("越权操作,只有超级管理员才能修改此数据!")); return renderResult(Global.FALSE, text("越权操作,只有超级管理员才能修改此数据!"));
} }
if (User.isSuperAdmin(user.getUserCode())) {
return renderResult(Global.FALSE, text("非法操作,不能够操作此用户!"));
}
if (!EmpUser.USER_TYPE_EMPLOYEE.equals(user.getUserType())){ if (!EmpUser.USER_TYPE_EMPLOYEE.equals(user.getUserType())){
return renderResult(Global.FALSE, text("非法操作,不能够操作此用户!")); return renderResult(Global.FALSE, text("非法操作,不能够操作此用户!"));
} }

6
modules/core/src/main/java/com/jeesite/modules/sys/web/user/EmpUserController.java
View File

@@ -161,9 +161,6 @@ public class EmpUserController extends BaseController {
@PostMapping(value = "save") @PostMapping(value = "save")
@ResponseBody @ResponseBody
public String save(@Validated EmpUser empUser, @Parameter(description = "操作类型") String op, HttpServletRequest request) { public String save(@Validated EmpUser empUser, @Parameter(description = "操作类型") String op, HttpServletRequest request) {
if (User.isSuperAdmin(empUser.getUserCode())) {
return renderResult(Global.FALSE, "非法操作,不能够操作此用户!");
}
if (!EmpUser.USER_TYPE_EMPLOYEE.equals(empUser.getUserType())){ if (!EmpUser.USER_TYPE_EMPLOYEE.equals(empUser.getUserType())){
return renderResult(Global.FALSE, "非法操作,不能够操作此用户!"); return renderResult(Global.FALSE, "非法操作,不能够操作此用户!");
} }
@@ -375,9 +372,6 @@ public class EmpUserController extends BaseController {
@RequestMapping(value = "saveAuthDataScope") @RequestMapping(value = "saveAuthDataScope")
@ResponseBody @ResponseBody
public String saveAuthDataScope(EmpUser empUser, HttpServletRequest request) { public String saveAuthDataScope(EmpUser empUser, HttpServletRequest request) {
if (User.isSuperAdmin(empUser.getUserCode())) {
return renderResult(Global.FALSE, "非法操作,不能够操作此用户!");
}
if (!EmpUser.USER_TYPE_EMPLOYEE.equals(empUser.getUserType())){ if (!EmpUser.USER_TYPE_EMPLOYEE.equals(empUser.getUserType())){
return renderResult(Global.FALSE, "非法操作,不能够操作此用户!"); return renderResult(Global.FALSE, "非法操作,不能够操作此用户!");
} }

3
modules/core/src/main/java/com/jeesite/modules/sys/web/user/SecAdminController.java
View File

@@ -91,9 +91,6 @@ public class SecAdminController extends BaseController {
@PostMapping(value = "save") @PostMapping(value = "save")
@ResponseBody @ResponseBody
public String save(@Validated User user) { public String save(@Validated User user) {
if (User.isSuperAdmin(user.getUserCode())) {
return renderResult(Global.FALSE, text("非法操作,不能够操作此用户!"));
}
if (!User.USER_TYPE_EMPLOYEE.equals(user.getUserType())){ if (!User.USER_TYPE_EMPLOYEE.equals(user.getUserType())){
return renderResult(Global.FALSE, text("非法操作,不能够操作此用户!")); return renderResult(Global.FALSE, text("非法操作,不能够操作此用户!"));
} }