public ActionResult AddRole(M_PersonelRoles Role, List <string> Permissions)
{
object result = "";
try
{
B_PersonelRoles bPersonelRole = new B_PersonelRoles();
B_PersonelRoleValues bPersonelRoleValue = new B_PersonelRoleValues();
Role = bPersonelRole.Add(Role);
if (!Role.HasFullControl)
{
foreach (var li in Permissions)
{
bPersonelRoleValue.Add(new M_PersonelRoleValues
{
AccessName = li,
PersonelRoleId = Role.Id
});
}
}
result = "Success";
}
catch (Exception ex)
{
M_SystemLog exx = new M_SystemLog(E_SystemType.SHAHRDARI_WEB_APPLICATION, E_LogType.ERROR, ex);
result = "Error";
if (ex.Source == E_LogType.SYSTEM_ERROR.ToString())
{
exx.LogType = E_LogType.SYSTEM_ERROR;
result = exx;
}
L_Log.SubmitLog(exx);
}
return(Json(result));
}
/// <summary>
/// ویرایش نقش
/// </summary>
/// <param name="PersonelRole">نقش مورد نظر برای ویرایش</param>
public void Edit(M_PersonelRoles PersonelRole)
{
DatabaseContext db = new DatabaseContext();
db.PersonelRoles.Where(c => c.Id == PersonelRole.Id).Load();
db.PersonelRoles.Local[0].Title = PersonelRole.Title;
db.PersonelRoles.Local[0].HasFullControl = PersonelRole.HasFullControl;
db.SaveChanges();
}
/// <summary>
/// افزودن نقش جدید
/// </summary>
/// <param name="PersonelRole">نقش مورد نظر</param>
/// <returns>نقش اضافه شده</returns>
public M_PersonelRoles Add(M_PersonelRoles PersonelRole)
{
Validate(PersonelRole);
DatabaseContext db = new DatabaseContext();
db.PersonelRoles.Add(PersonelRole);
db.SaveChanges();
return(PersonelRole);
}
/// <summary>
/// آدرس اتصال به SignalR
/// </summary>
// protected string SignalRUrl = System.Configuration.ConfigurationManager.AppSettings["SignalRUrl"];
public BaseController()
{
if (System.Web.HttpContext.Current.Request.Cookies[MFCookies.USER_KEY] != null)
{
M_PersonelRoles role = null;
string key = System.Web.HttpContext.Current.Request.Cookies[MFCookies.USER_KEY].Value;
B_Personels ub = new B_Personels();
CurrentUser = ub.GetPersonels(key);
if (CurrentUser == null)
{
return;
}
B_PersonelRoles ru = new B_PersonelRoles();
role = ru.GetPersonelRoles(CurrentUser.PersonelRoleId);
if (role == null)
{
return;
}
ViewBag.LayoutPersonel = CurrentUser;
ViewBag.LayoutPersonelRole = role;
ViewBag.LayoutNewRequestCount = new B_ServicesRequests().GetServicesRequestsCount(E_PublicCategory.REQUEST_STATUS.NEW_REQUEST);
ViewBag.LayoutNewRedrawalCount = new B_UserPayment().GetPaymentCuontByStatus(E_PublicCategory.PAYMENT_STATUS.NEW);
}
}
public override void OnActionExecuting(ActionExecutingContext filterContext)
{
M_Personels user = null;
M_PersonelRoles role = null;
List <M_PersonelRoleValues> roleValue = null;
if (filterContext.HttpContext.Request.Cookies[MFCookies.USER_KEY] != null)
{
string key = filterContext.HttpContext.Request.Cookies[MFCookies.USER_KEY].Value;
B_Personels ub = new B_Personels();
try
{
user = ub.GetPersonels(key);
}
catch { }
if (user == null)
{
filterContext.Result = new RedirectToRouteResult(new RouteValueDictionary(new { controller = "Login", action = "Index", area = "Admin" }));
filterContext.Result.ExecuteResult(filterContext.Controller.ControllerContext);
}
else
{
B_PersonelRoles ru = new B_PersonelRoles();
role = ru.GetPersonelRoles(user.PersonelRoleId);
if (role == null)
{
filterContext.Result = new RedirectToRouteResult(new RouteValueDictionary(new { controller = "Dashboard", action = "NoPermission", area = "Admin" }));
filterContext.Result.ExecuteResult(filterContext.Controller.ControllerContext);
}
if (role.HasFullControl == true)
{
return;
}
B_PersonelRoleValues bRoleValue = new B_PersonelRoleValues();
roleValue = bRoleValue.GetPersonelRoleValues(role.Id);
if (roleValue == null || roleValue.Count == 0)
{
if (role == null)
{
filterContext.Result = new RedirectToRouteResult(new RouteValueDictionary(new { controller = "Dashboard", action = "NoPermission", area = "Admin" }));
filterContext.Result.ExecuteResult(filterContext.Controller.ControllerContext);
}
}
var rd = filterContext.HttpContext.Request.RequestContext.RouteData;
string currentAction = rd.GetRequiredString("action");
string currentController = rd.GetRequiredString("controller") + "Controller";
Assembly asm = Assembly.GetAssembly(typeof(Global));
var action = asm.GetTypes()
.Where(type => typeof(System.Web.Mvc.Controller).IsAssignableFrom(type) && type.Namespace.Contains("Shahrdari.WebApplication.Areas.Admin.Controllers"))
.SelectMany(type => type.GetMethods(BindingFlags.Instance | BindingFlags.DeclaredOnly | BindingFlags.Public))
.Where(m => !m.GetCustomAttributes(typeof(System.Runtime.CompilerServices.CompilerGeneratedAttribute), true).Any() &&
m.DeclaringType.Name == currentController && m.Name == currentAction)
.Select(x => new { Attributes = x.GetCustomAttributes().ToList() }).FirstOrDefault();
if (action != null && action.Attributes.Where(c => c.GetType().Name.ToUpper().IndexOf("HTTPPOST") != -1).Count() > 0)
{
return;
}
if (roleValue.Where(c => c.AccessName.ToUpper() == (currentController + " | " + currentAction).ToUpper()).Count() == 0)
{
filterContext.Result = new RedirectToRouteResult(new RouteValueDictionary(new { controller = "Dashboard", action = "NoPermission", area = "Admin" }));
filterContext.Result.ExecuteResult(filterContext.Controller.ControllerContext);
}
}
}
else
{
filterContext.Result = new RedirectToRouteResult(new RouteValueDictionary(new { controller = "Login", action = "Index", area = "Admin" }));
filterContext.Result.ExecuteResult(filterContext.Controller.ControllerContext);
}
}