fix: password check (#4497)

* fix: password check * add doc * fix: password check
2025-04-10 11:49:35 +08:00
parent 199f454b6b
commit ec3bcfa124
8 changed files with 144 additions and 14 deletions
--- a/projects/app/src/pages/api/admin/initv495.ts
+++ b/projects/app/src/pages/api/admin/initv495.ts
@@ -0,0 +1,48 @@
+import { NextAPI } from '@/service/middleware/entry';
+import { authCert } from '@fastgpt/service/support/permission/auth/common';
+import { NextApiRequest, NextApiResponse } from 'next';
+import { MongoResourcePermission } from '@fastgpt/service/support/permission/schema';
+import { TeamPermission } from '@fastgpt/global/support/permission/user/controller';
+import {
+  TeamApikeyCreatePermissionVal,
+  TeamAppCreatePermissionVal,
+  TeamDatasetCreatePermissionVal
+} from '@fastgpt/global/support/permission/user/constant';
+import { retryFn } from '@fastgpt/global/common/system/utils';
+
+async function handler(req: NextApiRequest, _res: NextApiResponse) {
+  await authCert({ req, authRoot: true });
+  // 更新团队权限：
+  // 目前所有有 TeamWritePermission 的，都需要添加三个新的权限。
+
+  const rps = await MongoResourcePermission.find({
+    resourceType: 'team',
+    teamId: { $exists: true },
+    resourceId: null
+  });
+
+  for await (const rp of rps) {
+    const per = new TeamPermission({ per: rp.permission });
+    console.log(per.hasWritePer, per.value);
+    if (per.hasWritePer) {
+      const newPer = per.addPer(
+        TeamAppCreatePermissionVal,
+        TeamDatasetCreatePermissionVal,
+        TeamApikeyCreatePermissionVal
+      );
+      rp.permission = newPer.value;
+
+      try {
+        await retryFn(async () => {
+          await rp.save();
+        });
+      } catch (error) {
+        console.log('更新权限异常', error);
+      }
+    }
+  }
+
+  return { success: true };
+}
+
+export default NextAPI(handler);