xiaokang/lotteryLaravel
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
770fd8950d92cdadf0cdfba49e52e81ff9019524
lotteryLaravel/app/Http/Controllers/Api/V1/Admin/User/AdminUserPermissionSyncController.php
kang 1d31f9e872 feat(admin): 更新后台权限管理与同步逻辑,简化权限检查并优化文档 
- 新增后台 RBAC 相关文档,提供权限目录与维护命令说明。
- 移除不必要的角色资源同步检查,简化权限审计命令。
- 更新权限描述与同步逻辑,确保一致性与可维护性。
- 统一权限注册表,替换过时的权限别名,增强代码可读性。
2026-05-22 16:11:48 +08:00

82 lines
2.8 KiB
PHP
Raw Blame History

<?php
namespace App\Http\Controllers\Api\V1\Admin\User;
use App\Models\AdminUser;
use App\Support\ApiResponse;
use App\Services\AuditLogger;
use Illuminate\Http\JsonResponse;
use Illuminate\Support\Facades\DB;
use App\Http\Controllers\Controller;
use App\Support\AdminPermissionBridge;
use App\Http\Requests\Admin\AdminUserPermissionSyncRequest;
/** PUT /api/v1/admin/admin-users/{admin_user}/permissions */
final class AdminUserPermissionSyncController extends Controller
{
public function __invoke(AdminUserPermissionSyncRequest $request, AdminUser $admin_user): JsonResponse
{
$input = $request->validated();
$slugs = AdminPermissionBridge::normalizeCanonicalLegacySlugs(array_values(array_filter(
(array) ($input['permissions'] ?? $input['permission_slugs'] ?? []),
static fn ($v) => is_string($v) && $v !== '',
)));
$siteId = AdminUser::defaultAdminSiteId();
$codes = [];
foreach ($slugs as $slug) {
$codes = array_merge($codes, AdminPermissionBridge::menuActionCodesForLegacy($slug));
}
$codes = array_values(array_unique($codes));
$menuActionIds = DB::table('admin_menu_actions')
->whereIn('permission_code', $codes)
->where('status', 1)
->pluck('id')
->all();
DB::transaction(function () use ($admin_user, $siteId, $menuActionIds): void {
DB::table('admin_user_menu_actions')
->where('admin_user_id', $admin_user->id)
->where(function ($q) use ($siteId): void {
$q->where('site_id', $siteId)->orWhereNull('site_id');
})
->delete();
$now = now();
foreach ($menuActionIds as $mid) {
DB::table('admin_user_menu_actions')->insert([
'admin_user_id' => $admin_user->id,
'site_id' => $siteId,
'menu_action_id' => (int) $mid,
'granted_at' => $now,
]);
}
});
$admin_user->load('roles');
AuditLogger::recordForAdmin(
$request->lotteryAdmin(),
$request,
'admin_users',
'sync_permissions',
'admin_user',
(string) $admin_user->id,
null,
[
'permission_slugs' => $slugs,
],
);
return ApiResponse::success([
'id' => (int) $admin_user->id,
'username' => $admin_user->username,
'nickname' => $admin_user->name,
'roles' => $admin_user->adminRoleSlugs(),
'direct_permissions' => $admin_user->directLegacyPermissionSlugs(),
'effective_permissions' => $admin_user->adminPermissionSlugs(),
]);
}
}
Reference in New Issue View Git Blame Copy Permalink