yumoqing/product_management
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
product_management/wwwroot/api/product_create.dspy
yumoqing 4fd136bf53 refactor: reseller org_id isolation for product_management module 
- product_category: org_id scoped tree, product_table_name -> product_type
- product: org_id scoped, added extra_json for custom attributes, product_type field
- product_type_config: org_id + operator_id dual isolation, unique key on (org_id, operator_id, category_id, config_name)
- All 18 API endpoints enforce org_id filtering via ServerEnv
- core.py: all methods accept optional org_id, default to current user's org
- CRUD definitions: logined_userorgid set to org_id on all lists
- init/data.json: removed hardcoded global categories (managed per reseller)
- Rebuilt mysql.ddl.sql and all CRUD UI files
2026-05-25 17:03:08 +08:00

54 lines
1.9 KiB
Python
Raw Blame History

#!/usr/bin/env python3
import json, time
from appPublic.uniqueID import getID
result = {'widgettype': 'Message', 'options': {'title': 'Error', 'message': 'Invalid', 'type': 'error'}}
try:
user_id = await get_user()
from ahserver.serverenv import ServerEnv
env = ServerEnv()
org_id = getattr(env, 'orgid', None) or getattr(env, 'org_id', '0')
now = time.strftime('%Y-%m-%d %H:%M:%S')
dbname = get_module_dbname('product_management')
data = dict(params_kw)
data['id'] = getID()
data['org_id'] = org_id
data['created_by'] = user_id
data['created_at'] = now
data['updated_at'] = now
if 'status' not in data:
data['status'] = '1'
if 'sort_order' not in data:
data['sort_order'] = '0'
if 'price_type' not in data:
data['price_type'] = '1'
if 'price' not in data:
data['price'] = '0.00'
if 'currency' not in data:
data['currency'] = 'CNY'
# Verify category belongs to current org
if data.get('category_id'):
async with DBPools().sqlorContext(dbname) as sor:
cat_check = await sor.sqlExe(
"SELECT id, product_type FROM product_category WHERE id = ${category_id}$ AND org_id = ${org_id}$",
{'category_id': data['category_id'], 'org_id': org_id}
)
if not cat_check:
raise ValueError('类别不存在或不属于当前机构')
# Auto-fill product_type from category
if not data.get('product_type'):
data['product_type'] = cat_check[0].get('product_type', '')
async with DBPools().sqlorContext(dbname) as sor:
await sor.C('product', data)
result = {'widgettype': 'Message', 'options': {'title': 'Success', 'message': '产品创建成功', 'type': 'success'}}
except Exception as e:
result['options'] = {'title': 'Error', 'message': '创建失败: ' + str(e), 'type': 'error'}
return json.dumps(result, ensure_ascii=False)
Reference in New Issue View Git Blame Copy Permalink