授权用户添加访问权限

2021-07-09 17:08:30 +08:00 · 2021-07-09 17:08:30 +08:00 · da1095e298
commit da1095e298
parent f56da498ab
2 changed files with 3 additions and 0 deletions
--- a/ruoyi-admin/src/main/java/com/ruoyi/web/controller/system/SysRoleController.java
+++ b/ruoyi-admin/src/main/java/com/ruoyi/web/controller/system/SysRoleController.java
@ -220,6 +220,7 @@ public class SysRoleController extends BaseController
    /**
     * 批量取消授权用户
     */
+    @PreAuthorize("@ss.hasPermi('system:role:edit')")
    @Log(title = "角色管理", businessType = BusinessType.GRANT)
    @PutMapping("/authUser/cancelAll")
    public AjaxResult cancelAuthUserAll(Long roleId, Long[] userIds)
@ -230,6 +231,7 @@ public class SysRoleController extends BaseController
    /**
     * 批量选择用户授权
     */
+    @PreAuthorize("@ss.hasPermi('system:role:edit')")
    @Log(title = "角色管理", businessType = BusinessType.GRANT)
    @PutMapping("/authUser/selectAll")
    public AjaxResult selectAuthUserAll(Long roleId, Long[] userIds)
--- a/ruoyi-system/src/main/java/com/ruoyi/system/service/impl/SysUserServiceImpl.java
+++ b/ruoyi-system/src/main/java/com/ruoyi/system/service/impl/SysUserServiceImpl.java
@ -275,6 +275,7 @@ public class SysUserServiceImpl implements ISysUserService
     * @param roleIds 角色组
     */
    @Override
+    @Transactional
    public void insertUserAuth(Long userId, Long[] roleIds)
    {
        userRoleMapper.deleteUserRoleByUserId(userId);