public IHttpActionResult CopyRights(UserRights_VM Record)
{
try
{
using (UserRightService obj = new UserRightService())
return(Ok(obj.CopyRights(Record)));
}
catch (Exception Ex)
{
return(ResponseMessage(Request.CreateErrorResponse(HttpStatusCode.BadRequest, Ex.Message.ToString())));
}
}
public IDictionary <string, object> CopyRights(UserRights_VM VM)
{
string USERID = "";
string BRANCHID = "";
string MENUID = "";
string ErrorMessage = "";
string sMode = "ADD";
Dictionary <string, object> RetData = new Dictionary <string, object>();
DataTable Dt_Menu = new DataTable();
DataTable Dt_Rec = new DataTable();
DBRecord mRec;
Con_Oracle = new DBConnection();
GlobalVariables mGbl = VM.globalVariables;
string COPYTO_USERID = VM.copyto_user_id;
string COPYTO_BRANCHID = VM.copyto_branch_id;
try
{
if (COPYTO_USERID.Length <= 0)
{
ErrorMessage += "| Copy User ID Not Found";
}
DataTable Dt_Usrbranch = new DataTable();
sql = "select user_branch_id from userd where user_id = '" + COPYTO_USERID + "'";
if (COPYTO_BRANCHID.Trim() != "")
{
sql += " and user_branch_id = '" + COPYTO_BRANCHID + "'";
}
Dt_Usrbranch = Con_Oracle.ExecuteQuery(sql);
if (Dt_Usrbranch.Rows.Count <= 0)
{
ErrorMessage += " | Branch Rights Not Found";
}
if (ErrorMessage != "")
{
if (Con_Oracle != null)
{
Con_Oracle.CloseConnection();
}
throw new Exception(ErrorMessage);
}
foreach (DataRow dr in Dt_Usrbranch.Rows)
{
COPYTO_BRANCHID = dr["user_branch_id"].ToString();
Con_Oracle.BeginTransaction();
foreach (var Rec in VM.userRights)
{
Rec.rights_id = Guid.NewGuid().ToString().ToUpper();
sMode = "ADD";
USERID = COPYTO_USERID;
BRANCHID = COPYTO_BRANCHID;
MENUID = Rec.menu_id;
sql = "";
sql += " select rights_pkid from userrights where ";
sql += " rights_user_id = '{USERID}' and ";
sql += " rights_branch_id = '{BRANCHID}' and ";
sql += " rights_menu_id = '{MENUID}' ";
sql = sql.Replace("{USERID}", USERID);
sql = sql.Replace("{BRANCHID}", BRANCHID);
sql = sql.Replace("{MENUID}", MENUID);
Dt_Menu = new DataTable();
Dt_Menu = Con_Oracle.ExecuteQuery(sql);
if (Dt_Menu.Rows.Count > 0)
{
Rec.rights_id = Dt_Menu.Rows[0].ToString();
sMode = "EDIT";
}
if (Rec.rights_company || Rec.rights_admin || Rec.rights_add || Rec.rights_edit ||
Rec.rights_delete || Rec.rights_print || Rec.rights_email || Rec.rights_docs ||
Rec.rights_view)
{
if (Rec.rights_add || Rec.rights_edit)
{
Rec.rights_view = true;
}
Rec.rights_branch_id = BRANCHID;
Rec.rights_user_id = USERID;
mRec = new DBRecord();
mRec.CreateRow("userrights", sMode, "rights_pkid", Rec.rights_id.ToString());
mRec.InsertString("rights_branch_id", Rec.rights_branch_id.ToString());
mRec.InsertString("rights_user_id", Rec.rights_user_id.ToString());
mRec.InsertString("rights_menu_id", Rec.menu_id.ToString());
mRec.InsertString("rights_company", (Rec.rights_company) ? "Y" : "N");
mRec.InsertString("rights_admin", (Rec.rights_admin) ? "Y" : "N");
mRec.InsertString("rights_add", (Rec.rights_add) ? "Y" : "N");
mRec.InsertString("rights_edit", (Rec.rights_edit) ? "Y" : "N");
mRec.InsertString("rights_delete", (Rec.rights_delete) ? "Y" : "N");
mRec.InsertString("rights_print", (Rec.rights_print) ? "Y" : "N");
mRec.InsertString("rights_email", (Rec.rights_email) ? "Y" : "N");
mRec.InsertString("rights_docs", (Rec.rights_docs) ? "Y" : "N");
mRec.InsertString("rights_docs_upload", (Rec.rights_docs_upload) ? "Y" : "N");
mRec.InsertString("rights_view", (Rec.rights_view) ? "Y" : "N");
// mRec.InsertString("rights_approval", Rec.rights_approval);
Con_Oracle.ExecuteNonQuery(mRec.UpdateRow());
}
}
sql = "";
sql = " update userd set user_rights_total = (select count(*) from userrights where rights_user_id = '{USERID}' and rights_branch_id = '{BRANCHID}')";
sql += " where user_id = '{USERID}' and user_branch_id = '{BRANCHID}'";
sql = sql.Replace("{USERID}", USERID);
sql = sql.Replace("{BRANCHID}", BRANCHID);
Con_Oracle.ExecuteNonQuery(sql);
Con_Oracle.CommitTransaction();
}
}
catch (Exception Ex)
{
if (Con_Oracle != null)
{
Con_Oracle.RollbackTransaction();
Con_Oracle.CloseConnection();
}
throw Ex;
}
Con_Oracle.CloseConnection();
return(RetData);
}
public IDictionary <string, object> Save(UserRights_VM VM)
{
string USERID = "";
string COMPID = "";
string BRANCHID = "";
string MENUID = "";
Dictionary <string, object> RetData = new Dictionary <string, object>();
DataTable Dt_Rec = new DataTable();
DBRecord mRec;
Con_Oracle = new DBConnection();
GlobalVariables mGbl = VM.globalVariables;
try
{
Con_Oracle.BeginTransaction();
foreach (var Rec in VM.userRights)
{
USERID = Rec.rights_user_id;
COMPID = Rec.rights_company_id;
BRANCHID = Rec.rights_branch_id;
MENUID = Rec.menu_id;
sql = "";
sql += " delete from userrights where ";
sql += " rights_user_id = '{USERID}' and ";
sql += " rights_company_id = '{COMPID}' and ";
sql += " rights_menu_id = '{MENUID}' ";
sql = sql.Replace("{USERID}", USERID);
sql = sql.Replace("{COMPID}", COMPID);
sql = sql.Replace("{MENUID}", MENUID);
Con_Oracle.ExecuteNonQuery(sql);
if (Rec.rights_company || Rec.rights_admin || Rec.rights_add || Rec.rights_edit ||
Rec.rights_delete || Rec.rights_print || Rec.rights_email || Rec.rights_docs ||
Rec.rights_view || Rec.rights_approval.Length > 0)
{
if (Rec.rights_add || Rec.rights_edit)
{
Rec.rights_view = true;
}
mRec = new DBRecord();
mRec.CreateRow("userrights", "ADD", "rights_pkid", Rec.rights_id.ToString());
mRec.InsertString("rights_company_id", Rec.rights_company_id.ToString());
//mRec.InsertString("rights_branch_id", Rec.rights_branch_id.ToString());
mRec.InsertString("rights_user_id", Rec.rights_user_id.ToString());
mRec.InsertString("rights_menu_id", Rec.menu_id.ToString());
mRec.InsertString("rights_company", (Rec.rights_company) ? "Y" : "N");
mRec.InsertString("rights_admin", (Rec.rights_admin) ? "Y" : "N");
mRec.InsertString("rights_add", (Rec.rights_add) ? "Y" : "N");
mRec.InsertString("rights_edit", (Rec.rights_edit) ? "Y" : "N");
mRec.InsertString("rights_delete", (Rec.rights_delete) ? "Y" : "N");
mRec.InsertString("rights_print", (Rec.rights_print) ? "Y" : "N");
mRec.InsertString("rights_email", (Rec.rights_email) ? "Y" : "N");
mRec.InsertString("rights_docs", (Rec.rights_docs) ? "Y" : "N");
mRec.InsertString("rights_docs_upload", (Rec.rights_docs_upload) ? "Y" : "N");
mRec.InsertString("rights_view", (Rec.rights_view) ? "Y" : "N");
mRec.InsertString("rights_restricted", (Rec.rights_restricted) ? "Y" : "N");
mRec.InsertString("rights_approval", Rec.rights_approval);
Con_Oracle.ExecuteNonQuery(mRec.UpdateRow());
}
}
/*
* sql = "";
* sql = " update userd set user_rights_total = (select count(*) from userrights where rights_user_id = '{USERID}' and rights_branch_id = '{BRANCHID}')";
* sql += " where user_id = '{USERID}' and user_branch_id = '{BRANCHID}'";
* sql = sql.Replace("{USERID}", USERID);
* sql = sql.Replace("{BRANCHID}", BRANCHID);
* Con_Oracle.ExecuteNonQuery(sql);
*/
Con_Oracle.CommitTransaction();
}
catch (Exception Ex)
{
if (Con_Oracle != null)
{
Con_Oracle.RollbackTransaction();
Con_Oracle.CloseConnection();
}
throw Ex;
}
Con_Oracle.CloseConnection();
return(RetData);
}
