策略授权
parent
5348daad3f
commit
5ef1c90289
|
|
@ -24,6 +24,11 @@ namespace IRaCIS.Core.API
|
||||||
});
|
});
|
||||||
|
|
||||||
|
|
||||||
|
options.AddPolicy("PmAndApmPolicy", policyBuilder =>
|
||||||
|
{
|
||||||
|
policyBuilder.RequireClaim("userTypeEnumInt", ((int)UserTypeEnum.ProjectManager).ToString(), ((int)UserTypeEnum.APM).ToString());
|
||||||
|
});
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
});
|
});
|
||||||
|
|
|
||||||
|
|
@ -143,10 +143,6 @@ namespace IRaCIS.Core.Application.Image.QA
|
||||||
/// <summary>
|
/// <summary>
|
||||||
/// 关闭质疑,什么情况下允许?
|
/// 关闭质疑,什么情况下允许?
|
||||||
/// </summary>
|
/// </summary>
|
||||||
/// <param name="qcChallengeId"></param>
|
|
||||||
/// <param name="subjectVisitId"></param>
|
|
||||||
/// <param name="closeEnum"></param>
|
|
||||||
/// <param name="closeReason"></param>
|
|
||||||
/// <returns></returns>
|
/// <returns></returns>
|
||||||
[HttpPut]
|
[HttpPut]
|
||||||
[TypeFilter(typeof(TrialResourceFilter))]
|
[TypeFilter(typeof(TrialResourceFilter))]
|
||||||
|
|
@ -337,12 +333,13 @@ namespace IRaCIS.Core.Application.Image.QA
|
||||||
/// <returns></returns>
|
/// <returns></returns>
|
||||||
[HttpPut("{trialId:guid}")]
|
[HttpPut("{trialId:guid}")]
|
||||||
[TypeFilter(typeof(TrialResourceFilter))]
|
[TypeFilter(typeof(TrialResourceFilter))]
|
||||||
|
[Authorize(Policy = "PmAndApmPolicy")]
|
||||||
public async Task<IResponseOutput> SetCheckPass(SetCheckPassDt data)
|
public async Task<IResponseOutput> SetCheckPass(SetCheckPassDt data)
|
||||||
{
|
{
|
||||||
if (_userInfo.UserTypeEnumInt != (int)UserTypeEnum.ProjectManager && _userInfo.UserTypeEnumInt != (int)UserTypeEnum.APM)
|
//if (_userInfo.UserTypeEnumInt != (int)UserTypeEnum.ProjectManager && _userInfo.UserTypeEnumInt != (int)UserTypeEnum.APM)
|
||||||
{
|
//{
|
||||||
ResponseOutput.NotOk("您不是PM/APM,不允许设置一致性核查通过");
|
// ResponseOutput.NotOk("您不是PM/APM,不允许设置一致性核查通过");
|
||||||
}
|
//}
|
||||||
|
|
||||||
var sv = (await _subjectVisitRepository.FirstOrDefaultAsync(t => t.Id == data.Id)).IfNullThrowException();
|
var sv = (await _subjectVisitRepository.FirstOrDefaultAsync(t => t.Id == data.Id)).IfNullThrowException();
|
||||||
|
|
||||||
|
|
@ -415,12 +412,13 @@ namespace IRaCIS.Core.Application.Image.QA
|
||||||
}
|
}
|
||||||
|
|
||||||
[HttpPut("{trialId:guid}/{subjectVisitId:guid}")]
|
[HttpPut("{trialId:guid}/{subjectVisitId:guid}")]
|
||||||
|
[Authorize(Policy = "PmAndApmPolicy")]
|
||||||
public async Task<IResponseOutput> RejectCheckBack(Guid subjectVisitId)
|
public async Task<IResponseOutput> RejectCheckBack(Guid subjectVisitId)
|
||||||
{
|
{
|
||||||
if (_userInfo.UserTypeEnumInt != (int)UserTypeEnum.ProjectManager && _userInfo.UserTypeEnumInt != (int)UserTypeEnum.APM)
|
//if (_userInfo.UserTypeEnumInt != (int)UserTypeEnum.ProjectManager && _userInfo.UserTypeEnumInt != (int)UserTypeEnum.APM)
|
||||||
{
|
//{
|
||||||
return ResponseOutput.NotOk(" 只有PM/APM具有操作权限!");
|
// return ResponseOutput.NotOk(" 只有PM/APM具有操作权限!");
|
||||||
}
|
//}
|
||||||
|
|
||||||
var sv = (await _subjectVisitRepository.FirstOrDefaultAsync(t => t.Id == subjectVisitId)).IfNullThrowException();
|
var sv = (await _subjectVisitRepository.FirstOrDefaultAsync(t => t.Id == subjectVisitId)).IfNullThrowException();
|
||||||
|
|
||||||
|
|
@ -446,13 +444,14 @@ namespace IRaCIS.Core.Application.Image.QA
|
||||||
/// <returns></returns>
|
/// <returns></returns>
|
||||||
[HttpPut("{trialId:guid}/{subjectVisitId:guid}")]
|
[HttpPut("{trialId:guid}/{subjectVisitId:guid}")]
|
||||||
[TypeFilter(typeof(TrialResourceFilter))]
|
[TypeFilter(typeof(TrialResourceFilter))]
|
||||||
|
[Authorize(Policy = "PmAndApmPolicy")]
|
||||||
[UnitOfWork]
|
[UnitOfWork]
|
||||||
public async Task<IResponseOutput> CheckBack(Guid subjectVisitId)
|
public async Task<IResponseOutput> CheckBack(Guid subjectVisitId)
|
||||||
{
|
{
|
||||||
if (_userInfo.UserTypeEnumInt != (int)UserTypeEnum.ProjectManager && _userInfo.UserTypeEnumInt != (int)UserTypeEnum.APM)
|
//if (_userInfo.UserTypeEnumInt != (int)UserTypeEnum.ProjectManager && _userInfo.UserTypeEnumInt != (int)UserTypeEnum.APM)
|
||||||
{
|
//{
|
||||||
return ResponseOutput.NotOk("只有PM/APM具有操作权限!");
|
// return ResponseOutput.NotOk("只有PM/APM具有操作权限!");
|
||||||
}
|
//}
|
||||||
|
|
||||||
var sv = (await _subjectVisitRepository.FirstOrDefaultAsync(t => t.Id == subjectVisitId)).IfNullThrowException();
|
var sv = (await _subjectVisitRepository.FirstOrDefaultAsync(t => t.Id == subjectVisitId)).IfNullThrowException();
|
||||||
|
|
||||||
|
|
@ -519,12 +518,13 @@ namespace IRaCIS.Core.Application.Image.QA
|
||||||
/// <returns></returns>
|
/// <returns></returns>
|
||||||
[HttpPost("{trialId:guid}")]
|
[HttpPost("{trialId:guid}")]
|
||||||
[TypeFilter(typeof(TrialResourceFilter))]
|
[TypeFilter(typeof(TrialResourceFilter))]
|
||||||
|
[Authorize(Policy = "PmAndApmPolicy")]
|
||||||
public async Task<IResponseOutput> UploadVisitCheckExcel(IFormFile file, Guid trialId)
|
public async Task<IResponseOutput> UploadVisitCheckExcel(IFormFile file, Guid trialId)
|
||||||
{
|
{
|
||||||
if (_userInfo.UserTypeEnumInt != (int)UserTypeEnum.ProjectManager && _userInfo.UserTypeEnumInt != (int)UserTypeEnum.APM)
|
//if (_userInfo.UserTypeEnumInt != (int)UserTypeEnum.ProjectManager && _userInfo.UserTypeEnumInt != (int)UserTypeEnum.APM)
|
||||||
{
|
//{
|
||||||
return ResponseOutput.NotOk("只有PM/APM具有操作权限!");
|
// return ResponseOutput.NotOk("只有PM/APM具有操作权限!");
|
||||||
}
|
//}
|
||||||
|
|
||||||
var rootPath = Directory.GetParent(_hostEnvironment.ContentRootPath.TrimEnd('\\')).IfNullThrowException().FullName;
|
var rootPath = Directory.GetParent(_hostEnvironment.ContentRootPath.TrimEnd('\\')).IfNullThrowException().FullName;
|
||||||
|
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue