From 83efbc2e5d2283eb8b8b706ef0a131d31bc12708 Mon Sep 17 00:00:00 2001
From: zhl <zhl010101@gmail.com>
Date: Tue, 20 Apr 2021 20:42:35 +0800
Subject: [PATCH] =?UTF-8?q?=E7=B3=BB=E7=BB=9F=E7=AE=A1=E7=90=86=E5=91=98?=
 =?UTF-8?q?=E8=B7=B3=E8=BF=87=E6=9D=83=E9=99=90=E6=A3=80=E6=9F=A5?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 src/plugins/zauth.ts | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/src/plugins/zauth.ts b/src/plugins/zauth.ts
index 259e803..f418ea5 100644
--- a/src/plugins/zauth.ts
+++ b/src/plugins/zauth.ts
@@ -42,15 +42,16 @@ const zAuthPlugin: FastifyPluginAsync = async function (
         if (!account.roles) {
           return reply.send({ code: 11, msg: 'no permission' })
         }
+        let isSupAdmin = account.isSysAdmin()
         if (request.roles && request.roles.indexOf('anon') == -1) {
-          if (account.roles) {
+          if (account.roles && !isSupAdmin) {
             const roles = request.roles.intersect(account.roles)
             if (!roles || roles.length == 0) {
               return reply.send({ code: 12, msg: 'no permission' })
             }
           }
         }
-        if (request.permissions) {
+        if (request.permissions && !isSupAdmin) {
           let canDo = false
           for (let role of account.roles) {
             for (let sub of request.permissions) {