Home Explore Help
Register Sign In
HarrisonT
/
DataCenterCDC-DS
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

[Improvement][API] the QueryAuthorizedProject interface adds permission judgment (#5170) (#5184)

wenjun 4 years ago
parent
73e917d3c1
commit
039d517c13
2 changed files with 7 additions and 11 deletions
Split View Show Diff Stats
  1. 2 6
      dolphinscheduler-api/src/main/java/org/apache/dolphinscheduler/api/service/impl/ProjectServiceImpl.java
  2. 5 5
      dolphinscheduler-api/src/test/java/org/apache/dolphinscheduler/api/service/ProjectServiceTest.java

+ 2 - 6
dolphinscheduler-api/src/main/java/org/apache/dolphinscheduler/api/service/impl/ProjectServiceImpl.java
View File 

@@ -301,7 +301,7 @@ public class ProjectServiceImpl extends BaseServiceImpl implements ProjectServic
 
     @Override
 
     public Map<String, Object> queryUnauthorizedProject(User loginUser, Integer userId) {
 
         Map<String, Object> result = new HashMap<>();
 
-        if (isNotAdmin(loginUser, result)) {
 
+        if (loginUser.getId() != userId && isNotAdmin(loginUser, result)) {
 
             return result;
 
         }
 
         /**
 
@@ -353,7 +353,7 @@ public class ProjectServiceImpl extends BaseServiceImpl implements ProjectServic
 
     public Map<String, Object> queryAuthorizedProject(User loginUser, Integer userId) {
 
         Map<String, Object> result = new HashMap<>();
 
 
-        if (isNotAdmin(loginUser, result)) {
 
+        if (loginUser.getId() != userId && isNotAdmin(loginUser, result)) {
 
             return result;
 
         }
 
 
@@ -374,10 +374,6 @@ public class ProjectServiceImpl extends BaseServiceImpl implements ProjectServic
 
     public Map<String, Object> queryProjectCreatedByUser(User loginUser) {
 
         Map<String, Object> result = new HashMap<>();
 
 
-        if (isNotAdmin(loginUser, result)) {
 
-            return result;
 
-        }
 
-
 
         List<Project> projects = projectMapper.queryProjectCreatedByUser(loginUser.getId());
 
         result.put(Constants.DATA_LIST, projects);
 
         putMsg(result, Status.SUCCESS);

+ 5 - 5
dolphinscheduler-api/src/test/java/org/apache/dolphinscheduler/api/service/ProjectServiceTest.java
View File 

@@ -276,6 +276,10 @@ public class ProjectServiceTest {
 
         List<Project> projects = (List<Project>) result.get(Constants.DATA_LIST);
 
         Assert.assertTrue(CollectionUtils.isNotEmpty(projects));
 
 
+        loginUser.setUserType(UserType.GENERAL_USER);
 
+        result = projectService.queryAuthorizedProject(loginUser, loginUser.getId());
 
+        projects = (List<Project>) result.get(Constants.DATA_LIST);
 
+        Assert.assertTrue(CollectionUtils.isNotEmpty(projects));
 
     }
 
 
     @Test
 
@@ -284,14 +288,10 @@ public class ProjectServiceTest {
 
         User loginUser = getLoginUser();
 
 
         Mockito.when(projectMapper.queryProjectCreatedByUser(1)).thenReturn(getList());
 
-        //USER_NO_OPERATION_PERM
 
-        Map<String, Object> result = projectService.queryProjectCreatedByUser(loginUser);
 
-        logger.info(result.toString());
 
-        Assert.assertEquals(Status.USER_NO_OPERATION_PERM, result.get(Constants.STATUS));
 
 
         //success
 
         loginUser.setUserType(UserType.ADMIN_USER);
 
-        result = projectService.queryProjectCreatedByUser(loginUser);
 
+        Map<String, Object> result = projectService.queryProjectCreatedByUser(loginUser);
 
         logger.info(result.toString());
 
         List<Project> projects = (List<Project>) result.get(Constants.DATA_LIST);
 
         Assert.assertTrue(CollectionUtils.isNotEmpty(projects));