feat(REQ-2298): 增加查询用户权限接口

tyr-api/src/main/java/cn/axzo/tyr/client/feign/TyrSaasRoleUserApi.java

@@ -3,6 +3,7 @@ package cn.axzo.tyr.client.feign;
 import cn.axzo.framework.domain.web.result.ApiPageResult;
 import cn.axzo.framework.domain.web.result.ApiResult;
 import cn.axzo.tyr.client.model.roleuser.dto.GetUserAutoOwnRoleResp;
+import cn.axzo.tyr.client.model.roleuser.dto.GetUserFeatureResourceIdsResp;
 import cn.axzo.tyr.client.model.roleuser.dto.SaasRoleUserDTO;
 import cn.axzo.tyr.client.model.roleuser.dto.SuperAminInfoResp;
 import cn.axzo.tyr.client.model.roleuser.req.*;
@@ -106,11 +107,17 @@ public interface TyrSaasRoleUserApi {
      * 保存/更新 用户自定义权限，每次传入新的featureIds都会覆盖原来的所有featureIds
      */
     @PostMapping("/api/saas-role-user/save-or-update-auto-own-role")
-    ApiResult<Void> saveOrUpdateAutoOwnRole(@RequestBody  @Valid AutoOwnRoleUserReq req);
+    ApiResult<Void> saveOrUpdateAutoOwnRole(@RequestBody @Valid AutoOwnRoleUserReq req);
 
     /**
      * 查询用户自定义角色和权限
      */
     @PostMapping("/api/saas-role-user/get-auto-own-role")
-    ApiResult<GetUserAutoOwnRoleResp> getUserAutoOwnRole(@RequestBody  @Valid GetUserAutoOwnRoleReq req);
+    ApiResult<GetUserAutoOwnRoleResp> getUserAutoOwnRole(@RequestBody @Valid GetUserAutoOwnRoleReq req);
+
+    /**
+     * 查询用户权限（featureResourceId）
+     */
+    @PostMapping("/api/saas-role-user/get-user-feature-resource-ids")
+    ApiResult<GetUserFeatureResourceIdsResp> getUserFeatureResourceIds(@RequestBody @Valid GetUserFeatureResourceIdsReq req);
 }

tyr-api/src/main/java/cn/axzo/tyr/client/model/roleuser/dto/GetUserFeatureResourceIdsResp.java

@@ -0,0 +1,25 @@
+package cn.axzo.tyr.client.model.roleuser.dto;
+
+import lombok.AllArgsConstructor;
+import lombok.Builder;
+import lombok.Data;
+import lombok.NoArgsConstructor;
+
+import java.util.Set;
+
+/**
+ * @author likunpeng
+ * @version 1.0
+ * @date 2024/5/22
+ */
+@Data
+@Builder
+@AllArgsConstructor
+@NoArgsConstructor
+public class GetUserFeatureResourceIdsResp {
+
+    /**
+     * 资源ID列表
+     */
+    private Set<Long> featureResourceIds;
+}

tyr-api/src/main/java/cn/axzo/tyr/client/model/roleuser/req/GetUserFeatureResourceIdsReq.java

@@ -0,0 +1,44 @@
+package cn.axzo.tyr.client.model.roleuser.req;
+
+import lombok.AllArgsConstructor;
+import lombok.Builder;
+import lombok.Data;
+import lombok.NoArgsConstructor;
+
+import javax.validation.constraints.NotNull;
+import java.util.List;
+
+
+/**
+ * @author likunpeng
+ * @date 2024/4/2
+ */
+@Data
+@Builder
+@AllArgsConstructor
+@NoArgsConstructor
+public class GetUserFeatureResourceIdsReq {
+
+    /**
+     * 工作台id
+     */
+    @NotNull(message = "workspaceId不能为空")
+    private Long workspaceId;
+
+    /**
+     * 单位id
+     */
+    @NotNull(message = "ouId不能为空")
+    private Long ouId;
+
+    /**
+     * 自然人id
+     */
+    @NotNull(message = "personId不能为空")
+    private Long personId;
+
+    /**
+     * 查询的角色类型列表
+     */
+    private List<Long> roleIds;
+}

tyr-server/src/main/java/cn/axzo/tyr/server/controller/roleuser/RoleUserController.java

@@ -7,6 +7,7 @@ import cn.axzo.pokonyan.config.mybatisplus.BaseEntity;
 import cn.axzo.tyr.client.feign.TyrSaasRoleUserApi;
 import cn.axzo.tyr.client.model.enums.IdentityType;
 import cn.axzo.tyr.client.model.roleuser.dto.GetUserAutoOwnRoleResp;
+import cn.axzo.tyr.client.model.roleuser.dto.GetUserFeatureResourceIdsResp;
 import cn.axzo.tyr.client.model.roleuser.dto.SaasRoleUserDTO;
 import cn.axzo.tyr.client.model.roleuser.dto.SuperAminInfoResp;
 import cn.axzo.tyr.client.model.roleuser.req.*;
@@ -162,4 +163,9 @@ public class RoleUserController implements TyrSaasRoleUserApi {
     public ApiResult<GetUserAutoOwnRoleResp> getUserAutoOwnRole(GetUserAutoOwnRoleReq req) {
         return ApiResult.ok(saasRoleUserService.getUserAutoOwnRole(req));
     }
+
+    @Override
+    public ApiResult<GetUserFeatureResourceIdsResp> getUserFeatureResourceIds(GetUserFeatureResourceIdsReq req) {
+        return ApiResult.ok(saasRoleUserService.getUserFeatureResourceIds(req));
+    }
 }

tyr-server/src/main/java/cn/axzo/tyr/server/service/SaasRoleUserService.java

@@ -2,6 +2,7 @@ package cn.axzo.tyr.server.service;
 
 import cn.axzo.tyr.client.model.enums.IdentityType;
 import cn.axzo.tyr.client.model.roleuser.dto.GetUserAutoOwnRoleResp;
+import cn.axzo.tyr.client.model.roleuser.dto.GetUserFeatureResourceIdsResp;
 import cn.axzo.tyr.client.model.roleuser.dto.SuperAminInfoResp;
 import cn.axzo.tyr.client.model.roleuser.req.*;
 import cn.axzo.tyr.server.repository.entity.SaasRoleUserRelation;
@@ -97,4 +98,12 @@ public interface SaasRoleUserService {
      * @return
      */
     GetUserAutoOwnRoleResp getUserAutoOwnRole(GetUserAutoOwnRoleReq req);
+
+    /**
+     * 查询用户已有的功能资源
+     *
+     * @param req
+     * @return
+     */
+    GetUserFeatureResourceIdsResp getUserFeatureResourceIds(GetUserFeatureResourceIdsReq req);
 }

tyr-server/src/main/java/cn/axzo/tyr/server/service/impl/RoleUserService.java

@@ -12,6 +12,7 @@ import cn.axzo.tyr.client.model.enums.DictWorkSpaceTypeEnum;
 import cn.axzo.tyr.client.model.enums.IdentityType;
 import cn.axzo.tyr.client.model.enums.WorkerLeaderRoleEnum;
 import cn.axzo.tyr.client.model.roleuser.dto.GetUserAutoOwnRoleResp;
+import cn.axzo.tyr.client.model.roleuser.dto.GetUserFeatureResourceIdsResp;
 import cn.axzo.tyr.client.model.roleuser.dto.IdentityInfo;
 import cn.axzo.tyr.client.model.roleuser.dto.SuperAminInfoResp;
 import cn.axzo.tyr.client.model.roleuser.req.*;
@@ -26,7 +27,6 @@ import cn.hutool.core.util.StrUtil;
 import cn.hutool.json.JSONUtil;
 import com.alibaba.nacos.common.utils.CollectionUtils;
 import com.baomidou.mybatisplus.core.conditions.query.LambdaQueryWrapper;
-import com.baomidou.mybatisplus.core.conditions.query.QueryWrapper;
 import com.baomidou.mybatisplus.extension.conditions.query.LambdaQueryChainWrapper;
 import com.google.common.collect.Lists;
 import com.google.common.collect.Sets;
@@ -538,6 +538,32 @@ public class RoleUserService implements SaasRoleUserService {
                 .build();
     }
 
+    @Override
+    public GetUserFeatureResourceIdsResp getUserFeatureResourceIds(GetUserFeatureResourceIdsReq req) {
+        // 查询用户所有角色
+        List<SaasRoleUserRelation> existsRoleUser = roleUserRelationDao.queryByPersonId(req.getPersonId(), req.getWorkspaceId(), req.getOuId());
+        if (CollectionUtils.isEmpty(existsRoleUser)) {
+            return null;
+        }
+        List<SaasRole> roles = saasRoleDao.listByIds(existsRoleUser.stream().mapToLong(SaasRoleUserRelation::getRoleId).boxed().collect(Collectors.toList()))
+                .stream().filter(e -> CollectionUtils.isEmpty(req.getRoleIds()) || req.getRoleIds().contains(e.getId())).collect(Collectors.toList());
+        if (CollectionUtils.isEmpty(roles)) {
+            return null;
+        }
+
+        List<SaasPgroupRoleRelation> saasPgroupRoleRelations = saasPgroupRoleRelationDao.findByRoleIds(roles.stream().map(BaseEntity::getId).collect(Collectors.toSet()));
+        if (CollectionUtils.isEmpty(saasPgroupRoleRelations)) {
+            return null;
+        }
+
+        List<SaasPgroupPermissionRelation> saasPgroupPermissionRelations = saasPgroupPermissionRelationDao.lambdaQuery()
+                .eq(SaasPgroupPermissionRelation::getGroupId, saasPgroupRoleRelations.get(0).getGroupId())
+                .eq(SaasPgroupPermissionRelation::getIsDelete, TableIsDeleteEnum.NORMAL.value).list();
+
+        return GetUserFeatureResourceIdsResp.builder().featureResourceIds(saasPgroupPermissionRelations.stream()
+                .map(SaasPgroupPermissionRelation::getFeatureId).collect(Collectors.toSet())).build();
+    }
+
     private void batchRemoveByRoleUserInfo(RoleUserInfo roleUserBaseInfo) {
         roleUserBaseInfo.getRoleUserResourceInfos().forEach(e -> {