Merge pull request #15 from TaleLin/fix/ban-operate-root

pedro · web-flow · commit 2c41177d43fe · 2020-04-04T09:53:08.000-05:00
Fix/ban operate root
diff --git a/src/main/java/io/github/talelin/merak/mapper/UserMapper.java b/src/main/java/io/github/talelin/merak/mapper/UserMapper.java
@@ -35,7 +35,8 @@ public interface UserMapper extends BaseMapper<UserDO> {
      *
      * @param pager   分页
      * @param groupId 分组id
+     * @param rootGroupId 超级用户组id(不返回超级用户组的用户)
      * @return 分页数据
      */
-    IPage<UserDO> selectPageByGroupId(Page pager, Long groupId);
+    IPage<UserDO> selectPageByGroupId(Page pager, Long groupId, Long rootGroupId);
 }
diff --git a/src/main/java/io/github/talelin/merak/service/impl/AdminServiceImpl.java b/src/main/java/io/github/talelin/merak/service/impl/AdminServiceImpl.java
@@ -45,13 +45,18 @@ public class AdminServiceImpl implements AdminService {
     @Value("${group.guest.id}")
     private Long guestGroupId;
 
+    @Value("${user.root.id}")
+    private Long rootUserId;
+
     @Override
     public IPage<UserDO> getUserPageByGroupId(Long groupId, Long count, Long page) {
         Page pager = new Page(page, count);
         IPage<UserDO> iPage;
         // 如果group_id为空，则以分页的形式返回所有用户
         if (groupId == null) {
-            iPage = userService.page(pager);
+            QueryWrapper<UserDO> wrapper = new QueryWrapper<>();
+            wrapper.lambda().ne(UserDO::getId, rootUserId);
+            iPage = userService.page(pager, wrapper);
         } else {
             iPage = userService.getUserPageByGroupId(pager, groupId);
         }
@@ -166,7 +171,10 @@ public boolean removePermissions(RemovePermissionsDTO dto) {
 
     @Override
     public List<GroupDO> getAllGroups() {
-        return groupService.list();
+        QueryWrapper<GroupDO> wrapper = new QueryWrapper<>();
+        wrapper.lambda().ne(GroupDO::getId, rootGroupId);
+        List<GroupDO> groups = groupService.list(wrapper);
+        return groups;
     }
 
     @Override
diff --git a/src/main/java/io/github/talelin/merak/service/impl/GroupServiceImpl.java b/src/main/java/io/github/talelin/merak/service/impl/GroupServiceImpl.java
@@ -87,6 +87,9 @@ public boolean checkIsRootByUserId(Long userId) {
     public boolean deleteUserGroupRelations(Long userId, List<Long> deleteIds) {
         if (deleteIds == null || deleteIds.isEmpty())
             return true;
+        if (checkIsRootByUserId(userId)) {
+            throw new ForbiddenException("can't modify the root user's group", 10078);
+        }
         QueryWrapper<UserGroupDO> wrapper = new QueryWrapper<>();
         wrapper.lambda()
                 .eq(UserGroupDO::getUserId, userId)
diff --git a/src/main/java/io/github/talelin/merak/service/impl/UserServiceImpl.java b/src/main/java/io/github/talelin/merak/service/impl/UserServiceImpl.java
@@ -186,7 +186,7 @@ public boolean checkUserExistById(Long id) {
 
     @Override
     public IPage<UserDO> getUserPageByGroupId(Page pager, Long groupId) {
-        return this.baseMapper.selectPageByGroupId(pager, groupId);
+        return this.baseMapper.selectPageByGroupId(pager, groupId, rootGroupId);
     }
 
     private void checkGroupsExist(List<Long> ids) {
diff --git a/src/main/resources/banner.txt b/src/main/resources/banner.txt
@@ -1,32 +1,17 @@
-////////////////////////////////////////////////////////////////////
-                    ______        _
-                    | ___ \      | |
-                    | |_/ /__  __| |_ __ ___
-                    |  __/ _ \/ _` | '__/ _ \
-                    | | |  __/ (_| | | | (_) |
-                    \_|  \___|\__,_|_|  \___/
-
-////////////////////////////////////////////////////////////////////
-//                          _ooOoo_                               //
-//                         o8888888o                              //
-//                         88" . "88                              //
-//                         (| ^_^ |)                              //
-//                         O\  =  /O                              //
-//                      ____/`---'\____                           //
-//                    .'  \\|     |//  `.                         //
-//                   /  \\|||  :  |||//  \                        //
-//                  /  _||||| -:- |||||-  \                       //
-//                  |   | \\\  -  /// |   |                       //
-//                  | \_|  ''\---/''  |   |                       //
-//                  \  .-\__  `-`  ___/-. /                       //
-//                ___`. .'  /--.--\  `. . ___                     //
-//              ."" '<  `.___\_<|>_/___.'  >'"".                  //
-//            | | :  `- \`.;`\ _ /`;.`/ - ` : | |                 //
-//            \  \ `-.   \_ __\ /__ _/   .-` /  /                 //
-//      ========`-.____`-.___\_____/___.-`____.-'========         //
-//                           `=---='                              //
-//      ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^        //
-//            佛祖保佑       永不宕机     永无BUG                    //
-////////////////////////////////////////////////////////////////////
-                           解放生产力
-////////////////////////////////////////////////////////////////////
+///////////////////////////////////////////////////////////////////////////
+//                 _      _          _____ _   __  _____                 //
+//                | |    (_)        / ____|  \/  |/ ____|                //
+//                | |     _ _ __   | |    | \  / | (___                  //
+//                | |    | | '_ \  | |    | |\/| |\___ \                 //
+//                | |____| | | | | | |____| |  | |____) |                //
+//                |______|_|_| |_|  \_____|_|  |_|_____/                 //
+//                                                                       //
+///////////////////////////////////////////////////////////////////////////
+//    _______                     _______    _      _      _             //
+//   |__   __|                   |__   __|  | |    | |    (_)            //
+//      | | ___  __ _ _ __ ___      | | __ _| | ___| |     _ _ __        //
+//      | |/ _ \/ _` | '_ ` _ \     | |/ _` | |/ _ \ |    | | '_ \       //
+//      | |  __/ (_| | | | | | |    | | (_| | |  __/ |____| | | | |      //
+//      |_|\___|\__,_|_| |_| |_|    |_|\__,_|_|\___|______|_|_| |_|      //
+//                                                                       //
+///////////////////////////////////////////////////////////////////////////
diff --git a/src/main/resources/code.properties b/src/main/resources/code.properties
@@ -46,6 +46,7 @@ lin.cms.code-message[10074]=root\u5206\u7EC4\u4E0D\u53EF\u5220\u9664
 lin.cms.code-message[10075]=guest\u5206\u7EC4\u4E0D\u53EF\u5220\u9664
 lin.cms.code-message[10076]=\u90AE\u7BB1\u5DF2\u88AB\u4F7F\u7528\uFF0C\u8BF7\u91CD\u65B0\u586B\u5165\u65B0\u7684\u90AE\u7BB1
 lin.cms.code-message[10077]=\u4E0D\u53EF\u5C06\u7528\u6237\u5206\u914D\u7ED9\u4E0D\u5B58\u5728\u7684\u5206\u7EC4
+lin.cms.code-message[10078]=\u4E0D\u53EF\u4FEE\u6539root\u7528\u6237\u7684\u5206\u7EC4
 # lin.cms.code-message[10080]=\u8BF7\u6C42\u65B9\u6CD5\u4E0D\u5141\u8BB8
 # lin.cms.code-message[10100]=\u5237\u65B0\u4EE4\u724C\u83B7\u53D6\u5931\u8D25
 # lin.cms.code-message[10110]=\u6587\u4EF6\u4F53\u79EF\u8FC7\u5927
diff --git a/src/main/resources/mapper/UserMapper.xml b/src/main/resources/mapper/UserMapper.xml
@@ -32,6 +32,7 @@
         SELECT ug.user_id
         FROM lin_user_group AS ug
         WHERE ug.group_id = #{groupId}
+        AND ug.group_id != #{rootGroupId}
         )
         AND u.delete_time IS NULL
     </select>
diff --git a/src/test/java/io/github/talelin/merak/mapper/UserMapperTest.java b/src/test/java/io/github/talelin/merak/mapper/UserMapperTest.java
@@ -73,7 +73,7 @@ public void selectPageByGroupId() {
         userGroupMapper.insert(new UserGroupDO(userDO.getId(), group.getId()));
 
         Page page = new Page(0, 10);
-        IPage<UserDO> iPage = userMapper.selectPageByGroupId(page, group.getId());
+        IPage<UserDO> iPage = userMapper.selectPageByGroupId(page, group.getId(), 1L);
         assertTrue(iPage.getTotal() > 0);
         boolean anyMatch = iPage.getRecords().stream().anyMatch(it -> it.getUsername().equals(username));
         assertTrue(anyMatch);

Original file line number	Diff line number	Diff line change
`@@ -35,7 +35,8 @@ public interface UserMapper extends BaseMapper<UserDO> {`
`35`	`35`	`*`
`36`	`36`	`* @param pager 分页`
`37`	`37`	`* @param groupId 分组id`
	`38`	`+ * @param rootGroupId 超级用户组id(不返回超级用户组的用户)`
`38`	`39`	`* @return 分页数据`
`39`	`40`	`*/`
`40`		`- IPage<UserDO> selectPageByGroupId(Page pager, Long groupId);`
	`41`	`+ IPage<UserDO> selectPageByGroupId(Page pager, Long groupId, Long rootGroupId);`
`41`	`42`	`}`
Original file line number	Diff line number	Diff line change
`@@ -186,7 +186,7 @@ public boolean checkUserExistById(Long id) {`
`186`	`186`
`187`	`187`	`@Override`
`188`	`188`	`public IPage<UserDO> getUserPageByGroupId(Page pager, Long groupId) {`
`189`		`- return this.baseMapper.selectPageByGroupId(pager, groupId);`
	`189`	`+ return this.baseMapper.selectPageByGroupId(pager, groupId, rootGroupId);`
`190`	`190`	`}`
`191`	`191`
`192`	`192`	`private void checkGroupsExist(List<Long> ids) {`
Original file line number	Diff line number	Diff line change
`@@ -32,6 +32,7 @@`
`32`	`32`	`SELECT ug.user_id`
`33`	`33`	`FROM lin_user_group AS ug`
`34`	`34`	`WHERE ug.group_id = #{groupId}`
	`35`	`+ AND ug.group_id != #{rootGroupId}`
`35`	`36`	`)`
`36`	`37`	`AND u.delete_time IS NULL`
`37`	`38`	`</select>`