SET NAMES utf8mb4 COLLATE utf8mb4_unicode_ci; -- 注册风控配置由 user-service 执行,后台只负责维护菜单、权限和跨服务配置入口。 SET @now_ms = CAST(UNIX_TIMESTAMP(UTC_TIMESTAMP(3)) * 1000 AS UNSIGNED); INSERT INTO admin_permissions (name, code, kind, description, created_at_ms, updated_at_ms) VALUES ('风控配置查看', 'risk-config:view', 'menu', '', @now_ms, @now_ms), ('风控配置更新', 'risk-config:update', 'button', '', @now_ms, @now_ms) ON DUPLICATE KEY UPDATE name = VALUES(name), kind = VALUES(kind), description = VALUES(description), updated_at_ms = @now_ms; INSERT INTO admin_menus (parent_id, title, code, path, icon, permission_code, sort, visible, created_at_ms, updated_at_ms) SELECT parent.id, '风控管理', 'app-user-risk-config', '/app/users/risk-config', 'shield', 'risk-config:view', 65, TRUE, @now_ms, @now_ms FROM admin_menus parent WHERE parent.code = 'app-users' ON DUPLICATE KEY UPDATE parent_id = VALUES(parent_id), title = VALUES(title), path = VALUES(path), icon = VALUES(icon), permission_code = VALUES(permission_code), sort = VALUES(sort), visible = VALUES(visible), updated_at_ms = @now_ms; UPDATE admin_menus SET sort = 66, updated_at_ms = @now_ms WHERE code = 'app-user-region-blocks' AND sort < 66; INSERT IGNORE INTO admin_role_permissions (role_id, permission_id) SELECT admin_role.id, admin_permission.id FROM admin_roles admin_role JOIN admin_permissions admin_permission WHERE admin_role.code IN ('platform-admin', 'ops-admin') AND admin_permission.code IN ('risk-config:view', 'risk-config:update'); INSERT IGNORE INTO admin_role_permissions (role_id, permission_id) SELECT admin_role.id, admin_permission.id FROM admin_roles admin_role JOIN admin_permissions admin_permission WHERE admin_role.code IN ('auditor', 'readonly') AND admin_permission.code = 'risk-config:view';