todo：用户交费按钮权限判断

src/dashoo.cn/backend/api/controllers/oilsupplier/suppliercert.go

@@ -1042,6 +1042,7 @@ func (this *OilSupplierCertController) IsAccess() {
 		svc.GetEntity(&setting, where)
 		res = svc.UserInRoleById(this.User.Id, strconv.Itoa(setting.RoleId))
 	} else {
+		// TODO 单独检查交费用户的按钮权限 当前用户是否和创建人相同
 		//var users []suppliercert.UserList
 		//where := "OrganizeId=" + this.User.DepartmentId + " and AuditStepCode='" + auditstepcode + "'"
 		//rsvc.GetEntitysByWhere(OilAuditSettingName,where, &users)

src/dashoo.cn/backend/api/controllers/system/auditsetting.go

@@ -389,7 +389,7 @@ func (this *OilAuditSettingController) DeleteEntity() {
 // @router /isaccess [get]
 func (this *OilAuditSettingController) IsAccess() {
 	auditstepcode := this.GetString("auditstepcode")
-
+	// TODO 单独检查交费用户的按钮权限 当前用户是否和创建人相同
 	var users []userRole.Base_RoleList
 	var auditWorkflow auditsetting.Base_OilAuditSetting
 	rsvc := auditsetting.GetOilAuditSettingService(utils.DBE)