From ec528a72262e7d2909731747b7cbd402ac83003a Mon Sep 17 00:00:00 2001
From: hailin <hailin.zhao@gdzx.xyz>
Date: Sun, 4 Jan 2026 00:59:37 -0800
Subject: [PATCH] fix(authorization): exclude revoked records when checking
 existing authorization
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

The findByAccountSequenceAndRoleType query now excludes REVOKED status,
allowing users to be re-authorized after their authorization was revoked.

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
---
 .../repositories/authorization-role.repository.impl.ts           | 1 +
 1 file changed, 1 insertion(+)

diff --git a/backend/services/authorization-service/src/infrastructure/persistence/repositories/authorization-role.repository.impl.ts b/backend/services/authorization-service/src/infrastructure/persistence/repositories/authorization-role.repository.impl.ts
index f3c1c954..7d813604 100644
--- a/backend/services/authorization-service/src/infrastructure/persistence/repositories/authorization-role.repository.impl.ts
+++ b/backend/services/authorization-service/src/infrastructure/persistence/repositories/authorization-role.repository.impl.ts
@@ -121,6 +121,7 @@ export class AuthorizationRoleRepositoryImpl implements IAuthorizationRoleReposi
       where: {
         accountSequence: accountSequence,
         roleType: roleType,
+        status: { not: AuthorizationStatus.REVOKED }, // 排除已撤销的记录
         ...this.notDeleted,
       },
     })