diff --git a/plugin/piadmin/app/base/BaseDao.php b/plugin/piadmin/app/base/BaseDao.php index 386aa1b..69784c6 100644 --- a/plugin/piadmin/app/base/BaseDao.php +++ b/plugin/piadmin/app/base/BaseDao.php @@ -540,6 +540,9 @@ abstract class BaseDao { // 判断是否有搜索条件提供 if ($where) { + //载入数据权限 + $admininfo = RequestUtils::getAdminInfo(); + $where[] = ['create_by', 'in', $admininfo['dataPermission']]; // 如果有搜索条件,则调用withSearchSelect方法执行带有搜索条件的查询 return $this->withSearchSelect($where, $search); } else { diff --git a/plugin/piadmin/app/middleware/AdminAuthorizationMiddleware.php b/plugin/piadmin/app/middleware/AdminAuthorizationMiddleware.php index 8ff6fd2..dd952f7 100644 --- a/plugin/piadmin/app/middleware/AdminAuthorizationMiddleware.php +++ b/plugin/piadmin/app/middleware/AdminAuthorizationMiddleware.php @@ -53,6 +53,8 @@ class AdminAuthorizationMiddleware implements MiddlewareInterface $adminInfo['is_login'] = true; $adminInfo['uid'] = $adminInfo['id']; $adminInfo['token'] = $token; + //数据权限,目前只查自己 + $adminInfo['dataPermission'] = [$adminInfo['id']]; // 检查版本 $this->checkVersionKey($uid, $token); $request->admin = $adminInfo; diff --git a/plugin/piadmin/app/utils/RequestUtils.php b/plugin/piadmin/app/utils/RequestUtils.php index 2cbbe1a..5aae957 100644 --- a/plugin/piadmin/app/utils/RequestUtils.php +++ b/plugin/piadmin/app/utils/RequestUtils.php @@ -37,7 +37,8 @@ class RequestUtils $admininfo = [ 'id'=>'', - 'name'=>'' + 'name'=>'', + 'dataPermission'=> '' ]; try{ @@ -45,7 +46,8 @@ class RequestUtils if(!empty($admin)){ $admininfo = [ 'id'=>$admin['id'] ?? '', - 'name'=>$admin['name'] ?? '' + 'name'=>$admin['name'] ?? '', + 'dataPermission'=>$admin['dataPermission'] ?? '' ]; }