hanxuntao
/
D7QUANTAI
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
main
dev
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '1840483600'
${ noResults }
D7QUANTAI/DSWeb/Areas/SoftMng/Controllers/AuthController.cs

1417 lines
61 KiB
C#
Raw Blame History Unescape Escape

This file contains ambiguous Unicode characters!

This file contains ambiguous Unicode characters that may be confused with others in your current locale. If your use case is intentional and legitimate, you can safely ignore this warning. Use the Escape button to highlight these characters.

using System;
using System.Collections;
using System.Collections.Generic;
using System.Linq;
using System.Reflection;
using System.Text;
using System.Text.RegularExpressions;
using System.Web.Mvc;
using System.Web.Script.Serialization;
using System.Xml.Serialization;
using DSWeb.SoftMng.BLL;
using DSWeb.SoftMng.DBUtility;
using DSWeb.SoftMng.Model;
using DSWeb.SoftMng.Filter;
using DSWeb.Areas.CommMng.Models;
using DSWeb.TruckMng.Helper.Repository;
using HcUtility.Comm;
using DSWeb.EntityDA;
using DSWeb.Models;
using Newtonsoft.Json;
using DSWeb.Areas.CommMng.DAL;
using DSWeb.Areas.SysMng.DAL.SysUser;
namespace DSWeb.SoftMng.Controllers
{
public class AuthController : Controller
{
private readonly sys_secCompanyServerBLL _bll = new sys_secCompanyServerBLL();
private readonly sys_secModuleServerBLL _mbll = new sys_secModuleServerBLL();
private readonly info_clientServerBLL _cbll = new info_clientServerBLL();
private readonly sys_moduleServerBLL _ibll = new sys_moduleServerBLL();
#region View
/// <summary>
/// 首页
/// </summary>
/// <returns></returns>
//[ModuleAuthFilter(Name = "secRegist")]//过滤器
public ActionResult Index()
{
if (Session["CODENAME"] == null)
Response.Redirect("/login.aspx");
ViewData["CODENAME"] = Session["CODENAME"];
return View();
}
/// <summary>
/// 角色权限
/// </summary>
/// <returns></returns>
public ActionResult RoleAuth()
{
if (Session["CODENAME"] == null)
Response.Redirect("/login.aspx");
ViewData["CODENAME"] = Session["CODENAME"];
return View();
}
/// <summary>
/// 角色权限范围
/// </summary>
/// <returns></returns>
public ActionResult RoleAuthRange()
{
if (Session["CODENAME"] == null)
Response.Redirect("/login.aspx");
ViewData["CODENAME"] = Session["CODENAME"];
return View();
}
/// <summary>
/// 用户角色
/// </summary>
/// <returns></returns>
public ActionResult UserRole()
{
if (Session["CODENAME"] == null)
Response.Redirect("/login.aspx");
ViewData["CODENAME"] = Session["CODENAME"];
return View();
}
#endregion
#region Handler
/// <summary>
/// 获取列表
/// </summary>
/// <param name="startIndex">开始索引</param>
/// <param name="limit">分页大小</param>
/// <param name="search">搜索框的值</param>
/// <param name="sortName">排序字段</param>
/// <param name="sortOrder">排序方式</param>
/// <returns></returns>
[SqlKeyWordsFilter(Type = "Action")]//sql 防注入过滤器
public JsonResult GetList(int startIndex, int limit, string search, string sortName, string sortOrder,string companyId, string opUser, string question,string beginRegCount_1, string beginRegCount_2, string beginDate_1, string beginDate_2)
{
StringBuilder where = new StringBuilder();
where.Append("1=1");
if (!(String.IsNullOrEmpty(opUser) || String.IsNullOrWhiteSpace(opUser)))
{
//search=Common.Common.string_Encrypt(search, "Dw9pVb9r");
where.Append(string.Format(" And OperUser like '%{0}%'", opUser));
}
if (!(String.IsNullOrEmpty(beginDate_1) || String.IsNullOrWhiteSpace(beginDate_1)))
{
//search=Common.Common.string_Encrypt(search, "Dw9pVb9r");
where.Append(string.Format(" And OperTime>='{0}'", beginDate_1));
}
if (!(String.IsNullOrEmpty(beginDate_2) || String.IsNullOrWhiteSpace(beginDate_2)))
{
//search=Common.Common.string_Encrypt(search, "Dw9pVb9r");
where.Append(string.Format(" And OperTime<='{0}'", beginDate_2));
}
var list = _bll.GetModelList(0, 2000, where.ToString(), String.Format("{0} {1}", sortName, sortOrder));
var result = from p in list
select new
{
p.GID,
CecrietStr = new JavaScriptSerializer().Deserialize<CecrietStr>(Common.Common.string_Decrypt(p.CompanySecretKey, "Dw9pVb9r")),
p.OperUser,
p.OperTime
};
if (!(String.IsNullOrEmpty(search) || String.IsNullOrWhiteSpace(search)))
{
result = result.Where(p=>p.CecrietStr.Name.Contains(search));
}
if (!(String.IsNullOrEmpty(beginRegCount_1) || String.IsNullOrWhiteSpace(beginRegCount_1)))
{
result = result.Where(p => p.CecrietStr.Times>=Convert.ToInt32(beginRegCount_1));
}
if (!(String.IsNullOrEmpty(beginRegCount_2) || String.IsNullOrWhiteSpace(beginRegCount_2)))
{
result = result.Where(p => p.CecrietStr.Times <= Convert.ToInt32(beginRegCount_2));
}
if (!(String.IsNullOrEmpty(question) || String.IsNullOrWhiteSpace(question)))
{
result = result.Where(p => p.CecrietStr.ModHistory!=null&&p.CecrietStr.ModHistory.Contains(question));
}
var count = result.Count();//总数
result = result.Skip(startIndex).Take(limit);
return Json(new { total = count, rows = result });
}
/// <summary>
/// 详细列表
/// </summary>
/// <returns></returns>
public JsonResult GetDetailList(string parentId, string companyId, bool isroot)
{
StringBuilder where = new StringBuilder();
if (isroot)
where.Append("(PARENTID='0' or PARENTID='1') and TYPE<>1 ");
else
where.Append(string.Format("PARENTID='{0}'", parentId));
var list = _ibll.GetModelList(where.ToString());
var result = from p in list
select new
{
p.GID,
Name = p.DESCRIPTION,
Code = p.NAME,
Data = GetsecModel(p.GID, companyId),
p.PARENTID,
HasChild = _ibll.GetRecordCount(string.Format("PARENTID='{0}'", p.GID)) > 0
};
return Json(new { total = list.Count, rows = result });
}
public object GetsecModel(string gid, string companyid)
{
var model = _mbll.GetModelList("IdenSecretkey='" + Common.Common.string_Encrypt(gid, "2cP46Gox") + "' AND PID='" + companyid + "'").FirstOrDefault();
if (model != null)
return Json(new
{
SecModel = model,
SecrietStr = new JavaScriptSerializer().Deserialize<SecrietStr>(Common.Common.string_Decrypt(model.ModuleSecretkey, "2cP46Gox"))
}).Data;
return Json(new
{
SecModel = new sys_secModule(),
SecrietStr = new SecrietStr()
{
Id = null,
Name = null,
Times = null,
Enabled = null
}
}).Data;
}
/// <summary>
/// 保存
/// </summary>
/// <param name="model"></param>
/// <returns></returns>
public JsonResult Save(Model.sys_secCompany model)
{
bool result;
//加密算法{公司主键,公司名称,允许在线人数,是否启用}
CecrietStr smodel = new CecrietStr();
Regex reg = new Regex(@"(?<=Key:')[\w-]+(?=')");
smodel.Id = reg.Match(Request["Name"]).Value;
reg = new Regex(@"(?<=Value:').+(?=')");
smodel.Name = reg.Match(Request["Name"]).Value;
smodel.Times = Convert.ToInt32(Request["Times"]);
smodel.Enabled = Request["Enabled"] != "0";
smodel.MenuControl = Request["MenuControl"] != "0";
if (String.IsNullOrEmpty(model.GID))
{
var toEncrypt = new JavaScriptSerializer().Serialize(smodel);
var secretKey = Common.Common.string_Encrypt(toEncrypt, "Dw9pVb9r");
model.GID = Guid.NewGuid().ToString();
model.CompanySecretKey = secretKey;
model.OperUser = Session["SHOWNAME"].ToString();
model.OperTime = DateTime.Now;
result = _bll.Add(model) > 0;
} //新增
else
{
//获取原数据
var oldModel = _bll.GetModel(model.GID);
smodel.ModHistory = new JavaScriptSerializer().Deserialize<CecrietStr>(Common.Common.string_Decrypt(oldModel.CompanySecretKey, "Dw9pVb9r")).ModHistory;
var toEncrypt = new JavaScriptSerializer().Serialize(smodel);
var secretKey = Common.Common.string_Encrypt(toEncrypt, "Dw9pVb9r");
//类反射
Type type = typeof(Model.sys_secCompany);
PropertyInfo[] piArr = type.GetProperties();
foreach (var pi in piArr)
{
if (Array.IndexOf(Request.Params.AllKeys, pi.Name) < 0)
pi.SetValue(model, pi.GetValue(oldModel, null), null);
}
model.CompanySecretKey = secretKey;
model.OperUser = Session["SHOWNAME"].ToString();
model.OperTime = DateTime.Now;
result = _bll.Update(model) > 0;
//try
//{
// var operUser = Session["SHOWNAME"].ToString();
// var list = _ibll.GetModelList("MODTYPE=0");//获取配置下的模块
// foreach (var item in list)
// {
// SecrietStr pmodel = new SecrietStr();
// pmodel.Id = item.GID;
// pmodel.Name = item.DESCRIPTION;
// pmodel.Times = smodel.Times;
// pmodel.Enabled =true;
// toEncrypt = new JavaScriptSerializer().Serialize(pmodel);
// secretKey = Common.Common.string_Encrypt(toEncrypt, "2cP46Gox");
// sys_secModule detailmodel = new sys_secModule();
// detailmodel.GID = Guid.NewGuid().ToString();
// detailmodel.ModuleSecretkey = secretKey;
// detailmodel.OperUser = operUser;
// detailmodel.OperTime = DateTime.Now;
// detailmodel.IdenSecretkey = Common.Common.string_Encrypt(pmodel.Id, "2cP46Gox");
// detailmodel.PID = model.GID;
// var ymodel = _mbll.GetModelList("IdenSecretkey='" +
// Common.Common.string_Encrypt(pmodel.Id, "2cP46Gox") + "' AND PID='" +
// model.GID + "'").FirstOrDefault();
// if (ymodel != null)
// {
// detailmodel.GID = ymodel.GID;
// _mbll.Update(detailmodel);
// }
// else
// _mbll.Add(detailmodel);
// }
//}
//catch (Exception e)
//{
// result = false;
//}
} //修改
return Json(new { success = result, message = result ? "操作成功" : "操作失败" });
}
/// <summary>
/// 保存从实例
/// </summary>
/// <param name="model"></param>
/// <returns></returns>
public JsonResult SaveDetail(Model.sys_secModule model)
{
bool result;
//加密算法{模块主键,模块名称,允许使用人数,是否启用}
SecrietStr smodel = new SecrietStr();
smodel.Id = Request["SecId"];
smodel.Name = Request["Name"];
smodel.Times = Convert.ToInt32(Request["Times"]);
smodel.Enabled = Request["Enabled"] != "0";
var toEncrypt = new JavaScriptSerializer().Serialize(smodel);
var secretKey = Common.Common.string_Encrypt(toEncrypt, "2cP46Gox");
if (String.IsNullOrEmpty(model.GID))
{
model.GID = Guid.NewGuid().ToString();
model.ModuleSecretkey = secretKey;
model.OperUser = Session["SHOWNAME"].ToString();
model.OperTime = DateTime.Now;
model.IdenSecretkey = Common.Common.string_Encrypt(smodel.Id, "2cP46Gox");
result = _mbll.Add(model) > 0;
} //新增
else
{
//获取原数据
var oldModel = _mbll.GetModel(model.GID);
//类反射
Type type = typeof(Model.sys_secModule);
PropertyInfo[] piArr = type.GetProperties();
foreach (var pi in piArr)
{
if (Array.IndexOf(Request.Params.AllKeys, pi.Name) < 0)
pi.SetValue(model, pi.GetValue(oldModel, null), null);
}
model.ModuleSecretkey = secretKey;
model.IdenSecretkey = Common.Common.string_Encrypt(smodel.Id, "2cP46Gox");
model.OperUser = Session["SHOWNAME"].ToString();
model.OperTime = DateTime.Now;
result = _mbll.Update(model) > 0;
} //修改
return Json(new { success = result, message = result ? "操作成功" : "操作失败" });
}
/// <summary>
/// 删除
/// </summary>
/// <param name="ids"></param>
/// <returns></returns>
public JsonResult Delete(string ids)
{
bool result = _bll.DeleteListWhere(string.Format("GID in({0})", ids)) > 0;
return Json(new { success = result, message = result ? "操作成功" : "操作失败" });
}
/// <summary>
/// 删除
/// </summary>
/// <param name="ids"></param>
/// <returns></returns>
public JsonResult DeleteDetail(string ids)
{
bool result = _mbll.DeleteListWhere(string.Format("GID in({0})", ids)) > 0;
return Json(new { success = result, message = result ? "操作成功" : "操作失败" });
}
/// <summary>
/// 懒加载公司信息
/// </summary>
/// <param name="pageIndex"></param>
/// <param name="pageSize"></param>
/// <param name="query"></param>
/// <returns></returns>
public JsonResult GetCompanyList(int pageIndex, int pageSize, string query)
{
StringBuilder where = new StringBuilder();
if (!String.IsNullOrEmpty(query))
where.Append(string.Format("SHORTNAME LIKE '%{0}%' OR CODENAME LIKE '%{0}%' OR DESCRIPTION LIKE '%{0}%'", query));
var list = _cbll.GetModelList(pageIndex, pageSize, where.ToString(), "SHORTNAME collate Chinese_PRC_CS_AS_KS_WS");
var total = _cbll.GetRecordCount(where.ToString());
var result = from p in list
select new
{
id = "{Key:'" + p.GID + "', Value:'" + p.SHORTNAME + "'}",
text = p.SHORTNAME
};
return Json(new { data = result, total }, JsonRequestBehavior.AllowGet);
}
/// <summary>
/// 获取角色权限范围列表
/// </summary>
/// <returns></returns>
public JsonResult GetAuthRangeList(string roleid, string sortOrder, string sortName, string search)
{
user_authority_infoBLL ibll = new user_authority_infoBLL();
StringBuilder where = new StringBuilder();
where.Append("ISDELETE=0");
if (!(String.IsNullOrEmpty(search) || String.IsNullOrWhiteSpace(search)))
where.Append(string.Format(" And DESCRIPTION like '%{0}%'", search));
var list = ibll.GetModelList(0,9999,where.ToString(), String.Format("{0} {1}", sortName, sortOrder));
//var list = ibll.GetModelList(string.Format(where + " ORDER BY {0} {1}", sortName, sortOrder));
var result = from p in list
select new
{
AUTHORITYID = p.GID,
NAME = p.DESCRIPTION,
VISIBLERANGE = 4,
OPERATERANGE = 4
};
if (!string.IsNullOrEmpty(roleid))
{
user_authority_rangeBLL rbll = new user_authority_rangeBLL();
var list1 = rbll.GetModelList("USERID='" + roleid + "'");
var update = from p in list1
select new
{
p.GID,
p.AUTHORITYID,
p.VISIBLERANGE,
p.OPERATERANGE,
VISIBLERELATION = GetRelation(p.VISIBLERANGE, p.AUTHORITYID, roleid,"vs"),
OPERATERELATION = GetRelation(p.OPERATERANGE, p.AUTHORITYID, roleid,"op")
};
return Json(new { result, update });
}
return Json(new { result, update = new ArrayList() });
}
private string GetRelation(int? type, string authority, string roleid,string rangtype)
{
var israngstr = " and OPERATERANGE=1 ";
if (rangtype =="vs") israngstr = " and VISIBLERANGE=1 ";
JavaScriptSerializer json = new JavaScriptSerializer();
user_authority_range_companyBLL rcbll = new user_authority_range_companyBLL();
user_authority_range_opBLL robll = new user_authority_range_opBLL();
var obj = new Object();
if (type == 5)
{
obj = from q in rcbll.GetModelList("USERID='" + roleid + "' AND AUTHORITYID='" + authority + "'"+ israngstr)
select new
{
id = q.COMPANYID,
name = "comp"
};
}
if (type == 6)
{
obj = from q in robll.GetModelList("USERID='" + roleid + "' AND AUTHORITYID='" + authority + "'"+ israngstr)
select new
{
id = q.OPID,
name = "user"
};
}
return json.Serialize(obj);
}
/// <summary>
/// 获取角色下的权限
/// </summary>
/// <param name="pid"></param>
/// <returns></returns>
public JsonResult GetRoleModuleList(string pid)
{
sys_moduleBLL bll = new sys_moduleBLL();
StringBuilder where = new StringBuilder();
var list = bll.GetModelList("GID IN (SELECT AuthorityID FROM sys_roleauth WHERE PID='" + pid + "' AND TYPE=1)");
var result = from p in list
select new
{
id = p.GID,
name = p.DESCRIPTION,
pId = p.PARENTID
};
return Json(result);
}
/// <summary>
/// 批量配置模块
/// </summary>
/// <param name="companyid"></param>
/// <param name="modtype"></param>
/// <param name="enabled"></param>
/// <returns></returns>
public JsonResult SetMod(string companyid, int modtype, bool enabled)
{
var result = true;
try
{
var cmodel = _bll.GetModel(companyid);
CecrietStr cModel = new JavaScriptSerializer().Deserialize<CecrietStr>(
Common.Common.string_Decrypt(cmodel.CompanySecretKey, "Dw9pVb9r"));
var operUser = Session["SHOWNAME"].ToString();
var list = _ibll.GetModelList("MODTYPE=" + modtype);//获取配置下的模块
foreach (var item in list)
{
SecrietStr pmodel = new SecrietStr();
pmodel.Id = item.GID;
pmodel.Name = item.DESCRIPTION;
pmodel.Times = cModel.Times;
pmodel.Enabled = enabled;
var toEncrypt = new JavaScriptSerializer().Serialize(pmodel);
var secretKey = Common.Common.string_Encrypt(toEncrypt, "2cP46Gox");
sys_secModule model = new sys_secModule();
model.GID = Guid.NewGuid().ToString();
model.ModuleSecretkey = secretKey;
model.OperUser = operUser;
model.OperTime = DateTime.Now;
model.IdenSecretkey = Common.Common.string_Encrypt(pmodel.Id, "2cP46Gox");
model.PID = companyid;
var ymodel = _mbll.GetModelList("IdenSecretkey='" +
Common.Common.string_Encrypt(pmodel.Id, "2cP46Gox") + "' AND PID='" +
companyid + "'").FirstOrDefault();
if (ymodel != null)
{
model.GID = ymodel.GID;
_mbll.Update(model);
}
else
_mbll.Add(model);
}
//设置模块历史
var hisList = cModel.ModHistory;
List<string> modHis = new List<string>();
if (!string.IsNullOrEmpty(hisList))
modHis = hisList.Split(',').ToList();
if (enabled)
{
if (!modHis.Contains(modtype.ToString()))
modHis.Add(modtype.ToString());
}
else
modHis.Remove(modtype.ToString());
cModel.ModHistory = modHis.Count > 0 ? string.Join(",", modHis) : "";
var cecretKey = new JavaScriptSerializer().Serialize(cModel);
cmodel.CompanySecretKey = Common.Common.string_Encrypt(cecretKey, "Dw9pVb9r");
_bll.Update(cmodel);
}
catch (Exception e)
{
result = false;
}
return Json(new { success = result, message = result ? "操作成功" : "操作失败" });
}
/// <summary>
/// 获取导出sql
/// </summary>
/// <param name="ids"></param>
/// <returns></returns>
public JsonResult GetSql(string ids)
{
var list = _bll.GetModelList(string.Format("GID in({0})", ids));
return Json(list);
}
/// <summary>
/// 懒加载权限信息
/// </summary>
/// <param name="pageIndex"></param>
/// <param name="pageSize"></param>
/// <param name="query"></param>
/// <returns></returns>
public JsonResult GetAuthList(int pageIndex, int pageSize, string query)
{
sys_moduleBLL ibll = new sys_moduleBLL();
StringBuilder where = new StringBuilder();
if (!String.IsNullOrEmpty(query))
where.Append(string.Format("NAME LIKE '%{0}%' OR DESCRIPTION LIKE '%{0}%'", query));
var list = ibll.GetModelList(pageIndex, pageSize, where.ToString(), "DESCRIPTION collate Chinese_PRC_CS_AS_KS_WS");
var total = ibll.GetRecordCount(where.ToString());
var result = from p in list
select new
{
id = p.GID,
text = p.DESCRIPTION
};
return Json(new { data = result, total }, JsonRequestBehavior.AllowGet);
}
/// <summary>
/// 获取角色列表
/// </summary>
/// <param name="startIndex"></param>
/// <param name="limit"></param>
/// <param name="search"></param>
/// <param name="sortName"></param>
/// <param name="sortOrder"></param>
/// <returns></returns>
public JsonResult GetRoleList(int startIndex, int limit, string search, string sortName, string sortOrder)
{
sys_roleauthBLL mbll = new sys_roleauthBLL();
StringBuilder where = new StringBuilder();
where.Append("Type=0");
if (!(String.IsNullOrEmpty(search) || String.IsNullOrWhiteSpace(search)))
where.Append(string.Format(" And Name like '%{0}%'", search));
var list = mbll.GetModelList(startIndex, limit, where.ToString(), String.Format("{0} {1}", sortName, sortOrder));
var count = mbll.GetRecordCount(where.ToString());//总数
return Json(new { total = count, rows = list });
}
/// <summary>
/// 保存角色
/// </summary>
/// <param name="model"></param>
/// <returns></returns>
public JsonResult SaveRole(sys_roleauth model)
{
bool result;
sys_roleauthBLL mbll = new sys_roleauthBLL();
if (String.IsNullOrEmpty(model.GID))
{
model.GID = Guid.NewGuid().ToString();
result = mbll.Add(model) > 0;
} //新增
else
{
//获取原数据
var oldModel = mbll.GetModel(model.GID);
//类反射
Type type = typeof(Model.sys_roleauth);
PropertyInfo[] piArr = type.GetProperties();
foreach (var pi in piArr)
{
if (Array.IndexOf(Request.Params.AllKeys, pi.Name) < 0)
pi.SetValue(model, pi.GetValue(oldModel, null), null);
}
result = mbll.Update(model) > 0;
} //修改
return Json(new { success = result, message = result ? "操作成功" : "操作失败" });
}
/// <summary>
/// 删除角色
/// </summary>
/// <param name="ids"></param>
/// <returns></returns>
public JsonResult RoleAuthDelete(string ids)
{
sys_roleauthBLL mbll = new sys_roleauthBLL();
user_authority_rangeBLL rbll = new user_authority_rangeBLL();
user_authority_range_companyBLL rcbll = new user_authority_range_companyBLL();
user_authority_range_opBLL robll = new user_authority_range_opBLL();
bool result = mbll.DeleteListWhere(string.Format("GID in({0})", ids)) > 0;
user_roleBLL ubll = new user_roleBLL();
//删除关系表数据
bool result1 = ubll.DeleteListWhere(string.Format("ROLEID in({0})", ids)) > 0;
//删除权限范围角色权限关系数据
bool result2 = rbll.DeleteListWhere(string.Format("USERID in({0})", ids)) > 0;
//删除公司关联表数据
bool result3 = rcbll.DeleteListWhere(string.Format("USERID in({0})", ids)) > 0;
//删除人员关联表数据
bool result4 = robll.DeleteListWhere(string.Format("USERID in({0})", ids)) > 0;
return Json(new { success = result, message = result ? "操作成功" : "操作失败" });
}
/// <summary>
/// 复制新建角色
/// </summary>
/// <param name="ids"></param>
/// <param name="newname"></param>
/// <returns></returns>
public JsonResult CopyRole(sys_roleauth model)
{
sys_roleauthBLL mbll = new sys_roleauthBLL();
user_authority_rangeBLL rbll = new user_authority_rangeBLL();
user_authority_range_companyBLL rcbll = new user_authority_range_companyBLL();
user_authority_range_opBLL robll = new user_authority_range_opBLL();
bool result = false;
var role = mbll.GetModel(model.GID); ;
role.GID = Guid.NewGuid().ToString();
role.Name = model.Name;
//return Json(new { success = result, message = result ? "操作成功" : "操作失败" });
//复制新增一条角色信息
result=mbll.Add(role)>0;
var oldroleid = model.GID;
if (result)
{
var rolelist = mbll.GetModelList(string.Format("PID= '{0}' ", oldroleid));
foreach (var item in rolelist)
{
item.GID = Guid.NewGuid().ToString();
item.PID = role.GID;
result = mbll.Add(item) > 0;
if (!result) break;
}
}
if (result)
{
//复制增加 权限范围角色权限关系数据
var authority_rangelist = rbll.GetModelList(string.Format("USERID in('{0}')", oldroleid));
foreach (var item in authority_rangelist)
{
item.GID = Guid.NewGuid().ToString();
item.USERID = role.GID;
result=rbll.Add(item)> 0;
if (!result) break;
}
}
//公司关联表数据
if (result)
{
var user_authority_range_companylist = rcbll.GetModelList(string.Format("USERID in('{0}')", oldroleid));
foreach (var item in user_authority_range_companylist)
{
item.GID = Guid.NewGuid().ToString();
item.USERID = role.GID;
result = rcbll.Add(item)>0;
if (!result) break;
}
}
//人员关联表数据
if (result)
{
var user_authority_range_oplist = robll.GetModelList(string.Format("USERID in('{0}')", oldroleid));
foreach (var item in user_authority_range_oplist)
{
item.GID = Guid.NewGuid().ToString();
item.USERID = role.GID;
result = robll.Add(item)>0;
if (!result) break;
}
}
return Json(new { success = result, message = result ? "操作成功" : "操作失败" });
}
/// <summary>
/// 删除权限
/// </summary>
/// <param name="ids"></param>
/// <returns></returns>
public JsonResult RoleAuthDelete2(string roleid, string ids)
{
var module = new Modules.ModuleGridSource();
user_roleBLL ubll = new user_roleBLL();
sys_roleauthBLL mbll = new sys_roleauthBLL();
bool result = mbll.DeleteListWhere(string.Format("PID ='{0}' AND AuthorityID IN({1})", roleid, ids)) > 0;
//所有拥有此角色的人员删除该权限
var list = ubll.GetModelList("ROLEID='" + roleid + "'");
string[] delItems = ids.Split(',');
foreach (var item in delItems)
{
foreach (var p in list)
module.RemoveUserModule(p.USERID, item.Replace("\'", ""));
}
return Json(new { success = result, message = result ? "操作成功" : "操作失败" });
}
/// <summary>
/// 获取人员树型
/// </summary>
/// <returns></returns>
public JsonResult GetUsertreeView()
{
StringBuilder userBuilder = new StringBuilder();
IList<CompanyEntity> companyEntities = new List<CompanyEntity>();
CompanyDA companyDA = new CompanyDA();
companyEntities = companyDA.GetAllCompany();
if (companyEntities.Count > 0)
{
userBuilder.Append("[");
for (int k = 0; k < companyEntities.Count; k++)
{
if (k == 0)
{
userBuilder.Append("{id:\"" + companyEntities[k].GID + "\",");
}
else
{
userBuilder.Append(",{id:\"" + companyEntities[k].GID + "\",");
}
userBuilder.Append("name:\"" + companyEntities[k].NAME + "\",nocheck:false");
IList<SysDeptEntity> sysDeptEntities = new List<SysDeptEntity>();
sysDeptEntities = new SysDeptDA().GetDepartmentByCompanyID(companyEntities[k].GID);
if (sysDeptEntities.Count > 0)
{
userBuilder.Append(",childred:[");
for (int j = 0; j < sysDeptEntities.Count; j++)
{
userBuilder.Append("{id:\"" + sysDeptEntities[j].GID + "\",");
userBuilder.Append("name:\"" + sysDeptEntities[j].DEPTNAME + "\",nocheck:false");
IList<UserEntity> userEntities = new List<UserEntity>();
userEntities = new UserDA().GetUserByCompanyAndDept(companyEntities[k].GID, sysDeptEntities[j].DEPTNAME);
if (userEntities.Count > 0)
{
userBuilder.Append(",childred:[");
for (int i = 0; i < userEntities.Count; i++)
{
userBuilder.Append("{id:\"" + userEntities[i].Gid + "\",");
userBuilder.Append("name:\"" + userEntities[i].ShowName + "\"");
if (i == userEntities.Count - 1)
{
userBuilder.Append("}");
}
else
{
userBuilder.Append("},");
}
}
userBuilder.Append("]");
}
if (j == sysDeptEntities.Count - 1)
{
userBuilder.Append("}");
}
else
{
userBuilder.Append("},");
}
}
userBuilder.Append("]");
}
userBuilder.Append("}");
}
userBuilder.Append("]");
}
return Json(userBuilder.ToString());
}
/// <summary>
/// 设置角色
/// </summary>
/// <param name="userid"></param>
/// <param name="roleid"></param>
/// <param name="type"></param>
/// <returns></returns>
public JsonResult SetRole(string userid, string roleid, int type)
{
sys_roleauthBLL mbll = new sys_roleauthBLL();
var authlist = mbll.GetModelList("Type=1 And PID ='" + roleid + "'");
var module = new Modules.ModuleGridSource();
string msg = "";
try
{
foreach (var item in authlist)
{
if (type == 0)
{
var m = module.RemoveUserModule(userid, item.AuthorityID);
if (m != "1") msg += m + "<br/>";
}
else
{
var m = module.AddUserModule(userid, item.AuthorityID);
if (m != "1") msg += m + "<br/>";
}
}
//绑定用户角色表
//dosomething
return Json(msg);
}
catch (Exception se)
{
return Json(se.Message);
}
}
/// <summary>
/// 设置权限范围
/// </summary>
/// <param name="userid"></param>
/// <param name="roleid"></param>
/// <param name="type"></param>
/// <param name="view"></param>
/// <param name="opera"></param>
/// <param name="view_check"></param>
/// <param name="opera_check"></param>
/// <returns></returns>
public void SetRange(string userid, string roleid, int type)
{
sys_roleauthBLL mbll = new sys_roleauthBLL();
user_authority_rangeBLL arbll = new user_authority_rangeBLL();
user_authority_range_companyBLL rcbll = new user_authority_range_companyBLL();
user_authority_range_opBLL robll = new user_authority_range_opBLL();
arbll.DeleteListWhere("USERID='" + userid + "' ");
//删除之前的配置(公司)
rcbll.DeleteListWhere("USERID='" + userid + "' ");
//删除之前的配置(人员)
robll.DeleteListWhere("USERID='" + userid + "' ");
user_roleBLL ubll = new user_roleBLL();
var listrole = ubll.GetModelList("USERID='" + userid + "'");
foreach (var role in listrole)
{
var list = arbll.GetModelList("USERID='" + role.ROLEID + "'");
foreach (var item in list)
{
SetAuthRange(userid, item.AUTHORITYID, item.VISIBLERANGE, item.OPERATERANGE, role.ROLEID);
}
}
//if (type == 0) //移除角色
//{
// //删除权限范围 type=0
// arbll.DeleteListWhere("USERID='" + userid + "' AND AUTHORITYID in (SELECT AUTHORITYID FROM user_authority_range WHERE USERID='" + roleid + "')");
// //删除之前的配置(公司)
// rcbll.DeleteListWhere("USERID='" + userid + "' AND AUTHORITYID in (SELECT AUTHORITYID FROM user_authority_range WHERE USERID='" + roleid + "')");
// //删除之前的配置(人员)
// robll.DeleteListWhere("USERID='" + userid + "' AND AUTHORITYID in (SELECT AUTHORITYID FROM user_authority_range WHERE USERID='" + roleid + "')");
// user_roleBLL ubll = new user_roleBLL();
// var listrole = ubll.GetModelList("USERID='" + userid + "'");
// foreach (var role in listrole)
// {
// var list = arbll.GetModelList("USERID='" + role.ROLEID + "'");
// foreach (var item in list)
// {
// SetAuthRange(userid, item.AUTHORITYID, item.VISIBLERANGE, item.OPERATERANGE, roleid);
// }
// }
//}
//if (type == 1)//添加角色
//{
// //增加权限范围
// var list = arbll.GetModelList("USERID='" + roleid + "'");
// foreach (var item in list)
// {
// SetAuthRange(userid, item.AUTHORITYID, item.VISIBLERANGE, item.OPERATERANGE, roleid);
// }
//}
}
/// <summary>
/// 设置单独权限的范围
/// </summary>
private void SetAuthRange(string userid, string authority, int? view, int? opera, string roleid)
{
user_authority_rangeBLL arbll = new user_authority_rangeBLL();
var model = arbll.GetModelList("USERID='" + userid + "' AND AUTHORITYID='" + authority + "'").FirstOrDefault();
if (model != null)
{
if (model.VISIBLERANGE == 5 || view == 5)
model.VISIBLERANGE = 5;
else if (model.VISIBLERANGE == 6 || view == 6)
model.VISIBLERANGE = 6;
else if (model.VISIBLERANGE >= view)
model.VISIBLERANGE = view;
if (model.OPERATERANGE == 5 || opera == 5)
model.OPERATERANGE = 5;
else if (model.OPERATERANGE == 6 || opera == 6)
model.OPERATERANGE = 6;
else if (model.OPERATERANGE >= opera)
model.OPERATERANGE = opera;
model.MODIFIEDTIME = DateTime.Now;
model.MODIFIEDUSER = Session["USERID"].ToString();
arbll.Update(model);
}
else
{
model = new user_authority_range();
model.GID = Guid.NewGuid().ToString();
model.USERID = userid;
model.AUTHORITYID = authority;
model.VISIBLERANGE = view;
model.OPERATERANGE = opera;
model.CREATEUSER = Session["USERID"].ToString();
model.CREATETIME = DateTime.Now;
arbll.Add(model);
}
var data_view = GetRelation(model.VISIBLERANGE, model.AUTHORITYID, roleid,"vs");
var data_opera = GetRelation(model.OPERATERANGE, model.AUTHORITYID, roleid,"op");
SetCompUser(model.VISIBLERANGE, model.OPERATERANGE, model.AUTHORITYID, model.USERID, data_view, data_opera);
}
public void SetCompanyRange(string authorityid, string userid, int type, string list)
{
//var israngstr = " and OPERATERANGE=1 ";
//if (type == 0) israngstr = " and VISIBLERANGE=1 ";
user_authority_range_companyBLL rcbll = new user_authority_range_companyBLL();
var plist = new JavaScriptSerializer().Deserialize<List<modeuleClass>>(list);
foreach (var p in plist)
{
var umodel = rcbll.GetModelList("USERID='" + userid + "' AND AUTHORITYID='" + authorityid + "' AND COMPANYID='" + p.id + "'").FirstOrDefault();
if (umodel != null)
{
if (type == 0)
umodel.VISIBLERANGE = 1;
else
umodel.OPERATERANGE = 1;
umodel.MODIFIEDTIME = DateTime.Now;
umodel.MODIFIEDUSER = Session["USERID"].ToString();
rcbll.Update(umodel);
}
else
{
umodel = new user_authority_range_company();
umodel.GID = Guid.NewGuid().ToString();
umodel.USERID = userid;
umodel.AUTHORITYID = authorityid;
umodel.COMPANYID = p.id;
if (type == 0)
{
umodel.VISIBLERANGE = 1;
umodel.OPERATERANGE = 0;
}
else
{
umodel.VISIBLERANGE = 0;
umodel.OPERATERANGE = 1;
}
umodel.CREATETIME = DateTime.Now;
umodel.CREATEUSER = Session["USERID"].ToString();
rcbll.Add(umodel);
}
}
}
/// <summary>
/// 保存角色权限配置
/// </summary>
/// type:0 - 角色权限 1角色权限范围
/// <returns></returns>
public void SetUserRange(string authorityid, string userid, int type, string list)
{
//var sqlstr = " update user_authority_range_op set OPERATERANGE=0 where USERID = '" + userid + "' AND AUTHORITYID = '" + authorityid + "'";
//if (type == 0) sqlstr = " update user_authority_range_op set VISIBLERANGE=0 where USERID = '" + userid + "' AND AUTHORITYID = '" + authorityid + "'";
//var _r = BasicDataRefDAL.ExecSql(sqlstr);
user_authority_range_opBLL robll = new user_authority_range_opBLL();
var omodellist = robll.GetModelList("USERID='" + userid + "' AND AUTHORITYID='" + authorityid + "'");
var qlist = new JavaScriptSerializer().Deserialize<List<modeuleClass>>(list);
foreach (var p in qlist)
{
var omodel = omodellist.Find(t => t.OPID == p.id);
if (omodel != null)
{
if (type == 0)
omodel.VISIBLERANGE = 1;
else
omodel.OPERATERANGE = 1;
omodel.MODIFIEDTIME = DateTime.Now;
omodel.MODIFIEDUSER = Session["USERID"].ToString();
robll.Update(omodel);
}
else
{
omodel = new user_authority_range_op();
omodel.GID = Guid.NewGuid().ToString();
omodel.USERID = userid;
omodel.AUTHORITYID = authorityid;
omodel.OPID = p.id;
if (type == 0)
{
omodel.VISIBLERANGE = 1;
omodel.OPERATERANGE = 0;
}
else
{
omodel.VISIBLERANGE = 0;
omodel.OPERATERANGE = 1;
}
omodel.CREATETIME = DateTime.Now;
omodel.CREATEUSER = Session["USERID"].ToString();
robll.Add(omodel);
}
}
}
/// <summary>
/// 角色添加权限
/// </summary>
/// <param name="roleid"></param>
/// <param name="modulelist"></param>
/// <returns></returns>
public JsonResult SaveRoleAuth(string roleid, string modulelist)
{
var module = new Modules.ModuleGridSource();
sys_roleauthBLL mbll = new sys_roleauthBLL();
user_roleBLL ubll = new user_roleBLL();
try
{
var data = new JavaScriptSerializer().Deserialize<List<modeuleClass>>(modulelist);
var list = ubll.GetModelList("ROLEID='" + roleid + "'");
//20200225 首先检查拥有该角色的所有人 能否获得该权限范围
var useridlist = "";
foreach (var user in list) {
if (useridlist != "") useridlist += ",";
useridlist += user.GID;
}
var checkresult = SysUserDAL.CheckOPRange(data, useridlist);
if (!checkresult.Success) {
return Json(new { success = false, msg = checkresult.Message });
}
foreach (var item in data)
{
sys_roleauth model = new sys_roleauth();
model.GID = Guid.NewGuid().ToString();
model.AuthorityID = item.id;//模块id
model.Name = item.name;
model.PID = roleid;
model.Type = 1;//一般权限
mbll.Add(model);
//所有拥有此角色的人员添加该权限
foreach (var p in list)
module.AddUserModule(p.USERID, item.id);
}
return Json(new { success = true });
}
catch (Exception se)
{
return Json(new { success = false, msg = se.Message });
}
}
//获取全部角色
public JsonResult GetRoleView()
{
sys_roleauthBLL mbll = new sys_roleauthBLL();
StringBuilder where = new StringBuilder();
where.Append("Type=0");
var list = mbll.GetModelList(where.ToString());
var result = from p in list
select new
{
id = p.GID,
name = p.Name
};
return Json(result);
}
/// <summary>
/// 获取人员对应的角色
/// </summary>
/// <param name="userid"></param>
/// <returns></returns>
public JsonResult GetUserRoleChecked(string userid)
{
sys_roleauthBLL mbll = new sys_roleauthBLL();
StringBuilder where = new StringBuilder();
where.Append(string.Format("Type=0 and GID in (SELECT ROLEID FROM USER_ROLE WHERE USERID ='{0}')", userid));
var list = mbll.GetModelList(where.ToString());
var result = from p in list
select new
{
id = p.GID,
name = p.Name
};
return Json(result);
}
/// <summary>
/// 保存用户角色
/// </summary>
/// <param name="userid"></param>
/// <param name="rolelist"></param>
/// <returns></returns>
public JsonResult SaveUserRole(string userid, string rolelist, int type)
{
user_roleBLL ubll = new user_roleBLL();
try
{
var data = new JavaScriptSerializer().Deserialize<List<modeuleClass>>(rolelist);
foreach (var item in data)
{
user_role model = new user_role();
model.GID = Guid.NewGuid().ToString();
model.ROLEID = item.id;
model.USERID = userid;
switch (type)
{
case 1://添加角色
ubll.Add(model);
//加权限
SetRole(userid, item.id, 1);
////修改权限范围
//SetRange(userid, item.id, 1);
break;
case 0://移除角色
ubll.DeleteListWhere(string.Format("USERID='{0}' AND ROLEID='{1}'", userid, item.id));
////移除权限
SetRole(userid, item.id, 0);
////恢复默认权限范围
//SetRange(userid, item.id, 0);
break;
}
}
SetRange(userid,"", 1);
return Json(new { success = true });
}
catch (Exception se)
{
return Json(new { success = false, msg = se.Message });
}
}
/// <summary>
/// 获取公司列表
/// </summary>
/// <returns></returns>
public JsonResult GetCompanyList1()
{
companyBLL cbll = new companyBLL();
var result = from p in cbll.GetModelList("")
select new
{
id = p.GID,
name = p.NAME
};
return Json(result);
}
/// <summary>
/// 保存权限范围
/// </summary>
/// <returns></returns>
public JsonResult SaveAuthByRole(user_authority_range model)
{
user_authority_rangeBLL rbll = new user_authority_rangeBLL();
bool result;
if (String.IsNullOrEmpty(model.GID))
{
model.GID = Guid.NewGuid().ToString();
model.CREATEUSER = Session["SHOWNAME"].ToString();
model.CREATETIME = DateTime.Now;
result = rbll.Add(model) > 0;
} //新增
else
{
//获取原数据
var oldModel = rbll.GetModel(model.GID);
//类反射
Type type = typeof(Model.user_authority_range);
PropertyInfo[] piArr = type.GetProperties();
foreach (var pi in piArr)
{
if (Array.IndexOf(Request.Params.AllKeys, pi.Name) < 0)
pi.SetValue(model, pi.GetValue(oldModel, null), null);
}
model.MODIFIEDUSER = Session["SHOWNAME"].ToString();
model.MODIFIEDTIME = DateTime.Now;
result = rbll.Update(model) > 0;
} //修改
//设置角色对应的权限范围
var data_view = Request["VISIBLERELATION"];
var data_opera = Request["OPERATERELATION"];
SetCompUser(model.VISIBLERANGE, model.OPERATERANGE, model.AUTHORITYID, model.USERID, data_view, data_opera);
//获取该角色下的人员并修改权限范围
user_roleBLL bll = new user_roleBLL();
var list = bll.GetModelList("ROLEID='" + model.USERID + "'");
foreach (var item in list)
SetAuthRange(item.USERID, model.AUTHORITYID, model.VISIBLERANGE, model.OPERATERANGE, model.USERID);
return Json(new { success = result, message = result ? "操作成功" : "操作失败" });
}
private void SetCompUser(int? view, int? opera, string authority, string userid, string data_view, string data_opera)
{
//可视范围(保存人员)
if (view == 5)
SetCompanyRange(authority, userid, 0, data_view);
if (view == 6)
SetUserRange(authority, userid, 0, data_view);
//操作范围(保存人员)
if (opera == 5)
SetCompanyRange(authority, userid, 1, data_opera);
if (opera == 6)
SetUserRange(authority, userid, 1, data_opera);
}
/// <summary>
/// 保存权限范围
/// </summary>
/// <returns></returns>
public JsonResult SaveAuthByRoleMulti(string jsonStr)
{
var jsonObj = JsonConvert.DeserializeObject<List<user_authority_range_multi_set>>(jsonStr);
user_authority_rangeBLL rbll = new user_authority_rangeBLL();
bool result;
foreach (var model in jsonObj)
{
if (String.IsNullOrEmpty(model.GID))
{
model.GID = Guid.NewGuid().ToString();
model.CREATEUSER = Session["SHOWNAME"].ToString();
model.CREATETIME = DateTime.Now;
result = rbll.Add(model) > 0;
} //新增
else
{
//获取原数据
var oldModel = rbll.GetModel(model.GID);
////类反射
//Type type = typeof(Model.user_authority_range);
//PropertyInfo[] piArr = type.GetProperties();
//foreach (var pi in piArr)
//{
// if (Array.IndexOf(Request.Params.AllKeys, pi.Name) < 0)
// pi.SetValue(model, pi.GetValue(oldModel, null), null);
//}
model.CREATETIME = oldModel.CREATETIME;
model.CREATEUSER = oldModel.CREATEUSER;
model.MODIFIEDUSER = Session["SHOWNAME"].ToString();
model.MODIFIEDTIME = DateTime.Now;
result = rbll.Update(model) > 0;
} //修改
//设置角色对应的权限范围
var data_view = model.VISIBLERELATION;
var data_opera = model.OPERATERELATION;
SetCompUser(model.VISIBLERANGE, model.OPERATERANGE, model.AUTHORITYID, model.USERID, data_view, data_opera);
//获取该角色下的人员并修改权限范围
user_roleBLL bll = new user_roleBLL();
var list = bll.GetModelList("ROLEID='" + model.USERID + "'");
foreach (var item in list)
SetAuthRange(item.USERID, model.AUTHORITYID, model.VISIBLERANGE, model.OPERATERANGE, model.USERID);
}
return Json(new { success = true, message = "操作成功" });
}
#endregion
public bool SetRoleAuthRange()
{
var result = true;
return result;
}
public ContentResult CopyAuth(string FromUSERID, string ToUSERIDLIST)
{
DBResult result = new DBResult();
if (string.IsNullOrWhiteSpace(FromUSERID) || string.IsNullOrWhiteSpace(ToUSERIDLIST))
{
var jsonRespose1 = new MvcShipping.Helper.JsonResponse
{
Success = false,
Message = "请正确选择权限来源用户和目标用户",
Data = ""
};
return new ContentResult() { Content = MvcShipping.Helper.JsonConvert.Serialize(jsonRespose1) };
}
var useridlist = ToUSERIDLIST.Split(',');
//20200221 首先获取来源用户的所有模块ID列表
var useractionbll = new user_actionBLL();
var useractionlist = useractionbll.GetModelList(" userid='"+ FromUSERID + "' and exists(select 1 from [action] where gid=ACTIONID)");
var checkcando = new DBResult(true, "", null);
//逐个权限进行判断 看这次能否添加得上
foreach (var module in useractionlist) {
checkcando = SysUserDAL.CheckOPRangeByActionID(module.ACTIONID, ToUSERIDLIST);
if (!checkcando.Success) {
result.SetErrorInfo(checkcando.Message);
}
}
//如不能 则返回所有引起错误的信息
if (!string.IsNullOrWhiteSpace(result.Message) && !result.Success) {
var jsonRespose1 = new MvcShipping.Helper.JsonResponse
{
Success = false,
Message = result.Message,
Data = ""
};
return new ContentResult() { Content = MvcShipping.Helper.JsonConvert.Serialize(jsonRespose1) };
}
//对权限进行设置
StringBuilder sqlstrbase = new StringBuilder();
sqlstrbase.Append("declare @USERID varchar(50) ");
sqlstrbase.Append("declare @CREATEUSER varchar(50) ");
sqlstrbase.Append("declare @FROMUSER varchar(50) ");
sqlstrbase.Append("set @USERID='{0}' ");
sqlstrbase.Append("set @CREATEUSER='{1}' ");
sqlstrbase.Append("set @FROMUSER = '{2}' ");
sqlstrbase.Append("delete from user_action where USERID=@USERID ");
sqlstrbase.Append("insert into user_action (GID,ACTIONID,USERID,CREATEUSER,CREATETIME,MODIFIEDUSER,MODIFIEDTIME) ");
sqlstrbase.Append("select newid(),actionid,@USERID,@CREATEUSER,getdate(),@CREATEUSER,getdate() from user_action where userid = @FROMUSER ");
sqlstrbase.Append("delete from user_authority_range where USERID=@USERID ");
sqlstrbase.Append("insert into user_authority_range (GID,USERID,AUTHORITYID,VISIBLERANGE,OPERATERANGE,CREATEUSER,CREATETIME,MODIFIEDUSER,MODIFIEDTIME) ");
sqlstrbase.Append("select newid(),@USERID,AUTHORITYID,VISIBLERANGE,OPERATERANGE,@CREATEUSER,getdate(),@CREATEUSER,getdate() from user_authority_range where userid = @FROMUSER ");
sqlstrbase.Append("delete from user_authority_range_op where USERID=@USERID ");
sqlstrbase.Append("insert into user_authority_range_op (GID,USERID,AUTHORITYID,OPID,OPNAME,VISIBLERANGE,OPERATERANGE,CREATEUSER,CREATETIME,MODIFIEDUSER,MODIFIEDTIME) ");
sqlstrbase.Append("select newid(),@USERID,AUTHORITYID,OPID,OPNAME,VISIBLERANGE,OPERATERANGE,@CREATEUSER,getdate(),@CREATEUSER,getdate() from user_authority_range_op where userid = @FROMUSER ");
sqlstrbase.Append("delete from user_authority_range_company where USERID=@USERID ");
sqlstrbase.Append("insert into user_authority_range_company (GID,USERID,AUTHORITYID,COMPANYID,VISIBLERANGE,OPERATERANGE,CREATEUSER,CREATETIME,MODIFIEDUSER,MODIFIEDTIME) ");
sqlstrbase.Append("select newid(),@USERID,AUTHORITYID,COMPANYID,VISIBLERANGE,OPERATERANGE,@CREATEUSER,getdate(),@CREATEUSER,getdate() from user_authority_range_company where userid = @FROMUSER ");
foreach (var userid in useridlist) {
string sqlstr = string.Format(sqlstrbase.ToString(), userid,Session["USERID"].ToString(), FromUSERID);
var _r = BasicDataRefDAL.ExecSql(sqlstr);
if (_r == -1) {
var jsonRespose2 = new MvcShipping.Helper.JsonResponse
{
Success = true,
Message = "设置错误,请联系管理员!",
Data = ""
};
return new ContentResult() { Content = MvcShipping.Helper.JsonConvert.Serialize(jsonRespose2) };
}
}
var jsonRespose = new MvcShipping.Helper.JsonResponse
{
Success = true,
Message = "设置完成",
Data = ""
};
return new ContentResult() { Content = MvcShipping.Helper.JsonConvert.Serialize(jsonRespose) };
}
}
public class modeuleClass
{
public string id { get; set; }
public string name { get; set; }
}
}
Reference in New Issue View Git Blame Copy Permalink