等保调整，增加部分接口鉴权，防止水平越权

yd-api/src/main/java/com/yd/api/practitioner/service/impl/PractitionerBasicInfoServiceImpl.java

@@ -933,7 +933,16 @@ public class PractitionerBasicInfoServiceImpl implements PractitionerBasicInfoSe
     @Override
     @Override
     public QuerySalaryDetailResponseVO querySalaryDetail(QuerySalaryDetailRequestVO requestVO) {
     public QuerySalaryDetailResponseVO querySalaryDetail(QuerySalaryDetailRequestVO requestVO) {
         QuerySalaryDetailResponseVO responseVO = new QuerySalaryDetailResponseVO();
         QuerySalaryDetailResponseVO responseVO = new QuerySalaryDetailResponseVO();
-        // isBasic为0时查询N22，为1时查询本地数据库表
+        //等保调整
+        Long practitionerId = requestVO.getPractitionerId();
+        if (null != practitionerId) {
+            List<AclCustomer> findByObjSortable = aclPractitionerDALService.getAclCustomers(practitionerId);
+            if(null == findByObjSortable ){
+                responseVO.setCommonResult(new CommonResult(false,ZHBErrorConfig.getErrorInfo("630028")));
+                return responseVO;
+            }
+        }
+        // isBasic为0时查询N22，为1时查询本地数据库
         if ("1".equals(requestVO.getIsBasic())) {
         if ("1".equals(requestVO.getIsBasic())) {
             this.querySalaryDetail(requestVO, responseVO);
             this.querySalaryDetail(requestVO, responseVO);
         } else {
         } else {
@@ -1064,6 +1073,12 @@ public class PractitionerBasicInfoServiceImpl implements PractitionerBasicInfoSe
             responseBody.setCommonResult(new CommonResult(false, "查询年月不能为空"));
             responseBody.setCommonResult(new CommonResult(false, "查询年月不能为空"));
             return responseBody;
             return responseBody;
         }
         }
+        //等保调整
+        List<AclCustomer> findByObjSortable = aclPractitionerDALService.getAclCustomers(requestVO.getPractitionerId());
+        if(null == findByObjSortable ){
+            responseBody.setCommonResult(new CommonResult(false,ZHBErrorConfig.getErrorInfo("630028")));
+            return responseBody;
+        }
         if ("1".equals(requestVO.getIsBasic())) {
         if ("1".equals(requestVO.getIsBasic())) {
             // 查询银盾在线佣金的保单列表
             // 查询银盾在线佣金的保单列表
             this.queryYdOnlineCommission(requestVO, responseBody);
             this.queryYdOnlineCommission(requestVO, responseBody);