UserController.php 6.5 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209
  1. <?php
  2. namespace App\Http\Controllers\API;
  3. use App\Http\Controllers\Controller;
  4. use App\Http\Requests\API\User\AdminUpdateRequest;
  5. use App\Http\Requests\API\User\BatchCreateRequest;
  6. use App\Http\Requests\API\User\CreateRequest;
  7. use App\Http\Requests\API\User\UpdateRequest;
  8. use App\Http\Resources\API\UserInfoResource;
  9. use App\Http\Resources\API\UserSimpleResource;
  10. use App\Models\Enums\RequirementStatus;
  11. use App\Models\Menu;
  12. use App\Models\Permission;
  13. use App\Models\Role;
  14. use App\Models\User;
  15. use Illuminate\Http\Request;
  16. use Illuminate\Support\Facades\Auth;
  17. use Illuminate\Support\Facades\DB;
  18. use Illuminate\Support\Facades\Hash;
  19. use function Laravel\Prompts\password;
  20. class UserController extends Controller
  21. {
  22. public function details()
  23. {
  24. $user = Auth::user();
  25. $menus = Menu::query()->where("group", \request("group", "web"))
  26. ->get();
  27. // ->filter(fn(Menu $menu) => Auth::user()->can($menu->permission));
  28. $items = [];
  29. $userPerminssion=$user->role->permissions->pluck('name')->toArray();
  30. foreach ($menus as $menu) {
  31. if(in_array($menu->permission,$userPerminssion)){
  32. $items[] = $menu->name;
  33. }
  34. }
  35. $user->menus = $items;
  36. return new UserInfoResource($user);
  37. }
  38. public function assignRole(Request $request, string $id)
  39. {
  40. $user = User::query()->findOrFail($id);
  41. $roleName = $request->get('role_name');
  42. if ($roleName) {
  43. $role = Role::query()->where("guard_name", "api")->where('name', $roleName)->firstOrFail();
  44. $user->role_id = $role->id;
  45. $user->save();
  46. }
  47. $roles = $roleName ? [$roleName] : [];
  48. $user->syncRoles($roles);
  49. return $this->noContent();
  50. }
  51. public function index(Request $request){
  52. //超管能看到所有用户
  53. if(Auth::user()->super_admin){
  54. $user = User::query()->filter($request->all())->paginate();
  55. return UserSimpleResource::collection($user);
  56. }
  57. //普通管理员能看到自己公司的用户
  58. $user=User::query()
  59. ->where('company_id',Auth::user()->company_id)
  60. ->filter($request->all()) ->paginate();
  61. return UserInfoResource::collection($user);
  62. }
  63. /**
  64. * add a new User
  65. * @return \Illuminate\Http\Response
  66. */
  67. public function store(CreateRequest $request){
  68. $password = Hash::make($request->password);
  69. $userRequest=$request->all();
  70. $userRequest['password']=$password;
  71. $user=User::create([
  72. ...$userRequest,
  73. 'created_by' => Auth::id(),
  74. ]);
  75. // TODO:发送邮箱给目标用户
  76. $roleId = $request->get('role_id');
  77. $role = Role::query()->findOrFail($roleId);
  78. $user->syncRoles($role);
  79. return $this->created();
  80. }
  81. /**
  82. * batchCreate User,为ditto时参考上一条
  83. * @return \Illuminate\Http\Response
  84. */
  85. public function batchStore(BatchCreateRequest $request){
  86. $userData = $request->users;
  87. DB::transaction(function () use ($userData) {
  88. foreach ($userData as $k => $data) {
  89. $user = new User();
  90. if ($k != 0) {
  91. $userData[$k]["department_id"] = $userData[$k]["department_id"] == 'ditto' ? $userData[$k - 1]["department_id"] : $userData[$k]["department_id"];
  92. $userData[$k]["role_id"] = $userData[$k]["role_id"] == 'ditto' ? $userData[$k - 1]["role_id"] : $userData[$k]["role_id"];
  93. }
  94. $userData[$k]['password'] = Hash::make($userData[$k]['password']);
  95. $user->fill([
  96. ...$userData[$k],
  97. 'created_by' => Auth::id(),
  98. ]);
  99. // TODO:发送邮箱给目标用户
  100. $user->save();
  101. }
  102. });
  103. // TODO:发送邮箱给目标用户
  104. return $this->created();
  105. }
  106. /**
  107. * enable or ban users 启用或禁用用户
  108. * @param Request $request
  109. * @return \Illuminate\Http\Response
  110. */
  111. public function status(Request $request,string $status){
  112. //只能删除自己公司的;超管除外
  113. if (Auth::user()->super_admin){
  114. User::whereIn('id', $request->user_id)->update(['status' => $status]);
  115. }
  116. else{
  117. User::whereIn('id', $request->user_id)->where('company_id',Auth::user()->company_id)->update(['status' => $status]);
  118. }
  119. return $this->created();
  120. }
  121. public function destroy(string $id)
  122. {
  123. $user = User::query()->findOrFail($id);
  124. $user->delete();
  125. return $this->noContent();
  126. }
  127. public function show(string $id)
  128. {
  129. $user = User::query()->findOrFail($id);
  130. return new UserInfoResource($user);
  131. }
  132. public function update(UpdateRequest $request,string $id)
  133. {
  134. $user = User::findOrFail($id);
  135. $newPassword=null;
  136. if(Auth::user()->super_admin){
  137. $user->fill([
  138. ...$request->except(['username']),
  139. 'password'=> $request->password ? Hash::make($request->password):Auth::user()->password,
  140. ]);
  141. $user->save();
  142. $roleId = $request->get('role_id');
  143. $role = Role::query()->findOrFail($roleId);
  144. $user->syncRoles($role);
  145. return $this->noContent();
  146. }
  147. $user->fill([
  148. ...$request->except(['role_id','department_id','company_id']),
  149. 'password'=> $request->password ? Hash::make($request->password):Auth::user()->password,
  150. ]);
  151. $user->save();
  152. return $this->noContent();
  153. }
  154. // /**
  155. // * @param CreateRequest $request
  156. // * @return \Illuminate\Http\Response
  157. // * 修改个人信息
  158. // */
  159. // public function updateInfo(UpdateRequest $request)
  160. // {
  161. // $user = User::findOrFail(Auth::user()->id);
  162. // $user->fill([
  163. // ...$request->except(['username','role_id','department_id','company_id'])
  164. // ]);
  165. // $user->save();
  166. // return $this->noContent();
  167. // }
  168. //
  169. // /**
  170. // * @param AdminUpdateRequest $request 修改主体
  171. // * @param string $id 用户id
  172. // * @return \Illuminate\Http\Response
  173. // * 超管修改用户的信息
  174. // */
  175. // public function updateUserInfo(AdminUpdateRequest $request, string $id)
  176. // {
  177. // $user = User::findOrFail($id);
  178. // $user->fill([
  179. // ...$request->all()
  180. // ]);
  181. // $user->save();
  182. // return $this->noContent();
  183. //
  184. // }
  185. }