From a985e6ba578b4ec28a25932f871c4df76ce092f2 Mon Sep 17 00:00:00 2001
From: chenhaozhe <cgz@hz-kingdee.com>
Date: 星期二, 12 五月 2026 15:02:39 +0800
Subject: [PATCH] 模块添加自定义标签鉴权 在Token启用的情况下。通过自定义标签定义的modname和Operate 判断用户是否有访问模块的权限
---
WebAPI/Controllers/XSGL/Xs_CusRatingChangeBillController.cs | 9 +++++++++
1 files changed, 9 insertions(+), 0 deletions(-)
diff --git a/WebAPI/Controllers/XSGL/Xs_CusRatingChangeBillController.cs b/WebAPI/Controllers/XSGL/Xs_CusRatingChangeBillController.cs
index 55c89b0..5114c3e 100644
--- a/WebAPI/Controllers/XSGL/Xs_CusRatingChangeBillController.cs
+++ b/WebAPI/Controllers/XSGL/Xs_CusRatingChangeBillController.cs
@@ -8,10 +8,12 @@
using System.Data.SqlClient;
using System.Web.Http;
using WebAPI.Models;
+using WebAPI.Utility;
namespace WebAPI.Controllers
{
//鏀舵鍗旵ontroller
+ [Permission(HModName = "Xs_CusRatingChangeBill")]
public class Xs_CusRatingChangeBillController : ApiController
{
//鑾峰彇绯荤粺鍙傛暟
@@ -31,6 +33,7 @@
/// </summary>
[Route("Xs_CusRatingChangeBill/list")]
[HttpGet]
+ [Permission(HModName = "Xs_CusRatingChangeBill", Operate = "_Query")]
public object getXs_CusRatingChangeBill(string sWhere, string user)
{
try
@@ -86,6 +89,7 @@
#region 淇$敤棰濆害鐢宠鍗曚繚瀛� 鏂板/缂栬緫
[Route("Xs_CusRatingChangeBill/SaveXs_CusRatingChangeBill")]
[HttpPost]
+ [Permission(HModName = "Xs_CusRatingChangeBill", Operate = "_Edit")]
public object SaveXs_CusRatingChangeBill([FromBody] JObject msg)
{
var _value = msg["msg"].ToString();
@@ -315,6 +319,7 @@
/// </summary>
[Route("Xs_CusRatingChangeBill/delete")]
[HttpGet]
+ [Permission(HModName = "Xs_CusRatingChangeBill", Operate = "_Drop")]
public object deleteXs_CusRatingChangeBill(string HInterID, string user)
{
try
@@ -400,6 +405,7 @@
/// <returns></returns>
[Route("Xs_CusRatingChangeBill/AuditXs_CusRatingChangeBill")]
[HttpGet]
+ [Permission(HModName = "Xs_CusRatingChangeBill", Operate = "_Check")]
public object AuditXs_CusRatingChangeBill(int HInterID, int IsAudit, string CurUserName)
{
string ModRightNameCheck = "Xs_CusRatingChangeBill_Check";
@@ -574,6 +580,7 @@
/// <returns></returns>
[Route("Xs_CusRatingChangeBill/CloseXs_CusRatingChangeBill")]
[HttpGet]
+ [Permission(HModName = "Xs_CusRatingChangeBill", Operate = "_Close")]
public object CloseXs_CusRatingChangeBill(int HInterID, int IsAudit, string CurUserName)
{
string ModRightNameCheck = "Xs_CusRatingChangeBill_Close";
@@ -719,6 +726,7 @@
/// <returns></returns>
[Route("Xs_CusRatingChangeBill/DeleteXs_CusRatingChangeBill")]
[HttpGet]
+ [Permission(HModName = "Xs_CusRatingChangeBill", Operate = "_Delete")]
public object DeleteXs_CusRatingChangeBill(int HInterID, int IsAudit, string CurUserName)
{
string ModRightNameCheck = "Xs_CusRatingChangeBill_Delete";
@@ -854,6 +862,7 @@
/// </summary>
[Route("Xs_CusRatingChangeBill/getCustomerBalance")]
[HttpGet]
+ [Permission(HModName = "Gy_Customer", Operate = "_Balance")]
public object getCustomerBalance(Int64 HCusID, string CurUserName)
{
try
--
Gitblit v1.9.1