员工权限完善

2025-03-11 09:48:47 +08:00
parent 27635d7b0d
commit b6229f24e4
6 changed files with 54 additions and 2 deletions
--- a/cash-api/order-server/src/main/java/com/czg/controller/VipPayController.java
+++ b/cash-api/order-server/src/main/java/com/czg/controller/VipPayController.java
@@ -1,5 +1,6 @@
 package com.czg.controller;

+import com.czg.annotation.SaStaffCheckPermission;
 import com.czg.resp.CzgResult;
 import com.czg.service.order.dto.VipPayParamDTO;
 import com.czg.service.order.dto.VipRefundDTO;
@@ -33,6 +34,7 @@ public class VipPayController {
     * 现金充值
     * 如果shop_info的 is_member_in_pwd=1 则pwd必填 店铺操作密码
     */
+    @SaStaffCheckPermission("yun_xu_shou_kuan")
    @PostMapping("/cashPayVip")
    public CzgResult<Object> cashPayVip(@Validated @RequestBody VipPayParamDTO payParam) {
        AssertUtil.isNull(payParam.getShopUserId(), "充值失败 未指定店铺用户Id");
@@ -67,6 +69,7 @@ public class VipPayController {
    /**
     * 正扫
     */
+    @SaStaffCheckPermission("yun_xu_shou_kuan")
    @PostMapping("/scanPayVip")
    public CzgResult<Map<String, Object>> scanPayVip(HttpServletRequest request, @Validated @RequestBody VipPayParamDTO payParam) {
        AssertUtil.isNull(payParam.getShopUserId(), "充值失败 未指定店铺用户Id");
@@ -78,6 +81,7 @@ public class VipPayController {
     * 反扫
     * authCode 必填 扫描码
     */
+    @SaStaffCheckPermission("yun_xu_shou_kuan")
    @PostMapping("/microPayVip")
    public CzgResult<Map<String, Object>> microPayVip(@Validated @RequestBody VipPayParamDTO payParam) {
        AssertUtil.isNull(payParam.getShopUserId(), "充值失败 未指定店铺用户Id");
@@ -89,6 +93,7 @@ public class VipPayController {
     * 退款前置
     * 最大退款金额 为 充值金额 inAmount
     */
+    @SaStaffCheckPermission("yun_xu_tui_kuan")
    @PostMapping("/refundVipBefore")
    public CzgResult<Map<String, BigDecimal>> refundVipBefore(@Validated @RequestBody VipRefundDTO payParam) {
        return payService.refundVipBefore(payParam);
@@ -103,6 +108,7 @@ public class VipPayController {
     * 实际可退最大金额为 充值金额
     * 如果实际 大于 理论 则 需要勾选 outOfRange 超额退款 为true 默认为false
     */
+    @SaStaffCheckPermission("yun_xu_tui_kuan")
    @PostMapping("/refundVip")
    public CzgResult<Object> refundVip(HttpServletRequest request, @Validated @RequestBody VipRefundDTO payParam) {
        AssertUtil.isNull(payParam.getRefAmount(), "退款金额不能为空");
--- a/cash-api/order-server/src/main/java/com/czg/controller/admin/AdminOrderController.java
+++ b/cash-api/order-server/src/main/java/com/czg/controller/admin/AdminOrderController.java
@@ -1,5 +1,6 @@
 package com.czg.controller.admin;

+import com.czg.annotation.SaStaffCheckPermission;
 import com.czg.order.dto.OrderInfoAddDTO;
 import com.czg.order.dto.OrderInfoPrintDTO;
 import com.czg.order.dto.OrderInfoQueryDTO;
@@ -62,6 +63,7 @@ public class AdminOrderController {
        return CzgResult.success(orderInfoService.historyOrder(orderId, tableCode));
    }

+    @SaStaffCheckPermission("yun_xu_xia_dan")
    @PostMapping("/createOrder")
    public CzgResult<OrderInfo> createOrder(@Validated @RequestBody OrderInfoAddDTO addDto) {
        addDto.setPlatformType(ServletUtil.getHeaderIgnoreCase(ServletUtil.getRequest(), "platformType"));
@@ -85,6 +87,7 @@ public class AdminOrderController {
     * 订单全额退款 只传订单id
     * 部分退款 传参refundDetail
     */
+    @SaStaffCheckPermission("yun_xu_tui_kuan")
    @PostMapping("/refundOrder")
    public CzgResult<Object> refundOrder(@Validated @RequestBody OrderInfoRefundDTO refundDTO) {
        return payService.refundOrderBefore(refundDTO);