/// <summary>
/// Hàm cập nhật lại danh sách role của user. Những role không có trong danh sách sẽ bị xóa
/// </summary>
/// <param name="user"></param>
public void UpdateRolesOfUser(SYS_User user)
{
DbConnection conn = _DbHelper.CreateConnection(Common.ConnectionString);
try
{
conn.Open();
//xóa role
List <DbParameter> para = new List <DbParameter>();
para.Add(_DbHelper.CreateParameter("UserID", user.ID, false));
_DbHelper.ExecuteNonQuery(conn,
Common.DatabaseSchema + "[SYS_Role_DeleteAllRolesOfUser]", para.ToArray());
//thêm lại role
para = new List <DbParameter>();
para.Add(_DbHelper.CreateParameter("UserID", user.ID, false));
para.Add(_DbHelper.CreateParameter("RoleID", user.Roles.ID, false));
_DbHelper.ExecuteNonQuery(conn,
Common.DatabaseSchema + "[SYS_Role_InsertRolesOfUser]", para.ToArray());
}
catch (Exception ex)
{
throw new Exception(String.Format("RoleDataAccess.UpdateRolesByUser: {0}", ex.Message));
}
finally
{
conn.Close();
}
}
public int InsertSYS_User(SYS_User sys_user)
{
DbConnection conn = _DbHelper.CreateConnection(Common.ConnectionString);
conn.Open();
try
{
List <DbParameter> para = new List <DbParameter>();
DbParameter ouput = _DbHelper.CreateParameter(FIELD_ID, DbType.Int32, true);
para.Add(_DbHelper.CreateParameter(FIELD_USERNAME, sys_user.UserName, false));
para.Add(_DbHelper.CreateParameter(FIELD_PASSWORD, sys_user.Password, false));
para.Add(_DbHelper.CreateParameter(FIELD_FIRSTNAME, sys_user.FirstName, false));
para.Add(_DbHelper.CreateParameter(FIELD_MIDNAME, sys_user.MidName, false));
para.Add(_DbHelper.CreateParameter(FIELD_LASTNAME, sys_user.LastName, false));
para.Add(_DbHelper.CreateParameter(FIELD_EMAIL, sys_user.Email, false));
para.Add(_DbHelper.CreateParameter(FIELD_ISACTIVE, sys_user.IsActive, false));
para.Add(_DbHelper.CreateParameter(FIELD_NUMBERPHONE, sys_user.NumberPhone, false));
para.Add(_DbHelper.CreateParameter(FIELD_IDORGANIZATION, sys_user.IDOrganization, false));
para.Add(ouput);
_DbHelper.ExecuteReader(conn, Common.DatabaseSchema + "[SYS_User_Insert]", para.ToArray());
return((int)ouput.Value);
}
catch (Exception ex)
{
throw new Exception(String.Format("SYS_UserDataAccess.Insert: {0}", ex.Message));
}
finally
{
conn.Close();
}
}
public SYS_User SelectSYS_User(int ID)
{
SYS_User sys_user = new SYS_User();
DbDataReader reader = null;
DbConnection connection = _DbHelper.CreateConnection(Common.ConnectionString);
connection.Open();
try
{
List <DbParameter> para = new List <DbParameter>();
para.Add(_DbHelper.CreateParameter(FIELD_ID, ID, false));
reader = _DbHelper.ExecuteReader(connection, Common.DatabaseSchema + "[SYS_User_SelectById]", para.ToArray());
if (reader.HasRows && reader.Read())
{
SYS_UserDataAccess.SetSYS_UserInfo(reader, ref sys_user);
}
}
catch (Exception ex)
{
throw new Exception(String.Format("SYS_UserDataAccess.SelectById: {0}", ex.Message));
}
finally
{
if (reader != null)
{
reader.Close();
}
connection.Close();
}
return(sys_user);
}
public SYS_User SelectUserByUserName(string connectionString, string UserName)
{
SYS_ConfigConnectionDataAccess connectionDataAccess = new SYS_ConfigConnectionDataAccess();
connectionString = connectionDataAccess.DecryptSYS_ConfigConnection(connectionString);
SYS_User sysUser = new SYS_User();
DbDataReader reader = null;
DbConnection connection = _DbHelper.CreateConnection(connectionString);
connection.Open();
try
{
List <DbParameter> para = new List <DbParameter>();
para.Add(_DbHelper.CreateParameter(FIELD_USERNAME, UserName, false));
reader = _DbHelper.ExecuteReader(connection, Common.DatabaseSchema + "[SYS_User_SelectByUserName]", para.ToArray());
if (reader.HasRows && reader.Read())
{
SYS_UserDataAccess.SetSYS_UserInfo(reader, ref sysUser);
}
}
catch (Exception ex)
{
throw new Exception(String.Format("SYS_UserDataAccess.SelectByUserName: {0}", ex.Message));
}
finally
{
if (reader != null)
{
reader.Close();
}
connection.Close();
} return(sysUser);
}
public ActionResult AddForAjax(AccountAddModel model)
{
if (ModelState.IsValid)
{
if (model.Password != model.ConfirmPassword)
{
return(Json(new ServiceResult("密码输入").IsFailed()));
}
SYS_User user = new SYS_User()
{
SystemUserId = Guid.NewGuid().ToString(),
CreateTime = DateTime.Now,
Email = model.Email,
Mobile = model.Mobile,
Password = AuthorizeHelper.GetEncPassword(model.Password),
RealName = model.RealName,
UserName = model.UserName,
UserType = model.UserType,
Status = model.Status
};
return(Json(this.accountService.Add(user)));
}
else
{
return(Json(new ServiceResult(GetModelStateMessage()).IsFailed()));
}
}
public ServiceResult Update(SYS_User user)
{
var result = new ServiceResult();
var ret = this.userRepository.Query <int, int, int>(
@"SELECT COUNT(1) FROM SYS_User WHERE UserName = @userName AND SystemUserId != @userId;
SELECT COUNT(1) FROM SYS_User WHERE Email = @email AND SystemUserId != @userId;
SELECT COUNT(1) FROM SYS_User WHERE Mobile = @mobile AND SystemUserId != @userId;"
, new { userName = user.UserName, email = user.Email, mobile = user.Mobile, userId = user.SystemUserId }
);
if (ret[0].Cast <int>().First() > 0)
{
return(result.IsFailed("编辑失败,已存在用户名相同的管理员"));
}
if (ret[1].Cast <int>().First() > 0)
{
return(result.IsFailed("编辑失败,已存在邮箱相同的管理员"));
}
if (ret[2].Cast <int>().First() > 0)
{
return(result.IsFailed("编辑失败,已存在手机号相同的管理员"));
}
this.userRepository.Update(user);
return(result.IsSucceed("更新系统用户成功"));
}
public ServiceResult Add(SYS_User user)
{
var result = new ServiceResult();
//if (!user.Email.IsEmail())
//{
// return result.IsFailed("邮件地址不合法。");
//}
var ret = this.userRepository.Query <int, int, int>(
@"SELECT COUNT(1) FROM SYS_User WHERE UserName = @userName;
SELECT COUNT(1) FROM SYS_User WHERE Email = @email;
SELECT COUNT(1) FROM SYS_User WHERE Mobile = @mobile;"
, new { userName = user.UserName, email = user.Email, mobile = user.Mobile }
);
if (ret[0].Cast <int>().First() > 0)
{
return(result.IsFailed("添加失败,已存在用户名相同的管理员"));
}
//if (ret[1].Cast<int>().First() > 0)
// return result.IsFailed("添加失败,已存在邮箱相同的管理员");
//if (ret[2].Cast<int>().First() > 0)
// return result.IsFailed("添加失败,已存在手机号相同的管理员");
this.userRepository.Add(user);
return(result.IsSucceed("添加系统用户成功"));
}
/// <summary>
/// 加载树形菜单
/// </summary>
/// <returns></returns>
public ActionResult CreatTree()
{
SYS_User SYSUSER = Session["SYSUSER"] as SYS_User;
ViewBag.treenode = new WXDataBLL.WXUser.WX_UserGroupManager().Where(x => (x.AppId == null) || (x.AppId == SYSUSER.AppId && x.UserId == null) || (x.UserId == SYSUSER.UserId)).ToList();
return(PartialView());
}
/// <summary>
/// 聊天内容输出到网页
/// </summary>
/// <param name="id"></param>
/// <returns></returns>
private List <WX_CustomMsg> FansMsg(string id)
{
SYS_User SYSUSER = Session["SYSUSER"] as SYS_User;
List <WX_Queue> list = new WXDataBLL.WXCustom.WX_QueueManager().Where(s => s.MsgState == 1 && s.OpenID.Equals(id));
List <WX_CustomMsg> msg = new List <WX_CustomMsg>();
foreach (WX_Queue item in list)
{
WX_CustomMsg CM = new WX_CustomMsg();
CM.MsgId = item.MsgId;
CM.OpenID = item.OpenID;
CM.UserId = SYSUSER.UserId;
CM.AppId = SYSUSER.AppId;
CM.CreateTime = item.CreateTime;
CM.Content = XmlUtility.GetSingleNodeInnerText(item.XmlContent, "/xml/Content");
CM.MsgSource = "粉丝";
CM.MsgType = item.MsgType;
CM.XmlContent = item.XmlContent;
new WXDataBLL.WXCustom.WX_QueueManager().Delete(item.MsgId); //删除
new WXDataBLL.WXCustom.WX_CustomMsgManager().Add(CM); //添加到数据库
var info = new WXDataBLL.WXCustom.WX_CustomMsgManager().GetByPK(CM.MsgId);
msg.Add(info); //添加到集合
}
return(msg);
}
public JsonResult UpdateUser(SYS_User user)
{
JsonResult result = new JsonResult();
string msg = "";
try
{
user.UserPassword = MD5.GetMd5Hash(user.UserPassword);
user.ModifiedTime = DateTime.Now;
user.Modifier = (Session["user"] as SYS_User)?.UserName;
bool isSuccess = userService.UpdateUser(user);
if (isSuccess)
{
msg = "修改成功";
}
else
{
msg = "修改失败";
}
log.Info(msg);
}
catch (DbEntityValidationException e)
{
log.Error(e.Message);
}
catch (Exception e)
{
log.Error(e.Message);
}
finally
{
result = Json(new { msg = msg }, JsonRequestBehavior.AllowGet);
}
return(result);
}
public void DeleteSYS_User(SYS_User sys_user)
{
DbConnection conn = _DbHelper.CreateConnection(Common.ConnectionString);
conn.Open();
try
{
SYS_RoleOfUserDataAccess sysRoleOfUserDA = new SYS_RoleOfUserDataAccess();
SYS_RoleOfUser sysRoleOfUser = new SYS_RoleOfUser();
sysRoleOfUser.UserId = sys_user.ID;
sysRoleOfUserDA.DeleteSYS_RoleOfUserByIDUser(sysRoleOfUser);
List <DbParameter> para = new List <DbParameter>();
para.Add(_DbHelper.CreateParameter(FIELD_ID, sys_user.ID, false));
_DbHelper.ExecuteReader(conn, Common.DatabaseSchema + "[SYS_User_Delete]", para.ToArray());
}
catch (Exception)
{
throw;
}
finally
{
conn.Close();
}
}
public int InsertSYS_User(DbTransaction transaction, SYS_User sys_user)
{
try
{
List <DbParameter> para = new List <DbParameter>();
DbParameter ouput = _DbHelper.CreateParameter(FIELD_ID, DbType.Int32, true);
para.Add(_DbHelper.CreateParameter(FIELD_USERNAME, sys_user.UserName, false));
para.Add(_DbHelper.CreateParameter(FIELD_PASSWORD, sys_user.Password, false));
para.Add(_DbHelper.CreateParameter(FIELD_FIRSTNAME, sys_user.FirstName, false));
para.Add(_DbHelper.CreateParameter(FIELD_MIDNAME, sys_user.MidName, false));
para.Add(_DbHelper.CreateParameter(FIELD_LASTNAME, sys_user.LastName, false));
para.Add(_DbHelper.CreateParameter(FIELD_EMAIL, sys_user.Email, false));
para.Add(_DbHelper.CreateParameter(FIELD_ISACTIVE, sys_user.IsActive, false));
para.Add(_DbHelper.CreateParameter(FIELD_NUMBERPHONE, sys_user.NumberPhone, false));
para.Add(ouput);
_DbHelper.ExecuteNonQuery(transaction, Common.DatabaseSchema + "[SYS_User_Insert]", para.ToArray());
return((int)ouput.Value);
}
catch (Exception ex)
{
throw new Exception(String.Format("SYS_UserDataAccess.Insert: {0}", ex.Message));
}
}
public static string DeleteUser(string record_id, string user_id, string RequestID)
{
try
{
//Security Check
if (!Controller_User_Access.CheckProgramAccess(AccessProgramCode, RequestID, "delete"))
{
throw new Exception("No Access.");
}
LINQ_SystemDataContext dc = new LINQ_SystemDataContext();
SYS_User the_record = (from c in dc.SYS_Users where c.UserID == record_id && c.Active == true select c).FirstOrDefault();
if (the_record == null)
{
return("Error~We can't find");
}
the_record.Active = false;
the_record.ModifiedOn = DateTime.Now;
the_record.ModifiedBy = user_id;
the_record.LastAction = Guid.NewGuid().ToString();
dc.SubmitChanges(ConflictMode.ContinueOnConflict);
return("Success~");
}
catch (ChangeConflictException ex)
{
return("Success~");
}
}
public List <SYS_Right> GetRightsByUser(SYS_User user, string connect)
{
List <SYS_Right> result = new List <SYS_Right>();
List <SYS_Right> list = _sys_rightDataAccess.GetAllRightsByUser(user, connect);
foreach (SYS_Right right in list)
{
if (result.Count == 0)
{
result.Add(right);
continue;
}
for (int i = result.Count - 1; i > -1; i--)
{
if (right.ID == result[i].ID)
{
result[i].IsApprove = result[i].IsApprove || right.IsApprove;
result[i].IsCreate = result[i].IsCreate || right.IsCreate;
result[i].IsDelete = result[i].IsDelete || right.IsDelete;
result[i].IsUpdate = result[i].IsUpdate || right.IsUpdate;
break;
}
if (i == 0)
{
result.Add(right);
}
}
}
return(result);
}
// GET: WXCustom/QR
public ActionResult Index()
{
SYS_User SYSUSER = Session["SYSUSER"] as SYS_User;
ViewBag.date = new WXDataBLL.WXQR.WX_QRManager().Where(s => s.AppId == SYSUSER.AppId && s.UserId == SYSUSER.UserId);
return(View());
}
/// <summary>
/// 用户添加二维码
/// </summary>
/// <param name="WQR"></param>
/// <returns></returns>
public ActionResult CreateQR(WX_QR WQR)
{
SYS_User SYSUSER = Session["SYSUSER"] as SYS_User;
WX_QR q = new WX_QR();
q.AppId = SYSUSER.WX_App.AppId;
q.UserId = SYSUSER.UserId;
q.QRName = WQR.QRName;
q.Expire_Seconds = 2592000;
QRService qrSvr = new QRService(SYSUSER.WX_App.AppId, SYSUSER.WX_App.AppSecret);
string json = qrSvr.Create(2592000, "QR_SCENE", SYSUSER.UserId, "");
JObject jo = (JObject)JsonConvert.DeserializeObject(json);
string ticket = jo["ticket"].ToString();
q.Ticket = ticket;
string url = qrSvr.ShowQR(ticket);
q.QR_URL = url;
q.CreateTime = DateTime.Now;
var date = new WXDataBLL.WXQR.WX_QRManager().Add(q);
return(Redirect(url));
}
/// <summary>
/// 根据对象实体数据新增一个用户
/// </summary>
/// <param name="account">登录账号</param>
/// <param name="user">用户对象</param>
/// <returns>JsonResult</returns>
public JsonResult AddUser(string account, SYS_User user)
{
const string action = "60D5BE64-0102-4189-A999-96EDAD3DA1B5";
var verify = new SessionVerify();
// 用户注册,验证用户签名
if (verify.Basis == null)
{
var session = verify.Session;
var sign = Hash(session.LoginName + user.LoginName + user.Password);
if (sign != session.Signature)
{
return(verify.Result.InvalidAuth());
}
if (!InsertData(user))
{
return(verify.Result.DataBaseError());
}
// 返回用于验证的Key
session.Signature = Hash(account.ToUpper() + user.Password);
session = SessionManage.GetSession(session);
return(verify.Result.Created(CreateKey(session)));
}
// 管理员添加用户,验证管理员身份及鉴权
if (!verify.Compare(action))
{
return(verify.Result);
}
return(InsertData(user) ? verify.Result.Created() : verify.Result.DataBaseError());
}
/// <summary>
/// 更新用户信息
/// </summary>
/// <param name="id">用户ID</param>
/// <param name="user">用户数据对象</param>
/// <returns>JsonResult</returns>
public JsonResult UpdateUserInfo(string id, SYS_User user)
{
const string action = "3BC17B61-327D-4EAA-A0D7-7F825A6C71DB";
var verify = new SessionVerify();
if (!verify.CompareAsID(action, id))
{
return(verify.Result);
}
var reset = Update(user);
if (!reset.HasValue)
{
return(verify.Result.NotFound());
}
if (!reset.Value)
{
return(verify.Result.DataBaseError());
}
SessionManage.UpdateSession(user);
return(verify.Result);
}
public int InsertSYS_User_maDvi(SYS_User sys_user, string Ma_Dvi)
{
DbConnection conn = _DbHelper.CreateConnection(Common.ConnectionString);
conn.Open();
try
{
List <DbParameter> para = new List <DbParameter>();
DbParameter ouput = _DbHelper.CreateParameter(FIELD_IDUSER, DbType.Int32, true);
para.Add(_DbHelper.CreateParameter(FIELD_USERNAME, sys_user.UserName, false));
para.Add(_DbHelper.CreateParameter(FIELD_PASSWORD, sys_user.Password, false));
para.Add(_DbHelper.CreateParameter(FIELD_HOTEN, sys_user.FullName, false));
para.Add(_DbHelper.CreateParameter(FIELD_EMAIL, sys_user.Email, false));
para.Add(_DbHelper.CreateParameter(FIELD_SODT, sys_user.NumberPhone, false));
para.Add(_DbHelper.CreateParameter(FIELD_DIACHI, sys_user.DiaChi, false));
para.Add(_DbHelper.CreateParameter("MA_DVIQLY", Ma_Dvi, false));
para.Add(ouput);
_DbHelper.ExecuteReader(conn, Common.DatabaseSchema + "[SYS_User_Insert_maDvi]", para.ToArray());
return((int)ouput.Value);
}
catch (Exception ex)
{
throw new Exception(String.Format("SYS_UserDataAccess.Insert_maDvi: {0}", ex.Message));
}
finally
{
conn.Close();
}
}
public SYS_Roles GetRolesByUser_Check(SYS_User user)
{
DbConnection conn = _DbHelper.CreateConnection(Common.ConnectionString);
conn.Open();
SYS_Roles result = new SYS_Roles();
DbDataReader reader = null;
try
{
List <DbParameter> para = new List <DbParameter>();
para.Add(_DbHelper.CreateParameter("UserID", user.ID, false));
reader = _DbHelper.ExecuteReader(conn, Common.DatabaseSchema + "[SYS_Roles_SelectByUserID]", para.ToArray());
if (reader.HasRows && reader.Read())
{
SetSYS_RolesInfo_Check(reader, ref result);
}
return(result);
}
catch (Exception ex)
{
throw new Exception(String.Format("RoleDataAccess.SelectRolesByUser: {0}", ex.Message));
}
finally
{
if (reader != null)
{
reader.Close();
}
conn.Close();
}
}
/// <summary>
/// 拼装插入用户数据的SqlCommand
/// </summary>
/// <param name="obj">用户对象</param>
/// <returns>SqlCommand</returns>
private bool InsertData(SYS_User obj)
{
var sql = "insert SYS_User (ID, Name, LoginName, Password, PayPassword, OpenId, Description, Type, CreatorUserId) ";
sql += "select @ID, @Name, @LoginName, @Password, @PayPassword, @OpenId, @Description, @Type, @CreatorUserId";
var parm = new[]
{
new SqlParameter("@ID", SqlDbType.UniqueIdentifier)
{
Value = obj.ID
},
new SqlParameter("@Name", obj.Name),
new SqlParameter("@LoginName", obj.LoginName),
new SqlParameter("@Password", obj.Password),
new SqlParameter("@PayPassword", obj.PayPassword),
new SqlParameter("@OpenId", obj.OpenId),
new SqlParameter("@Description", obj.Description),
new SqlParameter("@Type", SqlDbType.Int)
{
Value = obj.Type
},
new SqlParameter("@CreatorUserId", SqlDbType.UniqueIdentifier)
{
Value = obj.CreatorUserId
},
new SqlParameter("@Read", SqlDbType.Int)
{
Value = 0
}
};
return(SqlNonQuery(MakeCommand(sql, parm)) > 0);
}
/// <summary>
/// 添加用户
/// </summary>
/// <param name="user">用户对象</param>
/// <returns></returns>
public bool InsertUser(SYS_User user)
{
using (var db = base.GDDSVSPDb)
{
db.SYS_User.Add(user);
return(db.SaveChanges() > 0);
}
}
private void LoadGrvChonChucNang()
{
List <SYS_Right> lstRight = new List <SYS_Right>();
SYS_User sysUser = (SYS_User)GridUser.GetRow(GridUser.FocusedRowIndex);
lstRight = _ISYS_RightService.GetRightsByNotUser(sysUser);
grvChonChucNang.DataSource = lstRight;
grvChonChucNang.DataBind();
}
/// <summary>
/// 删除用户
/// </summary>
/// <param name="id">用户ID</param>
/// <returns></returns>
public bool DeleteUser(Guid id)
{
using (var db = base.GDDSVSPDb)
{
SYS_User user = db.SYS_User.SingleOrDefault(p => p.UserID == id);
db.SYS_User.Remove(user);
return(db.SaveChanges() > 0);
}
}
public ActionResult UserInfo(string id)
{
var user = new SYS_User();
if (!string.IsNullOrEmpty(id))
{
user = accountService.Get(u => u.SystemUserId == id);
}
return(View(user));
}
public SYS_User CheckLogIn(string userName, string passWord, int Type, int IDDonVi)
{
SYS_User result = _sys_userDataAccess.SelectUserByUserNameAndType(userName, Type, IDDonVi);
if (result.Password == SYS_User.Encrypt(passWord))
{
return(result);
}
return(null);
}
public SYS_User CheckLogIn(string userName, string passWord, int IDOrganization)
{
SYS_User result = _sys_userDataAccess.SelectUserByUserNameAndIDOrganization(userName, IDOrganization);
if (result.Password == SYS_User.Encrypt(passWord))
{
return(result);
}
return(null);
}
private static bool IsSystemUserAlreadyExistByEmail(string email)
{
LINQ_SystemDataContext dc = new LINQ_SystemDataContext();
SYS_User result = (from c in dc.SYS_Users where c.Active && c.Email == email select c).FirstOrDefault();
if (result != null)
{
return(true);
}
return(false);
}
private void SetListSYS_UserInfo_Check(ref DbDataReader reader, ref List <SYS_User> sys_users)
{
SYS_User sys_user = null;
while (reader.Read())
{
sys_user = new SYS_User();
SetSYS_UserInfo_Check(reader, ref sys_user);
sys_users.Add(sys_user);
}
}
private static void SetListSYS_UserInfo(ref DbDataReader reader, ref List <SYS_User> sys_users)
{
SYS_User sys_user = null;
while (reader.Read())
{
sys_user = new SYS_User();
SYS_UserDataAccess.SetSYS_UserInfo(reader, ref sys_user);
sys_users.Add(sys_user);
}
}
