去除控制台相关接口的权限控制

doc/010.20200617v1.3.5/qc_initv1.3.5.sql

@@ -0,0 +1,11 @@
+use `qc`;
+
+UPDATE `sys_permission` SET is_deleted = 'Y' WHERE permissionUrl LIKE '/console%' AND is_deleted='N';
+
+UPDATE sys_menu_permission SET is_deleted='Y'
+where permission_id in(
+select id from  `sys_permission`  WHERE permissionUrl LIKE '/console%') AND is_deleted='N';
+
+UPDATE sys_role_permission SET is_deleted='Y'
+where permission_id in(
+select id from  `sys_permission`  WHERE permissionUrl LIKE '/console%') AND is_deleted='N';

src/main/java/com/diagbot/config/ResourceServerConfigurer.java

@@ -59,19 +59,54 @@ public class ResourceServerConfigurer extends ResourceServerConfigurerAdapter {
                 .antMatchers("/bas/dept/getListUser").permitAll()
                 .antMatchers("/qc/behospitalInfo/page_dept").permitAll()
                 .antMatchers("/qc/behospitalInfo/page_person").permitAll()
-                .antMatchers("/consoleByDept/getDept").permitAll()
                 .antMatchers("/qc/casesEntryHospital/findQcCasesEntry").permitAll()
                 .antMatchers("/qc/behospitalInfo/exportExcel").permitAll()
                 .antMatchers("/qc/behospitalInfo/exportQcresult").permitAll()
                 .antMatchers("/qc/behospitalInfo/exportQcresultByDept").permitAll()
-                .antMatchers("/console/entryRejectPercent").permitAll()
                 .antMatchers("/qc/abnormal/getQcAnnormalMode").permitAll()
-                .antMatchers("/console/qcResultLevelPercent").permitAll()
                 .antMatchers("/qc/dataimport/import").permitAll()
                 .antMatchers("/qc/dataimport/dataimportPrepare").permitAll()
-                .antMatchers("/qc/dataimport/test").permitAll()
+                .antMatchers("/console/averageStatistics").permitAll()
+                .antMatchers("/console/entryByDept").permitAll()
+                .antMatchers("/console/entryCountGroupByCase").permitAll()
+                .antMatchers("/console/entryCountGroupByCasePage").permitAll()
+                .antMatchers("/console/entryCountGroupByEntry").permitAll()
+                .antMatchers("/console/entryCountGroupByEntryPage").permitAll()
+                .antMatchers("/console/entryGroupByEntryInnerPage").permitAll()
+                .antMatchers("/console/getAverageDayNum").permitAll()
+                .antMatchers("/console/getAverageDayNumPage").permitAll()
+                .antMatchers("/console/getAverageFee").permitAll()
+                .antMatchers("/console/getAverageFeePage").permitAll()
+                .antMatchers("/console/getAverageScore").permitAll()
+                .antMatchers("/console/getAverageScoreByDeptClass").permitAll()
+                .antMatchers("/console/getAverageScoreByDeptPage").permitAll()
+                .antMatchers("/console/getLevelResultDept").permitAll()
+                .antMatchers("/console/homePageLevelLimit").permitAll()
+                .antMatchers("/console/homePageLevelStatistics").permitAll()
+                .antMatchers("/console/leaveHosCount").permitAll()
+                .antMatchers("/console/levelPercentGroupByDeptPage").permitAll()
+                .antMatchers("/console/levelStatistics").permitAll()
+                .antMatchers("/console/levelStatisticsByDeptClass").permitAll()
+                .antMatchers("/console/mrCount").permitAll()
+                .antMatchers("/console/mrStatistics").permitAll()
+                .antMatchers("/console/qcResultShortPage").permitAll()
+                .antMatchers("/console/resultStatistics").permitAll()
+                .antMatchers("/console/resultStatisticsByDeptPage").permitAll()
+                .antMatchers("/consoleByDept/entryCountGroupByCaseAndDept").permitAll()
+                .antMatchers("/consoleByDept/entryCountGroupByCaseAndDeptPage").permitAll()
+                .antMatchers("/consoleByDept/entryCountGroupByEntryAndDept").permitAll()
+                .antMatchers("/consoleByDept/entryCountGroupByEntryAndDeptPage").permitAll()
+                .antMatchers("/consoleByDept/entryGroupByEntryAndDeptInnerPage").permitAll()
+                .antMatchers("/consoleByDept/getDept").permitAll()
+                .antMatchers("/consoleByDept/homePageLevelByDeptLimit").permitAll()
+                .antMatchers("/consoleByDept/homePageLevelStatisticsByDept").permitAll()
+                .antMatchers("/consoleByDept/leaveHosCountByDept").permitAll()
+                .antMatchers("/consoleByDept/levelStatisticsByDept").permitAll()
+                .antMatchers("/consoleByDept/mrCountByDept").permitAll()
+                .antMatchers("/consoleByDept/qcResultShortByDeptPage").permitAll()
+                .antMatchers("/consoleByDept/resultStatisticsByDeptAndDoctorPage").permitAll()
                 .antMatchers("/**").authenticated();
-//                .antMatchers("/**").permitAll();
+        //                .antMatchers("/**").permitAll();
     }
 
 
@@ -101,4 +136,4 @@ public class ResourceServerConfigurer extends ResourceServerConfigurerAdapter {
         log.info("Created jwtTokenEnhancerClient success");
         return converter;
     }
-}
+}

src/main/java/com/diagbot/config/security/UrlAccessDecisionManager.java

@@ -102,17 +102,53 @@ public class UrlAccessDecisionManager implements AccessDecisionManager {
                 || matchers("/bas/dept/getListUser", request)
                 || matchers("/qc/behospitalInfo/page_dept", request)
                 || matchers("/qc/behospitalInfo/page_person", request)
-                || matchers("/consoleByDept/getDept", request)
                 || matchers("/qc/casesEntryHospital/findQcCasesEntry", request)
                 || matchers("/qc/behospitalInfo/exportExcel", request)
                 || matchers("/qc/behospitalInfo/exportQcresult", request)
                 || matchers("/qc/behospitalInfo/exportQcresultByDept", request)
-                || matchers("/console/entryRejectPercent", request)
                 || matchers("/qc/abnormal/getQcAnnormalMode", request)
-                || matchers("/console/qcResultLevelPercent", request)
                 || matchers("/qc/dataimport/import", request)
                 || matchers("/qc/dataimport/dataimportPrepare", request)
                 || matchers("/qc/dataimport/test", request)
+                || matchers("/console/averageStatistics", request)
+                || matchers("/console/entryByDept", request)
+                || matchers("/console/entryCountGroupByCase", request)
+                || matchers("/console/entryCountGroupByCasePage", request)
+                || matchers("/console/entryCountGroupByEntry", request)
+                || matchers("/console/entryCountGroupByEntryPage", request)
+                || matchers("/console/entryGroupByEntryInnerPage", request)
+                || matchers("/console/getAverageDayNum", request)
+                || matchers("/console/getAverageDayNumPage", request)
+                || matchers("/console/getAverageFee", request)
+                || matchers("/console/getAverageFeePage", request)
+                || matchers("/console/getAverageScore", request)
+                || matchers("/console/getAverageScoreByDeptClass", request)
+                || matchers("/console/getAverageScoreByDeptPage", request)
+                || matchers("/console/getLevelResultDept", request)
+                || matchers("/console/homePageLevelLimit", request)
+                || matchers("/console/homePageLevelStatistics", request)
+                || matchers("/console/leaveHosCount", request)
+                || matchers("/console/levelPercentGroupByDeptPage", request)
+                || matchers("/console/levelStatistics", request)
+                || matchers("/console/levelStatisticsByDeptClass", request)
+                || matchers("/console/mrCount", request)
+                || matchers("/console/mrStatistics", request)
+                || matchers("/console/qcResultShortPage", request)
+                || matchers("/console/resultStatistics", request)
+                || matchers("/console/resultStatisticsByDeptPage", request)
+                || matchers("/consoleByDept/entryCountGroupByCaseAndDept", request)
+                || matchers("/consoleByDept/entryCountGroupByCaseAndDeptPage", request)
+                || matchers("/consoleByDept/entryCountGroupByEntryAndDept", request)
+                || matchers("/consoleByDept/entryCountGroupByEntryAndDeptPage", request)
+                || matchers("/consoleByDept/entryGroupByEntryAndDeptInnerPage", request)
+                || matchers("/consoleByDept/getDept", request)
+                || matchers("/consoleByDept/homePageLevelByDeptLimit", request)
+                || matchers("/consoleByDept/homePageLevelStatisticsByDept", request)
+                || matchers("/consoleByDept/leaveHosCountByDept", request)
+                || matchers("/consoleByDept/levelStatisticsByDept", request)
+                || matchers("/consoleByDept/mrCountByDept", request)
+                || matchers("/consoleByDept/qcResultShortByDeptPage", request)
+                || matchers("/consoleByDept/resultStatisticsByDeptAndDoctorPage", request)
                 || matchers("/", request)) {
             return true;
         }
@@ -126,4 +162,4 @@ public class UrlAccessDecisionManager implements AccessDecisionManager {
         }
         return false;
     }
-}
+}