feat: 重构管理员权限管理，移除 AdminPermission 模型，整合权限与角色管理逻辑，优化 API 接口以支持角色与权限的同步，增强数据库填充器以对齐权限配置

2026-05-13 10:40:07 +08:00
parent 3c92bef774
commit edd863764b
18 changed files with 1486 additions and 224 deletions
--- a/app/Models/AdminRole.php
+++ b/app/Models/AdminRole.php
@@ -2,26 +2,44 @@

 namespace App\Models;

+use App\Support\AdminPermissionBridge;
 use Illuminate\Database\Eloquent\Model;
 use Illuminate\Database\Eloquent\Relations\BelongsToMany;
+use Illuminate\Support\Facades\DB;

 class AdminRole extends Model
 {
    protected $table = 'admin_roles';

+    protected static function booted(): void
+    {
+        static::creating(function (AdminRole $role): void {
+            if (($role->code ?? '') === '' && is_string($role->slug) && $role->slug !== '') {
+                $role->code = $role->slug;
+            }
+        });
+    }
+
    protected $fillable = [
        'slug',
        'name',
+        'code',
+        'description',
+        'status',
+        'is_system',
+        'sort_order',
    ];

-    /** @return BelongsToMany<AdminPermission, AdminRole> */
-    public function permissions(): BelongsToMany
+    /**
+     * @return BelongsToMany<AdminMenuAction, AdminRole>
+     */
+    public function menuActions(): BelongsToMany
    {
        return $this->belongsToMany(
-            AdminPermission::class,
-            'admin_role_permissions',
+            AdminMenuAction::class,
+            'admin_role_menu_actions',
            'role_id',
-            'permission_id',
+            'menu_action_id',
        );
    }

@@ -30,9 +48,24 @@ class AdminRole extends Model
    {
        return $this->belongsToMany(
            AdminUser::class,
-            'admin_user_roles',
+            'admin_user_site_roles',
            'role_id',
            'admin_user_id',
-        );
+        )->withPivot(['site_id', 'granted_at']);
+    }
+
+    /**
+     * @return list<string>
+     */
+    public function legacyPermissionSlugs(): array
+    {
+        $codes = DB::table('admin_role_menu_actions as rma')
+            ->join('admin_menu_actions as ma', 'ma.id', '=', 'rma.menu_action_id')
+            ->where('rma.role_id', $this->id)
+            ->where('ma.status', 1)
+            ->pluck('ma.permission_code')
+            ->all();
+
+        return AdminPermissionBridge::legacySlugsGrantedByMenuActionCodes($codes);
    }
 }