Develop/AIclinicalresearch
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
66255368b72a2ef3f2e5ee9c687ae781e16ec074
AIclinicalresearch/backend/scripts/setup-prompt-system.ts
HaHafeng 66255368b7 feat(admin): Add user management and upgrade to module permission system 
Features - User Management (Phase 4.1):
- Database: Add user_modules table for fine-grained module permissions
- Database: Add 4 user permissions (view/create/edit/delete) to role_permissions
- Backend: UserService (780 lines) - CRUD with tenant isolation
- Backend: UserController + UserRoutes (648 lines) - 13 API endpoints
- Backend: Batch import users from Excel
- Frontend: UserListPage (412 lines) - list/filter/search/pagination
- Frontend: UserFormPage (341 lines) - create/edit with module config
- Frontend: UserDetailPage (393 lines) - details/tenant/module management
- Frontend: 3 modal components (592 lines) - import/assign/configure
- API: GET/POST/PUT/DELETE /api/admin/users/* endpoints

Architecture Upgrade - Module Permission System:
- Backend: Add getUserModules() method in auth.service
- Backend: Login API returns modules array in user object
- Frontend: AuthContext adds hasModule() method
- Frontend: Navigation filters modules based on user.modules
- Frontend: RouteGuard checks requiredModule instead of requiredVersion
- Frontend: Remove deprecated version-based permission system
- UX: Only show accessible modules in navigation (clean UI)
- UX: Smart redirect after login (avoid 403 for regular users)

Fixes:
- Fix UTF-8 encoding corruption in ~100 docs files
- Fix pageSize type conversion in userService (String to Number)
- Fix authUser undefined error in TopNavigation
- Fix login redirect logic with role-based access check
- Update Git commit guidelines v1.2 with UTF-8 safety rules

Database Changes:
- CREATE TABLE user_modules (user_id, tenant_id, module_code, is_enabled)
- ADD UNIQUE CONSTRAINT (user_id, tenant_id, module_code)
- INSERT 4 permissions + role assignments
- UPDATE PUBLIC tenant with 8 module subscriptions

Technical:
- Backend: 5 new files (~2400 lines)
- Frontend: 10 new files (~2500 lines)
- Docs: 1 development record + 2 status updates + 1 guideline update
- Total: ~4900 lines of code

Status: User management 100% complete, module permission system operational
2026-01-16 13:42:10 +08:00

122 lines
3.6 KiB
TypeScript
Raw Blame History

/**
* Prompt管理系统初始化脚本
*
* 功能:
* 1. 创建 capability_schema
* 2. 添加 prompt:* 权限
* 3. 更新角色权限分配
*/
import { PrismaClient } from '@prisma/client';
const prisma = new PrismaClient();
async function main() {
console.log('🚀 开始初始化 Prompt 管理系统...\n');
// 1. 创建 capability_schema
console.log('📁 Step 1: 创建 capability_schema...');
try {
await prisma.$executeRaw`CREATE SCHEMA IF NOT EXISTS capability_schema`;
console.log(' ✅ capability_schema 创建成功\n');
} catch (error) {
console.log(' ⚠️ capability_schema 可能已存在\n');
}
// 2. 添加 prompt:* 权限
console.log('🔐 Step 2: 添加 prompt:* 权限...');
const promptPermissions = [
{ code: 'prompt:view', name: '查看Prompt', description: '查看Prompt模板列表和详情', module: 'admin' },
{ code: 'prompt:edit', name: '编辑Prompt', description: '创建和修改Prompt草稿', module: 'admin' },
{ code: 'prompt:debug', name: '调试Prompt', description: '开启调试模式,在生产环境测试草稿', module: 'admin' },
{ code: 'prompt:publish', name: '发布Prompt', description: '将草稿发布为正式版', module: 'admin' },
];
for (const perm of promptPermissions) {
try {
await prisma.permissions.upsert({
where: { code: perm.code },
update: { name: perm.name, description: perm.description, module: perm.module },
create: perm,
});
console.log(`${perm.code}`);
} catch (error) {
console.log(` ⚠️ ${perm.code} 添加失败:`, error);
}
}
console.log('');
// 3. 获取权限ID
console.log('🔗 Step 3: 更新角色权限分配...');
const permissions = await prisma.permissions.findMany({
where: { code: { startsWith: 'prompt:' } },
});
const permissionMap = new Map(permissions.map(p => [p.code, p.id]));
// SUPER_ADMIN: 全部权限
const superAdminPermissions = ['prompt:view', 'prompt:edit', 'prompt:debug', 'prompt:publish'];
for (const permCode of superAdminPermissions) {
const permId = permissionMap.get(permCode);
if (permId) {
try {
await prisma.role_permissions.upsert({
where: {
role_permission_id: { role: 'SUPER_ADMIN', permission_id: permId },
},
update: {},
create: { role: 'SUPER_ADMIN', permission_id: permId },
});
} catch (error) {
// 可能已存在
}
}
}
console.log(' ✅ SUPER_ADMIN: prompt:view, prompt:edit, prompt:debug, prompt:publish');
// PROMPT_ENGINEER: 无 publish 权限
const promptEngineerPermissions = ['prompt:view', 'prompt:edit', 'prompt:debug'];
for (const permCode of promptEngineerPermissions) {
const permId = permissionMap.get(permCode);
if (permId) {
try {
await prisma.role_permissions.upsert({
where: {
role_permission_id: { role: 'PROMPT_ENGINEER', permission_id: permId },
},
update: {},
create: { role: 'PROMPT_ENGINEER', permission_id: permId },
});
} catch (error) {
// 可能已存在
}
}
}
console.log(' ✅ PROMPT_ENGINEER: prompt:view, prompt:edit, prompt:debug (无publish)');
console.log('');
// 4. 验证
console.log('✅ Prompt 管理系统初始化完成!\n');
const allPermissions = await prisma.permissions.findMany({
where: { code: { startsWith: 'prompt:' } },
});
console.log('📋 已添加的权限:');
allPermissions.forEach(p => console.log(` - ${p.code}: ${p.name}`));
}
main()
.catch(console.error)
.finally(() => prisma.$disconnect());
Reference in New Issue View Git Blame Copy Permalink