22F-PERM-C

FDEP 组织范围与权限范围联动检查

本页面只读检查当前 data_scope_rules / permission_subjects 是否已经与真实 FDEP 组织主数据对齐。不修改权限规则、不修改员工数据。

返回 HRMS Portal 权限引擎工作台权限盘点页

一、核心指标

部门总数

20

FDEP 部门

15

旧 Demo 部门

5

Data Scope 规则

4

显式 FDEP 规则

0

Global 规则

1

员工在 FDEP

3

问题数

9

二、判断结论

当前 ROLE_BOSS 的 global data scope 可以覆盖员工列表展示，但显式 FDEP 部门范围规则仍不足。下一步应为 HRBP、部门负责人、Reviewer 等角色建立 FDEP 范围规则，而不是继续依赖旧 D* Demo 部门或全局范围。

high / create_fdep_scoped_data_scope_rules：当前 data_scope_rules 没有显式 FDEP 部门范围规则。后续需要为 HRBP / 部门负责人 / Reviewer 建立 FDEP 范围规则。
medium / migrate_legacy_d_scope_to_fdep：部分权限范围仍引用旧 D* Demo 部门，后续应迁移到 FDEP 真实组织。
medium / employee_legacy_department_cleanup：仍有员工落在旧 Demo 部门，后续应继续回填到 FDEP。
next / permission_productization_next：下一步建议建设 FDEP 组织范围规则样例，并把员工导入、岗位、测评模块接入 action_permission_rules。

三、Data Scope 规则检查

rule_id	role_id	object	scope_type	scope_ids	Legacy refs
`DATA_SCOPE_BOSS_GLOBAL`	ROLE_BOSS	employee	global	GLOBAL
`DATA_SCOPE_EMPLOYEE_SELF`	ROLE_EMPLOYEE	employee	self
`DATA_SCOPE_HRBP`	ROLE_HRBP	employee	hrbp_scope	D000, D001, D002, D003, D004	D000, D001, D002, D003, D004
`DATA_SCOPE_MANAGER_REPORTS`	ROLE_MANAGER	employee	direct_reports

四、Permission Subjects 范围检查

subject_id	role_id	employee_id	department_id	hrbp_scope_ids	reviewer_scope_ids	Legacy refs
`SUBJ_E100`	ROLE_BOSS	E100	D000	D000, D001, D002, D003, D004	D000, D001, D002, D003, D004	D000, D000, D001, D002, D003, D004, D000, D001, D002, D003, D004
`SUBJ_E010`	ROLE_DEPARTMENT_HEAD	E010	D001			D001
`SUBJ_E011`	ROLE_DEPARTMENT_HEAD	E011	D002			D002
`SUBJ_E012`	ROLE_DEPARTMENT_HEAD	E012	D003			D003
`SUBJ_E001`	ROLE_MANAGER	E001	D001			D001
`SUBJ_E002`	ROLE_MANAGER	E002	D002			D002
`SUBJ_E003`	ROLE_MANAGER	E003	D003			D003
`SUBJ_E004`	ROLE_MANAGER	E004	D004			D004
`SUBJ_SYSTEM_ADMIN`	ROLE_SYSTEM_ADMIN

五、员工部门分布

department_id	department_name	employee_count
`D001`	平台运营部	2
`D002`	增长营销部	2
`D003`	供应链采购部	2
`FDEP_47C7260A`	Supply Chain	2
`D000`	跨境电商业务	1
`D004`	品牌内容部	1
`FDEP_42619C1F`	Finance	1

六、发现的问题

severity	code	details
warning	`data_scope_rule_refs_legacy_department`	{"severity": "warning", "code": "data_scope_rule_refs_legacy_department", "rule_id": "DATA_SCOPE_HRBP", "legacy_refs": ["D000", "D001", "D002", "D003", "D004"]}
warning	`permission_subject_refs_legacy_department`	{"severity": "warning", "code": "permission_subject_refs_legacy_department", "subject_id": "SUBJ_E100", "legacy_refs": ["D000", "D000", "D001", "D002", "D003", "D004", "D000", "D001", "D002", "D003", "D004"]}
warning	`permission_subject_refs_legacy_department`	{"severity": "warning", "code": "permission_subject_refs_legacy_department", "subject_id": "SUBJ_E010", "legacy_refs": ["D001"]}
warning	`permission_subject_refs_legacy_department`	{"severity": "warning", "code": "permission_subject_refs_legacy_department", "subject_id": "SUBJ_E011", "legacy_refs": ["D002"]}
warning	`permission_subject_refs_legacy_department`	{"severity": "warning", "code": "permission_subject_refs_legacy_department", "subject_id": "SUBJ_E012", "legacy_refs": ["D003"]}
warning	`permission_subject_refs_legacy_department`	{"severity": "warning", "code": "permission_subject_refs_legacy_department", "subject_id": "SUBJ_E001", "legacy_refs": ["D001"]}
warning	`permission_subject_refs_legacy_department`	{"severity": "warning", "code": "permission_subject_refs_legacy_department", "subject_id": "SUBJ_E002", "legacy_refs": ["D002"]}
warning	`permission_subject_refs_legacy_department`	{"severity": "warning", "code": "permission_subject_refs_legacy_department", "subject_id": "SUBJ_E003", "legacy_refs": ["D003"]}
warning	`permission_subject_refs_legacy_department`	{"severity": "warning", "code": "permission_subject_refs_legacy_department", "subject_id": "SUBJ_E004", "legacy_refs": ["D004"]}