fixes #34 「动态指令」多行指令会被当作一行执行

fixes #32 会话无法维持，1分钟左右自动断开 fixes #31 更新"资产"会清空"标签" fixes #13 建议添加用户权限功能、隐藏授权账户信息
2021-01-18 18:28:33 +08:00
parent c93e03e951
commit c98b3adbe6
26 changed files with 642 additions and 378 deletions
--- a/pkg/model/resource-sharer.go
+++ b/pkg/model/resource-sharer.go
@ -0,0 +1,128 @@
+package model
+
+import (
+	"github.com/labstack/echo/v4"
+	"gorm.io/gorm"
+	"next-terminal/pkg/global"
+	"next-terminal/pkg/utils"
+)
+
+type ResourceSharer struct {
+	ID           string `gorm:"primary_key" json:"name"`
+	ResourceId   string `json:"resourceId"`
+	ResourceType string `json:"resourceType"`
+	UserId       string `json:"userId"`
+}
+
+func (r *ResourceSharer) TableName() string {
+	return "resource_sharers"
+}
+
+func FindUserIdsByResourceId(resourceId string) (r []string, err error) {
+	db := global.DB
+	err = db.Table("resource_sharers").Select("user_id").Where("resource_id = ?", resourceId).Find(&r).Error
+	if r == nil {
+		r = make([]string, 0)
+	}
+	return
+}
+
+func OverwriteUserIdsByResourceId(resourceId, resourceType string, userIds []string) (err error) {
+	db := global.DB.Begin()
+
+	var owner string
+	// 检查资产是否存在
+	switch resourceType {
+	case "asset":
+		resource := Asset{}
+		err = db.Where("id = ?", resourceId).First(&resource).Error
+		owner = resource.Owner
+	case "command":
+		resource := Command{}
+		err = db.Where("id = ?", resourceId).First(&resource).Error
+		owner = resource.Owner
+	case "credential":
+		resource := Credential{}
+		err = db.Where("id = ?", resourceId).First(&resource).Error
+		owner = resource.Owner
+	}
+
+	if err == gorm.ErrRecordNotFound {
+		return echo.NewHTTPError(404, "资源「"+resourceId+"」不存在")
+	}
+
+	for i := range userIds {
+		if owner == userIds[i] {
+			return echo.NewHTTPError(400, "参数错误")
+		}
+	}
+
+	db.Where("resource_id = ?", resourceId).Delete(&ResourceSharer{})
+
+	for i := range userIds {
+		userId := userIds[i]
+		if len(userId) == 0 {
+			continue
+		}
+		id := utils.Sign([]string{resourceId, resourceType, userId})
+		resource := &ResourceSharer{
+			ID:           id,
+			ResourceId:   resourceId,
+			ResourceType: resourceType,
+			UserId:       userId,
+		}
+		err = db.Create(resource).Error
+		if err != nil {
+			return err
+		}
+	}
+	db.Commit()
+	return nil
+}
+
+func DeleteByUserIdAndResourceTypeAndResourceIdIn(userId, resourceType string, resourceIds []string) error {
+	return global.DB.Where("user_id = ? and resource_type = ? and resource_id in ?", userId, resourceType, resourceIds).Delete(&ResourceSharer{}).Error
+}
+
+func AddSharerResources(userId, resourceType string, resourceIds []string) error {
+	return global.DB.Transaction(func(tx *gorm.DB) (err error) {
+
+		for i := range resourceIds {
+			resourceId := resourceIds[i]
+
+			var owner string
+			// 检查资产是否存在
+			switch resourceType {
+			case "asset":
+				resource := Asset{}
+				err = tx.Where("id = ?", resourceId).First(&resource).Error
+				owner = resource.Owner
+			case "command":
+				resource := Command{}
+				err = tx.Where("id = ?", resourceId).First(&resource).Error
+				owner = resource.Owner
+			case "credential":
+				resource := Credential{}
+				err = tx.Where("id = ?", resourceId).First(&resource).Error
+				owner = resource.Owner
+			}
+
+			if owner == userId {
+				return echo.NewHTTPError(400, "参数错误")
+			}
+
+			id := utils.Sign([]string{resourceId, resourceType, userId})
+			resource := &ResourceSharer{
+				ID:           id,
+				ResourceId:   resourceId,
+				ResourceType: resourceType,
+				UserId:       userId,
+			}
+			err = tx.Create(resource).Error
+			if err != nil {
+				return err
+			}
+		}
+		return nil
+	})
+}