Develop/AIclinicalresearch
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat(admin): Add user management and upgrade to module permission system

Browse Source 
Features - User Management (Phase 4.1):
- Database: Add user_modules table for fine-grained module permissions
- Database: Add 4 user permissions (view/create/edit/delete) to role_permissions
- Backend: UserService (780 lines) - CRUD with tenant isolation
- Backend: UserController + UserRoutes (648 lines) - 13 API endpoints
- Backend: Batch import users from Excel
- Frontend: UserListPage (412 lines) - list/filter/search/pagination
- Frontend: UserFormPage (341 lines) - create/edit with module config
- Frontend: UserDetailPage (393 lines) - details/tenant/module management
- Frontend: 3 modal components (592 lines) - import/assign/configure
- API: GET/POST/PUT/DELETE /api/admin/users/* endpoints

Architecture Upgrade - Module Permission System:
- Backend: Add getUserModules() method in auth.service
- Backend: Login API returns modules array in user object
- Frontend: AuthContext adds hasModule() method
- Frontend: Navigation filters modules based on user.modules
- Frontend: RouteGuard checks requiredModule instead of requiredVersion
- Frontend: Remove deprecated version-based permission system
- UX: Only show accessible modules in navigation (clean UI)
- UX: Smart redirect after login (avoid 403 for regular users)

Fixes:
- Fix UTF-8 encoding corruption in ~100 docs files
- Fix pageSize type conversion in userService (String to Number)
- Fix authUser undefined error in TopNavigation
- Fix login redirect logic with role-based access check
- Update Git commit guidelines v1.2 with UTF-8 safety rules

Database Changes:
- CREATE TABLE user_modules (user_id, tenant_id, module_code, is_enabled)
- ADD UNIQUE CONSTRAINT (user_id, tenant_id, module_code)
- INSERT 4 permissions + role assignments
- UPDATE PUBLIC tenant with 8 module subscriptions

Technical:
- Backend: 5 new files (~2400 lines)
- Frontend: 10 new files (~2500 lines)
- Docs: 1 development record + 2 status updates + 1 guideline update
- Total: ~4900 lines of code

Status: User management 100% complete, module permission system operational
This commit is contained in:
HaHafeng
2026-01-16 13:42:10 +08:00
parent 98d862dbd4
commit 66255368b7
560 changed files with 70424 additions and 52353 deletions
Download Patch File Download Diff File Expand all files Collapse all files

112
docs/03-业务模块/ADMIN-运营管理端/02-技术设计/03-Prompt管理系统快速参考.md
View File

@@ -1,27 +1,27 @@
# **Prompt蝞∠<EFBFBD>蝟餌<EFBFBD>敹恍<EFBFBD><EFBFBD><EFBFBD>?*
# **Prompt管理系统快速参考**
> **<EFBFBD><EFBFBD>𧋦嚗?* v1.0
> **隡睃<EFBFBD>蝥改<EFBFBD>** P0嚗<30>瓲敹<E793B2><E695B9>𡁶鍂<F0A181B6><EFBFBD>嚗?
> **<EFBFBD><EFBFBD><EFBFBD><EFBFBD>** 敺<><E695BA><EFBFBD>?
> **版本:** v1.0
> **优先级:** P0核心通用能力
> **状态:** 待开发
---
## 📌 核心概念
### <EFBFBD><EFBFBD>Prompt蝞∠<EFBFBD>蝟餌<EFBFBD>嚗?
### 什么是Prompt管理系统?
<EFBFBD>銝芸<EFBFBD>霈?*銝㮖<E98A9D>鈭箏<E988AD><E7AE8F><EFBFBD>鈭抒㴓憓<E3B493><E68693><EFBFBD><EFBFBD>霂𧭈I Prompt**<2A><><EFBFBD>摨阡<E691A8><EFBFBD>頂蝏麄<E89D8F>?
一个允许**专业人员在生产环境安全调试AI Prompt**的灰度预览系统。
### 銝箔<EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>嚗?
### 为什么需要它?
- <EFBFBD>?**<2A>𤤿<EFBFBD>1嚗?* 瘚贝<E7989A><E8B49D><EFBFBD><E887AC><EFBFBD>璅⊥<E79285><E28AA5><EFBFBD><E7AC94>餃郎<E9A483>唳旿嚗?0蝭<30><E89DAD><EFBFBD><EFBFBD><E69FB4><EFBFBD>摰䂿<E691B0><E482BF><EFBFBD><EFBFBD>
- <EFBFBD>?**<2A>𤤿<EFBFBD>2嚗?* 瘥𤩺活靚<E6B4BB>㟲Prompt<70><74><EFBFBD>㺿隞<E3BABF><E99A9E><EFBFBD><EFBFBD>蝵聆<E89DB5>蝑匧<E89D91>嚗?<3F><><EFBFBD>嚗?
- <EFBFBD>?**<2A>𤤿<EFBFBD>3嚗?* 銝游<E98A9D>銝枏振<E69E8F><EFBFBD><E4ADBE><EFBFBD><EFBFBD><EFBFBD><E99D9A><EFBFBD><E59A97>隞砌<E99A9E>隡𡁜<E99AA1><EFBFBD><E99A9E>嚗?
- <EFBFBD>?**閫<><E996AB>嚗?* <20>煺漣<E785BA><EFBFBD><E887AC>啣漲憸<E6BCB2><E686B8> + 靚<><E99D9A><EFBFBD><EFBFBD><EFBFBD><EFBFBD>?+ DRAFT/ACTIVE<EFBFBD><EFBFBD>𧋦<EFBFBD>𠉛氖
- **痛点1** 测试环境无法模拟真实医学数据20篇文献、真实病历
- **痛点2** 每次调整Prompt需要改代码→部署→等待5分钟
- **痛点3** 临床专家无法参与调试(他们不会写代码)
- **解决:** 生产环境灰度预览 + 调试者角色 + DRAFT/ACTIVE版本隔离
---
## <EFBFBD><EFBFBD>儭?<3F>唳旿摨廍chema
## 🗂️ 数据库Schema
### 位置:`capability_schema`
@@ -31,7 +31,7 @@
model PromptTemplate {
id Int @id @default(autoincrement())
code String @unique // 'ASL_SCREENING_TitleAbstract'
name String // "ASL<EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>蝑偦<EFBFBD>?
name String // "ASL标题摘要筛选"
module String // ASL, DC, IIT, AIA, PKB, RVW
description String?
variables Json? // ["title", "abstract"]
@@ -48,11 +48,11 @@ model PromptTemplate {
model PromptVersion {
id Int @id @default(autoincrement())
templateId Int @map("template_id")
version Int // <EFBFBD><EFBFBD>𧋦<EFBFBD>?
version Int // 版本号
content String @db.Text // Prompt内容
modelConfig Json? // {"temperature": 0.1}
status PromptStatus @default(DRAFT)
changelog String? // "憓𧼮<EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>?
changelog String? // "增加了排除标准"
createdBy String? @map("created_by") // UserID审计
template PromptTemplate @relation(fields: [templateId], references: [id])
@@ -66,7 +66,7 @@ model PromptVersion {
}
enum PromptStatus {
DRAFT // <EFBFBD>厩阮嚗<EFBFBD><EFBFBD>Debug璅<EFBFBD><EFBFBD><EFBFBD>嚗?
DRAFT // 草稿仅Debug模式可见
ACTIVE // 生产版本
ARCHIVED // 归档
@@ -76,15 +76,15 @@ enum PromptStatus {
---
## <EFBFBD><EFBFBD> <20><><EFBFBD>銝舘<E98A9D><E88898>?
## 🔐 权限与角色
### 新增权限
| 权限 Code | 描述 | 适用角色 |
|-----------|------|---------|
| `prompt:view` | <EFBFBD><EFBFBD>Prompt<EFBFBD>𡑒”<EFBFBD><EFBFBD><EFBFBD><EFBFBD>?| SUPER_ADMIN, PROMPT_ENGINEER |
| `prompt:view` | 查看Prompt列表和历史 | SUPER_ADMIN, PROMPT_ENGINEER |
| `prompt:edit` | 创建/修改DRAFT版本 | SUPER_ADMIN, PROMPT_ENGINEER |
| `prompt:debug` | 潃?**撘<><E69298><EFBFBD>霂閙芋撘?* | SUPER_ADMIN, PROMPT_ENGINEER |
| `prompt:debug` | **开启调试模式** | SUPER_ADMIN, PROMPT_ENGINEER |
| `prompt:publish` | 发布DRAFT→ACTIVE | SUPER_ADMIN, PROMPT_ENGINEER |
### 新增角色
@@ -103,15 +103,15 @@ enum UserRole {
## 🚀 核心API
### 蝞∠<EFBFBD>蝡舀𦻖<EFBFBD>?
### 管理端接口
| 方法 | 路径 | 权限 | 描述 |
|------|------|------|------|
| GET | `/api/admin/prompts` | prompt:view | <EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>㗇芋<EFBFBD>?|
| GET | `/api/admin/prompts` | prompt:view | 获取所有模板 |
| GET | `/api/admin/prompts/:id` | prompt:view | 获取详情+历史版本 |
| POST | `/api/admin/prompts/draft` | prompt:edit | 保存草稿 |
| POST | `/api/admin/prompts/publish` | prompt:publish | 发布 |
| POST | `/api/admin/prompts/debug` | prompt:debug | **<EFBFBD><EFBFBD><EFBFBD>霂閙芋撘?* |
| POST | `/api/admin/prompts/debug` | prompt:debug | **开关调试模式** |
### 业务模块集成
@@ -126,7 +126,7 @@ export class ScreeningService {
const prompt = await promptService.get(
'ASL_SCREENING_TitleAbstract',
{ title: paper.title, abstract: paper.abstract },
userId // 潃?敹<>◆隡惩<E99AA1>userId
userId // ⭐ 必须传入userId
);
return await llmGateway.chat(prompt);
@@ -138,7 +138,7 @@ export class ScreeningService {
## 🎨 前端组件
### <EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>?
### 全局调试开关
```tsx
// frontend-v2/src/modules/admin/components/PromptDebugSwitch.tsx
@@ -175,18 +175,18 @@ export const PromptDebugSwitch = () => {
## 📋 涉及模块
| <EFBFBD> | <20><EFBFBD><E8A9A8>箸艶 | 憭齿<E686AD>摨?| 隡睃<E99AA1>蝥?|
| 模块 | 核心场景 | 复杂度 | 优先级 |
|------|---------|-------|--------|
| **ASL** | <EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>蝑䜘<EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>?| 潃鐥<E6BD83>潃鐥<E6BD83>潃?| P0 |
| **DC** | Tool B<EFBFBD>𣂼<EFBFBD><EFBFBD><EFBFBD>ool C皜<43><E79A9C><EFBFBD><EFBFBD><EFBFBD><EFBFBD><E89D92>瘚?| 潃鐥<E6BD83>潃鐥<E6BD83>潃?| P0 |
| **IIT** | 韐冽綉璉<EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>?| 潃鐥<E6BD83>潃鐥<E6BD83>潃?| P1 |
| **ASL** | 标题摘要初筛、全文复筛、证据合成 | ⭐⭐⭐⭐⭐ | P0 |
| **DC** | Tool B提取、Tool C清洗、冲突检测 | ⭐⭐⭐⭐⭐ | P0 |
| **IIT** | 质控检查、意图识别 | ⭐⭐⭐⭐⭐ | P1 |
| **PKB** | RAG问答、批处理阅读 | ⭐⭐⭐⭐ | P1 |
| **AIA** | 10+<EFBFBD><EFBFBD>雿瓐<EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>?| 潃鐥<E6BD83>潃?| P2 |
| **RVW** | <EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>?| 潃鐥<E6BD83>潃?| P2 |
| **AIA** | 10+智能体、意图识别 | ⭐⭐⭐ | P2 |
| **RVW** | 规范性检查 | ⭐⭐⭐ | P2 |
---
## <EFBFBD><EFBFBD> <20><EFBFBD><E8A9A8><EFBFBD>嚗㇊romptService嚗?
## ⚙️ 核心逻辑PromptService
```typescript
// backend/src/common/capabilities/prompt/prompt.service.ts
@@ -214,7 +214,7 @@ export class PromptService {
}
}
// 2. <EFBFBD><EFBFBD>𡁶鍂<EFBFBD>瑁繮<EFBFBD>䨝CTIVE<EFBFBD><EFBFBD>𧋦嚗<EFBFBD>蒂蝻枏<EFBFBD>嚗?
// 2. 普通用户获取ACTIVE版本带缓存
let active = this.activeCache.get(code);
if (!active) {
const version = await prisma.promptVersion.findFirst({
@@ -231,7 +231,7 @@ export class PromptService {
return this.render(active, variables);
}
// Postgres LISTEN/NOTIFY <EFBFBD>剜凒<EFBFBD>?
// Postgres LISTEN/NOTIFY 热更新
async initHotReload() {
const client = await pool.connect();
await client.query('LISTEN prompt_update');
@@ -245,19 +245,19 @@ export class PromptService {
---
## <EFBFBD><EFBFBD><><E69298>𤏸恣<F0A48FB8>?
## 📅 开发计划
### Phase 0: <EFBFBD><EFBFBD>霈暹鴌嚗?憭抬<E686AD>
### Phase 0: 基础设施2天
- [ ] <EFBFBD>𥕦遣<EFBFBD>唳旿摨栞”嚗Ǒprompt_templates`, `prompt_versions`嚗?
- [ ] 创建数据库表(`prompt_templates`, `prompt_versions`
- [ ] 添加`prompt:*`权限到`platform_schema.permissions`
- [ ] 创建`PROMPT_ENGINEER`角色
- [ ] 实现`PromptService`核心逻辑
### Phase 1: 餈鞱𨯫蝡烘VP嚗?憭抬<E686AD>
### Phase 1: 运营端MVP3天
- [ ] 前端管理界面(列表、编辑器、版本历史)
- [ ] <EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>隞?
- [ ] 全局调试开关组件
- [ ] 草稿保存/发布功能
### Phase 2: 业务模块接入(随业务开发)
@@ -268,48 +268,48 @@ export class PromptService {
---
## <EFBFBD><EFBFBD> 摰匧<E691B0>銝𡡞<E98A9D><F0A1A19E>?
## 🔒 安全与风控
### 权限隔离
- <EFBFBD>?銝交聢璉<E881A2><E79289>prompt:debug`<EFBFBD><EFBFBD><EFBFBD>
- <EFBFBD>?靚<><E99D9A><E79285><E288AA><EFBFBD><E59786><EFBFBD><EFBFBD>典銁<E585B8><E98A81><EFBFBD><EFBFBD><EFBFBD>箄䌊<E7AE84>典仃<E585B8><E4BB83><EFBFBD>
- ✅ 严格检查`prompt:debug`权限
- ✅ 调试模式状态存储在内存(登出自动失效)
### 审计日志
- <EFBFBD>?`PromptVersion.createdBy`霈啣<EFBFBD>靽格㺿鈭?
- <EFBFBD>?`AdminOperationLog`霈啣<EFBFBD><EFBFBD><EFBFBD>銵䔶蛹嚗éodule='prompt'嚗?
- `PromptVersion.createdBy`记录修改人
- `AdminOperationLog`记录发布行为module='prompt'
### 兜底机制
- <EFBFBD>?隞<><E99A9E>銝凋<E98A9D><E5878B>ardcoded Prompt雿靝蛹蝟餌<EFBFBD>蝥批<EFBFBD>摨?
- <EFBFBD>?<3F>唳旿摨𤘪䰻霂仃韐交𧒄餈𥪜<E9A488>暺䁅恕<E48185><E68195>𧋦
- ✅ 代码中保留Hardcoded Prompt作为系统级兜底
- ✅ 数据库查询失败时返回默认版本
---
## <EFBFBD><20><EFBFBD>撌乩<E6928C>瘚?
## 🎯 典型工作流
1. **<EFBFBD>箸艶嚗?* 銝游<E98A9D>銝枏振Dr. Wang閫匧<E996AB>ASL<53><4C>讃蝑偦<E89D91><EFBFBD>蝖桃<E89D96>銝滚<E98A9D>
1. **场景:** 临床专家Dr. Wang觉得ASL文献筛选准确率不够
2. **靽格㺿嚗?* Dr. Wang<EFBFBD><EFBFBD>餈鞱𨯫蝞∠<EFBFBD>蝡荔<EFBFBD>靽格㺿`ASL_SCREENING`<EFBFBD><EFBFBD>rompt<EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>靽嘥<EFBFBD><EFBFBD>厩阮
2. **修改:** Dr. Wang登录运营管理端,修改`ASL_SCREENING`的Prompt,增加排除标准,保存草稿
3. **<EFBFBD><EFBFBD>嚗?* Dr. Wang<EFBFBD>孵稬憿園<EFBFBD><EFBFBD>?撘<><E69298><EFBFBD>霂閙芋撘?
3. **调试:** Dr. Wang点击顶部的"开启调试模式"
4. **撉諹<EFBFBD>嚗?* Dr. Wang<EFBFBD><EFBFBD><EFBFBD>蚊SL銝𡁜𦛚憿菟𢒰嚗䔶<EFBFBD>隡惩<EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>
*<EFBFBD>?蝟餌<E89D9F><E9A48C>𡒊垢璉<E59EA2>瘚见<E7989A>Dr. Wang<EFBFBD>ebug<EFBFBD>𡑒”銝哨<EFBFBD><EFBFBD>㰘蝸DRAFT<EFBFBD>rompt*
4. **验证:** Dr. Wang切换到ASL业务页面上传几篇之前筛错的文献
*→ 系统后端检测到Dr. Wang在Debug列表中,加载DRAFT版Prompt*
5. **蝖株恕嚗?* <20>𤑳緵蝏𤘪<E89D8F><EFBFBD>鈭?
5. **确认:** 发现结果正确了
6. **<EFBFBD><EFBFBD>嚗?* Dr. Wang<6E>𧼮<EFBFBD>蝞∠<E89D9E>憿蛛<E686BF><E89B9B>孵稬"<22><EFBFBD>"
6. **发布:** Dr. Wang回到管理页点击"发布"
7. **蝏𤘪<EFBFBD>嚗?* Dr. Wang<EFBFBD>喲𡡒靚<EFBFBD><EFBFBD><EFBFBD>
7. **结束:** Dr. Wang关闭调试模式
---
## 📚 相关文档
- `02-<EFBFBD>𡁶鍂<EFBFBD><EFBFBD><EFBFBD>07-餈鞱𨯫銝擧㦤<E693A7><E3A6A4><EFBFBD><E681A3>PRD_v2.1.md` - <EFBFBD><EFBFBD><EFBFBD><EFBFBD>瘙?
- `02-<EFBFBD>𡁶鍂<EFBFBD><EFBFBD><EFBFBD>03-Prompt蝞∠<EFBFBD>蝟餌<EFBFBD>銝𡒊<EFBFBD>摨阡<EFBFBD><EFBFBD>挽霈⊥䲮獢?md` - 霂衣<EFBFBD>霈曇恣
- `02-通用能力层_07-运营与机构管理端PRD_v2.1.md` - 总体需求
- `02-通用能力层_03-Prompt管理系统与灰度预览设计方案.md` - 详细设计
- `00-权限与角色体系梳理报告_v1.0.md` - 架构梳理
---