kang
0527c7c392
- 在 SyncAdminAuthorizationCommand 中新增对代理和抽奖菜单操作的同步功能,确保缺失的菜单操作行能够被创建。 - 更新多个控制器中的权限检查逻辑,使用 hasPermissionCode 替代原有的权限验证方式,提升权限管理的灵活性。 - 引入 ApiMessage 统一错误响应格式,确保在权限不足时返回一致的错误信息。 - 更新 AdminRole 和 AdminUser 模型,增强角色与用户的权限管理功能,支持更细粒度的权限控制。
71 lines
2.4 KiB
PHP
71 lines
2.4 KiB
PHP
<?php
|
|
|
|
namespace App\Http\Controllers\Api\V1\Admin\Agent;
|
|
|
|
use App\Lottery\ErrorCode;
|
|
use App\Models\AgentNode;
|
|
use App\Support\ApiMessage;
|
|
use App\Support\ApiResponse;
|
|
use App\Services\AuditLogger;
|
|
use Illuminate\Http\JsonResponse;
|
|
use App\Http\Controllers\Controller;
|
|
use App\Services\Agent\AgentNodeService;
|
|
use App\Support\AdminAgentNodeAccess;
|
|
use App\Support\AdminAgentScope;
|
|
use App\Support\AgentNodePresenter;
|
|
use Illuminate\Support\Facades\DB;
|
|
|
|
final class AgentNodeDestroyController extends Controller
|
|
{
|
|
public function __invoke(
|
|
\Illuminate\Http\Request $request,
|
|
AgentNode $agent_node,
|
|
AgentNodeService $service,
|
|
): JsonResponse {
|
|
$admin = $request->lotteryAdmin();
|
|
abort_if($admin === null, 401);
|
|
|
|
$denied = AdminAgentNodeAccess::denyUnlessNodeVisible($admin, $agent_node);
|
|
if ($denied !== null) {
|
|
return $denied;
|
|
}
|
|
|
|
if (! AdminAgentScope::nodeManageableBy($admin, $agent_node)) {
|
|
return AdminAgentNodeAccess::denyUnlessNodeVisible($admin, $agent_node)
|
|
?? AdminAgentNodeAccess::denyUnlessCanManageParent($admin, $agent_node);
|
|
}
|
|
|
|
if ($agent_node->isRoot()) {
|
|
return ApiMessage::errorResponse($request, 'admin.agent_root_delete_denied', ErrorCode::ValidationFailed->value, null, 422);
|
|
}
|
|
|
|
if ($agent_node->children()->exists()) {
|
|
return ApiMessage::errorResponse($request, 'admin.agent_node_has_children_cannot_delete', ErrorCode::ValidationFailed->value, null, 422);
|
|
}
|
|
|
|
if (DB::table('admin_user_agents')->where('agent_node_id', (int) $agent_node->id)->exists()) {
|
|
return ApiMessage::errorResponse($request, 'admin.agent_node_has_users_cannot_delete', ErrorCode::ValidationFailed->value, null, 422);
|
|
}
|
|
|
|
if ($service->hasBlockingCustomRoles($agent_node)) {
|
|
return ApiMessage::errorResponse($request, 'admin.agent_node_has_roles_cannot_delete', ErrorCode::ValidationFailed->value, null, 422);
|
|
}
|
|
|
|
$before = AgentNodePresenter::item($agent_node);
|
|
$service->destroy($agent_node);
|
|
|
|
AuditLogger::recordForAdmin(
|
|
$admin,
|
|
$request,
|
|
'system',
|
|
'agent_node.destroy',
|
|
'agent_node',
|
|
(string) $agent_node->id,
|
|
$before,
|
|
null,
|
|
);
|
|
|
|
return ApiResponse::success(null);
|
|
}
|
|
}
|