Merge pull request #678 from actiontech/fix/optimize-permission

[fix]: Fix permission control issues

Author: LZS911

packages/base/src/locale/zh-CN/dmsUserCenter.ts

@@ -74,7 +74,8 @@ export default {
       title: '角色列表',
       columns: {
         opPermissions: '平台操作权限'
-      }
+      },
+      searchPlaceholder: '输入操作权限关键词搜索'
     },
     roleForm: {
       name: '角色名',

packages/base/src/page/DataExportManagement/List/__tests__/__snapshots__/index.test.tsx.snap

@@ -13,39 +13,7 @@ exports[`test base/DataExport/List render batch close button When the user is no
       </div>
       <div
         class="extra"
-      >
-        <a
-          href="/project/700300/data/export/create"
-        >
-          <button
-            class="ant-btn ant-btn-primary basic-button-wrapper css-geipcv"
-            type="button"
-          >
-            <span
-              class="ant-btn-icon"
-            >
-              <svg
-                color="currentColor"
-                fill="none"
-                height="10"
-                viewBox="0 0 10 10"
-                width="10"
-                xmlns="http://www.w3.org/2000/svg"
-              >
-                <path
-                  d="m5.02.5-.012 9M.5 5h9"
-                  stroke="currentColor"
-                  stroke-linejoin="round"
-                  stroke-width="1.5"
-                />
-              </svg>
-            </span>
-            <span>
-              创建导出
-            </span>
-          </button>
-        </a>
-      </div>
+      />
     </div>
     <div
       class="ant-spin-nested-loading"

packages/base/src/page/UserCenter/__tests__/__snapshots__/index.test.tsx.snap

@@ -4440,7 +4440,7 @@ exports[`base/UserCenter switch to role list 1`] = `
                     <input
                       class="ant-input ant-input-sm"
                       id="actiontech-table-search-input"
-                      placeholder="输入关键字搜索"
+                      placeholder="输入操作权限关键词搜索"
                       type="text"
                       value=""
                     />

packages/base/src/page/UserCenter/components/RoleList/List.tsx

@@ -131,7 +131,8 @@ const RoleList: React.FC<{ activePage: UserCenterListEnum }> = ({
           onChange: setSearchKeyword,
           onSearch: () => {
             refreshBySearchKeyword();
-          }
+          },
+          placeholder: t('dmsUserCenter.role.roleList.searchPlaceholder')
         }}
       />
       <ActiontechTable

packages/base/src/page/UserCenter/components/RoleList/__tests__/__snapshots__/RoleList.test.tsx.snap

@@ -23,7 +23,7 @@ exports[`base/UserCenter/RoleList render role table 1`] = `
               <input
                 class="ant-input ant-input-sm"
                 id="actiontech-table-search-input"
-                placeholder="输入关键字搜索"
+                placeholder="输入操作权限关键词搜索"
                 type="text"
                 value=""
               />
@@ -946,7 +946,7 @@ exports[`base/UserCenter/RoleList should refresh role table when change current
               <input
                 class="ant-input ant-input-sm"
                 id="actiontech-table-search-input"
-                placeholder="输入关键字搜索"
+                placeholder="输入操作权限关键词搜索"
                 type="text"
                 value=""
               />
@@ -3314,7 +3314,7 @@ exports[`base/UserCenter/RoleList should refresh role table when change current
               <input
                 class="ant-input ant-input-sm"
                 id="actiontech-table-search-input"
-                placeholder="输入关键字搜索"
+                placeholder="输入操作权限关键词搜索"
                 type="text"
                 value=""
               />
@@ -5682,7 +5682,7 @@ exports[`base/UserCenter/RoleList should render empty tips when request not succ
               <input
                 class="ant-input ant-input-sm"
                 id="actiontech-table-search-input"
-                placeholder="输入关键字搜索"
+                placeholder="输入操作权限关键词搜索"
                 type="text"
                 value=""
               />

packages/shared/lib/features/usePermission/__tests__/__snapshots__/index.test.ts.snap

@@ -558,8 +558,16 @@ exports[`usePermission should match snapshot 2`] = `
     "type": "action",
   },
   "action:create_data_export": {
+    "dbServicePermission": {
+      "opType": "create_export_task",
+    },
     "id": "action:create_data_export",
     "projectArchived": false,
+    "projectManager": true,
+    "role": [
+      "admin",
+      "systemAdministrator",
+    ],
     "type": "action",
   },
   "action:create_modified_sql_workflow": {
@@ -599,8 +607,16 @@ exports[`usePermission should match snapshot 2`] = `
     "type": "action",
   },
   "action:create_sql_audit": {
+    "dbServicePermission": {
+      "opType": "create_workflow",
+    },
     "id": "action:create_sql_audit",
     "projectArchived": false,
+    "projectManager": true,
+    "role": [
+      "admin",
+      "systemAdministrator",
+    ],
     "type": "action",
   },
   "action:create_sql_management_exception": {
@@ -615,8 +631,16 @@ exports[`usePermission should match snapshot 2`] = `
     "type": "action",
   },
   "action:create_workflow": {
+    "dbServicePermission": {
+      "opType": "create_workflow",
+    },
     "id": "action:create_workflow",
     "projectArchived": false,
+    "projectManager": true,
+    "role": [
+      "admin",
+      "systemAdministrator",
+    ],
     "type": "action",
   },
   "action:data_export_batch_close": {
@@ -647,7 +671,6 @@ exports[`usePermission should match snapshot 2`] = `
     "id": "action:db_service_create_audit_plan",
     "projectArchived": false,
     "projectManager": true,
-    "projectPermission": "manage_project_data_source",
     "role": [
       "admin",
       "systemAdministrator",
@@ -1303,8 +1326,16 @@ exports[`usePermission should match snapshot 2`] = `
     "type": "action",
   },
   "action:sql_management_conf_create_operator": {
+    "dbServicePermission": {
+      "opType": "save_audit_plan",
+    },
     "id": "action:sql_management_conf_create_operator",
     "projectArchived": false,
+    "projectManager": true,
+    "role": [
+      "admin",
+      "systemAdministrator",
+    ],
     "type": "action",
   },
   "action:sql_management_conf_delete_operator": {

packages/shared/lib/features/usePermission/permissionManifest.ts

@@ -235,9 +235,7 @@ export const PERMISSION_MANIFEST: Record<
     dbServicePermission: {
       fieldName: 'uid',
       opType: OpPermissionItemOpPermissionTypeEnum.save_audit_plan
-    },
-    projectPermission:
-      OpPermissionItemOpPermissionTypeEnum.manage_project_data_source
+    }
   },
   [PERMISSIONS.ACTIONS.BASE.DB_SERVICE.EDIT]: {
     id: PERMISSIONS.ACTIONS.BASE.DB_SERVICE.EDIT,
@@ -618,7 +616,12 @@ export const PERMISSION_MANIFEST: Record<
   [PERMISSIONS.ACTIONS.BASE.DATA_EXPORT.CREATE]: {
     id: PERMISSIONS.ACTIONS.BASE.DATA_EXPORT.CREATE,
     type: 'action',
-    projectArchived: false
+    projectArchived: false,
+    projectManager: true,
+    role: [SystemRole.admin, SystemRole.systemAdministrator],
+    dbServicePermission: {
+      opType: OpPermissionItemOpPermissionTypeEnum.create_export_task
+    }
   },
   [PERMISSIONS.ACTIONS.BASE.DATA_EXPORT.CLOSE]: {
     id: PERMISSIONS.ACTIONS.BASE.DATA_EXPORT.CLOSE,
@@ -645,7 +648,12 @@ export const PERMISSION_MANIFEST: Record<
   [PERMISSIONS.ACTIONS.SQLE.SQL_EXEC_WORKFLOW.CREATE]: {
     id: PERMISSIONS.ACTIONS.SQLE.SQL_EXEC_WORKFLOW.CREATE,
     type: 'action',
-    projectArchived: false
+    projectArchived: false,
+    projectManager: true,
+    role: [SystemRole.admin, SystemRole.systemAdministrator],
+    dbServicePermission: {
+      opType: OpPermissionItemOpPermissionTypeEnum.create_workflow
+    }
   },
   [PERMISSIONS.ACTIONS.SQLE.SQL_EXEC_WORKFLOW.EXPORT]: {
     id: PERMISSIONS.ACTIONS.SQLE.SQL_EXEC_WORKFLOW.EXPORT,
@@ -1161,7 +1169,12 @@ export const PERMISSION_MANIFEST: Record<
   [PERMISSIONS.ACTIONS.SQLE.SQL_MANAGEMENT_CONF.CREATE]: {
     id: PERMISSIONS.ACTIONS.SQLE.SQL_MANAGEMENT_CONF.CREATE,
     type: 'action',
-    projectArchived: false
+    projectArchived: false,
+    projectManager: true,
+    role: [SystemRole.admin, SystemRole.systemAdministrator],
+    dbServicePermission: {
+      opType: OpPermissionItemOpPermissionTypeEnum.save_audit_plan
+    }
   },
   [PERMISSIONS.ACTIONS.SQLE.SQL_MANAGEMENT_CONF.EDIT]: {
     id: PERMISSIONS.ACTIONS.SQLE.SQL_MANAGEMENT_CONF.EDIT,
@@ -1262,7 +1275,12 @@ export const PERMISSION_MANIFEST: Record<
   [PERMISSIONS.ACTIONS.SQLE.SQL_AUDIT.CREATE]: {
     id: PERMISSIONS.ACTIONS.SQLE.SQL_AUDIT.CREATE,
     type: 'action',
-    projectArchived: false
+    projectArchived: false,
+    projectManager: true,
+    role: [SystemRole.admin, SystemRole.systemAdministrator],
+    dbServicePermission: {
+      opType: OpPermissionItemOpPermissionTypeEnum.create_workflow
+    }
   },
 
   // 流水线配置

packages/sqle/src/page/SqlAudit/__snapshots__/index.test.tsx.snap

@@ -13,39 +13,7 @@ exports[`sqle/SqlAudit should match snap shot 1`] = `
       </div>
       <div
         class="extra"
-      >
-        <a
-          href="/sqle/project//sql-audit/create"
-        >
-          <button
-            class="ant-btn ant-btn-primary basic-button-wrapper css-geipcv"
-            type="button"
-          >
-            <span
-              class="ant-btn-icon"
-            >
-              <svg
-                color="currentColor"
-                fill="none"
-                height="10"
-                viewBox="0 0 10 10"
-                width="10"
-                xmlns="http://www.w3.org/2000/svg"
-              >
-                <path
-                  d="m5.02.5-.012 9M.5 5h9"
-                  stroke="currentColor"
-                  stroke-linejoin="round"
-                  stroke-width="1.5"
-                />
-              </svg>
-            </span>
-            <span>
-              创建审核
-            </span>
-          </button>
-        </a>
-      </div>
+      />
     </div>
     <div
       class="margin-top-60"