fix(vue3): 添加配置authService的功能以支持严格权限判断 (#353)

Author: YufJi

packages/basic/src/init/auth/authService.ts

@@ -48,6 +48,7 @@ export interface IService {
       resourceType: string;
     }>,
   ) => void;
+  _getResourceMap?: () => Map<string, any>;
 }
 
 let _map;
@@ -299,6 +300,10 @@ const Service: IService = {
     return (_map && _map.has(authPath)) || false;
   },
 
+  _getResourceMap() {
+    return _map;
+  },
+
   _setCustomResources(list = []) {
     _map = new Map();
     list.forEach((resource) =>

packages/basic/src/init/auth/index.ts

@@ -1,38 +1,44 @@
-import authService from "./authService";
-import type { NASLUserInfo } from "./authService";
-import Global from "../../global";
-import Config from "../../config";
+import authService from './authService';
+import type { NASLUserInfo } from './authService';
+import Global from '../../global';
+import Config from '../../config';
 
 function initAuth(
   options: {
     allowList?: string[];
     router?: any;
     base?: string;
+    configureAuthService?: (service: typeof authService) => void;
   } = {},
 ) {
+  // 留一个配置，可以改写authService的实现
+  if (typeof options.configureAuthService === 'function') {
+    options.configureAuthService(authService);
+  }
+
   authService.start();
   options.allowList = options.allowList || [];
   const router = options.router;
-  const base = (options.base || "").replace(/\/$/, "");
+  const base = (options.base || '').replace(/\/$/, '');
   /**
    * 是否有当前路由下的子权限
    * 该方法只能在 Global 中调用
    * @param {*} subPath 子权限路径，如 /createButton/enabled
    */
   authService.hasSub = function (subPath) {
     const currentPath = base + router.currentRoute.path;
-    if (subPath[0] !== "/") subPath = "/" + subPath;
+    if (subPath[0] !== '/') subPath = '/' + subPath;
     return this.has(currentPath + subPath);
   };
   authService.hasFullPath = function (path) {
-    if (path[0] !== "/") path = "/" + path;
+    if (path[0] !== '/') path = '/' + path;
     return this.has(base + path);
   };
 
   /**
    * 账号与权限中心
    */
-  Config.globalProperties.set("$auth", authService);
+  Config.globalProperties.set('$auth', authService);
 
   return {
     auth: authService,

packages/vue3/source/src/common/plugins/auth/index.js

@@ -2,7 +2,45 @@ import { initAuth, authService } from '@lcap/basic-template';
 
 export default {
   install(vm, options = {}) {
-    initAuth(options);
+    initAuth({
+      ...options,
+      configureAuthService(service) {
+        /**
+         * 严格的权限判断，父级权限未配置时，子权限即使配置了也无效
+          * 例如：当只有 /dashboard/entity/list 配置了权限，而没有 /dashboard/entity 时，访问 /dashboard/entity/list 的权限会失效，并在控制台警告缺少 /dashboard/entity 权限
+        * 反之，当 /dashboard/entity 和 /dashboard/entity/list 都配置了权限时，访问 /dashboard/entity/list 的权限才会生效
+        */
+        service.has = function(authPath) {
+          const _map = service._getResourceMap();
+
+          if (!_map) {
+            console.warn('权限资源未获取到，请检查权限资源接口');
+            return false;
+          }
+
+          let hasPermission = true;
+
+          const authPathSegments = authPath.split('/').filter(Boolean);
+          const parentAuthPaths = authPathSegments.reduce((acc, segment) => {
+            const lastPath = acc.length > 0 ? acc[acc.length - 1] : '';
+            const newPath = `${lastPath}/${segment}`;
+            acc.push(newPath);
+            return acc;
+          }, []);
+
+          while (parentAuthPaths.length > 0) {
+            const path = parentAuthPaths.shift();
+            if (!_map.has(path)) {
+              hasPermission = false;
+              console.warn(`权限资源：缺少权限 ${path}，请确认是否已配置该权限项`);
+              break;
+            }
+          }
+
+          return hasPermission;
+        }
+      }
+    });
 
     const base = (options.base || '').replace(/\/$/, '');
     /**