|
|
@@ -0,0 +1,48 @@
|
|
|
+const API = require("../../lib/API");
|
|
|
+const { BaseStdResponse } = require("../../BaseStdResponse");
|
|
|
+const AccessControl = require("../../lib/AccessControl");
|
|
|
+
|
|
|
+// 获取用户权限
|
|
|
+class GetPermissions extends API {
|
|
|
+ constructor() {
|
|
|
+ super();
|
|
|
+
|
|
|
+ this.setMethod("GET");
|
|
|
+ this.setPath("/User/GetPermissions");
|
|
|
+ }
|
|
|
+
|
|
|
+ async onRequest(data, res) {
|
|
|
+ this.setAllowCORS(res);
|
|
|
+ let {
|
|
|
+ uuid,
|
|
|
+ session
|
|
|
+ } = data;
|
|
|
+
|
|
|
+ // 检查必需的参数是否缺失
|
|
|
+ if ([uuid, session].some(value => value === '' || value === null || value === undefined)) {
|
|
|
+ res.json({
|
|
|
+ ...BaseStdResponse.MISSING_PARAMETER,
|
|
|
+ endpoint: 1513123
|
|
|
+ });
|
|
|
+ return;
|
|
|
+ }
|
|
|
+
|
|
|
+ // 检查 session 是否有效
|
|
|
+ if (!await AccessControl.checkSession(uuid, session)) {
|
|
|
+ res.json({
|
|
|
+ ...BaseStdResponse.ACCESS_DENIED,
|
|
|
+ endpoint: 48153145
|
|
|
+ });
|
|
|
+ return;
|
|
|
+ }
|
|
|
+
|
|
|
+ let permission = await AccessControl.getPermission(uuid);
|
|
|
+
|
|
|
+ res.json({
|
|
|
+ ...BaseStdResponse.OK,
|
|
|
+ permission
|
|
|
+ });
|
|
|
+ }
|
|
|
+}
|
|
|
+
|
|
|
+module.exports.GetPermissions = GetPermissions;
|
