Merge branch 'master' into 'main'

Master

See merge request dcuc-tjdsj/auth/auth-service!1

.gitignore

@@ -0,0 +1,4 @@
+.idea
+target
+*.iml
+logs

Dockerfile

@@ -0,0 +1,7 @@
+FROM bus.ga/base/dragon-java:jdk8-alpine-x86
+# ${pomVersion}对应pom里的数字version，如：1.0.0
+ADD dcuc-auth-service/target/dcuc-auth-service-${pomVersion}-SNAPSHOT.tar.gz /opt/docker/
+RUN mv /opt/docker/dcuc-auth-service-${pomVersion}-SNAPSHOT /opt/docker/dcuc-auth-service
+# 增加jar包到容器中，需放在最后一行，否则出错，路径需与配置相同
+# ADD dcuc-auth-service/src/main/lib/nosql-kafka-1.1.0-SNAPSHOT.jar /opt/docker/dcuc-auth-service/conf/
+ENTRYPOINT ["/opt/docker/dcuc-auth-service/bin/start.sh"];

README.md

@@ -0,0 +1,36 @@
+# 权限服务
+## 更新日志
+### 2.1.0
+  - 新增服务授权
+### 2.1.1
+  - 对接华为认证
+### 2.2.0
+  - 数据授权
+### 2.2.1
+  - 整合数据域、GAW版本  
+### 2.3.0
+  - 授权主体-人员管理 
+  - 授权主体-机构管理 3.主客体授权属性管理
+  - 去除老的审计埋点
+  - 日志管理-异常鉴权预警管理-鉴权预警方案
+  - 日志管理-异常鉴权预警管理-鉴权预警信息
+  - 日志管理-鉴权风险监测
+  - 日志管理-权限日志管理-授权管理日志
+  - 日志管理-权限日志管理-鉴权服务日志
+  - 日志管理-权限日志管理-鉴权风险日志
+  - 日志管理-鉴权行为分析
+  - 日志记录（功能授权、数据授权、服务授权、工作流服务授权）
+  - 预警风险方案算法实现
+### 2.4.0 
+  - 菜单功能自助授权申请模块开发
+  - 推送审批服务
+  - 修改审批结果消息监听,新增功能菜单授权处理
+### 2.4.1
+  - 主客体分离
+  - 管理员模块代码规范
+### 2.4.2
+  - 主客体分离机构数据独立
+  - 机构树查询接口修改
+  - 内存机构树功能新增
+  - 修改调用app-service facade后applyInfo.orgId()改为applyInfo.orgCode()
+ 

dcuc-auth-api/pom.xml

@@ -0,0 +1,36 @@
+<?xml version="1.0" encoding="UTF-8"?>
+
+<project xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://maven.apache.org/POM/4.0.0"
+         xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
+    <parent>
+        <artifactId>dcuc-auth</artifactId>
+        <groupId>com.dragoninfo</groupId>
+        <version>2.5.0-tjdsj-SNAPSHOT</version>
+    </parent>
+    <modelVersion>4.0.0</modelVersion>
+
+    <artifactId>dcuc-auth-api</artifactId>
+
+    <dependencies>
+
+        <dependency>
+            <groupId>org.springframework.cloud</groupId>
+            <artifactId>spring-cloud-openfeign-core</artifactId>
+        </dependency>
+        <dependency>
+            <groupId>org.springframework.boot</groupId>
+            <artifactId>spring-boot-starter-web</artifactId>
+            <scope>compile</scope>
+        </dependency>
+        <dependency>
+            <groupId>com.dragoninfo</groupId>
+            <artifactId>dcuc-auth-model</artifactId>
+            <version>${project.version}</version>
+        </dependency>
+        <dependency>
+            <groupId>org.projectlombok</groupId>
+            <artifactId>lombok</artifactId>
+            <scope>provided</scope>
+        </dependency>
+    </dependencies>
+</project>

dcuc-auth-api/src/main/java/com/dragoninfo/dcuc/auth/admin/facade/IAppMtAuthFacade.java

@@ -0,0 +1,51 @@
+
+
+package com.dragoninfo.dcuc.auth.admin.facade;
+
+
+import com.dragonsoft.duceap.base.entity.http.ResponseStatus;
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RequestParam;
+
+@FeignClient(value = "dcuc-auth", path = "/dcuc/auth/appMtAuthFacade")
+public interface IAppMtAuthFacade {
+
+    /**
+     * 通过组织id和相应管理员id保存管理员-机构管理信息
+     *
+     * @param orgIds
+     * @param userId
+     * @return
+     */
+    @RequestMapping(value = "save")
+    ResponseStatus save(@RequestParam("orgIds") String orgIds, @RequestParam("userId") String userId);
+
+    /**
+     * 查询用户拥有的授权管理范围
+     *
+     * @param userId
+     * @return
+     */
+    @RequestMapping(value = "mgeAppRightRangeStr")
+    String mgeAppRightRangeStr(@RequestParam("userId") String userId);
+
+//    /**
+//     * 根据管理员userid获取人员管理范围机构列表
+//     *
+//     * @param userId
+//     * @return
+//     */
+//    @RequestMapping(value = "appMtList")
+//    List<AppMtAuth> appMtList(@RequestParam("userId") String userId);
+
+    //    /**
+//     * 根据当前登录用户过滤用户管理范围机构权限
+//     *
+//     * @param userId
+//     * @param orgList
+//     */
+//    @RequestMapping(value = "orgFilter")
+//    List<TreeNodeVo> orgFilter(@RequestParam("orgList") List<TreeNodeVo> orgList, @RequestParam("userId") String userId);
+
+}

dcuc-auth-api/src/main/java/com/dragoninfo/dcuc/auth/admin/facade/IManageInfoFacade.java

@@ -0,0 +1,200 @@
+package com.dragoninfo.dcuc.auth.admin.facade;
+
+import com.dragoninfo.dcuc.auth.admin.dto.ManageInfoDTO;
+import com.dragoninfo.dcuc.auth.admin.vo.AdminAuditVO;
+import com.dragoninfo.dcuc.auth.sub.dto.AuthUserDTO;
+import com.dragonsoft.duceap.base.entity.http.ResponseStatus;
+import com.dragonsoft.duceap.base.entity.search.SearchDTO;
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.data.domain.Page;
+import org.springframework.web.bind.annotation.*;
+
+/**
+ * Created by Administrator on 2018/5/30.
+ */
+@FeignClient(name = "dcuc-auth", path = "/dcuc/auth/manageInfoFacade")
+public interface IManageInfoFacade {
+
+    /**
+     * 根据机构id非管理员列表
+     * * @param searchable
+     *
+     * @return
+     * @param adminMgeDto
+     */
+    @PostMapping(value = "getUserNotInManage")
+    Page<AuthUserDTO> getUserNotInManage(@RequestBody SearchDTO adminMgeDto);
+
+    /**
+     * 保存管理员信息
+     *
+     * @param userIds
+     * @return
+     */
+    @RequestMapping(value = "saveAdmin")
+    ResponseStatus saveAdmin(@RequestParam("userIds") String userIds);
+
+    /**
+     * 删除管理员信息
+     *
+     * @param userId
+     * @return
+     */
+    @RequestMapping(value = "deleteAdmin")
+    ResponseStatus deleteAdmin(@RequestParam("userId") String userId);
+
+    /**
+     * 管理员审计列表信息
+     *
+     * @param dto
+     * @return
+     */
+    @PostMapping(value = "adminAuditListByOrgId")
+    Page<AdminAuditVO> adminAuditPage(@RequestBody SearchDTO dto);
+
+
+    /**
+     * 判断是否有权限配置用户的管理范围
+     *
+     * @param userId
+     * @return
+     */
+    @RequestMapping(value = "havaAuthWithManage")
+    boolean haveAuthWithManage(@RequestParam("userId") String userId);
+
+    /**
+     * 根据用户id获取管理员信息
+     * @param userId
+     * @return
+     */
+    @GetMapping(value = "getManageInfoByUserId")
+    ManageInfoDTO getManageInfoByUserId(@RequestParam("userId") String userId);
+
+    /**
+     * 获取管理范围内的管理员列表
+     *
+     * @param dto
+     * @return
+     */
+    @PostMapping(value = "rightRangeManagerList")
+    Page<AuthUserDTO> rightRangeManagerList(@RequestBody SearchDTO dto);
+
+//    /**
+//     * 注意是直接管理这个机构的管理数量
+//     * 根据机构ids获取管理员的数量  key-value  机构id-管理员数量
+//     *
+//     * @param orgIds
+//     * @return
+//     */
+//    @GetMapping(value = "getMgeNumByOrgIds")
+
+//    Map<String, Long> getMgeNumByOrgIds(@RequestParam("orgIds") Set<String> orgIds, @RequestParam("type") String type);
+
+//    /**
+//     * 根据机构id获取管理员列表
+//     *
+//     * @param searchDTO
+//     * @return
+//     */
+//    @PostMapping(value = "getManageInfoByOrgId")
+//    Page<AuthUserDTO> getManageInfoByOrgId(@RequestBody SearchDTO searchDTO);
+
+
+
+//    @RequestMapping(value = "saveAdminBJ")
+//    ResponseStatus saveAdminBJ(@RequestParam("rootOrgId") String rootOrgId,
+//                               @RequestParam("orgId") String orgId,
+//                               @RequestParam("ids") String ids);
+
+//    /**
+//     * 根据用户id获取管理员信息
+//     *
+//     * @param userId
+//     * @return
+//     */
+//    @RequestMapping(value = "manageInfoByUserId")
+//    ManageInfo manageInfoByUserId(@RequestParam("userId") String userId);
+
+//    /**
+//     * 根据用户id判断是否是管理员
+//     *
+//     * @param userId
+//     * @return
+//     */
+//    @RequestMapping(value = "checkIsManagerByUserId")
+//    Boolean checkIsManagerByUserId(@RequestParam("userId") String userId);
+
+
+//    /**
+//     * 根据设置的天数获取异常的管理员
+//     *
+//     * @param limitDay
+//     * @return
+//     */
+//    @RequestMapping(value = "getAbnormalInfo")
+//    List<MgeMonitorVO> getAbnormalInfo(@RequestParam("limitDay") int limitDay);
+
+//    @RequestMapping(value = "findByPropertyValue")
+//    List<ManageInfo> findByPropertyValue(@RequestParam("var1") String var1,
+//                                         @RequestParam("var2") String var2);
+
+//    /**
+//     * 根据机构ID获取用户管理员相关信息
+//     *
+//     * @param orgId
+//     * @return
+//     */
+//    @RequestMapping(value = "getManagerByOrgId")
+//    List<NoticeUserVO> getManagerByOrgId(@RequestParam("orgId") String orgId);
+//
+//    @RequestMapping(value = "getOrgMgeManager")
+//    List<NoticeUserVO> getOrgMgeManager(@RequestParam("orgId") String orgId);
+
+//    /**
+//     * 管理员导入
+//     *
+//     * @param vo
+//     * @return
+//     * @throws NumberFormatException
+//     */
+//    @PostMapping(value = "impManger")
+//    ResponseStatus impManger(@RequestBody ImpParamsVo vo) throws NumberFormatException;
+
+//    /**
+//     * 统计子级机构的各类管理员人数，为空时为统计根节点
+//     *
+//     * @param orgId
+//     * @return
+//     */
+//    @RequestMapping(value = "mgeSpreadDtlList")
+//    List<Map<String, String>> mgeSpreadDtlList(@RequestParam("orgId") String orgId);
+
+//    /**
+//     * 统计子级机构的各类管理员人数，为空时为统计根节点
+//     *
+//     * @param orgId
+//     * @return
+//     */
+//    @RequestMapping(value = "mgeSpreadDtlListForGD")
+//    List<Map<String, String>> mgeSpreadDtlListForGD(@RequestParam("orgId") String orgId);
+//
+//    @RequestMapping(value = "rightRangeManagerListWithQuery")
+//    Page<AuthUserDTO> rightRangeManagerListWithQuery(@RequestParam("type") String type,
+//                                                  @RequestParam("searchDTO") SearchDTO searchDTO);
+//
+//    @PostMapping(value = "getManageInfoList")
+//    Page<AuthUserDTO> getManageInfoList(@RequestBody SearchDTO searchDTO);
+//
+//    @RequestMapping(value = "exportAdminList")
+//    List<AuthUserDTO> exportAdminList(@RequestParam("orgInfoSets") Set<String> orgInfoSets,
+//                                   @RequestParam("adminLists") List<AuthUserDTO> adminLists);
+
+//    /**
+//     * 管理员搜索，返回List
+//     *
+//     * @param searchDTO
+//     * @return
+//     */
+//    @PostMapping(value = "mgeSearch")
+//    List<ManageInfo> mgeSearch(@RequestBody SearchDTO searchDTO);
+}

dcuc-auth-api/src/main/java/com/dragoninfo/dcuc/auth/admin/facade/IMgeLogFacade.java

@@ -0,0 +1,69 @@
+
+
+package com.dragoninfo.dcuc.auth.admin.facade;
+
+
+import com.dragoninfo.dcuc.auth.admin.dto.MgeLogDTO;
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RequestParam;
+
+import java.util.List;
+
+@FeignClient(name = "dcuc-auth", path = "/dcuc/auth/mgeLogFacade")
+public interface IMgeLogFacade {
+
+//    /**
+//     * 保存操作日志
+//     *
+//     * @param mgeLog
+//     * @return
+//     */
+//    @PostMapping(value = "save")
+//    void save(@RequestBody MgeLog mgeLog);
+
+    /**
+     * 查询审计列表
+     *
+     * @param type
+     * @param userId
+     * @return
+     */
+    @RequestMapping(value = "queryList")
+    List<MgeLogDTO> queryList(@RequestParam("type") String type,
+                           @RequestParam("userId") String userId);
+//    @PostMapping(value = "findUserMgeLogSummary")
+//    Page<UserMgeLogRptVo> findUserMgeLogSummary(@RequestBody SearchDTO searchDTO);
+
+//    @RequestMapping(value = "getMgeLog")
+//    MgeLog getMgeLog(@RequestParam("id") String id);
+
+    //    /**
+//     * 根据属性查找
+//     *
+//     * @param keyNmae
+//     * @param keyVale
+//     * @return
+//     */
+//    @RequestMapping(value = "findByPropertyValue")
+//    List<MgeLog> findByPropertyValue(@RequestParam("keyNmae") String keyNmae,
+//                                     @RequestParam("keyVale") String keyVale);
+
+//    /**
+//     * 管理员操作记录查询
+//     *
+//     * @param searchDTO
+//     * @return
+//     */
+//    @PostMapping(value = "findPage")
+//    Page<MgeLog> findPage(@RequestBody SearchDTO searchDTO);
+
+    //    /**
+//     * 获取管理员审计报表
+//     *
+//     * @param searchDTO
+//     * @return
+//     */
+//    @PostMapping(value = "findMgeAuditLogReport")
+//    Page<MgeLog> findMgeAuditLogReport(@RequestBody SearchDTO searchDTO);
+}

dcuc-auth-api/src/main/java/com/dragoninfo/dcuc/auth/admin/facade/ITempMtAuthFacade.java

@@ -0,0 +1,40 @@
+
+
+package com.dragoninfo.dcuc.auth.admin.facade;
+
+
+import com.dragonsoft.duceap.base.entity.http.ResponseStatus;
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RequestParam;
+
+@FeignClient(name = "dcuc-auth", path = "/dcuc/auth/tempMtAuthFacade")
+public interface ITempMtAuthFacade {
+    /**
+     * 查询用户拥有的授权管理范围
+     *
+     * @param userId
+     * @return
+     */
+    @RequestMapping(value = "mgeTempRightRangeStr")
+    String mgeTempRightRangeStr(@RequestParam("userId") String userId);
+
+    /**
+     * 广东：管理员临时管理范围保存
+     *
+     * @param orgIds
+     * @param userId
+     * @return
+     */
+    @RequestMapping(value = "save")
+    ResponseStatus save(@RequestParam("orgIds") String orgIds, @RequestParam("userId") String userId);
+
+    /**
+     * 检查是否有限授权范围
+     *
+     * @param userIds
+     * @return
+     */
+    @RequestMapping(value = "checkAuth")
+    ResponseStatus checkAuth(@RequestParam("userIds") String userIds);
+}

dcuc-auth-api/src/main/java/com/dragoninfo/dcuc/auth/audit/facade/IAuthenticationLogFacade.java

@@ -0,0 +1,29 @@
+package com.dragoninfo.dcuc.auth.audit.facade;
+
+import com.dragoninfo.dcuc.auth.audit.vo.AuthenticationLogVo;
+import com.dragoninfo.dcuc.auth.audit.vo.AuthenticationStatisticsVo;
+import com.dragonsoft.duceap.base.entity.search.SearchDTO;
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.data.domain.Page;
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.PathVariable;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestBody;
+
+/**
+ * @Author: qiuyu
+ * @Date: 2021/5/17 11:32
+ * @Description: 服务鉴权日志
+ */
+@FeignClient(name = "dcuc-auth", path = "/dcuc/auth/authenticationLog")
+public interface IAuthenticationLogFacade {
+
+    @PostMapping(value = "_search")
+    Page<AuthenticationLogVo> paging(@RequestBody SearchDTO searchDTO);
+
+    @GetMapping(value = "/{id}")
+    AuthenticationLogVo findOne(@PathVariable(value = "id") Long id);
+
+    @PostMapping(value = "/statistics")
+    Page<AuthenticationStatisticsVo> statistics(@RequestBody SearchDTO searchDTO);
+}

dcuc-auth-api/src/main/java/com/dragoninfo/dcuc/auth/audit/facade/IAuthorizeLogFacade.java

@@ -0,0 +1,26 @@
+package com.dragoninfo.dcuc.auth.audit.facade;
+
+import com.dragoninfo.dcuc.auth.audit.vo.AuthorizeLogDetailVo;
+import com.dragoninfo.dcuc.auth.audit.vo.AuthorizeLogVo;
+import com.dragonsoft.duceap.base.entity.search.SearchDTO;
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.data.domain.Page;
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.PathVariable;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestBody;
+
+/**
+ * @Author: qiuyu
+ * @Date: 2021/5/17 11:32
+ * @Description: 服务授权日志
+ */
+@FeignClient(name = "dcuc-auth", path = "/dcuc/auth/authorizeLog")
+public interface IAuthorizeLogFacade {
+
+    @PostMapping(value = "_search")
+    Page<AuthorizeLogVo> paging(@RequestBody SearchDTO searchDTO);
+
+    @GetMapping(value = "/{id}")
+    AuthorizeLogDetailVo findOne(@PathVariable(value = "id") Long id);
+}

dcuc-auth-api/src/main/java/com/dragoninfo/dcuc/auth/audit/facade/IRiskLogFacade.java

@@ -0,0 +1,25 @@
+package com.dragoninfo.dcuc.auth.audit.facade;
+
+import com.dragoninfo.dcuc.auth.audit.vo.RiskLogVo;
+import com.dragonsoft.duceap.base.entity.search.SearchDTO;
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.data.domain.Page;
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.PathVariable;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestBody;
+
+/**
+ * @Author: qiuyu
+ * @Date: 2021/5/17 11:32
+ * @Description: 鉴权风险日志
+ */
+@FeignClient(name = "dcuc-auth", path = "/dcuc/auth/riskLog")
+public interface IRiskLogFacade {
+
+    @PostMapping(value = "_search")
+    Page<RiskLogVo> paging(@RequestBody SearchDTO searchDTO);
+
+    @GetMapping(value = "/{id}")
+    RiskLogVo findOne(@PathVariable(value = "id") Long id);
+}

dcuc-auth-api/src/main/java/com/dragoninfo/dcuc/auth/audit/facade/IRiskProgrammeFacade.java

@@ -0,0 +1,46 @@
+package com.dragoninfo.dcuc.auth.audit.facade;
+
+import com.dragoninfo.dcuc.auth.audit.dto.RiskProgrammeDto;
+import com.dragoninfo.dcuc.auth.audit.dto.TaskInfo;
+import com.dragoninfo.dcuc.auth.audit.vo.RiskProgrammeVo;
+import com.dragonsoft.duceap.base.entity.search.SearchDTO;
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.data.domain.Page;
+import org.springframework.web.bind.annotation.*;
+
+import javax.validation.Valid;
+import java.util.Map;
+
+/**
+ * @Author: qiuyu
+ * @Date: 2021/5/17 11:32
+ * @Description: 鉴权风险方案
+ */
+@FeignClient(name = "dcuc-auth", path = "/dcuc/auth/riskProgramme")
+public interface IRiskProgrammeFacade {
+
+    @PostMapping(value = "_search")
+    Page<RiskProgrammeVo> paging(@RequestBody SearchDTO searchDTO);
+
+    @GetMapping(value = "/{id}")
+    RiskProgrammeVo findOne(@PathVariable(value = "id") Long id);
+
+    @PutMapping(value = "/{id}")
+    void save(@PathVariable(value = "id") Long id, @Valid @RequestBody RiskProgrammeDto riskProgrammeDto);
+
+    /**
+     * 获取风险任务相关配置（执行时间）
+     *
+     * @return
+     */
+    @GetMapping(value = "/programmeConfig")
+    Map<String, String> getProgrammeConfig();
+
+    /**
+     * 执行风险任务
+     *
+     * @param taskInfo 任务信息
+     */
+    @PostMapping(value = "/createRiskTask")
+    void runRiskTask(@RequestBody TaskInfo taskInfo);
+}

dcuc-auth-api/src/main/java/com/dragoninfo/dcuc/auth/audit/facade/IWarningLogFacade.java

@@ -0,0 +1,25 @@
+package com.dragoninfo.dcuc.auth.audit.facade;
+
+import com.dragoninfo.dcuc.auth.audit.vo.WarningLogVo;
+import com.dragonsoft.duceap.base.entity.search.SearchDTO;
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.data.domain.Page;
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.PathVariable;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestBody;
+
+/**
+ * @Author: qiuyu
+ * @Date: 2021/5/17 11:32
+ * @Description: 鉴权告警日志
+ */
+@FeignClient(name = "dcuc-auth", path = "/dcuc/auth/warningLog")
+public interface IWarningLogFacade {
+
+    @PostMapping(value = "_search")
+    Page<WarningLogVo> paging(@RequestBody SearchDTO searchDTO);
+
+    @GetMapping(value = "/{id}")
+    WarningLogVo findOne(@PathVariable(value = "id") Long id);
+}

dcuc-auth-api/src/main/java/com/dragoninfo/dcuc/auth/audit/facade/IWarningProgrammeFacade.java

@@ -0,0 +1,28 @@
+package com.dragoninfo.dcuc.auth.audit.facade;
+
+import com.dragoninfo.dcuc.auth.audit.dto.WarningProgrammeDto;
+import com.dragoninfo.dcuc.auth.audit.vo.WarningProgrammeVo;
+import com.dragonsoft.duceap.base.entity.search.SearchDTO;
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.data.domain.Page;
+import org.springframework.web.bind.annotation.*;
+
+import javax.validation.Valid;
+
+/**
+ * @Author: qiuyu
+ * @Date: 2021/5/17 11:32
+ * @Description: 鉴权预警方案
+ */
+@FeignClient(name = "dcuc-auth", path = "/dcuc/auth/warningProgramme")
+public interface IWarningProgrammeFacade {
+
+    @PostMapping(value = "_search")
+    Page<WarningProgrammeVo> paging(@RequestBody SearchDTO searchDTO);
+
+    @GetMapping(value = "/{id}")
+    WarningProgrammeVo findOne(@PathVariable(value = "id") Long id);
+
+    @PutMapping(value = "/{id}")
+    void save(@PathVariable(value = "id") Long id, @Valid @RequestBody WarningProgrammeDto warningProgrammeDto);
+}

dcuc-auth-api/src/main/java/com/dragoninfo/dcuc/auth/auth/api/IApiDataAuthFacade.java

@@ -0,0 +1,55 @@
+package com.dragoninfo.dcuc.auth.auth.api;
+
+import com.dragoninfo.dcuc.auth.auth.dto.DataItemsCheckDto;
+import com.dragoninfo.dcuc.auth.auth.dto.DataItemsDto;
+import com.dragoninfo.dcuc.auth.auth.dto.data.DataAuthV2ReqDTO;
+import com.dragoninfo.dcuc.auth.auth.dto.data.DataAuthV2RespDTO;
+import com.dragoninfo.dcuc.auth.auth.vo.DataAuthV2ReqVO;
+import com.dragonsoft.duceap.base.entity.http.ResponseDTO;
+import io.swagger.annotations.Api;
+import io.swagger.annotations.ApiOperation;
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.web.bind.annotation.RequestBody;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RequestMethod;
+import org.springframework.web.bind.annotation.RequestParam;
+
+/**
+ * Created by huanghy on 2018/7/9.
+ */
+@Api(description = "数据授权类")
+@FeignClient(name = "dcuc-auth")
+public interface IApiDataAuthFacade {
+
+
+    /**
+     * 查询是否拥有数据项权限接口
+     *
+     * @return
+     */
+    @ApiOperation(value = "查询是否拥有数据项权限接口", notes = "查询是否拥有数据项权限接口")
+    @RequestMapping(value = "/api/auth-service/v1/data-auth/data-items/check", method = RequestMethod.POST)
+    ResponseDTO dataItemsCheck(@RequestBody DataItemsCheckDto dataItemsCheckDto);
+
+    /**
+     * 数据鉴权
+     *
+     * @param authV2ReqDTO 数据鉴权请求
+     * @return 状态
+     */
+    @ApiOperation(value = "查询是否拥有数据项权限接口", notes = "查询是否拥有数据项权限接口")
+    @RequestMapping(value = "/api/auth-service/v2/data-auth/data-items/check", method = RequestMethod.POST)
+    ResponseDTO<DataAuthV2RespDTO> dataItemsCheckV2(@RequestBody DataAuthV2ReqDTO authV2ReqDTO);
+
+
+    /**
+     * 用户机构授权（应标用）
+     *
+     * @param idcard  身份证号
+     * @param orgCode 机构代码
+     * @return 数据项
+     */
+    @ApiOperation(value = "查询是否拥有数据项权限接口", notes = "查询是否拥有数据项权限接口")
+    @RequestMapping(value = "/api/auth-service/v1/data-auth/user-org-code-data-items", method = RequestMethod.POST)
+    DataItemsDto userOrgDataAuth(@RequestParam("idcard") String idcard, @RequestParam("orgCode") String orgCode);
+}

dcuc-auth-api/src/main/java/com/dragoninfo/dcuc/auth/auth/api/IZeroTrustAuthApplyFacade.java

@@ -0,0 +1,57 @@
+package com.dragoninfo.dcuc.auth.auth.api;
+
+import com.dragoninfo.dcuc.auth.api.vo.zerotrust.ZeroTrustDataRespVO;
+import com.dragoninfo.dcuc.auth.api.vo.zerotrust.ZeroTrustMessageRespVO;
+import com.dragoninfo.dcuc.auth.api.vo.zerotrust.authapply.ApiRoleAuthReqVo;
+import com.dragoninfo.dcuc.auth.api.vo.zerotrust.authapply.ApiServiceAuthReqVo;
+import com.dragoninfo.dcuc.auth.api.vo.zerotrust.authapply.AuthApplyRespVo;
+import com.dragoninfo.dcuc.auth.api.vo.zerotrust.role.ApiAppRoleRespVo;
+import com.dragoninfo.dcuc.auth.api.vo.zerotrust.role.ApiRolesReqVo;
+import com.dragoninfo.dcuc.auth.auth.vo.zerotrust.approval.ApprovalCallBackReqVO;
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestBody;
+
+import java.util.List;
+
+/**
+ * @author mazq
+ * @date 2023/11/23
+ */
+@FeignClient(name = "dcuc-auth", path = "/dcuc/auth/zeroTrustAuthApplyFacade")
+public interface IZeroTrustAuthApplyFacade {
+
+    /**
+     * 角色列表查询
+     * @param reqVo
+     * @return
+     */
+    @PostMapping(value = "appRoleInfos")
+    ZeroTrustDataRespVO<List<ApiAppRoleRespVo>> appRoleInfos(@RequestBody ApiRolesReqVo reqVo);
+
+    /**
+     * 角色授权申请
+     *
+     * @param reqVo
+     * @return
+     */
+    @PostMapping(value = "roleAuthApply")
+    ZeroTrustDataRespVO<AuthApplyRespVo> roleAuthApply(@RequestBody ApiRoleAuthReqVo reqVo);
+
+    /**
+     * 服务授权申请
+     *
+     * @param reqVo
+     * @return
+     */
+    @PostMapping("serviceAuthApply")
+    ZeroTrustDataRespVO<AuthApplyRespVo> serviceAuthApply(@RequestBody ApiServiceAuthReqVo reqVo);
+
+    /**
+     * 授权申请审批结果回调
+     * @param callBackReqVO
+     * @return
+     */
+    @PostMapping("callBack")
+    ZeroTrustMessageRespVO callBack(@RequestBody ApprovalCallBackReqVO callBackReqVO);
+}

dcuc-auth-api/src/main/java/com/dragoninfo/dcuc/auth/auth/api/IZeroTrustAuthFacade.java

@@ -0,0 +1,52 @@
+package com.dragoninfo.dcuc.auth.auth.api;
+
+import com.dragoninfo.dcuc.auth.api.vo.zerotrust.*;
+import com.dragoninfo.dcuc.auth.api.vo.zerotrust.authticate.*;
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestBody;
+
+/**
+ * @author mazq
+ * @date 2023/7/10
+ */
+@FeignClient(name = "dcuc-auth", path = "/dcuc/auth/zeroTrustAuth")
+public interface IZeroTrustAuthFacade {
+
+    /**
+     * 应用级鉴权
+     *
+     * @param appAuthReqVO 应用级鉴权请求
+     * @return 应用级权限
+     */
+    @PostMapping("appAuth")
+    ZeroTrustDataRespVO<String> appAuth(@RequestBody AppAuthReqVO appAuthReqVO);
+
+    /**
+     * 功能级鉴权
+     *
+     * @param functionAuthReqVO 功能级鉴权求
+     * @return 功能级鉴权
+     */
+    @PostMapping("functionAuth")
+    ZeroTrustDataRespVO<String> functionAuth(@RequestBody FunctionAuthReqVO functionAuthReqVO);
+
+    /**
+     * 服务级鉴权
+     *
+     * @param serviceAuthReqVO 服务级鉴权请求
+     * @return 服务级鉴权
+     */
+    @PostMapping("serviceAuth")
+    ZeroTrustDataRespVO<String> serviceAuth(@RequestBody ServiceAuthReqVO serviceAuthReqVO);
+
+    /**
+     * 数据级鉴权
+     *
+     * @param dataAuthReqVO 数据级鉴权
+     * @return 数据级鉴权
+     */
+    @PostMapping("dataAuth")
+    ZeroTrustDataRespVO<DataAuthRespVO> dataAuth(@RequestBody DataAuthReqVO dataAuthReqVO);
+
+}

dcuc-auth-api/src/main/java/com/dragoninfo/dcuc/auth/auth/dto/OrgQuotaOpeDTO.java

@@ -0,0 +1,131 @@
+package com.dragoninfo.dcuc.auth.auth.dto;
+
+import com.dragonsoft.duceap.base.entity.security.SecurityUser;
+
+public class OrgQuotaOpeDTO {
+    String orgQuotaList;
+    SecurityUser securityUser;
+    private String appId;
+    private String roleId;
+    private String targetOrgId;
+    private String upOrgId;
+    private String appOrgId;
+    private Integer initNum;
+    private Integer initNumOld;
+    private String rootId;
+    private String unitClass;
+    private String roleLevel;
+    private String targetOrgLevel;
+    private Integer addNum;
+    public String getOrgQuotaList() {
+        return orgQuotaList;
+    }
+
+    public void setOrgQuotaList(String orgQuotaList) {
+        this.orgQuotaList = orgQuotaList;
+    }
+
+    public SecurityUser getSecurityUser() {
+        return securityUser;
+    }
+
+    public void setSecurityUser(SecurityUser securityUser) {
+        this.securityUser = securityUser;
+    }
+
+    public String getAppId() {
+        return appId;
+    }
+
+    public void setAppId(String appId) {
+        this.appId = appId;
+    }
+
+    public String getRoleId() {
+        return roleId;
+    }
+
+    public void setRoleId(String roleId) {
+        this.roleId = roleId;
+    }
+
+    public String getTargetOrgId() {
+        return targetOrgId;
+    }
+
+    public void setTargetOrgId(String targetOrgId) {
+        this.targetOrgId = targetOrgId;
+    }
+
+    public String getUpOrgId() {
+        return upOrgId;
+    }
+
+    public void setUpOrgId(String upOrgId) {
+        this.upOrgId = upOrgId;
+    }
+
+    public String getAppOrgId() {
+        return appOrgId;
+    }
+
+    public void setAppOrgId(String appOrgId) {
+        this.appOrgId = appOrgId;
+    }
+
+    public Integer getInitNum() {
+        return initNum;
+    }
+
+    public void setInitNum(Integer initNum) {
+        this.initNum = initNum;
+    }
+
+    public Integer getInitNumOld() {
+        return initNumOld;
+    }
+
+    public void setInitNumOld(Integer initNumOld) {
+        this.initNumOld = initNumOld;
+    }
+
+    public String getRootId() {
+        return rootId;
+    }
+
+    public void setRootId(String rootId) {
+        this.rootId = rootId;
+    }
+
+    public String getUnitClass() {
+        return unitClass;
+    }
+
+    public void setUnitClass(String unitClass) {
+        this.unitClass = unitClass;
+    }
+
+    public String getRoleLevel() {
+        return roleLevel;
+    }
+
+    public void setRoleLevel(String roleLevel) {
+        this.roleLevel = roleLevel;
+    }
+
+    public String getTargetOrgLevel() {
+        return targetOrgLevel;
+    }
+
+    public void setTargetOrgLevel(String targetOrgLevel) {
+        this.targetOrgLevel = targetOrgLevel;
+    }
+
+    public Integer getAddNum() {
+        return addNum;
+    }
+
+    public void setAddNum(Integer addNum) {
+        this.addNum = addNum;
+    }
+}

dcuc-auth-api/src/main/java/com/dragoninfo/dcuc/auth/auth/facade/IAuthApplyFacade.java

@@ -0,0 +1,134 @@
+package com.dragoninfo.dcuc.auth.auth.facade;
+
+import com.dragoninfo.dcuc.auth.auth.dto.*;
+import com.dragoninfo.dcuc.auth.auth.vo.RedListRiskLogVo;
+import com.dragonsoft.duceap.base.entity.http.ResponseDTO;
+import com.dragonsoft.duceap.base.entity.http.ResponseStatus;
+import com.dragonsoft.duceap.base.entity.search.SearchDTO;
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.data.domain.Page;
+import org.springframework.web.bind.annotation.*;
+
+import java.util.List;
+
+/**
+ * 权限申请api
+ * @author mazq
+ * @date 2021/7/8
+ */
+@FeignClient(name = "dcuc-auth",path = "/dcuc/auth/selfAuthApplyFacade")
+public interface IAuthApplyFacade {
+
+    /**
+     * 应用功能权限申请
+     * @param authApplyDTO
+     * @return
+     */
+    @PostMapping("funApplySave")
+    ResponseStatus funApplySave(@RequestBody AppFunAuthApplyDTO authApplyDTO);
+
+    /**
+     * 应用功能权限申请详情
+     * @param applyOrdNo
+     * @param needFlowInfo
+     * @return
+     */
+    @PostMapping("funApplyDetail")
+    FunApplyDetailDTO funApplyDetail(@RequestParam("applyOrdNo") String applyOrdNo,
+                                     @RequestParam(value = "needFlowInfo", required = false) Boolean needFlowInfo);
+
+    /**
+     * 应用功能权限申请工单修改
+     * @param updateDTO
+     * @return
+     */
+    @PostMapping("funApplyUpdate")
+    ResponseStatus funApplyUpdate(@RequestBody AppFunApplyUpdateDTO updateDTO);
+
+    /**
+     * 通用
+     * 权限申请单列表
+     * @param searchDTO
+     * @return
+     */
+    @PostMapping("authApplySearch")
+    Page<WorkFlowPageViewDTO> authApplySearch(@RequestBody SearchDTO searchDTO);
+
+    /**
+     * 通用
+     * 工单撤销
+     * @param applyOrdNo
+     * @return
+     */
+    @GetMapping("authApplyCancel")
+    ResponseStatus authApplyCancel(@RequestParam("applyOrdNo") String applyOrdNo);
+
+    /**
+     * 通用
+     * 工单删除
+     * @param applyOrdNo
+     * @return
+     */
+    @DeleteMapping("authApplyDelete")
+    ResponseStatus authApplyDelete(@RequestParam("applyOrdNo") String applyOrdNo);
+
+    /**
+     * 根据工作流审批单号获取审批意见
+     * @param applyOrdNo
+     * @return
+     */
+    @GetMapping("approvalSuggestion")
+    List<ApprovalSuggestionDTO> approvalSuggestion(@RequestParam("applyOrdNo") String applyOrdNo);
+
+    /**
+     * 根据工作流审批单号获取流程状态
+     * @param applyOrdNo
+     * @return
+     */
+    @GetMapping("processStatusView")
+    List<ProcessStatusDTO> processStatusView(@RequestParam("applyOrdNo") String applyOrdNo);
+
+    /**
+     * 根据工作流审批单号获取流程图
+     * @param applyOrdNo
+     * @return
+     */
+    @GetMapping("processPicView")
+    ProcessPicDTO processPicView(@RequestParam("applyOrdNo") String applyOrdNo);
+
+    /**
+     * 查询流程状图节点详情
+     * @param applyOrdNo
+     * @param nodeKey 节点标识
+     * @param nodeStatus 节点状态
+     * @return
+     */
+    @GetMapping("processNodeView")
+    ProcessNodeDTO processNodeView(@RequestParam(value = "applyOrdNo") String applyOrdNo,
+                                   @RequestParam(value = "nodeKey") String nodeKey,
+                                   @RequestParam(value = "nodeStatus") String nodeStatus);
+
+    /**
+     * 查询流程定义
+     * @param applyType
+     * @return
+     */
+    @GetMapping("getFlowDefineInfo")
+    ResponseDTO<FlowDefineInfoDTO> getFlowDefineInfo(@RequestParam(value = "applyType") String applyType);
+
+    /**
+     * 自助申请
+     * @param resourceInfos
+     * @return
+     */
+    @PostMapping("redListCheck")
+    Boolean redListCheck(@RequestBody List<AppFunAuthResourceDTO> resourceInfos);
+
+    /**
+     * 权限申请命中红名单风险日志
+     * @param searchDTO
+     * @return
+     */
+    @PostMapping("redListApplyLog")
+    Page<RedListRiskLogVo> redListApplyLog(@RequestBody SearchDTO searchDTO);
+}

dcuc-auth-api/src/main/java/com/dragoninfo/dcuc/auth/auth/facade/IAuthMenuFacade.java

@@ -0,0 +1,28 @@
+package com.dragoninfo.dcuc.auth.auth.facade;
+
+import com.dragoninfo.dcuc.auth.auth.dto.AuthMenuDTO;
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestBody;
+
+import java.util.List;
+
+
+/**
+ * 权限菜单资源管理api
+ * @author mazq
+ * @date 2021/8/23
+ */
+@FeignClient(name = "dcuc-auth",path = "/dcuc/auth/IAuthMenuFacade")
+public interface IAuthMenuFacade {
+
+    @GetMapping("getAllMenus")
+    List<AuthMenuDTO> getAllMenus();
+
+    @PostMapping("getMenuByIds")
+    List<AuthMenuDTO> getMenuByIds(@RequestBody List<String> ids);
+
+    @PostMapping("getMenuByCods")
+    List<AuthMenuDTO> getMenuByCods(@RequestBody List<String> appFunCodes);
+}

dcuc-auth-api/src/main/java/com/dragoninfo/dcuc/auth/auth/facade/IAuthRoleOrgRelFacade.java

@@ -0,0 +1,46 @@
+package com.dragoninfo.dcuc.auth.auth.facade;
+
+import com.dragoninfo.dcuc.auth.auth.vo.zerotrust.roleorgauth.RoleOrgAuthSaveVo;
+import com.dragoninfo.dcuc.auth.auth.vo.zerotrust.roleorgauth.RoleOrgAuthVo;
+import com.dragonsoft.duceap.base.entity.http.ResponseStatus;
+import com.dragonsoft.duceap.base.entity.search.SearchDTO;
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.data.domain.Page;
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestBody;
+import org.springframework.web.bind.annotation.RequestParam;
+
+import java.util.List;
+
+/**
+ * @author mazq
+ * @date 2023/6/6
+ */
+@FeignClient(name = "dcuc-auth",path = "/dcuc/auth/authRoleOrgRelFacade")
+public interface IAuthRoleOrgRelFacade {
+    /**
+     * 机构角色授权分页查询
+     * @param searchDTO
+     * @return
+     */
+    @PostMapping("roleAuthPage")
+    Page<RoleOrgAuthVo> roleAuthPage(@RequestBody SearchDTO searchDTO);
+
+    /**
+     * 机构角色授权保存
+     * @param saveVo
+     * @return
+     */
+    @PostMapping("roleAuthSave")
+    ResponseStatus roleAuthSave(@RequestBody RoleOrgAuthSaveVo saveVo);
+
+    /**
+     * 获取已授权的角色id
+     * @return
+     * @param orgId
+     */
+    @GetMapping("getAuthRoleIds")
+    List<String> getAuthRoleIds(@RequestParam("orgId") String orgId);
+
+}

dcuc-auth-api/src/main/java/com/dragoninfo/dcuc/auth/auth/facade/IBimBusinessFacade.java

@@ -0,0 +1,71 @@
+package com.dragoninfo.dcuc.auth.auth.facade;
+
+import com.dragoninfo.dcuc.auth.auth.vo.bim.BimUserInfoItemRespVO;
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestParam;
+
+/**
+ * @author huangzqa
+ * @date 2021/4/9
+ **/
+@FeignClient(name = "dcuc-auth", path = "/dcuc/auth/bimBusinessFacade")
+public interface IBimBusinessFacade {
+
+    /**
+     * 校验令牌
+     *
+     * @param userToken 用户令牌
+     * @param appToken  应用令牌
+     * @return 是否有效
+     */
+    @GetMapping("checkToken")
+    boolean checkToken(@RequestParam("userToken") String userToken, @RequestParam("appToken") String appToken);
+
+    /**
+     * 校验用户令牌
+     *
+     * @param userToken 用户令牌
+     * @return 是否有效
+     */
+    @GetMapping("checkUserToken")
+    boolean checkUserToken(@RequestParam("userToken") String userToken);
+
+    /**
+     * 缓存用户令牌
+     *
+     * @param idcard    身份证号
+     * @param userToken 用户令牌
+     * @param expAt     失效时间（秒）
+     */
+    @PostMapping("cacheUserToken")
+    void cacheUserToken(@RequestParam("idcard") String idcard, @RequestParam("userToken") String userToken, @RequestParam("expAt") Integer expAt);
+
+    /**
+     * 获取用户信息
+     *
+     * @param userToken 用户令牌
+     * @return 用户信息
+     */
+    @PostMapping("getUserInfoByUserToken")
+    BimUserInfoItemRespVO getUserInfoByUserToken(@RequestParam("userToken") String userToken);
+
+    /**
+     * 获取用户令牌
+     *
+     * @param needReGet 需要重新获取
+     * @return 用户令牌
+     */
+    @GetMapping("getUserToken")
+    String getUserToken(@RequestParam("needReGet") boolean needReGet);
+
+    /**
+     * 获取应用令牌
+     *
+     * @param needReGet 需要重新获取
+     * @return 应用令牌
+     */
+    @GetMapping("getAppToken")
+    String getAppToken(@RequestParam("userToken") String userToken, @RequestParam("needReGet") boolean needReGet);
+}

dcuc-auth-api/src/main/java/com/dragoninfo/dcuc/auth/auth/facade/IDataAuthFacade.java

@@ -0,0 +1,93 @@
+package com.dragoninfo.dcuc.auth.auth.facade;
+
+import com.dragoninfo.dcuc.auth.auth.dto.data.*;
+import com.dragoninfo.dcuc.auth.auth.vo.BusResultVO;
+import com.dragoninfo.dcuc.auth.auth.vo.DataAuthTreeReactVo;
+import com.dragonsoft.duceap.base.entity.search.SearchDTO;
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestBody;
+import org.springframework.web.bind.annotation.RequestParam;
+
+import java.util.List;
+
+/**
+ * 数据权限API
+ * @author mazq
+ * @date 2021/4/8
+ */
+@FeignClient(name = "dcuc-auth",path = "/dcuc/auth/dataAuthFacade")
+public interface IDataAuthFacade {
+
+    /**
+     * 主体数据权限批量新增
+     * @param subDataAuthDTO
+     * @return
+     */
+    @PostMapping(value = "subDataAuthAdd")
+    void subDataAuthAdd(@RequestBody SubDataAuthDTO subDataAuthDTO);
+
+    /**
+     * 根据主体id和type查询主体数据权限集合
+     * @param queryDTO
+     * @return
+     */
+    @PostMapping(value = "getSubDataAuth")
+    List<DataClassifyDTO> getSubDataAuth(@RequestBody SubDataAuthQueryDTO queryDTO);
+
+
+    /**
+     * 人员相关所有数据权限,只限于表或列中的一种
+     * @param userId 人员id
+     * @param authType 数据属性授权类型 TABLE:表授权 COLUMN：列授权
+     * @return
+     */
+    @GetMapping(value = "userDataAuthInfoById")
+    List<DataClassifyDTO> userDataAuthInfoByUserId(@RequestParam("userId") String userId,@RequestParam(value = "authType", required = false) String authType);
+
+    /**
+     * 人员相关所有数据权限,只限于表或列中的一种
+     * @param idcard 身份证号
+     * @param authType 数据属性授权类型 TABLE:表授权 COLUMN：列授权
+     * @return
+     */
+    @GetMapping(value = "userDataAuthInfoByIdcard")
+    List<DataClassifyDTO> userDataAuthInfoByIdcard(@RequestParam("idcard") String idcard,@RequestParam(value = "authType", required = false) String authType);
+
+    /**
+     * 批量获取主体数据授权内容
+     * @param dtos
+     * @return
+     */
+    @PostMapping(value = "subDataAuthList")
+    List<DataClassifyDTO> subDataAuthList(@RequestBody List<SubDataAuthQueryDTO> dtos);
+
+
+    /**
+     * 数据清单查询接口
+     * @param searchDTO 查询条件
+     * @return
+     */
+    @PostMapping(value = "dataDetailList")
+    BusResultVO dataDetailList(@RequestBody SearchDTO searchDTO);
+
+    /**
+     * 人员视角-有权限的数据资源查询(树结构)-根据身份证号查询
+     * @param idcard 身份证
+     * @param authType 授权类型
+     * @return
+     */
+    @GetMapping(value = "userDataTreeByIdcard")
+    List<DataResourceDTO> userDataTreeByIdcard(@RequestParam("idcard") String idcard, @RequestParam(value = "authType",required = false) String authType);
+
+    /**
+     * 数据资源树勾选联动
+     *
+     * @param treeReactVo
+     * @return
+     */
+    @PostMapping("tree-react")
+    List<DataClassifyDTO> treeReact(@RequestBody DataAuthTreeReactVo treeReactVo);
+
+}

dcuc-auth-api/src/main/java/com/dragoninfo/dcuc/auth/auth/facade/IFunAuthResultFacade.java

@@ -0,0 +1,48 @@
+package com.dragoninfo.dcuc.auth.auth.facade;
+
+import com.dragoninfo.dcuc.auth.auth.dto.AppFunAuthResultDTO;
+import com.dragoninfo.dcuc.auth.auth.dto.AppFunInfoDTO;
+import com.dragonsoft.duceap.base.entity.search.SearchDTO;
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestBody;
+import org.springframework.web.bind.annotation.RequestParam;
+
+import java.util.List;
+
+/**
+ * 应用功能授权结果api
+ * @author mazq
+ * @date 2021/7/9
+ */
+@FeignClient(name = "dcuc-auth",path = "/dcuc/auth/funAuthResultFacade")
+public interface IFunAuthResultFacade {
+
+    /**
+     * 查询列表
+     * @param searchDTO
+     * @return
+     */
+    @PostMapping(value = "findList")
+    List<AppFunAuthResultDTO> findList(@RequestBody SearchDTO searchDTO);
+
+    /**
+     * 获取申请人已被授权的功能id
+     * @param userId
+     * @param appId
+     * @return
+     */
+    @GetMapping("userHasAuthFunIds")
+    List<String> userHasAuthFunIds(@RequestParam("userId") String userId, @RequestParam(value = "appId" ,required = false) String appId);
+
+    /**
+     * 获取功能授权结果
+     * @param userId
+     * @param appId
+     * @return
+     */
+    @GetMapping("getFunAuthByUserId")
+    List<AppFunInfoDTO> getFunAuthByUserId(@RequestParam(value = "userId") String userId,
+                                           @RequestParam(value = "appId", required = false) String appId);
+}

dcuc-auth-api/src/main/java/com/dragoninfo/dcuc/auth/auth/facade/IOrgQuotaAuthFacade.java

@@ -0,0 +1,101 @@
+package com.dragoninfo.dcuc.auth.auth.facade;
+
+import com.dragoninfo.dcuc.auth.auth.dto.OrgQuotaOpeDTO;
+import com.dragoninfo.dcuc.auth.auth.entity.OrgQuotaAuthInfo;
+import com.dragonsoft.duceap.base.entity.http.ResponseStatus;
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestBody;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RequestParam;
+
+
+import java.util.*;
+
+/**
+ * Created by liws on 2018/6/28.
+ */
+@FeignClient(name = "dcuc-auth",path = "/dcuc/auth/orgQuotaAuthFacade")
+public interface IOrgQuotaAuthFacade {
+
+    /**
+     * 获取管辖范围内机构的机构配额分配信息
+     *
+     * @return
+     */
+    @RequestMapping(value = "getOrgQuotaInfos")
+    List<OrgQuotaAuthInfo> getOrgQuotaInfos(@RequestParam("applicationId")String applicationId,
+                                            @RequestParam("roleId")String roleId,
+                                            @RequestParam("orgIds")String orgIds);
+
+
+    /**
+     * 本级权限收回
+     *
+     * @param applicationId:应用ID
+     * @param roleId:角色ID
+     * @param orgId:权限所属机构ID
+     * @return
+     */
+    @RequestMapping(value = "authCancelSelf")
+    ResponseStatus authCancelSelf(@RequestParam("applicationId")String applicationId,
+                                         @RequestParam("roleId")String roleId,
+                                         @RequestParam("orgId")String orgId,
+                                         @RequestParam("appMtAuthOrgIds")String appMtAuthOrgIds);
+
+
+    /**
+     * 全部权限收回
+     *
+     * @param appId:应用ID
+     * @param roleId:角色ID
+     * @param orgId:权限所属机构ID
+     * @return
+     */
+    @RequestMapping(value = "authCancelChild")
+    ResponseStatus authCancelChild(@RequestParam("appId")String appId,
+                                          @RequestParam("roleId")String roleId,
+                                          @RequestParam("orgId")String orgId);
+
+
+    /**
+     * 配额批量计算下发保存
+     *
+     * @return
+     */
+    @PostMapping(value = "orgQutaInfoCalSave")
+    ResponseStatus orgQutaInfoCalSave(@RequestBody OrgQuotaOpeDTO orgQuotaOpeDTO);
+
+    /**
+     * 配额修改保存
+     *
+     * @param orgQuotaOpeDTO
+     * @return
+     */
+    @PostMapping(value = "updateOrgQuotaSave")
+    ResponseStatus updateOrgQuotaSave(@RequestBody OrgQuotaOpeDTO orgQuotaOpeDTO);
+
+//    /**
+//     * 机构移动时同步修改机构配额
+//     * @param orgId
+//     * @param orgUpId
+//     * @param newUpId
+//     * @return
+//     */
+//    @RequestMapping(value = "changeQuotaWhenOrgMove")
+//    ResponseStatus changeQuotaWhenOrgMove(@RequestParam("orgId")String orgId,
+//                                          @RequestParam("orgUpId")String orgUpId,
+//                                          @RequestParam("newUpId")String newUpId);
+
+//    /**
+//     * 机构合并是同步修改机构配额
+//     * @param orgId
+//     * @param oldUpId
+//     * @param newUpId
+//     * @return
+//     */
+//    @RequestMapping(value = "changeQuotaWhenOrgMerfe")
+//    ResponseStatus changeQuotaWhenOrgMerfe(@RequestParam("orgId")String orgId,
+//                                           @RequestParam("oldUpId")String oldUpId,
+//                                           @RequestParam("newUpId")String newUpId);
+}

dcuc-auth-api/src/main/java/com/dragoninfo/dcuc/auth/auth/facade/IOrgQuotaAuthLogFacade.java

@@ -0,0 +1,42 @@
+
+package com.dragoninfo.dcuc.auth.auth.facade;
+
+import com.dragoninfo.dcuc.auth.auth.entity.OrgQuotaAuthLog;
+import com.dragonsoft.duceap.base.entity.http.ResponseDTO;
+import com.dragonsoft.duceap.base.entity.http.ResponseStatus;
+import com.dragonsoft.duceap.base.entity.search.SearchDTO;
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.data.domain.Page;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestBody;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RequestParam;
+
+import java.util.List;
+import java.util.Map;
+@FeignClient(name = "dcuc-auth",path = "/dcuc/auth/orgQuotaAuthLogFacade")
+public interface IOrgQuotaAuthLogFacade {
+    /**
+     * 添加日志
+     * @param orgQuotaAuthLog 机构配额日志
+     * @return responseDTO 保存是否成功
+     */
+    @PostMapping(value = "saveOrgQuotaAuthLog")
+    ResponseDTO saveOrgQuotaAuthLog(@RequestBody OrgQuotaAuthLog orgQuotaAuthLog);
+
+    /**
+     * 获取机构配额更改记录
+     * @param orgId 机构ID
+     * @param roleId 角色ID
+     * @return 机构配额变更日志列表
+     */
+    @RequestMapping(value = "orgQutoAuthLogList")
+    List<OrgQuotaAuthLog> orgQutoAuthLogList(@RequestParam("orgId")String orgId,
+                                             @RequestParam("roleId")String roleId);
+
+    @PostMapping(value = "saveAll")
+    ResponseStatus saveAll(@RequestBody List<OrgQuotaAuthLog> orgQuotaAuthLogs);
+
+    @PostMapping(value = "operateList")
+    Page<Map<String,String>> operateList(@RequestParam("searchDTO")SearchDTO searchDTO);
+}

dcuc-auth-api/src/main/java/com/dragoninfo/dcuc/auth/auth/facade/IPermissionNotificationFacade.java

@@ -0,0 +1,65 @@
+package com.dragoninfo.dcuc.auth.auth.facade;
+
+import com.dragonsoft.duceap.base.entity.http.ResponseStatus;
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.web.bind.annotation.RequestBody;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RequestParam;
+
+import java.util.List;
+
+/**
+ * 权限变更通知
+ *
+ * @author huangzqa
+ * @date 2020/7/12
+ */
+@FeignClient(name = "dcuc-auth", path = "/dcuc/auth/permissionNotificationFacade")
+public interface IPermissionNotificationFacade {
+
+    /**
+     * 发送应用中的应用变更
+     *
+     * @param id 应用ID
+     * @return 状态
+     */
+    @RequestMapping(value = "sendAppAppUpdate")
+    ResponseStatus sendAppAppUpdate(@RequestParam("id") String id);
+
+    /**
+     * 发送API中的应用变更
+     *
+     * @param id 应用ID
+     * @return 状态
+     */
+    @RequestMapping(value = "sendApiAppUpdate")
+    ResponseStatus sendApiAppUpdate(@RequestParam("id") String id);
+
+    /**
+     * 发送API中的API变更
+     *
+     * @param id APIId
+     * @return 状态
+     */
+    @RequestMapping(value = "sendApiApiUpdate")
+    ResponseStatus sendApiApiUpdate(@RequestParam("id") String id);
+
+    /**
+     * 发送应用权限变更
+     *
+     * @param userTokens 用户令牌
+     * @return 状态
+     */
+    @RequestMapping(value = "sendAppTokens")
+    ResponseStatus sendAppTokens(@RequestBody List<String> userTokens);
+
+    /**
+     * 发送接口权限变更
+     *
+     * @param userTokens 用户令牌
+     * @return 状态
+     */
+    @RequestMapping(value = "sendApiTokens")
+    ResponseStatus sendApiTokens(@RequestBody List<String> userTokens);
+
+}

dcuc-auth-api/src/main/java/com/dragoninfo/dcuc/auth/auth/facade/IRoleAuthInfoFacade.java

@@ -0,0 +1,100 @@
+package com.dragoninfo.dcuc.auth.auth.facade;
+
+import com.dragoninfo.dcuc.auth.auth.entity.StaffAssignAuthInfo;
+import com.dragoninfo.dcuc.auth.auth.vo.RoleInfoVO;
+import com.dragoninfo.dcuc.auth.auth.vo.TreeInfoVO;
+import com.dragoninfo.dcuc.auth.auth.vo.zerotrust.roleauthapply.ApplyRoleInVo;
+import com.dragoninfo.dcuc.auth.auth.vo.zerotrust.roleauthapply.RoleAuthApplySaveVo;
+import com.dragonsoft.duceap.base.entity.http.ResponseStatus;
+import com.dragonsoft.duceap.base.entity.search.SearchDTO;
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.data.domain.Page;
+import org.springframework.web.bind.annotation.*;
+
+import java.util.List;
+import java.util.Map;
+
+/**
+ * @Description:
+ * @Author: huanghy
+ * @Date: Created in 2018/6/28 9:31
+ * @Since:
+ * @Modified by:
+ */
+@FeignClient(name = "dcuc-auth",path = "/dcuc/auth/roleAuthInfoFacade")
+public interface IRoleAuthInfoFacade {
+
+    /**
+     * 根据应用id和角色id获取勾选人员
+     *
+     */
+    @GetMapping(value = "getStaff")
+    List<StaffAssignAuthInfo> getStaff(@RequestParam("roleId")String roleId,
+                                       @RequestParam("orgId")String orgId);
+
+    /**
+     * 根据应用id和机构id获取角色以及角色配额列表
+     * @param appId 应用id
+     * @param orgId 机构id
+     * @param searchDTO 查询条件
+     * @return 角色列表配额
+     */
+    @RequestMapping(value = "getOrgRoleQuotaList")
+    Page<RoleInfoVO> getOrgRoleQuotaList(@RequestParam("appId")String appId,
+                                         @RequestParam("orgId")String orgId,
+                                         @RequestParam("searchDTO")SearchDTO searchDTO);
+
+    /**
+     * 根据应用id获取权限授权信息
+     * @param appId
+     * @param searchDTO
+     * @return
+     */
+    @RequestMapping(value = "getRptList1")
+    Page<TreeInfoVO> getRptList(@RequestParam("appId")String appId,
+                                @RequestParam("searchDTO")SearchDTO searchDTO);
+
+    /**
+     * 根据应用id和机构id获取权限授权信息
+     * searchDTO
+     * @param searchDTO
+     * @return
+     */
+    @PostMapping(value = "getRptList2")
+    Page<TreeInfoVO> getRptList(@RequestBody SearchDTO searchDTO);
+
+    /**
+     *
+     * @param appId
+     * @param orgCode
+     * @return
+     */
+    @RequestMapping(value = "getRoleTjInfo")
+    Map<String,Object> getRoleTjInfo(@RequestParam("appId")String appId,
+                                     @RequestParam("orgCode")String orgCode);
+
+    /**
+     * @param appId
+     * @return
+     */
+    @RequestMapping(value = "getRptOrgListByPid")
+    List<TreeInfoVO> getRptOrgListByPid(@RequestParam(value = "appId", required = true) String appId,
+                                        @RequestParam(value = "orgId", required = false) String orgId,
+                                        @RequestParam(value = "isInit", required = false) boolean isInit);
+
+    /**
+     * 角色授权申请
+     * @param saveVo
+     * @return
+     */
+    @PostMapping("roleAuthApply")
+    ResponseStatus roleAuthApply(@RequestBody RoleAuthApplySaveVo saveVo);
+
+    /**
+     * 角色授权-角色列表
+     * @param searchDTO
+     * @return
+     */
+    @PostMapping("applyRoleList")
+    List<ApplyRoleInVo> applyRoleList(@RequestBody SearchDTO searchDTO);
+}

dcuc-auth-api/src/main/java/com/dragoninfo/dcuc/auth/auth/facade/IRoleFacade.java

@@ -0,0 +1,248 @@
+package com.dragoninfo.dcuc.auth.auth.facade;
+
+import com.dragoninfo.dcuc.auth.auth.dto.AppFunInfoDTO;
+import com.dragoninfo.dcuc.auth.auth.dto.RoleApiDto;
+import com.dragoninfo.dcuc.auth.auth.entity.RoleInfo;
+import com.dragoninfo.dcuc.auth.auth.vo.RsGridCheckedVO;
+import com.dragonsoft.duceap.base.entity.http.ResponseDTO;
+import io.swagger.annotations.Api;
+import io.swagger.annotations.ApiImplicitParam;
+import io.swagger.annotations.ApiImplicitParams;
+import io.swagger.annotations.ApiOperation;
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.web.bind.annotation.*;
+
+import java.util.List;
+import java.util.Map;
+
+/**
+ * Created by huanghy on 2018/7/9.
+ */
+@Api(description = "角色服务类")
+@FeignClient(name = "dcuc-auth",path = "/dcuc/auth/roleFacade")
+public interface IRoleFacade {
+
+    @RequestMapping(value = "checkIn")
+    void checkIn();
+
+    /**
+     * 根据应用id获取角色列表
+     *
+     * @param appId 应用id
+     * @return
+     */
+    @ApiOperation(value = "根据应用id获取角色列表", httpMethod = "GET", nickname = "/dcuc/auth/rolesbyappid/{appId}"
+            , response = List.class)
+    @ApiImplicitParams({@ApiImplicitParam(paramType = "path", name = "appId", value = "应用id", required = true
+            , example = "36364")})
+    @RequestMapping(value = "getRolesByAppId")
+    List<RoleInfo> getRolesByAppId(@RequestParam("appId") String appId);
+
+    /**
+     * 角色详情
+     *
+     * @param id 角色id
+     * @return
+     */
+    @ApiOperation(value = "角色详情", httpMethod = "GET", nickname = "/dcuc/auth/role/detail/{id}"
+            , response = RoleInfo.class)
+    @ApiImplicitParams({@ApiImplicitParam(paramType = "path", name = "id", value = "角色id", required = true
+            , example = "36364")})
+    @RequestMapping(value = "detail")
+    RoleInfo detail(@RequestParam("id")String id);
+
+    /**
+     * 根据角色id获取角色下用户ids
+     *
+     * @param id 角色id
+     * @return
+     */
+    @ApiOperation(value = "根据角色id获取角色下用户ids", httpMethod = "GET", nickname = "/dcuc/auth/useridsbyrole/{id}"
+            , response = List.class)
+    @ApiImplicitParams({@ApiImplicitParam(paramType = "path", name = "id", value = "角色id", required = true
+            , example = "36365")})
+    @RequestMapping(value = "getUserIds")
+    List<String> getUserIds(@RequestParam("id")String id);
+
+
+    /**
+     * 根据角色获取角色的菜单以及功能事件
+     *
+     * @param id 角色id
+     * @return
+     */
+    @ApiOperation(value = "根据角色获取角色的菜单以及功能事件", httpMethod = "GET", nickname = "/dcuc/auth/menueventsbyrole/{id}"
+            , response = List.class)
+    @ApiImplicitParams({@ApiImplicitParam(paramType = "path", name = "id", value = "角色id", required = true
+            , example = "36365")})
+    @RequestMapping(value = "getRsGridChecked")
+    List<RsGridCheckedVO> getRsGridChecked(@RequestParam("id")String id);
+
+    /**
+     * 根据用户id获取角色列表
+     *
+     * @param userId 人员id
+     * @return
+     */
+    @ApiOperation(value = "根据用户id获取角色列表", httpMethod = "GET", nickname = "/dcuc/auth/roles/{userId}"
+            , response = RoleInfo.class)
+    @ApiImplicitParams({@ApiImplicitParam(paramType = "path", name = "userId", value = "用户id", required = true
+            , example = "1111111111111111")})
+    @RequestMapping(value = "rolesByUserId")
+    List<RoleInfo> rolesByUserId(@RequestParam("userId")String userId);
+
+    /**
+     * 根据角色ids获取角色的菜单
+     *
+     * @param roleIds 角色ids
+     * @return
+     */
+    @ApiOperation(value = "根据角色ids获取角色的菜单", httpMethod = "GET", nickname = "/dcuc/auth/menusbyroles"
+            , response = List.class)
+    @ApiImplicitParams({@ApiImplicitParam(paramType = "query", name = "roleIds", value = "角色ids", required = true
+            , example = "36365")})
+    @RequestMapping(value = "getFunsByRoles")
+    List<String> getFunsByRoles(@RequestParam("roleIds")String roleIds);
+
+    /**
+     * 根据userId，appCode获取用户权限列表
+     *
+     * @param roleIds 角色ids
+     * @return
+     */
+    @ApiOperation(value = "根据根据userId，appCode获取用户权限列表", httpMethod = "GET", nickname = "/dcuc/auth/menusbyuserid"
+            , response = List.class)
+    @ApiImplicitParams({@ApiImplicitParam(paramType = "query", name = "userId", value = "用户id", required = true
+            , example = "36365"),
+            @ApiImplicitParam(paramType = "query",name = "appCode",value = "应用code",required = true
+                    ,example = "DCUC")})
+    @RequestMapping(value = "getAuthByUserIdAndAppCode")
+    List<String> getAuthByUserIdAndAppCode(@RequestParam("userId")String userId,
+                                           @RequestParam("appCode")String appCode);
+
+    /**
+     * 根据userId，appCode获取用户拥有的应用权限列表
+     *
+     * @param userId 用户id
+     * @return
+     */
+    @ApiOperation(value = "根据根据userId，appCode获取用户权限列表", httpMethod = "GET", nickname = "/dcuc/auth/menusbyuserid"
+            , response = List.class)
+    @ApiImplicitParams({@ApiImplicitParam(paramType = "query", name = "userId", value = "用户id", required = true
+            , example = "36365"),
+            @ApiImplicitParam(paramType = "query",name = "appCode",value = "应用code",required = true
+                    ,example = "DCUC")})
+    @RequestMapping(value = "getAppAuthByUserIdAndAppCode")
+    List<Map<String,String>> getAppAuthByUserIdAndAppCode(@RequestParam("userId")String userId,
+                                                          @RequestParam("appCode")String appCode);
+
+    /**
+     * 根据userId，appCode获取用户拥有的应用角色列表
+     *
+     * @param appCode 应用code
+     * @param userId 用户id
+     * @return
+     */
+    @ApiOperation(value = "根据根据userId，appCode获取用户拥有的应用角色列表", httpMethod = "GET", nickname = "/dcuc/auth/roles/{appCode}/{userId}"
+            , response = ResponseDTO.class)
+    @ApiImplicitParams({@ApiImplicitParam(paramType = "query", name = "userId", value = "用户id", required = true
+            , example = "36365"),
+            @ApiImplicitParam(paramType = "query",name = "appCode",value = "应用code",required = true
+                    ,example = "DCUC")})
+    @RequestMapping(value = "getRolesByAppCodeAndUserId")
+    ResponseDTO getRolesByAppCodeAndUserId(@RequestParam("appCode")String appCode,
+                                           @RequestParam("userId")String userId);
+
+    /**
+     * 根据userId，appCode
+     * 获取用户拥有的应用权限列表(forHZ)
+     *
+     * @param userId 用户id
+     * @return
+     */
+    @RequestMapping(value = "getAppAuthByUserIdAndAppCodeForHZ")
+    List<Map<String,String>> getAppAuthByUserIdAndAppCodeForHZ(@RequestParam("userId")String userId,
+                                                               @RequestParam("appCode")String appCode);
+
+    /**
+     * 根据角色代码，应用代码获取角色详情
+     * @param code
+     * @param appCode
+     * @return
+     */
+    @RequestMapping(value = "roleByCode")
+    RoleInfo roleByCode(@RequestParam("code")String code,
+                        @RequestParam("appCode")String appCode);
+
+    @RequestMapping(value = "getRolesDetailByAppCodeAndUserId")
+    ResponseDTO getRolesDetailByAppCodeAndUserId(@RequestParam("appCode")String appCode,
+                                                 @RequestParam("userId")String userId);
+
+    @RequestMapping(value = "getAuthsDetailsByUserIdAndAppCode")
+    List<Map<String, Object>> getAuthsDetailsByUserIdAndAppCode(@RequestParam("userId")String userId,
+                                                                @RequestParam("appCode")String appCode);
+
+    @RequestMapping(value = "getRolesByUserIdAndAppCode")
+    List<RoleInfo> getRolesByUserIdAndAppCode(@RequestParam("userId")String userId,
+                                              @RequestParam("appCode")String appCode);
+
+    /**
+     * 获取权限列表成功
+     *
+     * @param dto
+     * @return List<Map<String, Object>>
+     */
+    @PostMapping(value = "getRoleRight")
+    List<Map<String, Object>> getRoleRight(@RequestBody RoleApiDto dto);
+
+    /**
+     * 获取角色列表成功
+     * @param dto
+     * @return List<Map<String, Object>>
+     */
+    @PostMapping(value = "getRoleByAppCodeAndUserId")
+    List<Map<String, Object>> getRoleByAppCodeAndUserId(@RequestBody RoleApiDto dto);
+
+    /**
+     * 获取用户菜单权限列表
+     * @param dto
+     * @return
+     */
+    @PostMapping(value = "getMenus")
+    List<AppFunInfoDTO> getMenus(@RequestBody RoleApiDto dto);
+
+    /**
+     * 根据身份证ID找到这个赋予的应用
+     * @param idcard
+     * @return
+     */
+    @RequestMapping(value = "appListByIdcard")
+     List<Map<String, String>> appListByIdcard(@RequestParam("idcard") String idcard);
+
+    /**
+     * 根据idcard，appCode获取用户权限列表
+     * @param idcard
+     * @param appCode
+     * @return
+     */
+    @GetMapping("getAuthByIdcardAndAppCode")
+    List<String> getAuthByIdcardAndAppCode(@RequestParam("idcard") String idcard,@RequestParam("appCode") String appCode);
+
+    /**
+     * 根据idcard，appCode获取用户拥有的应用角色列表
+     * @param appCode
+     * @param idcard
+     * @return
+     */
+    @GetMapping("getRolesByAppCodeAndIdcard")
+    ResponseDTO getRolesByAppCodeAndIdcard(@RequestParam("appCode") String appCode,@RequestParam("idcard") String idcard);
+
+    /**
+     * 根据idcard，appCode获取用户拥有的应用权限列表
+     * @param idcard
+     * @param appCode
+     * @return
+     */
+    @GetMapping("getAppAuthByIdcardAndAppCode")
+    List<Map<String, String>> getAppAuthByIdcardAndAppCode(@RequestParam("idcard") String idcard,@RequestParam("appCode") String appCode);
+}

dcuc-auth-api/src/main/java/com/dragoninfo/dcuc/auth/auth/facade/IRoleInfoFacade.java

@@ -0,0 +1,192 @@
+package com.dragoninfo.dcuc.auth.auth.facade;
+
+import com.dragoninfo.dcuc.auth.auth.entity.RoleInfo;
+import com.dragoninfo.dcuc.auth.auth.vo.RoleAuthParamVo;
+import com.dragoninfo.dcuc.auth.auth.vo.RoleInfoVO;
+import com.dragoninfo.dcuc.auth.auth.vo.RsGridCheckedVO;
+import com.dragoninfo.dcuc.auth.auth.vo.zerotrust.rolemanage.RoleOperateApplyVo;
+import com.dragonsoft.duceap.base.entity.http.ResponseDTO;
+import com.dragonsoft.duceap.base.entity.http.ResponseStatus;
+import com.dragonsoft.duceap.base.entity.search.SearchDTO;
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.data.domain.Page;
+import org.springframework.web.bind.annotation.*;
+
+import java.util.List;
+import java.util.Map;
+
+/**
+ * Created by liws on 2018/6/20.
+ */
+@FeignClient(name = "dcuc-auth", path = "/dcuc/auth/roleInfoFacade")
+public interface IRoleInfoFacade {
+    /**
+     * 根据应用id获取角色列表
+     *
+     * @param searchDTO
+     * @return
+     */
+    @PostMapping(value = "page")
+    Page<RoleInfoVO> page(@RequestBody SearchDTO searchDTO);
+
+    /**
+     * 根据角色获取选中菜单、功能
+     *
+     * @param roleId
+     * @return
+     */
+    @GetMapping(value = "getRsGridChecked")
+    List<RsGridCheckedVO> getRsGridChecked(@RequestParam("roleId") String roleId);
+
+    @RequestMapping(value = "getRsGridCheckedHn")
+    List<RsGridCheckedVO> getRsGridCheckedHn(@RequestParam("roleId") String roleId);
+
+    /**
+     * 保存菜单以及功能信息到角色
+     *
+     * @param rsGridList
+     * @param roleId
+     * @return
+     */
+    @RequestMapping(value = "saveRsGrid")
+    ResponseDTO saveRsGrid(@RequestParam("rsGridList") String rsGridList,
+                           @RequestParam("roleId") String roleId);
+
+    /**
+     * 角色详情
+     *
+     * @param id
+     * @return
+     */
+    @GetMapping(value = "get/{id}")
+    RoleInfo get(@PathVariable("id") String id);
+
+    /**
+     * 新增保存角色
+     *
+     * @param roleInfo
+     * @return
+     */
+    @PostMapping(value = "save")
+    ResponseDTO save(@RequestBody RoleInfo roleInfo);
+
+    /**
+     * 更新角色信息
+     *
+     * @param roleInfo
+     * @return
+     */
+    @PutMapping(value = "update")
+    ResponseDTO update(@RequestBody RoleInfo roleInfo);
+
+    /**
+     * 删除角色信息
+     *
+     * @param id
+     * @return
+     */
+    @DeleteMapping(value = "delete/{id}")
+    ResponseStatus delete(@PathVariable("id") String id);
+
+    /**
+     * 删除角色相关表的信息
+     *
+     * @param id
+     * @return
+     */
+    @DeleteMapping(value = "delAllRolesInfo")
+    ResponseStatus delAllRolesInfo(@RequestParam("id") String id);
+
+    /**
+     * 获取机构角色配额授权情况列表
+     *
+     * @param searchDTO
+     * @return
+     */
+    @PostMapping(value = "getQuotoRoles")
+    Page<RoleInfoVO> getQuotoRoles(@RequestBody SearchDTO searchDTO);
+
+    /**
+     * 角色初始配额信息保存
+     *
+     * @param roleQuotaList
+     * @return
+     * @throws Exception
+     */
+    @RequestMapping(value = "roleQuotaSave")
+    ResponseDTO roleQuotaSave(@RequestParam("roleQuotaList") String roleQuotaList) throws Exception;
+
+    /**
+     * 获取角色配额授权情况列表
+     *
+     * @param
+     * @param searchDTO
+     * @return
+     */
+    @PostMapping(value = "getRoleQuotaList")
+    Page<RoleInfoVO> getRoleQuotaList(@RequestBody SearchDTO searchDTO);
+
+    /**
+     * 根据角色id修改角色的初始配额
+     *
+     * @param roleId
+     * @param initNum：新的初始配额
+     */
+    @RequestMapping(value = "roleQuotaUpdate")
+    ResponseDTO roleQuotaUpdate(@RequestParam("roleId") String roleId,
+                                @RequestParam("initNum") Long initNum);
+
+    /**
+     * 分页查询机构拥有的应用角色配额情况
+     *
+     * @return
+     */
+    @PostMapping(value = "getOrgRoleQuota")
+    Page<RoleInfoVO> getOrgRoleQuota(@RequestBody RoleAuthParamVo vo);
+
+    /**
+     * 根据条件查询role
+     *
+     * @param searchDTO
+     * @return
+     */
+    @PostMapping(value = "roleList")
+    List<RoleInfo> roleList(@RequestBody SearchDTO searchDTO);
+
+    /**
+     * 根据角色Id获取角色拥有的权限
+     *
+     * @param roleId
+     * @return
+     */
+    @RequestMapping(value = "getRoleAuthList")
+    List<Map<String, Object>> getRoleAuthList(@RequestParam("roleId") String roleId);
+
+    @PostMapping(value = "operateList")
+    Page<Map<String, String>> operateList(@RequestBody SearchDTO searchDTO);
+
+    /**
+     * 户政 人员视图-应用角色列表
+     *
+     * @param searchDTO @return
+     */
+    @PostMapping(value = "staffRoleList")
+    List<RoleInfoVO> staffRoleList(@RequestBody SearchDTO searchDTO);
+
+    /**
+     * 角色授权模块
+     * 角色视图 角色列表
+     * @param searchDTO
+     * @return
+     */
+    @PostMapping("roleAuthRoleViewPage")
+    Page<RoleInfoVO> roleAuthRoleViewPage(@RequestBody SearchDTO searchDTO);
+
+    /**
+     * 角色生命周期管理
+     * @param roleOperateApplyVo
+     * @return
+     */
+    @PostMapping("roleOperateApply")
+    ResponseDTO<Object> roleOperateApply(@RequestBody RoleOperateApplyVo roleOperateApplyVo);
+}

dcuc-auth-api/src/main/java/com/dragoninfo/dcuc/auth/auth/facade/IRoleInfoVerifyFacade.java

@@ -0,0 +1,86 @@
+package com.dragoninfo.dcuc.auth.auth.facade;
+
+import com.dragoninfo.dcuc.auth.auth.entity.RoleInfoVerify;
+import com.dragoninfo.dcuc.auth.auth.vo.RoleInfoVerifyVO;
+import com.dragonsoft.duceap.base.entity.search.SearchDTO;
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.data.domain.Page;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestBody;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RequestParam;
+
+import java.util.List;
+import java.util.Map;
+
+@FeignClient(name = "dcuc-auth",path = "/dcuc/auth/roleInfoVerifyFacade")
+public interface IRoleInfoVerifyFacade {
+
+
+    /**
+     * 根据应用id获取角色审核列表
+     *
+     * @param appId
+     * @param searchDTO
+     * @return
+     */
+    @RequestMapping(value = "page")
+    Page<RoleInfoVerifyVO> page(@RequestParam("appId")String appId,
+                                @RequestParam("searchDTO")SearchDTO searchDTO);
+
+    /**
+     * 新增角色审核信息
+     *
+     * @param roleInfoVerify
+     * @return
+     */
+    @PostMapping(value = "save")
+    void save(@RequestBody RoleInfoVerify roleInfoVerify);
+
+    /**
+     * 更新角色审核信息
+     *
+     * @param roleInfoVerify
+     * @return
+     */
+    @PostMapping(value = "update")
+    void update(@RequestBody RoleInfoVerify roleInfoVerify);
+
+    @RequestMapping(value = "delete")
+    void delete(@RequestParam("id") String id);
+
+    /**
+     * 根据ID获取角色审核信息
+     * @param id
+     * @return
+     */
+    @RequestMapping(value = "getById")
+    public RoleInfoVerify getById(@RequestParam("id")String id);
+
+    @PostMapping(value = "getRoleInfoList")
+    public List<RoleInfoVerify> getRoleInfoList(@RequestBody SearchDTO searchDTO);
+
+    @PostMapping(value = "bullRoleVerify")
+    String bullRoleVerify(@RequestBody List<RoleInfoVerify> roleInfoVerifieList);
+
+    @RequestMapping(value = "findAssignInfoByAppId")
+    public int findAssignInfoByAppId(@RequestParam("appId") String appId);
+
+    /**
+     * 根据应用ID和显示标志位更新角色审核表T_ROLE_INFO_VERIFY
+     * @param appId
+     * @param disableFlag
+     */
+    @RequestMapping(value = "updateDisableFlagByAppId")
+    public void updateDisableFlagByAppId(@RequestParam("appId")String appId,
+                                         @RequestParam("disableFlag")int disableFlag);
+
+    /**
+     * 根据用户ID获取已授权的应用ID列表
+     * @param userId
+     * @return
+     */
+    @RequestMapping(value = "findAtuhAppListByUser")
+    public List<Map<String, Object>> findAtuhAppListByUser(@RequestParam("userId") String userId);
+
+}

dcuc-auth-api/src/main/java/com/dragoninfo/dcuc/auth/auth/facade/IServiceAuthFlowFacade.java

@@ -0,0 +1,100 @@
+package com.dragoninfo.dcuc.auth.auth.facade;
+
+
+import com.dragoninfo.dcuc.auth.auth.dto.ServiceAuthFlowDTO;
+import com.dragoninfo.dcuc.auth.auth.dto.WorkFlowResutlAcceptDTO;
+import com.dragoninfo.dcuc.auth.auth.entity.ServiceAuthResult;
+import com.dragoninfo.dcuc.auth.auth.vo.ServiceAuthenticationResVO;
+import com.dragonsoft.duceap.base.entity.http.ResponseDTO;
+import com.dragonsoft.duceap.base.entity.search.SearchDTO;
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.data.domain.Page;
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestBody;
+import org.springframework.web.bind.annotation.RequestParam;
+
+import java.util.List;
+import java.util.Map;
+
+/**
+ * @author mazq
+ * @Description
+ * @create 2020-11-25 14:21
+ */
+@FeignClient(name = "dcuc-auth", path = "/dcuc/auth/serviceAuthFacade")
+public interface IServiceAuthFlowFacade {
+
+    /**
+     * 服务授权查询
+     *
+     * @param searchDTO
+     * @return
+     */
+    @PostMapping(value = "serviceAuthFlowPage")
+    Page<ServiceAuthFlowDTO> serviceAuthFlowPage(@RequestBody SearchDTO searchDTO);
+
+    /**
+     * 服务授权工作单保存
+     *
+     * @param dto
+     */
+    @PostMapping(value = "serviceAuthFlowSave")
+    ResponseDTO serviceAuthFlowSave(@RequestBody ServiceAuthFlowDTO dto);
+
+//    /**
+//     * 服务授权工作单审批结果处理
+//     *
+//     * @param dto
+//     */
+//    @PostMapping(value = "dealAuthFlow")
+//    boolean dealAuthFlowResult(@RequestBody WorkFlowResutlAcceptDTO dto);
+
+    @PostMapping(value = "getByAppCode")
+    List<ServiceAuthResult> getByAppCode(@RequestParam("appCode") String appCode);
+
+    @PostMapping(value = "serviceChangeNotice")
+    void serviceChangeNotice(@RequestBody Map<String, Object> map);
+
+    /**
+     * 服务鉴权
+     *
+     * @param appCode
+     * @param idcard
+     * @param userToken
+     * @param appToken
+     */
+    @PostMapping(value = "serviceAuthentication")
+    List<ServiceAuthenticationResVO> serviceAuthentication(@RequestParam("idcard") String idcard, @RequestParam("appCode") String appCode, @RequestParam(value = "userToken",required = false) String userToken, @RequestParam(value = "appToken",required = false) String appToken);
+
+
+    /**
+     * 校验申请单id
+     *
+     * @param applicantId
+     * @return
+     */
+    @PostMapping(value = "checkApplicantId")
+    boolean checkApplicantId(@RequestParam("applicantId") String applicantId);
+
+    /**
+     * 服务授权申请查询是否有重复的授权申请
+     *
+     * @param appCode
+     * @param serviceCodes
+     * @return 存在申请中的重复授权单 返回响应状态'300' 内容为重复的服务code集合
+     * 存在申请中的重复授权单 返回响应状态'200'
+     */
+    @GetMapping("authRepeatCheck")
+    ResponseDTO authApplyCheck(@RequestParam("appCode") String appCode, @RequestParam("serviceCodes") List<String> serviceCodes);
+
+    /**
+     * 服务授权撤销是否存在授权结果
+     *
+     * @param appCode
+     * @param serviceCodes
+     * @return
+     */
+    @GetMapping("authCancelCheck")
+    ResponseDTO authCancelCheck(@RequestParam("appCode") String appCode, @RequestParam("serviceCodes") List<String> serviceCodes);
+}

dcuc-auth-api/src/main/java/com/dragoninfo/dcuc/auth/auth/facade/IServiceAuthResultFacade.java

@@ -0,0 +1,78 @@
+package com.dragoninfo.dcuc.auth.auth.facade;
+
+import com.dragoninfo.dcuc.auth.auth.dto.ServiceAuthResultDTO;
+import com.dragonsoft.duceap.base.entity.http.ResponseDTO;
+import com.dragonsoft.duceap.base.entity.search.SearchDTO;
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.data.domain.Page;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestBody;
+import org.springframework.web.bind.annotation.RequestParam;
+
+/**
+ * 服务授权结果Api
+ * @Author yica
+ * @Date 2021/3/9 10:01
+ **/
+@FeignClient(name = "dcuc-auth", path = "/dcuc/auth/serviceAuthResultFacade")
+public interface IServiceAuthResultFacade {
+
+    /**
+     * 保存
+     * @param dto
+     * @return
+     */
+    @PostMapping(value = "saveServiceAuthResult")
+    ResponseDTO saveServiceAuthResult(@RequestBody ServiceAuthResultDTO dto);
+    /**
+     * 删除
+     * @param serviceAuthResultDTO
+     * @return ResponseDTO
+     */
+    @PostMapping(value = "delServiceAuthResult")
+    ResponseDTO delServiceAuthResult(@RequestBody ServiceAuthResultDTO serviceAuthResultDTO);
+    /**
+     * 修改
+     * @param dto
+     * @return
+     */
+    @PostMapping(value = "updateServiceAuthResult")
+    ResponseDTO updateServiceAuthResult(@RequestBody ServiceAuthResultDTO dto);
+
+    @PostMapping(value = "serviceAuthResultPage")
+    Page<ServiceAuthResultDTO> serviceAuthResultPage(@RequestBody SearchDTO searchDTO);
+
+    @PostMapping(value = "getDetail")
+    ServiceAuthResultDTO getDetail(@RequestParam("id")String id);
+
+    /**
+     * 发送权限变更通知
+     * @param serviceCode
+     */
+    @PostMapping(value = "sendDelPermssionServiceUpdate")
+     void sendDelPermssionServiceUpdate(@RequestParam("serviceCode") String serviceCode);
+
+    /**
+     * 发送权限变更通知
+     * @param serviceCode
+     */
+    @PostMapping(value = "sendAddPermssionServiceUpdate")
+    void sendAddPermssionServiceUpdate(@RequestParam("serviceCode") String serviceCode);
+
+    /**
+     * 根据应用和服务获取服务授权数据
+     * @param appCode
+     * @param serviceCode
+     * @return
+     */
+    @PostMapping(value = "getDetailByAppAndService")
+    ServiceAuthResultDTO getDetailByAppAndService(@RequestParam("appCode")String appCode,@RequestParam("serviceCode") String serviceCode);
+
+    /**
+     * 服务授权结果-分页查询
+     * @param searchDTO
+     * @return
+     */
+    @PostMapping(value = "serviceResultPageJoinFlow")
+    Page<ServiceAuthResultDTO> serviceResultPageJoinFlow(@RequestBody SearchDTO searchDTO);
+}

dcuc-auth-api/src/main/java/com/dragoninfo/dcuc/auth/auth/facade/IStaffAssignAuthInfoFacade.java

@@ -0,0 +1,110 @@
+package com.dragoninfo.dcuc.auth.auth.facade;
+
+import com.dragoninfo.dcuc.auth.auth.dto.AppDataSensitiveLevelDTO;
+import com.dragoninfo.dcuc.auth.auth.dto.StaffAssignDTO;
+import com.dragoninfo.dcuc.auth.auth.dto.StaffRoleOperateDTO;
+import com.dragoninfo.dcuc.auth.auth.entity.StaffAssignAuthInfo;
+import com.dragoninfo.dcuc.auth.auth.vo.ApiAppAuthVo;
+import com.dragoninfo.dcuc.auth.auth.vo.StaffRoleAuthApiVo;
+import com.dragoninfo.dcuc.auth.auth.vo.StaffRoleAuthApiV2Vo;
+import com.dragoninfo.dcuc.auth.auth.vo.StaffRoleAuthReqVo;
+import com.dragonsoft.duceap.base.entity.http.ResponseStatus;
+import com.dragonsoft.duceap.base.entity.search.SearchDTO;
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.data.domain.Page;
+import org.springframework.web.bind.annotation.*;
+
+import javax.validation.Valid;
+import java.util.List;
+
+/**
+ * Created by Administrator on 2018/11/13.
+ */
+@FeignClient(name = "dcuc-auth", path = "/dcuc/auth/staffAssignAuthInfoFacade")
+public interface IStaffAssignAuthInfoFacade {
+
+
+    /**
+     * 角色视图保存用户授权
+     *
+     * @param dto 保存人员json数据
+     * @return
+     */
+    @PostMapping(value = "saveStaffRoleAuth")
+    ResponseStatus saveStaffRoleAuth(@RequestBody StaffRoleOperateDTO dto);
+
+    /**
+     * 查询列表
+     *
+     * @param searchDTO
+     * @return Page<StaffAssignAuthInfo>
+     */
+    @PostMapping(value = "findForPage")
+    Page<StaffAssignAuthInfo> findForPage(@RequestBody SearchDTO searchDTO);
+
+    /**
+     * 查询列表
+     *
+     * @param searchDTO
+     * @return List<StaffAssignAuthInfo>
+     */
+    @PostMapping(value = "findForList")
+    List<StaffAssignAuthInfo> findForList(@RequestBody SearchDTO searchDTO);
+
+    /**
+     * 人员视图-角色勾选保存
+     *
+     * @param dto
+     * @return
+     */
+    @PostMapping(value = "saveStaff")
+    ResponseStatus saveStaff(@RequestBody StaffAssignDTO dto);
+
+    /**
+     * 根据人员Id获取授权信息
+     *
+     * @param staffId 人员ID
+     * @return 授权信息
+     */
+    @GetMapping("getByStaffId")
+    List<StaffAssignAuthInfo> getByStaffId(@RequestParam("staffId") String staffId);
+
+    /**
+     * 根据用户 ID 获取应用列表
+     *
+     * @param userId 用户id
+     * @return 应用列表
+     */
+    @PostMapping("apiAppAuth")
+    List<AppDataSensitiveLevelDTO> apiAppAuth(@Valid @RequestBody ApiAppAuthVo userId);
+
+    /**
+     * 应用下的角色授权列表
+     * API对外接口使用
+     *
+     * @param searchDTO
+     * @return
+     */
+    @PostMapping("apiStaffRoleAuthResult")
+    Page<StaffRoleAuthApiVo> apiStaffRoleAuthResult(@RequestBody SearchDTO searchDTO);
+
+    /**
+     * 应用下的角色授权列表
+     * API对外接口使用
+     *
+     * @param searchDTO
+     * @return
+     */
+    @PostMapping("apiStaffRoleAuthV2Result")
+    Page<StaffRoleAuthApiV2Vo> apiStaffRoleAuthV2Result(@RequestBody SearchDTO searchDTO);
+
+    /**
+     * 人员角色授权
+     * API对外接口使用
+     *
+     * @param reqVo
+     * @return
+     */
+    @PostMapping("apiStaffRoleAuth")
+    ResponseStatus apiStaffRoleAuth(@RequestBody StaffRoleAuthReqVo reqVo);
+}

dcuc-auth-api/src/main/java/com/dragoninfo/dcuc/auth/auth/facade/ISystemTaskFacade.java

@@ -0,0 +1,19 @@
+package com.dragoninfo.dcuc.auth.auth.facade;
+
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RequestParam;
+
+/**
+ * @author huangzqa
+ */
+@FeignClient(name = "dcuc-auth", path = "/dcuc/auth/systemTaskFacade")
+public interface ISystemTaskFacade {
+    /**
+     * 执行定时任务
+     *
+     * @param taskType 类型详见dcuc-task模块
+     */
+    @RequestMapping(value = "taskExecute")
+    void taskExecute(@RequestParam("taskType") String taskType);
+}

dcuc-auth-api/src/main/java/com/dragoninfo/dcuc/auth/casemanege/facade/ICaseInfoLevelFacade.java

@@ -0,0 +1,20 @@
+package com.dragoninfo.dcuc.auth.casemanege.facade;
+
+import com.dragoninfo.dcuc.auth.casemanege.entity.CaseInfoLevel;
+import com.dragonsoft.duceap.base.entity.http.ResponseStatus;
+import com.dragonsoft.duceap.base.entity.search.SearchDTO;
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.data.domain.Page;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestBody;
+import org.springframework.web.bind.annotation.RequestMapping;
+
+@FeignClient(name = "dcuc-auth",path = "/dcuc/auth/caseInfoLevelFacade")
+public interface ICaseInfoLevelFacade {
+
+    @PostMapping(value = "page")
+    Page<CaseInfoLevel> page(@RequestBody SearchDTO searchDTO);
+
+    @PostMapping(value = "save")
+    ResponseStatus save(@RequestBody CaseInfoLevel caseInfoLevel);
+}

dcuc-auth-api/src/main/java/com/dragoninfo/dcuc/auth/casemanege/facade/IConfigInfoFacade.java

@@ -0,0 +1,20 @@
+package com.dragoninfo.dcuc.auth.casemanege.facade;
+
+import com.dragoninfo.dcuc.auth.casemanege.entity.ConfigInfo;
+import com.dragonsoft.duceap.base.entity.search.SearchDTO;
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestBody;
+import org.springframework.web.bind.annotation.RequestMapping;
+
+import java.util.List;
+
+/**
+ * Created by liws on 2019/11/4.
+ */
+@FeignClient(name = "dcuc-auth",path = "/dcuc/auth/configInfoFacade")
+public interface IConfigInfoFacade {
+
+    @PostMapping(value = "seachForList")
+    List<ConfigInfo> seachForList(@RequestBody SearchDTO searchDTO);
+}

dcuc-auth-api/src/main/java/com/dragoninfo/dcuc/auth/casemanege/facade/ILevelConfigFacade.java

@@ -0,0 +1,22 @@
+package com.dragoninfo.dcuc.auth.casemanege.facade;
+
+import com.dragoninfo.dcuc.auth.casemanege.entity.LevelConfig;
+import com.dragonsoft.duceap.base.entity.http.ResponseStatus;
+import com.dragonsoft.duceap.base.entity.search.SearchDTO;
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestBody;
+import org.springframework.web.bind.annotation.RequestMapping;
+
+/**
+ * Created by liws on 2019/11/4.
+ */
+@FeignClient(name = "dcuc-auth",path = "/dcuc/auth/levelConfigFacade")
+public interface ILevelConfigFacade {
+
+    @PostMapping(value = "detail")
+    LevelConfig detail(@RequestBody SearchDTO searchDTO);
+
+    @PostMapping(value = "saveOrUpdate")
+    ResponseStatus saveOrUpdate(@RequestBody LevelConfig levelConfig);
+}

dcuc-auth-api/src/main/java/com/dragoninfo/dcuc/auth/element/facade/IEnvElementFacade.java

@@ -0,0 +1,96 @@
+package com.dragoninfo.dcuc.auth.element.facade;
+
+import com.dragoninfo.dcuc.auth.element.vo.ElementUserRelRespVo;
+import com.dragoninfo.dcuc.auth.element.vo.ElementUserSaveVo;
+import com.dragoninfo.dcuc.auth.element.vo.EnvElementSaveVo;
+import com.dragoninfo.dcuc.auth.element.vo.RespEnvElementVo;
+import com.dragoninfo.dcuc.auth.sub.vo.AuthUserVo;
+import com.dragonsoft.duceap.base.entity.http.ResponseStatus;
+import com.dragonsoft.duceap.base.entity.search.SearchDTO;
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.data.domain.Page;
+import org.springframework.web.bind.annotation.*;
+
+import java.util.List;
+
+/**
+ * @author mazq
+ * @date 2022/8/25
+ */
+@FeignClient(name = "dcuc-auth",path = "/dcuc/auth/envElementFacade")
+public interface IEnvElementFacade {
+
+    /**
+     * 根据id获取详情
+     * @param id
+     * @return
+     */
+    @GetMapping("getById/{id}")
+    RespEnvElementVo getById(@PathVariable("id") String id);
+
+    /**
+     * 分页查询场景信息
+     * @param searchDTO
+     * @return
+     */
+    @PostMapping("pageSearch")
+    Page<RespEnvElementVo> pageSearch(@RequestBody SearchDTO searchDTO);
+
+    /**
+     * 保存场景信息
+     * @param envElementVo
+     * @return
+     */
+    @PostMapping("save")
+    ResponseStatus save(@RequestBody EnvElementSaveVo envElementVo);
+
+    /**
+     * 保存场景信息
+     * @param envElementVo
+     * @return
+     */
+    @PostMapping("update")
+    ResponseStatus update(@RequestBody EnvElementSaveVo envElementVo);
+
+    /**
+     *
+     * @param id
+     * @return
+     */
+    @DeleteMapping("deleteById/{id}")
+    ResponseStatus deleteById(@PathVariable("id") String id);
+
+    /**
+     * 关联用户分页查询
+     * @param searchDTO
+     * @return
+     */
+    @PostMapping("userRelPage")
+    Page<ElementUserRelRespVo> userRelPage(@RequestBody SearchDTO searchDTO);
+
+    /**
+     * 保存用户关联关系
+     *
+     * @param relSaveVo
+     * @return
+     */
+    @PostMapping("userRelSave")
+    ResponseStatus userRelSave(@RequestBody ElementUserSaveVo relSaveVo);
+
+    /**
+     * 删除用户关联关系
+     *
+     * @param id
+     * @return
+     */
+    @DeleteMapping("deleteUserRel/{id}")
+    ResponseStatus deleteUserRel(@PathVariable("id") String id);
+
+    /**
+     * 非关联用户分页查询
+     * @param searchDTO
+     * @return
+     */
+    @PostMapping("notInUserRelPage")
+    Page<AuthUserVo> notInUserRelPage(@RequestBody SearchDTO searchDTO);
+}

dcuc-auth-api/src/main/java/com/dragoninfo/dcuc/auth/gm/facade/IGmBusinessFacade.java

@@ -0,0 +1,65 @@
+package com.dragoninfo.dcuc.auth.gm.facade;
+
+import com.dragonsoft.duceap.base.entity.http.ResponseStatus;
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.web.bind.annotation.GetMapping;
+
+/**
+ * <p>
+ *
+ * </p>
+ *
+ * @author huangzqa
+ * @date 2021/5/8
+ */
+@FeignClient(name = "dcuc-auth", path = "/dcuc/auth/gmBusinessFacade")
+public interface IGmBusinessFacade {
+
+    /**
+     * 同步服务授权数据
+     *
+     * @return 状态
+     */
+    @GetMapping("syncServiceResult")
+    ResponseStatus syncServiceResult();
+
+    /**
+     * 同步功能授权数据
+     *
+     * @return 状态
+     */
+    @GetMapping("syncFunctionResult")
+    ResponseStatus syncFunctionResult();
+
+    /**
+     * 同步用户数据
+     *
+     * @return 状态
+     */
+    @GetMapping("syncAuthUserInfo")
+    ResponseStatus syncAuthUserInfo();
+
+    /**
+     * 同步授权日志数据
+     *
+     * @return 状态
+     */
+    @GetMapping("syncAuthorizeLog")
+    ResponseStatus syncAuthorizeLog();
+
+    /**
+     * 同步功能信息
+     *
+     * @return 状态
+     */
+    @GetMapping("syncAppFunInfo")
+    ResponseStatus syncAppFunInfo();
+
+    /**
+     * 同步角色信息
+     *
+     * @return 状态
+     */
+    @GetMapping("syncRoleInfo")
+    ResponseStatus syncRoleInfo();
+}

dcuc-auth-api/src/main/java/com/dragoninfo/dcuc/auth/list/facade/IRedListFacade.java

@@ -0,0 +1,83 @@
+package com.dragoninfo.dcuc.auth.list.facade;
+
+import com.dragoninfo.dcuc.auth.list.dto.AppFunRedListAddDTO;
+import com.dragoninfo.dcuc.auth.list.dto.AppFunRedListDTO;
+import com.dragoninfo.dcuc.auth.list.dto.FunRedListTreeDTO;
+import com.dragoninfo.dcuc.auth.list.dto.RedListOperateDTO;
+import com.dragonsoft.duceap.base.entity.http.ResponseDTO;
+import com.dragonsoft.duceap.base.entity.search.SearchDTO;
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.data.domain.Page;
+import org.springframework.web.bind.annotation.*;
+
+import java.util.List;
+
+/**
+ * 红名单api
+ * @author mazq
+ * @date 2021/7/12
+ */
+@FeignClient(name = "dcuc-auth", path = "/dcuc/list/redListFacade")
+public interface IRedListFacade {
+
+    /**
+     * 功能红名单添加
+     * @param collect
+     * @return
+     */
+    @PostMapping(value = "funRedListAdd")
+    Boolean funRedListAdd(@RequestBody List<AppFunRedListAddDTO> collect);
+
+    /**
+     * 红名单等级批量修改
+     * @param dto
+     * @return
+     */
+    @PostMapping(value = "funRedListUpdateLevel")
+    Boolean funRedListUpdateLevel(@RequestBody RedListOperateDTO dto);
+
+    /**
+     * 红名单批量删除
+     * @param dto
+     * @return
+     */
+    @PostMapping(value = "funRedListDel")
+    Boolean funRedListBatchDel(@RequestBody RedListOperateDTO dto);
+
+    /**
+     * 应用功能红名单单条记录移除
+     * @param resourceType
+     * @param resourceId
+     * @param isTreeNode
+     * @return
+     */
+    @DeleteMapping(value = "funRedListDel")
+    Boolean funRedListDel(@RequestParam("resourceType") String resourceType,
+                          @RequestParam("resourceId") String resourceId,
+                          @RequestParam("isTreeNode") Boolean isTreeNode);
+
+    /**
+     * 应用功能列表分页查询
+     * 返回结构内容为树节点
+     * @param searchDTO
+     * @return
+     */
+    @PostMapping(value = "funRedListPage")
+    Page<FunRedListTreeDTO> funRedListPage(@RequestBody SearchDTO searchDTO);
+
+    /**
+     * 查询已被添加为红名单的功能id
+     * @param appId 应用id
+     * @return
+     */
+    @GetMapping("funIdsInRedList")
+    List<String> funIdsInRedList(@RequestParam(value = "appId", required = false) String appId);
+
+    /**
+     * api接口功能红名单查询
+     * @param searchDTO
+     * @return
+     */
+    @PostMapping("apiFunSearch")
+    ResponseDTO<List<AppFunRedListDTO>> apiFunRedListSearch(@RequestBody SearchDTO searchDTO);
+}

dcuc-auth-api/src/main/java/com/dragoninfo/dcuc/auth/list/facade/IWhiteListFacade.java

@@ -0,0 +1,68 @@
+package com.dragoninfo.dcuc.auth.list.facade;
+
+import com.dragoninfo.dcuc.auth.list.dto.WhiteListOperateDTO;
+import com.dragoninfo.dcuc.auth.list.dto.WhiteListUserDTO;
+import com.dragonsoft.duceap.base.entity.http.ResponseDTO;
+import com.dragonsoft.duceap.base.entity.search.SearchDTO;
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.data.domain.Page;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestBody;
+
+import java.util.List;
+
+/**
+ * 白名单api
+ * @author mazq
+ * @date 2021/7/9
+ */
+@FeignClient(name = "dcuc-auth", path = "/dcuc/list/whiteListFacade")
+public interface IWhiteListFacade {
+
+    /**
+     * 白名单用户分页列表
+     * @param searchDTO
+     * @return
+     */
+    @PostMapping("whiteListUserPage")
+    Page<WhiteListUserDTO> whiteListUserPage(@RequestBody SearchDTO searchDTO);
+
+    /**
+     * 白名单批量添加
+     * @param dto
+     * @return
+     */
+    @PostMapping("whiteListAdd")
+    Boolean whiteListAdd(@RequestBody WhiteListOperateDTO dto);
+
+    /**
+     * 白名单批量删除
+     * @param dto
+     * @return
+     */
+    @PostMapping("whiteListDel")
+    Boolean whiteListDel(@RequestBody WhiteListOperateDTO dto);
+
+    /**
+     * 白名单批量修改等级
+     * @param dto
+     * @return
+     */
+    @PostMapping("whiteListUpdateLevel")
+    Boolean whiteListUpdateLevel(@RequestBody WhiteListOperateDTO dto);
+
+    /**
+     * 获取所有用户白名单用户id
+     * @return
+     */
+    @PostMapping("getAllUser")
+    List<String> getAllUser();
+
+    /**
+     * api接口用户白名单查询
+     * @param searchDTO
+     * @return
+     */
+    @PostMapping("apiUserWhiteListSearch")
+    ResponseDTO<List<WhiteListUserDTO>> apiUserWhiteListSearch(@RequestBody SearchDTO searchDTO);
+}

dcuc-auth-api/src/main/java/com/dragoninfo/dcuc/auth/multifactor/facade/IFactorInfoFacade.java

@@ -0,0 +1,41 @@
+package com.dragoninfo.dcuc.auth.multifactor.facade;
+
+import com.dragoninfo.dcuc.auth.multifactor.entity.FactorInfo;
+import com.dragonsoft.duceap.base.entity.http.ResponseDTO;
+import com.dragonsoft.duceap.base.entity.http.ResponseStatus;
+import com.dragonsoft.duceap.base.entity.search.SearchDTO;
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.data.domain.Page;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestBody;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RequestParam;
+
+import java.util.List;
+
+/**
+ * Created by Administrator on 2019/12/17.
+ */
+@FeignClient(name = "dcuc-auth",path = "/dcuc/auth/factorInfoFacade")
+public interface IFactorInfoFacade {
+    @PostMapping(value = "searchForList")
+    List<FactorInfo> searchForList(@RequestBody SearchDTO searchDTO);
+
+    @RequestMapping(value = "getFactorInfo")
+    FactorInfo getFactorInfo(@RequestParam("id") String id);
+
+    @PostMapping(value = "saveFactorInfo")
+    ResponseDTO saveFactorInfo(@RequestBody FactorInfo factorInfo);
+
+    @RequestMapping(value = "deleteFactor")
+    void deleteFactor(@RequestParam("id")String id);
+
+    @PostMapping(value = "updateFactorInfo")
+    ResponseDTO updateFactorInfo(@RequestBody FactorInfo factorInfo);
+
+    @PostMapping(value = "factorInfoPage")
+    Page<FactorInfo> factorInfoPage(@RequestBody SearchDTO searchDTO);
+
+    @PostMapping(value = "checkFactorNoRepeat")
+    ResponseStatus checkFactorNoRepeat(@RequestBody FactorInfo factorInfo);
+}

dcuc-auth-api/src/main/java/com/dragoninfo/dcuc/auth/power/facade/IAppFunFacade.java

@@ -0,0 +1,33 @@
+package com.dragoninfo.dcuc.auth.power.facade;
+
+import com.dragoninfo.dcuc.auth.auth.vo.TreeInfoVO;
+import io.swagger.annotations.Api;
+import io.swagger.annotations.ApiImplicitParam;
+import io.swagger.annotations.ApiImplicitParams;
+import io.swagger.annotations.ApiOperation;
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RequestParam;
+
+import java.util.List;
+
+/**
+ * Created by huanghy on 2018/7/9.
+ */
+@Api(description = "应用菜单服务类")
+@FeignClient(name = "dcuc-auth",path = "/dcuc/auth/appFunFacade")
+public interface IAppFunFacade {
+
+    /**
+     = 根据应用id获取菜单树信息列表
+     * @param applicationId 应用id
+     * @return
+     */
+    @ApiOperation(value = "根据应用id获取菜单树信息列表",httpMethod = "GET",nickname = "/dcuc/auth/menutree/{applicationId}"
+            ,response = List.class)
+    @ApiImplicitParams({@ApiImplicitParam(paramType = "path",name = "applicationId",value = "应用id",required = true
+            ,example = "ad70a7bcb3e349iye904edb9b322dfc0")})
+    @RequestMapping(value = "getMenuTreeList")
+    List<TreeInfoVO> getMenuTreeList(@RequestParam("applicationId") String applicationId);
+
+}

dcuc-auth-api/src/main/java/com/dragoninfo/dcuc/auth/power/facade/IAppFunInfoFacade.java

@@ -0,0 +1,218 @@
+package com.dragoninfo.dcuc.auth.power.facade;
+
+
+import com.dragoninfo.dcuc.auth.auth.dto.AppFunInfoDTO;
+import com.dragoninfo.dcuc.auth.auth.dto.AppFunTreeDTO;
+import com.dragoninfo.dcuc.auth.auth.dto.AppResourcesDto;
+import com.dragoninfo.dcuc.auth.auth.entity.AppFunInfo;
+import com.dragoninfo.dcuc.auth.auth.vo.AppFunInfoVo;
+import com.dragoninfo.dcuc.auth.auth.vo.TreeInfoVO;
+import com.dragoninfo.dcuc.auth.auth.vo.appfun.RespAppFunTreeVo;
+import com.dragonsoft.duceap.base.entity.http.ResponseDTO;
+import com.dragonsoft.duceap.base.entity.http.ResponseStatus;
+import com.dragonsoft.duceap.base.entity.search.SearchDTO;
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.data.domain.Page;
+import org.springframework.web.bind.annotation.*;
+
+import java.util.List;
+
+@FeignClient(name = "dcuc-auth", path = "/dcuc/auth/appFunInfoFacade")
+public interface IAppFunInfoFacade {
+
+    /**
+     * = 根据应用id获取菜单树信息列表
+     *
+     * @param applicationId
+     * @return
+     */
+    @RequestMapping(value = "getMenuTreeList")
+    List<TreeInfoVO> getMenuTreeList(@RequestParam("applicationId") String applicationId);
+
+    /**
+     * 根据应用id获取根菜单列表
+     *
+     * @param applicationId
+     * @return
+     */
+    @RequestMapping(value = "getRoot")
+    List<AppFunInfo> getRoot(@RequestParam("applicationId") String applicationId);
+
+    /**
+     * 根据应用id获取菜单树List(包含无效的)
+     *
+     * @param appId
+     * @return
+     */
+    @GetMapping(value = "getAllTreeList")
+    List<TreeInfoVO> getAllTreeList(@RequestParam("appId") String appId, @RequestParam(value = "isActive", required = false) String isActive);
+
+    /**
+     * 保存应用菜单
+     *
+     * @param appFunInfo
+     * @return
+     */
+    @PostMapping(value = "save")
+    ResponseDTO save(@RequestBody AppFunInfo appFunInfo);
+
+    /**
+     * 更新应用菜单
+     *
+     * @param appFunInfo
+     * @return
+     */
+    @PostMapping(value = "update")
+    ResponseDTO update(@RequestBody AppFunInfo appFunInfo);
+
+    /**
+     * 删除应用菜单
+     * 如果(应用菜单)该节点下有子节点也进行删除
+     *
+     * @param deletedId
+     */
+    @RequestMapping(value = "deleteMenuAll")
+    ResponseStatus deleteMenuAll(@RequestParam("deletedId") String deletedId,
+                                 @RequestParam("appId") String appId);
+
+    /**
+     * 根据功能菜单id获取菜单的功能代码
+     *
+     * @param id
+     * @return
+     */
+    @RequestMapping(value = "getCode")
+    List<AppFunInfo> getCode(@RequestParam("id") String id);
+
+    /**
+     * 删除应用下菜单
+     *
+     * @param appId
+     */
+    @RequestMapping(value = "del")
+    void del(@RequestParam("appId") String appId);
+
+    /**
+     * 推送应用功能资源
+     *
+     * @param appResourcesDto
+     * @return
+     */
+    @PostMapping(value = "updateAppFun")
+    ResponseDTO updateAppFun(@RequestBody AppResourcesDto appResourcesDto);
+
+    /**
+     * 删除
+     * @param functionCode
+     * @param appCode
+     * @return
+     */
+    @RequestMapping(value = "delByAppIdAndfunCode")
+    ResponseStatus delByAppIdAndFunCode(@RequestParam("functionCode") String functionCode, @RequestParam("appCode") String appCode);
+
+    /**
+     * 分页
+     *
+     * @param searchDTO 搜索条件
+     * @return 菜单数据
+     */
+    @PostMapping(value = "page")
+    Page<AppFunInfo> page(@RequestBody SearchDTO searchDTO);
+
+    /**
+     * 根据应用代码、功能代码获取功能资源
+     *
+     * @param appCode  应用代码
+     * @param funcCode 功能代码
+     * @return 功能资源
+     */
+    @GetMapping("getByAppAndFuncCode")
+    AppFunInfo getByAppAndFuncCode(@RequestParam("appCode") String appCode, @RequestParam("funcCode") String funcCode);
+
+    /**
+     * 批量保存菜单
+     * @param funList
+     */
+    @PostMapping("batchSave")
+    void batchSave(@RequestBody List<AppFunInfo> funList);
+
+    /**
+     * 分页查询（赋值应用名称）
+     * @param searchDTO
+     * @return
+     */
+    @PostMapping(value = "/search")
+    Page<AppFunInfoVo> appFunInfoPage(@RequestBody SearchDTO searchDTO);
+
+    /**
+     * 功能详情
+     * @param id
+     * @return
+     */
+    @GetMapping("/{id}")
+    AppFunInfoVo getById(@PathVariable("id") String id);
+
+    /**
+     * 授权主客体管理_功能资源导入
+     * @param fileId
+     * @return
+     */
+    @PostMapping(value = "/import")
+    ResponseStatus impExcel(@RequestParam("fileId")String fileId);
+
+    /**
+     * 功能资源修改
+     * @param appFunInfoVo
+     * @return
+     */
+    @PutMapping(value = "/app-fun")
+    ResponseStatus updateAppFunInfo(@RequestBody AppFunInfoVo appFunInfoVo);
+    /**
+     * 功能资源删除
+     * @param id
+     * @return
+     */
+    @DeleteMapping(value = "/{id}")
+    ResponseStatus deleteById(@PathVariable("id") String id);
+
+    /**
+     * 根据appId集合获取菜单列表
+     * @param appIds
+     * @return
+     */
+    @PostMapping(value = "getByAppIds")
+    List<AppFunInfoDTO> getByAppIds(@RequestBody List<String> appIds);
+
+    /**
+     * 根据appId获取功能列表
+     * @param appId
+     * @return
+     */
+    @GetMapping(value = "getByAppId")
+    List<AppFunInfoDTO> getByAppId(@RequestParam("appId") String appId);
+
+    /**
+     * 获取所有应用功能-树结构
+     * @return
+     * @param exclude
+     */
+    @GetMapping(value = "allMenuTree")
+    List<AppFunTreeDTO> allMenuTree(@RequestParam(value = "exclude", required = false) Boolean exclude);
+
+    /**
+     * 应用相关的菜单和功能查询
+     * 提供api接口对外查询功能
+     * @param searchDTO
+     * @return
+     */
+    @PostMapping("apiFuncSearch")
+    ResponseDTO<List<AppFunInfoDTO>> apiFuncSearch(@RequestBody SearchDTO searchDTO);
+
+    /**
+     * 获取角色关联的菜单树
+     * @param roleId
+     * @return
+     */
+    @GetMapping(value = "/menuTree")
+    List<RespAppFunTreeVo> getRoleMenuTree(@RequestParam("roleId") String roleId);
+}

dcuc-auth-api/src/main/java/com/dragoninfo/dcuc/auth/power/facade/IApplicationInfoFacade.java

@@ -0,0 +1,37 @@
+package com.dragoninfo.dcuc.auth.power.facade;
+
+import com.dragoninfo.dcuc.auth.auth.vo.ApplicationInfoVO;
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestBody;
+import org.springframework.web.bind.annotation.RequestMapping;
+
+import java.util.List;
+
+/**
+ * @Description:
+ * @Author: huanghy
+ * @Date: Created in 2018/6/19 13:59
+ * @Since:
+ */
+@FeignClient(name = "dcuc-auth",path = "/dcuc/auth/applicationInfoFacade")
+public interface IApplicationInfoFacade {
+
+    /**
+     * 填充应用的统计数据
+     * @param apps
+     * @return
+     */
+    //TODO
+    //DTO待设计
+    @PostMapping(value = "addCountInfo")
+    List<ApplicationInfoVO> addCountInfo(@RequestBody List<ApplicationInfoVO> apps);
+
+    /**
+     *
+     * @param apps
+     * @return
+     */
+    @PostMapping(value = "addCountInLimit")
+    List<ApplicationInfoVO> addCountInfoInLimitRole(@RequestBody List<ApplicationInfoVO> apps);
+}

dcuc-auth-api/src/main/java/com/dragoninfo/dcuc/auth/securitypolicy/facade/IApiSecurityPolicyFacade.java

@@ -0,0 +1,25 @@
+package com.dragoninfo.dcuc.auth.securitypolicy.facade;
+
+import com.dragoninfo.dcuc.auth.api.vo.securitypolicy.req.AuthRiskOrderReqVo;
+import com.dragoninfo.dcuc.auth.api.vo.zerotrust.ZeroTrustMessageRespVO;
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestBody;
+
+/**
+ * @author mazq
+ * @date 2023/7/12
+ */
+@FeignClient(name = "dcuc-auth", path = "/dcuc/securityPolicyFacade")
+public interface IApiSecurityPolicyFacade {
+
+    /**
+     * 接收权限风险指令
+     *
+     * @param authRiskOrderReqVo 接收权限风险指令信息
+     * @return 状态
+     */
+    @PostMapping("risk-order")
+    ZeroTrustMessageRespVO riskOrder(@RequestBody AuthRiskOrderReqVo authRiskOrderReqVo);
+
+}

dcuc-auth-api/src/main/java/com/dragoninfo/dcuc/auth/statistics/IStatisticsFacade.java

@@ -0,0 +1,30 @@
+package com.dragoninfo.dcuc.auth.statistics;
+
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestBody;
+
+/**
+ * @author mazq
+ * @date 2023/6/7
+ */
+@FeignClient(name = "dcuc-auth", path = "/dcuc/auth/statisticsFacade")
+public interface IStatisticsFacade {
+
+    /**
+     * 主体数量统计
+     *
+     * @return
+     * @param reqVo
+     */
+    @PostMapping("subStatistics")
+    SubStatisticsVo subStatistics(@RequestBody StatisticsReqVo reqVo);
+
+    /**
+     * 客体数量统计
+     * @param reqVo
+     * @return
+     */
+    @PostMapping("objStatistics")
+    ObjStatisticsVo objStatistics(@RequestBody StatisticsReqVo reqVo);
+}

dcuc-auth-api/src/main/java/com/dragoninfo/dcuc/auth/sub/facade/IAttrFacade.java

@@ -0,0 +1,96 @@
+package com.dragoninfo.dcuc.auth.sub.facade;
+
+import com.dragoninfo.dcuc.auth.sub.dto.RelSearchDTO;
+import com.dragoninfo.dcuc.auth.sub.dto.ServiceRelSearchDTO;
+import com.dragoninfo.dcuc.auth.sub.vo.*;
+import com.dragonsoft.duceap.base.entity.http.ResponseStatus;
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.data.domain.Page;
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestBody;
+import org.springframework.web.bind.annotation.RequestParam;
+
+import java.util.List;
+
+/**
+ * 主客体属性管理接口
+ * @author mazq
+ * @date 2021/5/20
+ */
+@FeignClient(name = "dcuc-auth",path = "/dcuc/auth/attrFacade")
+public interface IAttrFacade {
+
+    /**
+     * 主客体属性添加
+     * @param addVo
+     * @return
+     */
+    @PostMapping("attrAdd")
+    ResponseStatus attrSave(@RequestBody AttrInfoAddVo addVo);
+
+    /**
+     * 根据id，删除本级下的所有主客体属性,包括本级
+     * @param id
+     * @return
+     */
+    @GetMapping("deleteAllById")
+    Boolean deleteAllById(@RequestParam("id") String id);
+
+    /**
+     * 根据属性所属类别获取属性列表,返回树结构
+     * @param attrSubType
+     * @return
+     */
+    @GetMapping("getAttrTreeList")
+    List<AttrInfoTreeVo> getAttrTreeList(@RequestParam("attrSubType") String attrSubType);
+
+    /**
+     * 主客体和属性关联关系添加
+     * @param vo
+     * @return
+     */
+    @PostMapping("relAdd")
+    Boolean relAdd(@RequestBody AttrRelAcceptVo vo);
+
+    /**
+     * 返回applyInfo对象
+     * 查询属性关联的应用列表
+     * @param dto
+     * @return
+     */
+    @PostMapping(value = "relAppPage")
+    Page<ApplyInfoRelVo> relAppPage(@RequestBody RelSearchDTO dto);
+
+    /**
+     * 查询属性未关联的应用列表
+     * @param dto
+     * @return
+     */
+    @PostMapping(value = "notRelAppPage")
+    Page<ApplyInfoVo> notRelAppPage(@RequestBody RelSearchDTO dto);
+
+    /**
+     * 查询属性关联的服务列表
+     * @param dto
+     * @return
+     */
+    @PostMapping(value = "relServicePage")
+    Page<ServiceRelVo> relServicePage(@RequestBody ServiceRelSearchDTO dto);
+
+    /**
+     * 查询属性未关联的服务列表
+     * @param dto
+     * @return
+     */
+    @PostMapping(value = "notRelServicePage")
+    Page<ServiceResourceVo> notRelServicePage(@RequestBody ServiceRelSearchDTO dto);
+
+    /**
+     * 删除单条关联记录
+     * @param attrRelId
+     * @return
+     */
+    @GetMapping(value = "delAttrRelResource")
+    Boolean delAttrRelResource(@RequestParam("attrRelId") String attrRelId);
+}

dcuc-auth-api/src/main/java/com/dragoninfo/dcuc/auth/sub/facade/IAuthOrgInfoFacade.java

@@ -0,0 +1,178 @@
+package com.dragoninfo.dcuc.auth.sub.facade;
+
+import com.dragoninfo.dcuc.auth.sub.dto.AuthOrgDTO;
+import com.dragoninfo.dcuc.auth.sub.dto.OrgQuotaNumDTO;
+import com.dragoninfo.dcuc.auth.sub.dto.OrgTreeNodeDTO;
+import com.dragonsoft.duceap.base.entity.http.ResponseDTO;
+import com.dragonsoft.duceap.base.entity.http.ResponseStatus;
+import com.dragonsoft.duceap.base.entity.search.SearchDTO;
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.data.domain.Page;
+import org.springframework.web.bind.annotation.*;
+
+import java.util.List;
+
+/**
+ * @author wangrs
+ * @date 2021-04-26
+ */
+@FeignClient(name = "dcuc-auth", path = "/dcuc/auth/authOrgInfoFacade")
+public interface IAuthOrgInfoFacade {
+    /**
+     * 根据应用id获取角色列表
+     *
+     * @param searchDTO
+     * @return
+     */
+    @PostMapping(value = "page")
+    Page<AuthOrgDTO> page(@RequestBody SearchDTO searchDTO);
+
+    /**
+     * 角色详情
+     *
+     * @param id
+     * @return
+     */
+    @PostMapping(value = "get")
+    AuthOrgDTO get(@RequestParam("id") String id);
+
+    /**
+     * 删除记录
+     *
+     * @param id
+     * @return
+     */
+    @DeleteMapping(value = "delete/{id}")
+    ResponseStatus deleteById(@PathVariable("id") String id);
+
+    /**
+     * 机构数据导入
+     *
+     * @param fileId
+     * @return
+     */
+    @GetMapping("import")
+    ResponseStatus impExcel(@RequestParam("fileId") String fileId);
+
+    /**
+     * 名称或是code查询机构
+     * 并且过滤有权限的机构
+     *
+     * @param name
+     * @param mts
+     * @param pageNum
+     * @param pageSize
+     * @return
+     */
+    @GetMapping("orgMatch")
+    ResponseDTO<List<AuthOrgDTO>> orgMatch(@RequestParam("name") String name, @RequestParam(value = "mts", required = false) String mts,
+                         @RequestParam("pageNum") Integer pageNum, @RequestParam("pageSize") Integer pageSize);
+
+    /**
+     * 根据code获取机构信息
+     * @param code
+     * @return
+     */
+    @GetMapping("getOrgByCode")
+    AuthOrgDTO getOrgByCode(@RequestParam("code") String code);
+
+    /**
+     * 根据codes获取机构信息集合
+     * @param orgCodes
+     * @return
+     */
+    @PostMapping("getByOrgCodes")
+    List<AuthOrgDTO> getByOrgCodes(@RequestBody List<String> orgCodes);
+
+    /**
+     * 获取单个树节点信息
+     *
+     * @param id
+     * @return
+     */
+    @GetMapping("getOrgTreeNode")
+    OrgTreeNodeDTO getOrgTreeNode(@RequestParam("id") String id);
+
+    /**
+     * 批量获取机构树节点信息
+     * @param ids
+     * @return
+     */
+    @PostMapping("getOrgTreeNodeByIds")
+    List<OrgTreeNodeDTO> getOrgTreeNodeByIds(@RequestBody List<String> ids);
+
+    /**
+     * 将管理范围中的id转为name
+     * @param ids
+     * @return
+     */
+    @GetMapping("changeIdsToNames")
+    String changeIdsToNames(@RequestParam("ids") String ids);
+
+
+    /**
+     * 根据code获取权限中心机构id
+     * @param orgCodes 机构code集合
+     * @return
+     */
+    @PostMapping("convertCodesToIds")
+    List<AuthOrgDTO> convertCodesToIds(@RequestBody List<String> orgCodes);
+
+    /**
+     * 机构数据懒加载获取子节点
+     *
+     * @param id 本级节点id
+     * @param level 需要的子节点深度（从本级节点算起）
+     * @return 子级机构数据
+     */
+    @GetMapping("getChildById")
+    List<OrgTreeNodeDTO> getChildById(@RequestParam(value = "id", required = false) String id,
+                                      @RequestParam(value = "level", required = false) Integer level);
+
+    /**
+     * 批量获取本级和子级机构树节点集合
+     * @param orgIds 本级机构id集合
+     * @return 本级和子级机构树节点集合
+     */
+    @PostMapping("getSelfAndChildByIds")
+    List<OrgTreeNodeDTO> getSelfAndChildByIds(@RequestBody List<String> orgIds);
+
+    /**
+     * 获取满足条件的子级机构和数量
+     * 子级机构为orgId的满足条件的下一级机构
+     * 数量为所有满足条件的机构数量
+     *
+     * @param userId    人员id
+     * @param orgId     机构id
+     * @param unitClass 机构类别
+     * @param roleLevel 角色层级
+     * @return
+     */
+    @GetMapping("searchOrgForQuota")
+    OrgQuotaNumDTO searchOrgForQuota(@RequestParam("userId") String userId,
+                                     @RequestParam("orgId") String orgId,
+                                     @RequestParam("unitClass") String unitClass,
+                                     @RequestParam("roleLevel") String roleLevel);
+
+
+    /**
+     *
+     * @param userId    人员id
+     * @param orgId     机构id
+     * @param unitClass 机构类别
+     * @param roleLevel 角色层级
+     * @return
+     */
+    @GetMapping("getCalQuotaTree")
+    List<OrgTreeNodeDTO> getCalQuotaTree(@RequestParam("userId") String userId,
+                                         @RequestParam("orgId") String orgId,
+                                         @RequestParam("unitClass") String unitClass,
+                                         @RequestParam("roleLevel") String roleLevel);
+
+    /**
+     * 重构内存树
+     * @return
+     */
+    @GetMapping("reInitTrees")
+    ResponseStatus reInitTrees();
+}

dcuc-auth-api/src/main/java/com/dragoninfo/dcuc/auth/sub/facade/IAuthSubTaskTypeFacade.java

@@ -0,0 +1,56 @@
+package com.dragoninfo.dcuc.auth.sub.facade;
+
+import com.dragoninfo.dcuc.auth.sub.vo.tasktype.AuthSubTaskTypeVo;
+import com.dragoninfo.dcuc.auth.sub.vo.tasktype.TaskTypeTreeVo;
+import com.dragonsoft.duceap.base.entity.http.ResponseStatus;
+import com.dragonsoft.duceap.base.entity.search.SearchDTO;
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.data.domain.Page;
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestBody;
+import org.springframework.web.bind.annotation.RequestParam;
+
+import java.util.List;
+
+/**
+ * @author mazq
+ * @date 2023/2/13
+ */
+@FeignClient(name = "dcuc-auth",path = "/dcuc/auth/subTaskTypeFacade")
+public interface IAuthSubTaskTypeFacade {
+
+    /**
+     * 任务类型分页查询
+     *
+     * @param searchDTO
+     * @return
+     */
+    @PostMapping("pageSearch")
+    Page<AuthSubTaskTypeVo> pageSearch(@RequestBody SearchDTO searchDTO);
+
+    /**
+     * 任务类型导入
+     *
+     * @param fileId
+     * @return
+     */
+    @GetMapping("taskTypeImp")
+    ResponseStatus taskTypeImp(@RequestParam("fileId") String fileId);
+
+
+    /**
+     * 任务类型同步
+     * @return
+     */
+    @GetMapping("taskTypeSync")
+    ResponseStatus taskTypeSync();
+
+    /**
+     * 任务类型树
+     * @return
+     */
+    @GetMapping
+    List<TaskTypeTreeVo> taskTypeTree();
+
+}

dcuc-auth-api/src/main/java/com/dragoninfo/dcuc/auth/sub/facade/IAuthUserInfoFacade.java

@@ -0,0 +1,133 @@
+package com.dragoninfo.dcuc.auth.sub.facade;
+
+import com.dragoninfo.dcuc.auth.sub.dto.AuthUserContactDTO;
+import com.dragoninfo.dcuc.auth.sub.dto.AuthUserDTO;
+import com.dragonsoft.duceap.base.entity.http.ResponseStatus;
+import com.dragonsoft.duceap.base.entity.search.SearchDTO;
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.data.domain.Page;
+import org.springframework.web.bind.annotation.*;
+
+import java.util.List;
+
+/**
+ * @author wangrs
+ * @date 2021-04-26
+ */
+@FeignClient(name = "dcuc-auth", path = "/dcuc/auth/authUserInfoFacade")
+public interface IAuthUserInfoFacade {
+    /**
+     * 查询用户列表
+     * @param searchDTO
+     * @return
+     */
+    @PostMapping(value = "page")
+    Page<AuthUserDTO> page(@RequestBody SearchDTO searchDTO);
+
+    /**
+     * 根据ID获取用户详情
+     * @param id
+     * @return
+     */
+    @GetMapping(value = "get/{id}")
+    AuthUserDTO get(@PathVariable("id") String id);
+
+    /**
+     * 根据id查询
+     * @param idcard
+     * @return
+     */
+    @GetMapping(value = "findByIdcard")
+    AuthUserDTO findByIdcard(@RequestParam("idcard") String idcard);
+
+    /**
+     * 人员数据导入
+     * @param fileId
+     * @return
+     */
+    @GetMapping("import")
+    ResponseStatus impExcel(@RequestParam("fileId") String fileId);
+
+    /**
+     * 删除
+     * @param id
+     */
+    @DeleteMapping("delete/{id}")
+    void delete(@PathVariable("id") String id);
+
+    /**
+     * 条件查询
+     * @param searchDTO
+     * @return
+     */
+    @PostMapping(value = "findList")
+    List<AuthUserDTO> findList(@RequestBody SearchDTO searchDTO);
+
+    /**
+     * 根据id批量查询
+     * @param userIds
+     * @return
+     */
+    @PostMapping(value = "findByIds")
+    List<AuthUserDTO> findByIds(@RequestBody List<String> userIds);
+
+    /**
+     * 未添加白名单用户分页查询
+     * @param searchDTO
+     * @return
+     */
+    @PostMapping("notInWhiteListUserPage")
+    Page<AuthUserDTO> notInWhiteListUserPage(@RequestBody SearchDTO searchDTO);
+
+    /**
+     * 根据身份证号批量查询
+     * @param idcards
+     * @return
+     */
+    @PostMapping("findByIdcards")
+    List<AuthUserDTO> findByIdcards(@RequestBody List<String> idcards);
+
+    /**
+     * 判断是否是ADMIN ID
+     * @param id
+     * @return
+     */
+    @GetMapping("isRootUser")
+    Boolean isRootUser(@RequestParam("id") String id);
+
+    /**
+     * 获取ADMIN 用户id
+     * @return
+     */
+    @GetMapping("getRootUserId")
+    String getRootUserId();
+
+    /**
+     * 角色授权模块
+     * 人员视图-人员列表查询
+     * @param searchDTO
+     * @return
+     */
+    @PostMapping("roleAuthUserViewPage")
+    Page<AuthUserDTO> roleAuthUserViewPage(@RequestBody SearchDTO searchDTO);
+
+    /**
+     * 角色授权模块
+     * 角色视图-人员列表查询
+     * roleId必填
+     * orgId必填
+     * @param searchDTO
+     * @return
+     */
+    @PostMapping("roleAuthRoleViewPage")
+    Page<AuthUserDTO> roleAuthRoleViewPage(@RequestBody SearchDTO searchDTO);
+
+    /**
+     * 根据身份证号获取用户信息
+     * 包括联系方式信息
+     * @param idcard
+     * @return
+     */
+    @GetMapping("getUserWithContactByIdcard")
+    AuthUserContactDTO getUserWithContactByIdcard(@RequestParam("idcard") String idcard);
+}

dcuc-auth-api/src/main/java/com/dragoninfo/dcuc/auth/sub/facade/IUserCenterApiFacade.java

@@ -0,0 +1,66 @@
+package com.dragoninfo.dcuc.auth.sub.facade;
+
+import com.dragoninfo.dcuc.auth.sub.dto.LabelSearchDTO;
+import com.dragoninfo.dcuc.auth.sub.vo.LabelTreeVO;
+import com.dragoninfo.dcuc.auth.sub.vo.LabelVO;
+import com.dragonsoft.duceap.base.entity.http.ResponseStatus;
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestBody;
+
+import java.util.List;
+
+/**
+ * 用户中心API调用Facade
+ * @author mazq
+ * @date 2021/5/27
+ */
+@FeignClient(name = "dcuc-auth", path = "/dcuc/auth/subSyncFacade")
+public interface IUserCenterApiFacade {
+
+    /**
+     * 用户数据同步
+     * 建立在机构数据已同步的基础上
+     * @return
+     */
+    @GetMapping("userSync")
+    ResponseStatus userSync();
+
+    /**
+     * 机构数据同步
+     * @return
+     */
+    @GetMapping("orgSync")
+    ResponseStatus orgSync();
+
+    /**
+     * 人员数据增量同步
+     * @return
+     */
+    @GetMapping("userAddSync")
+    ResponseStatus userAddSync();
+
+    /**
+     * 机构数据增量同步
+     * @return
+     */
+    @GetMapping("orgAddSync")
+    ResponseStatus orgAddSync();
+
+    /**
+     * 获取所有业务域标签
+     * @return
+     */
+    @GetMapping("findAllLabels")
+    List<LabelVO> findAllLabels();
+
+    /**
+     * 获取警种-业务域标签树
+     * @param labelSearchDTO
+     * @return
+     */
+    @PostMapping("labelTreeList")
+    List<LabelTreeVO> labelTreeList(@RequestBody LabelSearchDTO labelSearchDTO);
+
+}

dcuc-auth-api/src/main/java/com/dragoninfo/dcuc/auth/token/facade/IAuthTokenFacade.java

@@ -0,0 +1,37 @@
+package com.dragoninfo.dcuc.auth.token.facade;
+
+import com.dragoninfo.dcuc.auth.api.vo.zerotrust.ZeroTrustMessageRespVO;
+import com.dragoninfo.dcuc.auth.token.vo.TokenOnlineReqVo;
+import com.dragoninfo.dcuc.auth.token.vo.TokenOnlineRespVo;
+import com.dragoninfo.dcuc.auth.token.vo.TokenReceiveVO;
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestBody;
+
+import java.util.List;
+
+/**
+ * @author mazq
+ * @date 2023/2/22
+ */
+@FeignClient(name = "dcuc-auth", path = "/dcuc/auth/authTokenFacade")
+public interface IAuthTokenFacade {
+
+    /**
+     * 接收令牌
+     *
+     * @param tokenReceiveReqVoList
+     * @return
+     */
+    @PostMapping("tokenReceive")
+    ZeroTrustMessageRespVO tokenReceive(@RequestBody List<TokenReceiveVO> tokenReceiveReqVoList);
+
+    /**
+     * 令牌在线查询
+     * @param reqVo
+     * @return
+     */
+    @PostMapping("tokenOnlineQuery")
+    TokenOnlineRespVo tokenOnlineQuery(@RequestBody TokenOnlineReqVo reqVo);
+
+}

dcuc-auth-model/pom.xml

@@ -0,0 +1,31 @@
+<?xml version="1.0" encoding="UTF-8"?>
+
+<project xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://maven.apache.org/POM/4.0.0"
+         xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
+    <parent>
+        <artifactId>dcuc-auth</artifactId>
+        <groupId>com.dragoninfo</groupId>
+        <version>2.5.0-tjdsj-SNAPSHOT</version>
+    </parent>
+    <modelVersion>4.0.0</modelVersion>
+
+    <artifactId>dcuc-auth-model</artifactId>
+
+    <dependencies>
+        <dependency>
+            <groupId>com.dragonsoft</groupId>
+            <artifactId>duceap-boot-starter</artifactId>
+        </dependency>
+
+        <dependency>
+            <groupId>com.dragonsoft</groupId>
+            <artifactId>duceap-boot-starter-swagger</artifactId>
+        </dependency>
+
+        <dependency>
+            <groupId>org.projectlombok</groupId>
+            <artifactId>lombok</artifactId>
+            <scope>provided</scope>
+        </dependency>
+    </dependencies>
+</project>

dcuc-auth-model/src/main/java/com/dragoninfo/dcuc/auth/admin/dto/ManageInfoDTO.java

@@ -0,0 +1,28 @@
+package com.dragoninfo.dcuc.auth.admin.dto;
+
+import lombok.Data;
+
+/**
+ * 管理员DTO
+ * @author mazq
+ * @date 2021/9/16
+ */
+@Data
+public class ManageInfoDTO {
+
+    /** 主键id */
+    private String id;
+
+    /** 机构id */
+    private String orgId;
+
+    /** 机构名称 */
+    private String orgName;
+
+    /** 人员ID */
+    private String userId;
+
+    /** 用户名称 */
+    private String userName;
+
+}

dcuc-auth-model/src/main/java/com/dragoninfo/dcuc/auth/admin/dto/MgeLogDTO.java

@@ -0,0 +1,48 @@
+package com.dragoninfo.dcuc.auth.admin.dto;
+
+import lombok.Data;
+
+import java.util.Date;
+
+/**
+ * 管理员操作日志对象DTO
+ * @author mazq
+ * @date 2021/9/16
+ */
+@Data
+public class MgeLogDTO {
+
+    private String id;
+
+    /**管理员ID */
+    private String mgeId;
+
+    /**操作业务类型 10：新增管理员   11：取消管理员    20：新增平台菜单权限   21：取消平台菜单权限    30：新增管理机构权限   31：取消管理机构权限   40：新增管理人员权限   41：取消管理人员权限
+    50: 新增管理授权权限 51: 取消管理授权权限	  60: 新增管理管理员权限 61: 取消管理管理员权限 */
+    private String operateType;
+
+    /**被操作对象类型 10：管理员 20：平台菜单   30：机构管理   40：人员管理 50:授权管理 60:管理员管理 */
+    private String objectType;
+
+    /**被操作对象ID*/
+    private String objectId;
+
+    /**被操作对象名称*/
+    private String objectName;
+
+    /**操作人ID*/
+    private String operateUserId;
+
+    /**操作人名称*/
+    private String operateUserName;
+
+    /**操作人所属机构ID*/
+    private String operateOrgId;
+
+    /**操作人所属机构名称*/
+    private String operateOrgName;
+
+    /**创建时间*/
+    private Date operateTime;
+
+}

dcuc-auth-model/src/main/java/com/dragoninfo/dcuc/auth/admin/entity/AppMtAuth.java

@@ -0,0 +1,50 @@
+
+package com.dragoninfo.dcuc.auth.admin.entity;
+
+import com.dragonsoft.duceap.base.entity.persistent.IdEntity;
+import com.dragonsoft.duceap.base.entity.persistent.LogicDeleteable;
+import com.dragonsoft.duceap.base.enums.BooleanEnum;
+import lombok.Data;
+import org.hibernate.annotations.GenericGenerator;
+import org.hibernate.annotations.Where;
+
+import javax.persistence.*;
+
+@Data
+@Entity
+@Table(name = "T_AUTH_ADMIN_APP_MT_AUTH")
+public class AppMtAuth implements IdEntity<String> {
+
+    //编号
+    @Id
+    @GeneratedValue(generator = "idGenerator")
+    @GenericGenerator(name = "idGenerator", strategy = "uuid")
+    @Column(name = "ID")
+    private String id;
+
+    //管理员ID
+    @Column(name = "MGE_ID")
+    private String mgeId;
+
+    //机构管理人员ID
+    @Column(name = "USER_ID")
+    private String userId;
+
+    /**
+     * 机构ID (id:type,id:type)
+     * type:-1:勾选了本级，子节点未展开或无子节点,默认等同于2状态、0:未勾选子节点、1:勾选部分子节点、2:勾选全部子节点
+     */
+    @Column(name = "ORG_ID")
+    private String orgId;
+
+    public AppMtAuth() {
+    }
+
+    public AppMtAuth(String mgeId, String userId, String orgId) {
+        this.mgeId = mgeId;
+        this.userId = userId;
+        this.orgId = orgId;
+    }
+
+}
+

dcuc-auth-model/src/main/java/com/dragoninfo/dcuc/auth/admin/entity/ManageInfo.java

@@ -0,0 +1,63 @@
+
+package com.dragoninfo.dcuc.auth.admin.entity;
+
+import com.dragonsoft.duceap.base.entity.persistent.IdEntity;
+import com.dragonsoft.duceap.base.entity.persistent.LogicDeleteable;
+import com.dragonsoft.duceap.base.enums.BooleanEnum;
+import com.dragonsoft.duceap.core.persistent.audit.JpaAuditingEntityListener;
+import lombok.Data;
+import org.hibernate.annotations.GenericGenerator;
+import org.hibernate.annotations.Where;
+
+import javax.persistence.*;
+import java.util.Date;
+import java.util.HashSet;
+import java.util.Set;
+
+@Data
+@Entity
+@EntityListeners({JpaAuditingEntityListener.class})
+@Table(name = "T_AUTH_ADMIN_MANAGE_INFO")
+@Where(clause = "deleted = '0'")
+public class ManageInfo implements IdEntity<String>, LogicDeleteable {
+
+    @Id
+    @GeneratedValue(generator = "idGenerator")
+    @GenericGenerator(name = "idGenerator", strategy = "uuid")
+    @Column(name = "ID")
+    private String id;
+
+    //机构ID
+    @Column(name = "ORG_ID")
+    private String orgId;
+
+    //机构名称
+    @Column(name = "ORG_NAME")
+    private String orgName;
+
+    //用户ID
+    @Column(name = "USER_ID")
+    private String userId;
+
+    //用户名称
+    @Column(name = "USER_NAME")
+    private String userName;
+
+    //逻辑删除
+    @Column(name = "DELETED")
+    private String deleted;
+
+    //添加用户id
+    @Column(name = "CREATE_USER")
+    private String createUser;
+
+    //添加时间
+    @Column(name = "CREATE_TIME")
+    private Date createTime;
+
+    @Override
+    public void markDeleted() {
+        this.setDeleted(BooleanEnum.TRUE.value);
+    }
+}
+

dcuc-auth-model/src/main/java/com/dragoninfo/dcuc/auth/admin/entity/MenuMtAuth.java

@@ -0,0 +1,46 @@
+//
+//package com.dragoninfo.dcuc.auth.admin.entity;
+//
+//import com.dragonsoft.duceap.base.entity.persistent.IdEntity;
+//import lombok.Data;
+//import org.hibernate.annotations.GenericGenerator;
+//
+//import javax.persistence.*;
+//
+//@Data
+//@Entity
+//@Table(name = "T_AUTH_ADMIN_MENU_MT_AUTH")
+//public class MenuMtAuth implements IdEntity<String> {
+//
+//    @Id
+//    @GeneratedValue(generator = "idGenerator")
+//    @GenericGenerator(name = "idGenerator", strategy = "uuid")
+//    @Column(name = "ID")
+//    private String id;
+//
+//    //管理员ID
+//    @Column(name = "MGE_ID")
+//    private String mgeId;
+//
+//    //机构管理人员ID
+//    @Column(name = "USER_ID")
+//    private String userId;
+//
+//    //菜单ID
+//    @Column(name = "MENU_ID")
+//    private String menuId;
+//
+//    //columns END
+//
+//
+//    public MenuMtAuth() {
+//    }
+//
+//    public MenuMtAuth(String mgeId, String userId, String menuId) {
+//        this.setMgeId(mgeId);
+//        this.setUserId(userId);
+//        this.setMenuId(menuId);
+//    }
+//
+//}
+//

dcuc-auth-model/src/main/java/com/dragoninfo/dcuc/auth/admin/entity/MgeLog.java

@@ -0,0 +1,64 @@
+
+package com.dragoninfo.dcuc.auth.admin.entity;
+
+import com.dragonsoft.duceap.base.entity.persistent.IdEntity;
+import lombok.Data;
+import org.hibernate.annotations.GenericGenerator;
+
+import javax.persistence.*;
+import java.util.Date;
+
+@Data
+@Entity
+@Table(name = "T_AUTH_ADMIN_MGE_LOG")
+public class MgeLog implements IdEntity<String> {
+
+    @Id
+    @GeneratedValue(generator = "idGenerator")
+    @GenericGenerator(name = "idGenerator", strategy = "uuid")
+    @Column(name = "ID")
+    private String id;
+
+    //管理员ID
+    @Column(name = "MGE_ID")
+    private String mgeId;
+
+    //操作业务类型 10：新增管理员   11：取消管理员    20：新增平台菜单权限   21：取消平台菜单权限    30：新增管理机构权限   31：取消管理机构权限   40：新增管理人员权限   41：取消管理人员权限
+    //50: 新增管理授权权限 51: 取消管理授权权限	  60: 新增管理管理员权限 61: 取消管理管理员权限
+    @Column(name = "OPERATE_TYPE")
+    private String operateType;
+
+    //被操作对象类型 10：管理员      20：平台菜单   30：机构管理   40：人员管理 50:授权管理 60:管理员管理
+    @Column(name = "OBJECT_TYPE")
+    private String objectType;
+
+    //被操作对象ID
+    @Column(name = "OBJECT_ID")
+    private String objectId;
+
+    //被操作对象名称
+    @Column(name = "OBJECT_NAME")
+    private String objectName;
+
+    //操作人ID
+    @Column(name = "OPERATE_USER_ID")
+    private String operateUserId;
+
+    //操作人名称
+    @Column(name = "OPERATE_USER_NAME")
+    private String operateUserName;
+
+    //操作人所属机构ID
+    @Column(name = "OPERATE_ORG_ID")
+    private String operateOrgId;
+
+    //操作人所属机构名称
+    @Column(name = "OPERATE_ORG_NAME")
+    private String operateOrgName;
+
+    //创建时间
+    @Column(name = "OPERATE_TIME")
+    private Date operateTime;
+
+}
+

dcuc-auth-model/src/main/java/com/dragoninfo/dcuc/auth/admin/entity/TempMenuAuth.java

@@ -0,0 +1,40 @@
+//
+//package com.dragoninfo.dcuc.auth.admin.entity;
+//
+//import com.dragonsoft.duceap.base.entity.persistent.IdEntity;
+//import lombok.Data;
+//import org.hibernate.annotations.GenericGenerator;
+//
+//import javax.persistence.*;
+//
+//@Data
+//@Entity
+//@Table(name = "T_AUTH_TEMP_MENU_AUTH")
+//public class TempMenuAuth implements IdEntity<String> {
+//
+//    @Id
+//    @GeneratedValue(generator = "idGenerator")
+//    @GenericGenerator(name = "idGenerator", strategy = "uuid")
+//    @Column(name = "ID")
+//    private String id;
+//
+//    //机构管理人员ID
+//    @Column(name = "USER_ID")
+//    private String userId;
+//
+//    //菜单ID
+//    @Column(name = "MENU_ID")
+//    private String menuId;
+//
+//    //columns END
+//
+//
+//    public TempMenuAuth() {
+//    }
+//
+//    public TempMenuAuth(String userId, String menuId) {
+//        this.setUserId(userId);
+//        this.setMenuId(menuId);
+//    }
+//}
+//

dcuc-auth-model/src/main/java/com/dragoninfo/dcuc/auth/admin/entity/TempMtAuth.java

@@ -0,0 +1,54 @@
+
+package com.dragoninfo.dcuc.auth.admin.entity;
+
+import com.dragonsoft.duceap.base.entity.persistent.IdEntity;
+import lombok.Data;
+import org.hibernate.annotations.GenericGenerator;
+
+import javax.persistence.*;
+
+/**
+ * 广东项目：新增管理员时，临时保存的管理范围
+ */
+@Data
+@Entity
+@Table(name = "T_AUTH_ADMIN_TEMP_MT_AUTH")
+public class TempMtAuth implements IdEntity<String> {
+
+    //编号
+    @Id
+    @GeneratedValue(generator = "idGenerator")
+    @GenericGenerator(name = "idGenerator", strategy = "uuid")
+    @Column(name = "ID")
+    private String id;
+
+    //机构管理人员ID
+    @Column(name = "USER_ID")
+    private String userId;
+
+    /**
+     * 机构ID (id:type,id:type)
+     * type:-1:勾选了本级，子节点未展开或无子节点,默认等同于2状态、0:未勾选子节点、1:勾选部分子节点、2:勾选全部子节点
+     */
+    @Column(name = "ORG_ID")
+    private String orgId;
+
+    //columns END
+
+
+    public TempMtAuth() {
+    }
+
+    public TempMtAuth(String userId, String orgId) {
+        this.setUserId(userId);
+        this.setOrgId(orgId);
+    }
+
+    public TempMtAuth(String id, String userId, String orgId) {
+        this.id = id;
+        this.setUserId(userId);
+        this.setOrgId(orgId);
+    }
+
+}
+

dcuc-auth-model/src/main/java/com/dragoninfo/dcuc/auth/admin/enumresource/AbnormalTypeEnum.java

@@ -0,0 +1,32 @@
+package com.dragoninfo.dcuc.auth.admin.enumresource;
+
+
+import com.dragonsoft.duceap.base.enums.ICodeEnum;
+
+/**
+ * Created by yica on 2018/5/24.
+ */
+public enum AbnormalTypeEnum implements ICodeEnum {
+    DYCTX("11", "第一次提醒"),
+    DECTX("12", "第二次提醒"),
+    TY("13", "停用账号"),
+    SC("20", "删除");
+
+    private String value;
+    private String label;
+
+    AbnormalTypeEnum(String value, String label) {
+        this.value = value;
+        this.label = label;
+    }
+
+    @Override
+    public String getValue() {
+        return value;
+    }
+
+    @Override
+    public String getLabel() {
+        return label;
+    }
+}

dcuc-auth-model/src/main/java/com/dragoninfo/dcuc/auth/admin/enumresource/AdminObjectTypeEnum.java

@@ -0,0 +1,34 @@
+package com.dragoninfo.dcuc.auth.admin.enumresource;
+
+
+import com.dragonsoft.duceap.base.enums.ICodeEnum;
+
+/**
+ * Created by yica on 2018/5/24.
+ */
+public enum AdminObjectTypeEnum implements ICodeEnum {
+    GLY("10", "管理员信息"),
+    PTCD("20", "平台菜单"),
+    JGGL("30", "机构管理"),
+    RYGL("40", "人员管理"),
+    SQGL("50", "授权管理"),
+    GLYGL("60", "管理员管理");
+
+    private String value;
+    private String label;
+
+    AdminObjectTypeEnum(String value, String label) {
+        this.value = value;
+        this.label = label;
+    }
+
+    @Override
+    public String getValue() {
+        return value;
+    }
+
+    @Override
+    public String getLabel() {
+        return label;
+    }
+}

dcuc-auth-model/src/main/java/com/dragoninfo/dcuc/auth/admin/enumresource/AdminOperateTypeEnum.java

@@ -0,0 +1,40 @@
+package com.dragoninfo.dcuc.auth.admin.enumresource;
+
+
+import com.dragonsoft.duceap.base.enums.ICodeEnum;
+
+/**
+ * Created by yica on 2018/5/24.
+ */
+public enum AdminOperateTypeEnum implements ICodeEnum {
+    XZGLY("10", "管理员创建"),
+    QXGLY("11", "管理员删除"),
+    XZPTCD("20", "平台菜单权限新增"),
+    QXPTCD("21", "平台菜单权限移除"),
+    XZJGGL("30", "机构管理范围新增"),
+    BGJGGL("31", "机构管理范围变更"),
+    XZRYGL("40", "用户管理范围新增"),
+    BGRYGL("41", "用户管理范围变更"),
+    XZSQGL("50", "授权管理范围新增"),
+    BGSQGL("51", "授权管理范围变更"),
+    XZGLYGL("60", "管理员管理范围新增"),
+    BGGLYGL("61", "管理员管理范围变更");
+
+    private String value;
+    private String label;
+
+    AdminOperateTypeEnum(String value, String label) {
+        this.value = value;
+        this.label = label;
+    }
+
+    @Override
+    public String getValue() {
+        return value;
+    }
+
+    @Override
+    public String getLabel() {
+        return label;
+    }
+}

dcuc-auth-model/src/main/java/com/dragoninfo/dcuc/auth/admin/enumresource/AuditLogMergeOperateTypeEnum.java

@@ -0,0 +1,44 @@
+package com.dragoninfo.dcuc.auth.admin.enumresource;
+
+public enum AuditLogMergeOperateTypeEnum {
+    YHCJ("U_YHCJ", "用户创建"),
+    YHSC("U_YHSC", "用户删除"),
+    YHXG("U_YHXG", "用户修改"),
+    ZHCJ("U_ZHCJ", "账号创建"),
+    ZHSC("U_ZHSC", "账号删除"),
+    ZHXG("U_ZHXG", "账号修改"),
+    ZWCJ("U_ZWCJ", "职位创建"),
+    ZWSC("U_ZWSC", "职位删除"),
+    ZWXG("U_ZWXG", "职位修改"),
+    XZGLY("M_GLYCJ", "管理员创建"),
+    SCGLY("M_GLYSC", "管理员删除"),
+    XZPTCD("M_PTCDQXXZ", "平台菜单权限新增"),
+    QXPTCD("M_PTCDQXYC", "平台菜单权限移除"),
+    XZJGGL("M_JGGLFWXZ", "机构管理范围新增"),
+    BGJGGL("M_JGGLFWBG", "机构管理范围变更"),
+    XZRYGL("M_YHGLFWXZ", "用户管理范围新增"),
+    BGRYGL("M_YHGLFWBG", "用户管理范围变更"),
+    XZGLYGL("M_GLYGLFWXZ", "管理员管理范围新增"),
+    BGGLYGL("M_GLYGLFWBG", "管理员管理范围变更"),
+    JGXZ("O_JGXZ", "机构新增"),
+    JGXG("O_JGXG", "机构修改"),
+    JGSC("O_JGSC", "机构删除"),
+    JGDL("O_JGDL", "机构调离"),
+    JGHB("O_JGHB", "机构合并");
+
+    private String value;
+    private String label;
+
+    AuditLogMergeOperateTypeEnum(String value, String label) {
+        this.value = value;
+        this.label = label;
+    }
+
+    public String getValue() {
+        return value;
+    }
+
+    public String getLabel() {
+        return label;
+    }
+}

dcuc-auth-model/src/main/java/com/dragoninfo/dcuc/auth/admin/enumresource/InitMenuEnum.java

@@ -0,0 +1,50 @@
+package com.dragoninfo.dcuc.auth.admin.enumresource;
+
+
+import com.dragonsoft.duceap.base.enums.ICodeEnum;
+
+/**
+ * 广东：管理员初始默认菜单
+ * Created by liws on 2019/10/31.
+ */
+public enum InitMenuEnum implements ICodeEnum {
+    YHGL_YJ("6510a37b1de044199db6041bb97fbd8c", "用户管理(一级)"),
+    JYGL_EJ("6510a37b1de044199db6041bb97fbd8g", "警员管理(二级)"),
+    FJGL_EJ("6510a37b1de044199db6041bb97fbd8h", "辅警管理(二级)"),
+    GRXX_EJ("6510a37b1de044199db6041bb97fbd8j", "个人信息(二级)"),
+    ZHGL_EJ("6510a37b1de044199db6041bb97fbd8f", "账号管理(二级)"),
+    DWRZ_EJ("894E3E2C9ACE4086G92772G1DACCG003", "多维认证管理(二级)"),
+    GLYGL_YJ("6510a37b1de044199db6041bb97fbd8a", "管理员管理(一级)"),
+    GLYGL_EJ("6510a37b1de044199db6041bb97fbd8d", "管理员管理(二级)"),
+    JGGL_YJ("6510a37b1de044199db6041bb97fbd90", "机构管理(一级)"),
+    JGGL_EJ("6510a37b1de044199db6041bb97fbd9a", "机构管理(二级)"),
+    RZSJBB_YJ("6510a37b1de044199db6041bb97fbd9i", "日志审计报表(一级)"),
+    JGSJBB_EJ("6510a37b1de0441y9db6041bb97fbd9o", "机构审计报表(二级)"),
+    YHSJBB_EJ("6510a37b1ge0j4199db6041bb97fbd9i", "用户审计报表(二级)"),
+    GLYSJ_EJ("6510a37b1de044199db6041bb97hbd9k", "管理员审计(二级)"),
+    TJBB_YJ("2c90e96664252f05016425363b440006", "统计报表(一级)"),
+    TXYFK_EJ("AB84304E4EC5404E801BB0BE88966545", "提醒与反馈(二级)"),
+    YHJSQK_EJ("2c90e96664252f05016425363b440007", "用户建设情况(二级)"),
+    GLYTJ_EJ("2c90e96664252f05016425363b440008", "管理员统计(二级)"),
+    JSSQQK_EJ("2c90e96664252f05016425363b440009", "角色授权情况(二级)"),
+    FKYJ_YJ("EC40755C77CB4F2D8C5A4E304510D250", "反馈意见(一级)"),
+    FKYJ_EJ("C42FB8A44A3146E29BA8EED756C88424", "反馈意见(二级)");
+
+    private String value;
+    private String label;
+
+    InitMenuEnum(String value, String label) {
+        this.value = value;
+        this.label = label;
+    }
+
+    @Override
+    public String getValue() {
+        return value;
+    }
+
+    @Override
+    public String getLabel() {
+        return label;
+    }
+}

dcuc-auth-model/src/main/java/com/dragoninfo/dcuc/auth/admin/vo/AdminAuditVO.java

@@ -0,0 +1,18 @@
+package com.dragoninfo.dcuc.auth.admin.vo;
+
+import com.dragoninfo.dcuc.auth.sub.dto.AuthUserDTO;
+import lombok.Data;
+
+import java.util.Date;
+
+/**
+ * Created by Administrator on 2018/6/5.
+ */
+@Data
+public class AdminAuditVO extends AuthUserDTO {
+
+    private String createUserName;
+    private String createUser;
+    private String createTimeString;
+    private Date createTime;
+}

dcuc-auth-model/src/main/java/com/dragoninfo/dcuc/auth/admin/vo/ImpParamsVo.java

@@ -0,0 +1,28 @@
+package com.dragoninfo.dcuc.auth.admin.vo;
+
+import java.io.Serializable;
+import java.util.List;
+import java.util.Map;
+
+public class ImpParamsVo implements Serializable {
+
+    private List<Map<String, String>> mapList;
+    private boolean authAccessable;
+
+
+    public List<Map<String, String>> getMapList() {
+        return mapList;
+    }
+
+    public void setMapList(List<Map<String, String>> mapList) {
+        this.mapList = mapList;
+    }
+
+    public boolean isAuthAccessable() {
+        return authAccessable;
+    }
+
+    public void setAuthAccessable(boolean authAccessable) {
+        this.authAccessable = authAccessable;
+    }
+}

dcuc-auth-model/src/main/java/com/dragoninfo/dcuc/auth/admin/vo/ManageInfoMsg.java

@@ -0,0 +1,52 @@
+/**
+ * 版权所有：厦门市巨龙信息科技有限公司
+ * Copyright 2011 Xiamen Dragon Info. Tech. Co. Ltd.
+ * All right reserved.
+ * ====================================================
+ * 文件名称: ManageInfoMsg.java
+ * 修订记录：
+ * No    日期				    作者(操作:具体内容)
+ * 1.    2019-01-24			黄华源(创建:创建文件)
+ * ====================================================
+ * 类描述：
+ */
+package com.dragoninfo.dcuc.auth.admin.vo;
+
+import com.dragoninfo.dcuc.auth.admin.entity.ManageInfo;
+import com.dragonsoft.duceap.base.entity.security.SecurityUser;
+
+import java.io.Serializable;
+import java.util.List;
+
+public class ManageInfoMsg implements Serializable {
+
+    private SecurityUser securityUser;
+
+    private List<ManageInfo> manageInfoList;
+
+    private String operateType;
+
+    public SecurityUser getSecurityUser() {
+        return securityUser;
+    }
+
+    public void setSecurityUser(SecurityUser securityUser) {
+        this.securityUser = securityUser;
+    }
+
+    public List<ManageInfo> getManageInfoList() {
+        return manageInfoList;
+    }
+
+    public void setManageInfoList(List<ManageInfo> manageInfoList) {
+        this.manageInfoList = manageInfoList;
+    }
+
+    public String getOperateType() {
+        return operateType;
+    }
+
+    public void setOperateType(String operateType) {
+        this.operateType = operateType;
+    }
+}

dcuc-auth-model/src/main/java/com/dragoninfo/dcuc/auth/admin/vo/ManageNumsVO.java

@@ -0,0 +1,54 @@
+package com.dragoninfo.dcuc.auth.admin.vo;
+
+import java.io.Serializable;
+
+/**
+ * Created by liws on 2018/9/27.
+ */
+public class ManageNumsVO implements Serializable {
+    /**
+     * 拥有管理员的机构个数
+     */
+    private Long orgNums;
+    /**
+     * 管理员个数
+     */
+    private Long mgeNums;
+    /**
+     * 按机构分组时的机构id
+     */
+    private String orgId;
+
+    public ManageNumsVO(Long orgNums, Long mgeNums, String orgId) {
+        this.orgNums = null == orgNums ? 0l : orgNums;
+        this.mgeNums = null == mgeNums ? 0l : mgeNums;
+        this.orgId = orgId;
+    }
+
+    public ManageNumsVO() {
+    }
+
+    public Long getOrgNums() {
+        return this.orgNums;
+    }
+
+    public void setOrgNums(Long orgNums) {
+        this.orgNums = orgNums;
+    }
+
+    public Long getMgeNums() {
+        return this.mgeNums;
+    }
+
+    public void setMgeNums(Long mgeNums) {
+        this.mgeNums = mgeNums;
+    }
+
+    public String getOrgId() {
+        return orgId;
+    }
+
+    public void setOrgId(String orgId) {
+        this.orgId = orgId;
+    }
+}

dcuc-auth-model/src/main/java/com/dragoninfo/dcuc/auth/admin/vo/MgeAuditLogVO.java

@@ -0,0 +1,103 @@
+package com.dragoninfo.dcuc.auth.admin.vo;
+
+public class MgeAuditLogVO {
+    private String name;
+    private String idCard;
+    private String auditType;
+    private String operateType;
+    private String operateContent;
+    private String operateUserName;
+    private String objectType;
+    private String operatorOrgName;
+    private String operateTime;
+    private String beginTime;
+    private String endTime;
+
+    public String getOperateUserName() {
+        return operateUserName;
+    }
+
+    public void setOperateUserName(String operateUserName) {
+        this.operateUserName = operateUserName;
+    }
+
+    public String getObjectType() {
+        return objectType;
+    }
+
+    public void setObjectType(String objectType) {
+        this.objectType = objectType;
+    }
+
+    public String getName() {
+        return name;
+    }
+
+    public void setName(String name) {
+        this.name = name;
+    }
+
+    public String getIdCard() {
+        return idCard;
+    }
+
+    public void setIdCard(String idCard) {
+        this.idCard = idCard;
+    }
+
+    public String getAuditType() {
+        return auditType;
+    }
+
+    public void setAuditType(String auditType) {
+        this.auditType = auditType;
+    }
+
+    public String getOperateType() {
+        return operateType;
+    }
+
+    public void setOperateType(String operateType) {
+        this.operateType = operateType;
+    }
+
+    public String getOperateContent() {
+        return operateContent;
+    }
+
+    public void setOperateContent(String operateContent) {
+        this.operateContent = operateContent;
+    }
+
+    public String getOperatorOrgName() {
+        return operatorOrgName;
+    }
+
+    public void setOperatorOrgName(String operatorOrgName) {
+        this.operatorOrgName = operatorOrgName;
+    }
+
+    public String getOperateTime() {
+        return operateTime;
+    }
+
+    public void setOperateTime(String operateTime) {
+        this.operateTime = operateTime;
+    }
+
+    public String getBeginTime() {
+        return beginTime;
+    }
+
+    public void setBeginTime(String beginTime) {
+        this.beginTime = beginTime;
+    }
+
+    public String getEndTime() {
+        return endTime;
+    }
+
+    public void setEndTime(String endTime) {
+        this.endTime = endTime;
+    }
+}

dcuc-auth-model/src/main/java/com/dragoninfo/dcuc/auth/admin/vo/MgeMonitorVO.java

@@ -0,0 +1,38 @@
+package com.dragoninfo.dcuc.auth.admin.vo;
+
+import java.io.Serializable;
+import java.sql.Date;
+
+/**
+ * Created by Administrator on 2018/5/31.
+ */
+public class MgeMonitorVO implements Serializable {
+
+    private String userId;
+    private Integer dayNum;
+    private Date lastLoginTime;
+
+    public String getUserId() {
+        return userId;
+    }
+
+    public void setUserId(String userId) {
+        this.userId = userId;
+    }
+
+    public Integer getDayNum() {
+        return dayNum;
+    }
+
+    public void setDayNum(Integer dayNum) {
+        this.dayNum = dayNum;
+    }
+
+    public Date getLastLoginTime() {
+        return lastLoginTime;
+    }
+
+    public void setLastLoginTime(Date lastLoginTime) {
+        this.lastLoginTime = lastLoginTime;
+    }
+}

dcuc-auth-model/src/main/java/com/dragoninfo/dcuc/auth/admin/vo/NoticeUserVO.java

@@ -0,0 +1,57 @@
+package com.dragoninfo.dcuc.auth.admin.vo;
+
+import java.io.Serializable;
+
+/**
+ * Created by Administrator on 2018/6/6.
+ */
+public class NoticeUserVO implements Serializable {
+
+    private static final long serialVersionUID = 638940374227113421L;
+    private String userId;
+    private String name;
+    private String mobile;
+    private String userMtAuth;
+
+    public NoticeUserVO() {
+    }
+
+    public NoticeUserVO(String userId, String name, String mobile, String userMtAuth) {
+        this.setUserId(userId);
+        this.setName(name);
+        this.setMobile(mobile);
+        this.setUserMtAuth(userMtAuth);
+    }
+
+    public String getUserId() {
+        return userId;
+    }
+
+    public void setUserId(String userId) {
+        this.userId = userId;
+    }
+
+    public String getName() {
+        return name;
+    }
+
+    public void setName(String name) {
+        this.name = name;
+    }
+
+    public String getMobile() {
+        return mobile;
+    }
+
+    public void setMobile(String mobile) {
+        this.mobile = mobile;
+    }
+
+    public String getUserMtAuth() {
+        return userMtAuth;
+    }
+
+    public void setUserMtAuth(String userMtAuth) {
+        this.userMtAuth = userMtAuth;
+    }
+}

dcuc-auth-model/src/main/java/com/dragoninfo/dcuc/auth/admin/vo/SecurityRight.java

@@ -0,0 +1,28 @@
+
+package com.dragoninfo.dcuc.auth.admin.vo;
+
+
+/**
+ * Created by huanghy on 2018/9/28.
+ */
+
+public class SecurityRight extends com.dragonsoft.duceap.base.entity.security.SecurityRight {
+
+    public SecurityRight(String id, String name, String code, String url, String appId, String parentId, String seq, String showMode, String isSystem) {
+        setId(id);
+        setName(name);
+        setCode(code);
+        setUrl(url);
+        setApplicationId(appId);
+        setpId(parentId);
+        setSortNum(intToString(seq));
+        setShowMode(showMode);
+        setIsSystem(isSystem);
+
+    }
+
+    private static int intToString(String str) {
+        return (str != null) ? Integer.parseInt(str) : 0;
+    }
+}
+

dcuc-auth-model/src/main/java/com/dragoninfo/dcuc/auth/api/enums/securitypolicy/AuthTypeEnum.java

@@ -0,0 +1,53 @@
+package com.dragoninfo.dcuc.auth.api.enums.securitypolicy;
+
+import com.dragonsoft.duceap.base.enums.ICodeEnum;
+
+/**
+ * <p>
+ * 权限类型
+ * </p>
+ *
+ * @author huangzqa
+ * @date 2023/6/29
+ */
+public enum AuthTypeEnum implements ICodeEnum {
+
+    /**
+     * 应用
+     */
+    APP("app", "应用"),
+
+    /**
+     * 功能
+     */
+    FUNCTION("function", "功能"),
+
+    /**
+     * 服务
+     */
+    SERVICE("service", "服务"),
+
+    /**
+     * 数据
+     */
+    DATA("data", "数据");
+
+
+    private final String value;
+    private final String label;
+
+    AuthTypeEnum(String value, String label) {
+        this.value = value;
+        this.label = label;
+    }
+
+    @Override
+    public String getValue() {
+        return value;
+    }
+
+    @Override
+    public String getLabel() {
+        return label;
+    }
+}

dcuc-auth-model/src/main/java/com/dragoninfo/dcuc/auth/api/enums/zerotrust/AuthApplyRespEnum.java

@@ -0,0 +1,44 @@
+package com.dragoninfo.dcuc.auth.api.enums.zerotrust;
+
+import com.dragonsoft.duceap.base.enums.ICodeEnum;
+
+/**
+ * @author mazq
+ * @date 2023/11/23
+ */
+public enum AuthApplyRespEnum implements ICodeEnum {
+
+    SUCCESS("0", "操作成功"),
+    USER_NOT_EXIST("1", "授权申请人员不存在"),
+    APP_NOT_EXIST("2", "授权申请应用资源不存在"),
+    ROLE_NOT_EXIST("3", "授权申请应用角色不存在"),
+    SERVICE_NOT_EXIST("4", "授权申请服务资源不存在"),
+
+    OTHER("99", "其他类型错误");
+
+    private String value;
+    private String label;
+
+    AuthApplyRespEnum(String value, String label) {
+        this.value = value;
+        this.label = label;
+    }
+
+    @Override
+    public String getValue() {
+        return value;
+    }
+
+    public void setValue(String value) {
+        this.value = value;
+    }
+
+    @Override
+    public String getLabel() {
+        return label;
+    }
+
+    public void setLabel(String label) {
+        this.label = label;
+    }
+}

dcuc-auth-model/src/main/java/com/dragoninfo/dcuc/auth/api/enums/zerotrust/ZeroTrustBusinessRespEnum.java

@@ -0,0 +1,82 @@
+package com.dragoninfo.dcuc.auth.api.enums.zerotrust;
+
+import com.dragonsoft.duceap.base.enums.ICodeEnum;
+
+/**
+ * <p>
+ * 业务通用响应码
+ * </p>
+ *
+ * @author huangzqa
+ * @date 2022/8/1
+ */
+public enum ZeroTrustBusinessRespEnum implements ICodeEnum {
+    /**
+     * 操作成功
+     */
+    SUCCESS("0000", "操作成功"),
+
+    /**
+     * 操作失败
+     */
+    OPERATE_FAIL("0001", "操作失败"),
+
+    /**
+     * 令牌失效
+     */
+    TOKEN_FAIL("0002", "令牌失效"),
+
+    /**
+     * 权限冻结
+     */
+    PERMISSION_FREEZE("0003", "权限冻结"),
+
+    /**
+     * 用户令牌解密失败
+     */
+    USER_TOKEN_DECODE_FAIL("1000", "用户令牌解密失败"),
+
+    /**
+     * 用户令牌不存在
+     */
+    USER_TOKEN_NOT_EXITS("1001", "用户令牌不存在"),
+
+    /**
+     * 应用令牌解密失败
+     */
+    APP_TOKEN_DECODE_FAIL("1002", "应用令牌解密失败"),
+    /**
+     * 应用令牌不存在
+     */
+    APP_TOKEN_NOT_EXITS("1003", "应用令牌不存在"),
+
+    /**
+     * 用户令牌不需要续期
+     */
+    USER_TOKEN_NO_RENEWAL("1004", "用户令牌不需要续期"),
+
+    /**
+     * 应用令牌不需要续期
+     */
+    APP_TOKEN_NO_RENEWAL("1005", "应用令牌不需要续期");
+
+    private final String value;
+
+    private final String label;
+
+
+    ZeroTrustBusinessRespEnum(String value, String label) {
+        this.value = value;
+        this.label = label;
+    }
+
+    @Override
+    public String getValue() {
+        return this.value;
+    }
+
+    @Override
+    public String getLabel() {
+        return this.label;
+    }
+}

dcuc-auth-model/src/main/java/com/dragoninfo/dcuc/auth/api/vo/BusinessRespEnum.java

@@ -0,0 +1,68 @@
+package com.dragoninfo.dcuc.auth.api.vo;
+
+import com.dragonsoft.duceap.base.enums.ICodeEnum;
+
+/**
+ * <p>
+ * 业务通用响应码
+ * </p>
+ *
+ * @author huangzqa
+ * @date 2022/8/1
+ */
+public enum BusinessRespEnum implements ICodeEnum {
+    /**
+     * 操作成功
+     */
+    SUCCESS("0000", "鉴权成功"),
+
+    /**
+     * 鉴权失败
+     */
+    AUTH_FAIL("0001", "鉴权失败"),
+
+    /**
+     * 令牌失效
+     */
+    TOKEN_FAIL("0002", "令牌失效"),
+
+    /**
+     * 权限冻结
+     */
+    PERMISSION_FREEZE("0003", "权限冻结"),
+
+    // 自行定义状态码
+    /**
+     * 请求参数异常
+     */
+    PARAM_ERROR("9001", "请求参数异常"),
+
+    /**
+     * 服务异常
+     */
+    SERVER_ERROR("9002", "服务异常"),
+    /**
+     * 未知异常
+     */
+    UNKNOWN_ERROR("9999", "未知异常");
+
+    private final String value;
+
+    private final String label;
+
+
+    BusinessRespEnum(String value, String label) {
+        this.value = value;
+        this.label = label;
+    }
+
+    @Override
+    public String getValue() {
+        return this.value;
+    }
+
+    @Override
+    public String getLabel() {
+        return this.label;
+    }
+}

dcuc-auth-model/src/main/java/com/dragoninfo/dcuc/auth/api/vo/DataItemRespVO.java

@@ -0,0 +1,21 @@
+package com.dragoninfo.dcuc.auth.api.vo;
+
+import lombok.Data;
+
+/**
+ * <p>
+ *
+ * </p>
+ *
+ * @author huangzqa
+ * @date 2023/2/15
+ */
+@Data
+public class DataItemRespVO<T> {
+
+    /**
+     * 详细信息
+     */
+    private T result;
+
+}

dcuc-auth-model/src/main/java/com/dragoninfo/dcuc/auth/api/vo/MessageRespVO.java

@@ -0,0 +1,106 @@
+package com.dragoninfo.dcuc.auth.api.vo;
+
+import com.fasterxml.jackson.annotation.JsonIgnore;
+import com.fasterxml.jackson.annotation.JsonProperty;
+import lombok.Data;
+
+/**
+ * <p>
+ * 用户令牌校验返回
+ * </p>
+ *
+ * @author huangzqa
+ * @date 2022/8/1
+ */
+@Data
+public class MessageRespVO {
+
+    /**
+     * “0000” 表示令牌有效；
+     * 其他值表示无效或接口调用出错
+     */
+    @JsonProperty("status_code")
+    private String statusCode;
+
+    /**
+     * 状态码对应的详细描述
+     */
+    private String message;
+
+    /**
+     * 设置业务枚举
+     *
+     * @param businessRespEnum 业务枚举
+     */
+    public void setBusinessRespEnum(BusinessRespEnum businessRespEnum) {
+        setStatusCode(businessRespEnum.getValue());
+        setMessage(businessRespEnum.getLabel());
+    }
+
+
+    /**
+     * 设置业务枚举
+     *
+     * @param businessRespEnum 业务枚举
+     */
+    public static MessageRespVO messageEnumMessage(BusinessRespEnum businessRespEnum) {
+        MessageRespVO messageRespVO = new MessageRespVO();
+        messageRespVO.setBusinessRespEnum(businessRespEnum);
+        return messageRespVO;
+    }
+
+    /**
+     * 设置请求参数异常
+     *
+     * @param message 异常信息
+     */
+    public static MessageRespVO requestErrorMessage(String message) {
+        return messageEnumMessage(BusinessRespEnum.PARAM_ERROR, message);
+    }
+
+    /**
+     * 设置请求参数异常
+     *
+     * @param businessRespEnum 枚举
+     * @param message          异常信息
+     */
+    public static MessageRespVO messageEnumMessage(BusinessRespEnum businessRespEnum, String message) {
+        MessageRespVO messageRespVO = new MessageRespVO();
+        messageRespVO.setStatusCode(businessRespEnum.getValue());
+        messageRespVO.setMessage(message);
+        return messageRespVO;
+    }
+
+    /**
+     * 是否成功
+     *
+     * @return 是否成功
+     */
+    @JsonIgnore
+    public boolean isRespSuccess() {
+        return this.statusCode.equalsIgnoreCase(BusinessRespEnum.SUCCESS.getValue());
+    }
+
+    /**
+     * 是否失败
+     *
+     * @return 是否失败
+     */
+    @JsonIgnore
+    public boolean isRespFail() {
+        return !isRespSuccess();
+    }
+
+    /**
+     * 转发Result返回
+     *
+     * @param <T> 泛型
+     * @return Result返回
+     */
+    public <T> ResultRespVO<T> toResultRespVO() {
+        ResultRespVO<T> objectResultRespVO = new ResultRespVO<>();
+        objectResultRespVO.setStatusCode(statusCode);
+        objectResultRespVO.setMessage(message);
+        return objectResultRespVO;
+    }
+}

dcuc-auth-model/src/main/java/com/dragoninfo/dcuc/auth/api/vo/ResultRespPageVo.java

@@ -0,0 +1,42 @@
+package com.dragoninfo.dcuc.auth.api.vo;
+
+import lombok.Data;
+import lombok.EqualsAndHashCode;
+
+import java.util.List;
+
+/**
+ * @author mazq
+ * @date 2023/2/15
+ */
+@EqualsAndHashCode(callSuper = true)
+@Data
+public class ResultRespPageVo<T> extends MessageRespVO {
+
+    private ResultPageContent<T> result;
+
+    @Data
+    public static class ResultPageContent<T> {
+
+        /**
+         * 数据总条数
+         */
+        private Integer total;
+
+        /**
+         * 查询起始下标,默认 0，可不传
+         */
+        private Integer start;
+
+        /**
+         * 数据页大小 默认 1000，可不传
+         */
+        private Integer size;
+
+        /**
+         * 数据内容
+         */
+        private List<T> rows;
+    }
+
+}

dcuc-auth-model/src/main/java/com/dragoninfo/dcuc/auth/api/vo/ResultRespVO.java

@@ -0,0 +1,53 @@
+package com.dragoninfo.dcuc.auth.api.vo;
+
+import lombok.Data;
+import lombok.EqualsAndHashCode;
+
+/**
+ * <p>
+ * 用户令牌校验返回
+ * </p>
+ *
+ * @author huangzqa
+ * @date 2022/8/1
+ */
+@EqualsAndHashCode(callSuper = true)
+@Data
+public class ResultRespVO<T> extends MessageRespVO {
+
+    /***
+     * 返回内容
+     */
+    private T result;
+
+    public static <T> ResultRespVO<T> success(T result) {
+        ResultRespVO<T> objectResultRespVO = new ResultRespVO<>();
+        objectResultRespVO.setBusinessRespEnum(BusinessRespEnum.SUCCESS);
+        objectResultRespVO.setResult(result);
+        return objectResultRespVO;
+    }
+
+    /**
+     * 设置枚举消息
+     *
+     * @param businessRespEnum 枚举类型
+     * @param <T>              泛型
+     * @return 消息
+     */
+    public static <T> ResultRespVO<T> resultEnumMessage(BusinessRespEnum businessRespEnum) {
+        ResultRespVO<T> objectResultRespVO = new ResultRespVO<>();
+        objectResultRespVO.setBusinessRespEnum(businessRespEnum);
+        return objectResultRespVO;
+    }
+
+    /**
+     * 设置请求参数异常
+     *
+     * @param message 异常信息
+     */
+    public static <T> ResultRespVO<T> respRequestErrorMessage(String message) {
+        ResultRespVO<T> objectResultRespVO = resultEnumMessage(BusinessRespEnum.PARAM_ERROR);
+        objectResultRespVO.setMessage(message);
+        return objectResultRespVO;
+    }
+}

dcuc-auth-model/src/main/java/com/dragoninfo/dcuc/auth/api/vo/securitypolicy/req/AuthRiskOrderReqVo.java

@@ -0,0 +1,49 @@
+package com.dragoninfo.dcuc.auth.api.vo.securitypolicy.req;
+
+import com.dragoninfo.dcuc.auth.api.vo.zerotrust.ZeroTrustSignReqVO;
+import io.swagger.annotations.ApiModel;
+import io.swagger.annotations.ApiModelProperty;
+import lombok.Data;
+import lombok.EqualsAndHashCode;
+
+/**
+ * <p>
+ *
+ * </p>
+ *
+ * @author huangzqa
+ * @date 2023/6/29
+ */
+@ApiModel(value = "权限风险指令请求")
+@EqualsAndHashCode(callSuper = true)
+@Data
+public class AuthRiskOrderReqVo extends ZeroTrustSignReqVO {
+
+    /**
+     * 撤销的用户唯一标识
+     */
+    @ApiModelProperty(value = "撤销的用户唯一标识", required = true)
+    private String pid;
+
+    /**
+     * 需要撤销的权限类型（app、function）
+     *
+     * @see com.dragoninfo.dcuc.auth.api.enums.securitypolicy.AuthTypeEnum
+     */
+    @ApiModelProperty(value = "需要撤销的权限类型（app、function）", required = true)
+    private String authType;
+
+    /**
+     * 需要撤销的资源标识，多个以英文逗号,分隔
+     */
+    @ApiModelProperty(value = "需要撤销的资源标识，多个以英文逗号,分隔", required = true)
+    private String resourceId;
+
+    /**
+     * 撤销权限的持续时间（单位秒）
+     */
+    @ApiModelProperty(value = "撤销权限的持续时间（单位秒）", required = true)
+    private Integer effectiveTime;
+
+
+}

dcuc-auth-model/src/main/java/com/dragoninfo/dcuc/auth/api/vo/zerotrust/ZeroTrustDataRespVO.java

@@ -0,0 +1,88 @@
+package com.dragoninfo.dcuc.auth.api.vo.zerotrust;
+
+import com.dragoninfo.dcuc.auth.api.enums.zerotrust.ZeroTrustBusinessRespEnum;
+import com.dragoninfo.dcuc.auth.api.vo.DataItemRespVO;
+import com.fasterxml.jackson.annotation.JsonIgnore;
+import com.fasterxml.jackson.annotation.JsonProperty;
+import lombok.Data;
+
+/**
+ * <p>
+ *
+ * </p>
+ *
+ * @author huangzqa
+ * @date 2023/2/15
+ */
+@Data
+public class ZeroTrustDataRespVO<T> {
+
+    private String message;
+
+    /**
+     * 状态码
+     */
+    @JsonProperty("status_code")
+    private String statusCode;
+
+    /**
+     * 详细信息
+     */
+    private DataItemRespVO<T> data;
+
+    /**
+     * 设置业务枚举
+     *
+     * @param businessRespEnum 业务枚举
+     */
+    public static <T> ZeroTrustDataRespVO<T> resultEnumMessage(ZeroTrustBusinessRespEnum businessRespEnum) {
+        ZeroTrustDataRespVO<T> dataRespVO = new ZeroTrustDataRespVO<>();
+        dataRespVO.setStatusCode(businessRespEnum.getValue());
+        return dataRespVO;
+    }
+
+
+    public static <T> ZeroTrustDataRespVO<T> success(T result) {
+        ZeroTrustDataRespVO<T> dataRespVO = new ZeroTrustDataRespVO<>();
+        dataRespVO.setStatusCode(ZeroTrustBusinessRespEnum.SUCCESS.getValue());
+        DataItemRespVO<T> dataItemRespVO = new DataItemRespVO<>();
+        dataItemRespVO.setResult(result);
+        dataRespVO.setData(dataItemRespVO);
+        dataRespVO.setMessage("操作成功");
+        return dataRespVO;
+    }
+
+    public static <T> ZeroTrustDataRespVO<T> resultEnumMessage(ZeroTrustBusinessRespEnum respEnum, T result) {
+        ZeroTrustDataRespVO<T> dataRespVO = new ZeroTrustDataRespVO<>();
+        dataRespVO.setStatusCode(respEnum.getValue());
+        dataRespVO.setMessage(respEnum.getLabel());
+        DataItemRespVO<T> dataItemRespVO = new DataItemRespVO<>();
+        dataRespVO.setData(dataItemRespVO);
+        dataItemRespVO.setResult(result);
+        return dataRespVO;
+    }
+
+
+    /**
+     * 是否成功
+     *
+     * @return 是否成功
+     */
+    @JsonIgnore
+    public boolean isRespSuccess() {
+        return this.statusCode.equalsIgnoreCase(ZeroTrustBusinessRespEnum.SUCCESS.getValue());
+    }
+
+    /**
+     * 转换为ZeroTrustDataRespVO返回
+     *
+     * @param <T> 泛型
+     * @return Result返回
+     */
+    public <T> ZeroTrustDataRespVO<T> toDataRespVO() {
+        ZeroTrustDataRespVO<T> objectZeroTrustResultRespVO = new ZeroTrustDataRespVO<>();
+        objectZeroTrustResultRespVO.setStatusCode(statusCode);
+        objectZeroTrustResultRespVO.setMessage(message);
+        return objectZeroTrustResultRespVO;
+    }
+}

dcuc-auth-model/src/main/java/com/dragoninfo/dcuc/auth/api/vo/zerotrust/ZeroTrustMessageRespVO.java

@@ -0,0 +1,123 @@
+package com.dragoninfo.dcuc.auth.api.vo.zerotrust;
+
+import com.dragoninfo.dcuc.auth.api.enums.zerotrust.ZeroTrustBusinessRespEnum;
+import com.dragoninfo.dcuc.auth.api.vo.BusinessRespEnum;
+import com.dragoninfo.dcuc.auth.api.vo.ResultRespVO;
+import com.fasterxml.jackson.annotation.JsonIgnore;
+import com.fasterxml.jackson.annotation.JsonProperty;
+import lombok.Data;
+
+/**
+ * <p>
+ * 用户令牌校验返回
+ * </p>
+ *
+ * @author huangzqa
+ * @date 2022/8/1
+ */
+@Data
+public class ZeroTrustMessageRespVO {
+
+    /**
+     * “0000” 表示令牌有效；
+     * 其他值表示无效或接口调用出错
+     */
+    @JsonProperty("status_code")
+    private String statusCode;
+
+    /**
+     * 状态码对应的详细描述
+     */
+    private String message;
+
+    /**
+     * 设置请求参数异常
+     *
+     * @param message 异常信息
+     */
+    public static ZeroTrustMessageRespVO requestErrorMessage(String message) {
+        return messageEnumMessage(ZeroTrustBusinessRespEnum.OPERATE_FAIL, message);
+    }
+
+    /**
+     * 设置业务枚举
+     *
+     * @param businessRespEnum 业务枚举
+     */
+    public void setBusinessRespEnum(ZeroTrustBusinessRespEnum businessRespEnum) {
+        setStatusCode(businessRespEnum.getValue());
+        setMessage(businessRespEnum.getLabel());
+    }
+
+
+    /**
+     * 设置业务枚举
+     *
+     * @param businessRespEnum 业务枚举
+     */
+    public static ZeroTrustMessageRespVO messageEnumMessage(ZeroTrustBusinessRespEnum businessRespEnum) {
+        ZeroTrustMessageRespVO messageRespVO = new ZeroTrustMessageRespVO();
+        messageRespVO.setBusinessRespEnum(businessRespEnum);
+        return messageRespVO;
+    }
+
+    /**
+     * 设置请求参数异常
+     *
+     * @param businessRespEnum 枚举
+     * @param message          异常信息
+     */
+    public static ZeroTrustMessageRespVO messageEnumMessage(ZeroTrustBusinessRespEnum businessRespEnum, String message) {
+        ZeroTrustMessageRespVO messageRespVO = new ZeroTrustMessageRespVO();
+        messageRespVO.setStatusCode(businessRespEnum.getValue());
+        messageRespVO.setMessage(message);
+        return messageRespVO;
+    }
+
+    /**
+     * 是否成功
+     *
+     * @return 是否成功
+     */
+    @JsonIgnore
+    public boolean isRespSuccess() {
+        return this.statusCode.equalsIgnoreCase(BusinessRespEnum.SUCCESS.getValue());
+    }
+
+    /**
+     * 是否失败
+     *
+     * @return 是否失败
+     */
+    @JsonIgnore
+    public boolean isRespFail() {
+        return !isRespSuccess();
+    }
+
+    /**
+     * 转发Result返回
+     *
+     * @param <T> 泛型
+     * @return Result返回
+     */
+    public <T> ResultRespVO<T> toResultRespVO() {
+        ResultRespVO<T> objectResultRespVO = new ResultRespVO<>();
+        objectResultRespVO.setStatusCode(statusCode);
+        objectResultRespVO.setMessage(message);
+        return objectResultRespVO;
+    }
+
+
+    /**
+     * 转换为ZeroTrustDataRespVO返回
+     *
+     * @param <T> 泛型
+     * @return Result返回
+     */
+    public <T> ZeroTrustDataRespVO<T> toDataRespVO() {
+        ZeroTrustDataRespVO<T> objectZeroTrustResultRespVO = new ZeroTrustDataRespVO<>();
+        objectZeroTrustResultRespVO.setStatusCode(statusCode);
+        objectZeroTrustResultRespVO.setMessage(message);
+        return objectZeroTrustResultRespVO;
+    }
+}

dcuc-auth-model/src/main/java/com/dragoninfo/dcuc/auth/api/vo/zerotrust/ZeroTrustSignReqVO.java

@@ -0,0 +1,47 @@
+package com.dragoninfo.dcuc.auth.api.vo.zerotrust;
+
+import io.swagger.annotations.ApiModel;
+import io.swagger.annotations.ApiModelProperty;
+import lombok.Data;
+
+/**
+ * <p>
+ * 验签请求
+ * </p>
+ *
+ * @author huangzqa
+ * @date 2022/8/3
+ */
+@ApiModel(value = "验签请求")
+@Data
+public class ZeroTrustSignReqVO {
+
+    /**
+     * 接口调用方标识
+     * 接口调用方Id，用于检查接口调用的合法性，由认证服务分配并线下告知应用厂商。
+     */
+    @ApiModelProperty(value = "接口调用方标识")
+    private String callerId;
+
+    /**
+     * 接口调用时间戳
+     * 本次请求时的时间戳（1970至今的毫秒数），精确到毫秒。
+     * 服务会对该时间戳进行检验，时间偏差超过一定限度的将拒绝服务。
+     */
+    @ApiModelProperty(value = "接口调用时间戳")
+    private String callerTimestamp;
+
+    /**
+     * 接口调用随机值
+     * 本次请求时的随机字符串，如UUId。
+     */
+    @ApiModelProperty(value = "接口调用随机值")
+    private String callerNounce;
+
+    /**
+     * 签名
+     * 需采用签名算法对接口入参进行签名，以保证接口入参不被篡改，签名算法需具备安全性和高效性。
+     */
+    @ApiModelProperty(value = "签名")
+    private String callerSign;
+}

dcuc-auth-model/src/main/java/com/dragoninfo/dcuc/auth/api/vo/zerotrust/authapply/ApiRoleAuthContentVo.java

@@ -0,0 +1,42 @@
+package com.dragoninfo.dcuc.auth.api.vo.zerotrust.authapply;
+
+import com.fasterxml.jackson.annotation.JsonFormat;
+import io.swagger.annotations.ApiModel;
+import io.swagger.annotations.ApiModelProperty;
+import lombok.Data;
+import org.springframework.format.annotation.DateTimeFormat;
+
+import javax.validation.constraints.NotEmpty;
+import javax.validation.constraints.NotNull;
+import java.util.Date;
+import java.util.List;
+
+/**
+ * @author mazq
+ * @date 2023/11/22
+ */
+@Data
+@ApiModel(value = "角色授权申请内容Vo")
+public class ApiRoleAuthContentVo {
+
+    @ApiModelProperty(value = "需要申请授权的应用编码")
+    private String appCode;
+
+    @NotNull
+    @DateTimeFormat(pattern = "yyyy-MM-dd HH:mm:ss")
+    @JsonFormat(pattern = "yyyy-MM-dd HH:mm:ss", timezone = "GMT+8")
+    @ApiModelProperty(value = "开始时间")
+    private Date startTime;
+
+    @NotNull
+    @DateTimeFormat(pattern = "yyyy-MM-dd HH:mm:ss")
+    @JsonFormat(pattern = "yyyy-MM-dd HH:mm:ss", timezone = "GMT+8")
+    @ApiModelProperty(value = "结束时间")
+    private Date endTime;
+
+    @NotEmpty
+    @ApiModelProperty(value = "需要授权的角色编码集合")
+    private List<String> roleCodes;
+
+
+}

dcuc-auth-model/src/main/java/com/dragoninfo/dcuc/auth/api/vo/zerotrust/authapply/ApiRoleAuthReqVo.java

@@ -0,0 +1,28 @@
+package com.dragoninfo.dcuc.auth.api.vo.zerotrust.authapply;
+
+import io.swagger.annotations.ApiModel;
+import io.swagger.annotations.ApiModelProperty;
+import lombok.Data;
+
+import javax.validation.Valid;
+import javax.validation.constraints.NotBlank;
+import javax.validation.constraints.NotNull;
+
+/**
+ * @author mazq
+ * @date 2023/11/22
+ */
+@Data
+@ApiModel(value = "api-角色授权申请Vo")
+public class ApiRoleAuthReqVo {
+
+    @NotBlank
+    @ApiModelProperty(value = "申请方应用令牌")
+    private String appTokenId;
+
+    @Valid
+    @NotNull
+    @ApiModelProperty(value = "角色授权申请内容")
+    private ApiRoleAuthContentVo contents;
+
+}

dcuc-auth-model/src/main/java/com/dragoninfo/dcuc/auth/api/vo/zerotrust/authapply/ApiServiceAuthContentVo.java

@@ -0,0 +1,42 @@
+package com.dragoninfo.dcuc.auth.api.vo.zerotrust.authapply;
+
+import com.fasterxml.jackson.annotation.JsonFormat;
+import io.swagger.annotations.ApiModel;
+import io.swagger.annotations.ApiModelProperty;
+import lombok.Data;
+import org.springframework.format.annotation.DateTimeFormat;
+
+import javax.validation.constraints.NotEmpty;
+import javax.validation.constraints.NotNull;
+import java.util.Date;
+import java.util.List;
+
+/**
+ * @author mazq
+ * @date 2023/11/22
+ */
+@Data
+@ApiModel(value = "服务授权申请内容Vo")
+public class ApiServiceAuthContentVo {
+
+    @ApiModelProperty(value = "需要申请授权的应用资源编码")
+    private String appCode;
+
+    @NotNull
+    @DateTimeFormat(pattern = "yyyy-MM-dd HH:mm:ss")
+    @JsonFormat(pattern = "yyyy-MM-dd HH:mm:ss", timezone = "GMT+8")
+    @ApiModelProperty(value = "开始时间")
+    private Date startTime;
+
+    @NotNull
+    @DateTimeFormat(pattern = "yyyy-MM-dd HH:mm:ss")
+    @JsonFormat(pattern = "yyyy-MM-dd HH:mm:ss", timezone = "GMT+8")
+    @ApiModelProperty(value = "结束时间")
+    private Date endTime;
+
+    @NotEmpty
+    @ApiModelProperty(value = "需要授权的服务资源编码集合")
+    private List<String> serviceCodes;
+
+
+}

dcuc-auth-model/src/main/java/com/dragoninfo/dcuc/auth/api/vo/zerotrust/authapply/ApiServiceAuthReqVo.java

@@ -0,0 +1,30 @@
+package com.dragoninfo.dcuc.auth.api.vo.zerotrust.authapply;
+
+import io.swagger.annotations.ApiModel;
+import io.swagger.annotations.ApiModelProperty;
+import lombok.Data;
+
+import javax.validation.Valid;
+import javax.validation.constraints.NotBlank;
+import javax.validation.constraints.NotEmpty;
+import javax.validation.constraints.NotNull;
+
+/**
+ * @author mazq
+ * @date 2023/11/24
+ */
+@Data
+@ApiModel("服务授权申请Vo")
+public class ApiServiceAuthReqVo {
+
+    @NotBlank
+    @ApiModelProperty(value = "申请方应用令牌")
+    private String appTokenId;
+
+    @Valid
+    @NotNull
+    @ApiModelProperty(value = "授权申请内容")
+    private ApiServiceAuthContentVo contents;
+
+
+}

dcuc-auth-model/src/main/java/com/dragoninfo/dcuc/auth/api/vo/zerotrust/authapply/AuthApplyRespVo.java

@@ -0,0 +1,27 @@
+package com.dragoninfo.dcuc.auth.api.vo.zerotrust.authapply;
+
+import io.swagger.annotations.ApiModelProperty;
+import lombok.Data;
+
+import java.util.List;
+
+/**
+ * @author mazq
+ * @date 2023/11/23
+ */
+@Data
+public class AuthApplyRespVo {
+
+    /**
+     * @see com.dragoninfo.dcuc.auth.api.enums.zerotrust.AuthApplyRespEnum
+     */
+    @ApiModelProperty(value = "业务状态码")
+    private String respCode;
+
+    @ApiModelProperty(value = "业务响应内容")
+    private List<String> respContent;
+
+    @ApiModelProperty(value = "业务消息提示")
+    private String respMsg;
+
+}

dcuc-auth-model/src/main/java/com/dragoninfo/dcuc/auth/api/vo/zerotrust/authticate/AppAuthReqVO.java

@@ -0,0 +1,24 @@
+
+package com.dragoninfo.dcuc.auth.api.vo.zerotrust.authticate;
+
+import io.swagger.annotations.ApiModelProperty;
+import lombok.Data;
+
+/**
+ * <p>
+ * 应用级鉴权请求
+ * </p>
+ *
+ * @author huangzqa
+ * @date 2022/8/1
+ */
+@Data
+public class AppAuthReqVO {
+    /**
+     * 用户令牌标识
+     */
+    @ApiModelProperty(value = "用户令牌标识")
+    private String userTokenId;
+
+
+}

dcuc-auth-model/src/main/java/com/dragoninfo/dcuc/auth/api/vo/zerotrust/authticate/DataAuthReqVO.java

@@ -0,0 +1,38 @@
+
+package com.dragoninfo.dcuc.auth.api.vo.zerotrust.authticate;
+
+import io.swagger.annotations.ApiModelProperty;
+import lombok.Data;
+
+/**
+ * <p>
+ * 数据鉴权请求
+ * </p>
+ *
+ * @author huangzqa
+ * @date 2022/8/1
+ */
+@Data
+public class DataAuthReqVO {
+
+    /**
+     * 应用令牌标识
+     */
+    @ApiModelProperty(value = "应用令牌标识")
+    private String appTokenId;
+
+    /**
+     * 任务编码
+     */
+    @ApiModelProperty(value = "任务编码")
+    private String taskId;
+
+    /**
+     * 资源标识符
+     */
+    @ApiModelProperty(value = "资源标识符")
+    private String resourceId;
+
+
+
+}

dcuc-auth-model/src/main/java/com/dragoninfo/dcuc/auth/api/vo/zerotrust/authticate/DataAuthRespVO.java

@@ -0,0 +1,33 @@
+
+package com.dragoninfo.dcuc.auth.api.vo.zerotrust.authticate;
+
+import lombok.Data;
+
+/**
+ * <p>
+ * 数据鉴权返回值
+ * </p>
+ *
+ * @author huangzqa
+ * @date 2022/8/1
+ */
+@Data
+public class DataAuthRespVO {
+
+    /**
+     * 资源标识符
+     */
+    private String resourceId;
+
+    /**
+     * 数据项标识符，英文,号分隔
+     */
+    private String itemIdentifier;
+
+    public static DataAuthRespVO empty() {
+        DataAuthRespVO dataAuthRespVO = new DataAuthRespVO();
+        dataAuthRespVO.setResourceId("");
+        dataAuthRespVO.setItemIdentifier("");
+        return dataAuthRespVO;
+    }
+}

dcuc-auth-model/src/main/java/com/dragoninfo/dcuc/auth/api/vo/zerotrust/authticate/FunctionAuthReqVO.java

@@ -0,0 +1,32 @@
+
+package com.dragoninfo.dcuc.auth.api.vo.zerotrust.authticate;
+
+import io.swagger.annotations.ApiModelProperty;
+import lombok.Data;
+
+/**
+ * <p>
+ * 功能鉴权请求
+ * </p>
+ *
+ * @author huangzqa
+ * @date 2022/8/1
+ */
+@Data
+public class FunctionAuthReqVO {
+
+    /**
+     * 应用令牌标识
+     */
+    @ApiModelProperty(value = "应用令牌标识")
+    private String appTokenId;
+
+    /**
+     * 任务编码
+     */
+    @ApiModelProperty(value = "任务编码")
+    private String taskId;
+
+
+
+}

dcuc-auth-model/src/main/java/com/dragoninfo/dcuc/auth/api/vo/zerotrust/authticate/ServiceAuthReqVO.java

@@ -0,0 +1,31 @@
+
+package com.dragoninfo.dcuc.auth.api.vo.zerotrust.authticate;
+
+import io.swagger.annotations.ApiModelProperty;
+import lombok.Data;
+
+/**
+ * <p>
+ * 服务鉴权请求
+ * </p>
+ *
+ * @author huangzqa
+ * @date 2022/8/1
+ */
+@Data
+public class ServiceAuthReqVO {
+
+    /**
+     * 应用令牌标识
+     */
+    @ApiModelProperty(value = "应用令牌标识")
+    private String appTokenId;
+
+    /**
+     * 任务编码
+     */
+    @ApiModelProperty(value = "任务编码")
+    private String taskId;
+
+
+}

dcuc-auth-model/src/main/java/com/dragoninfo/dcuc/auth/api/vo/zerotrust/authticate/UserOrgAuthReqVO.java

@@ -0,0 +1,33 @@
+
+package com.dragoninfo.dcuc.auth.api.vo.zerotrust.authticate;
+
+import lombok.Data;
+
+/**
+ * <p>
+ * 用户结构数据鉴权请求
+ * </p>
+ *
+ * @author huangzqa
+ * @date 2022/8/1
+ */
+@Data
+public class UserOrgAuthReqVO {
+
+    /**
+     * 应用令牌标识
+     */
+    private String appTokenId;
+
+    /**
+     * 身份证号
+     */
+    private String idcard;
+
+    /**
+     * 机构编号
+     */
+    private String orgCode;
+
+
+}

dcuc-auth-model/src/main/java/com/dragoninfo/dcuc/auth/api/vo/zerotrust/role/ApiAppRoleRespVo.java

@@ -0,0 +1,26 @@
+package com.dragoninfo.dcuc.auth.api.vo.zerotrust.role;
+
+import io.swagger.annotations.ApiModel;
+import io.swagger.annotations.ApiModelProperty;
+import lombok.Data;
+
+import java.util.List;
+
+/**
+ * @author mazq
+ * @date 2023/11/22
+ */
+@Data
+@ApiModel(value = "应用角色信息Vo")
+public class ApiAppRoleRespVo {
+
+    @ApiModelProperty(value = "应用编码")
+    private String appCode;
+
+    @ApiModelProperty(value = "应用名称")
+    private String appName;
+
+    @ApiModelProperty(value = "应用下的角色信息")
+    private List<ApiRoleRespVo> roleInfos;
+
+}