Add permission control

src/main/kotlin/top/fatweb/api/controller/permission/RoleController.kt

@@ -3,14 +3,15 @@ package top.fatweb.api.controller.permission
 import io.swagger.v3.oas.annotations.Operation
 import io.swagger.v3.oas.annotations.tags.Tag
 import jakarta.validation.Valid
+import org.springframework.security.access.prepost.PreAuthorize
 import org.springframework.web.bind.annotation.*
 import top.fatweb.api.entity.common.ResponseCode
 import top.fatweb.api.entity.common.ResponseResult
 import top.fatweb.api.param.permission.role.*
 import top.fatweb.api.service.permission.IRoleService
 import top.fatweb.api.vo.PageVo
-import top.fatweb.api.vo.permission.base.RoleVo
 import top.fatweb.api.vo.permission.RoleWithPowerVo
+import top.fatweb.api.vo.permission.base.RoleVo
 
 /**
  * Role controller
@@ -24,24 +25,27 @@ import top.fatweb.api.vo.permission.RoleWithPowerVo
 class RoleController(
     private val roleService: IRoleService
 ) {
-    @Operation(summary = "获取角色")
-    @GetMapping
-    fun get(roleGetParam: RoleGetParam?): ResponseResult<PageVo<RoleWithPowerVo>> {
-        return ResponseResult.databaseSuccess(
-            data = roleService.getPage(roleGetParam)
-        )
-    }
-
     @Operation(summary = "获取单个角色")
     @GetMapping("/{id}")
+    @PreAuthorize("hasAnyAuthority('system:role:query:one')")
     fun getOne(@PathVariable id: Long): ResponseResult<RoleWithPowerVo> {
         return ResponseResult.databaseSuccess(
             data = roleService.getOne(id)
         )
     }
 
+    @Operation(summary = "获取角色")
+    @GetMapping
+    @PreAuthorize("hasAnyAuthority('system:role:query:all')")
+    fun get(roleGetParam: RoleGetParam?): ResponseResult<PageVo<RoleWithPowerVo>> {
+        return ResponseResult.databaseSuccess(
+            data = roleService.getPage(roleGetParam)
+        )
+    }
+
     @Operation(summary = "获取角色列表")
     @GetMapping("/list")
+    @PreAuthorize("hasAnyAuthority('system:role:query:list', 'system:group:add:one', 'system:group:modify:one', 'system:user:add:one', 'system:user:modify:one')")
     fun list(): ResponseResult<List<RoleVo>> {
         return ResponseResult.databaseSuccess(
             data = roleService.listAll()
@@ -50,6 +54,7 @@ class RoleController(
 
     @Operation(summary = "添加角色")
     @PostMapping
+    @PreAuthorize("hasAnyAuthority('system:role:add:one')")
     fun add(@Valid @RequestBody roleAddParam: RoleAddParam): ResponseResult<RoleVo> {
         return roleService.add(roleAddParam)?.let {
             ResponseResult.databaseSuccess(
@@ -60,6 +65,7 @@ class RoleController(
 
     @Operation(summary = "修改角色")
     @PutMapping
+    @PreAuthorize("hasAnyAuthority('system:role:modify:one')")
     fun update(@Valid @RequestBody roleUpdateParam: RoleUpdateParam): ResponseResult<RoleVo> {
         return roleService.update(roleUpdateParam)?.let {
             ResponseResult.databaseSuccess(
@@ -70,6 +76,7 @@ class RoleController(
 
     @Operation(summary = "修改角色状态")
     @PatchMapping
+    @PreAuthorize("hasAnyAuthority('system:role:modify:status')")
     fun changStatus(@Valid @RequestBody roleChangeStatusParam: RoleChangeStatusParam): ResponseResult<Nothing> {
         return if (roleService.changeStatus(roleChangeStatusParam)) {
             ResponseResult.databaseSuccess(ResponseCode.DATABASE_UPDATE_SUCCESS)
@@ -80,6 +87,7 @@ class RoleController(
 
     @Operation(summary = "删除角色")
     @DeleteMapping("/{id}")
+    @PreAuthorize("hasAnyAuthority('system:role:delete:one')")
     fun delete(@PathVariable id: Long): ResponseResult<Nothing> {
         roleService.deleteOne(id)
         return ResponseResult.databaseSuccess(ResponseCode.DATABASE_DELETE_SUCCESS)
@@ -87,6 +95,7 @@ class RoleController(
 
     @Operation(summary = "批量删除角色")
     @DeleteMapping
+    @PreAuthorize("hasAnyAuthority('system:role:delete:multiple')")
     fun deleteList(@Valid @RequestBody roleDeleteParam: RoleDeleteParam): ResponseResult<Nothing> {
         roleService.delete(roleDeleteParam)
         return ResponseResult.databaseSuccess(ResponseCode.DATABASE_DELETE_SUCCESS)