| 1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586 |
- const API = require("../../../../lib/API")
- const db = require("../../../../plugin/DataBase/db")
- const AccessControl = require("../../../../lib/AccessControl")
- const { BaseStdResponse } = require("../../../../BaseStdResponse")
- class AdminGetRecordDetail extends API {
- constructor() {
- super();
- this.setPath('/Admin/Lepao/GetRecordDetail')
- this.setMethod('GET')
- }
- async onRequest(req, res) {
- let {
- uuid,
- session,
- id
- } = req.query
- if ([uuid, session, id].some(value => value === '' || value === null || value === undefined))
- return res.json({
- ...BaseStdResponse.MISSING_PARAMETER
- })
- // 检查 session
- if (!await AccessControl.checkSession(uuid, session))
- return res.status(401).json({
- ...BaseStdResponse.ACCESS_DENIED
- })
- // 检查权限
- let permission = await AccessControl.getPermission(uuid)
- if (!permission.includes("admin") && !permission.includes("server"))
- return res.json({
- ...BaseStdResponse.PERMISSION_DENIED
- })
- let sql = `
- SELECT
- r.time,
- r.result,
- r.lepao_account,
- r.point_data,
- r.path_id,
- a.name,
- p.data
- FROM
- lepao_record r
- LEFT JOIN
- lepao_account a
- ON
- r.lepao_account = a.student_num
- LEFT JOIN
- path_data p
- ON
- r.path_id = p.id
- WHERE
- r.id = ?
- `
- let rows = await db.query(sql, [id])
- if (!rows)
- return res.json({
- ...BaseStdResponse.MISSING_FILE,
- msg: '获取记录数据失败!'
- })
- if(rows.length === 0)
- return res.json({
- ...BaseStdResponse.MISSING_FILE,
- msg: '记录不存在或已被删除!'
- })
- let data = rows[0]
- data.data = data.data.map(point => [point.o, point.a])
- res.json({
- ...BaseStdResponse.OK,
- data
- })
- }
- }
- module.exports.AdminGetRecordDetail = AdminGetRecordDetail
|
