sub_project_check.js 1.7 KB

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950
  1. 'use strict';
  2. /**
  3. *
  4. *
  5. * @author Mai
  6. * @date
  7. * @version
  8. */
  9. module.exports = options => {
  10. /**
  11. * 标段校验 中间件
  12. * 1. 读取标段数据(包括属性)
  13. * 2. 检验用户是否可见标段(不校验具体权限)
  14. *
  15. * @param {function} next - 中间件继续执行的方法
  16. * @return {void}
  17. */
  18. return function* subProjectCheck(next) {
  19. try {
  20. // 读取标段数据
  21. const id = this.tender ? this.tender.data.spid : this.params.id || this.query.id;
  22. if (!id) throw '参数错误';
  23. this.subProject = yield this.service.subProject.getDataById(id);
  24. if (this.subProject.project_id !== this.session.sessionProject.id) throw '您无权查看该项目';
  25. if (!this.subProject) throw '项目不存在';
  26. if (this.session.sessionUser.is_admin) {
  27. this.subProject.readOnly = false;
  28. this.subProject.permission = this.service.subProjPermission.adminPermission;
  29. } else {
  30. const bp = yield this.service.subProjPermission.getSubProjectUserPermission(id, this.session.sessionUser.accountId);
  31. if (!bp) throw '您无权查看该项目';
  32. this.subProject.permission = bp;
  33. }
  34. yield next;
  35. } catch (err) {
  36. this.log(err);
  37. if (this.helper.isAjax(this.request)) {
  38. this.ajaxErrorBody(err, '未知错误');
  39. } else {
  40. this.postError(err, '未知错误');
  41. err === '该功能已关闭或无法查看' ? this.redirect('/dashboard') : this.redirect(this.request.headers.referer);
  42. }
  43. }
  44. };
  45. };