wsy182
/
RuoYi-Cloud
mirror of https://gitee.com/y_project/RuoYi-Cloud.git
1
1
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Compare commits

base: wsy182:5b552dc1256174b46b02f23bfcb50d8d0b23598b
Branches Tags
wsy182:springboot3
wsy182:master
wsy182:v3.6.7
wsy182:v3.6.6
wsy182:v3.6.5
wsy182:v3.6.4
wsy182:v3.6.3
wsy182:v3.6.2
wsy182:v3.6.1
wsy182:v3.6.0
wsy182:v3.5.0
wsy182:v3.4.0
wsy182:v3.3.0
wsy182:v3.2.0
wsy182:v3.1.0
wsy182:v3.0.0
wsy182:v2.5.0
wsy182:v2.4.0
wsy182:v2.3.0
wsy182:v2.2
wsy182:v2.1
wsy182:v2.0
...
compare: wsy182:2dfcbc37d94d6943ff3b1cc503a7363a7d79986f
Branches Tags
wsy182:springboot3
wsy182:master
wsy182:v3.6.7
wsy182:v3.6.6
wsy182:v3.6.5
wsy182:v3.6.4
wsy182:v3.6.3
wsy182:v3.6.2
wsy182:v3.6.1
wsy182:v3.6.0
wsy182:v3.5.0
wsy182:v3.4.0
wsy182:v3.3.0
wsy182:v3.2.0
wsy182:v3.1.0
wsy182:v3.0.0
wsy182:v2.5.0
wsy182:v2.4.0
wsy182:v2.3.0
wsy182:v2.2
wsy182:v2.1
wsy182:v2.0

3 Commits
5b552dc125 ... 2dfcbc37d9

Author SHA1 Message Date
D哥 2dfcbc37d9
Pre Merge pull request !401 from D哥/N/A 2025-06-18 05:42:01 +00:00
RuoYi 51a6fce0a5 升级tomcat到最新版本9.0.106 2025-06-18 13:41:37 +08:00
D哥 6fb42d117e
解决数据权限过滤处理逻辑中,莫名其妙添加AND (d.dept_id = 0)的问题 
解决数据权限过滤处理逻辑中,莫名其妙添加AND (d.dept_id = 0)的问题。
修改前生成sql语句:
SELECT d.dept_id, d.parent_id, d.ancestors, d.dept_name, d.order_num, d.leader, d.phone, d.email, d.status, d.del_flag, d.create_by, d.create_time, d.tenant_id FROM sys_dept d WHERE d.del_flag = '0' AND (d.dept_id = 0) ORDER BY d.parent_id, d.order_num

修改后生成sql语句:
SELECT d.dept_id, d.parent_id, d.ancestors, d.dept_name, d.order_num, d.leader, d.phone, d.email, d.status, d.del_flag, d.create_by, d.create_time, d.tenant_id FROM sys_dept d WHERE d.del_flag = '0' ORDER BY d.parent_id, d.order_num

Signed-off-by: D哥 <12271764+darrenteng@user.noreply.gitee.com>
 2025-03-21 07:27:12 +00:00
2 changed files with 15 additions and 14 deletions
Show Stats Expand all files Collapse all files

2
pom.xml
View File

@ -35,7 +35,7 @@
<springdoc.version>1.6.9</springdoc.version>
<transmittable-thread-local.version>2.14.4</transmittable-thread-local.version>
<!-- override dependency version -->
<tomcat.version>9.0.105</tomcat.version>
<tomcat.version>9.0.106</tomcat.version>
<logback.version>1.2.13</logback.version>
<spring-framework.version>5.3.39</spring-framework.version>
</properties>

27
ruoyi-common/ruoyi-common-datascope/src/main/java/com/ruoyi/common/datascope/aspect/DataScopeAspect.java
View File

@ -113,9 +113,10 @@ public class DataScopeAspect
}
if (DATA_SCOPE_ALL.equals(dataScope))
{
// 全部数据权限,不添加额外条件
sqlString = new StringBuilder();
conditions.add(dataScope);
break;
conditions.clear();
return;
}
else if (DATA_SCOPE_CUSTOM.equals(dataScope))
{
@ -143,28 +144,28 @@ public class DataScopeAspect
{
sqlString.append(StringUtils.format(" OR {}.user_id = {} ", userAlias, user.getUserId()));
}
else
{
// 数据权限为仅本人且没有userAlias别名不查询任何数据
sqlString.append(StringUtils.format(" OR {}.dept_id = 0 ", deptAlias));
}
// 当没有 userAlias 时,不添加任何条件
}
conditions.add(dataScope);
}
// 角色都不包含传递过来的权限字符,这个时候sqlString也会为空所以要限制一下,不查询任何数据
// 角色都不包含传递过来的权限字符,这个时候不添加任何条件
if (StringUtils.isEmpty(conditions))
{
sqlString.append(StringUtils.format(" OR {}.dept_id = 0 ", deptAlias));
sqlString = new StringBuilder();
}
if (StringUtils.isNotBlank(sqlString.toString()))
String sql = sqlString.toString().trim();
if (sql.startsWith("OR ")) {
sql = sql.substring(3);
}
if (StringUtils.isNotBlank(sql))
{
Object params = joinPoint.getArgs()[0];
if (StringUtils.isNotNull(params) && params instanceof BaseEntity)
if (params instanceof BaseEntity)
{
BaseEntity baseEntity = (BaseEntity) params;
baseEntity.getParams().put(DATA_SCOPE, " AND (" + sqlString.substring(4) + ")");
baseEntity.getParams().put(DATA_SCOPE, " AND (" + sql + ")");
}
}
}
@ -181,4 +182,4 @@ public class DataScopeAspect
baseEntity.getParams().put(DATA_SCOPE, "");
}
}
}
}