fix: 客户不允许配置报表，且导出报表列表不允许删除

xp.Huang
1 parent 6791561a
Showing 2 changed files with 5 additions and 5 deletions
application/src/main/java/org/thingsboard/server/controller/yunteng/TkReportFormConfigController.java
application/src/main/java/org/thingsboard/server/controller/yunteng/TkReportGenerateRecordController.java
--- a/application/src/main/java/org/thingsboard/server/controller/yunteng/TkReportFormConfigController.java
View file @9cb113c
+++ b/application/src/main/java/org/thingsboard/server/controller/yunteng/TkReportFormConfigController.java
View file @9cb113c
@@ -33,13 +33,13 @@ import static org.thingsboard.server.common.data.yunteng.constant.QueryConstant.
 @RequestMapping("api/yt/report_form/config")
 @Api(tags = "报表配置信息")
 @RequiredArgsConstructor
-@PreAuthorize("@check.checkPermissions({'TENANT_ADMIN','CUSTOMER_USER'},{})")
 public class TkReportFormConfigController extends BaseController {
 
   private final TkReportFormConfigService reportFormConfigService;
 
   @GetMapping(params = {PAGE_SIZE, PAGE})
   @ApiOperation("分页")
+  @PreAuthorize("@check.checkPermissions({'TENANT_ADMIN'},{})")
   public TkPageData<ReportFormConfigDTO> page(
       @RequestParam(PAGE_SIZE) int pageSize,
       @RequestParam(PAGE) int page,
@@ -77,7 +77,7 @@ public class TkReportFormConfigController extends BaseController {
 
   @PostMapping
   @ApiOperation("新增")
-  @PreAuthorize("@check.checkPermissions({'TENANT_ADMIN','CUSTOMER_USER'},{'api:yt:report_form:config:post'})")
+  @PreAuthorize("@check.checkPermissions({'TENANT_ADMIN'},{'api:yt:report_form:config:post'})")
   public ResponseResult<ReportFormConfigDTO> saveReportFromConfig(
       @Validated({AddGroup.class}) @RequestBody ReportFormConfigDTO configDTO)
       throws ThingsboardException, SchedulerException {
@@ -89,7 +89,7 @@ public class TkReportFormConfigController extends BaseController {
 
   @PutMapping
   @ApiOperation("编辑")
-  @PreAuthorize("@check.checkPermissions({'TENANT_ADMIN','CUSTOMER_USER'},{'api:yt:report_form:config:update'})")
+  @PreAuthorize("@check.checkPermissions({'TENANT_ADMIN'},{'api:yt:report_form:config:update'})")
   public ResponseResult<ReportFormConfigDTO> updateReportFromConfig(
       @Validated({UpdateGroup.class}) @RequestBody ReportFormConfigDTO configDTO)
       throws ThingsboardException, SchedulerException {
@@ -108,7 +108,7 @@ public class TkReportFormConfigController extends BaseController {
 
   @DeleteMapping
   @ApiOperation("删除")
-  @PreAuthorize("@check.checkPermissions({'TENANT_ADMIN','CUSTOMER_USER'},{'api:yt:report_form:config:delete'})")
+  @PreAuthorize("@check.checkPermissions({'TENANT_ADMIN'},{'api:yt:report_form:config:delete'})")
   public ResponseResult<Boolean> deleteReportFormConfig(
       @Validated({DeleteGroup.class}) @RequestBody DeleteDTO deleteDTO) throws SchedulerException {
     return reportFormConfigService.deleteReportFormConfig(deleteDTO)
--- a/application/src/main/java/org/thingsboard/server/controller/yunteng/TkReportGenerateRecordController.java
View file @9cb113c
+++ b/application/src/main/java/org/thingsboard/server/controller/yunteng/TkReportGenerateRecordController.java
View file @9cb113c
@@ -82,7 +82,7 @@ public class TkReportGenerateRecordController extends BaseController {
   @DeleteMapping
   @ApiOperation("删除")
   @PreAuthorize(
-      "@check.checkPermissions({'TENANT_ADMIN','CUSTOMER_USER'},{'api:yt:report:generate:record:delete'})")
+      "@check.checkPermissions({'TENANT_ADMIN'},{'api:yt:report:generate:record:delete'})")
   public ResponseResult<Boolean> deleteReportGenerateRecord(
       @Validated({DeleteGroup.class}) @RequestBody DeleteDTO deleteDTO) {
     return reportFormGenerateRecordService.deleteReportGenerateRecord(deleteDTO)