| 1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859 |
- package member
- import (
- "context"
- "perms-system-server/internal/middleware"
- "perms-system-server/internal/response"
- "perms-system-server/internal/svc"
- "perms-system-server/internal/types"
- "github.com/zeromicro/go-zero/core/logx"
- )
- type UserProductsLogic struct {
- logx.Logger
- ctx context.Context
- svcCtx *svc.ServiceContext
- }
- func NewUserProductsLogic(ctx context.Context, svcCtx *svc.ServiceContext) *UserProductsLogic {
- return &UserProductsLogic{
- Logger: logx.WithContext(ctx),
- ctx: ctx,
- svcCtx: svcCtx,
- }
- }
- // UserProducts 查询指定用户加入的产品列表。
- // 访问控制:仅超管或本人可调用,防止普通用户枚举他人的产品归属(IDOR)。
- func (l *UserProductsLogic) UserProducts(req *types.UserProductsReq) (resp *types.UserProductsResp, err error) {
- caller := middleware.GetUserDetails(l.ctx)
- if caller == nil {
- return nil, response.ErrUnauthorized("未登录")
- }
- if !caller.IsSuperAdmin && caller.UserId != req.UserId {
- return nil, response.ErrForbidden("无权查看他人的产品列表")
- }
- members, err := l.svcCtx.SysProductMemberModel.FindByUserId(l.ctx, req.UserId)
- if err != nil {
- return nil, err
- }
- items := make([]types.UserProductItem, 0, len(members))
- for _, m := range members {
- product, err := l.svcCtx.SysProductModel.FindOneByCode(l.ctx, m.ProductCode)
- if err != nil {
- continue
- }
- items = append(items, types.UserProductItem{
- ProductCode: m.ProductCode,
- ProductName: product.Name,
- MemberType: m.MemberType,
- Status: m.Status,
- })
- }
- return &types.UserProductsResp{List: items}, nil
- }
|
