From 90494521ee279d2cefc2c7fe4cd6081fc2f86e4f Mon Sep 17 00:00:00 2001
From: yangzhongjiao <yangzhongjiao@actionsky.com>
Date: Tue, 11 Feb 2025 09:13:57 +0000
Subject: [PATCH] fix: executed users without view otherworkflow permission who
 cant't view workflow and tasks

---
 sqle/model/project_permission.go | 5 +++--
 sqle/model/workflow_list.go      | 1 +
 2 files changed, 4 insertions(+), 2 deletions(-)

diff --git a/sqle/model/project_permission.go b/sqle/model/project_permission.go
index 6314a6eb2..d9c28c755 100644
--- a/sqle/model/project_permission.go
+++ b/sqle/model/project_permission.go
@@ -23,15 +23,16 @@ AND (w.create_user_id = ? OR cur_ws.assignees REGEXP ?)
 func (s *Storage) UserCanViewWorkflow(userId string, workflowId string) (bool, error) {
 	query := `SELECT count(w.id) FROM workflows AS w
 JOIN workflow_records AS wr ON w.workflow_record_id = wr.id AND w.workflow_id = ?
+LEFT JOIN workflow_instance_records AS wir ON wr.id = wir.workflow_record_id
 LEFT JOIN workflow_steps AS cur_ws ON wr.current_workflow_step_id = cur_ws.id
 LEFT JOIN workflow_step_templates AS cur_wst ON cur_ws.workflow_step_template_id = cur_wst.id
 LEFT JOIN workflow_steps AS op_ws ON w.workflow_id = op_ws.workflow_id AND op_ws.state != "initialized"
 LEFT JOIN workflow_step_templates AS op_wst ON op_ws.workflow_step_template_id = op_wst.id
 where w.deleted_at IS NULL
-AND (w.create_user_id = ? OR cur_ws.assignees REGEXP ? OR op_ws.operation_user_id = ?)
+AND (w.create_user_id = ? OR cur_ws.assignees REGEXP ? OR op_ws.operation_user_id = ? OR wir.execution_user_id = ?)
 `
 	var count int64
-	err := s.db.Raw(query, workflowId, userId, userId, userId).Count(&count).Error
+	err := s.db.Raw(query, workflowId, userId, userId, userId, userId).Count(&count).Error
 	if err != nil {
 		return false, errors.New(errors.ConnectStorageError, err)
 	}
diff --git a/sqle/model/workflow_list.go b/sqle/model/workflow_list.go
index 279ff0c86..37933d696 100644
--- a/sqle/model/workflow_list.go
+++ b/sqle/model/workflow_list.go
@@ -83,6 +83,7 @@ AND (
 w.create_user_id = :current_user_id 
 OR curr_ws.assignees REGEXP :current_user_id
 OR all_ws.operation_user_id = :current_user_id
+OR wir.execution_assignees = :current_user_id
 OR IF(wr.status = 'wait_for_execution'
 				, wir.execution_assignees REGEXP :current_user_id
 				, '')