feat(admin): Add user management and upgrade to module permission system

Features - User Management (Phase 4.1): - Database: Add user_modules table for fine-grained module permissions - Database: Add 4 user permissions (view/create/edit/delete) to role_permissions - Backend: UserService (780 lines) - CRUD with tenant isolation - Backend: UserController + UserRoutes (648 lines) - 13 API endpoints - Backend: Batch import users from Excel - Frontend: UserListPage (412 lines) - list/filter/search/pagination - Frontend: UserFormPage (341 lines) - create/edit with module config - Frontend: UserDetailPage (393 lines) - details/tenant/module management - Frontend: 3 modal components (592 lines) - import/assign/configure - API: GET/POST/PUT/DELETE /api/admin/users/* endpoints Architecture Upgrade - Module Permission System: - Backend: Add getUserModules() method in auth.service - Backend: Login API returns modules array in user object - Frontend: AuthContext adds hasModule() method - Frontend: Navigation filters modules based on user.modules - Frontend: RouteGuard checks requiredModule instead of requiredVersion - Frontend: Remove deprecated version-based permission system - UX: Only show accessible modules in navigation (clean UI) - UX: Smart redirect after login (avoid 403 for regular users) Fixes: - Fix UTF-8 encoding corruption in ~100 docs files - Fix pageSize type conversion in userService (String to Number) - Fix authUser undefined error in TopNavigation - Fix login redirect logic with role-based access check - Update Git commit guidelines v1.2 with UTF-8 safety rules Database Changes: - CREATE TABLE user_modules (user_id, tenant_id, module_code, is_enabled) - ADD UNIQUE CONSTRAINT (user_id, tenant_id, module_code) - INSERT 4 permissions + role assignments - UPDATE PUBLIC tenant with 8 module subscriptions Technical: - Backend: 5 new files (~2400 lines) - Frontend: 10 new files (~2500 lines) - Docs: 1 development record + 2 status updates + 1 guideline update - Total: ~4900 lines of code Status: User management 100% complete, module permission system operational
2026-01-16 13:42:10 +08:00
parent 98d862dbd4
commit 66255368b7
560 changed files with 70424 additions and 52353 deletions
--- a/backend/prisma/manual-migrations/001_add_postgres_cache_and_checkpoint.sql
+++ b/backend/prisma/manual-migrations/001_add_postgres_cache_and_checkpoint.sql
@@ -108,6 +108,8 @@ ORDER BY ordinal_position;



+
+



--- a/backend/prisma/manual-migrations/run-migration-002.ts
+++ b/backend/prisma/manual-migrations/run-migration-002.ts
@@ -121,6 +121,8 @@ runMigration()



+
+



--- a/backend/prisma/migrations/20251208_add_column_mapping/migration.sql
+++ b/backend/prisma/migrations/20251208_add_column_mapping/migration.sql
@@ -55,6 +55,8 @@ COMMENT ON COLUMN "dc_schema"."dc_tool_c_sessions"."column_mapping" IS '列名



+
+



--- a/backend/prisma/migrations/create_tool_c_session.sql
+++ b/backend/prisma/migrations/create_tool_c_session.sql
@@ -82,6 +82,8 @@ COMMENT ON COLUMN dc_schema.dc_tool_c_sessions.expires_at IS '过期时间（创



+
+



--- a/backend/prisma/schema.prisma
+++ b/backend/prisma/schema.prisma
@@ -45,6 +45,7 @@ model User {
  createdAt           DateTime         @default(now()) @map("created_at")
  updatedAt           DateTime         @updatedAt @map("updated_at")
  tenant_members      tenant_members[]
+  user_modules        user_modules[]
  departments         departments?     @relation(fields: [department_id], references: [id])
  tenants             tenants          @relation(fields: [tenant_id], references: [id])

@@ -1042,6 +1043,27 @@ model tenant_modules {
  @@schema("platform_schema")
 }

+/// 用户模块权限表（精细控制用户可访问的模块）
+model user_modules {
+  id          String    @id @default(uuid())
+  user_id     String
+  tenant_id   String                          /// 在哪个租户内的权限
+  module_code String                          /// 模块代码: RVW, PKB, ASL, DC, IIT, AIA
+  is_enabled  Boolean   @default(true)        /// 是否启用
+  created_at  DateTime  @default(now())
+  updated_at  DateTime  @updatedAt
+  
+  user        User      @relation(fields: [user_id], references: [id], onDelete: Cascade)
+  tenant      tenants   @relation(fields: [tenant_id], references: [id], onDelete: Cascade)
+
+  @@unique([user_id, tenant_id, module_code])
+  @@index([user_id])
+  @@index([tenant_id])
+  @@index([module_code])
+  @@map("user_modules")
+  @@schema("platform_schema")
+}
+
 model tenant_quota_allocations {
  id           Int      @id @default(autoincrement())
  tenant_id    String
@@ -1095,6 +1117,7 @@ model tenants {
  tenant_quota_allocations tenant_quota_allocations[]
  tenant_quotas            tenant_quotas[]
  users                    User[]
+  user_modules             user_modules[]

  @@index([code], map: "idx_tenants_code")
  @@index([status], map: "idx_tenants_status")
				`@@ -55,6 +55,8 @@ COMMENT ON COLUMN "dc_schema"."dc_tool_c_sessions"."column_mapping" IS '列名`
				`@@ -82,6 +82,8 @@ COMMENT ON COLUMN dc_schema.dc_tool_c_sessions.expires_at IS '过期时间（创`