Files

64 lines
1.9 KiB
Python

# api/roles.py
from typing import List
from django.shortcuts import get_object_or_404
from ninja import Router
from ninja.errors import HttpError
from users.models import Role
from users.permission import clear_user_permissions_cache, require_permissions
from users.schema import RoleOut, RoleCreate, RoleMenuAssign, RoleUpdate
router = Router(tags=['roles'])
@router.get("/", response=List[RoleOut], summary="获取角色列表")
@require_permissions("role:list")
def list_roles(request):
return Role.objects.all()
@router.post("/", response=RoleOut, summary="创建角色")
@require_permissions("role:create")
def create_role(request, payload: RoleCreate):
role = Role.objects.create(**payload.dict())
return role
@router.get("/{role_id}/", response=RoleOut, summary="获取角色详情")
@require_permissions("role:view")
def get_role(request, role_id: int):
role = get_object_or_404(Role, id=role_id)
return role
@router.put("/{role_id}/", response=RoleOut, summary="更新角色")
@require_permissions("role:update")
def update_role(request, role_id: int, payload: RoleUpdate):
role = get_object_or_404(Role, id=role_id)
for attr, value in payload.dict().items():
setattr(role, attr, value)
role.save()
return role
@router.delete("/{role_id}/", summary="删除角色")
@require_permissions("role:delete")
def delete_role(request, role_id: int):
role = get_object_or_404(Role, id=role_id)
role.delete()
return {"success": True}
@router.post("/{role_id}/menus/", summary="分配角色菜单权限")
@require_permissions("role:assign_permissions")
def assign_role_menus(request, role_id: int, payload: RoleMenuAssign):
role = get_object_or_404(Role, id=role_id)
# 直接使用 ManyToManyField 的 set() 方法
role.menus.set(payload.menu_ids)
# 清除该角色下所有用户的权限缓存
clear_user_permissions_cache(role_id)
return {"success": True}