Domů Procházet Nápověda
Registrovat se Přihlásit se
xeeyh
/
schedule-management-system
1
0
Rozštěpit 0
Soubory Úkoly 0 Pull Requesty 0 Wiki
Strom: 4055af0d03
Větve Značky
schedule-man...
/
backend
/
app
/
routers
/
departments.py

departments.py 2.6 KB
Historie Surový

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465 
  1. from uuid import UUID
    2. 

  2. from fastapi import APIRouter, Depends, HTTPException
    3. 

  3. from sqlalchemy import select
    4. 

  4. from sqlalchemy.ext.asyncio import AsyncSession
    5. 

  5. from backend.app.core.dependencies import require_any_permissions, require_permissions
    6. 

  6. from backend.app.db.session import get_db
    7. 

  7. from backend.app.models import Department, User
    8. 

  8. from backend.app.schemas.department import DepartmentCreate, DepartmentResponse, DepartmentUpdate
    9. 

  9. 

  10. 

  11. router = APIRouter(prefix="/departments", tags=["departments"])
    12. 

  12. 

  13. 

  14. def is_limited_scope(user: User) -> bool:
    15. 

  15.     return user.role and user.role.name not in {"管理员", "排班员"}
    16. 

  16. 

  17. 

  18. @router.get("", response_model=list[DepartmentResponse])
    19. 

  19. async def list_departments(
    20. 

  20.     db: AsyncSession = Depends(get_db),
    21. 

  21.     current_user: User = Depends(require_any_permissions(["users.view", "schedule.view"])),
    22. 

  22. ):
    23. 

  23.     query = select(Department)
    24. 

  24.     if is_limited_scope(current_user):
    25. 

  25.         if current_user.dept_id:
    26. 

  26.             query = query.where(Department.id == current_user.dept_id)
    27. 

  27.         elif current_user.campus_id:
    28. 

  28.             query = query.where(Department.campus_id == current_user.campus_id)
    29. 

  29.         else:
    30. 

  30.             return []
    31. 

  31.     result = await db.execute(query.order_by(Department.name))
    32. 

  32.     return result.scalars().all()
    33. 

  33. 

  34. 

  35. @router.post("", response_model=DepartmentResponse, dependencies=[Depends(require_permissions(["users.edit"]))])
    36. 

  36. async def create_department(payload: DepartmentCreate, db: AsyncSession = Depends(get_db)):
    37. 

  37.     dept = Department(campus_id=payload.campus_id, name=payload.name)
    38. 

  38.     db.add(dept)
    39. 

  39.     await db.commit()
    40. 

  40.     await db.refresh(dept)
    41. 

  41.     return dept
    42. 

  42. 

  43. 

  44. @router.put("/{dept_id}", response_model=DepartmentResponse, dependencies=[Depends(require_permissions(["users.edit"]))])
    45. 

  45. async def update_department(dept_id: UUID, payload: DepartmentUpdate, db: AsyncSession = Depends(get_db)):
    46. 

  46.     result = await db.execute(select(Department).where(Department.id == dept_id))
    47. 

  47.     dept = result.scalar_one_or_none()
    48. 

  48.     if not dept:
    49. 

  49.         raise HTTPException(status_code=404, detail="科室不存在")
    50. 

  50.     dept.campus_id = payload.campus_id
    51. 

  51.     dept.name = payload.name
    52. 

  52.     await db.commit()
    53. 

  53.     await db.refresh(dept)
    54. 

  54.     return dept
    55. 

  55. 

  56. 

  57. @router.delete("/{dept_id}", dependencies=[Depends(require_permissions(["users.delete"]))])
    58. 

  58. async def delete_department(dept_id: UUID, db: AsyncSession = Depends(get_db)):
    59. 

  59.     result = await db.execute(select(Department).where(Department.id == dept_id))
    60. 

  60.     dept = result.scalar_one_or_none()
    61. 

  61.     if not dept:
    62. 

  62.         raise HTTPException(status_code=404, detail="科室不存在")
    63. 

  63.     await db.delete(dept)
    64. 

  64.     await db.commit()
    65. 

  65.     return {"success": True}
    66.