/// <summary> /// Update user information in user table from frmCreateUser form. /// </summary> /// <returns></returns> public bool UpdateUser(RBACD.DatalayerDef.sUser userInfo) { OdbcTransaction tran = null; string sql = string.Empty; try { OdbcConnection con = (OdbcConnection)this.DbConnection; OdbcCommand cmd = new OdbcCommand(); cmd.CommandType = CommandType.Text; cmd.Connection = con; tran = con.BeginTransaction(); cmd.Transaction = tran; sql = "UPDATE rbac.users SET UserName='******' , Password='******' , FirstName='" + userInfo.FirstName + "', LastName='" + userInfo.LastName + "', Citizenship='" + userInfo.Citizenship + "' WHERE UserId ='" + userInfo.UserId + "'"; cmd.CommandText = sql; cmd.ExecuteNonQuery(); tran.Commit(); return true; } catch { if (tran != null) { tran.Rollback(); } return false; } }
/// <summary> /// Update Security Group information in securitygroups table from frmCreateSecurityGroup form. /// </summary> /// <returns></returns> public bool UpdateSecurityGroups(RBACD.DatalayerDef.sSecurityGroups securityGroupInfo) { OdbcTransaction tran = null; string sql = string.Empty; try { OdbcConnection con = (OdbcConnection)this.DbConnection; OdbcCommand cmd = new OdbcCommand(); cmd.CommandType = CommandType.Text; cmd.Connection = con; tran = con.BeginTransaction(); cmd.Transaction = tran; sql = "UPDATE rbac.securitygroups SET Name='" + securityGroupInfo.Name + "' , DisplayName='" + securityGroupInfo.DisplayName + "' WHERE SecurityGroupID ='" + securityGroupInfo.SecurityGroupID + "'"; cmd.CommandText = sql; cmd.ExecuteNonQuery(); tran.Commit(); return true; } catch { if (tran != null) { tran.Rollback(); } return false; } }
/// <summary> /// Save user information in user table from frmCreateUser form. /// </summary> /// <returns></returns> public bool SaveUser(RBACD.DatalayerDef.sUser userInfo) { OdbcTransaction tran = null; string sql = string.Empty; try { OdbcConnection con = (OdbcConnection)this.DbConnection; OdbcCommand cmd = new OdbcCommand(); cmd.CommandType = CommandType.Text; cmd.Connection = con; tran = con.BeginTransaction(); cmd.Transaction = tran; sql = "INSERT INTO rbac.users (UserName, Password, FirstName, LastName, Citizenship) VALUES('" + userInfo.UserName + "', '" + userInfo.Password + "', '" + userInfo.FirstName + "', '" + userInfo.LastName + "', '" + userInfo.Citizenship + "')"; cmd.CommandText = sql; cmd.ExecuteNonQuery(); tran.Commit(); return true; } catch { if (tran != null) { tran.Rollback(); } return false; } }
/// <summary> /// Save Security Group assignment to an User information in securitygroupassigns table from frmAssignsSecurityGroup form. /// </summary> /// <returns></returns> public bool SaveSecurityGroupsAssings(RBACD.DatalayerDef.sSecurityGroupAssigns usrScuGruAgnInfo) { String uId = usrScuGruAgnInfo.UserId; //List<String> sgID = usrScuGruAgnInfo.SecurityGroupId; OdbcTransaction tran = null; string sql = string.Empty; try { OdbcConnection con = (OdbcConnection)this.DbConnection; OdbcCommand cmd = new OdbcCommand(); cmd.CommandType = CommandType.Text; cmd.Connection = con; tran = con.BeginTransaction(); cmd.Transaction = tran; sql = "DELETE FROM securitygroupassigns WHERE UserId = " + uId; cmd.CommandText = sql; cmd.ExecuteNonQuery(); foreach (String sgId in usrScuGruAgnInfo.SecurityGroupId) { sql = "INSERT INTO rbac.securitygroupassigns (UserId, SecurityGroupId) VALUES(" + uId + ", '" + sgId + "')"; cmd.CommandText = sql; cmd.ExecuteNonQuery(); } tran.Commit(); return true; } catch { if (tran != null) { tran.Rollback(); } return false; } }
/// <summary> /// Save Security Group information in securitygroups table from frmCreateSecurityGroups form. /// </summary> /// <returns></returns> public bool SaveSecurityGroups(RBACD.DatalayerDef.sSecurityGroups securityGroupInfo) { OdbcTransaction tran = null; string sql = string.Empty; try { OdbcConnection con = (OdbcConnection)this.DbConnection; OdbcCommand cmd = new OdbcCommand(); cmd.CommandType = CommandType.Text; cmd.Connection = con; tran = con.BeginTransaction(); cmd.Transaction = tran; sql = "INSERT INTO rbac.securitygroups (Name, DisplayName) VALUES('" + securityGroupInfo.Name + "', '" + securityGroupInfo.DisplayName + "')"; cmd.CommandText = sql; cmd.ExecuteNonQuery(); tran.Commit(); return true; } catch { if (tran != null) { tran.Rollback(); } return false; } }
/// <summary> /// Retrieve assigned Security Group to an user from securitygroupassigns table /// </summary> /// <returns>Returns list of Security Group Assigns information</returns> public RBACD.DatalayerDef.sSecurityGroupAssigns RetrieveAssingedSecurityGroup(RBACD.DatalayerDef.sSecurityGroupAssigns usrScuGruAgnInfo) { IDataReader ReturnValue; // create a command object which we can use to retrive security gruoup assignment information IDbCommand DbCommand = CreateCommandObject(DbConnection, "Select SecurityGroupID from securitygroupassigns where UserId=" + usrScuGruAgnInfo.UserId); try { // open the database, query for the security group assigns ReturnValue = DbCommand.ExecuteReader(); } catch (Exception e) { throw new DataLayerException(GetString(DataAccessException)); } // if the return value is null then we did not find security group assignment information if (ReturnValue != null) { List<String> sgID = new List<String>(); while (ReturnValue.Read()) { sgID.Add(ReturnValue[0].ToString()); } usrScuGruAgnInfo.SecurityGroupId = sgID; } return usrScuGruAgnInfo; }