岗位报告审核

ruoyi-postcheck/src/main/java/com/ruoyi/postCheck/controller/PostCheckedReportController.java

@@ -3,6 +3,14 @@ package com.ruoyi.postCheck.controller;
 import java.util.Date;
 import java.util.List;
 import javax.servlet.http.HttpServletResponse;
+
+import com.ruoyi.common.core.domain.entity.SysDept;
+import com.ruoyi.common.core.domain.model.LoginUser;
+import com.ruoyi.common.enums.DeptCode;
+import com.ruoyi.common.utils.SecurityUtils;
+import com.ruoyi.system.domain.SysPost;
+import com.ruoyi.system.service.ISysDeptService;
+import com.ruoyi.system.service.ISysPostService;
 import org.springframework.security.access.prepost.PreAuthorize;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.web.bind.annotation.GetMapping;
@@ -40,6 +48,13 @@ public class PostCheckedReportController extends BaseController
     @Autowired
     private IPostCheckedReportService postCheckedReportService;
 
+    @Autowired
+    private ISysDeptService sysDeptService;
+
+    @Autowired
+    private ISysPostService sysPostService;
+
+
     /**
      * 查询岗检报告管理列表
      */
@@ -211,6 +226,19 @@ public class PostCheckedReportController extends BaseController
     @Log(title = "岗检报告审核", businessType = BusinessType.UPDATE)
     @PutMapping("/statusApprove")
     public AjaxResult statusApprove(Long id, Integer status, String statusReason) {
+
+        // 判断审核的权限
+        LoginUser loginUser = SecurityUtils.getLoginUser();
+        // 当前登录用户的部门id 查询岗位id是否在内
+        SysDept sysDept = sysDeptService.selectDeptById(loginUser.getDeptId());
+        if (!sysDept.getDeptCode().equals(DeptCode.DEPT_ICFA.getCode())) {
+            return error("审核权限有误，请联系管理员！");
+        }
+        // 判断岗位是否在权限范围内
+        SysPost sysPost = sysPostService.selectPostByDeptId(loginUser.getDeptId());
+        if (sysPost.getPostLevel() != 1) {
+            return error("审核权限有误，请联系管理员！");
+        }
         return toAjax(postCheckedReportService.statusApprove(id, status,  statusReason));
     }
 

ruoyi-postcheck/src/main/java/com/ruoyi/postCheck/service/impl/PostCheckedReportServiceImpl.java

@@ -5,6 +5,8 @@ import java.util.List;
 
 import com.ruoyi.common.constant.PostCheckedProblemEnum;
 import com.ruoyi.common.constant.PostCheckedReportEnum;
+import com.ruoyi.common.core.domain.entity.SysUser;
+import com.ruoyi.common.core.domain.model.LoginUser;
 import com.ruoyi.common.utils.DateUtils;
 import com.ruoyi.common.utils.SecurityUtils;
 import com.ruoyi.postCheck.domain.PostCheckedProblem;
@@ -135,17 +137,13 @@ public class PostCheckedReportServiceImpl extends ServiceImpl<PostCheckedReportM
         if (status == PostCheckedReportEnum.STATUS_BACK.getValue() && StringUtils.isBlank(statusReason)) {
             return 0;
         }
-
-        //TODO 权限判断
-        //1、内控法务部审核->部门下的3个经理级别的岗位（部门经理（1个）、部门副经理（2个）、党总支部副书记（1个））下面的人员（4个人）：
-        //
-        //
-        //
-
-
+        LoginUser loginUser = SecurityUtils.getLoginUser();
+        SysUser sysUser = loginUser.getUser();
         PostCheckedReport data = new PostCheckedReport();
         data.setId(id);
         data.setStatus(status);
+        data.setStatusByUserId(sysUser.getUserId());
+        data.setStatusByUserName(sysUser.getUserName());
         data.setStatusApproveTime(new Date());
         data.setStatusReason(statusReason);
         return postCheckedReportMapper.updatePostCheckedReport(data);