流程列表添加角色数据权限

ruoyi-loan-pricing/src/main/java/com/ruoyi/loanpricing/domain/entity/LoanPricingWorkflow.java

@@ -150,6 +150,10 @@ public class LoanPricingWorkflow implements Serializable
     @TableField(fill = FieldFill.INSERT)
     private String createBy;
 
+    /** 列表数据权限创建者过滤条件 */
+    @TableField(exist = false)
+    private String dataScopeCreateBy;
+
     /** 创建时间 */
     @JsonFormat(pattern = "yyyy-MM-dd HH:mm:ss")
     @TableField(fill = FieldFill.INSERT)

ruoyi-loan-pricing/src/main/java/com/ruoyi/loanpricing/service/impl/LoanPricingWorkflowServiceImpl.java

@@ -3,7 +3,12 @@ package com.ruoyi.loanpricing.service.impl;
 import com.baomidou.mybatisplus.core.conditions.query.LambdaQueryWrapper;
 import com.baomidou.mybatisplus.core.metadata.IPage;
 import com.baomidou.mybatisplus.extension.plugins.pagination.Page;
+import com.ruoyi.common.constant.UserConstants;
+import com.ruoyi.common.core.domain.entity.SysRole;
+import com.ruoyi.common.core.domain.entity.SysUser;
+import com.ruoyi.common.core.domain.model.LoginUser;
 import com.ruoyi.common.exception.ServiceException;
+import com.ruoyi.common.utils.SecurityUtils;
 import com.ruoyi.loanpricing.domain.dto.CorporateLoanPricingCreateDTO;
 import com.ruoyi.loanpricing.domain.dto.PersonalLoanPricingCreateDTO;
 import com.ruoyi.loanpricing.domain.entity.LoanPricingWorkflow;
@@ -38,6 +43,10 @@ import java.util.Objects;
 @Service
 public class LoanPricingWorkflowServiceImpl implements ILoanPricingWorkflowService
 {
+    private static final String WORKFLOW_ADMIN_ROLE_NAME = "管理员";
+
+    private static final String WORKFLOW_ADMIN_ROLE_KEY = "headAdmin";
+
     @Resource
     private LoanPricingWorkflowMapper loanPricingWorkflowMapper;
 
@@ -209,7 +218,8 @@ public class LoanPricingWorkflowServiceImpl implements ILoanPricingWorkflowServi
     @Override
     public IPage<LoanPricingWorkflowListVO> selectLoanPricingPage(Page<LoanPricingWorkflowListVO> page, LoanPricingWorkflow loanPricingWorkflow)
     {
-        IPage<LoanPricingWorkflowListVO> pageResult = loanPricingWorkflowMapper.selectWorkflowPageWithRates(page, loanPricingWorkflow);
+        LoanPricingWorkflow scopedQuery = applyWorkflowListDataScope(loanPricingWorkflow);
+        IPage<LoanPricingWorkflowListVO> pageResult = loanPricingWorkflowMapper.selectWorkflowPageWithRates(page, scopedQuery);
         pageResult.getRecords().forEach(row -> row.setCustName(
                 loanPricingSensitiveDisplayService.maskCustName(
                         sensitiveFieldCryptoService.decrypt(row.getCustName()))));
@@ -292,6 +302,41 @@ public class LoanPricingWorkflowServiceImpl implements ILoanPricingWorkflowServi
         return wrapper;
     }
 
+    private LoanPricingWorkflow applyWorkflowListDataScope(LoanPricingWorkflow query)
+    {
+        LoanPricingWorkflow scopedQuery = query == null ? new LoanPricingWorkflow() : query;
+        LoginUser loginUser = SecurityUtils.getLoginUser();
+        if (!canViewAllWorkflows(loginUser))
+        {
+            scopedQuery.setDataScopeCreateBy(buildCurrentCreateBy(loginUser));
+        }
+        return scopedQuery;
+    }
+
+    private boolean canViewAllWorkflows(LoginUser loginUser)
+    {
+        SysUser user = loginUser.getUser();
+        if (user.isAdmin())
+        {
+            return true;
+        }
+        List<SysRole> roles = user.getRoles();
+        if (roles == null)
+        {
+            return false;
+        }
+        return roles.stream().anyMatch(role -> role != null
+                && UserConstants.ROLE_NORMAL.equals(role.getStatus())
+                && (WORKFLOW_ADMIN_ROLE_NAME.equals(role.getRoleName())
+                || WORKFLOW_ADMIN_ROLE_KEY.equals(role.getRoleKey())));
+    }
+
+    private String buildCurrentCreateBy(LoginUser loginUser)
+    {
+        SysUser user = loginUser.getUser();
+        return user.getNickName() + "-" + loginUser.getUsername();
+    }
+
     private void maskModelRetailOutputBasicInfo(ModelRetailOutputFields modelRetailOutputFields)
     {
         modelRetailOutputFields.setCustName(

ruoyi-loan-pricing/src/main/resources/mapper/loanpricing/LoanPricingWorkflowMapper.xml

@@ -23,8 +23,11 @@
         LEFT JOIN model_retail_output_fields mr ON lpw.model_output_id = mr.id
         LEFT JOIN model_corp_output_fields mc ON lpw.model_output_id = mc.id
         <where>
+            <if test="query != null and query.dataScopeCreateBy != null and query.dataScopeCreateBy != ''">
+                AND lpw.create_by = #{query.dataScopeCreateBy}
+            </if>
             <if test="query != null and query.createBy != null and query.createBy != ''">
-                AND lpw.create_by LIKE CONCAT('%', #{query.createBy}, '%')
+                AND SUBSTRING_INDEX(lpw.create_by, '-', -1) LIKE CONCAT('%', #{query.createBy}, '%')
             </if>
             <if test="query != null and query.custIsn != null and query.custIsn != ''">
                 AND lpw.cust_isn LIKE CONCAT('%', #{query.custIsn}, '%')