feat: 增强玩家管理功能，集成接入站点权限控制

在多个玩家相关控制器中引入 AdminSiteScope，确保管理员在执行操作前具备相应的接入站点权限。更新 Player 相关请求以支持 site_code 参数，增强权限验证逻辑，确保系统安全性与灵活性。同时，新增 AdminUser 模型方法以获取可访问的站点 ID 列表，优化权限管理。
2026-05-27 13:36:23 +08:00
parent b649c862ef
commit a10135d6ee
47 changed files with 2265 additions and 38 deletions
--- a/app/Support/AdminIntegrationSiteAccess.php
+++ b/app/Support/AdminIntegrationSiteAccess.php
@@ -0,0 +1,39 @@
+<?php
+
+namespace App\Support;
+
+use App\Models\AdminSite;
+use App\Models\AdminUser;
+use Illuminate\Database\Eloquent\Builder;
+
+final class AdminIntegrationSiteAccess
+{
+    /**
+     * @return Builder<AdminSite>
+     */
+    public static function queryFor(AdminUser $admin): Builder
+    {
+        $query = AdminSite::query()->orderBy('code');
+
+        $siteIds = $admin->accessibleAdminSiteIds();
+        if ($siteIds === null) {
+            return $query;
+        }
+
+        if ($siteIds === []) {
+            return $query->whereRaw('0 = 1');
+        }
+
+        return $query->whereIn('id', $siteIds);
+    }
+
+    public static function canAccess(AdminUser $admin, AdminSite $site): bool
+    {
+        $siteIds = $admin->accessibleAdminSiteIds();
+        if ($siteIds === null) {
+            return true;
+        }
+
+        return in_array((int) $site->id, $siteIds, true);
+    }
+}