新增用户页面更新以及调整

2026-02-04 15:16:14 +08:00
parent c1e08062f2
commit ea17413bc1
5 changed files with 281 additions and 72 deletions
--- a/inventory-backend/app/services/auth_service.py
+++ b/inventory-backend/app/services/auth_service.py
@ -1,8 +1,7 @@
 # app/services/auth_service.py
 from app.models.system import SysUser
 from app.extensions import db
-from flask_jwt_extended import create_access_token, get_jwt_identity, get_jwt
-from werkzeug.security import check_password_hash
+from flask_jwt_extended import create_access_token
 from app.utils.constants import UserRole


@ -46,8 +45,7 @@ class AuthService:
            user_id = user.id
            user_info = user.to_dict()

-        # 3. 生成 Token，将角色写入 claims (关键步骤：用于后期权限控制)
-        # identity 存 ID，additional_claims 存角色
+        # 3. 生成 Token
        access_token = create_access_token(
            identity=user_id,
            additional_claims={'role': user_role, 'username': username}
@ -62,8 +60,6 @@ class AuthService:
    def create_user(data, operator_role):
        """
        创建新用户 (仅限管理员使用)
-        :param data: 新用户数据
-        :param operator_role: 当前操作人的角色 (从 Token 获取)
        """
        # 简单权限控制：只有超级管理员或主管可以创建用户
        if operator_role not in [UserRole.SUPER_ADMIN, UserRole.SUPERVISOR]:
@ -75,14 +71,18 @@ class AuthService:

        # 默认角色处理
        role = data.get('role')
-        # 验证角色是否合法
        valid_roles = [v for k, v in UserRole.__dict__.items() if not k.startswith('__')]
        if role not in valid_roles:
            raise Exception(f"角色无效，可选角色: {valid_roles}")

+        # 处理 Email 为空的情况，避免违反 Unique 约束 (视数据库设置而定，这里简单处理为空串)
+        email = data.get('email', '')
+        if email and SysUser.query.filter_by(email=email).first():
+            raise Exception("邮箱已被使用")
+
        new_user = SysUser(
            username=data.get('username'),
-            email=data.get('email', ''),  # 允许为空
+            email=email,
            department=data.get('department', ''),
            role=role,
            status='active'
@ -92,4 +92,24 @@ class AuthService:
        db.session.add(new_user)
        db.session.commit()

-        return new_user.to_dict()
+        return new_user.to_dict()
+
+    @staticmethod
+    def get_all_users():
+        """获取所有系统用户"""
+        users = SysUser.query.order_by(SysUser.id.desc()).all()
+        return [user.to_dict() for user in users]
+
+    @staticmethod
+    def delete_user(user_id, operator_role):
+        """删除用户"""
+        if operator_role not in [UserRole.SUPER_ADMIN, UserRole.SUPERVISOR]:
+            raise Exception("权限不足")
+
+        user = SysUser.query.get(user_id)
+        if not user:
+            raise Exception("用户不存在")
+
+        db.session.delete(user)
+        db.session.commit()
+        return True