增加userAuth===3为超级管理员

Author: KindSeven

src/article/article.service.ts

@@ -163,7 +163,7 @@ export class ArticleService {
     }
 
     // 检查权限：只有文章作者和管理员可以修改
-    const isAdmin = user.userAuth === 2;
+    const isAdmin = user.userAuth === 2 || user.userAuth === 3;
     const isAuthor = article.userId === userId;
 
     if (!isAdmin && !isAuthor) {
@@ -205,7 +205,7 @@ export class ArticleService {
     }
 
     // 检查权限：只有文章作者和管理员可以删除
-    const isAdmin = user.userAuth === 2;
+    const isAdmin = user.userAuth === 2 || user.userAuth === 3;
     const isAuthor = article.userId === userId;
 
     if (!isAdmin && !isAuthor) {

src/auth/auth.service.ts

@@ -1,5 +1,10 @@
 import { UsercenterService } from './../usercenter/usercenter.service';
-import { Injectable, UnauthorizedException, NotFoundException, BadRequestException } from '@nestjs/common';
+import {
+  Injectable,
+  UnauthorizedException,
+  NotFoundException,
+  BadRequestException,
+} from '@nestjs/common';
 import { JwtService } from '@nestjs/jwt';
 
 @Injectable()
@@ -46,7 +51,7 @@ export class AuthService {
       if (!refresh_token || typeof refresh_token !== 'string') {
         throw new BadRequestException('无效的refresh_token格式');
       }
-      
+
       // 验证token
       const decoded = await this.jwtService.verifyAsync(refresh_token);
 
@@ -68,7 +73,10 @@ export class AuthService {
       return { refresh_token: newRefresh_token, access_token };
     } catch (error) {
       // 区分不同类型的错误
-      if (error instanceof BadRequestException || error instanceof NotFoundException) {
+      if (
+        error instanceof BadRequestException ||
+        error instanceof NotFoundException
+      ) {
         throw error; // 重新抛出原始错误
       }
       // JWT相关错误统一处理为401未授权

src/auth/guards/admin.guard.ts

@@ -27,7 +27,7 @@ export class AdminGuard implements CanActivate {
     const userInfo = await this.usercenterService.findOne(user.sub);
 
     // 检查用户是否具有管理员权限 (userAuth === 2)
-    if (userInfo.userAuth !== 2) {
+    if (userInfo.userAuth !== 2 || userInfo.userAuth !== 3 ) {
       throw new ForbiddenException('需要管理员权限');
     }
 

src/recruitment/recruitment.service.ts

@@ -170,7 +170,7 @@ export class RecruitmentService {
     }
 
     // 检查权限：只有管理员可以修改
-    const isAdmin = user.userAuth === 2;
+    const isAdmin = user.userAuth === 2 || user.userAuth === 3;
 
     if (!isAdmin) {
       throw new ForbiddenException(
@@ -214,7 +214,7 @@ export class RecruitmentService {
     }
 
     // 检查权限：只有管理员可以删除
-    const isAdmin = user.userAuth === 2;
+    const isAdmin = user.userAuth === 2 || user.userAuth === 3;
 
     if (!isAdmin) {
       throw new ForbiddenException(

src/resume-template/resume-template.service.ts

@@ -33,7 +33,7 @@ export class ResumeTemplateService {
     if (!user) {
       throw new NotFoundException(`用户ID ${id} 不存在`);
     }
-    if (user.userAuth !== 2) {
+    if (user.userAuth !== 2 || user.userAuth !== 3) {
       throw new NotFoundException(`用户无权限创建简历模板`);
     }
     const ResumeTemplate = this.resumeTemplateRepository.create({

src/usercenter/entities/usercenter.entity.ts

@@ -67,7 +67,7 @@ export class UserEntity {
     type: 'int',
     name: 'user_auth',
     nullable: false,
-    default: 1, // 默认值为 1（普通用户），2（管理员）
+    default: 1, // 默认值为 1（普通用户），2（管理员）,3（超级管理员）
   })
   userAuth: number; // 用户权限
 
@@ -127,7 +127,7 @@ export class UserEntity {
   @Column({
     type: 'varchar',
     name: 'avatar',
-    default: ''
+    default: '',
   })
   avatar: string; // 头像
 

src/usercenter/usercenter.service.ts

@@ -3,7 +3,7 @@ import {
   Injectable,
   InternalServerErrorException,
   NotFoundException,
-  ConflictException
+  ConflictException,
 } from '@nestjs/common';
 import { CreateUsercenterDto } from './dto/create-usercenter.dto';
 import { UpdateUsercenterDto } from './dto/update-usercenter.dto';
@@ -17,7 +17,7 @@ export class UsercenterService {
   constructor(
     @InjectRepository(UserEntity)
     private readonly userRepository: Repository<UserEntity>,
-  ) { }
+  ) {}
   async createUser(createUsercenterDto: CreateUsercenterDto) {
     // 验证密码是否匹配
     if (