|
@@ -672,13 +672,17 @@ public class ReceiptServiceImpl implements ReceiptService {
|
|
|
@Override
|
|
|
public ResponseJson<ReceiptVo> getReceiptDetail(Integer id, HttpHeaders headers) {
|
|
|
// 检查收款用户权限:9非订单款查看(全部),10订单款查看(全部),13订单款查看(协销自己机构)
|
|
|
-// ReceiptUserVo receiptUser = checkPermissions(Arrays.asList(9, 10, 13), headers);
|
|
|
- //改为独立权限,有详情查看权限才能看 19,款项详情查看
|
|
|
- ReceiptUserVo receiptUser = checkPermissions(Arrays.asList(19), headers);
|
|
|
+ ReceiptUserVo receiptUser = checkPermissions(Arrays.asList(9, 10, 13), headers);
|
|
|
if (null == receiptUser) {
|
|
|
return ResponseJson.error("无权限操作!", null);
|
|
|
}
|
|
|
+ //改为独立权限,有详情查看权限才能看 19,款项详情查看
|
|
|
+ ReceiptUserVo receiptCheck = checkPermissions(Arrays.asList(19), headers);
|
|
|
+ if (null == receiptCheck) {
|
|
|
+ return ResponseJson.error("无权限操作!", null);
|
|
|
+ }
|
|
|
ReceiptVo receipt = receiptMapper.getReceiptDetail(id);
|
|
|
+
|
|
|
//超级管理员可以看,其他人不能看已确认的单(协销小组有了之后暂不要此逻辑)
|
|
|
// if (null != receipt.getConfirmUserPermissionId()) {
|
|
|
// if (1 == receiptUser.getUserType() && !receiptUser.getId().equals(receipt.getConfirmUserPermissionId())) {
|