refactor: 组态内容和节点的管理不需要权限验证

云中非
1 parent 6a67f776
Showing 2 changed files with 0 additions and 10 deletions
application/src/main/java/org/thingsboard/server/controller/yunteng/YtConfigurationContentController.java
application/src/main/java/org/thingsboard/server/controller/yunteng/YtConfigurationNodeController.java
--- a/application/src/main/java/org/thingsboard/server/controller/yunteng/YtConfigurationContentController.java
View file @b8ebdb7
+++ b/application/src/main/java/org/thingsboard/server/controller/yunteng/YtConfigurationContentController.java
View file @b8ebdb7
@@ -27,7 +27,6 @@ public class YtConfigurationContentController extends BaseController {
 
   @PostMapping
   @ApiOperation("新增")
-  @PreAuthorize("@check.checkPermissions({},{'api:yt:configuration:content:post'})")
   public ResponseEntity<ConfigurationContentDTO> save(
       @Validated({AddGroup.class}) @RequestBody ConfigurationContentDTO configurationContentDTO)
       throws ThingsboardException {
@@ -38,7 +37,6 @@ public class YtConfigurationContentController extends BaseController {
 
   @PutMapping
   @ApiOperation("修改")
-  @PreAuthorize("@check.checkPermissions({},{'api:yt:configuration:content:update'})")
   public ResponseEntity<ConfigurationContentInfoDTO> update(
       @Validated({UpdateGroup.class}) @RequestBody ConfigurationContentInfoDTO contentReqDTO)
       throws ThingsboardException {
@@ -53,7 +51,6 @@ public class YtConfigurationContentController extends BaseController {
 
   @DeleteMapping
   @ApiOperation("删除")
-  @PreAuthorize("@check.checkPermissions({},{'api:yt:configuration:content:delete'})")
   public ResponseEntity<Boolean> delete(
       @Validated({DeleteGroup.class}) @RequestBody DeleteDTO deleteDTO)
       throws ThingsboardException {
--- a/application/src/main/java/org/thingsboard/server/controller/yunteng/YtConfigurationNodeController.java
View file @b8ebdb7
+++ b/application/src/main/java/org/thingsboard/server/controller/yunteng/YtConfigurationNodeController.java
View file @b8ebdb7
@@ -35,7 +35,6 @@ public class YtConfigurationNodeController extends BaseController {
 
     @PostMapping
     @ApiOperation("保存节点数据源并刷新节点的交互和动效信息")
-    @PreAuthorize("@check.checkPermissions({},{'api:yt:configuration:node:post'})")
     public ResponseEntity<ConfigurationNodeStateDTO> saveNode(
             @Validated({AddGroup.class}) @RequestBody ConfigurationNodeStateDTO nodeDTO)
             throws ThingsboardException {
@@ -74,7 +73,6 @@ public class YtConfigurationNodeController extends BaseController {
 
     @PostMapping("datasource")
     @ApiOperation("编辑数据源")
-    @PreAuthorize("@check.checkPermissions({},{'api:yt:configuration:node:datasource:post'})")
     public ResponseEntity<ConfigurationDatasourceDTO> saveDatasource(
             @Validated({AddGroup.class}) @RequestBody ConfigurationDatasourceDTO datasourceDTO)
             throws ThingsboardException {
@@ -85,7 +83,6 @@ public class YtConfigurationNodeController extends BaseController {
 
     @PostMapping("event")
     @ApiOperation("编辑数据交互")
-    @PreAuthorize("@check.checkPermissions({},{'api:yt:configuration:node:event:post'})")
     public ResponseEntity<ConfigurationEventDTO> saveEvent(
             @Validated({AddGroup.class}) @RequestBody ConfigurationEventDTO eventDTO)
             throws ThingsboardException {
@@ -96,7 +93,6 @@ public class YtConfigurationNodeController extends BaseController {
 
     @PostMapping("act")
     @ApiOperation("编辑动画效果")
-    @PreAuthorize("@check.checkPermissions({},{'api:yt:configuration:node:act:post'})")
     public ResponseEntity<ConfigurationActDTO> saveAct(
             @Validated({AddGroup.class}) @RequestBody ConfigurationActDTO actDTO)
             throws ThingsboardException {
@@ -108,7 +104,6 @@ public class YtConfigurationNodeController extends BaseController {
 
     @DeleteMapping("datasource")
     @ApiOperation("删除数据源")
-    @PreAuthorize("@check.checkPermissions({},{'api:yt:configuration:node:datasource:delete'})")
     public ResponseEntity<Boolean> deleteDatasource(@RequestBody ConfigurationDatasourceDTO deleteDTO)
             throws ThingsboardException {
         deleteDTO.setTenantId(getCurrentUser().getCurrentTenantId());
@@ -117,7 +112,6 @@ public class YtConfigurationNodeController extends BaseController {
 
     @DeleteMapping("event")
     @ApiOperation("删除数据交互")
-    @PreAuthorize("@check.checkPermissions({},{'api:yt:configuration:node:event:delete'})")
     public ResponseEntity<Boolean> deleteEvent( @RequestBody ConfigurationEventDTO deleteDTO)
             throws ThingsboardException {
         deleteDTO.setTenantId(getCurrentUser().getCurrentTenantId());
@@ -125,7 +119,6 @@ public class YtConfigurationNodeController extends BaseController {
     }
     @DeleteMapping("act")
     @ApiOperation("删除动画效果")
-    @PreAuthorize("@check.checkPermissions({},{'api:yt:configuration:node:act:delete'})")
     public ResponseEntity<Boolean> deleteAct( @RequestBody ConfigurationActDTO deleteDTO)
             throws ThingsboardException {
         deleteDTO.setTenantId(getCurrentUser().getCurrentTenantId());