From 7aa3989b1171a4b555191c603ef395c485dc102f Mon Sep 17 00:00:00 2001 From: kuaifan Date: Thu, 14 Apr 2022 07:05:04 +0800 Subject: [PATCH] =?UTF-8?q?perf:=20=E8=B0=83=E6=95=B4=E6=93=8D=E4=BD=9C?= =?UTF-8?q?=E8=87=AA=E5=B7=B1=E7=9A=84=E8=A7=84=E5=88=99?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- app/Http/Controllers/Api/UsersController.php | 11 ++++++++++- 1 file changed, 10 insertions(+), 1 deletion(-) diff --git a/app/Http/Controllers/Api/UsersController.php b/app/Http/Controllers/Api/UsersController.php index 61830c8da..86c12e770 100755 --- a/app/Http/Controllers/Api/UsersController.php +++ b/app/Http/Controllers/Api/UsersController.php @@ -530,7 +530,7 @@ class UsersController extends AbstractController */ public function operation() { - User::auth('admin'); + $user = User::auth('admin'); // $data = Request::all(); $userid = intval($data['userid']); @@ -555,6 +555,9 @@ class UsersController extends AbstractController break; case 'setdisable': + if ($userInfo->userid === $user->userid) { + return Base::retError('不能操作自己离职'); + } $upArray['identity'] = array_diff($userInfo->identity, ['disable']); $upArray['identity'][] = 'disable'; $upArray['disable_at'] = Carbon::parse($data['disable_time']); @@ -563,6 +566,9 @@ class UsersController extends AbstractController if (empty($transferUser)) { return Base::retError('请选择正确的交接人'); } + if ($transferUser->userid === $userInfo->userid) { + return Base::retError('不能移交给自己'); + } if (in_array('disable', $transferUser->identity)) { return Base::retError('交接人已离职,请选择另一个交接人'); } @@ -574,6 +580,9 @@ class UsersController extends AbstractController break; case 'delete': + if ($userInfo->userid === $user->userid) { + return Base::retError('不能删除自己'); + } $userInfo->deleteUser(); break; }