feat: 重构 RBAC1 角色权限模型

2025-12-02 16:21:46 +08:00
parent 3d69151426
commit b459c7edbe
21 changed files with 780 additions and 49 deletions
--- a/src/Infrastructure/TakeoutSaaS.Infrastructure/Identity/Persistence/EfRolePermissionRepository.cs
+++ b/src/Infrastructure/TakeoutSaaS.Infrastructure/Identity/Persistence/EfRolePermissionRepository.cs
@@ -0,0 +1,38 @@
+using Microsoft.EntityFrameworkCore;
+using TakeoutSaaS.Domain.Identity.Entities;
+using TakeoutSaaS.Domain.Identity.Repositories;
+
+namespace TakeoutSaaS.Infrastructure.Identity.Persistence;
+
+/// <summary>
+/// EF 角色-权限仓储。
+/// </summary>
+public sealed class EfRolePermissionRepository(IdentityDbContext dbContext) : IRolePermissionRepository
+{
+    public Task<IReadOnlyList<RolePermission>> GetByRoleIdsAsync(long tenantId, IEnumerable<long> roleIds, CancellationToken cancellationToken = default)
+        => dbContext.RolePermissions.AsNoTracking()
+            .Where(x => x.TenantId == tenantId && roleIds.Contains(x.RoleId))
+            .ToListAsync(cancellationToken)
+            .ContinueWith(t => (IReadOnlyList<RolePermission>)t.Result, cancellationToken);
+
+    public async Task ReplaceRolePermissionsAsync(long tenantId, long roleId, IEnumerable<long> permissionIds, CancellationToken cancellationToken = default)
+    {
+        var existing = await dbContext.RolePermissions
+            .Where(x => x.TenantId == tenantId && x.RoleId == roleId)
+            .ToListAsync(cancellationToken);
+
+        dbContext.RolePermissions.RemoveRange(existing);
+
+        var toAdd = permissionIds.Distinct().Select(permissionId => new RolePermission
+        {
+            TenantId = tenantId,
+            RoleId = roleId,
+            PermissionId = permissionId
+        });
+
+        await dbContext.RolePermissions.AddRangeAsync(toAdd, cancellationToken);
+    }
+
+    public Task SaveChangesAsync(CancellationToken cancellationToken = default)
+        => dbContext.SaveChangesAsync(cancellationToken);
+}