public UserRightsDTO Get() { var rights = new UserRightsDTO(); //Check rights using (Assignment4Context context = new Assignment4Context()) { if (this.User.IsInRole("Seeker")) { rights.IsSeekerRight = true; } else { rights.IsSeekerRight = false; } } return(rights); }
public async Task <IActionResult> GetUserRightsBasedonUserName(string UserName) { UserRightsDTO = new UserRightsDTO(); try { UserRightsDTO = await UserRightsDAL.GetUserModulesBasedOnroleanduserid(UserName, Con); if (!string.IsNullOrEmpty(UserRightsDTO.pImagepath)) { UserRightsDTO.pImage = getConvertImagepathtobase64(UserRightsDTO.pImagepath); } return(UserRightsDTO != null?Ok(UserRightsDTO) : (IActionResult)StatusCode(StatusCodes.Status204NoContent)); } catch (Exception) { return(StatusCode(StatusCodes.Status500InternalServerError)); throw; } }
public async Task <UserRightsFunctionsDTO> GetallUserModules(string Type, string UserOrDesignation, string connectionString) { UserRightsFunctionsDTO UserRightsFunctionsDTO = new UserRightsFunctionsDTO(); UserRightsFunctionsDTO.FunctionsDTOList = new List <FunctionsDTO>(); List <FunctionsDTO> FunctionsDTOList = new List <FunctionsDTO>(); List <ModuleDTO> ModuleDTOlist = new List <ModuleDTO>(); List <SubModuleDTO> SubModuleDTOList = new List <SubModuleDTO>(); string Query = string.Empty; long Userid = 0; int RoleFunctionsCount = 0; int RoleID = 0; ds = new DataSet(); await Task.Run(() => { UserRightsDTO = new UserRightsDTO(); UserRightsDTO.ModuleDTOList = new List <ModuleDTO>(); try { if (string.IsNullOrEmpty(Type) && string.IsNullOrEmpty(UserOrDesignation)) { Query = "select functionid,parentmoduleid,submoduleid,functionname,functionurl,false as viewpermission,false as createpermission,false as updatepermission,false as deletepermission from tblmstfunctions where statusid=" + Convert.ToInt32(Status.Active) + ";"; } else { if (Type.ToUpper().Trim() == "USER") { RoleFunctionsCount = Convert.ToInt32(NPGSqlHelper.ExecuteScalar(connectionString, CommandType.Text, "select count(*) from tblmstrolefunctions where upper(username)='" + ManageQuote(UserOrDesignation.ToUpper().Trim()) + "';")); Userid = Convert.ToInt64(NPGSqlHelper.ExecuteScalar(connectionString, CommandType.Text, "select coalesce(userid,0) as userid from tblmstusers where upper(username)='" + ManageQuote(UserOrDesignation.ToUpper().Trim()) + "';").ToString()); UserRightsDTO.pUserID = Userid; UserRightsDTO.pUserName = UserOrDesignation; UserRightsFunctionsDTO.pUserID = Userid; UserRightsFunctionsDTO.pUserName = UserOrDesignation; if (RoleFunctionsCount > 0) { // Query = "select functionid,parentmoduleid,submoduleid,functionname,functionurl,false as viewpermission,false as createpermission,false as updatepermission,false as deletepermission from tblmstfunctions where functionid not in (select functionid from tblmstrolefunctions where userid=" + Userid + ") union select t2.functionid,t2.parentmoduleid,t2.submoduleid,t2.functionname,t2.functionurl,coalesce(t1.viewpermission,false) as viewpermission,coalesce(t1.createpermission,false)as createpermission,coalesce(t1.updatepermission,false)as updatepermission,coalesce(t1.deletepermission,false) as deletepermission from tblmstrolefunctions t1 left join tblmstfunctions t2 on t1.functionid=t2.functionid where t1.userid=" + Userid + ";"; Query = "select functionid,parentmoduleid,submoduleid,functionname,functionurl,false as viewpermission,false as createpermission,false as updatepermission,false as deletepermission from tblmstfunctions where statusid=" + Convert.ToInt32(Status.Active) + " and functionid not in (select functionid from tblmstrolefunctions where userid=" + Userid + ") union select t2.functionid,t2.parentmoduleid,t2.submoduleid,t2.functionname,t2.functionurl,coalesce(t1.viewpermission,false) as viewpermission,coalesce(t1.createpermission,false)as createpermission,coalesce(t1.updatepermission,false)as updatepermission,coalesce(t1.deletepermission,false) as deletepermission from tblmstrolefunctions t1 left join tblmstfunctions t2 on t1.functionid=t2.functionid where t1.userid=" + Userid + " and t2.statusid=" + Convert.ToInt32(Status.Active) + ";"; } else { RoleID = Convert.ToInt32(NPGSqlHelper.ExecuteScalar(connectionString, CommandType.Text, "select coalesce(roleid,0) as roleid from tblmstusers where upper(username)='" + ManageQuote(UserOrDesignation.ToUpper().Trim()) + "';")); if (RoleID > 0) { Query = "select functionid,parentmoduleid,submoduleid,functionname,functionurl,false as viewpermission,false as createpermission,false as updatepermission,false as deletepermission from tblmstfunctions where statusid=" + Convert.ToInt32(Status.Active) + " and functionid not in (select functionid from tblmstrolefunctions where roleid=" + RoleID + ") union select t2.functionid,t2.parentmoduleid,t2.submoduleid,t2.functionname,t2.functionurl,coalesce(t1.viewpermission,false) as viewpermission,coalesce(t1.createpermission,false)as createpermission,coalesce(t1.updatepermission,false)as updatepermission,coalesce(t1.deletepermission,false) as deletepermission from tblmstrolefunctions t1 left join tblmstfunctions t2 on t1.functionid=t2.functionid where t1.roleid=" + RoleID + " and t2.statusid=" + Convert.ToInt32(Status.Active) + ";"; } else { Query = "select functionid,parentmoduleid,submoduleid,functionname,functionurl,false as viewpermission,false as createpermission,false as updatepermission,false as deletepermission from tblmstfunctions where statusid=" + Convert.ToInt32(Status.Active) + " and functionid not in (select functionid from tblmstrolefunctions where userid=" + Userid + ") union select t2.functionid,t2.parentmoduleid,t2.submoduleid,t2.functionname,t2.functionurl,coalesce(t1.viewpermission,false) as viewpermission,coalesce(t1.createpermission,false)as createpermission,coalesce(t1.updatepermission,false)as updatepermission,coalesce(t1.deletepermission,false) as deletepermission from tblmstrolefunctions t1 left join tblmstfunctions t2 on t1.functionid=t2.functionid where t1.userid=" + Userid + " and t2.statusid=" + Convert.ToInt32(Status.Active) + ";"; } } } else { Userid = Convert.ToInt64(NPGSqlHelper.ExecuteScalar(connectionString, CommandType.Text, "select coalesce(roleid,0) as roleid from tblmstemployeerole where statusid=" + Convert.ToInt32(Status.Active) + " and upper(rolename)='" + ManageQuote(UserOrDesignation.ToUpper().Trim()) + "';").ToString()); UserRightsDTO.pUserID = Userid; UserRightsDTO.pUserName = UserOrDesignation; UserRightsFunctionsDTO.pUserID = Userid; UserRightsFunctionsDTO.pUserName = UserOrDesignation; //Query = "select functionid,parentmoduleid,submoduleid,functionname,functionurl,false as viewpermission,false as createpermission,false as updatepermission,false as deletepermission from tblmstfunctions where functionid not in (select functionid from tblmstrolefunctions where roleid=" + Userid + ") union select t2.functionid,t2.parentmoduleid,t2.submoduleid,t2.functionname,t2.functionurl,coalesce(t1.viewpermission,false) as viewpermission,coalesce(t1.createpermission,false)as createpermission,coalesce(t1.updatepermission,false)as updatepermission,coalesce(t1.deletepermission,false) as deletepermission from tblmstrolefunctions t1 left join tblmstfunctions t2 on t1.functionid=t2.functionid where t1.roleid=" + Userid + ";"; Query = "select functionid,parentmoduleid,submoduleid,functionname,functionurl,false as viewpermission,false as createpermission,false as updatepermission,false as deletepermission from tblmstfunctions where statusid=" + Convert.ToInt32(Status.Active) + " and functionid not in (select functionid from tblmstrolefunctions where roleid=" + Userid + ") union select t2.functionid,t2.parentmoduleid,t2.submoduleid,t2.functionname,t2.functionurl,coalesce(t1.viewpermission,false) as viewpermission,coalesce(t1.createpermission,false)as createpermission,coalesce(t1.updatepermission,false)as updatepermission,coalesce(t1.deletepermission,false) as deletepermission from tblmstrolefunctions t1 left join tblmstfunctions t2 on t1.functionid=t2.functionid where t1.roleid=" + Userid + " and t2.statusid=" + Convert.ToInt32(Status.Active) + ";"; } } using (NpgsqlDataReader dr = NPGSqlHelper.ExecuteReader(connectionString, CommandType.Text, "select moduleid,modulename from tblmstmodules where statusid=" + Convert.ToInt32(Status.Active) + " and parentmoduleid is null order by modulesortorder asc;")) { while (dr.Read()) { ModuleDTO ModuleDTO = new ModuleDTO(); ModuleDTO.pmoduleid = Convert.ToInt64(dr["moduleid"]); ModuleDTO.pmodulename = dr["modulename"].ToString(); ModuleDTO.lstSubModuleDTO = new List <SubModuleDTO>(); using (NpgsqlDataReader dr1 = NPGSqlHelper.ExecuteReader(connectionString, CommandType.Text, "select f1.moduleid,f1.modulename,f2.moduleid as submoduleid,f2.modulename as submodulename from tblmstmodules f1 INNER JOIN tblmstmodules f2 ON f1.moduleid = f2.parentmoduleid where f1.statusid=" + Convert.ToInt32(Status.Active) + " order by f2.modulesortorder asc;")) { while (dr1.Read()) { if (Convert.ToInt64(dr["moduleid"]) == Convert.ToInt64(dr1["moduleid"])) { SubModuleDTO SubModuleDTO = new SubModuleDTO(); SubModuleDTO.psubmoduleid = Convert.ToInt64(dr1["submoduleid"]); SubModuleDTO.psubmodulename = dr1["submodulename"].ToString(); SubModuleDTO.FunctionsDTOList = new List <FunctionsDTO>(); using (NpgsqlDataReader dr2 = NPGSqlHelper.ExecuteReader(connectionString, CommandType.Text, Query)) { while (dr2.Read()) { if (Convert.ToInt64(dr2["submoduleid"]) == Convert.ToInt64(dr1["submoduleid"])) { FunctionsDTO FunctionsDTO = new FunctionsDTO(); FunctionsDTO.pmoduleid = Convert.ToInt64(dr["moduleid"]); FunctionsDTO.pmodulename = dr["modulename"].ToString(); FunctionsDTO.psubmoduleid = Convert.ToInt64(dr1["submoduleid"]); FunctionsDTO.psubmodulename = dr1["submodulename"].ToString(); FunctionsDTO.pFunctionID = Convert.ToInt64(dr2["functionid"]); FunctionsDTO.pFunctionName = dr2["functionname"].ToString(); FunctionsDTO.pFunctionUrl = dr2["functionurl"].ToString(); FunctionsDTO.pIsviewpermission = Convert.ToBoolean(dr2["viewpermission"].ToString()); FunctionsDTO.pIscreatepermission = Convert.ToBoolean(dr2["createpermission"].ToString()); FunctionsDTO.pIsupdatepermission = Convert.ToBoolean(dr2["updatepermission"].ToString()); FunctionsDTO.pIsdeletepermission = Convert.ToBoolean(dr2["deletepermission"].ToString()); SubModuleDTO.FunctionsDTOList.Add(FunctionsDTO); UserRightsFunctionsDTO.FunctionsDTOList.Add(FunctionsDTO); } } } ModuleDTO.lstSubModuleDTO.Add(SubModuleDTO); } } } UserRightsDTO.ModuleDTOList.Add(ModuleDTO); } } } catch (Exception) { throw; } }); return(UserRightsFunctionsDTO); }
public async Task <UserRightsDTO> GetUserModulesBasedOnroleanduserid(string UserName, string connectionString) { List <FunctionsDTO> FunctionsDTOList = new List <FunctionsDTO>(); List <ModuleDTO> ModuleDTOlist = new List <ModuleDTO>(); List <SubModuleDTO> SubModuleDTOList = new List <SubModuleDTO>(); int RoleFunctionsCount = 0; string Query = string.Empty; long Userid = 0; long roleid = 0; string Name = string.Empty; string Desiognation = string.Empty; string Imagepath = string.Empty; ds = new DataSet(); await Task.Run(() => { UserRightsDTO = new UserRightsDTO(); UserRightsDTO.ModuleDTOList = new List <ModuleDTO>(); try { RoleFunctionsCount = Convert.ToInt32(NPGSqlHelper.ExecuteScalar(connectionString, CommandType.Text, "select count(*) from tblmstrolefunctions where upper(username)='" + ManageQuote(UserName.ToUpper().Trim()) + "';")); using (NpgsqlDataReader dr = NPGSqlHelper.ExecuteReader(connectionString, CommandType.Text, "select coalesce(t1.roleid,0) as roleid,coalesce(t1.userid,0) as userid,coalesce(t1.employeename,t1.username) as name,coalesce(t1.designation,'') as designation,coalesce(t2.contactimagepath,'') as imagepath from tblmstusers t1 left join tblmstcontact t2 on t1.contactrefid=t2.contactreferenceid where upper(t1.username)='" + ManageQuote(UserName.ToUpper().Trim()) + "';")) { while (dr.Read()) { Userid = Convert.ToInt64(dr["userid"]); roleid = Convert.ToInt64(dr["roleid"]); Name = dr["name"].ToString(); Desiognation = dr["designation"].ToString(); Imagepath = dr["imagepath"].ToString(); } } if (roleid == 0 || string.IsNullOrEmpty(roleid.ToString())) { Query = "select t2.functionid,t2.parentmoduleid,t2.submoduleid,t2.functionname,t2.functionurl,coalesce(t2.cssclass,'') as cssclass,coalesce(t1.viewpermission,false) as viewpermission,coalesce(t1.createpermission,false)as createpermission,coalesce(t1.updatepermission,false)as updatepermission,coalesce(t1.deletepermission,false) as deletepermission from tblmstrolefunctions t1 left join tblmstfunctions t2 on t1.functionid=t2.functionid where t1.userid=" + Userid + " and t2.statusid=" + Convert.ToInt32(Status.Active) + " order by t2.submoduleid,t2.functionsortorder asc;"; // Query = "select t2.functionid,t2.parentmoduleid,t2.submoduleid,t2.functionname,t2.functionurl,coalesce(t2.cssclass,'') as cssclass,coalesce(t1.viewpermission,false) as viewpermission,coalesce(t1.createpermission,false)as createpermission,coalesce(t1.updatepermission,false)as updatepermission,coalesce(t1.deletepermission,false) as deletepermission from tblmstrolefunctions t1 left join tblmstfunctions t2 on t1.functionid=t2.functionid where t1.userid=" + Userid + ";"; } else { if (RoleFunctionsCount > 0) { Query = "select t2.functionid,t2.parentmoduleid,t2.submoduleid,t2.functionname,t2.functionurl,coalesce(t2.cssclass,'') as cssclass,coalesce(t1.viewpermission,false) as viewpermission,coalesce(t1.createpermission,false)as createpermission,coalesce(t1.updatepermission,false)as updatepermission,coalesce(t1.deletepermission,false) as deletepermission from tblmstrolefunctions t1 left join tblmstfunctions t2 on t1.functionid=t2.functionid where t1.userid=" + Userid + " and t2.statusid=" + Convert.ToInt32(Status.Active) + " order by t2.submoduleid,t2.functionsortorder asc;"; } else { Query = "select t2.functionid,t2.parentmoduleid,t2.submoduleid,t2.functionname,t2.functionurl,coalesce(t2.cssclass,'') as cssclass,coalesce(t1.viewpermission,false) as viewpermission,coalesce(t1.createpermission,false)as createpermission,coalesce(t1.updatepermission,false)as updatepermission,coalesce(t1.deletepermission,false) as deletepermission from tblmstrolefunctions t1 left join tblmstfunctions t2 on t1.functionid=t2.functionid where t1.roleid=" + roleid + " and t2.statusid=" + Convert.ToInt32(Status.Active) + " order by t2.submoduleid,t2.functionsortorder asc;"; } // Query = "select t2.functionid,t2.parentmoduleid,t2.submoduleid,t2.functionname,t2.functionurl,coalesce(t2.cssclass,'') as cssclass,coalesce(t1.viewpermission,false) as viewpermission,coalesce(t1.createpermission,false)as createpermission,coalesce(t1.updatepermission,false)as updatepermission,coalesce(t1.deletepermission,false) as deletepermission from tblmstrolefunctions t1 left join tblmstfunctions t2 on t1.functionid=t2.functionid where t1.roleid=" + roleid + ";"; } UserRightsDTO.pUserID = Userid; UserRightsDTO.pUserName = UserName; UserRightsDTO.pName = Name; UserRightsDTO.pRoleid = roleid; if (RoleFunctionsCount > 0) { UserRightsDTO.pDesignation = "USER"; } else { UserRightsDTO.pDesignation = Desiognation; } UserRightsDTO.pImagepath = Imagepath; using (NpgsqlDataReader dr = NPGSqlHelper.ExecuteReader(connectionString, CommandType.Text, "select moduleid,modulename,coalesce(cssclass,'') as cssclass from tblmstmodules where statusid=" + Convert.ToInt32(Status.Active) + " and parentmoduleid is null order by modulesortorder asc;")) { while (dr.Read()) { ModuleDTO ModuleDTO = new ModuleDTO(); ModuleDTO.pmoduleid = Convert.ToInt64(dr["moduleid"]); ModuleDTO.pmodulename = dr["modulename"].ToString(); ModuleDTO.pcssclass = dr["cssclass"].ToString(); ModuleDTO.lstSubModuleDTO = new List <SubModuleDTO>(); using (NpgsqlDataReader dr1 = NPGSqlHelper.ExecuteReader(connectionString, CommandType.Text, "select f1.moduleid,f1.modulename,f2.moduleid as submoduleid,f2.modulename as submodulename from tblmstmodules f1 INNER JOIN tblmstmodules f2 ON f1.moduleid = f2.parentmoduleid where f1.statusid=" + Convert.ToInt32(Status.Active) + " order by f2.modulesortorder asc;")) { while (dr1.Read()) { if (Convert.ToInt64(dr["moduleid"]) == Convert.ToInt64(dr1["moduleid"])) { SubModuleDTO SubModuleDTO = new SubModuleDTO(); SubModuleDTO.psubmoduleid = Convert.ToInt64(dr1["submoduleid"]); SubModuleDTO.psubmodulename = dr1["submodulename"].ToString(); SubModuleDTO.FunctionsDTOList = new List <FunctionsDTO>(); using (NpgsqlDataReader dr2 = NPGSqlHelper.ExecuteReader(connectionString, CommandType.Text, Query)) { while (dr2.Read()) { if (Convert.ToInt64(dr2["submoduleid"]) == Convert.ToInt64(dr1["submoduleid"])) { FunctionsDTO FunctionsDTO = new FunctionsDTO(); FunctionsDTO.pmoduleid = Convert.ToInt64(dr["moduleid"]); FunctionsDTO.psubmoduleid = Convert.ToInt64(dr1["submoduleid"]); FunctionsDTO.pFunctionID = Convert.ToInt64(dr2["functionid"]); FunctionsDTO.pFunctionName = dr2["functionname"].ToString(); FunctionsDTO.pFunctionUrl = dr2["functionurl"].ToString(); FunctionsDTO.pCssclass = dr2["cssclass"].ToString(); FunctionsDTO.pIsviewpermission = Convert.ToBoolean(dr2["viewpermission"].ToString()); FunctionsDTO.pIscreatepermission = Convert.ToBoolean(dr2["createpermission"].ToString()); FunctionsDTO.pIsupdatepermission = Convert.ToBoolean(dr2["updatepermission"].ToString()); FunctionsDTO.pIsdeletepermission = Convert.ToBoolean(dr2["deletepermission"].ToString()); SubModuleDTO.FunctionsDTOList.Add(FunctionsDTO); } } } if (SubModuleDTO.FunctionsDTOList.Count > 0) { ModuleDTO.lstSubModuleDTO.Add(SubModuleDTO); } else { //ModuleDTO.lstSubModuleDTO.Add(null); } } } } if (ModuleDTO.lstSubModuleDTO.Count > 0) { UserRightsDTO.ModuleDTOList.Add(ModuleDTO); } } } } catch (Exception) { throw; } }); return(UserRightsDTO); }