feat: 添加用户权限洞察查询与示例

2025-12-02 15:49:04 +08:00
parent 5a4ce12d61
commit 8fbd40ecf2
12 changed files with 458 additions and 1 deletions
--- a/src/Application/TakeoutSaaS.Application/Identity/Services/AdminAuthService.cs
+++ b/src/Application/TakeoutSaaS.Application/Identity/Services/AdminAuthService.cs
@@ -5,6 +5,8 @@ using TakeoutSaaS.Domain.Identity.Entities;
 using TakeoutSaaS.Domain.Identity.Repositories;
 using TakeoutSaaS.Shared.Abstractions.Constants;
 using TakeoutSaaS.Shared.Abstractions.Exceptions;
+using TakeoutSaaS.Shared.Abstractions.Results;
+using TakeoutSaaS.Shared.Abstractions.Tenancy;

 namespace TakeoutSaaS.Application.Identity.Services;

@@ -15,8 +17,11 @@ public sealed class AdminAuthService(
    IIdentityUserRepository userRepository,
    IPasswordHasher<IdentityUser> passwordHasher,
    IJwtTokenService jwtTokenService,
-    IRefreshTokenStore refreshTokenStore) : IAdminAuthService
+    IRefreshTokenStore refreshTokenStore,
+    ITenantProvider tenantProvider) : IAdminAuthService
 {
+    private readonly ITenantProvider _tenantProvider = tenantProvider;
+
    /// <summary>
    /// 管理后台登录：验证账号密码并生成令牌。
    /// </summary>
@@ -85,6 +90,78 @@ public sealed class AdminAuthService(
        return BuildProfile(user);
    }

+    /// <summary>
+    /// 获取指定用户的权限概览（校验当前租户）。
+    /// </summary>
+    public async Task<UserPermissionDto?> GetUserPermissionsAsync(long userId, CancellationToken cancellationToken = default)
+    {
+        var tenantId = _tenantProvider.GetCurrentTenantId();
+        var user = await userRepository.FindByIdAsync(userId, cancellationToken);
+        if (user == null || user.TenantId != tenantId)
+        {
+            return null;
+        }
+
+        return new UserPermissionDto
+        {
+            UserId = user.Id,
+            TenantId = user.TenantId,
+            MerchantId = user.MerchantId,
+            Account = user.Account,
+            DisplayName = user.DisplayName,
+            Roles = user.Roles,
+            Permissions = user.Permissions,
+            CreatedAt = user.CreatedAt
+        };
+    }
+
+    /// <summary>
+    /// 按租户分页查询用户权限概览。
+    /// </summary>
+    public async Task<PagedResult<UserPermissionDto>> SearchUserPermissionsAsync(
+        string? keyword,
+        int page,
+        int pageSize,
+        string? sortBy,
+        bool sortDescending,
+        CancellationToken cancellationToken = default)
+    {
+        var tenantId = _tenantProvider.GetCurrentTenantId();
+        var users = await userRepository.SearchAsync(tenantId, keyword, cancellationToken);
+
+        var sorted = sortBy?.ToLowerInvariant() switch
+        {
+            "account" => sortDescending
+                ? users.OrderByDescending(x => x.Account)
+                : users.OrderBy(x => x.Account),
+            "displayname" => sortDescending
+                ? users.OrderByDescending(x => x.DisplayName)
+                : users.OrderBy(x => x.DisplayName),
+            _ => sortDescending
+                ? users.OrderByDescending(x => x.CreatedAt)
+                : users.OrderBy(x => x.CreatedAt)
+        };
+
+        var paged = sorted
+            .Skip((page - 1) * pageSize)
+            .Take(pageSize)
+            .ToList();
+
+        var items = paged.Select(user => new UserPermissionDto
+        {
+            UserId = user.Id,
+            TenantId = user.TenantId,
+            MerchantId = user.MerchantId,
+            Account = user.Account,
+            DisplayName = user.DisplayName,
+            Roles = user.Roles,
+            Permissions = user.Permissions,
+            CreatedAt = user.CreatedAt
+        }).ToList();
+
+        return new PagedResult<UserPermissionDto>(items, page, pageSize, users.Count);
+    }
+
    private static CurrentUserProfile BuildProfile(IdentityUser user)
        => new()
        {