dataease · XiaJunjie2020 · Sep 24, 2025 · Sep 24, 2025
diff --git a/backend/apps/datasource/crud/datasource.py b/backend/apps/datasource/crud/datasource.py
@@ -4,6 +4,7 @@
 
 from fastapi import HTTPException
 from sqlalchemy import and_, text
+from sqlbot_xpack.permissions.models.ds_rules import DsRules
 from sqlmodel import select
 
 from apps.datasource.crud.permission import get_column_permission_fields, get_row_permission_filters, is_normal_user
@@ -250,8 +251,9 @@ def preview(session: SessionDep, current_user: CurrentUser, id: int, data: Table
     f_list = [f for f in data.fields if f.checked]
     if is_normal_user(current_user):
         # column is checked, and, column permission for data.fields
+        contain_rules = session.query(DsRules).all()
         f_list = get_column_permission_fields(session=session, current_user=current_user, table=data.table,
-                                              fields=f_list)
+                                              fields=f_list, contain_rules=contain_rules)
 
         # row permission tree
         where_str = ''
@@ -336,11 +338,27 @@ def get_table_obj_by_ds(session: SessionDep, current_user: CurrentUser, ds: Core
     tables = session.query(CoreTable).filter(CoreTable.ds_id == ds.id).all()
     conf = DatasourceConf(**json.loads(aes_decrypt(ds.configuration))) if ds.type != "excel" else get_engine_config()
     schema = conf.dbSchema if conf.dbSchema is not None and conf.dbSchema != "" else conf.database
+
+    # get all field
+    table_ids = [table.id for table in tables]
+    all_fields = session.query(CoreField).filter(
+        and_(CoreField.table_id.in_(table_ids), CoreField.checked == True)).all()
+    # build dict
+    fields_dict = {}
+    for field in all_fields:
+        if fields_dict.get(field.table_id):
+            fields_dict.get(field.table_id).append(field)
+        else:
+            fields_dict[field.table_id] = [field]
+
+    contain_rules = session.query(DsRules).all()
     for table in tables:
-        fields = session.query(CoreField).filter(and_(CoreField.table_id == table.id, CoreField.checked == True)).all()
+        # fields = session.query(CoreField).filter(and_(CoreField.table_id == table.id, CoreField.checked == True)).all()
+        fields = fields_dict.get(table.id)
 
         # do column permissions, filter fields
-        fields = get_column_permission_fields(session=session, current_user=current_user, table=table, fields=fields)
+        fields = get_column_permission_fields(session=session, current_user=current_user, table=table, fields=fields,
+                                              contain_rules=contain_rules)
         _list.append(TableAndFields(schema=schema, table=table, fields=fields))
     return _list
 

diff --git a/backend/apps/datasource/crud/permission.py b/backend/apps/datasource/crud/permission.py
@@ -2,13 +2,15 @@
 from typing import List, Optional
 
 from sqlalchemy import and_
-from apps.datasource.crud.row_permission import transFilterTree
-from apps.datasource.models.datasource import CoreDatasource, CoreField, CoreTable
-from common.core.deps import CurrentUser, SessionDep
 from sqlbot_xpack.permissions.api.permission import transRecord2DTO
 from sqlbot_xpack.permissions.models.ds_permission import DsPermission, PermissionDTO
 from sqlbot_xpack.permissions.models.ds_rules import DsRules
 
+from apps.datasource.crud.row_permission import transFilterTree
+from apps.datasource.models.datasource import CoreDatasource, CoreField, CoreTable
+from common.core.deps import CurrentUser, SessionDep
+
+
 def get_row_permission_filters(session: SessionDep, current_user: CurrentUser, ds: CoreDatasource,
                                tables: Optional[list] = None, single_table: Optional[CoreTable] = None):
     if single_table:
@@ -20,10 +22,10 @@ def get_row_permission_filters(session: SessionDep, current_user: CurrentUser, d
 
     filters = []
     if is_normal_user(current_user):
+        contain_rules = session.query(DsRules).all()
         for table in table_list:
             row_permissions = session.query(DsPermission).filter(
                 and_(DsPermission.table_id == table.id, DsPermission.type == 'row')).all()
-            contain_rules = session.query(DsRules).all()
             res: List[PermissionDTO] = []
             if row_permissions is not None:
                 for permission in row_permissions:
@@ -43,11 +45,10 @@ def get_row_permission_filters(session: SessionDep, current_user: CurrentUser, d
 
 
 def get_column_permission_fields(session: SessionDep, current_user: CurrentUser, table: CoreTable,
-                                 fields: list[CoreField]):
+                                 fields: list[CoreField], contain_rules: list[DsRules]):
     if is_normal_user(current_user):
         column_permissions = session.query(DsPermission).filter(
             and_(DsPermission.table_id == table.id, DsPermission.type == 'column')).all()
-        contain_rules = session.query(DsRules).all()
         if column_permissions is not None:
             for permission in column_permissions:
                 # check permission and user in same rules