gitee/mall4j
1
1
Fork 0
mirror of https://gitee.com/gz-yami/mall4j.git synced 2026-03-22 09:17:16 +08:00
Code Issues Packages Projects Releases Wiki Activity

完善商品获取修改等校验

Browse Source
This commit is contained in:
lhd
2025-11-07 11:21:25 +08:00
parent 8cfacfc80f
commit ad1bd26769
1 changed files with 9 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
yami-shop-admin/src/main/java/com/yami/shop/admin/controller/ProductController.java
View File

@@ -82,6 +82,9 @@ public class ProductController {
@PreAuthorize("@pms.hasPermission('prod:prod:info')") @PreAuthorize("@pms.hasPermission('prod:prod:info')")
public ServerResponseEntity<Product> info(@PathVariable("prodId") Long prodId) { public ServerResponseEntity<Product> info(@PathVariable("prodId") Long prodId) {
Product prod = productService.getProductByProdId(prodId); Product prod = productService.getProductByProdId(prodId);
if(Objects.isNull(prod)){
throw new YamiShopBindException("商品不存在");
}
if (!Objects.equals(prod.getShopId(), SecurityUtils.getSysUser().getShopId())) { if (!Objects.equals(prod.getShopId(), SecurityUtils.getSysUser().getShopId())) {
throw new YamiShopBindException("没有权限获取该商品规格信息"); throw new YamiShopBindException("没有权限获取该商品规格信息");
} }
@@ -122,6 +125,9 @@ public class ProductController {
public ServerResponseEntity<String> update(@Valid @RequestBody ProductParam productParam) { public ServerResponseEntity<String> update(@Valid @RequestBody ProductParam productParam) {
checkParam(productParam); checkParam(productParam);
Product dbProduct = productService.getProductByProdId(productParam.getProdId()); Product dbProduct = productService.getProductByProdId(productParam.getProdId());
if(Objects.isNull(dbProduct)){
throw new YamiShopBindException("商品不存在");
}
if (!Objects.equals(dbProduct.getShopId(), SecurityUtils.getSysUser().getShopId())) { if (!Objects.equals(dbProduct.getShopId(), SecurityUtils.getSysUser().getShopId())) {
return ServerResponseEntity.showFailMsg("无法修改非本店铺商品信息"); return ServerResponseEntity.showFailMsg("无法修改非本店铺商品信息");
} }
@@ -156,6 +162,9 @@ public class ProductController {
*/ */
public ServerResponseEntity<Void> delete(Long prodId) { public ServerResponseEntity<Void> delete(Long prodId) {
Product dbProduct = productService.getProductByProdId(prodId); Product dbProduct = productService.getProductByProdId(prodId);
if(Objects.isNull(dbProduct)){
throw new YamiShopBindException("商品不存在");
}
if (!Objects.equals(dbProduct.getShopId(), SecurityUtils.getSysUser().getShopId())) { if (!Objects.equals(dbProduct.getShopId(), SecurityUtils.getSysUser().getShopId())) {
throw new YamiShopBindException("无法获取非本店铺商品信息"); throw new YamiShopBindException("无法获取非本店铺商品信息");
} }