HaHafeng
66255368b7
Features - User Management (Phase 4.1): - Database: Add user_modules table for fine-grained module permissions - Database: Add 4 user permissions (view/create/edit/delete) to role_permissions - Backend: UserService (780 lines) - CRUD with tenant isolation - Backend: UserController + UserRoutes (648 lines) - 13 API endpoints - Backend: Batch import users from Excel - Frontend: UserListPage (412 lines) - list/filter/search/pagination - Frontend: UserFormPage (341 lines) - create/edit with module config - Frontend: UserDetailPage (393 lines) - details/tenant/module management - Frontend: 3 modal components (592 lines) - import/assign/configure - API: GET/POST/PUT/DELETE /api/admin/users/* endpoints Architecture Upgrade - Module Permission System: - Backend: Add getUserModules() method in auth.service - Backend: Login API returns modules array in user object - Frontend: AuthContext adds hasModule() method - Frontend: Navigation filters modules based on user.modules - Frontend: RouteGuard checks requiredModule instead of requiredVersion - Frontend: Remove deprecated version-based permission system - UX: Only show accessible modules in navigation (clean UI) - UX: Smart redirect after login (avoid 403 for regular users) Fixes: - Fix UTF-8 encoding corruption in ~100 docs files - Fix pageSize type conversion in userService (String to Number) - Fix authUser undefined error in TopNavigation - Fix login redirect logic with role-based access check - Update Git commit guidelines v1.2 with UTF-8 safety rules Database Changes: - CREATE TABLE user_modules (user_id, tenant_id, module_code, is_enabled) - ADD UNIQUE CONSTRAINT (user_id, tenant_id, module_code) - INSERT 4 permissions + role assignments - UPDATE PUBLIC tenant with 8 module subscriptions Technical: - Backend: 5 new files (~2400 lines) - Frontend: 10 new files (~2500 lines) - Docs: 1 development record + 2 status updates + 1 guideline update - Total: ~4900 lines of code Status: User management 100% complete, module permission system operational
用户与权限中心 (UAM)
模块定位: 平台基础层核心模块
优先级: P0(最高)
状态: ⏳ 设计中
📋 模块概述
用户与权限中心(User Access Management)是平台的核心基础模块,负责:
- 用户注册、登录、认证
- 角色与权限管理(RBAC)
- Feature Flag 功能开关(商业模式基础)
- 多租户管理(SaaS版)
🎯 核心功能
1. 用户认证
- JWT Token认证
- 用户注册/登录
- 密码加密(bcrypt)
- 会话管理
2. 角色权限管理(RBAC)
- 角色定义
- 权限定义
- 用户-角色关联
- 角色-权限关联
3. Feature Flag 管理 ⭐ 商业模式核心
- 版本功能控制(专业版、高级版、旗舰版)
- 模块开关
- 功能开关
4. 多租户管理
- 租户隔离
- 租户配额
📂 文档结构
01-用户与权限中心(UAM)/
├── [AI对接] UAM快速上下文.md # ⏳ 待创建
├── 00-需求分析/
│ └── README.md
├── 01-设计文档/
│ ├── 01-架构设计.md # ⏳ 待创建
│ ├── 02-数据库设计.md # ⏳ 待创建
│ ├── 03-API设计.md # ⏳ 待创建
│ ├── 04-Feature-Flag设计.md # ⏳ 待创建
│ └── README.md
└── README.md # ✅ 当前文档
🔗 相关文档
最后更新: 2025-11-06
维护人: 技术架构师