| | |
|---|
| | | @Before("dataScopePointCut()")
|
|---|
| | | public void doBefore(JoinPoint point) throws Throwable
|
|---|
| | | {
|
|---|
| | | clearDataScope(point);
|
|---|
| | | handleDataScope(point);
|
|---|
| | | }
|
|---|
| | |
|
|---|
| | |
|---|
| | | }
|
|---|
| | | return null;
|
|---|
| | | }
|
|---|
| | |
|
|---|
| | | /**
|
|---|
| | | * 拼接权限sql前先清空params.dataScope参数防止注入
|
|---|
| | | */
|
|---|
| | | private void clearDataScope(final JoinPoint joinPoint)
|
|---|
| | | {
|
|---|
| | | Object params = joinPoint.getArgs()[0];
|
|---|
| | | if (StringUtils.isNotNull(params) && params instanceof BaseEntity)
|
|---|
| | | {
|
|---|
| | | BaseEntity baseEntity = (BaseEntity) params;
|
|---|
| | | baseEntity.getParams().put(DATA_SCOPE, "");
|
|---|
| | | }
|
|---|
| | | }
|
|---|
| | | }
|
|---|
| | |
|---|
| | | <if test="updateBy != null and updateBy != ''">update_by = #{updateBy},</if>
|
|---|
| | | update_time = sysdate()
|
|---|
| | | </set>
|
|---|
| | | where dept_id in (${ancestors})
|
|---|
| | | where find_in_set(#{deptId}, ancestors)
|
|---|
| | | </update>
|
|---|
| | |
|
|---|
| | | <delete id="deleteDeptById" parameterType="Long">
|
|---|
