protected override void ExecuteChild(OauthLoginReq dataReq, ResponseAPI dataRes)
{
DBMode = dataReq.DBMode;
var res = new OauthLoginRes();
res._result.ServerAddr = ConnectionString();
res._result.DBMode = DBMode;
var userApprove = new ASSETKKF_MODEL.Data.Mssql.Asset.STUSERASSET();
userApprove.UCODE = dataReq.usercode;
try
{
var roles = ASSETKKF_ADO.Mssql.Asset.STUSERASSETAdo.GetInstant().CheckApprover(userApprove, conString);
if (roles.Count <= 0)
{
res = new OauthLoginRes();
res.usercode = dataReq.usercode;
res._result._status = "F";
res._result._code = "F0002";
res._result._message = "ไม่มีสิทธิ์ การอนุมัติ";
}
else
{
var user = ASSETKKF_ADO.Mssql.Asset.STUSERASSETAdo.GetInstant().Search(new ASSETKKF_MODEL.Data.Mssql.Asset.STUSERASSET()
{
UCODE = dataReq.usercode.Trim()
}, null, conString).FirstOrDefault();
if (user == null)
{
throw new Exception("Username Not Found.");
}
if (user.STAEMP == "9")
{
throw new Exception("พ้นสภาพพนักงาน ไม่มีสิทธิ์เข้าใช้โปรแกรม.");
}
if (user.A_Review == "N")
{
throw new Exception("ถูกยกเลิกสิทธิ์เข้าใช้โปรแกรม.");
}
//var pass = Core.Util.EncryptUtil.Hash(dataReq.password.Trim());
var pass = Core.Util.EncryptUtil.ENDCodeNEW(dataReq.password.Trim());
if (user.PCODE == pass)
{
var _token = Core.Util.EncryptUtil.Hash(pass);
res.token = _token.NewID();
res.username = user.OFFICECODE;
res.usercode = user.UCODE;
res._result._status = "S";
res._result._code = "S0000";
res._result._message = "username และ password ถูกต้อง";
StaticValue.GetInstant().TokenKey();
}
else
{
res = new OauthLoginRes();
res.usercode = dataReq.usercode;
res._result._status = "F";
res._result._code = "F0002";
res._result._message = "username และ password ไม่ถูกต้อง";
}
}
}
catch
{
res.usercode = dataReq.usercode;
res._result._status = "F";
res._result._code = "F0002";
res._result._message = "การเชื่อมต่อฐานข้อมูลมีปัญหา...";
}
dataRes.data = res;
}
protected override void ExecuteChild(OauthLoginReq dataReq, ResponseAPI dataRes)
{
var res = new OauthLoginRes();
var user = ASSETKKF_ADO.Mssql.Mcis.zUserAdo.GetInstant().Search(new ASSETKKF_MODEL.Data.Mssql.Mcis.zUser()
{
UserCode = dataReq.username.Trim()
}).FirstOrDefault();
if (user == null)
{
throw new Exception("Username Not Found.");
}
if (user.Status != "A")
{
throw new Exception("Username is not Confirm.");
}
//var pass = Core.Util.EncryptUtil.Hash(dataReq.password.Trim());
var pass = Core.Util.EncryptUtil.ENDCodeNEW(dataReq.password.Trim());
/*
* var config = Ado.Mssql.Table.UserConfig.GetInstant().Search(user.ID);
* if (config.Where(x => x.TwoFactorEnable).ToList().Count != 0)
* {
* var authenticator = new TwoFactorAuthenticator();
* var isValid = authenticator.ValidateTwoFactorPIN(user.Code, dataReq.twofactor.Replace(" ", ""));
* if (!isValid)
* {
* throw new Exception("T000: 2FA Code invalid.");
* }
* }
*
*/
// if (user.UserPw == Core.Util.EncryptUtil.Hash(pass + user.SoftPassword))
if (user.UserPw == pass)
{
var _token = Core.Util.EncryptUtil.Hash(pass);
res.token = _token.NewID();
res.username = user.UserName;
res.usercode = user.UserCode;
ASSETKKF_ADO.Mssql.Mcis.muTokenAdo.GetInstant().Insert(new ASSETKKF_MODEL.Data.Mssql.Mcis.muToken()
{
UserCode = user.UserCode,
AccessToken_Code = this.AccessToken,
Code = res.token,
Status = "A",
Type = "L",
ExpiryTime = DateTime.Now.AddMinutes(480)
}, user.UserCode);
/*
* if (config.TrueForAll(x => x.EmailLogin == true))
* {
* var access = Ado.Mssql.Table.AccessToken.GetInstant().Search(this.AccessToken).FirstOrDefault();
* string subject = "Login Notification";
* string body = $"<p><b>Dear {user.Username} ,</b></p>" +
* $"<p>This is notify you of a successful login to your account.</p>" +
* $"<p>Login Time: {DateTime.UtcNow.ToString()}</p>" +
* $"<p>IP Address: {access.IPAddress}</p>" +
* $"<p>User Agent: {access.Agent}</p>";
*
* Task.Run(() => Core.SendMail.SendMail.Send(user.Email, subject, body));
* }
*/
dataRes.data = res;
StaticValue.GetInstant().TokenKey();
}
else
{
throw new Exception("Username or Password was incorrect");
}
}
protected override void ExecuteChild(OauthLoginReq dataReq, ResponseAPI dataRes)
{
var res = new OauthLoginRes();
var userApprove = new ASSETKKF_MODEL.Request.Mcis.msUserSequenceReq();
userApprove.USERCODE = dataReq.usercode;
try
{
var roles = ASSETKKF_ADO.Mssql.Mcis.msUserSequenceAdo.GetInstant().GetData(userApprove);
if (roles.Count <= 0)
{
res = new OauthLoginRes();
res.usercode = dataReq.usercode;
res._result._status = "F";
res._result._code = "F0002";
res._result._message = "ไม่มีสิทธิ์ การอนุมัติ";
}
else
{
var user = ASSETKKF_ADO.Mssql.Mcis.zUserAdo.GetInstant().Search(new ASSETKKF_MODEL.Data.Mssql.Mcis.zUser()
{
UserCode = dataReq.usercode.Trim()
}).FirstOrDefault();
if (user == null)
{
throw new Exception("Username Not Found.");
}
if (user.Status != "A")
{
throw new Exception("Username is not Confirm.");
}
//var pass = Core.Util.EncryptUtil.Hash(dataReq.password.Trim());
var pass = Core.Util.EncryptUtil.ENDCodeNEW(dataReq.password.Trim());
/*
* var config = Ado.Mssql.Table.UserConfig.GetInstant().Search(user.ID);
* if (config.Where(x => x.TwoFactorEnable).ToList().Count != 0)
* {
* var authenticator = new TwoFactorAuthenticator();
* var isValid = authenticator.ValidateTwoFactorPIN(user.Code, dataReq.twofactor.Replace(" ", ""));
* if (!isValid)
* {
* throw new Exception("T000: 2FA Code invalid.");
* }
* }
*
*/
// if (user.UserPw == Core.Util.EncryptUtil.Hash(pass + user.SoftPassword))
if (user.UserPw == pass)
{
var _token = Core.Util.EncryptUtil.Hash(pass);
res.token = _token.NewID();
res.username = user.UserName;
res.usercode = user.UserCode;
res._result._status = "S";
res._result._code = "S0000";
res._result._message = "username และ password ถูกต้อง";
StaticValue.GetInstant().TokenKey();
}
else
{
res = new OauthLoginRes();
res.usercode = dataReq.usercode;
res._result._status = "F";
res._result._code = "F0002";
res._result._message = "username และ password ไม่ถูกต้อง";
}
}
}
catch
{
res.usercode = dataReq.usercode;
res._result._status = "F";
res._result._code = "F0002";
res._result._message = "การเชื่อมต่อฐานข้อมูลมีปัญหา...";
}
dataRes.data = res;
}
protected override void ExecuteChild(OauthLoginReq dataReq, ResponseAPI dataRes)
{
DBMode = dataReq.DBMode;
var res = new OauthLoginRes();
res._result.ServerAddr = ConnectionString();
res._result.DBMode = DBMode;
var user = ASSETKKF_ADO.Mssql.Asset.STUSERASSETAdo.GetInstant().Search(new ASSETKKF_MODEL.Data.Mssql.Asset.STUSERASSET()
{
UCODE = dataReq.username.Trim()
}, null, conString);
if (user == null)
{
throw new Exception("ไม่พบชื่อผู้ใช้งาน");
}
var STAEMP = user.Where(s => s.STAEMP == "9")
.Select(s => s)
.ToList();
if (STAEMP.Count > 0)
{
throw new Exception("พ้นสภาพพนักงาน ไม่มีสิทธิ์เข้าใช้โปรแกรม.");
}
var Permission = user.Where(s => s.A_Review == "Y")
.Select(s => s)
.ToList();
if (Permission.Count == 0)
{
throw new Exception("ไม่มีสิทธิ์เข้าใช้โปรแกรม.");
}
var pass = Core.Util.EncryptUtil.ENDCodeNEW(dataReq.password.Trim());
pass = dataReq.password.Trim();
var Password = user.Where(s => s.PCODE == pass)
.Select(s => s)
.ToList();
if (Password.Count > 0)
{
var _token = Core.Util.EncryptUtil.Hash(pass);
res.token = _token.NewID();
var obj = user.FirstOrDefault();
res.username = obj.OFNAME;
res.usercode = obj.OFFICECODE;
res.deptcode = obj.DEPCODEEOL;
res.deptname = obj.NAMCENTTHA;
res.codcomp = obj.CODCOMP;
res.codposname = obj.CODPOSNAME;
res.cospos = obj.COSPOS;
res.GUCODE = obj.GUCODE;
res.COMPANYLST = user.Where(s => s.A_Review == "Y")
.Select(s => s.COMPANY)
.ToList();
res.UserGroupLst = user.Where(s => s.A_Review == "Y")
.Select(s => new UserGroup()
{
company = s.COMPANY,
companyname = s.COMPANAYNAME,
gucode = s.GUCODE,
guname = s.GUNAME,
depcodeol = s.DEPCODELST
}).ToList();
var M_Review = user.Where(s => s.M_Review)
.Select(s => s)
.ToList();
res.M_Review = M_Review.Count > 0;
var M_ADD = user.Where(s => s.M_ADD)
.Select(s => s)
.ToList();
res.M_ADD = M_ADD.Count > 0;
var M_EDIT = user.Where(s => s.M_EDIT)
.Select(s => s)
.ToList();
res.M_EDIT = M_EDIT.Count > 0;
var M_APPROV = user.Where(s => s.M_APPROV)
.Select(s => s)
.ToList();
res.M_APPROV = M_APPROV.Count > 0;
var M_Store = user.Where(s => s.M_Store)
.Select(s => s)
.ToList();
res.M_Store = M_Store.Count > 0;
var Menu1 = user.Where(s => s.Menu1)
.Select(s => s)
.ToList();
res.Menu1 = Menu1.Count > 0;
var Menu2 = user.Where(s => s.Menu2)
.Select(s => s)
.ToList();
res.Menu2 = Menu2.Count > 0;
var Menu3 = user.Where(s => s.Menu3)
.Select(s => s)
.ToList();
res.Menu3 = Menu3.Count > 0;
var Menu4 = user.Where(s => s.Menu4)
.Select(s => s)
.ToList();
res.Menu4 = Menu4.Count > 0;
ASSETKKF_ADO.Mssql.Asset.muTokenAdo.GetInstant().Insert(new ASSETKKF_MODEL.Data.Mssql.Asset.muToken()
{
UserCode = obj.UCODE,
AccessToken_Code = this.AccessToken,
Code = res.token,
Status = "A",
Type = "L",
ExpiryTime = DateTime.Now.AddMinutes(480)
}, obj.UCODE, null, conString);
/*
* if (config.TrueForAll(x => x.EmailLogin == true))
* {
* var access = Ado.Mssql.Table.AccessToken.GetInstant().Search(this.AccessToken).FirstOrDefault();
* string subject = "Login Notification";
* string body = $"<p><b>Dear {user.Username} ,</b></p>" +
* $"<p>This is notify you of a successful login to your account.</p>" +
* $"<p>Login Time: {DateTime.UtcNow.ToString()}</p>" +
* $"<p>IP Address: {access.IPAddress}</p>" +
* $"<p>User Agent: {access.Agent}</p>";
*
* Task.Run(() => Core.SendMail.SendMail.Send(user.Email, subject, body));
* }
*/
dataRes.data = res;
StaticValue.GetInstant().TokenKey();
}
else
{
throw new Exception("Username or Password was incorrect");
}
}
