fix-[xmg二期]:修改鉴权为admin，xmg

src/main/java/com/ruoyi/project/VRdemo/controller/ArchivesUnboundController.java

@@ -63,6 +63,7 @@ public class ArchivesUnboundController extends BaseController {
     /**
      * 查询分页列表
      */
+    @PreAuthorize("@ss.hasAnyRoles('admin,xmg')")
     @GetMapping("/pageList")
     public TableDataInfo pageList(ArchivesUnbound archivesUnbound) {
         startPage();
@@ -73,7 +74,7 @@ public class ArchivesUnboundController extends BaseController {
     /**
      * 获取博雅集 Archives Unbound（Gale）详细信息
      */
-    @PreAuthorize("@ss.hasPermi('VRdemo:ArchivesUnbound:query')")
+    @Anonymous
     @GetMapping(value = "/{id}")
     public AjaxResult getInfo(@PathVariable("id") Long id) {
         return success(archivesUnboundService.selectArchivesUnboundById(id));
@@ -82,7 +83,7 @@ public class ArchivesUnboundController extends BaseController {
     /**
      * 新增博雅集 Archives Unbound（Gale）
      */
-    @PreAuthorize("@ss.hasPermi('VRdemo:ArchivesUnbound:add')")
+    @PreAuthorize("@ss.hasAnyRoles('admin,xmg')")
     @Log(title = "博雅集 Archives Unbound（Gale）", businessType = BusinessType.INSERT)
     @PostMapping
     public AjaxResult add(@RequestBody ArchivesUnbound archivesUnbound) {
@@ -92,7 +93,7 @@ public class ArchivesUnboundController extends BaseController {
     /**
      * 修改博雅集 Archives Unbound（Gale）
      */
-    @PreAuthorize("@ss.hasPermi('VRdemo:ArchivesUnbound:edit')")
+    @PreAuthorize("@ss.hasAnyRoles('admin,xmg')")
     @Log(title = "博雅集 Archives Unbound（Gale）", businessType = BusinessType.UPDATE)
     @PutMapping
     public AjaxResult edit(@RequestBody ArchivesUnbound archivesUnbound) {
@@ -102,7 +103,7 @@ public class ArchivesUnboundController extends BaseController {
     /**
      * 删除博雅集 Archives Unbound（Gale）
      */
-    @PreAuthorize("@ss.hasPermi('VRdemo:ArchivesUnbound:remove')")
+    @PreAuthorize("@ss.hasAnyRoles('admin,xmg')")
     @Log(title = "博雅集 Archives Unbound（Gale）", businessType = BusinessType.DELETE)
     @DeleteMapping("/{ids}")
     public AjaxResult remove(@PathVariable Long[] ids) {
@@ -112,7 +113,7 @@ public class ArchivesUnboundController extends BaseController {
     /**
      * 导出博雅集 Archives Unbound（Gale）列表
      */
-    @PreAuthorize("@ss.hasPermi('VRdemo:ArchivesUnbound:export')")
+    @PreAuthorize("@ss.hasAnyRoles('admin,xmg')")
     @Log(title = "博雅集 Archives Unbound（Gale）", businessType = BusinessType.EXPORT)
     @PostMapping("/export")
     public void export(HttpServletResponse response, ArchivesUnbound archivesUnbound) {

src/main/java/com/ruoyi/project/VRdemo/controller/ConsultationController.java

@@ -63,6 +63,7 @@ public class ConsultationController extends BaseController {
     /**
      * 查询分页列表
      */
+    @PreAuthorize("@ss.hasAnyRoles('admin,xmg')")
     @GetMapping("/pageList")
     public TableDataInfo pageList(Consultation consultation) {
         startPage();
@@ -82,7 +83,7 @@ public class ConsultationController extends BaseController {
     /**
      * 新增博雅集南洋资讯检索
      */
-    @PreAuthorize("@ss.hasPermi('VRdemo:consultation:add')")
+    @PreAuthorize("@ss.hasAnyRoles('admin,xmg')")
     @Log(title = "博雅集南洋资讯检索", businessType = BusinessType.INSERT)
     @PostMapping
     public AjaxResult add(@RequestBody Consultation consultation) {
@@ -92,7 +93,7 @@ public class ConsultationController extends BaseController {
     /**
      * 修改博雅集南洋资讯检索
      */
-    @PreAuthorize("@ss.hasPermi('VRdemo:consultation:edit')")
+    @PreAuthorize("@ss.hasAnyRoles('admin,xmg')")
     @Log(title = "博雅集南洋资讯检索", businessType = BusinessType.UPDATE)
     @PutMapping
     public AjaxResult edit(@RequestBody Consultation consultation) {
@@ -102,7 +103,7 @@ public class ConsultationController extends BaseController {
     /**
      * 删除博雅集南洋资讯检索
      */
-    @PreAuthorize("@ss.hasPermi('VRdemo:consultation:remove')")
+    @PreAuthorize("@ss.hasAnyRoles('admin,xmg')")
     @Log(title = "博雅集南洋资讯检索", businessType = BusinessType.DELETE)
     @DeleteMapping("/{ids}")
     public AjaxResult remove(@PathVariable Long[] ids) {
@@ -112,7 +113,7 @@ public class ConsultationController extends BaseController {
     /**
      * 导出博雅集南洋资讯检索列表
      */
-    @PreAuthorize("@ss.hasPermi('VRdemo:consultation:export')")
+    @PreAuthorize("@ss.hasAnyRoles('admin,xmg')")
     @Log(title = "博雅集南洋资讯检索", businessType = BusinessType.EXPORT)
     @PostMapping("/export")
     public void export(HttpServletResponse response, Consultation consultation) {

src/main/java/com/ruoyi/project/VRdemo/controller/EconomyController.java

@@ -64,6 +64,7 @@ public class EconomyController extends BaseController {
     /**
      * 查询分页列表
      */
+    @PreAuthorize("@ss.hasAnyRoles('admin,xmg')")
     @GetMapping("/pageList")
     public TableDataInfo pageList(Economy economy) {
         startPage();
@@ -74,7 +75,7 @@ public class EconomyController extends BaseController {
     /**
      * 获取东南亚经济统计详细信息
      */
-    @PreAuthorize("@ss.hasPermi('VRdemo:economy:query')")
+    @Anonymous
     @GetMapping(value = "/{id}")
     public AjaxResult getInfo(@PathVariable("id") Long id) {
         return success(economyService.selectEconomyById(id));
@@ -83,7 +84,7 @@ public class EconomyController extends BaseController {
     /**
      * 新增东南亚经济统计
      */
-    @PreAuthorize("@ss.hasPermi('VRdemo:economy:add')")
+    @PreAuthorize("@ss.hasAnyRoles('admin,xmg')")
     @Log(title = "东南亚经济统计", businessType = BusinessType.INSERT)
     @PostMapping
     public AjaxResult add(@RequestBody Economy economy) {
@@ -93,7 +94,7 @@ public class EconomyController extends BaseController {
     /**
      * 修改东南亚经济统计
      */
-    @PreAuthorize("@ss.hasPermi('VRdemo:economy:edit')")
+    @PreAuthorize("@ss.hasAnyRoles('admin,xmg')")
     @Log(title = "东南亚经济统计", businessType = BusinessType.UPDATE)
     @PutMapping
     public AjaxResult edit(@RequestBody Economy economy) {
@@ -103,7 +104,7 @@ public class EconomyController extends BaseController {
     /**
      * 删除东南亚经济统计
      */
-    @PreAuthorize("@ss.hasPermi('VRdemo:economy:remove')")
+    @PreAuthorize("@ss.hasAnyRoles('admin,xmg')")
     @Log(title = "东南亚经济统计", businessType = BusinessType.DELETE)
     @DeleteMapping("/{ids}")
     public AjaxResult remove(@PathVariable Long[] ids) {
@@ -113,7 +114,7 @@ public class EconomyController extends BaseController {
     /**
      * 导出东南亚经济统计列表
      */
-    @PreAuthorize("@ss.hasPermi('VRdemo:economy:export')")
+    @PreAuthorize("@ss.hasAnyRoles('admin,xmg')")
     @Log(title = "东南亚经济统计", businessType = BusinessType.EXPORT)
     @PostMapping("/export")
     public void export(HttpServletResponse response, Economy economy) {

src/main/java/com/ruoyi/project/VRdemo/controller/InstitutionController.java

@@ -63,6 +63,7 @@ public class InstitutionController extends BaseController {
     /**
      * 查询分页列表
      */
+    @PreAuthorize("@ss.hasAnyRoles('admin,xmg')")
     @GetMapping("/pageList")
     public TableDataInfo pageList(Institution institution) {
         startPage();
@@ -82,7 +83,7 @@ public class InstitutionController extends BaseController {
     /**
      * 新增博雅集东南亚研究机构
      */
-    @PreAuthorize("@ss.hasPermi('VRdemo:institution:add')")
+    @PreAuthorize("@ss.hasAnyRoles('admin,xmg')")
     @Log(title = "博雅集东南亚研究机构", businessType = BusinessType.INSERT)
     @PostMapping
     public AjaxResult add(@RequestBody Institution institution) {
@@ -92,7 +93,7 @@ public class InstitutionController extends BaseController {
     /**
      * 修改博雅集东南亚研究机构
      */
-    @PreAuthorize("@ss.hasPermi('VRdemo:institution:edit')")
+    @PreAuthorize("@ss.hasAnyRoles('admin,xmg')")
     @Log(title = "博雅集东南亚研究机构", businessType = BusinessType.UPDATE)
     @PutMapping
     public AjaxResult edit(@RequestBody Institution institution) {
@@ -102,7 +103,7 @@ public class InstitutionController extends BaseController {
     /**
      * 删除博雅集东南亚研究机构
      */
-    @PreAuthorize("@ss.hasPermi('VRdemo:institution:remove')")
+    @PreAuthorize("@ss.hasAnyRoles('admin,xmg')")
     @Log(title = "博雅集东南亚研究机构", businessType = BusinessType.DELETE)
     @DeleteMapping("/{ids}")
     public AjaxResult remove(@PathVariable Long[] ids) {
@@ -112,7 +113,7 @@ public class InstitutionController extends BaseController {
     /**
      * 导出博雅集东南亚研究机构列表
      */
-    @PreAuthorize("@ss.hasPermi('VRdemo:institution:export')")
+    @PreAuthorize("@ss.hasAnyRoles('admin,xmg')")
     @Log(title = "博雅集东南亚研究机构", businessType = BusinessType.EXPORT)
     @PostMapping("/export")
     public void export(HttpServletResponse response, Institution institution) {

src/main/java/com/ruoyi/project/VRdemo/controller/LiteratureController.java

@@ -63,6 +63,7 @@ public class LiteratureController extends BaseController {
     /**
      * 查询分页列表
      */
+    @PreAuthorize("@ss.hasAnyRoles('admin,xmg')")
     @GetMapping("/pageList")
     public TableDataInfo pageList(Literature literature) {
         startPage();
@@ -82,7 +83,7 @@ public class LiteratureController extends BaseController {
     /**
      * 新增博雅集东南亚重要参考文献汇编
      */
-    @PreAuthorize("@ss.hasPermi('VRdemo:literature:add')")
+    @PreAuthorize("@ss.hasAnyRoles('admin,xmg')")
     @Log(title = "博雅集东南亚重要参考文献汇编", businessType = BusinessType.INSERT)
     @PostMapping
     public AjaxResult add(@RequestBody Literature literature) {
@@ -92,7 +93,7 @@ public class LiteratureController extends BaseController {
     /**
      * 修改博雅集东南亚重要参考文献汇编
      */
-    @PreAuthorize("@ss.hasPermi('VRdemo:literature:edit')")
+    @PreAuthorize("@ss.hasAnyRoles('admin,xmg')")
     @Log(title = "博雅集东南亚重要参考文献汇编", businessType = BusinessType.UPDATE)
     @PutMapping
     public AjaxResult edit(@RequestBody Literature literature) {
@@ -102,7 +103,7 @@ public class LiteratureController extends BaseController {
     /**
      * 删除博雅集东南亚重要参考文献汇编
      */
-    @PreAuthorize("@ss.hasPermi('VRdemo:literature:remove')")
+    @PreAuthorize("@ss.hasAnyRoles('admin,xmg')")
     @Log(title = "博雅集东南亚重要参考文献汇编", businessType = BusinessType.DELETE)
     @DeleteMapping("/{ids}")
     public AjaxResult remove(@PathVariable Long[] ids) {
@@ -113,7 +114,7 @@ public class LiteratureController extends BaseController {
     /**
      * 导出博雅集东南亚重要参考文献汇编列表
      */
-    @PreAuthorize("@ss.hasPermi('VRdemo:literature:export')")
+    @PreAuthorize("@ss.hasAnyRoles('admin,xmg')")
     @Log(title = "博雅集东南亚重要参考文献汇编", businessType = BusinessType.EXPORT)
     @PostMapping("/export")
     public void export(HttpServletResponse response, Literature literature) {

src/main/java/com/ruoyi/project/VRdemo/controller/PressController.java

@@ -64,6 +64,7 @@ public class PressController extends BaseController {
     /**
      * 查询论文列表
      */
+    @PreAuthorize("@ss.hasAnyRoles('admin,xmg')")
     @GetMapping("/pageList")
     public TableDataInfo pageList(Press press) {
         startPage();
@@ -74,7 +75,7 @@ public class PressController extends BaseController {
     /**
      * 获取press详细信息
      */
-    @PreAuthorize("@ss.hasPermi('vr:press:query')")
+    @Anonymous
     @GetMapping(value = "/{pressId}")
     public AjaxResult getInfo(@PathVariable("pressId") Long pressId) {
         return success(pressService.selectPressByPressId(pressId));
@@ -83,7 +84,7 @@ public class PressController extends BaseController {
     /**
      * 新增press
      */
-    @PreAuthorize("@ss.hasPermi('vr:press:add')")
+    @PreAuthorize("@ss.hasAnyRoles('admin,xmg')")
     @Log(title = "press", businessType = BusinessType.INSERT)
     @PostMapping
     public AjaxResult add(@RequestBody Press press) {
@@ -93,7 +94,7 @@ public class PressController extends BaseController {
     /**
      * 修改press
      */
-    @PreAuthorize("@ss.hasPermi('vr:press:edit')")
+    @PreAuthorize("@ss.hasAnyRoles('admin,xmg')")
     @Log(title = "press", businessType = BusinessType.UPDATE)
     @PutMapping
     public AjaxResult edit(@RequestBody Press press) {
@@ -103,7 +104,7 @@ public class PressController extends BaseController {
     /**
      * 删除press
      */
-    @PreAuthorize("@ss.hasPermi('vr:press:remove')")
+    @PreAuthorize("@ss.hasAnyRoles('admin,xmg')")
     @Log(title = "press", businessType = BusinessType.DELETE)
     @DeleteMapping("/{pressIds}")
     public AjaxResult remove(@PathVariable Long[] pressIds) {
@@ -113,7 +114,7 @@ public class PressController extends BaseController {
     /**
      * 导出press列表
      */
-    @PreAuthorize("@ss.hasPermi('vr:press:export')")
+    @PreAuthorize("@ss.hasAnyRoles('admin,xmg')")
     @Log(title = "press", businessType = BusinessType.EXPORT)
     @PostMapping("/export")
     public void export(HttpServletResponse response, Press press) {

src/main/java/com/ruoyi/project/VRdemo/controller/PublicationController.java

@@ -63,6 +63,7 @@ public class PublicationController extends BaseController {
     /**
      * 查询分页列表
      */
+    @PreAuthorize("@ss.hasAnyRoles('admin,xmg')")
     @GetMapping("/pageList")
     public TableDataInfo pageList(Publication publication) {
         startPage();
@@ -73,7 +74,7 @@ public class PublicationController extends BaseController {
     /**
      * 获取东南亚连续出版物详细信息
      */
-    @PreAuthorize("@ss.hasPermi('VRdemo:publication:query')")
+    @Anonymous
     @GetMapping(value = "/{id}")
     public AjaxResult getInfo(@PathVariable("id") Long id) {
         return success(publicationService.selectPublicationById(id));
@@ -82,7 +83,7 @@ public class PublicationController extends BaseController {
     /**
      * 新增东南亚连续出版物
      */
-    @PreAuthorize("@ss.hasPermi('VRdemo:publication:add')")
+    @PreAuthorize("@ss.hasAnyRoles('admin,xmg')")
     @Log(title = "东南亚连续出版物", businessType = BusinessType.INSERT)
     @PostMapping
     public AjaxResult add(@RequestBody Publication publication) {
@@ -92,7 +93,7 @@ public class PublicationController extends BaseController {
     /**
      * 修改东南亚连续出版物
      */
-    @PreAuthorize("@ss.hasPermi('VRdemo:publication:edit')")
+    @PreAuthorize("@ss.hasAnyRoles('admin,xmg')")
     @Log(title = "东南亚连续出版物", businessType = BusinessType.UPDATE)
     @PutMapping
     public AjaxResult edit(@RequestBody Publication publication) {
@@ -102,7 +103,7 @@ public class PublicationController extends BaseController {
     /**
      * 删除东南亚连续出版物
      */
-    @PreAuthorize("@ss.hasPermi('VRdemo:publication:remove')")
+    @PreAuthorize("@ss.hasAnyRoles('admin,xmg')")
     @Log(title = "东南亚连续出版物", businessType = BusinessType.DELETE)
     @DeleteMapping("/{ids}")
     public AjaxResult remove(@PathVariable Long[] ids) {
@@ -112,7 +113,7 @@ public class PublicationController extends BaseController {
     /**
      * 导出东南亚连续出版物列表
      */
-    @PreAuthorize("@ss.hasPermi('VRdemo:publication:export')")
+    @PreAuthorize("@ss.hasAnyRoles('admin,xmg')")
     @Log(title = "东南亚连续出版物", businessType = BusinessType.EXPORT)
     @PostMapping("/export")
     public void export(HttpServletResponse response, Publication publication) {

src/main/java/com/ruoyi/project/VRdemo/controller/ResearchController.java

@@ -64,6 +64,7 @@ public class ResearchController extends BaseController {
     /**
      * 查询分页列表
      */
+    @PreAuthorize("@ss.hasAnyRoles('admin,xmg')")
     @GetMapping("/pageList")
     public TableDataInfo pageList(Research research) {
         startPage();
@@ -72,20 +73,9 @@ public class ResearchController extends BaseController {
     }
 
     /**
-     * 查询论文列表
-     */
-    @PreAuthorize("@ss.hasPermi('VRdemo:thesis:list')")
-    @GetMapping("/allList")
-    public TableDataInfo allList(Research research) {
-        startPage();
-        List<Research> list = researchService.selectResearchList(research);
-        return getDataTable(list);
-    }
-
-    /**
      * 获取研究详细信息
      */
-    @PreAuthorize("@ss.hasPermi('VRdemo:research:query')")
+    @Anonymous
     @GetMapping(value = "/{id}")
     public AjaxResult getInfo(@PathVariable("id") Long id) {
         return success(researchService.selectResearchById(id));
@@ -94,7 +84,7 @@ public class ResearchController extends BaseController {
     /**
      * 新增研究
      */
-    @PreAuthorize("@ss.hasPermi('VRdemo:research:add')")
+    @PreAuthorize("@ss.hasAnyRoles('admin,xmg')")
     @Log(title = "研究", businessType = BusinessType.INSERT)
     @PostMapping
     public AjaxResult add(@RequestBody Research research) {
@@ -104,7 +94,7 @@ public class ResearchController extends BaseController {
     /**
      * 修改研究
      */
-    @PreAuthorize("@ss.hasPermi('VRdemo:research:edit')")
+    @PreAuthorize("@ss.hasAnyRoles('admin,xmg')")
     @Log(title = "研究", businessType = BusinessType.UPDATE)
     @PutMapping
     public AjaxResult edit(@RequestBody Research research) {
@@ -114,7 +104,7 @@ public class ResearchController extends BaseController {
     /**
      * 删除研究
      */
-    @PreAuthorize("@ss.hasPermi('VRdemo:research:remove')")
+    @PreAuthorize("@ss.hasAnyRoles('admin,xmg')")
     @Log(title = "研究", businessType = BusinessType.DELETE)
     @DeleteMapping("/{ids}")
     public AjaxResult remove(@PathVariable Long[] ids) {
@@ -124,7 +114,7 @@ public class ResearchController extends BaseController {
     /**
      * 导出研究列表
      */
-    @PreAuthorize("@ss.hasPermi('VRdemo:research:export')")
+    @PreAuthorize("@ss.hasAnyRoles('admin,xmg')")
     @Log(title = "研究", businessType = BusinessType.EXPORT)
     @PostMapping("/export")
     public void export(HttpServletResponse response, Research research) {

src/main/java/com/ruoyi/project/VRdemo/controller/SpecialCollectionController.java

@@ -63,6 +63,7 @@ public class SpecialCollectionController extends BaseController {
     /**
      * 查询分页列表
      */
+    @PreAuthorize("@ss.hasAnyRoles('admin,xmg')")
     @GetMapping("/pageList")
     public TableDataInfo pageList(SpecialCollection specialCollection) {
         startPage();
@@ -73,7 +74,7 @@ public class SpecialCollectionController extends BaseController {
     /**
      * 获取东南亚大型特藏详细信息
      */
-    @PreAuthorize("@ss.hasPermi('VRdemo:collection:query')")
+    @Anonymous
     @GetMapping(value = "/{id}")
     public AjaxResult getInfo(@PathVariable("id") Long id) {
         return success(collectionService.selectCollectionById(id));
@@ -82,7 +83,7 @@ public class SpecialCollectionController extends BaseController {
     /**
      * 新增东南亚大型特藏
      */
-    @PreAuthorize("@ss.hasPermi('VRdemo:collection:add')")
+    @PreAuthorize("@ss.hasAnyRoles('admin,xmg')")
     @Log(title = "东南亚大型特藏", businessType = BusinessType.INSERT)
     @PostMapping
     public AjaxResult add(@RequestBody SpecialCollection specialCollection) {
@@ -92,7 +93,7 @@ public class SpecialCollectionController extends BaseController {
     /**
      * 修改东南亚大型特藏
      */
-    @PreAuthorize("@ss.hasPermi('VRdemo:collection:edit')")
+    @PreAuthorize("@ss.hasAnyRoles('admin,xmg')")
     @Log(title = "东南亚大型特藏", businessType = BusinessType.UPDATE)
     @PutMapping
     public AjaxResult edit(@RequestBody SpecialCollection specialCollection) {
@@ -102,7 +103,7 @@ public class SpecialCollectionController extends BaseController {
     /**
      * 删除东南亚大型特藏
      */
-    @PreAuthorize("@ss.hasPermi('VRdemo:collection:remove')")
+    @PreAuthorize("@ss.hasAnyRoles('admin,xmg')")
     @Log(title = "东南亚大型特藏", businessType = BusinessType.DELETE)
     @DeleteMapping("/{ids}")
     public AjaxResult remove(@PathVariable Long[] ids) {
@@ -112,7 +113,7 @@ public class SpecialCollectionController extends BaseController {
     /**
      * 导出东南亚大型特藏列表
      */
-    @PreAuthorize("@ss.hasPermi('VRdemo:collection:export')")
+    @PreAuthorize("@ss.hasAnyRoles('admin,xmg')")
     @Log(title = "东南亚大型特藏", businessType = BusinessType.EXPORT)
     @PostMapping("/export")
     public void export(HttpServletResponse response, SpecialCollection specialCollection) {

src/main/java/com/ruoyi/project/VRdemo/controller/ThesisController.java

@@ -63,6 +63,7 @@ public class ThesisController extends BaseController {
     /**
      * 查询分页列表
      */
+    @PreAuthorize("@ss.hasAnyRoles('admin,xmg')")
     @GetMapping("/pageList")
     public TableDataInfo pageList(Thesis thesis) {
         startPage();
@@ -73,7 +74,7 @@ public class ThesisController extends BaseController {
     /**
      * 获取论文详细信息
      */
-    @PreAuthorize("@ss.hasPermi('VRdemo:thesis:query')")
+    @Anonymous
     @GetMapping(value = "/{id}")
     public AjaxResult getInfo(@PathVariable("id") Long id) {
         return success(thesisService.selectThesisById(id));
@@ -82,7 +83,7 @@ public class ThesisController extends BaseController {
     /**
      * 新增论文
      */
-    @PreAuthorize("@ss.hasPermi('VRdemo:thesis:add')")
+    @PreAuthorize("@ss.hasAnyRoles('admin,xmg')")
     @Log(title = "论文", businessType = BusinessType.INSERT)
     @PostMapping
     public AjaxResult add(@RequestBody Thesis thesis) {
@@ -92,7 +93,7 @@ public class ThesisController extends BaseController {
     /**
      * 修改论文
      */
-    @PreAuthorize("@ss.hasPermi('VRdemo:thesis:edit')")
+    @PreAuthorize("@ss.hasAnyRoles('admin,xmg')")
     @Log(title = "论文", businessType = BusinessType.UPDATE)
     @PutMapping
     public AjaxResult edit(@RequestBody Thesis thesis) {
@@ -102,7 +103,7 @@ public class ThesisController extends BaseController {
     /**
      * 删除论文
      */
-    @PreAuthorize("@ss.hasPermi('VRdemo:thesis:remove')")
+    @PreAuthorize("@ss.hasAnyRoles('admin,xmg')")
     @Log(title = "论文", businessType = BusinessType.DELETE)
     @DeleteMapping("/{ids}")
     public AjaxResult remove(@PathVariable Long[] ids) {
@@ -112,7 +113,7 @@ public class ThesisController extends BaseController {
     /**
      * 导出论文列表
      */
-    @PreAuthorize("@ss.hasPermi('VRdemo:thesis:export')")
+    @PreAuthorize("@ss.hasAnyRoles('admin,xmg')")
     @Log(title = "论文", businessType = BusinessType.EXPORT)
     @PostMapping("/export")
     public void export(HttpServletResponse response, Thesis thesis) {