public bool ISBPAFileWritable(IYZDbProvider provider, IDbConnection cn, BPMConnection bpmcn)
{
Folder parentFolder = DirectoryManager.GetFolderByID(provider, cn, this.FolderID);
Folder rootFolder = DirectoryManager.GetFolderByID(provider, cn, parentFolder.RootID);
if (NameCompare.EquName(rootFolder.FolderType, "BPALibrary"))
{
if (SecurityManager.CheckPermision(bpmcn, parentFolder.RSID, BPMPermision.Write))
{
return(true);
}
}
if (NameCompare.EquName(rootFolder.FolderType, "BPAGroup"))
{
if (bpmcn.Token.ContainsSID(WellKnownSID.Administrators))
{
return(true);
}
YZSoft.Group.Group group = YZSoft.Group.GroupManager.GetGroupFromFolderID(provider, cn, rootFolder.FolderID);
YZSoft.Group.Member member = YZSoft.Group.GroupManager.TryGetGroupMember(provider, cn, group.GroupID, YZAuthHelper.LoginUserAccount);
if (member != null)
{
if ((member.GroupPerm & Group.GroupPerm.Edit) == Group.GroupPerm.Edit || (member.GroupPerm & Group.GroupPerm.Auth) == Group.GroupPerm.Auth)
{
return(true);
}
}
}
return(false);
}
public void Insert(IDbConnection cn, YZSoft.Group.Group group)
{
using (OracleCommand cmd = new OracleCommand())
{
cmd.Connection = cn as OracleConnection;
cmd.BindByName = true;
cmd.CommandText = "SELECT BPMSEQ_YZAPPGROUP.NEXTVAL FROM DUAL";
group.GroupID = System.Convert.ToInt32(cmd.ExecuteScalar());
StringBuilder sb = new StringBuilder();
sb.Append("INSERT INTO YZAppGroup(");
sb.Append("GroupID,");
sb.Append("GroupType,");
sb.Append("\"NAME\",");
sb.Append("\"DESC\",");
sb.Append("FolderID,");
sb.Append("DocumentFolderID,");
sb.Append("Owner,");
sb.Append("CreateAt,");
sb.Append("ImageFileID,");
sb.Append("Deleted,");
sb.Append("DeleteBy,");
sb.Append("DeleteAt) ");
sb.Append("VALUES(");
sb.Append(":GroupID,");
sb.Append(":GroupType,");
sb.Append(":Name1,");
sb.Append(":Desc1,");
sb.Append(":FolderID,");
sb.Append(":DocumentFolderID,");
sb.Append(":Owner,");
sb.Append(":CreateAt,");
sb.Append(":ImageFileID,");
sb.Append(":Deleted,");
sb.Append(":DeleteBy,");
sb.Append(":DeleteAt)");
cmd.CommandText = sb.ToString();
cmd.Parameters.Add(":GroupID", OracleDbType.Int32).Value = group.GroupID;
cmd.Parameters.Add(":GroupType", OracleDbType.NVarchar2).Value = this.Convert(group.GroupType, false);
cmd.Parameters.Add(":Name1", OracleDbType.NVarchar2).Value = this.Convert(group.Name, false);
cmd.Parameters.Add(":Desc1", OracleDbType.NVarchar2).Value = this.Convert(group.Desc, true);
cmd.Parameters.Add(":FolderID", OracleDbType.Int32).Value = this.Convert(group.FolderID, true);
cmd.Parameters.Add(":DocumentFolderID", OracleDbType.Int32).Value = this.Convert(group.DocumentFolderID, true);
cmd.Parameters.Add(":Owner", OracleDbType.NVarchar2).Value = this.Convert(group.Owner, true);
cmd.Parameters.Add(":CreateAt", OracleDbType.Date).Value = this.Convert(group.CreateAt, true);
cmd.Parameters.Add(":ImageFileID", OracleDbType.NVarchar2).Value = this.Convert(group.ImageFileID, true);
cmd.Parameters.Add(":Deleted", OracleDbType.Int16).Value = this.ConvertBoolToInt16(group.Deleted);
cmd.Parameters.Add(":DeleteBy", OracleDbType.NVarchar2).Value = this.Convert(group.DeleteBy, true);
cmd.Parameters.Add(":DeleteAt", OracleDbType.Date).Value = this.Convert(group.DeleteAt, true);
cmd.ExecuteNonQuery();
}
}
public void Insert(IDbConnection cn, YZSoft.Group.Group group)
{
using (SqlCommand cmd = new SqlCommand())
{
cmd.Connection = cn as SqlConnection;
StringBuilder sb = new StringBuilder();
sb.Append("SET NOCOUNT ON;");
sb.Append("INSERT INTO YZAppGroup(");
sb.Append("GroupType,");
sb.Append("Name,");
sb.Append("[Desc],");
sb.Append("FolderID,");
sb.Append("DocumentFolderID,");
sb.Append("Owner,");
sb.Append("CreateAt,");
sb.Append("ImageFileID,");
sb.Append("Deleted,");
sb.Append("DeleteBy,");
sb.Append("DeleteAt) ");
sb.Append("VALUES(");
sb.Append("@GroupType,");
sb.Append("@Name,");
sb.Append("@Desc,");
sb.Append("@FolderID,");
sb.Append("@DocumentFolderID,");
sb.Append("@Owner,");
sb.Append("@CreateAt,");
sb.Append("@ImageFileID,");
sb.Append("@Deleted,");
sb.Append("@DeleteBy,");
sb.Append("@DeleteAt);");
sb.Append("SELECT SCOPE_IDENTITY()");
cmd.CommandText = sb.ToString();
cmd.Parameters.Add("@GroupType", SqlDbType.NVarChar).Value = this.Convert(group.GroupType, false);
cmd.Parameters.Add("@Name", SqlDbType.NVarChar).Value = this.Convert(group.Name, false);
cmd.Parameters.Add("@Desc", SqlDbType.NVarChar).Value = this.Convert(group.Desc, true);
cmd.Parameters.Add("@FolderID", SqlDbType.Int).Value = this.Convert(group.FolderID, true);
cmd.Parameters.Add("@DocumentFolderID", SqlDbType.Int).Value = this.Convert(group.DocumentFolderID, true);
cmd.Parameters.Add("@Owner", SqlDbType.NVarChar).Value = this.Convert(group.Owner, true);
cmd.Parameters.Add("@CreateAt", SqlDbType.DateTime).Value = this.Convert(group.CreateAt, true);
cmd.Parameters.Add("@ImageFileID", SqlDbType.NVarChar).Value = this.Convert(group.ImageFileID, true);
cmd.Parameters.Add("@Deleted", SqlDbType.Bit).Value = group.Deleted;
cmd.Parameters.Add("@DeleteBy", SqlDbType.NVarChar).Value = this.Convert(group.DeleteBy, true);
cmd.Parameters.Add("@DeleteAt", SqlDbType.DateTime).Value = this.Convert(group.DeleteAt, true);
group.GroupID = System.Convert.ToInt32(cmd.ExecuteScalar());
}
}
public void Update(IDbConnection cn, YZSoft.Group.Group group)
{
using (OracleCommand cmd = new OracleCommand())
{
cmd.Connection = cn as OracleConnection;
cmd.BindByName = true;
StringBuilder sb = new StringBuilder();
sb.Append("UPDATE YZAppGroup SET ");
sb.Append("GroupType=:GroupType,");
sb.Append("\"NAME\"=:Name1,");
sb.Append("\"DESC\"=:Desc1,");
sb.Append("FolderID=:FolderID,");
sb.Append("DocumentFolderID=:DocumentFolderID,");
sb.Append("Owner=:Owner,");
sb.Append("CreateAt=:CreateAt,");
sb.Append("ImageFileID=:ImageFileID,");
sb.Append("Deleted=:Deleted,");
sb.Append("DeleteBy=:DeleteBy,");
sb.Append("DeleteAt=:DeleteAt ");
sb.Append("WHERE GroupID=:GroupID");
cmd.CommandText = sb.ToString();
cmd.Parameters.Add(":GroupType", OracleDbType.NVarchar2).Value = this.Convert(group.GroupType, false);
cmd.Parameters.Add(":Name1", OracleDbType.NVarchar2).Value = this.Convert(group.Name, false);
cmd.Parameters.Add(":Desc1", OracleDbType.NVarchar2).Value = this.Convert(group.Desc, true);
cmd.Parameters.Add(":FolderID", OracleDbType.Int32).Value = this.Convert(group.FolderID, true);
cmd.Parameters.Add(":DocumentFolderID", OracleDbType.Int32).Value = this.Convert(group.DocumentFolderID, true);
cmd.Parameters.Add(":Owner", OracleDbType.NVarchar2).Value = this.Convert(group.Owner, true);
cmd.Parameters.Add(":CreateAt", OracleDbType.Date).Value = this.Convert(group.CreateAt, true);
cmd.Parameters.Add(":ImageFileID", OracleDbType.NVarchar2).Value = this.Convert(group.ImageFileID, true);
cmd.Parameters.Add(":Deleted", OracleDbType.Int16).Value = this.ConvertBoolToInt16(group.Deleted);
cmd.Parameters.Add(":DeleteBy", OracleDbType.NVarchar2).Value = this.Convert(group.DeleteBy, true);
cmd.Parameters.Add(":DeleteAt", OracleDbType.Date).Value = this.Convert(group.DeleteAt, true);
cmd.Parameters.Add(":GroupID", OracleDbType.Int32).Value = group.GroupID;
cmd.ExecuteNonQuery();
}
}
public void Update(IDbConnection cn, YZSoft.Group.Group group)
{
using (SqlCommand cmd = new SqlCommand())
{
cmd.Connection = cn as SqlConnection;
StringBuilder sb = new StringBuilder();
sb.Append("UPDATE YZAppGroup SET ");
sb.Append("GroupType=@GroupType,");
sb.Append("Name=@Name,");
sb.Append("[Desc]=@Desc,");
sb.Append("FolderID=@FolderID,");
sb.Append("DocumentFolderID=@DocumentFolderID,");
sb.Append("Owner=@Owner,");
sb.Append("CreateAt=@CreateAt,");
sb.Append("ImageFileID=@ImageFileID,");
sb.Append("Deleted=@Deleted,");
sb.Append("DeleteBy=@DeleteBy,");
sb.Append("DeleteAt=@DeleteAt ");
sb.Append("WHERE GroupID=@GroupID");
cmd.CommandText = sb.ToString();
cmd.Parameters.Add("@GroupType", SqlDbType.NVarChar).Value = this.Convert(group.GroupType, false);
cmd.Parameters.Add("@Name", SqlDbType.NVarChar).Value = this.Convert(group.Name, false);
cmd.Parameters.Add("@Desc", SqlDbType.NVarChar).Value = this.Convert(group.Desc, true);
cmd.Parameters.Add("@FolderID", SqlDbType.Int).Value = this.Convert(group.FolderID, true);
cmd.Parameters.Add("@DocumentFolderID", SqlDbType.Int).Value = this.Convert(group.DocumentFolderID, true);
cmd.Parameters.Add("@Owner", SqlDbType.NVarChar).Value = this.Convert(group.Owner, true);
cmd.Parameters.Add("@CreateAt", SqlDbType.DateTime).Value = this.Convert(group.CreateAt, true);
cmd.Parameters.Add("@ImageFileID", SqlDbType.NVarChar).Value = this.Convert(group.ImageFileID, true);
cmd.Parameters.Add("@Deleted", SqlDbType.Bit).Value = group.Deleted;
cmd.Parameters.Add("@DeleteBy", SqlDbType.NVarChar).Value = this.Convert(group.DeleteBy, true);
cmd.Parameters.Add("@DeleteAt", SqlDbType.DateTime).Value = this.Convert(group.DeleteAt, true);
cmd.Parameters.Add("@GroupID", SqlDbType.Int).Value = group.GroupID;
cmd.ExecuteNonQuery();
}
}
