/// <summary>
/// Update user information in user table from frmCreateUser form.
/// </summary>
/// <returns></returns>
public bool UpdateUser(RBACD.DatalayerDef.sUser userInfo)
{
OdbcTransaction tran = null;
string sql = string.Empty;
try
{
OdbcConnection con = (OdbcConnection)this.DbConnection;
OdbcCommand cmd = new OdbcCommand();
cmd.CommandType = CommandType.Text;
cmd.Connection = con;
tran = con.BeginTransaction();
cmd.Transaction = tran;
sql = "UPDATE rbac.users SET UserName='******' , Password='******' , FirstName='" + userInfo.FirstName + "', LastName='" + userInfo.LastName + "', Citizenship='" + userInfo.Citizenship + "' WHERE UserId ='" + userInfo.UserId + "'";
cmd.CommandText = sql;
cmd.ExecuteNonQuery();
tran.Commit();
return true;
}
catch
{
if (tran != null) { tran.Rollback(); }
return false;
}
}
/// <summary>
/// Update Security Group information in securitygroups table from frmCreateSecurityGroup form.
/// </summary>
/// <returns></returns>
public bool UpdateSecurityGroups(RBACD.DatalayerDef.sSecurityGroups securityGroupInfo)
{
OdbcTransaction tran = null;
string sql = string.Empty;
try
{
OdbcConnection con = (OdbcConnection)this.DbConnection;
OdbcCommand cmd = new OdbcCommand();
cmd.CommandType = CommandType.Text;
cmd.Connection = con;
tran = con.BeginTransaction();
cmd.Transaction = tran;
sql = "UPDATE rbac.securitygroups SET Name='" + securityGroupInfo.Name + "' , DisplayName='" + securityGroupInfo.DisplayName + "' WHERE SecurityGroupID ='" + securityGroupInfo.SecurityGroupID + "'";
cmd.CommandText = sql;
cmd.ExecuteNonQuery();
tran.Commit();
return true;
}
catch
{
if (tran != null) { tran.Rollback(); }
return false;
}
}
/// <summary>
/// Save user information in user table from frmCreateUser form.
/// </summary>
/// <returns></returns>
public bool SaveUser(RBACD.DatalayerDef.sUser userInfo)
{
OdbcTransaction tran = null;
string sql = string.Empty;
try
{
OdbcConnection con = (OdbcConnection)this.DbConnection;
OdbcCommand cmd = new OdbcCommand();
cmd.CommandType = CommandType.Text;
cmd.Connection = con;
tran = con.BeginTransaction();
cmd.Transaction = tran;
sql = "INSERT INTO rbac.users (UserName, Password, FirstName, LastName, Citizenship) VALUES('" + userInfo.UserName + "', '" + userInfo.Password + "', '" + userInfo.FirstName + "', '" + userInfo.LastName + "', '" + userInfo.Citizenship + "')";
cmd.CommandText = sql;
cmd.ExecuteNonQuery();
tran.Commit();
return true;
}
catch
{
if (tran != null) { tran.Rollback(); }
return false;
}
}
/// <summary>
/// Save Security Group assignment to an User information in securitygroupassigns table from frmAssignsSecurityGroup form.
/// </summary>
/// <returns></returns>
public bool SaveSecurityGroupsAssings(RBACD.DatalayerDef.sSecurityGroupAssigns usrScuGruAgnInfo)
{
String uId = usrScuGruAgnInfo.UserId;
//List<String> sgID = usrScuGruAgnInfo.SecurityGroupId;
OdbcTransaction tran = null;
string sql = string.Empty;
try
{
OdbcConnection con = (OdbcConnection)this.DbConnection;
OdbcCommand cmd = new OdbcCommand();
cmd.CommandType = CommandType.Text;
cmd.Connection = con;
tran = con.BeginTransaction();
cmd.Transaction = tran;
sql = "DELETE FROM securitygroupassigns WHERE UserId = " + uId;
cmd.CommandText = sql;
cmd.ExecuteNonQuery();
foreach (String sgId in usrScuGruAgnInfo.SecurityGroupId)
{
sql = "INSERT INTO rbac.securitygroupassigns (UserId, SecurityGroupId) VALUES(" + uId + ", '" + sgId + "')";
cmd.CommandText = sql;
cmd.ExecuteNonQuery();
}
tran.Commit();
return true;
}
catch
{
if (tran != null) { tran.Rollback(); }
return false;
}
}
/// <summary>
/// Save Security Group information in securitygroups table from frmCreateSecurityGroups form.
/// </summary>
/// <returns></returns>
public bool SaveSecurityGroups(RBACD.DatalayerDef.sSecurityGroups securityGroupInfo)
{
OdbcTransaction tran = null;
string sql = string.Empty;
try
{
OdbcConnection con = (OdbcConnection)this.DbConnection;
OdbcCommand cmd = new OdbcCommand();
cmd.CommandType = CommandType.Text;
cmd.Connection = con;
tran = con.BeginTransaction();
cmd.Transaction = tran;
sql = "INSERT INTO rbac.securitygroups (Name, DisplayName) VALUES('" + securityGroupInfo.Name + "', '" + securityGroupInfo.DisplayName + "')";
cmd.CommandText = sql;
cmd.ExecuteNonQuery();
tran.Commit();
return true;
}
catch
{
if (tran != null) { tran.Rollback(); }
return false;
}
}
/// <summary>
/// Retrieve assigned Security Group to an user from securitygroupassigns table
/// </summary>
/// <returns>Returns list of Security Group Assigns information</returns>
public RBACD.DatalayerDef.sSecurityGroupAssigns RetrieveAssingedSecurityGroup(RBACD.DatalayerDef.sSecurityGroupAssigns usrScuGruAgnInfo)
{
IDataReader ReturnValue;
// create a command object which we can use to retrive security gruoup assignment information
IDbCommand DbCommand = CreateCommandObject(DbConnection, "Select SecurityGroupID from securitygroupassigns where UserId=" + usrScuGruAgnInfo.UserId);
try
{
// open the database, query for the security group assigns
ReturnValue = DbCommand.ExecuteReader();
}
catch (Exception e)
{
throw new DataLayerException(GetString(DataAccessException));
}
// if the return value is null then we did not find security group assignment information
if (ReturnValue != null)
{
List<String> sgID = new List<String>();
while (ReturnValue.Read())
{
sgID.Add(ReturnValue[0].ToString());
}
usrScuGruAgnInfo.SecurityGroupId = sgID;
}
return usrScuGruAgnInfo;
}
