feat: restrict permission roles

This commit is contained in:
Frudrax Cheng
2026-06-06 13:50:56 +08:00
parent a55f515930
commit 5edb25ac4e
17 changed files with 229 additions and 175 deletions
+2 -2
View File
@@ -111,7 +111,7 @@ func AdminMiddleware() gin.HandlerFunc {
}
}
// TechnicianMiddleware 技术员权限中间件(放行 admin 和 technician
// TechnicianMiddleware 工单处理权限中间件(放行 admin 和可派单角色
func TechnicianMiddleware() gin.HandlerFunc {
return func(c *gin.Context) {
user, exists := c.Get("user")
@@ -123,7 +123,7 @@ func TechnicianMiddleware() gin.HandlerFunc {
}
userModel := user.(models.User)
if userModel.Role != "admin" && userModel.Role != "technician" {
if !models.HasWorkOrderAccess(userModel.Role) {
c.AbortWithStatusJSON(http.StatusForbidden, gin.H{
"message": "无权限访问此资源",
})