|
@@ -93,25 +93,25 @@ public class PracticeGroupManageController extends BaseController {
|
|
|
|
|
|
@ApiOperation(value = "评论管理")
|
|
|
@GetMapping("getReviews")
|
|
|
- //@PreAuthorize("@pcs.hasPermissions('practiceGroupManage/getReviews')")
|
|
|
+ @PreAuthorize("@pcs.hasPermissions('practiceGroupManage/getReviews')")
|
|
|
public Object getReviews(PracticeGroupQueryInfo queryInfo) {
|
|
|
-// SysUser sysUser = sysUserFeignService.queryUserInfo();
|
|
|
-// if (sysUser == null) {
|
|
|
-// return failed("用户信息获取失败");
|
|
|
-// }
|
|
|
-// if (!sysUser.getIsSuperAdmin()) {
|
|
|
-// Employee employee = employeeDao.get(sysUser.getId());
|
|
|
-// if (StringUtils.isEmpty(queryInfo.getOrganId())) {
|
|
|
-// queryInfo.setOrganId(employee.getOrganIdList());
|
|
|
-// } else if (StringUtils.isEmpty(employee.getOrganIdList())) {
|
|
|
-// return failed("用户所在分部异常");
|
|
|
-// } else {
|
|
|
-// List<String> list = Arrays.asList(employee.getOrganIdList().split(","));
|
|
|
-// if (!list.containsAll(Arrays.asList(queryInfo.getOrganId().split(",")))) {
|
|
|
-// return failed("非法请求");
|
|
|
-// }
|
|
|
-// }
|
|
|
-// }
|
|
|
+ SysUser sysUser = sysUserFeignService.queryUserInfo();
|
|
|
+ if (sysUser == null) {
|
|
|
+ return failed("用户信息获取失败");
|
|
|
+ }
|
|
|
+ if (!sysUser.getIsSuperAdmin()) {
|
|
|
+ Employee employee = employeeDao.get(sysUser.getId());
|
|
|
+ if (StringUtils.isEmpty(queryInfo.getOrganId())) {
|
|
|
+ queryInfo.setOrganId(employee.getOrganIdList());
|
|
|
+ } else if (StringUtils.isEmpty(employee.getOrganIdList())) {
|
|
|
+ return failed("用户所在分部异常");
|
|
|
+ } else {
|
|
|
+ List<String> list = Arrays.asList(employee.getOrganIdList().split(","));
|
|
|
+ if (!list.containsAll(Arrays.asList(queryInfo.getOrganId().split(",")))) {
|
|
|
+ return failed("非法请求");
|
|
|
+ }
|
|
|
+ }
|
|
|
+ }
|
|
|
return succeed(practiceGroupService.findPracticeGroupReviews(queryInfo));
|
|
|
}
|
|
|
|