weiym
/
perms-system-server


			
				
					
						
						
							1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071
							package userperm

import (
	"context"
	"database/sql"
	"fmt"

	"perms-system-server/internal/consts"

	"github.com/zeromicro/go-zero/core/stores/cache"
	"github.com/zeromicro/go-zero/core/stores/sqlx"
)

var _ SysUserPermModel = (*customSysUserPermModel)(nil)

type (
	SysUserPermModel interface {
		sysUserPermModel
		FindPermIdsByUserIdAndEffectForProduct(ctx context.Context, userId int64, effect string, productCode string) ([]int64, error)
		DeleteByUserIdForProductTx(ctx context.Context, session sqlx.Session, userId int64, productCode string) error
	}

	customSysUserPermModel struct {
		*defaultSysUserPermModel
	}
)

func NewSysUserPermModel(conn sqlx.SqlConn, c cache.CacheConf, cachePrefix string, opts ...cache.Option) SysUserPermModel {
	return &customSysUserPermModel{
		defaultSysUserPermModel: newSysUserPermModel(conn, c, cachePrefix, opts...),
	}
}

func (m *customSysUserPermModel) FindPermIdsByUserIdAndEffectForProduct(ctx context.Context, userId int64, effect string, productCode string) ([]int64, error) {
	var ids []int64
	query := fmt.Sprintf(
		"SELECT up.`permId` FROM %s up INNER JOIN `sys_perm` p ON up.`permId` = p.`id` WHERE up.`userId` = ? AND up.`effect` = ? AND p.`productCode` = ? AND p.`status` = ?",
		m.table)
	if err := m.QueryRowsNoCacheCtx(ctx, &ids, query, userId, effect, productCode, consts.StatusEnabled); err != nil {
		return nil, err
	}
	return ids, nil
}

func (m *customSysUserPermModel) DeleteByUserIdForProductTx(ctx context.Context, session sqlx.Session, userId int64, productCode string) error {
	// 审计 L-R11-2：SELECT 只取 cache key 所需三列，不回灌全行。
	var list []struct {
		Id     int64 `db:"id"`
		UserId int64 `db:"userId"`
		PermId int64 `db:"permId"`
	}
	findQuery := fmt.Sprintf("SELECT `id`, `userId`, `permId` FROM %s WHERE `userId` = ? AND `permId` IN (SELECT `id` FROM `sys_perm` WHERE `productCode` = ?) FOR UPDATE", m.table)
	if err := session.QueryRowsCtx(ctx, &list, findQuery, userId, productCode); err != nil {
		return err
	}
	if len(list) == 0 {
		return nil
	}
	keys := make([]string, 0, len(list)*2)
	for _, data := range list {
		keys = append(keys,
			fmt.Sprintf("%s%v", cacheSysUserPermIdPrefix, data.Id),
			fmt.Sprintf("%s%v:%v", cacheSysUserPermUserIdPermIdPrefix, data.UserId, data.PermId),
		)
	}
	_, err := m.ExecCtx(ctx, func(ctx context.Context, conn sqlx.SqlConn) (sql.Result, error) {
		query := fmt.Sprintf("DELETE FROM %s WHERE `userId` = ? AND `permId` IN (SELECT `id` FROM `sys_perm` WHERE `productCode` = ?)", m.table)
		return session.ExecCtx(ctx, query, userId, productCode)
	}, keys...)
	return err
}