public IHttpActionResult CreateNV(Account_NhanVien nv)
{
if (nv != null)
{
db.Account_NhanVien.Add(nv);
return(Ok(db.SaveChanges() > 0));
}
return(NotFound());
}
public static Account_NhanVienDTO ConvertToAccountNVDTO(Account_NhanVien account)
{
if (account == null)
{
return(null);
}
return(new Account_NhanVienDTO
{
IDAccountNV = account.IDAccountNV,
IDPosition = account.IDPosition,
NhanVien_Id = account.NhanVien_Id,
Status = account.Status,
Username = account.Username,
Password = account.Password,
Position = PositionsController.ConvertToPositionDTO(account.Position),
});
}
public IHttpActionResult UpdateNV(Account_NhanVien nv)
{
if (nv != null)
{
var ac = db.Account_NhanVien.Find(nv.IDAccountNV);
if (ac != null)
{
ac.IDPosition = nv.IDPosition;
if (nv.Password?.Length >= 0)
{
ac.Password = nv.Password;
}
return(Ok(db.SaveChanges() > 0));
}
}
return(NotFound());
}
public async Task <IHttpActionResult> LoginNV([FromUri] string Username, [FromUri] string Password)
{
Account_NhanVien account = await db.Account_NhanVien.FirstOrDefaultAsync(q => q.Username == Username && q.Password == Password && q.Status == ACTIVE);
if (account == null)
{
return(NotFound());
}
var time = TimeSpan.FromHours(10);
var Expiration = DateTime.Now.Add(time);
var token = Convert.ToBase64String(new UTF8Encoding().GetBytes($"NV:{account.IDAccountNV}:{Username}:{Password}:{new Random().Next()}"));
token = token.CreateMD5();
account.Token = token;
account.TokenExpiration = Expiration;
if (await db.SaveChangesAsync() > 0)
{
token = $"{account.IDAccountNV}:{token}";
return(Ok(Convert.ToBase64String(Encoding.UTF8.GetBytes(token))));
}
return(BadRequest());
}
