11 月之前 · 36932f0d05
--- a/app/controller/advance_controller.js
+++ b/app/controller/advance_controller.js
@@ -125,7 +125,7 @@ module.exports = app => {
 
				         async _checkCanEntry(ctx) {
			
 
				             ctx.advance.filePermission = false;
			
 
				             if (ctx.advance.status === auditConst.status.uncheck) {
			
 
				-                if (ctx.session.sessionUser.accountId !== ctx.advance.uid && !ctx.tender.isTourist) {
			
 
				+                if (ctx.session.sessionUser.accountId !== ctx.advance.uid && !ctx.tender.isTourist && !ctx.session.sessionUser.is_admin) {
			
 
				                     throw '无权访问';
			
 
				                 } else if (ctx.session.sessionUser.accountId === ctx.advance.uid || ctx.tender.touristPermission.file) {
			
 
				                     ctx.advance.filePermission = true;
			
@@ -133,7 +133,7 @@ module.exports = app => {
 
				             } else {
			
 
				                 const auditors = await ctx.service.advanceAudit.getAuditorsWithOwner(ctx.advance.id, ctx.advance.times);
			
 
				                 const cur_uid = ctx.session.sessionUser.accountId;
			
 
				-                if (auditors.findIndex(item => item.audit_id === cur_uid) === -1 && !ctx.tender.isTourist) {
			
 
				+                if (auditors.findIndex(item => item.audit_id === cur_uid) === -1 && !ctx.tender.isTourist && !ctx.session.sessionUser.is_admin) {
			
 
				                     throw '无权访问';
			
 
				                 } else if (auditors.findIndex(item => item.audit_id === cur_uid) !== -1 || ctx.session.sessionUser.accountId === ctx.advance.uid || ctx.tender.touristPermission.file) {
			
 
				                     ctx.advance.filePermission = true;
			
--- a/app/service/advance.js
+++ b/app/service/advance.js
@@ -27,7 +27,7 @@ module.exports = app => {
 
				                 value: type,
			
 
				                 operate: '=',
			
 
				             });
			
 
				-            if (this.ctx.session.sessionUser.accountId !== this.ctx.tender.data.user_id && !this.ctx.tender.isTourist) {
			
 
				+            if (this.ctx.session.sessionUser.accountId !== this.ctx.tender.data.user_id && !this.ctx.tender.isTourist && !this.ctx.session.sessionUser.is_admin) {
			
 
				                 this.sqlBuilder.setAndWhere('status', {
			
 
				                     value: auditConst.status.uncheck,
			
 
				                     operate: '!=',
			
--- a/app/service/material.js
+++ b/app/service/material.js
@@ -108,7 +108,7 @@ module.exports = app => {
 
				             });
			
 
				             if (materials.length !== 0) {
			
 
				                 const lastMaterial = materials[materials.length - 1];
			
 
				-                if (lastMaterial.status === auditConst.status.uncheck && lastMaterial.user_id !== this.ctx.session.sessionUser.accountId && !this.ctx.tender.isTourist) {
			
 
				+                if (lastMaterial.status === auditConst.status.uncheck && lastMaterial.user_id !== this.ctx.session.sessionUser.accountId && !this.ctx.tender.isTourist && !this.ctx.session.sessionUser.is_admin) {
			
 
				                     materials.splice(materials.length - 1, 1);
			
 
				                 }
			
 
				             }