/// <summary> /// 根据ID获取单条自定义表单 /// </summary> /// <param name="id"></param> /// <param name="isDefaultValue">是否设置搜索字段的默认值</param> /// <returns></returns> public Models.CustomForm GetSingleCustomForm(int id, bool isDefaultValue) { SqlRun sqlhelper = new SqlRun(SqlRun.sqlstr); string sql = "select * from dt_custom_form where [ID]=" + id; DataTable dt = sqlhelper.RtDataTable(sql); Models.CustomForm model = new Models.CustomForm(); if (dt.Rows.Count > 0) { model.ID = Convert.ToInt32(dt.Rows[0]["ID"]); model.Name = dt.Rows[0]["Name"].ToString(); model.SQL = dt.Rows[0]["SQL"].ToString(); model.Fields = dt.Rows[0]["Fields"].ToString(); List <Fields> fieldsList = JsonConvert.DeserializeObject <List <Fields> >(model.Fields); // 使用默认值读数据 if (isDefaultValue) { foreach (var f in fieldsList) { if (f.type == "date" && string.IsNullOrWhiteSpace(f.defaultValue)) { f.defaultValue = DateTime.Now.Date.ToString("yyyy-MM-dd HH:mm:ss"); } model.SQL = model.SQL.Replace(f.field, f.defaultValue); } } } return(model); }
/// <summary> /// 修改 /// </summary> /// <param name="context"></param> private void Upt(HttpContext context) { entity.ResponseResult result = new entity.ResponseResult(); try { Models.CustomForm model = new Models.CustomForm(); model.ID = Convert.ToInt32(context.Request.Form["ID"]); model.Name = context.Request.Form["Name"]; List <entity.Fields> fields = JsonConvert.DeserializeObject <List <entity.Fields> >(context.Request.Form["Fields"]); model.Fields = JsonConvert.SerializeObject(fields); model.SQL = context.Request.Form["SQL"]; model.ModuleID = context.Request.Form["ModuleID"]; if (string.IsNullOrWhiteSpace(model.Name) || fields.Count == 0 || string.IsNullOrWhiteSpace(model.SQL) || model.ID == 0) { result.IsSuccess = false; result.Message = "自定义内容,全部都为必填项。"; } else { if (model.SQL.ToLower().Trim().StartsWith("select") == false) { result.IsSuccess = false; result.Message = "SQL语句只能为select语句。"; } else { string validSqlMsg = ""; bool isValidSql = ValidateSQL(model.SQL, fields, ref validSqlMsg); if (!isValidSql) { result.IsSuccess = false; result.Message = validSqlMsg; } else { int flag = CustomFormDal.GetCustomFormDAL.UpdateCustomForm(model); if (flag > 0) { result.IsSuccess = true; result.Message = "修改成功。"; } else { result.IsSuccess = false; result.Message = "修改失败,请稍后重试。"; } } } } } catch { result.IsSuccess = false; result.Message = "修改失败,请稍后重试。"; } context.Response.Write(JsonConvert.SerializeObject(result)); }
/// <summary> /// 插入自定义表单 /// </summary> /// <param name="model"></param> /// <returns></returns> public int InsertCustomForm(Models.CustomForm model) { SqlRun sql = new SqlRun(SqlRun.sqlstr); SqlParameter[] sqlparams = new SqlParameter[] { new SqlParameter("@name", model.Name), new SqlParameter("@fields", model.Fields), new SqlParameter("@sql", model.SQL), new SqlParameter("@moduleid", model.ModuleID) }; int result = sql.ExecuteNonQuery("Proc_AddCustomForm", sqlparams); return(result); }
/// <summary> /// 修改自定义表单 /// </summary> /// <param name="model"></param> /// <returns></returns> public int UpdateCustomForm(Models.CustomForm model) { SqlRun sqlhelper = new SqlRun(SqlRun.sqlstr); string sql = "update dt_custom_form set [Name]=@name,[Fields]=@fields,[SQL]=@sql,ModuleID=@moduleid where [ID]=@id"; SqlParameter[] sqlparams = new SqlParameter[] { new SqlParameter("@name", model.Name), new SqlParameter("@fields", model.Fields), new SqlParameter("@sql", model.SQL), new SqlParameter("@moduleid", model.ModuleID), new SqlParameter("@id", model.ID) }; int result = sqlhelper.ExecuteSql(sql, sqlparams); return(result); }