qingyaokeji
/
workHour


			
				
					
						
						
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255
							<?php

namespace App\Model;

use Illuminate\Database\Eloquent\Model;

class DataScopeBaseModel extends Model
{
    //人员id字段 创建人
    const employee_column = '';
    //有权限的人的表
    const table_column = '';
    //有权限的人的表关联id
    const table_id_column = '';
    //明细表
    const detail_table_column = '';

    public function __construct(array $attributes = [])
    {
        parent::__construct($attributes);
    }

    //根据公司过滤
    public function scopeTopClear($query, $user, $search)
    {
        $top_depart_id = "top_depart_id";

        // 获取当前查询的表名或别名（这样无论你起什么别名 i 还是 item_details 都能自适应）
        $table = $query->getQuery()->from;

        // 如果 $table 里包含 " as "，说明有别名，截取别名部分
        if (strpos($table, ' as ') !== false) {
            $segments = explode(' as ', $table);
            $table = trim(end($segments));

            $top_depart_id = $table . '.top_depart_id';
        }

        $query->where($top_depart_id, $user['top_depart_id']);

        return $query;

        $query->where('top_depart_id', $user['top_depart_id']);

        return $query;
    }

    //数据权限中  人员 部门 所有 （在公司的基础上）
    public function scopeClear1($query, $user, $search)
    {
        //权限范围内的部门
        $depart_range = $user['depart_id'] ?? [];
        //个人 部门 所有
        $auth_type = $this->getQx($search,$user);
        // 获取模型的实例
        $model = $query->getModel();
        // 获取模型类名
        $className = get_class($model);
        // 人员字段
        $column = defined($className . '::employee_column') ? constant($className . '::employee_column') : '';

        $this->makeModel($query, $auth_type, $user, $depart_range,$column);
    }

    private function makeModel1(&$query, $auth_type, $user, $depart_range, $column){
        $query->where('top_depart_id', $user['top_depart_id']);

        if(empty($column)) return;

        if($auth_type == Employee::AUTH_ONE){
            //我创建的
            $query->where($column,$user['id']);
        }elseif ($auth_type == Employee::AUTH_TWO){
            if (empty($depart_range)) {
                $query->whereRaw('1 = 0');
            } else {
                $query->whereExists(function ($q) use ($column, $depart_range) {
                    $q->from('employee_depart_permission')
                        ->whereColumn('employee_depart_permission.employee_id', $column)
                        ->whereIn('employee_depart_permission.depart_id', $depart_range);
                });
            }
        }elseif ($auth_type == Employee::AUTH_THREE){
            //所有
        }
    }

    public function scopeClear($query, $user, $search)
    {
        // 权限范围内的部门
        $depart_range = $user['depart_id'] ?? [];
        // 个人 部门 所有
        $auth_type = $this->getQx($search, $user);
        // 获取模型的实例
        $model = $query->getModel();
        // 获取模型类名
        $className = get_class($model);

        // 🆕 核心修复 1：动态获取当前主表的表名，用来给字段加前缀防止别名冲突
        $tableName = $model->getTable();

        // 人员字段
        $column = defined($className . '::employee_column') ? constant($className . '::employee_column') : '';

        // 🆕 核心修复 2：如果定义了人员字段，且没有带表前缀，自动加上主表前缀
        if (!empty($column) && strpos($column, '.') === false) {
            $column = $tableName . '.' . $column;
        }

        $this->makeModel($query, $auth_type, $user, $depart_range, $column, $tableName);
    }

    private function makeModel(&$query, $auth_type, $user, $depart_range, $column, $tableName) {
        // 🆕 核心修复 3：给 top_depart_id 加上主表名前缀，防止关联表也有该字段导致冲突
        $query->where($tableName . '.top_depart_id', $user['top_depart_id']);

        if (empty($column)) return;

        if ($auth_type == Employee::AUTH_ONE) {
            // 我创建的 (此时 $column 已经是 "table_name.field" 格式)
            $query->where($column, $user['id']);
        } elseif ($auth_type == Employee::AUTH_TWO) {
            if (empty($depart_range)) {
                $query->whereRaw('1 = 0');
            } else {
                $query->whereExists(function ($q) use ($column, $depart_range) {
                    $q->from('employee_depart_permission')
                        ->whereColumn('employee_depart_permission.employee_id', $column) // 这里的 $column 带有表前缀，whereColumn 完美识别
                        ->whereIn('employee_depart_permission.depart_id', $depart_range);
                });
            }
        } elseif ($auth_type == Employee::AUTH_THREE) {
            // 所有
        }
    }

    //根据公司过滤 加人员
    public function scopeTopAndEmployeeClear1($query, $user, $search)
    {
        $top_depart_id = "top_depart_id";

        $table = $query->getQuery()->from;
        $alias = $table; // 默认为原表名

        // 如果 $table 里包含 " as "，说明有别名，截取别名部分
        if (strpos($table, ' as ') !== false) {
            $segments = explode(' as ', $table);
            $table = trim(end($segments));

            $top_depart_id = $table . '.top_depart_id';
        }

        $query->where($top_depart_id, $user['top_depart_id']);

        // 获取模型的实例
        $model = $query->getModel();
        // 获取模型类名
        $className = get_class($model);
        $relationTable = defined($className . '::table_column') ? constant($className . '::table_column') : '';
        $relationTableId = defined($className . '::table_id_column') ? constant($className . '::table_id_column') : '';

        if($user['is_admin'] != Employee::IS_ADMIN_TWO){
            if (! empty($relationTable) && ! empty($relationTableId)) {
                $query->whereExists(function ($subQuery) use ($relationTable, $user, $alias, $relationTableId) {
                    $subQuery->from($relationTable)
                        ->whereColumn($relationTable . ".{$relationTableId}", $alias . '.id') // 关联主表的 ID
                        ->where($relationTable . '.data_id', $user['id'])         // 过滤当前操作人
                        ->where($relationTable . '.del_time', 0)                 // 排除已删除的关联记录
                        ->where($relationTable . '.top_depart_id', $user['top_depart_id']);
                });
            }
        }

        return $query;
    }

    public function scopeTopAndEmployeeClear($query, $user, $search)
    {
        $top_depart_id = "top_depart_id";

        $table = $query->getQuery()->from;
        $alias = $table; // 默认为原表名

        // 如果 $table 里包含 " as "，说明有别名，截取别名部分
        if (strpos($table, ' as ') !== false) {
            $segments = explode(' as ', $table);
            $table = trim(end($segments));

            $top_depart_id = $table . '.top_depart_id';
        }

        $query->where($top_depart_id, $user['top_depart_id']);

        // 如果是超级管理员，直接返回，拥有最高权限
        if ($user['is_admin'] == Employee::IS_ADMIN_TWO) {
            return $query;
        }

        // 获取模型的实例与类名
        $model = $query->getModel();
        $className = get_class($model);

        // 1. 负责人表配置
        $relationTable = defined($className . '::table_column') ? constant($className . '::table_column') : '';
        $relationTableId = defined($className . '::table_id_column') ? constant($className . '::table_id_column') : '';

        // 2. 新增：成员表配置
        $detailTable = defined($className . '::detail_table_column') ? constant($className . '::detail_table_column') : '';

        // 使用一个闭包将“负责人”或“成员”的权限求并集（OR 关系）
        $query->where(function ($groupQuery) use ($relationTable, $relationTableId, $detailTable, $user, $alias) {

            // 逻辑 A：负责人层级判定（原逻辑：项目/节点/任务负责人及上级负责人穿透）
            $groupQuery->whereExists(function ($subQuery) use ($relationTable, $relationTableId, $user, $alias) {
                $subQuery->from($relationTable)
                    ->whereColumn($relationTable . ".{$relationTableId}", $alias . '.id')
                    ->where($relationTable . '.data_id', $user['id'])
                    ->where($relationTable . '.del_time', 0)
                    ->where($relationTable . '.top_depart_id', $user['top_depart_id']);
            });

            // 逻辑 B：成员判定（新逻辑：仅当前层级成员可见，无向下穿透性）
            // 直接用 orWhereExists，只要定义了成员表就必然生效
            if (!empty($detailTable)) {
                $groupQuery->orWhereExists(function ($subQuery) use ($detailTable, $relationTableId, $user, $alias) {
                    $subQuery->from($detailTable)
                        ->whereColumn($detailTable . ".{$relationTableId}", $alias . '.id') // 同样关联主表 ID
                        ->where($detailTable . '.data_id', $user['id'])
                        ->where($detailTable . '.type', 1)  // 严格限制：只看“1人”，排除“2设备”
                        ->where($detailTable . '.del_time', 0)
                        ->where($detailTable . '.top_depart_id', $user['top_depart_id']);
                });
            }
        });

        return $query;
    }

    public function getQx($data, $user){
        if(empty($data['menu_id'])) return Employee::AUTH_ONE; // 我的
        if($user['is_admin'] == Employee::IS_ADMIN_TWO) return Employee::AUTH_THREE; // 全部
        if(! empty($user['menu_permissions'][$data['menu_id']])) {
            //指定菜单 显示对应权限
            return $user['menu_permissions'][$data['menu_id']];
        }else{
            return Employee::AUTH_ONE; // 我的
        }
    }

    function hasMethod($class, $methodName)
    {
        $reflection = new \ReflectionClass($class);
        return $reflection->hasMethod($methodName);
    }
}