|
|
@@ -4,6 +4,7 @@ import (
|
|
|
|
|
|
"dashoo.cn/backend/api/business/oilcontract/contractEvaluationItems"
|
|
|
"dashoo.cn/backend/api/business/oilcontract/contract"
|
|
|
+ "dashoo.cn/business2/permission"
|
|
|
|
|
|
"dashoo.cn/backend/api/business/oilcontract/contractReview"
|
|
|
"dashoo.cn/backend/api/business/oilsupplier/suppliercert"
|
|
|
@@ -88,13 +89,16 @@ func (this *OilContractReviewController) GetEntityList() {
|
|
|
}
|
|
|
}
|
|
|
|
|
|
- // 权限过滤 自己创建的评价 ,同二级部门创建的评价 ,企管法规处能看
|
|
|
- where = where + " and ( r.CreateUserId = '" + this.User.Id + "' "
|
|
|
- where = where + " or r.UnitId = '" + strconv.Itoa(this.User.UnitId) + "' "
|
|
|
|
|
|
- // 还少个企管法规处
|
|
|
-
|
|
|
- where = where + " )"
|
|
|
+ //超级管理员和有查看所有数据权限的用户不加条件
|
|
|
+ svcPerm := permission.GetPermissionService(utils.DBE)
|
|
|
+ isauth := svcPerm.IsAuthorized(this.User.Id, "oil_contract.Review.AllRecord")
|
|
|
+ if(!isauth){
|
|
|
+ // 权限过滤 自己创建的评价 ,同二级部门创建的评价 ,企管法规处能看
|
|
|
+ where = where + " and ( r.CreateUserId = '" + this.User.Id + "' "
|
|
|
+ where = where + " or r.UnitId = '" + strconv.Itoa(this.User.UnitId) + "' "
|
|
|
+ where = where + " )"
|
|
|
+ }
|
|
|
|
|
|
svc := contractReview.GetOilContractReviewService(utils.DBE)
|
|
|
var list []contractReview.OilContractReviewListVo
|
Yikoo