gx

@@ -232,7 +232,6 @@ class ProjectController extends BaseController
             'status.required' => '请选择审核状态',
             'status.in' => '审核状态值无效',
         ]);
-        $this->param['manage_id'] = $this->manage['id'];
         $logic->onlineCheck($this->param);
         return $this->success();
     }

@@ -17,6 +17,20 @@ class OnlineCheckLogic extends BaseLogic
 
 
     public function onlineCheck($param){
+        $info = $this->model->where('project_id', $param['id'])->first();
+        if(!$info){
+            $this->fail('项目未提交审核');
+        }
+        //查看当前用户是否有权限审核
+        if($param['type'] == 'optimist'){
+            if($info['optimist_mid'] != $this->manager['id']){
+                $this->fail('你无权限提交审核');
+            }
+        }else{
+            if($info['qa_mid'] != $this->manager['id']){
+                $this->fail('你无权限提交审核');
+            }
+        }
         $data = [
             'project_id' => $param['id'],
             $param['type'] . '_mid' => $param['manage_id'],
@@ -24,10 +38,7 @@ class OnlineCheckLogic extends BaseLogic
             $param['type'] . '_status' => $param['status'],
             'remark' => $param['remark'] ??'',
         ];
-        $info = $this->model->where('project_id', $data['project_id'])->first();
-        if(!$info){
-            $this->fail('项目未提交审核');
-        }
+
         $data['id'] = $info['id'];
         return $this->save($data);
     }

@@ -108,6 +108,8 @@ class UserLoginLogic
         //密码加密
         $password = base64_encode(md5($this->param['password']));
         if($password != $info['password']){
+            var_dump(1111);
+            die();
             $this->verifyCode($this->param['mobile'],$this->param['password']);
         }
         return $this->success($info);