Skip to content

H
hello_uni-id-pages

DCloud / hello_uni-id-pages

通知 1040
Star 30
Fork 42
H
hello_uni-id-pages

前往新版Gitcode,体验更适合开发者的 AI 搜索 >>

提交 ce3348ac 编写于 作者: 雪洛's avatar 雪洛
浏览文件
操作

fix: permission error

上级 f6e4ba76
隐藏空白更改
内联 并排
Showing with 33 addition and 20 deletion
uni_modules/uni-id-pages/uniCloud/cloudfunctions/uni-id-co/config/permission.js
浏览文件 @ ce3348ac
......@@ -7,6 +7,9 @@ module.exports = {
// permission: [] // 允许进行此操作的权限,包含任一权限均可操作。
// 权限角色均配置时,用户拥有任一权限或任一角色均可操作
},
updateUser: {
role: ['admin']
},
authorizeAppLogin: {
role: ['admin']
},
......
uni_modules/uni-id-pages/uniCloud/cloudfunctions/uni-id-co/module/admin/add-user.js
浏览文件 @ ce3348ac
......@@ -18,10 +18,10 @@ const PasswordUtils = require('../../lib/utils/password')
* @param {String} params.nickname 昵称
* @param {Array} params.authorizedApp 允许登录的AppID列表
* @param {Array} params.role 用户角色列表
* @param {String} params.mobile 手机号
* @param {String} params.email 邮箱
* @param {Array} params.tags 用户标签
* @param {Number} params.status 用户状态
* @param {String} params.mobile 手机号
* @param {String} params.email 邮箱
* @param {Array} params.tags 用户标签
* @param {Number} params.status 用户状态
* @returns
*/
module.exports = async function (params = {}) {
......@@ -71,7 +71,9 @@ module.exports = async function (params = {}) {
} = params
const userMatched = await findUser({
userQuery: {
username
username,
mobile,
email
},
authorizedApp
})
......@@ -89,8 +91,7 @@ module.exports = async function (params = {}) {
} = passwordUtils.generatePasswordHash({
password
})
await userCollection.add({
const data = {
username,
password: passwordHash,
password_secret_version: version,
......@@ -101,9 +102,17 @@ module.exports = async function (params = {}) {
email,
tags: tags || [],
status
})
}
if (email) {
data.email_confirmed = 1
}
if (mobile) {
data.mobile_confirmed = 1
}
await userCollection.add(data)
return {
errCode: 0
errCode: 0,
errMsg: ''
}
}
uni_modules/uni-id-pages/uniCloud/cloudfunctions/uni-id-co/module/admin/update-user.js
浏览文件 @ ce3348ac
......@@ -13,20 +13,21 @@ const PasswordUtils = require('../../lib/utils/password')
* 修改用户
* @tutorial https://uniapp.dcloud.net.cn/uniCloud/uni-id-pages.html#update-user
* @param {Object} params
* @param {String} params.id 要更新的用户id
* @param {String} params.uid 要更新的用户id
* @param {String} params.username 用户名
* @param {String} params.password 密码
* @param {String} params.nickname 昵称
* @param {Array} params.authorizedApp 允许登录的AppID列表
* @param {Array} params.role 用户角色列表
* @param {String} params.mobile 手机号
* @param {String} params.email 邮箱
* @param {Array} params.tags 用户标签
* @param {Number} params.status 用户状态
* @param {String} params.mobile 手机号
* @param {String} params.email 邮箱
* @param {Array} params.tags 用户标签
* @param {Number} params.status 用户状态
* @returns
*/
module.exports = async function (params = {}) {
const schema = {
uid: 'string',
username: 'username',
password: {
required: false,
......@@ -65,7 +66,7 @@ module.exports = async function (params = {}) {
this.middleware.validate(params, schema)
const {
id,
uid,
username,
password,
authorizedApp,
......@@ -78,7 +79,7 @@ module.exports = async function (params = {}) {
} = params
// 更新的用户数据字段
const collection = {
const data = {
username,
dcloud_appid: authorizedApp || [],
nickname,
......@@ -97,7 +98,7 @@ module.exports = async function (params = {}) {
},
authorizedApp
})
if (userMatched.filter(user => user._id !== id).length) {
if (userMatched.filter(user => user._id !== uid).length) {
throw {
errCode: ERROR.ACCOUNT_EXISTS
}
......@@ -115,11 +116,11 @@ module.exports = async function (params = {}) {
password
})
collection.passwordHash = passwordHash
collection.password = password
data.password = passwordHash
data.password_secret_version = version
}
await userCollection.where({_id: id}).update(collection)
await userCollection.doc(uid).update(data)
return {
errCode: 0
......
Markdown is supported
0% .
You are about to add 0 people to the discussion. Proceed with caution.
先完成此消息的编辑!
想要评论请 注册