public static string GetCountersT(string s)
{
int o = (int)Mydb.ExecuteScalar("select top 1 OBJECT_ID from VW_ROOMS where NUMBER=@s", new SqlParameter[] { new SqlParameter("@s", s) }, CommandType.Text);
DataTable dt = Mydb.ExecuteReadertoDataTable("select * from VW_METERS where OBJECT_ID=@o and ROOM_NUMBER=(select ROOM_ID from PER_SCORE where SCORE_ID=@s)", new SqlParameter[] { new SqlParameter("@o", o), new SqlParameter("@s", s) }, CommandType.Text);
List <METERS> ms = new List <METERS>();
foreach (DataRow item in dt.Rows)
{
METERS m = new METERS();
m.AMUNT_TARIF = item["AMUNT_TARIF"].ToString();
m.LOG_IN_ID = item["LOG_IN_ID"].ToString();
m.METERS_ID = item["METERS_ID"].ToString();
m.METERS_NUMBER = item["METERS_NUMBER"].ToString();
m.NEXT_DATE = item["NEXT_DATE"].ToString();
m.OBJECT_ID = item["OBJECT_ID"].ToString();
m.PREVIOUS_DATE = item["PREVIOUS_DATE"].ToString();
m.ROOM_NUMBER = item["ROOM_NUMBER"].ToString();
m.ROOM_TYPE = item["ROOM_TYPE"].ToString();
m.ROOM_TYPE_ID = item["ROOM_TYPE_ID"].ToString();
m.SCORE_ID = item["SCORE_ID"].ToString();
m.TYPE = item["TYPE"].ToString();
m.TYPE_ID = item["TYPE"].ToString();
ms.Add(m);
}
JavaScriptSerializer js = new JavaScriptSerializer();
return(js.Serialize(ms));
}
public static string getTenantDatas(string score)
{
string result = "";
DataTable dtObj = Mydb.ExecuteReadertoDataTable("SELECT OBJECT_ADRESS,OBJECT_ID FROM OBJECT WHERE OBJECT_ID=(select OBJECT_ID from ROOM where ROOM_ID =(select ROOM_ID from PER_SCORE where IS_DELETED=0 and SCORE_ID=@s))", new SqlParameter[] { new SqlParameter("@s", score) }, CommandType.Text);
List <ObjectS> os = new List <ObjectS>();
foreach (DataRow item in dtObj.Rows)
{
ObjectS o = new ObjectS();
o.ObjectAdress = item["OBJECT_ADRESS"].ToString();
o.Object_Id = Convert.ToInt32(item["OBJECT_ID"]);
os.Add(o);
}
JavaScriptSerializer jsObj = new JavaScriptSerializer();
DataTable dt = Mydb.ExecuteReadertoDataTable("select * from IND_NAME where INDIVIDUAL_ID in (select INDIVIDUAL_ID from INDIVIDUAL_PERSCORE where SCORE_ID=@s)", new SqlParameter[] { new SqlParameter("@s", score) }, CommandType.Text);
List <AccountDatas> ads = new List <AccountDatas>();
foreach (DataRow item in dt.Rows)
{
AccountDatas ad = new AccountDatas();
ad.FIRST_NAME = item["FIRST_NAME"].ToString();
ad.PHONE = item["PHONE"].ToString();
ad.SHARE = item["INDIVIDUAL_ID"].ToString();
ads.Add(ad);
}
JavaScriptSerializer jsad = new JavaScriptSerializer();
result = "{\"result\" : \"Ok\",\"ADatas\":" + jsad.Serialize(ads) + ",\"ObjDatas\":" + jsObj.Serialize(os) + "}";
return(result);
}
public static string GetStreetsBytext(string txt, string score)
{
DataTable dt = null;
if (score == "0")
{
dt = Mydb.ExecuteReadertoDataTable("select OBJECT_ID,OBJECT_ADRESS from OBJECT where OBJECT_ADRESS like '%'+@txt+'%'", new SqlParameter[] { new SqlParameter("@txt", txt) }, CommandType.Text);
}
else
{
dt = Mydb.ExecuteReadertoDataTable("select OBJECT_ID,OBJECT_ADRESS from OBJECT where OBJECT_ID=(select OBJECT_ID from PER_SCORE where SCORE_ID=@score)", new SqlParameter[] { new SqlParameter("@score", score) }, CommandType.Text);
}
List <ObjectS> objs = new List <ObjectS>();
foreach (DataRow item in dt.Rows)
{
ObjectS obj = new ObjectS();
obj.ObjectAdress = item["OBJECT_ADRESS"].ToString();
obj.Object_Id = Convert.ToInt32(item["OBJECT_ID"]);
objs.Add(obj);
}
JavaScriptSerializer js = new JavaScriptSerializer();
return(js.Serialize(objs));
}
public static string getServiceType()
{
DataTable dt = Mydb.ExecuteReadertoDataTable("select * from SERVICE_TYPE where IS_DELETED=0", new SqlParameter[] { }, CommandType.Text);
List <RequestTenant> rts = new List <RequestTenant>();
foreach (DataRow item in dt.Rows)
{
RequestTenant rt = new RequestTenant();
rt.ACCOUNT_NAME = item["SERVICE_TYPE_NAME"].ToString();
rt.NUMBER = item["SERVICE_TYPE_ID"].ToString();
rts.Add(rt);
}
JavaScriptSerializer js = new JavaScriptSerializer();
return(js.Serialize(rts));
}
public static string getStatuses(string Score)
{
System.Data.DataTable dt = Mydb.ExecuteReadertoDataTable("select * from REQUEST_STATUS", new SqlParameter[] { }, CommandType.Text);
List <REQUEST_STATUS> rss = new List <REQUEST_STATUS>();
foreach (DataRow item in dt.Rows)
{
REQUEST_STATUS rs = new REQUEST_STATUS();
rs.STATUS = item["STATUS"].ToString();
rs.STATUS_ID = item["STATUS_ID"].ToString();
rss.Add(rs);
}
JavaScriptSerializer js = new JavaScriptSerializer();
return(js.Serialize(rss));
}
public static string Makefilter(List <TenantRFilter> flt, string score)
{
try
{
string STATUS_ID = null;
string SERVICE_TYPE_ID = null;
string REQUEST_ID = null;
string Cr_S = null;
string Cr_E = null;
foreach (TenantRFilter item in flt)
{
STATUS_ID = (item.STATUS_ID.ToString() != "0") ? item.STATUS_ID.ToString() : null;
SERVICE_TYPE_ID = (item.SERVICE_TYPE_ID == "0") ? null : item.SERVICE_TYPE_ID;
REQUEST_ID = (item.REQUEST_ID == "") ? null : item.REQUEST_ID;
Cr_E = (item.Cr_E == "") ? null : item.Cr_E;
Cr_S = (item.Cr_S == "") ? null : item.Cr_S;
}
DataTable dt = Mydb.ExecuteReadertoDataTable("uspo_TenantRFiltering", new SqlParameter[] {
new SqlParameter("@score", score),
new SqlParameter("@STATUS_ID", STATUS_ID),
new SqlParameter("@SERVICE_TYPE_ID", SERVICE_TYPE_ID),
new SqlParameter("@REQUEST_ID", REQUEST_ID),
new SqlParameter("@Cr_S", Cr_S),
new SqlParameter("@Cr_E", Cr_E)
}, CommandType.StoredProcedure);
List <RequestTenant> rts = new List <RequestTenant>();
foreach (DataRow item in dt.Rows)
{
RequestTenant rt = new RequestTenant();
rt.FIRST_NAME = item["FIRST_NAME"].ToString();
rt.ROOM_T = item["REQUEST_ID"].ToString();
rt.ACCOUNT_NAME = item["CR_DATE"].ToString();
rt.ROOM_NUMBER = item["STATUS"].ToString();
rt.PHONE = item["STATUS_ID"].ToString();
rt.INDIVIDUAL_ID = item["DONE_DATE"].ToString();
rts.Add(rt);
}
JavaScriptSerializer js = new JavaScriptSerializer();
return(js.Serialize(rts));
}
catch (Exception ex)
{
return("{\"result\" : \"" + ex.ToString() + "\"}");
}
}
public static string getInfos(int McId)
{
DataTable dt = Mydb.ExecuteReadertoDataTable("select * from DOC_FOR_MC where MC_ID=@id", new SqlParameter[] { new SqlParameter("@id", McId) }, CommandType.Text);
List <DOC_FOR_MC> ds = new List <DOC_FOR_MC>();
foreach (DataRow item in dt.Rows)
{
DOC_FOR_MC d = new DOC_FOR_MC();
d.D_NAME = item["D_NAME"].ToString();
d.D_URL = item["D_URL"].ToString();
d.KAT_ID = Convert.ToInt32(item["KAT_ID"]);
ds.Add(d);
}
JavaScriptSerializer js = new JavaScriptSerializer();
return(js.Serialize(ds));
}
public static string getSelectedServT(int R)
{
DataTable dt = Mydb.ExecuteReadertoDataTable("select * from PRODUCT_SERVICE where SERVICE_ID in (select P_SERVICE_ID from REQUEST_SERVICE where REQUEST_ID=@R)", new SqlParameter[] { new SqlParameter("@R", R) }, CommandType.Text);
List <ProductService_> pss = new List <ProductService_>();
foreach (DataRow item in dt.Rows)
{
ProductService_ ps = new ProductService_();
ps.SERVICE_ID = Convert.ToInt32(item["SERVICE_ID"]);
ps.SERVICE_NAME = item["SERVICE_NAME"].ToString();
ps.COST = item["COST"].ToString();
ps.QUANTITY_IS = Convert.ToBoolean(item["QUANTITY_IS"]);
pss.Add(ps);
}
JavaScriptSerializer js = new JavaScriptSerializer();
return(js.Serialize(pss));
}
public static string GetObjAdr(string Pth)
{
int ObjId = (int)Mydb.ExecuteScalar("GetObjId", new SqlParameter[] { new SqlParameter("@pth", Pth) }, CommandType.StoredProcedure);
DataTable dt = Mydb.ExecuteReadertoDataTable("select o.OBJECT_ADRESS,o.OBJECT_NAME, (a.ACCOUNT_NAME + ' > '+a.PHONE_NUMBER+' > '+a.E_MAIL) as Acc from OBJECT o, ACCOUNT a where o.OBJECT_ID=@oid and o.LOG_IN_ID=a.LOG_IN_ID", new SqlParameter[] { new SqlParameter("@oid", ObjId) }, CommandType.Text);
List <ObjectS> objs = new List <ObjectS>();
foreach (DataRow item in dt.Rows)
{
ObjectS obj = new ObjectS();
obj.ObjectAdress = item["OBJECT_ADRESS"].ToString();
obj.ObjectPhoto = item["OBJECT_NAME"].ToString();
obj.KladrObjectId = item["Acc"].ToString();
obj.Object_Id = ObjId;
objs.Add(obj);
}
JavaScriptSerializer js = new JavaScriptSerializer();
return(js.Serialize(objs));
}
public static string GetTenantRequestTable(string Score)
{
DataTable dt = Mydb.ExecuteReadertoDataTable("select * from VW_TENANT_REQUEST where OBJECT_ID=(select OBJECT_ID from ROOM where ROOM_ID=(select ROOM_ID from PER_SCORE where SCORE_ID=@s)) order by REQUEST_ID desc", new SqlParameter[] { new SqlParameter("@s", Score) }, CommandType.Text);
List <RequestTenant> rts = new List <RequestTenant>();
foreach (DataRow item in dt.Rows)
{
RequestTenant rt = new RequestTenant();
rt.FIRST_NAME = item["FIRST_NAME"].ToString();
rt.ROOM_T = item["REQUEST_ID"].ToString();
rt.ACCOUNT_NAME = item["CR_DATE"].ToString();
rt.ROOM_NUMBER = item["STATUS"].ToString();
rt.PHONE = item["STATUS_ID"].ToString();
rt.INDIVIDUAL_ID = item["DONE_DATE"].ToString();
rts.Add(rt);
}
JavaScriptSerializer js = new JavaScriptSerializer();
return(js.Serialize(rts));
}
public static string GetTRequestById(int rid)
{
DataTable dt = Mydb.ExecuteReadertoDataTable("select * from REQUEST where REQUEST_ID=@rid", new SqlParameter[] { new SqlParameter("@rid", rid) }, CommandType.Text);
List <RequestTenant> rts = new List <RequestTenant>();
foreach (DataRow item in dt.Rows)
{
RequestTenant rt = new RequestTenant();
rt.ACCOUNT_NAME = item["STATUS_ID"].ToString();
rt.INDIVIDUAL_ID = item["INDIVIDUAL_ID"].ToString();
rt.NUMBER = item["COMFORDATE"].ToString();
rt.OBJECT_ID = item["COM_TIME_FROM"].ToString();
rt.ROOM_NUMBER = item["COM_TIME_TO"].ToString();
rt.PHONE = (item["OFFERED_DATE_FROM"].ToString() != "") ? (item["PLAN_END_TIME"].ToString() + "|" + item["PLAN_END_DATE"].ToString() + "|" + item["OFFERED_DATE_FROM"].ToString() + "|" + item["OFFERED_DATE_TO"].ToString() + "|" + item["OFFERED_TIME_FROM1"].ToString() + "|" + item["OFFERED_TIME_FROM2"].ToString() + "|" + item["OFFERED_TIME_TO1"].ToString() + "|" + item["OFFERED_TIME_TO2"].ToString()) : "";
rt.ROOM_T = item["CR_DATE"].ToString();
rt.FIRST_NAME = item["DONE_DATE"].ToString();
// rt.PHONE = + "|" + item["OFFERED_DATE_TO"].ToString() + "|" + item["OFFERED_TIME_FROM1"].ToString() + "|" + item["OFFERED_TIME_FROM2"].ToString() + "|" + item["OFFERED_TIME_TO1"].ToString() + "|" + item["OFFERED_TIME_TO1"].ToString();
rts.Add(rt);
}
JavaScriptSerializer js = new JavaScriptSerializer();
return(js.Serialize(rts));
}
public static string getMetersValuesT(int mid)
{
DataTable dt = Mydb.ExecuteReadertoDataTable("select * from METER_VALUE where METERS_ID=@mid order by DATE_ desc", new SqlParameter[] { new SqlParameter("@mid", mid) }, CommandType.Text);
List <METERS> ms = new List <METERS>();
foreach (DataRow item in dt.Rows)
{
// AMUNT_TARIF/VALUE_
// LOG_IN_ID/VALUE_2
// METERS_ID/VALUE_3
// NEXT_DATE/DATE_
METERS m = new METERS();
m.AMUNT_TARIF = item["VALUE_"].ToString();
m.LOG_IN_ID = item["VALUE_2"].ToString();
m.METERS_ID = item["VALUE_3"].ToString();
m.NEXT_DATE = item["DATE_"].ToString();
ms.Add(m);
}
JavaScriptSerializer js = new JavaScriptSerializer();
return(js.Serialize(ms));
}
public static string LoginSystem(string email_, string pass_)
{
#region BadKod
//if (!email_.Contains("Login_"))
//{
// int Cpass_Mail = (int)Mydb.ExecuteScalar("select COUNT(PASSWORD ) FROM ACCOUNT WHERE E_MAIL=@mail", new SqlParameter[] { new SqlParameter("@mail", email_) }, CommandType.Text);
// if (Cpass_Mail > 0)
// {
// string pass_mail = Mydb.ExecuteScalar("select PASSWORD FROM ACCOUNT WHERE E_MAIL=@mail", new SqlParameter[] { new SqlParameter("@mail", email_) }, CommandType.Text).ToString();
// bool verf = (bool)Mydb.ExecuteScalar("select VERIFICATION_ from CLIENT where CLIENT_ID=(select CLIENT_ID from ACCOUNT where E_MAIL=@mail)", new SqlParameter[] { new SqlParameter("@mail", email_) }, CommandType.Text);
// if (verf == true)
// {
// pass_ = GetMd5HashData(pass_);
// if (pass_mail == pass_)
// {
// string Client_Id = Mydb.ExecuteScalar("select CLIENT_ID FROM ACCOUNT WHERE E_MAIL=@mail", new SqlParameter[] { new SqlParameter("@mail", email_) }, CommandType.Text).ToString();
// string loginId = Mydb.ExecuteScalar("select LOG_IN_ID FROM ACCOUNT WHERE E_MAIL=@mail", new SqlParameter[] { new SqlParameter("@mail", email_) }, CommandType.Text).ToString();
// return "{\"result\" : \"1\",\"Id\" :\"" + Client_Id + "\",\"LogId\" :\"" + loginId + "\"}";
// }
// else
// {
// return "{\"result\" : \"2\"}";
// }
// }
// else
// {
// return "{\"result\" : \"3\"}";
// }
// }
// else
// {
// return "{\"result\" : \"2\"}";
// }
//}
//else
//{
// int Count_DBPass = (int)Mydb.ExecuteScalar("select count(PASSWORD) from ACCOUNT where LOGIN = @lg", new SqlParameter[] { new SqlParameter("@lg", email_) }, CommandType.Text);
// if (Count_DBPass > 0)
// {
// string DBPass = Mydb.ExecuteScalar("select PASSWORD from ACCOUNT where LOGIN = @lg", new SqlParameter[] { new SqlParameter("@lg", email_) }, CommandType.Text).ToString();
// pass_ = GetMd5HashData(pass_);
// if (pass_ == DBPass)
// {
// int LogId = (int)Mydb.ExecuteScalar("select LOG_IN_ID, PASSWORD from ACCOUNT where LOGIN=@lg", new SqlParameter[] { new SqlParameter("@lg", email_) }, CommandType.Text);
// DataTable dt = Mydb.ExecuteReadertoDataTable("select * from ACCOUNT_ROLE where LOG_IN_ID=@lgId", new SqlParameter[] { new SqlParameter("@lgId", LogId) }, CommandType.Text);
// List<MR> mrs = new List<MR>();
// foreach (DataRow item in dt.Rows)
// {
// MR mr = new MR();
// mr.sm = Mydb.ExecuteScalar("select MODUL_ID from MODUL_ROLE where MR_ID=@mr", new SqlParameter[] { new SqlParameter("@mr", Convert.ToInt32(item["MR_ID"])) }, CommandType.Text).ToString();
// mr.sr = Mydb.ExecuteScalar("select ROLE_ID from MODUL_ROLE where MR_ID=@mr", new SqlParameter[] { new SqlParameter("@mr", Convert.ToInt32(item["MR_ID"])) }, CommandType.Text).ToString();
// mrs.Add(mr);
// }
// JavaScriptSerializer js = new JavaScriptSerializer();
// return js.Serialize(mrs);
// }
// else
// {
// return "{\"result\" : \"2\"}";
// }
// }
// else
// {
// return "{\"result\" : \"2\"}";
// }
//}
#endregion
string returnvalue = null;
string SUPPLIER_EMAIL = email_;
if (!email_.Contains("Login_"))
{
int Cpass_Mail = (int)Mydb.ExecuteScalar("select COUNT(PASSWORD ) FROM ACCOUNT WHERE E_MAIL=@mail", new SqlParameter[] { new SqlParameter("@mail", email_) }, CommandType.Text);
if (Cpass_Mail > 0)
{
string pass_mail = Mydb.ExecuteScalar("select PASSWORD FROM ACCOUNT WHERE E_MAIL=@mail", new SqlParameter[] { new SqlParameter("@mail", email_) }, CommandType.Text).ToString();
bool verf = (bool)Mydb.ExecuteScalar("select VERIFICATION_ from CLIENT where CLIENT_ID=(select CLIENT_ID from ACCOUNT where E_MAIL=@mail)", new SqlParameter[] { new SqlParameter("@mail", email_) }, CommandType.Text);
if (verf == true)
{
pass_ = GetMd5HashData(pass_);
if (pass_mail == pass_)
{
string Client_Id = Mydb.ExecuteScalar("select CLIENT_ID FROM ACCOUNT WHERE E_MAIL=@mail", new SqlParameter[] { new SqlParameter("@mail", email_) }, CommandType.Text).ToString(); //4
string loginId = Mydb.ExecuteScalar("select LOG_IN_ID FROM ACCOUNT WHERE E_MAIL=@mail", new SqlParameter[] { new SqlParameter("@mail", email_) }, CommandType.Text).ToString(); //5
int count = (int)Mydb.ExecuteScalar("select COUNT(*) from ACCOUNT_ROLE where LOG_IN_ID =@lg", new SqlParameter[] { new SqlParameter("@lg", Convert.ToInt32(loginId)) }, CommandType.Text); //2
if (count == 1)
{
string role = Mydb.ExecuteScalar("select ROLE_ID from MODUL_ROLE where MR_ID=(select MR_ID from ACCOUNT_ROLE where LOG_IN_ID =@lg)", new SqlParameter[] { new SqlParameter("@lg", Convert.ToInt32(loginId)) }, CommandType.Text).ToString();//3
string RolName = "Нечего";
string ModulName = "Нечего";
if (role == "4")
{
ModulName = "Клиентское администрирование";
RolName = "Администратор";
}
if (role == "3")
{
ModulName = "Диспетчерская";
RolName = "Диспетчер";
}
if (role == "1")
{
ModulName = "Личный кабинет";
RolName = "Управляющий";
}
Mydb.ExecuteNoNQuery("usp_ConstructorAPI_INSERT_LOG", new SqlParameter[] {
new SqlParameter("@EVENT_TYPE", "Вход"),
new SqlParameter("@EVENT_STATUS", "Систем"),
new SqlParameter("@EVENT_ROLE", RolName),
new SqlParameter("@EVENT_MODULE", ModulName),
new SqlParameter("@EVENT_MESSAGE", "Пользователь вошел в систему"),
new SqlParameter("@EVENT_MAKER", loginId)
}, CommandType.StoredProcedure);
returnvalue = "{\"result\" : \"1\",\"Id\" :\"" + Client_Id + "\",\"LogId\" :\"" + loginId + "\",\"RoleId\":\"" + role + "\"}";
}
if (count > 1)
{
DataTable dt = Mydb.ExecuteReadertoDataTable("select ROLE_ID from MODUL_ROLE where MR_ID in (select MR_ID from ACCOUNT_ROLE where LOG_IN_ID =@lg)", new SqlParameter[] { new SqlParameter("@lg", Convert.ToInt32(loginId)) }, CommandType.Text);
List <LoginDatas> lds = new List <LoginDatas>();
foreach (DataRow item in dt.Rows)
{
LoginDatas ld = new LoginDatas();
ld.ROLE_ID = item["ROLE_ID"].ToString();
ld.Id = Client_Id;
ld.LogId = loginId;
ld.result = "5";
lds.Add(ld);
}
JavaScriptSerializer js = new JavaScriptSerializer();
//returnvalue= "{\"result\" : \"5\",\"Id\" :\"" + Client_Id + "\",\"LogId\" :\"" + loginId + "\",\"Roles\":\"" + js.Serialize(rls) + "\"}";
returnvalue = js.Serialize(lds);
}
}
else
{
returnvalue = "{\"result\" : \"2\"}";
}
}
else
{
returnvalue = "{\"result\" : \"3\"}";
}
}
else
{
// returnvalue= "{\"result\" : \"2\"}";
string RESULT = Mydb.ExecuteScalar("CHECK_SUPPLIER", new SqlParameter[] { new SqlParameter("@email", email_), new SqlParameter("@pass", pass_) }, CommandType.StoredProcedure).ToString();
returnvalue = RESULT;
}
}
else
{
int IdCount = (int)Mydb.ExecuteScalar("select Count(*) from ACCOUNT where [LOGIN]=@login", new SqlParameter[] { new SqlParameter("@login", email_) }, CommandType.Text);//Convert.ToInt32(email_);
if (IdCount != 0)
{
// email_ = email_.Substring(email_.LastIndexOf('_') + 1);
int Id = (int)Mydb.ExecuteScalar("select LOG_IN_ID from ACCOUNT where [LOGIN]=@login", new SqlParameter[] { new SqlParameter("@login", email_) }, CommandType.Text);//Convert.ToInt32(email_);//5
int Count_DBPass = (int)Mydb.ExecuteScalar("select count(PASSWORD) from ACCOUNT where LOG_IN_ID=@id", new SqlParameter[] { new SqlParameter("@id", Id) }, CommandType.Text);
if (Count_DBPass > 0)
{
string DBPass = Mydb.ExecuteScalar("select PASSWORD from ACCOUNT where LOG_IN_ID = @lg", new SqlParameter[] { new SqlParameter("@lg", Id) }, CommandType.Text).ToString();
pass_ = GetMd5HashData(pass_);
if (pass_ == DBPass)
{
if (SUPPLIER_EMAIL != "Login_742")
{
string Client_Id = Mydb.ExecuteScalar("select CLIENT_ID FROM ACCOUNT WHERE LOG_IN_ID=@lg", new SqlParameter[] { new SqlParameter("@lg", Id) }, CommandType.Text).ToString();//1
//string loginId = Mydb.ExecuteScalar("select LOG_IN_ID FROM ACCOUNT WHERE E_MAIL=@mail", new SqlParameter[] { new SqlParameter("@mail", email_) }, CommandType.Text).ToString();
int count = (int)Mydb.ExecuteScalar("select COUNT(*) from ACCOUNT_ROLE where LOG_IN_ID =@lg", new SqlParameter[] { new SqlParameter("@lg", Id) }, CommandType.Text);//2
if (count == 1)
{
string role = Mydb.ExecuteScalar("select ROLE_ID from MODUL_ROLE where MR_ID=(select MR_ID from ACCOUNT_ROLE where LOG_IN_ID =@lg)", new SqlParameter[] { new SqlParameter("@lg", Id) }, CommandType.Text).ToString();//3
string RolName = "Нечего";
string ModulName = "Нечего";
if (role == "4")
{
ModulName = "Клиентское администрирование";
RolName = "Администратор";
}
if (role == "3")
{
ModulName = "Диспетчерская";
RolName = "Диспетчер";
}
if (role == "1")
{
ModulName = "Личный кабинет";
RolName = "Управляющий";
}
if (role == "15")
{
ModulName = "Диспетчерская";
RolName = "Диспетчер поставщика";
}
if (role == "17")
{
ModulName = "Диспетчерская";
RolName = "Супер Диспетчер";
}
if (role == "16")
{
ModulName = "Профиль Управляющего";
RolName = "Ответственный";
}
Mydb.ExecuteNoNQuery("usp_ConstructorAPI_INSERT_LOG", new SqlParameter[] {
new SqlParameter("@EVENT_TYPE", "Вход"),
new SqlParameter("@EVENT_STATUS", "Систем"),
new SqlParameter("@EVENT_ROLE", RolName),
new SqlParameter("@EVENT_MODULE", ModulName),
new SqlParameter("@EVENT_MESSAGE", "Пользователь вошел в систему"),
new SqlParameter("@EVENT_MAKER", Id)
}, CommandType.StoredProcedure);
returnvalue = "{\"result\" : \"1\",\"Id\" :\"" + Client_Id + "\",\"LogId\" :\"" + Id + "\",\"RoleId\":\"" + role + "\"}";
}
if (count > 1)
{
DataTable dt = Mydb.ExecuteReadertoDataTable("select ROLE_ID from MODUL_ROLE where MR_ID in (select MR_ID from ACCOUNT_ROLE where LOG_IN_ID =@lg)", new SqlParameter[] { new SqlParameter("@lg", Id) }, CommandType.Text);//3
List <LoginDatas> lds = new List <LoginDatas>();
foreach (DataRow item in dt.Rows)
{
LoginDatas ld = new LoginDatas();
ld.ROLE_ID = item["ROLE_ID"].ToString();
ld.Id = Client_Id;
ld.LogId = Id.ToString();
ld.result = "5";
lds.Add(ld);
}
JavaScriptSerializer js = new JavaScriptSerializer();
//returnvalue= "{\"result\" : \"5\",\"Id\" :\"" + Client_Id + "\",\"LogId\" :\"" + loginId + "\",\"Roles\":\"" + js.Serialize(rls) + "\"}";
returnvalue = js.Serialize(lds);
//List<Roles> rls = new List<Roles>();
//foreach (DataRow item in dt.Rows)
//{
// Roles rl = new Roles();
// rl.ROLE_ID = Convert.ToInt32(item["ROLE_ID"]);
// rls.Add(rl);
//}
//JavaScriptSerializer js = new JavaScriptSerializer();
//returnvalue= "{\"result\" : \"5\",\"Id\" :\"" + Client_Id + "\",\"LogId\" :\"" + Id + "\",\"Roles\":\"" + js.Serialize(rls) + "\"}";
}
}
else
{
string role = "15";
string RolName = "Нечего";
string ModulName = "Нечего";
if (role == "15")
{
ModulName = "Диспетчер поставщика";
RolName = "Диспетчер поставщика";
}
Mydb.ExecuteNoNQuery("usp_ConstructorAPI_INSERT_LOG", new SqlParameter[] {
new SqlParameter("@EVENT_TYPE", "Вход"),
new SqlParameter("@EVENT_STATUS", "Систем"),
new SqlParameter("@EVENT_ROLE", RolName),
new SqlParameter("@EVENT_MODULE", ModulName),
new SqlParameter("@EVENT_MESSAGE", "Пользователь вошел в систему"),
new SqlParameter("@EVENT_MAKER", Id)
}, CommandType.StoredProcedure);
returnvalue = "{\"result\" : \"1\",\"Id\" :\"742\",\"LogId\" :\"" + Id + "\",\"RoleId\":\"" + role + "\"}";
}
}
else
{
returnvalue = "{\"result\" : \"2\"}";
}
}
else
{
returnvalue = "{\"result\" : \"2\"}";
}
}
else
{
returnvalue = "{\"result\" : \"2\"}";
}
}
return(returnvalue);
}
private static string UK_Login(string Id_)
{
int Id = 0;
string returnvalue = "";
if (Id_.Contains('@'))
{
Id = Convert.ToInt32(Mydb.ExecuteScalar("LoginIdendity", new SqlParameter[] { new SqlParameter("@procType", "5"), new SqlParameter("@mail", Id_) }, CommandType.StoredProcedure));
}
else
{
Id_ = Id_.Substring(Id_.IndexOf('_') + 1);
Id = Convert.ToInt32(Id_);
}
string Client_Id = Mydb.ExecuteScalar("LoginIdendity", new SqlParameter[] { new SqlParameter("@lg", Id), new SqlParameter("@procType", "1") }, CommandType.StoredProcedure).ToString();//1
int count = (int)Mydb.ExecuteScalar("LoginIdendity", new SqlParameter[] { new SqlParameter("@procType", "2"), new SqlParameter("@lg", Id) }, CommandType.StoredProcedure);//2
if (count == 1)
{
string role = Mydb.ExecuteScalar("LoginIdendity", new SqlParameter[] { new SqlParameter("@procType", "3"), new SqlParameter("@lg", Id) }, CommandType.StoredProcedure).ToString();//3
string RolName = "Нечего";
string ModulName = "Нечего";
if (role == "4")
{
ModulName = "Клиентское администрирование";
RolName = "Администратор";
}
if (role == "3")
{
ModulName = "Диспетчерская";
RolName = "Диспетчер";
}
if (role == "1")
{
ModulName = "Личный кабинет";
RolName = "Управляющий";
}
if (role == "15")
{
ModulName = "Диспетчерская";
RolName = "Диспетчер поставщика";
}
if (role == "17")
{
ModulName = "Диспетчерская";
RolName = "Супер Диспетчер";
}
if (role == "16")
{
ModulName = "Профиль Управляющего";
RolName = "Ответственный";
}
Mydb.ExecuteNoNQuery("usp_ConstructorAPI_INSERT_LOG", new SqlParameter[] {
new SqlParameter("@EVENT_TYPE", "Вход"),
new SqlParameter("@EVENT_STATUS", "Систем"),
new SqlParameter("@EVENT_ROLE", RolName),
new SqlParameter("@EVENT_MODULE", ModulName),
new SqlParameter("@EVENT_MESSAGE", "Пользователь вошел в систему"),
new SqlParameter("@EVENT_MAKER", Id)
}, CommandType.StoredProcedure);
returnvalue = "{\"result\" : \"1\",\"Id\" :\"" + Client_Id + "\",\"LogId\" :\"" + Id + "\",\"RoleId\":\"" + role + "\"}";
}
if (count > 1)
{
DataTable dt = Mydb.ExecuteReadertoDataTable("LoginIdendity", new SqlParameter[] { new SqlParameter("@procType", "3"), new SqlParameter("@lg", Id) }, CommandType.StoredProcedure);//3
List <LoginDatas> lds = new List <LoginDatas>();
foreach (DataRow item in dt.Rows)
{
LoginDatas ld = new LoginDatas();
ld.ROLE_ID = item["ROLE_ID"].ToString();
ld.Id = Client_Id;
ld.LogId = Id.ToString();
ld.result = "5";
lds.Add(ld);
}
JavaScriptSerializer js = new JavaScriptSerializer();
returnvalue = js.Serialize(lds);
}
return(returnvalue);
}
