public bool ISBPAFileWritable(IYZDbProvider provider, IDbConnection cn, BPMConnection bpmcn) { Folder parentFolder = DirectoryManager.GetFolderByID(provider, cn, this.FolderID); Folder rootFolder = DirectoryManager.GetFolderByID(provider, cn, parentFolder.RootID); if (NameCompare.EquName(rootFolder.FolderType, "BPALibrary")) { if (SecurityManager.CheckPermision(bpmcn, parentFolder.RSID, BPMPermision.Write)) { return(true); } } if (NameCompare.EquName(rootFolder.FolderType, "BPAGroup")) { if (bpmcn.Token.ContainsSID(WellKnownSID.Administrators)) { return(true); } YZSoft.Group.Group group = YZSoft.Group.GroupManager.GetGroupFromFolderID(provider, cn, rootFolder.FolderID); YZSoft.Group.Member member = YZSoft.Group.GroupManager.TryGetGroupMember(provider, cn, group.GroupID, YZAuthHelper.LoginUserAccount); if (member != null) { if ((member.GroupPerm & Group.GroupPerm.Edit) == Group.GroupPerm.Edit || (member.GroupPerm & Group.GroupPerm.Auth) == Group.GroupPerm.Auth) { return(true); } } } return(false); }
public void Insert(IDbConnection cn, YZSoft.Group.Group group) { using (OracleCommand cmd = new OracleCommand()) { cmd.Connection = cn as OracleConnection; cmd.BindByName = true; cmd.CommandText = "SELECT BPMSEQ_YZAPPGROUP.NEXTVAL FROM DUAL"; group.GroupID = System.Convert.ToInt32(cmd.ExecuteScalar()); StringBuilder sb = new StringBuilder(); sb.Append("INSERT INTO YZAppGroup("); sb.Append("GroupID,"); sb.Append("GroupType,"); sb.Append("\"NAME\","); sb.Append("\"DESC\","); sb.Append("FolderID,"); sb.Append("DocumentFolderID,"); sb.Append("Owner,"); sb.Append("CreateAt,"); sb.Append("ImageFileID,"); sb.Append("Deleted,"); sb.Append("DeleteBy,"); sb.Append("DeleteAt) "); sb.Append("VALUES("); sb.Append(":GroupID,"); sb.Append(":GroupType,"); sb.Append(":Name1,"); sb.Append(":Desc1,"); sb.Append(":FolderID,"); sb.Append(":DocumentFolderID,"); sb.Append(":Owner,"); sb.Append(":CreateAt,"); sb.Append(":ImageFileID,"); sb.Append(":Deleted,"); sb.Append(":DeleteBy,"); sb.Append(":DeleteAt)"); cmd.CommandText = sb.ToString(); cmd.Parameters.Add(":GroupID", OracleDbType.Int32).Value = group.GroupID; cmd.Parameters.Add(":GroupType", OracleDbType.NVarchar2).Value = this.Convert(group.GroupType, false); cmd.Parameters.Add(":Name1", OracleDbType.NVarchar2).Value = this.Convert(group.Name, false); cmd.Parameters.Add(":Desc1", OracleDbType.NVarchar2).Value = this.Convert(group.Desc, true); cmd.Parameters.Add(":FolderID", OracleDbType.Int32).Value = this.Convert(group.FolderID, true); cmd.Parameters.Add(":DocumentFolderID", OracleDbType.Int32).Value = this.Convert(group.DocumentFolderID, true); cmd.Parameters.Add(":Owner", OracleDbType.NVarchar2).Value = this.Convert(group.Owner, true); cmd.Parameters.Add(":CreateAt", OracleDbType.Date).Value = this.Convert(group.CreateAt, true); cmd.Parameters.Add(":ImageFileID", OracleDbType.NVarchar2).Value = this.Convert(group.ImageFileID, true); cmd.Parameters.Add(":Deleted", OracleDbType.Int16).Value = this.ConvertBoolToInt16(group.Deleted); cmd.Parameters.Add(":DeleteBy", OracleDbType.NVarchar2).Value = this.Convert(group.DeleteBy, true); cmd.Parameters.Add(":DeleteAt", OracleDbType.Date).Value = this.Convert(group.DeleteAt, true); cmd.ExecuteNonQuery(); } }
public void Insert(IDbConnection cn, YZSoft.Group.Group group) { using (SqlCommand cmd = new SqlCommand()) { cmd.Connection = cn as SqlConnection; StringBuilder sb = new StringBuilder(); sb.Append("SET NOCOUNT ON;"); sb.Append("INSERT INTO YZAppGroup("); sb.Append("GroupType,"); sb.Append("Name,"); sb.Append("[Desc],"); sb.Append("FolderID,"); sb.Append("DocumentFolderID,"); sb.Append("Owner,"); sb.Append("CreateAt,"); sb.Append("ImageFileID,"); sb.Append("Deleted,"); sb.Append("DeleteBy,"); sb.Append("DeleteAt) "); sb.Append("VALUES("); sb.Append("@GroupType,"); sb.Append("@Name,"); sb.Append("@Desc,"); sb.Append("@FolderID,"); sb.Append("@DocumentFolderID,"); sb.Append("@Owner,"); sb.Append("@CreateAt,"); sb.Append("@ImageFileID,"); sb.Append("@Deleted,"); sb.Append("@DeleteBy,"); sb.Append("@DeleteAt);"); sb.Append("SELECT SCOPE_IDENTITY()"); cmd.CommandText = sb.ToString(); cmd.Parameters.Add("@GroupType", SqlDbType.NVarChar).Value = this.Convert(group.GroupType, false); cmd.Parameters.Add("@Name", SqlDbType.NVarChar).Value = this.Convert(group.Name, false); cmd.Parameters.Add("@Desc", SqlDbType.NVarChar).Value = this.Convert(group.Desc, true); cmd.Parameters.Add("@FolderID", SqlDbType.Int).Value = this.Convert(group.FolderID, true); cmd.Parameters.Add("@DocumentFolderID", SqlDbType.Int).Value = this.Convert(group.DocumentFolderID, true); cmd.Parameters.Add("@Owner", SqlDbType.NVarChar).Value = this.Convert(group.Owner, true); cmd.Parameters.Add("@CreateAt", SqlDbType.DateTime).Value = this.Convert(group.CreateAt, true); cmd.Parameters.Add("@ImageFileID", SqlDbType.NVarChar).Value = this.Convert(group.ImageFileID, true); cmd.Parameters.Add("@Deleted", SqlDbType.Bit).Value = group.Deleted; cmd.Parameters.Add("@DeleteBy", SqlDbType.NVarChar).Value = this.Convert(group.DeleteBy, true); cmd.Parameters.Add("@DeleteAt", SqlDbType.DateTime).Value = this.Convert(group.DeleteAt, true); group.GroupID = System.Convert.ToInt32(cmd.ExecuteScalar()); } }
public void Update(IDbConnection cn, YZSoft.Group.Group group) { using (OracleCommand cmd = new OracleCommand()) { cmd.Connection = cn as OracleConnection; cmd.BindByName = true; StringBuilder sb = new StringBuilder(); sb.Append("UPDATE YZAppGroup SET "); sb.Append("GroupType=:GroupType,"); sb.Append("\"NAME\"=:Name1,"); sb.Append("\"DESC\"=:Desc1,"); sb.Append("FolderID=:FolderID,"); sb.Append("DocumentFolderID=:DocumentFolderID,"); sb.Append("Owner=:Owner,"); sb.Append("CreateAt=:CreateAt,"); sb.Append("ImageFileID=:ImageFileID,"); sb.Append("Deleted=:Deleted,"); sb.Append("DeleteBy=:DeleteBy,"); sb.Append("DeleteAt=:DeleteAt "); sb.Append("WHERE GroupID=:GroupID"); cmd.CommandText = sb.ToString(); cmd.Parameters.Add(":GroupType", OracleDbType.NVarchar2).Value = this.Convert(group.GroupType, false); cmd.Parameters.Add(":Name1", OracleDbType.NVarchar2).Value = this.Convert(group.Name, false); cmd.Parameters.Add(":Desc1", OracleDbType.NVarchar2).Value = this.Convert(group.Desc, true); cmd.Parameters.Add(":FolderID", OracleDbType.Int32).Value = this.Convert(group.FolderID, true); cmd.Parameters.Add(":DocumentFolderID", OracleDbType.Int32).Value = this.Convert(group.DocumentFolderID, true); cmd.Parameters.Add(":Owner", OracleDbType.NVarchar2).Value = this.Convert(group.Owner, true); cmd.Parameters.Add(":CreateAt", OracleDbType.Date).Value = this.Convert(group.CreateAt, true); cmd.Parameters.Add(":ImageFileID", OracleDbType.NVarchar2).Value = this.Convert(group.ImageFileID, true); cmd.Parameters.Add(":Deleted", OracleDbType.Int16).Value = this.ConvertBoolToInt16(group.Deleted); cmd.Parameters.Add(":DeleteBy", OracleDbType.NVarchar2).Value = this.Convert(group.DeleteBy, true); cmd.Parameters.Add(":DeleteAt", OracleDbType.Date).Value = this.Convert(group.DeleteAt, true); cmd.Parameters.Add(":GroupID", OracleDbType.Int32).Value = group.GroupID; cmd.ExecuteNonQuery(); } }
public void Update(IDbConnection cn, YZSoft.Group.Group group) { using (SqlCommand cmd = new SqlCommand()) { cmd.Connection = cn as SqlConnection; StringBuilder sb = new StringBuilder(); sb.Append("UPDATE YZAppGroup SET "); sb.Append("GroupType=@GroupType,"); sb.Append("Name=@Name,"); sb.Append("[Desc]=@Desc,"); sb.Append("FolderID=@FolderID,"); sb.Append("DocumentFolderID=@DocumentFolderID,"); sb.Append("Owner=@Owner,"); sb.Append("CreateAt=@CreateAt,"); sb.Append("ImageFileID=@ImageFileID,"); sb.Append("Deleted=@Deleted,"); sb.Append("DeleteBy=@DeleteBy,"); sb.Append("DeleteAt=@DeleteAt "); sb.Append("WHERE GroupID=@GroupID"); cmd.CommandText = sb.ToString(); cmd.Parameters.Add("@GroupType", SqlDbType.NVarChar).Value = this.Convert(group.GroupType, false); cmd.Parameters.Add("@Name", SqlDbType.NVarChar).Value = this.Convert(group.Name, false); cmd.Parameters.Add("@Desc", SqlDbType.NVarChar).Value = this.Convert(group.Desc, true); cmd.Parameters.Add("@FolderID", SqlDbType.Int).Value = this.Convert(group.FolderID, true); cmd.Parameters.Add("@DocumentFolderID", SqlDbType.Int).Value = this.Convert(group.DocumentFolderID, true); cmd.Parameters.Add("@Owner", SqlDbType.NVarChar).Value = this.Convert(group.Owner, true); cmd.Parameters.Add("@CreateAt", SqlDbType.DateTime).Value = this.Convert(group.CreateAt, true); cmd.Parameters.Add("@ImageFileID", SqlDbType.NVarChar).Value = this.Convert(group.ImageFileID, true); cmd.Parameters.Add("@Deleted", SqlDbType.Bit).Value = group.Deleted; cmd.Parameters.Add("@DeleteBy", SqlDbType.NVarChar).Value = this.Convert(group.DeleteBy, true); cmd.Parameters.Add("@DeleteAt", SqlDbType.DateTime).Value = this.Convert(group.DeleteAt, true); cmd.Parameters.Add("@GroupID", SqlDbType.Int).Value = group.GroupID; cmd.ExecuteNonQuery(); } }