yumoqing/product_management
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
product_management/wwwroot/api/product_update.dspy
yumoqing 4fd136bf53 refactor: reseller org_id isolation for product_management module 
- product_category: org_id scoped tree, product_table_name -> product_type
- product: org_id scoped, added extra_json for custom attributes, product_type field
- product_type_config: org_id + operator_id dual isolation, unique key on (org_id, operator_id, category_id, config_name)
- All 18 API endpoints enforce org_id filtering via ServerEnv
- core.py: all methods accept optional org_id, default to current user's org
- CRUD definitions: logined_userorgid set to org_id on all lists
- init/data.json: removed hardcoded global categories (managed per reseller)
- Rebuilt mysql.ddl.sql and all CRUD UI files
2026-05-25 17:03:08 +08:00

48 lines
1.7 KiB
Python
Raw Blame History

#!/usr/bin/env python3
import json, time
result = {'widgettype': 'Message', 'options': {'title': 'Error', 'message': 'Invalid', 'type': 'error'}}
try:
user_id = await get_user()
from ahserver.serverenv import ServerEnv
env = ServerEnv()
org_id = getattr(env, 'orgid', None) or getattr(env, 'org_id', '0')
now = time.strftime('%Y-%m-%d %H:%M:%S')
dbname = get_module_dbname('product_management')
data = dict(params_kw)
record_id = data.pop('id', None)
if not record_id:
raise ValueError('Missing id')
# Verify belongs to org
async with DBPools().sqlorContext(dbname) as sor:
check = await sor.sqlExe(
"SELECT id FROM product WHERE id = ${id}$ AND org_id = ${org_id}$",
{'id': record_id, 'org_id': org_id}
)
if not check:
raise ValueError('无权操作该记录')
data['updated_at'] = now
# If category changed, update product_type
if data.get('category_id') and not data.get('product_type'):
cat_check = await sor.sqlExe(
"SELECT product_type FROM product_category WHERE id = ${category_id}$ AND org_id = ${org_id}$",
{'category_id': data['category_id'], 'org_id': org_id}
)
if cat_check:
data['product_type'] = cat_check[0].get('product_type', '')
async with DBPools().sqlorContext(dbname) as sor:
await sor.U('product', data, {'id': record_id, 'org_id': org_id})
result = {'widgettype': 'Message', 'options': {'title': 'Success', 'message': '产品更新成功', 'type': 'success'}}
except Exception as e:
result['options'] = {'title': 'Error', 'message': '更新失败: ' + str(e), 'type': 'error'}
return json.dumps(result, ensure_ascii=False)
Reference in New Issue View Git Blame Copy Permalink