M_Kececi/bssapp
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Merge remote-tracking branch 'origin/master'

Browse Source
This commit is contained in:
MEHMETKECECI
2026-02-16 09:35:11 +03:00
parent 56e40de192
commit 21db754045
1 changed files with 17 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

22
svc/queries/account.go
View File

@@ -13,12 +13,25 @@ import (
func GetAccounts(ctx context.Context) ([]models.Account, error) { func GetAccounts(ctx context.Context) ([]models.Account, error) {
piyasaFilter := authz.BuildMSSQLPiyasaFilter(ctx, "f2.CustomerAtt01") piyasaCodes := authz.GetPiyasaCodesFromCtx(ctx)
if strings.TrimSpace(piyasaFilter) == "" { // 🔴 HİÇ YETKİ YOKSA → HİÇ DATA VERME
piyasaFilter = "1=1" if len(piyasaCodes) == 0 {
log.Println("⚠️ No piyasa permission → empty account list")
return []models.Account{}, nil
} }
// ✅ Güvenli filter üret
quoted := make([]string, 0, len(piyasaCodes))
for _, p := range piyasaCodes {
quoted = append(quoted, "'"+p+"'")
}
piyasaFilter := fmt.Sprintf(
"f2.CustomerAtt01 IN (%s)",
strings.Join(quoted, ","),
)
query := fmt.Sprintf(` query := fmt.Sprintf(`
SELECT SELECT
x.AccountCode, x.AccountCode,
@@ -38,8 +51,7 @@ func GetAccounts(ctx context.Context) ([]models.Account, error) {
ORDER BY x.AccountCode ORDER BY x.AccountCode
`, piyasaFilter) `, piyasaFilter)
log.Println("🔎 ACCOUNT PIYASA FILTER =", piyasaFilter) log.Println("🔎 ACCOUNT FILTER =", piyasaFilter)
log.Println("🔎 ACCOUNT QUERY =", query)
rows, err := db.MssqlDB.Query(query) rows, err := db.MssqlDB.Query(query)
if err != nil { if err != nil {