Skip to content

Commit 6ee71bc

Browse files
committed
refactor: 移除控制器中直接的管理员权限检查。
1 parent c3c5f31 commit 6ee71bc

3 files changed

Lines changed: 2 additions & 37 deletions

File tree

backend/app/controllers/knowledge_bases_controller.ts

Lines changed: 1 addition & 13 deletions
Original file line numberDiff line numberDiff line change
@@ -16,10 +16,6 @@ export default class KnowledgeBasesController {
1616
}
1717

1818
public async store({ request, response, auth }: HttpContext) {
19-
if (!auth.user!.isAdmin) {
20-
return response.forbidden({ message: 'You do not have permission to perform this action' })
21-
}
22-
2319
const data = request.only(['keyword', 'description', 'exampleSql', 'sourceType'])
2420

2521
// Validate that keyword is unique
@@ -40,10 +36,6 @@ export default class KnowledgeBasesController {
4036
}
4137

4238
public async update({ params, request, response, auth }: HttpContext) {
43-
if (!auth.user!.isAdmin) {
44-
return response.forbidden({ message: 'You do not have permission to perform this action' })
45-
}
46-
4739
const itemOriginal = await KnowledgeBase.findOrFail(params.id)
4840
const data = request.only(['keyword', 'description', 'exampleSql', 'status', 'sourceType'])
4941

@@ -60,11 +52,7 @@ export default class KnowledgeBasesController {
6052
return response.json(item)
6153
}
6254

63-
public async destroy({ params, response, auth }: HttpContext) {
64-
if (!auth.user!.isAdmin) {
65-
return response.forbidden({ message: 'You do not have permission to perform this action' })
66-
}
67-
55+
public async destroy({ params, response }: HttpContext) {
6856
await KnowledgeBaseService.delete(params.id)
6957

7058
return response.json({ message: 'Deleted successfully' })

backend/app/controllers/roles_controller.ts

Lines changed: 0 additions & 12 deletions
Original file line numberDiff line numberDiff line change
@@ -16,10 +16,6 @@ export default class RolesController {
1616

1717
async store({ request, response, auth }: HttpContext) {
1818
const { name, slug, description, permissionIds } = request.all()
19-
const currentUser = auth.user!
20-
if (!currentUser.isAdmin) {
21-
return response.forbidden({ message: 'You do not have permission to perform this action' })
22-
}
2319

2420
const role = await Role.create({ name, slug, description })
2521

@@ -50,10 +46,6 @@ export default class RolesController {
5046
async update({ params, request, response, auth }: HttpContext) {
5147
const role = await Role.findOrFail(params.id)
5248
const { name, slug, description, permissionIds } = request.all()
53-
const currentUser = auth.user!
54-
if (!currentUser.isAdmin) {
55-
return response.forbidden({ message: 'You do not have permission to perform this action' })
56-
}
5749

5850
const previousData = role.toJSON()
5951

@@ -82,10 +74,6 @@ export default class RolesController {
8274

8375
async destroy({ params, response, request, auth }: HttpContext) {
8476
const role = await Role.findOrFail(params.id)
85-
const currentUser = auth.user!
86-
if (!currentUser.isAdmin) {
87-
return response.forbidden({ message: 'You do not have permission to perform this action' })
88-
}
8977

9078
await role.delete()
9179

backend/app/controllers/users_controller.ts

Lines changed: 1 addition & 12 deletions
Original file line numberDiff line numberDiff line change
@@ -3,10 +3,7 @@ import User from '#models/user'
33
import { AuditService } from '#services/audit_service'
44

55
export default class UsersController {
6-
async index({ auth, response }: HttpContext) {
7-
if (!auth.user!.isAdmin) {
8-
return response.forbidden({ message: 'You do not have permission to perform this action' })
9-
}
6+
async index({ response }: HttpContext) {
107
const users = await User.query().preload('roles')
118
return response.ok(
129
users.map(user => ({
@@ -19,10 +16,6 @@ export default class UsersController {
1916
async update({ params, request, response, auth }: HttpContext) {
2017
const user = await User.findOrFail(params.id)
2118
const { fullName, email, roleIds, isActive } = request.all()
22-
const currentUser = auth.user!
23-
if (!currentUser.isAdmin) {
24-
return response.forbidden({ message: 'You do not have permission to perform this action' })
25-
}
2619

2720
const previousData = user.toJSON()
2821

@@ -55,10 +48,6 @@ export default class UsersController {
5548

5649
async destroy({ params, response, request, auth }: HttpContext) {
5750
const user = await User.query().where('id', params.id).preload('roles').firstOrFail()
58-
const currentUser = auth.user!
59-
if (!currentUser.isAdmin) {
60-
return response.forbidden({ message: 'You do not have permission to perform this action' })
61-
}
6251

6352
// Check if the user being deleted is an admin
6453
const isAdmin = user.roles.some(role => role.slug === 'admin')

0 commit comments

Comments
 (0)