From a8119dd577d0b55c70e47b37bd8da8b5e44aa52c Mon Sep 17 00:00:00 2001
From: DXC <duxingchen@iris-rs.cn>
Date: Wed, 25 Mar 2026 10:21:28 +0800
Subject: [PATCH] fix(permission): force inject view-level permission checks
 for all unprotected root nodes

---
 inventory-web/src/views/operation/scrap/index.vue         | 2 +-
 inventory-web/src/views/outbound/index.vue                | 2 +-
 inventory-web/src/views/stock/adjustment/index.vue        | 2 +-
 inventory-web/src/views/stock/inbound/inbound_summary.vue | 2 +-
 inventory-web/src/views/transaction/records.vue           | 2 +-
 5 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/inventory-web/src/views/operation/scrap/index.vue b/inventory-web/src/views/operation/scrap/index.vue
index a1fdd57..8a1b4d5 100644
--- a/inventory-web/src/views/operation/scrap/index.vue
+++ b/inventory-web/src/views/operation/scrap/index.vue
@@ -1,5 +1,5 @@
 <template>
-  <div class="app-container">
+  <div v-if="userStore.hasPermission('scrap_list:view')" class="app-container">
     <div class="filter-container">
       <el-input v-model="sku" placeholder="SKU" style="width: 200px" @keyup.enter="fetchData" />
       <el-date-picker
diff --git a/inventory-web/src/views/outbound/index.vue b/inventory-web/src/views/outbound/index.vue
index 46bae5c..1756a85 100644
--- a/inventory-web/src/views/outbound/index.vue
+++ b/inventory-web/src/views/outbound/index.vue
@@ -1,5 +1,5 @@
 <template>
-  <div class="app-container">
+  <div v-if="userStore.hasPermission('outbound_list:view')" class="app-container">
     <div class="filter-container">
       <el-input
           v-model="listQuery.keyword"
diff --git a/inventory-web/src/views/stock/adjustment/index.vue b/inventory-web/src/views/stock/adjustment/index.vue
index d52d019..540ed96 100644
--- a/inventory-web/src/views/stock/adjustment/index.vue
+++ b/inventory-web/src/views/stock/adjustment/index.vue
@@ -1,5 +1,5 @@
 <template>
-  <div class="app-container">
+  <div v-if="userStore.hasPermission('stock_adjustment:view')" class="app-container">
     <!-- 筛选条件 -->
     <div class="filter-container">
       <el-input v-model="keyword" placeholder="搜索单号/SKU/物料名称" style="width: 220px" @keyup.enter="fetchData" clearable />
diff --git a/inventory-web/src/views/stock/inbound/inbound_summary.vue b/inventory-web/src/views/stock/inbound/inbound_summary.vue
index f5eaea7..e1a35e3 100644
--- a/inventory-web/src/views/stock/inbound/inbound_summary.vue
+++ b/inventory-web/src/views/stock/inbound/inbound_summary.vue
@@ -1,5 +1,5 @@
 <template>
-  <div class="app-container">
+  <div v-if="userStore.hasPermission('inbound_summary:view')" class="app-container">
     <div class="filter-container">
       <el-input
           v-model="listQuery.keyword"
diff --git a/inventory-web/src/views/transaction/records.vue b/inventory-web/src/views/transaction/records.vue
index 4ddf5ac..b424895 100644
--- a/inventory-web/src/views/transaction/records.vue
+++ b/inventory-web/src/views/transaction/records.vue
@@ -1,5 +1,5 @@
 <template>
-  <div class="app-container">
+  <div v-if="userStore.hasPermission('transaction_records:view')" class="app-container">
     <div class="filter-container">
       <el-radio-group v-model="status" @change="fetchData" style="margin-right: 20px">
         <el-radio-button label="all">全部</el-radio-button>