/// <summary> /// 把DataRow行转成实体类对象 /// </summary> private void DataRowToModel(ZGZY.Model.User model, DataRow dr) { if (!DBNull.Value.Equals(dr["Id"])) { model.Id = int.Parse(dr["Id"].ToString()); } if (!DBNull.Value.Equals(dr["UserId"])) { model.UserId = dr["UserId"].ToString(); } if (!DBNull.Value.Equals(dr["UserName"])) { model.UserName = dr["UserName"].ToString(); } if (!DBNull.Value.Equals(dr["UserPwd"])) { model.UserPwd = dr["UserPwd"].ToString(); } if (!DBNull.Value.Equals(dr["IsAble"])) { model.IsAble = bool.Parse(dr["IsAble"].ToString()); } if (!DBNull.Value.Equals(dr["IfChangePwd"])) { model.IfChangePwd = bool.Parse(dr["IfChangePwd"].ToString()); } if (!DBNull.Value.Equals(dr["AddDate"])) { model.AddDate = Convert.ToDateTime(dr["AddDate"]); } if (!DBNull.Value.Equals(dr["Description"])) { model.Description = dr["Description"].ToString(); } }
/// <summary> /// 添加用户 /// </summary> public int AddUser(Model.User user) { ZGZY.Model.User userCompare = dal.GetUserByUserId(user.UserId); if (userCompare != null) { throw new Exception("已经存在此用户!"); } return(dal.AddUser(user)); }
public void ProcessRequest(HttpContext context) { context.Response.ContentType = "application/json"; string action = context.Request.Params["action"]; ZGZY.Model.UserOperateLog userOperateLog = null; //操作日志对象 try { ZGZY.Model.User user = ZGZY.Common.UserHelper.GetUser(context); //获取cookie里的用户对象 userOperateLog = new Model.UserOperateLog(); userOperateLog.UserIp = context.Request.UserHostAddress; userOperateLog.UserName = user.UserId; switch (action) { case "getbutton": //根据用户的权限获取用户点击的菜单有权限的按钮 string pageName = context.Request.Params["pagename"]; string menuCode = context.Request.Params["menucode"]; //菜单标识码 DataTable dt = new ZGZY.BLL.Button().GetButtonByMenuCodeAndUserId(menuCode, user.Id); context.Response.Write(ZGZY.Common.ToolbarHelper.GetToolBar(dt, pageName)); break; case "search": string strWhere = "1=1"; string sort = context.Request.Params["sort"]; //排序列 string order = context.Request.Params["order"]; //排序方式 asc或者desc int pageindex = int.Parse(context.Request.Params["page"]); int pagesize = int.Parse(context.Request.Params["rows"]); int totalCount; //输出参数 string strJson = new ZGZY.BLL.Button().GetPager("tbButton", "Id,Name,Code,Icon,Sort,AddDate,Description", sort + " " + order, pagesize, pageindex, strWhere, out totalCount); context.Response.Write("{\"total\": " + totalCount.ToString() + ",\"rows\":" + strJson + "}"); userOperateLog.OperateInfo = "查询按钮"; userOperateLog.IfSuccess = true; userOperateLog.Description = "查询条件:" + strWhere + " 排序:" + sort + " " + order + " 页码/每页大小:" + pageindex + " " + pagesize; //ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog); break; case "getall": context.Response.Write(new ZGZY.BLL.Button().GetAllButton("1=1")); break; default: context.Response.Write("{\"result\":\"参数错误!\",\"success\":false}"); break; } } catch (Exception ex) { context.Response.Write("{\"msg\":\"" + ZGZY.Common.JsonHelper.StringFilter(ex.Message) + "\",\"success\":false}"); userOperateLog.OperateInfo = "按钮功能异常"; userOperateLog.IfSuccess = false; userOperateLog.Description = ZGZY.Common.JsonHelper.StringFilter(ex.Message); //ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog); } }
public void ProcessRequest(HttpContext context) { context.Response.ContentType = "application/json"; string action = context.Request.Params["action"]; string factid = context.Request.Params["factid"]; try { ZGZY.Model.User user = ZGZY.Common.UserHelper.GetUser(context); //获取cookie里的用户对象 string userid = user.UserId; switch (action) { case "getChartMonth": string monArr = new ZGZY.BLL.Chart().GetChartMonth(); context.Response.Write(monArr); break; case "getChartFact": string monFact = new ZGZY.BLL.Chart().GetChartFact(); context.Response.Write(monFact); break; case "getChart1Data": string strData1 = new ZGZY.BLL.Chart().GetChart1Data(); context.Response.Write(strData1); break; case "getChart2Data": string strData2 = new ZGZY.BLL.Chart().GetChart2Data(); context.Response.Write(strData2); break; case "getfact": string data = new ZGZY.BLL.Chart().cqcp590408GetData(factid, userid); context.Response.Write(data); break; case "getSum": string sdate = new ZGZY.BLL.Chart().cqcp590408GetSum(userid); context.Response.Write(sdate); break; default: break; } } catch (Exception ex) { context.Response.Write("{\"msg\":\"" + ZGZY.Common.JsonHelper.StringFilter(ex.Message) + "\",\"success\":false}"); } }
/// <summary> /// 用户登录 /// </summary> public Model.User UserLogin(string loginId, string loginPwd) { StringBuilder sbSql = new StringBuilder(); sbSql.Append("select top 1 Id,UserId,UserName,UserPwd,IsAble,IfChangePwd,AddDate,Description from tbUser "); sbSql.Append("where UserId=@UserId and UserPwd=@UserPwd"); SqlParameter[] paras = { new SqlParameter("@UserId", loginId), new SqlParameter("@UserPwd", loginPwd) }; ZGZY.Model.User user = null; DataTable dt = ZGZY.Common.SqlHelper.GetDataTable(ZGZY.Common.SqlHelper.connStr, CommandType.Text, sbSql.ToString(), paras); if (dt.Rows.Count > 0) { user = new Model.User(); //DataRowToModel(user, dt.Rows[0]); //只取部分属性写入cookie(防止某些列特别长,例如description,导致cookie过长): if (!DBNull.Value.Equals(dt.Rows[0]["Id"])) { user.Id = int.Parse(dt.Rows[0]["Id"].ToString()); } if (!DBNull.Value.Equals(dt.Rows[0]["UserId"])) { user.UserId = dt.Rows[0]["UserId"].ToString(); } if (!DBNull.Value.Equals(dt.Rows[0]["UserName"])) { user.UserName = dt.Rows[0]["UserName"].ToString(); } if (!DBNull.Value.Equals(dt.Rows[0]["UserPwd"])) { user.UserPwd = dt.Rows[0]["UserPwd"].ToString(); } if (!DBNull.Value.Equals(dt.Rows[0]["IsAble"])) { user.IsAble = bool.Parse(dt.Rows[0]["IsAble"].ToString()); } if (!DBNull.Value.Equals(dt.Rows[0]["IfChangePwd"])) { user.IfChangePwd = bool.Parse(dt.Rows[0]["IfChangePwd"].ToString()); } return(user); } return(user); }
/// <summary> /// 根据id获取用户 /// </summary> public Model.User GetUserById(string id) { string sql = "select * from tbUser where Id = @Id"; ZGZY.Model.User user = null; DataTable dt = ZGZY.Common.SqlHelper.GetDataTable(ZGZY.Common.SqlHelper.connStr, CommandType.Text, sql, new SqlParameter("@Id", id)); if (dt.Rows.Count > 0) { user = new ZGZY.Model.User(); DataRowToModel(user, dt.Rows[0]); return(user); } else { return(null); } }
/// <summary> /// 根据用户id判断用户是否可用 /// </summary> public Model.User CheckLoginByUserId(string userId) { string sql = "select top 1 Id,UserId,UserName,UserPwd,IsAble,IfChangePwd,AddDate,Description from tbUser where UserId=@UserId"; ZGZY.Model.User user = null; DataTable dt = ZGZY.Common.SqlHelper.GetDataTable(ZGZY.Common.SqlHelper.connStr, CommandType.Text, sql, new SqlParameter("@UserId", userId)); if (dt.Rows.Count > 0) { user = new ZGZY.Model.User(); DataRowToModel(user, dt.Rows[0]); return(user); } else { return(null); } }
public void ProcessRequest(HttpContext context) { context.Response.ContentType = "application/json"; string action = context.Request.Params["action"]; ZGZY.Model.UserOperateLog userOperateLog = null; //操作日志对象 try { ZGZY.Model.User user = ZGZY.Common.UserHelper.GetUser(context); //获取cookie里的用户对象 userOperateLog = new Model.UserOperateLog(); userOperateLog.UserIp = context.Request.UserHostAddress; userOperateLog.UserName = user.UserId; JavaScriptSerializer jsonSerialize = new JavaScriptSerializer(); switch (action) { case "getbutton": //根据用户的权限获取用户点击的菜单有权限的按钮 string pageName = context.Request.Params["pagename"]; string menuCode = context.Request.Params["menucode"]; //菜单标识码 DataTable dt = new ZGZY.BLL.Customers().GetButtonByMenuCodeAndUserId(menuCode, user.Id); string sum = ZGZY.Common.ToolbarHelper.GetToolBar(dt, pageName); context.Response.Write(sum); break; case "add": if (user != null && new ZGZY.BLL.Authority().IfAuthority("Channel", "add", user.Id)) { Model.Finance FinanceModel = new Model.Finance(); FinanceModel.FinanceName = context.Request.Params["ui_Finance_FinanceName_add"]; FinanceModel.ChannelId = Int32.Parse(context.Request.Params["ui_Finance_ChannelID"]); FinanceModel.ManagerId = 72; FinanceModel.State = Int32.Parse(context.Request.Params["ui_Finance_State_add"]); FinanceModel.CreateDate = DateTime.Now; FinanceModel.FinanceType = Int32.Parse(context.Request.Params["ui_Finance_FinanceType_add"]); FinanceModel.Remark = context.Request.Params["ui_Finance_Remark_add"]; FinanceModel.FinanceNum = Int32.Parse(context.Request.Params["ui_Finance_FinanceNum_add"]); FinanceModel.Amount = Int32.Parse(context.Request.Params["ui_Finance_Amount_add"]); int departmentId = new ZGZY.BLL.Finance().AddFinance(FinanceModel); if (departmentId > 0) { Model.CustomerFinance cusFin = new Model.CustomerFinance(); cusFin.CusId = Int32.Parse(context.Request.Params["ui_Finance_CustomersID"]); cusFin.FinanceId = departmentId; cusFin.BeginDate = DateTime.Parse(context.Request.Params["ui_Finance_BeginDate_add"]); cusFin.EndDate = DateTime.Parse(context.Request.Params["ui_Finance_EndDate_add"]); new ZGZY.BLL.CustomerFinance().AddCustomerFinance(cusFin); userOperateLog.OperateInfo = "添加结算"; userOperateLog.IfSuccess = true; userOperateLog.Description = "添加成功,客户主键:" + departmentId; context.Response.Write("{\"msg\":\"添加成功!\",\"success\":true}"); } else { userOperateLog.OperateInfo = "添加结算"; userOperateLog.IfSuccess = false; userOperateLog.Description = "添加失败"; context.Response.Write("{\"msg\":\"添加失败!\",\"success\":false}"); } } else { userOperateLog.OperateInfo = "添加结算"; userOperateLog.IfSuccess = false; userOperateLog.Description = "无权限,请联系管理员"; context.Response.Write("{\"msg\":\"无权限,请联系管理员!\",\"success\":true}"); } ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog); break; case "GetChannelList": List <Model.VW_GetEndDateAndBeginDateByChannelID> list = new ZGZY.BLL.Finance().GetFinanceFromCombobox(); context.Response.Write(jsonSerialize.Serialize(list)); //string strjson = GetJsonStr(list); //context.Response.Write(strjson); GetDateById break; case "GetCustomersList": List <Model.Customers> listCus = new ZGZY.BLL.Customers().GetCustomersTbaleNoP(); context.Response.Write(jsonSerialize.Serialize(listCus)); break; case "GetDateById": object Id = context.Request.Params["Id"]; Model.VW_GetEndDateAndBeginDateByChannelID model = new ZGZY.BLL.Finance().Get_VWDate(Id); context.Response.Write(jsonSerialize.Serialize(model)); break; case "search": string strWhere = "1=1"; string sort = context.Request.Params["sort"]; //排序列 string order = context.Request.Params["order"]; //排序方式 asc或者desc int pageindex = int.Parse(context.Request.Params["page"]); int pagesize = int.Parse(context.Request.Params["rows"]); int totalCount; //输出参数 string strJson = new ZGZY.BLL.Button().GetPager("VW_FinanceAndChannel", "UserName,Id,CusId,CusName, FinanceName,BeginDate,EndDate, ChannelId, ManagerId, State, CreateDate, FinanceType, Remark, Amount, FinanceNum, ChannelName, Creator, SealNameId", sort + " " + order, pagesize, pageindex, strWhere, out totalCount); context.Response.Write("{\"total\": " + totalCount.ToString() + ",\"rows\":" + strJson + "}"); userOperateLog.OperateInfo = "查询按钮"; userOperateLog.IfSuccess = true; userOperateLog.Description = "查询条件:" + strWhere + " 排序:" + sort + " " + order + " 页码/每页大小:" + pageindex + " " + pagesize; ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog); break; case "edit": if (user != null && new ZGZY.BLL.Authority().IfAuthority("Channel", "edit", user.Id)) { Model.Finance financemodel = new Model.Finance(); financemodel.Id = Int32.Parse(context.Request.Params["ID"]); financemodel.FinanceName = context.Request.Params["ui_Finance_FinanceName_edit"]; financemodel.ChannelId = Int32.Parse(context.Request.Params["ui_Finance_ChannelID_edit"]); financemodel.State = Int32.Parse(context.Request.Params["ui_Finance_State_edit"]); financemodel.FinanceType = Int32.Parse(context.Request.Params["ui_Finance_FinanceType_edit"]); financemodel.FinanceNum = Int32.Parse(context.Request.Params["ui_Finance_FinanceNum_edit"]); financemodel.Amount = double.Parse(context.Request.Params["ui_Finance_Amount_edit"]); financemodel.Remark = context.Request.Params["ui_Finance_Remark_edit"]; int outputRow = new ZGZY.BLL.Finance().EditFinanceByFinanceID(financemodel); Model.CustomerFinance modelCusFin = new Model.CustomerFinance(); modelCusFin.FinanceId = financemodel.Id; modelCusFin.BeginDate = DateTime.Parse(context.Request.Params["ui_Finance_BeginDate_edit"]); modelCusFin.EndDate = DateTime.Parse(context.Request.Params["ui_Finance_EndDate_edit"]); modelCusFin.CusId = Int32.Parse(context.Request.Params["ui_Finance_CustomersID_edit"]); outputRow += new ZGZY.BLL.CustomerFinance().EditCustomerFinanceByFinanceId(modelCusFin); if (outputRow == 2) { userOperateLog.OperateInfo = "修改结算"; userOperateLog.IfSuccess = true; userOperateLog.Description = "修改成功,客户主键:" + outputRow; context.Response.Write("{\"msg\":\"修改成功!\",\"success\":true}"); } else { userOperateLog.OperateInfo = "修改结算"; userOperateLog.IfSuccess = false; userOperateLog.Description = "修改失败"; context.Response.Write("{\"msg\":\"修改失败!\",\"success\":false}"); } } else { userOperateLog.OperateInfo = "修改结算"; userOperateLog.IfSuccess = false; userOperateLog.Description = "无权限,请联系管理员"; context.Response.Write("{\"msg\":\"无权限,请联系管理员!\",\"success\":true}"); } ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog); break; case "delete": if (user != null && new ZGZY.BLL.Authority().IfAuthority("Channel", "delete", user.Id)) { object departmentIds = context.Request.Params["id"]; if (new ZGZY.BLL.Finance().DeleteFinanceByFinanceID(departmentIds) == 1) { userOperateLog.OperateInfo = "删除结算"; userOperateLog.IfSuccess = true; userOperateLog.Description = "删除成功,结算主键:" + departmentIds; context.Response.Write("{\"msg\":\"删除成功!\",\"success\":true}"); } else { userOperateLog.OperateInfo = "删除结算"; userOperateLog.IfSuccess = false; userOperateLog.Description = "删除失败,客户主键:" + departmentIds; context.Response.Write("{\"msg\":\"删除失败!\",\"success\":false}"); } } else { userOperateLog.OperateInfo = "删除结算"; userOperateLog.IfSuccess = false; userOperateLog.Description = "无权限,请联系管理员"; context.Response.Write("{\"msg\":\"无权限,请联系管理员!\",\"success\":false}"); } ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog); break; default: context.Response.Write("{\"result\":\"参数错误!\",\"success\":false}"); break; } } catch (Exception ex) { context.Response.Write("{\"msg\":\"" + ZGZY.Common.JsonHelper.StringFilter(ex.Message) + "\",\"success\":false}"); userOperateLog.OperateInfo = "菜单功能异常"; userOperateLog.IfSuccess = false; userOperateLog.Description = ZGZY.Common.JsonHelper.StringFilter(ex.Message); ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog); } }
public void ProcessRequest(HttpContext context) { context.Response.ContentType = "application/json"; string action = context.Request.Params["action"]; ZGZY.Model.UserOperateLog userOperateLog = null; //操作日志对象 try { ZGZY.Model.User user = ZGZY.Common.UserHelper.GetUser(context); //获取cookie里的用户对象 userOperateLog = new Model.UserOperateLog(); userOperateLog.UserIp = context.Request.UserHostAddress; userOperateLog.UserName = user.UserId; switch (action) { case "getall": context.Response.Write(new ZGZY.BLL.Department().GetAllDepartment("1=1")); break; case "search": string strJson = new ZGZY.BLL.Department().GetAllDepartment(null); context.Response.Write(strJson); userOperateLog.OperateInfo = "查询部门"; userOperateLog.IfSuccess = true; userOperateLog.Description = "查询条件:1=1"; ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog); break; case "searchDepartmentUser": string userDepartmentIds = context.Request.Params["departmentId"]; string sortDepartmentUser = context.Request.Params["sort"]; //排序列 string orderDepartmentUser = context.Request.Params["order"]; //排序方式 asc或者desc int pageindexDepartmentUser = int.Parse(context.Request.Params["page"]); int pagesizeDepartmentUser = int.Parse(context.Request.Params["rows"]); string strJsonDepartmentUser = new ZGZY.BLL.Department().GetPagerDepartmentUser(userDepartmentIds, sortDepartmentUser + " " + orderDepartmentUser, pagesizeDepartmentUser, pageindexDepartmentUser); context.Response.Write(strJsonDepartmentUser); userOperateLog.OperateInfo = "查询部门用户"; userOperateLog.IfSuccess = true; userOperateLog.Description = "查询部门Id:" + userDepartmentIds + " 排序:" + sortDepartmentUser + " " + orderDepartmentUser + " 页码/每页大小:" + pageindexDepartmentUser + " " + pagesizeDepartmentUser; ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog); break; case "add": if (user != null && new ZGZY.BLL.Authority().IfAuthority("department", "add", user.Id)) { ZGZY.Model.Department departmentAdd = new Model.Department(); departmentAdd.DepartmentName = context.Request.Params["ui_department_departmentname_add"] ?? ""; departmentAdd.Sort = Convert.ToInt32(context.Request.Params["ui_department_sort_add"]); if (context.Request.Params["ui_department_parentid_add"] != null && context.Request.Params["ui_department_parentid_add"] != "") { departmentAdd.ParentId = Convert.ToInt32(context.Request.Params["ui_department_parentid_add"]); } else { departmentAdd.ParentId = 0; //根节点 } int departmentId = new ZGZY.BLL.Department().AddDepartment(departmentAdd); if (departmentId > 0) { userOperateLog.OperateInfo = "添加部门"; userOperateLog.IfSuccess = true; userOperateLog.Description = "添加成功,部门主键:" + departmentId; context.Response.Write("{\"msg\":\"添加成功!\",\"success\":true}"); } else { userOperateLog.OperateInfo = "添加部门"; userOperateLog.IfSuccess = false; userOperateLog.Description = "添加失败"; context.Response.Write("{\"msg\":\"添加失败!\",\"success\":false}"); } } else { userOperateLog.OperateInfo = "添加部门"; userOperateLog.IfSuccess = false; userOperateLog.Description = "无权限,请联系管理员"; context.Response.Write("{\"msg\":\"无权限,请联系管理员!\",\"success\":true}"); } ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog); break; case "edit": if (user != null && new ZGZY.BLL.Authority().IfAuthority("department", "edit", user.Id)) { ZGZY.Model.Department departmentEdit = new Model.Department(); departmentEdit.Id = Convert.ToInt32(context.Request.Params["id"]); departmentEdit.DepartmentName = context.Request.Params["ui_department_departmentname_edit"] ?? ""; departmentEdit.Sort = Convert.ToInt32(context.Request.Params["ui_department_sort_edit"]); bool result = new ZGZY.BLL.Department().EditDepartment(departmentEdit); if (result) { userOperateLog.OperateInfo = "修改部门"; userOperateLog.IfSuccess = true; userOperateLog.Description = "修改成功,部门主键:" + departmentEdit.Id; context.Response.Write("{\"msg\":\"修改成功!\",\"success\":true}"); } else { userOperateLog.OperateInfo = "修改部门"; userOperateLog.IfSuccess = false; userOperateLog.Description = "修改失败,部门主键:" + departmentEdit.Id; context.Response.Write("{\"msg\":\"修改失败!\",\"success\":false}"); } } else { userOperateLog.OperateInfo = "修改部门"; userOperateLog.IfSuccess = false; userOperateLog.Description = "无权限,请联系管理员"; context.Response.Write("{\"msg\":\"无权限,请联系管理员!\",\"success\":false}"); } ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog); break; case "delete": if (user != null && new ZGZY.BLL.Authority().IfAuthority("department", "delete", user.Id)) { string departmentIds = context.Request.Params["id"]; if (new ZGZY.BLL.Department().DeleteDepartment(departmentIds)) { userOperateLog.OperateInfo = "删除部门"; userOperateLog.IfSuccess = true; userOperateLog.Description = "删除成功,部门主键:" + departmentIds; context.Response.Write("{\"msg\":\"删除成功!\",\"success\":true}"); } else { userOperateLog.OperateInfo = "删除部门"; userOperateLog.IfSuccess = false; userOperateLog.Description = "删除失败,部门主键:" + departmentIds; context.Response.Write("{\"msg\":\"删除失败!\",\"success\":false}"); } } else { userOperateLog.OperateInfo = "删除部门"; userOperateLog.IfSuccess = false; userOperateLog.Description = "无权限,请联系管理员"; context.Response.Write("{\"msg\":\"无权限,请联系管理员!\",\"success\":false}"); } ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog); break; default: context.Response.Write("{\"msg\":\"参数错误!\",\"success\":false}"); break; } } catch (Exception ex) { context.Response.Write("{\"msg\":\"" + ZGZY.Common.JsonHelper.StringFilter(ex.Message) + "\",\"success\":false}"); userOperateLog.OperateInfo = "部门功能异常"; userOperateLog.IfSuccess = false; userOperateLog.Description = ZGZY.Common.JsonHelper.StringFilter(ex.Message); ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog); } }
private DataTable GetData() { //-----获取查询条件------ string[] str; string[] sparasname = { "", "", "", "", "", "", "" }; string[] sparas = { "", "", "", "", "", "", "" }; sparasname[0] = "@incompid"; sparas[0] = "01"; //企业 str = Request.Form.GetValues("ui_cqcp590405_factidFilter"); sparasname[1] = "@infactid"; if (str != null) { if (str.Length > 0) { for (int i = 0; i < str.Length; i++) { sparas[1] = sparas[1] + str[i] + "|"; } } } else { sparas[1] = "ZZ"; } //日期 str = Request.Form.GetValues("ui_cqcp590405_begdateFilter"); sparasname[2] = "@inbegdate"; string[] datestrs = str[0].Split(new char[] { '-' }); string strYear = "0000" + datestrs[0]; string strMonth = "00" + datestrs[1]; string strDay = "00" + datestrs[2]; sparas[2] = strYear.Substring(strYear.Length - 4, 4) + strMonth.Substring(strMonth.Length - 2, 2) + strDay.Substring(strDay.Length - 2, 2); str = Request.Form.GetValues("ui_cqcp590405_enddateFilter"); sparasname[3] = "@inenddate"; datestrs = str[0].Split(new char[] { '-' }); strYear = "0000" + datestrs[0]; strMonth = "00" + datestrs[1]; strDay = "00" + datestrs[2]; sparas[3] = strYear.Substring(strYear.Length - 4, 4) + strMonth.Substring(strMonth.Length - 2, 2) + strDay.Substring(strDay.Length - 2, 2); //排序 str = Request.Form.GetValues("ui_cqcp590405_sortFilter"); sparasname[4] = "@insort"; if (str != null) { sparas[4] = str[0]; if (string.IsNullOrEmpty(sparas[4].Trim())) { sparas[4] = "1"; } } else { sparas[4] = "1"; } //用户 sparasname[5] = "@inuserid"; HttpContext _context = HttpContext.Current; ZGZY.Model.User user = ZGZY.Common.UserHelper.GetUser(_context); //获取cookie里的用户对象 sparas[5] = user.UserId;; //机别 str = Request.Form.GetValues("ui_cqcp590405_bujinoFilter"); sparasname[6] = "@inbujino"; if (str != null) { if (str.Length > 0) { for (int i = 0; i < str.Length; i++) { sparas[6] = sparas[6] + str[i] + "|"; } } } else { sparas[6] = "ZZ"; } DataTable dt = new ZGZY.BLL.Report().cqcp590405("sp_cqcp590405_web_new", sparasname, sparas); return(dt); }
public void ProcessRequest(HttpContext context) { //System.Web.Configuration.HttpRuntimeSection hrs = new System.Web.Configuration.HttpRuntimeSection(); //if (context.Request.ContentLength > (hrs.MaxRequestLength * 1024)) //{ // context.Response.Write("{\"msg\":\"文件不存在!\",\"success\":false}"); // return; //} context.Response.ContentType = "application/json"; string action = context.Request.Params["action"]; ZGZY.Model.User userFromCookie = ZGZY.Common.UserHelper.GetUser(context); string userId = userFromCookie.UserId; try { switch (action) { case "ordhSearch": string strWhere = "1=1"; /*基本参数*/ string sort = context.Request.Params["sort"]; //排序列 string order = context.Request.Params["order"]; //排序方式 asc或者desc int pageindex = int.Parse(context.Request.Params["page"]); int pagesize = int.Parse(context.Request.Params["rows"]); /*查询条件*/ string ui_ordh_ordh12 = context.Request.Params["ui_ordh_ordh12"] ?? ""; if (ui_ordh_ordh12.Trim() != "" && !ZGZY.Common.SqlInjection.GetString(ui_ordh_ordh12)) //防止sql注入 { strWhere += string.Format(" and ordh12 like '%{0}%'", ui_ordh_ordh12.Trim()); } int totalCount; //输出参数 string strJson = new ZGZY.BLL.Ordh().GetPager("ordh", "factid,ordid,ordh12,orddate", sort + " " + order, pagesize, pageindex, strWhere, out totalCount); context.Response.Write("{\"total\": " + totalCount.ToString() + ",\"rows\":" + strJson + "}"); break; case "ordcSearch": string ordcSearch_strWhere = "1=1"; string ordcSearch_sort = context.Request.Params["sort"]; //排序列 string ordcSearch_order = context.Request.Params["order"]; //排序方式 asc或者desc int ordcSearch_pageindex = int.Parse(context.Request.Params["page"]); int ordcSearch_pagesize = int.Parse(context.Request.Params["rows"]); string ordcSearch_compid = context.Request.Params["compid"] ?? ""; string ordcSearch_factid = context.Request.Params["factid"] ?? ""; string ordcSearch_ordid = context.Request.Params["ordid"] ?? ""; if (ordcSearch_compid.Trim() != "" && !ZGZY.Common.SqlInjection.GetString(ordcSearch_compid)) //防止sql注入 { ordcSearch_strWhere += string.Format(" and compid = '{0}'", ordcSearch_compid.Trim()); } if (ordcSearch_factid.Trim() != "" && !ZGZY.Common.SqlInjection.GetString(ordcSearch_factid)) { ordcSearch_strWhere += string.Format(" and factid = '{0}'", ordcSearch_factid.Trim()); } if (ordcSearch_ordid.Trim() != "" && !ZGZY.Common.SqlInjection.GetString(ordcSearch_ordid)) { ordcSearch_strWhere += string.Format(" and ordid = '{0}'", ordcSearch_ordid.Trim()); } int ordcSearch_totalCount; //输出参数 decimal ordcSearch_sumValue; string ordcSearch_strJson = new ZGZY.BLL.Ordc().GetPagerNewFooter("ordc", "compid,factid,ordid,addid,addmoney,memo,useing,addname,rownumber", ordcSearch_sort + " " + ordcSearch_order, ordcSearch_pagesize, ordcSearch_pageindex, ordcSearch_strWhere, @"compid,factid,ordid,addid,addmoney,memo,useing, (select addname from t_add where t_add.addid = ordc.addid) as addname, (row_number() over (order by " + ordcSearch_sort + " " + ordcSearch_order + ")) as rownumber ", out ordcSearch_totalCount, "addmoney", out ordcSearch_sumValue); //string ordcSearch_strJson = new ZGZY.BLL.Ordc().GetPager("ordc", "compid,factid,ordid,addid,addmoney,memo,useing", ordcSearch_sort + " " + ordcSearch_order, ordcSearch_pagesize, ordcSearch_pageindex, ordcSearch_strWhere, out ordcSearch_totalCount); if (string.IsNullOrEmpty(ordcSearch_sumValue.ToString())) { ordcSearch_sumValue = 0; } string ordcSearchFooter_strJson = "[{\"addid\":\"合计\", \"addmoney\":" + ordcSearch_sumValue + ", \"useing\":\"S\"}]"; //string ordcSearchFooter_strJson = "[{\"addid\":\"合计\", \"addmoney\":10, \"useing\":\"S\"}]"; context.Response.Write("{\"total\": " + ordcSearch_totalCount.ToString() + ",\"rows\":" + ordcSearch_strJson + ",\"footer\":" + ordcSearchFooter_strJson + "}"); //context.Response.Write("{\"total\": " + ordcSearch_totalCount.ToString() + ",\"rows\":" + ordcSearch_strJson + "}"); break; case "ordbSearch": string ordbSearch_strWhere = "1=1"; string ordbSearch_sort = context.Request.Params["sort"]; //排序列 string ordbSearch_order = context.Request.Params["order"]; //排序方式 asc或者desc int ordbSearch_pageindex = int.Parse(context.Request.Params["page"]); int ordbSearch_pagesize = int.Parse(context.Request.Params["rows"]); string ordbSearch_compid = context.Request.Params["compid"] ?? ""; string ordbSearch_factid = context.Request.Params["factid"] ?? ""; string ordbSearch_ordid = context.Request.Params["ordid"] ?? ""; if (ordbSearch_compid.Trim() != "" && !ZGZY.Common.SqlInjection.GetString(ordbSearch_compid)) //防止sql注入 { ordbSearch_strWhere += string.Format(" and compid = '{0}'", ordbSearch_compid.Trim()); } if (ordbSearch_factid.Trim() != "" && !ZGZY.Common.SqlInjection.GetString(ordbSearch_factid)) { ordbSearch_strWhere += string.Format(" and factid = '{0}'", ordbSearch_factid.Trim()); } if (ordbSearch_ordid.Trim() != "" && !ZGZY.Common.SqlInjection.GetString(ordbSearch_ordid)) { ordbSearch_strWhere += string.Format(" and ordid = '{0}'", ordbSearch_ordid.Trim()); } int ordbSearch_totalCount; //输出参数 string ordbSearch_strJson = new ZGZY.BLL.Ordb().GetPager("ordb", "compid,factid,ordid,stgid,uniprice", ordbSearch_sort + " " + ordbSearch_order, ordbSearch_pagesize, ordbSearch_pageindex, ordbSearch_strWhere, out ordbSearch_totalCount); context.Response.Write("{\"total\": " + ordbSearch_totalCount.ToString() + ",\"rows\":" + ordbSearch_strJson + "}"); break; case "getNewOrdid": string getNewOrdid_factid = context.Request.Params["factid"] ?? "99"; string getNewOrdid_date = context.Request.Params["date"] ?? "0000"; string[] getNewOrdid_dates = getNewOrdid_date.Split('-'); string getNewOrdid_date_yy = "0000" + getNewOrdid_dates[0]; string getNewOrdid_date_mm = "00" + getNewOrdid_dates[1]; getNewOrdid_date = getNewOrdid_date_yy.Substring(getNewOrdid_date_yy.Length - 2) + getNewOrdid_date_mm.Substring(getNewOrdid_date_mm.Length - 2); string getNewOrdid_ordid = new ZGZY.BLL.Ordh().GetNewOrdid(getNewOrdid_factid, getNewOrdid_date); context.Response.Write("{\"newordid\": \"" + getNewOrdid_ordid + "\",\"success\":true}"); break; case "getOrdhById": string getOrdhById_factid = context.Request.Params["factid"] ?? ""; string getOrdhById_ordid = context.Request.Params["ordid"] ?? ""; ZGZY.Model.ordh ordhEt = new Model.ordh(); ordhEt = new ZGZY.BLL.Ordh().GetOrdhById("01", getOrdhById_factid, getOrdhById_ordid); string getOrdhById_orddate = ordhEt.orddate.Substring(0, 4) + "-" + ordhEt.orddate.Substring(4, 2) + "-" + ordhEt.orddate.Substring(6, 2); string getOrdhById_ordh12 = ordhEt.ordh12 ?? ""; decimal getOrdhById_maxqty = ordhEt.maxqty ?? 0; string getOrdhById_custid = ordhEt.custid ?? ""; string getOrdhById_empid = ordhEt.empid ?? ""; string getOrdhById_ordh33 = ordhEt.ordh33 ?? ""; context.Response.Write("{\"factid\": \"" + ordhEt.factid.ToString() + "\"," + "\"ordid\": \"" + ordhEt.ordid.ToString() + "\"," + "\"orddate\": \"" + getOrdhById_orddate + "\"," + "\"ordh12\": \"" + getOrdhById_ordh12 + "\"," + "\"maxqty\": \"" + getOrdhById_maxqty.ToString() + "\"," + "\"custid\": \"" + getOrdhById_custid + "\"," + "\"empid\": \"" + getOrdhById_empid + "\"," + "\"ordh33\": \"" + getOrdhById_ordh33 + "\"," + "\"success\":true}"); break; case "ordhAdd": string ui_ordhedit_factid_add = context.Request.Params["ui_ordhedit_factid"] ?? ""; string ui_ordhedit_ordid_add = context.Request.Params["ui_ordhedit_ordid"] ?? ""; string ui_ordhedit_orddate_add = context.Request.Params["ui_ordhedit_orddate"] ?? ""; string ui_ordhedit_ordh12_add = context.Request.Params["ui_ordhedit_ordh12"] ?? ""; string[] ui_ordhedit_orddate_adds = ui_ordhedit_orddate_add.Split('-'); string ui_ordhedit_orddate_add_yy = "0000" + ui_ordhedit_orddate_adds[0]; string ui_ordhedit_orddate_add_mm = "00" + ui_ordhedit_orddate_adds[1]; string ui_ordhedit_orddate_add_dd = "00" + ui_ordhedit_orddate_adds[2]; ui_ordhedit_orddate_add = ui_ordhedit_orddate_add_yy.Substring(ui_ordhedit_orddate_add_yy.Length - 4) + ui_ordhedit_orddate_add_mm.Substring(ui_ordhedit_orddate_add_mm.Length - 2) + ui_ordhedit_orddate_add_dd.Substring(ui_ordhedit_orddate_add_dd.Length - 2); decimal ui_ordhedit_maxqty_add = decimal.Parse(context.Request.Params["ui_ordhedit_maxqty"] ?? "0"); string ui_ordhedit_custid_add = context.Request.Params["ui_ordhedit_custid"] ?? ""; string ui_ordhedit_empid_add = context.Request.Params["ui_ordhedit_empid"] ?? ""; string ui_ordhedit_ordh33_add = ""; if (context.Request.Params["ui_ordhedit_ordh33"] == "on") { ui_ordhedit_ordh33_add = "Y"; } else { ui_ordhedit_ordh33_add = "N"; } ZGZY.Model.ordh ordhAdd = new Model.ordh(); ordhAdd.compid = "01"; ordhAdd.factid = ui_ordhedit_factid_add; ordhAdd.ordid = ui_ordhedit_ordid_add.Trim(); ordhAdd.orddate = ui_ordhedit_orddate_add.Trim(); ordhAdd.ordh12 = ui_ordhedit_ordh12_add.Trim(); ordhAdd.maxqty = ui_ordhedit_maxqty_add; ordhAdd.custid = ui_ordhedit_custid_add; ordhAdd.empid = ui_ordhedit_empid_add; ordhAdd.ordh33 = ui_ordhedit_ordh33_add; ordhAdd.updid = userId; ordhAdd.updtime = DateTime.Now; new ZGZY.BLL.Ordh().AddBeforeSave(ordhAdd); //数据验证 new ZGZY.BLL.Ordh().BeforeSave(ordhAdd); int ordidadd = new ZGZY.BLL.Ordh().AddOrdh(ordhAdd); if (ordidadd > 0) { context.Response.Write("{\"msg\":\"新增成功!\",\"success\":true}"); } else { context.Response.Write("{\"msg\":\"新增失败!\",\"success\":false}"); } break; case "ordhEdit": string ui_ordhedit_factid_edit = context.Request.Params["ui_ordhedit_factid"] ?? ""; string ui_ordhedit_ordid_edit = context.Request.Params["ui_ordhedit_ordid"] ?? ""; string ui_ordhedit_orddate_edit = context.Request.Params["ui_ordhedit_orddate"] ?? ""; string ui_ordhedit_ordh12_edit = context.Request.Params["ui_ordhedit_ordh12"] ?? ""; string[] ui_ordhedit_orddate_edits = ui_ordhedit_orddate_edit.Split('-'); string ui_ordhedit_orddate_edit_yy = "0000" + ui_ordhedit_orddate_edits[0]; string ui_ordhedit_orddate_edit_mm = "00" + ui_ordhedit_orddate_edits[1]; string ui_ordhedit_orddate_edit_dd = "00" + ui_ordhedit_orddate_edits[2]; ui_ordhedit_orddate_edit = ui_ordhedit_orddate_edit_yy.Substring(ui_ordhedit_orddate_edit_yy.Length - 4) + ui_ordhedit_orddate_edit_mm.Substring(ui_ordhedit_orddate_edit_mm.Length - 2) + ui_ordhedit_orddate_edit_dd.Substring(ui_ordhedit_orddate_edit_dd.Length - 2); decimal ui_ordhedit_maxqty_edit = decimal.Parse(context.Request.Params["ui_ordhedit_maxqty"] ?? "0"); string ui_ordhedit_custid_edit = context.Request.Params["ui_ordhedit_custid"] ?? ""; string ui_ordhedit_empid_edit = context.Request.Params["ui_ordhedit_empid"] ?? ""; string ui_ordhedit_ordh33_edit = ""; if (context.Request.Params["ui_ordhedit_ordh33"] == "on") { ui_ordhedit_ordh33_edit = "Y"; } else { ui_ordhedit_ordh33_edit = "N"; } ZGZY.Model.ordh ordhEdit = new Model.ordh(); ordhEdit.compid = "01"; ordhEdit.factid = ui_ordhedit_factid_edit.Trim(); ordhEdit.ordid = ui_ordhedit_ordid_edit.Trim(); ordhEdit.orddate = ui_ordhedit_orddate_edit.Trim(); ordhEdit.ordh12 = ui_ordhedit_ordh12_edit.Trim(); ordhEdit.maxqty = ui_ordhedit_maxqty_edit; ordhEdit.custid = ui_ordhedit_custid_edit; ordhEdit.empid = ui_ordhedit_empid_edit; ordhEdit.ordh33 = ui_ordhedit_ordh33_edit; ordhEdit.updid = userId; ordhEdit.updtime = DateTime.Now; new ZGZY.BLL.Ordh().BeforeSave(ordhEdit); //数据验证 bool ordidupdate = new ZGZY.BLL.Ordh().EditOrdh(ordhEdit); if (ordidupdate) { context.Response.Write("{\"msg\":\"修改成功!\",\"success\":true}"); } else { context.Response.Write("{\"msg\":\"修改失败!\",\"success\":false}"); } break; case "ordhDelete": string ui_ordhedit_compid_delete = "01"; string ui_ordhedit_factid_delete = context.Request.Params["factid"] ?? ""; string ui_ordhedit_ordid_delete = context.Request.Params["ordid"] ?? ""; if (new ZGZY.BLL.Ordh().DeleteOrdh(ui_ordhedit_compid_delete, ui_ordhedit_factid_delete, ui_ordhedit_ordid_delete)) { context.Response.Write("{\"msg\":\"删除成功!\",\"success\":true}"); } else { context.Response.Write("{\"msg\":\"删除失败!\",\"success\":false}"); } break; case "ordcSave": string inserted = context.Request.Form["inserted"]; string updated = context.Request.Form["updated"]; if (updated != null) { List <Model.ordc> ordcupds = new List <Model.ordc>(); //POCO test robinxie 20151010 List <Model.ordc> ordcTransUpd2 = JsonDeserialize <List <Model.ordc> >(updated); //List<ordcTrans> ordcTransUpd = JsonDeserialize<List<ordcTrans>>(updated); //foreach (ordcTrans ordctrans in ordcTransUpd) foreach (Model.ordc ordctrans in ordcTransUpd2) { Model.ordc ordcupd = new Model.ordc(); ordcupd.compid = ordctrans.compid; ordcupd.factid = ordctrans.factid; ordcupd.ordid = ordctrans.ordid; ordcupd.addid = ordctrans.addid; ordcupd.addmoney = ordctrans.addmoney; ordcupd.useing = ordctrans.useing; ordcupd.memo = ordctrans.memo; ordcupd.updid = userId; ordcupd.updtime = ordctrans.updtime; new ZGZY.BLL.Ordc().BeforeSave(ordcupd, ordctrans.rownumber); } //foreach (ordcTrans ordctrans in ordcTransUpd) foreach (Model.ordc ordctrans in ordcTransUpd2) { Model.ordc ordcupd = new Model.ordc(); ordcupd.compid = ordctrans.compid; ordcupd.factid = ordctrans.factid; ordcupd.ordid = ordctrans.ordid; ordcupd.addid = ordctrans.addid; ordcupd.addmoney = ordctrans.addmoney; ordcupd.useing = ordctrans.useing; ordcupd.memo = ordctrans.memo; ordcupd.updid = userId; ordcupd.updtime = ordctrans.updtime; bool ordcedit = new ZGZY.BLL.Ordc().EditOrdc(ordcupd); if (!ordcedit) { context.Response.Write("{\"msg\":\"修改失败!\",\"success\":false}"); break; } } } if (inserted != null) { List <Model.ordc> ordcinss = new List <Model.ordc>(); List <ordcTrans> ordcTransIns = JsonDeserialize <List <ordcTrans> >(inserted); foreach (ordcTrans ordctrans in ordcTransIns) { Model.ordc ordcins = new Model.ordc(); ordcins.compid = ordctrans.compid; ordcins.factid = ordctrans.factid; ordcins.ordid = ordctrans.ordid; ordcins.addid = ordctrans.addid; ordcins.addmoney = ordctrans.addmoney; ordcins.useing = ordctrans.useing; ordcins.memo = ordctrans.memo; ordcins.updid = userId; ordcins.updtime = ordctrans.updtime; new ZGZY.BLL.Ordc().AddBeforeSave(ordcins, ordctrans.rownumber); int ordcadd = new ZGZY.BLL.Ordc().AddOrdc(ordcins); if (ordcadd <= 0) { context.Response.Write("{\"msg\":\"新增失败!\",\"success\":false}"); break; } } } context.Response.Write("{\"msg\":\"保存成功!\",\"success\":true}"); break; case "ordcDelete": string deleted = context.Request.Form["deleted"]; if (deleted != null) { List <Model.ordc> ordcdels = new List <Model.ordc>(); List <ordcTrans> ordcTransDel = JsonDeserialize <List <ordcTrans> >(deleted); foreach (ordcTrans ordctrans in ordcTransDel) { bool ordceIsdel = new ZGZY.BLL.Ordc().DeleteOrdc(ordctrans.compid, ordctrans.factid, ordctrans.ordid, ordctrans.addid); if (!ordceIsdel) { context.Response.Write("{\"msg\":\"删除失败!\",\"success\":false}"); break; } } } context.Response.Write("{\"msg\":\"删除成功!\",\"success\":true}"); break; case "ordbAdd": string ui_ordhedit_ordbadd_compid = context.Request.Params["ui_ordhedit_ordbadd_compid"] ?? ""; string ui_ordhedit_ordbadd_factid = context.Request.Params["ui_ordhedit_ordbadd_factid"] ?? ""; string ui_ordhedit_ordbadd_ordid = context.Request.Params["ui_ordhedit_ordbadd_ordid"] ?? ""; string ui_ordhedit_ordbadd_stgid = context.Request.Params["ui_ordhedit_ordbadd_stgid"] ?? ""; decimal ui_ordhedit_ordbadd_uniprice = decimal.Parse(context.Request.Params["ui_ordhedit_ordbadd_uniprice"] ?? "0"); ZGZY.Model.ordb ordbAdd = new Model.ordb(); ordbAdd.compid = ui_ordhedit_ordbadd_compid.Trim(); ordbAdd.factid = ui_ordhedit_ordbadd_factid.Trim(); ordbAdd.ordid = ui_ordhedit_ordbadd_ordid.Trim(); ordbAdd.stgid = ui_ordhedit_ordbadd_stgid.Trim(); ordbAdd.uniprice = ui_ordhedit_ordbadd_uniprice; ordbAdd.updid = userId; ordbAdd.updtime = DateTime.Now; int ifordbAdd = new ZGZY.BLL.Ordb().AddOrdb(ordbAdd); if (ifordbAdd > 0) { context.Response.Write("{\"msg\":\"新增成功!\",\"success\":true}"); } else { context.Response.Write("{\"msg\":\"新增失败!\",\"success\":false}"); } break; case "ordbDelete": //string ui_ordhedit_ordbdelete_compid = context.Request.Params["ui_ordhedit_ordbadd_compid"] ?? ""; string ui_ordhedit_ordbdelete_compid = "01"; string ui_ordhedit_ordbdelete_factid = context.Request.Params["factid"] ?? ""; string ui_ordhedit_ordbdelete_ordid = context.Request.Params["ordid"] ?? ""; string ui_ordhedit_ordbdelete_stgid = context.Request.Params["stgid"] ?? ""; if (new ZGZY.BLL.Ordb().DeleteOrdb(ui_ordhedit_ordbdelete_compid, ui_ordhedit_ordbdelete_factid, ui_ordhedit_ordbdelete_ordid, ui_ordhedit_ordbdelete_stgid)) { context.Response.Write("{\"msg\":\"删除成功!\",\"success\":true}"); } else { context.Response.Write("{\"msg\":\"删除失败!\",\"success\":false}"); } break; case "ordbEdit": string ui_ordhedit_ordbedit_compid = "01"; string ui_ordhedit_ordbedit_factid = context.Request.Params["ui_ordhedit_ordbedit_factid"] ?? ""; string ui_ordhedit_ordbedit_ordid = context.Request.Params["ui_ordhedit_ordbedit_ordid"] ?? ""; string ui_ordhedit_ordbedit_stgid = context.Request.Params["ui_ordhedit_ordbedit_stgid2"] ?? ""; decimal ui_ordhedit_ordbedit_uniprice = decimal.Parse(context.Request.Params["ui_ordhedit_ordbedit_uniprice"] ?? "0"); ZGZY.Model.ordb ordbEdit = new Model.ordb(); ordbEdit.compid = ui_ordhedit_ordbedit_compid.Trim(); ordbEdit.factid = ui_ordhedit_ordbedit_factid.Trim(); ordbEdit.ordid = ui_ordhedit_ordbedit_ordid.Trim(); ordbEdit.stgid = ui_ordhedit_ordbedit_stgid.Trim(); ordbEdit.uniprice = ui_ordhedit_ordbedit_uniprice; bool ifordbedit = new ZGZY.BLL.Ordb().EditOrdb(ordbEdit); if (ifordbedit) { context.Response.Write("{\"msg\":\"修改成功!\",\"success\":true}"); } else { context.Response.Write("{\"msg\":\"修改失败!\",\"success\":false}"); } break; case "uploadSearch": string uploadSearch_strWhere = "1=1"; string uploadSearch_sort = context.Request.Params["sort"]; //排序列 string uploadSearch_order = context.Request.Params["order"]; //排序方式 asc或者desc int uploadSearch_pageindex = int.Parse(context.Request.Params["page"]); int uploadSearch_pagesize = int.Parse(context.Request.Params["rows"]); string uploadSearch_compid = context.Request.Params["compid"] ?? ""; string uploadSearch_factid = context.Request.Params["factid"] ?? ""; string uploadSearch_ordid = context.Request.Params["ordid"] ?? ""; if (uploadSearch_compid.Trim() != "" && !ZGZY.Common.SqlInjection.GetString(uploadSearch_compid)) //防止sql注入 { uploadSearch_strWhere += string.Format(" and compid = '{0}'", uploadSearch_compid.Trim()); } if (uploadSearch_factid.Trim() != "" && !ZGZY.Common.SqlInjection.GetString(uploadSearch_factid)) { uploadSearch_strWhere += string.Format(" and factid = '{0}'", uploadSearch_factid.Trim()); } if (uploadSearch_ordid.Trim() != "" && !ZGZY.Common.SqlInjection.GetString(uploadSearch_ordid)) { uploadSearch_strWhere += string.Format(" and ordid = '{0}'", uploadSearch_ordid.Trim()); } int uploadSearch_totalCount; //输出参数 string uploadSearch_strJson = new ZGZY.BLL.Ordb().GetPager("fileupload", "id,filename,address", uploadSearch_sort + " " + uploadSearch_order, uploadSearch_pagesize, uploadSearch_pageindex, uploadSearch_strWhere, out uploadSearch_totalCount); context.Response.Write("{\"total\": " + uploadSearch_totalCount.ToString() + ",\"rows\":" + uploadSearch_strJson + "}"); break; case "fileUpload": HttpFileCollection httpFileCollection = context.Request.Files; HttpPostedFile file = null; string ui_ordhedit_fileUpload_compid = context.Request.Params["ui_ordhedit_fileupload_compid"] ?? ""; string ui_ordhedit_fileUpload_factid = context.Request.Params["ui_ordhedit_fileupload_factid"] ?? ""; string ui_ordhedit_fileUpload_ordid = context.Request.Params["ui_ordhedit_fileupload_ordid"] ?? ""; string ui_ordhedit_fileUpload_filename = context.Request.Params["ui_ordh_edit_fileupload_filename"] ?? ""; string ui_ordhedit_fileUpload_address = "/LoadFiles/" + ui_ordhedit_fileUpload_factid + "/" + ui_ordhedit_fileUpload_ordid; string ui_ordhedit_fileUpload_url = context.Request.Params["loadURL"] ?? ""; if (httpFileCollection.Count > 0) { file = httpFileCollection[0]; } if (file != null) { //if (file.ContentLength > 10485760) //{ // context.Response.Write("{\"msg\":\"文件大小不可超过10MB!\",\"success\":false}"); //} //else //{ try { ordhSaveFile(ui_ordhedit_fileUpload_url + ui_ordhedit_fileUpload_address, file.FileName, file); //数据库存档 ZGZY.Model.fileupload fileUpload = new Model.fileupload(); fileUpload.compid = ui_ordhedit_fileUpload_compid; fileUpload.factid = ui_ordhedit_fileUpload_factid; fileUpload.ordid = ui_ordhedit_fileUpload_ordid; fileUpload.filename = ui_ordhedit_fileUpload_filename; fileUpload.address = ui_ordhedit_fileUpload_address; int iffileUpload = new ZGZY.BLL.FileUpload().AddFileUpload(fileUpload); if (iffileUpload > 0) { context.Response.Write("{\"msg\":\"上传成功!\",\"success\":true}"); } else { context.Response.Write("{\"msg\":\"上传失败!\",\"success\":false}"); } } catch (Exception e) { context.Response.Write("{\"msg\":\"" + e.Message + "\",\"success\":false}"); } } else { context.Response.Write("{\"msg\":\"文件不存在!\",\"success\":false}"); } break; default: context.Response.Write("{\"msg\":\"参数错误!\",\"success\":false}"); break; } } catch (Exception ex) { context.Response.Write("{\"msg\":\"" + ZGZY.Common.JsonHelper.StringFilter(ex.Message) + "\",\"success\":false}"); } }
private DataTable GetData() { //-----获取查询条件------ string[] str; string[] sparasname = { "", "", "", "", "", "", "", "", "", "" }; string[] sparas = { "", "", "", "", "", "", "", "", "", "" }; sparasname[0] = "@incompid"; sparas[0] = "01"; //企业 str = Request.Form.GetValues("ui_cqcp590401_factidFilter"); sparasname[1] = "@infactid"; if (str != null) { if (str.Length > 0) { for (int i = 0; i < str.Length; i++) { sparas[1] = sparas[1] + str[i] + "|"; } } } else { sparas[1] = "ZZ"; } //日期 str = Request.Form.GetValues("ui_cqcp590401_begdateFilter"); sparasname[2] = "@inbegdatetime"; sparas[2] = str[0]; str = Request.Form.GetValues("ui_cqcp590401_enddateFilter"); sparasname[3] = "@inenddatetime"; sparas[3] = str[0]; //强度 str = Request.Form.GetValues("ui_cqcp590401_strengthFilter"); sparasname[4] = "@instrength"; if (str != null) { sparas[4] = str[0]; if (string.IsNullOrEmpty(sparas[4].Trim())) { sparas[4] = "ZZ"; } } else { sparas[4] = "ZZ"; } //工程名称 str = Request.Form.GetValues("ui_cqcp590401_engnameFilter"); sparasname[5] = "@inengname"; if (str != null) { sparas[5] = str[0]; if (string.IsNullOrEmpty(sparas[5].Trim())) { sparas[5] = "ZZ"; } } else { sparas[5] = "ZZ"; } //施工部位 str = Request.Form.GetValues("ui_cqcp590401_workpartFilter"); sparasname[6] = "@inworkpart"; if (str != null) { sparas[6] = str[0]; if (string.IsNullOrEmpty(sparas[6].Trim())) { sparas[6] = "ZZ"; } } else { sparas[6] = "ZZ"; } //车号 str = Request.Form.GetValues("ui_cqcp590401_caridFilter"); sparasname[7] = "@incarid"; if (str != null) { sparas[7] = str[0]; if (string.IsNullOrEmpty(sparas[7].Trim())) { sparas[7] = "ZZ"; } } else { sparas[7] = "ZZ"; } //客户名称 str = Request.Form.GetValues("ui_cqcp590401_custnameFilter"); sparasname[8] = "@incustname"; if (str != null) { sparas[8] = str[0]; if (string.IsNullOrEmpty(sparas[8].Trim())) { sparas[8] = "ZZ"; } } else { sparas[8] = "ZZ"; } sparasname[9] = "@inuserid"; HttpContext _context = HttpContext.Current; ZGZY.Model.User user = ZGZY.Common.UserHelper.GetUser(_context); //获取cookie里的用户对象 sparas[9] = user.UserId;; DataTable dt = new ZGZY.BLL.Report().cqcp590401("sp_cqcp590401_web_new", sparasname, sparas); return(dt); }
public void ProcessRequest(HttpContext context) { context.Response.ContentType = "application/json"; string action = context.Request.Params["action"]; ZGZY.Model.UserOperateLog userOperateLog = null; //操作日志对象 try { ZGZY.Model.User user = ZGZY.Common.UserHelper.GetUser(context); //获取cookie里的用户对象 userOperateLog = new Model.UserOperateLog(); userOperateLog.UserIp = context.Request.UserHostAddress; userOperateLog.UserName = user.UserId; switch (action) { case "getUserMenu": //获取特定用户能看到的菜单(左侧树) context.Response.Write(new ZGZY.BLL.Menu().GetUserMenu(user.Id)); break; case "getAllMenu": //根据角色id获取此角色有的权限(设置角色时自动勾选已经有的按钮权限) int roleid = Convert.ToInt32(context.Request.Params["roleid"]); //角色id context.Response.Write(new ZGZY.BLL.Menu().GetAllMenu(roleid)); break; case "getMyAuthority": //前台根据用户名查“我的权限” context.Response.Write(new ZGZY.BLL.Menu().GetMyAuthority(user.Id)); userOperateLog.OperateInfo = "查询我的信息"; userOperateLog.IfSuccess = true; userOperateLog.Description = "查询我的信息"; ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog); break; case "search": string strWhere = "1=1"; string sort = context.Request.Params["sort"] == null ? "Id" : context.Request.Params["sort"]; //排序列 string order = context.Request.Params["order"] == null ? "asc" : context.Request.Params["order"]; //排序方式 asc或者desc int pageindex = int.Parse(context.Request.Params["page"]); int pagesize = int.Parse(context.Request.Params["rows"]); int totalCount; //输出参数 string strJson = ""; //输出结果 if (order.IndexOf(',') != -1) //如果有","就是多列排序(不能拿列判断,列名中间可能有","符号) { //多列排序: //sort:ParentId,Sort,AddDate //order:asc,desc,asc string sortMulti = ""; //拼接排序条件,例:ParentId desc,Sort asc string[] sortArray = sort.Split(','); //列名中间有","符号,这里也要出错。正常不会有 string[] orderArray = order.Split(','); for (int i = 0; i < sortArray.Length; i++) { sortMulti += sortArray[i] + " " + orderArray[i] + ","; } strJson = new ZGZY.BLL.Menu().GetPager("tbMenu", "Id,Name,ParentId,Code,LinkAddress,Icon,Sort,AddDate", sortMulti.Trim(','), pagesize, pageindex, strWhere, out totalCount); userOperateLog.Description = "查询条件:" + strWhere + " 排序:" + sortMulti.Trim(',') + " 页码/每页大小:" + pageindex + " " + pagesize; } else { strJson = new ZGZY.BLL.Menu().GetPager("tbMenu", "Id,Name,ParentId,Code,LinkAddress,Icon,Sort,AddDate", sort + " " + order, pagesize, pageindex, strWhere, out totalCount); userOperateLog.Description = "查询条件:" + strWhere + " 排序:" + sort + " " + order + " 页码/每页大小:" + pageindex + " " + pagesize; } context.Response.Write("{\"total\": " + totalCount.ToString() + ",\"rows\":" + strJson + "}"); userOperateLog.OperateInfo = "查询菜单"; userOperateLog.IfSuccess = true; ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog); break; case "add": DbHelper db = new DbHelper(); Result rs = new Result(); string sqlMenu = @"insert into tbMenu(name,parentid,code,linkaddress,adddate) values('{0}',{1},'{2}','{3}',getdate());"; string formType = context.Request["formType"]; string formName = context.Request["formName"]; string mainFormID = context.Request["mainFormID"]; string htmlPath = context.Request["htmlPath"]; string sqlExist = "select count(1) from tbMenu where name='" + formName + "';"; int count = db.ExecuteScalar(sqlExist); if (count > 0) { rs.status = 0; rs.msg = "该界面名称已经存在,请检查。"; context.Response.Write("{\"msg\":\"该界面名称已经存在,请检查。\",\"success\":false}"); return; } else { if (formType == "mainForm") { sqlMenu = string.Format(sqlMenu, formName, "0", "", ""); } else { sqlMenu = string.Format(sqlMenu, formName, mainFormID, "Function", htmlPath); } string sqlMenuButton = "insert into tbMenuButton select id, 1 from tbmenu where name='" + formName + "';"; if (db.ExecuteNonQuery(sqlMenu) == 1) { if (db.ExecuteNonQuery(sqlMenuButton) == 1) { rs.status = 1; rs.msg = "保存成功!"; } } else { rs.status = 0; rs.msg = "服务器繁忙,请稍后再试!"; } } rs.item = "[]"; string json = JsonConvert.SerializeObject(rs); context.Response.Clear(); context.Response.ContentEncoding = Encoding.UTF8; context.Response.ContentType = "application/json"; context.Response.Write(json); context.Response.Flush(); context.Response.End(); break; default: context.Response.Write("{\"result\":\"参数错误!\",\"success\":false}"); break; } } catch (Exception ex) { context.Response.Write("{\"msg\":\"" + ZGZY.Common.JsonHelper.StringFilter(ex.Message) + "\",\"success\":false}"); userOperateLog.OperateInfo = "菜单功能异常"; userOperateLog.IfSuccess = false; userOperateLog.Description = ZGZY.Common.JsonHelper.StringFilter(ex.Message); ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog); } }
public void ProcessRequest(HttpContext context) { context.Response.ContentType = "application/json"; string action = context.Request.Params["action"]; ZGZY.Model.UserOperateLog userOperateLog = null; //操作日志对象 try { ZGZY.Model.User userFromCookie = ZGZY.Common.UserHelper.GetUser(context); //获取cookie里的用户对象 userOperateLog = new Model.UserOperateLog(); userOperateLog.UserIp = context.Request.UserHostAddress; userOperateLog.UserName = userFromCookie.UserId; switch (action) { case "firstlogin": int ui_user_firstlogin_id = Convert.ToInt32(context.Request.Params["ui_user_firstlogin_id"]); string ui_user_firstlogin_pwd = context.Request.Params["ui_user_firstlogin_pwd"] ?? ""; if (userFromCookie != null && userFromCookie.Id == ui_user_firstlogin_id) //只能修改当前登录的用户 { ZGZY.Model.User initUser = new Model.User(); initUser.Id = ui_user_firstlogin_id; initUser.UserPwd = ZGZY.Common.Md5.GetMD5String(ui_user_firstlogin_pwd); //加密 if (initUser.UserPwd != userFromCookie.UserPwd) { if (new ZGZY.BLL.User().InitUserPwd(initUser)) { //修改成功需要重写cookie,否则cookie里的密码不对下次经过bg_user_login.asxh里的getuser语句块就自动退出了 FormsIdentity id = (FormsIdentity)context.User.Identity; FormsAuthenticationTicket ticketOld = id.Ticket; userFromCookie.UserPwd = initUser.UserPwd; //赋值新密码,其他属性不变 FormsAuthentication.SignOut(); FormsAuthenticationTicket ticket = new FormsAuthenticationTicket ( 2, userFromCookie.UserId, DateTime.Now, ticketOld.Expiration, false, new JavaScriptSerializer().Serialize(userFromCookie) //序列化新的用户对象 ); string encTicket = FormsAuthentication.Encrypt(ticket); HttpCookie cookie = new HttpCookie(FormsAuthentication.FormsCookieName, encTicket); if (ticket.Expiration != new DateTime(9999, 12, 31)) //不是默认时间才设置过期时间,否则会话cookie { cookie.Expires = ticketOld.Expiration; } context.Response.Cookies.Add(cookie); userOperateLog.OperateInfo = "用户重置密码"; userOperateLog.IfSuccess = true; userOperateLog.Description = "重置密码成功"; context.Response.Write("{\"msg\":\"重置密码成功!\",\"success\":true}"); } else { userOperateLog.OperateInfo = "用户重置密码"; userOperateLog.IfSuccess = false; userOperateLog.Description = "重置密码失败"; context.Response.Write("{\"msg\":\"重置密码失败!\",\"success\":false}"); } } else { userOperateLog.OperateInfo = "用户重置密码"; userOperateLog.IfSuccess = false; userOperateLog.Description = "重置密码失败,不能和默认密码一样"; context.Response.Write("{\"msg\":\"重置密码失败,不能和默认密码一样!\",\"success\":false}"); } } else { userOperateLog.OperateInfo = "用户重置密码"; userOperateLog.IfSuccess = false; userOperateLog.Description = "未知错误,重置密码失败"; context.Response.Write("{\"msg\":\"未知错误,重置密码失败!\",\"success\":false}"); } ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog); break; case "changepwd": string ui_user_userchangepwd_originalpwd = context.Request.Params["ui_user_userchangepwd_originalpwd"] ?? ""; string ui_user_userchangepwd_newpwd = context.Request.Params["ui_user_userchangepwd_newpwd"] ?? ""; ZGZY.Model.User userChangePwd = new Model.User(); userChangePwd.Id = userFromCookie.Id; userChangePwd.UserPwd = ZGZY.Common.Md5.GetMD5String(ui_user_userchangepwd_newpwd); //md5加密 if (ZGZY.Common.Md5.GetMD5String(ui_user_userchangepwd_originalpwd) == userFromCookie.UserPwd) { if (new ZGZY.BLL.User().ChangePwd(userChangePwd)) { FormsAuthentication.SignOut(); //这里如果不退出还得重写cookie userOperateLog.OperateInfo = "用户修改密码"; userOperateLog.IfSuccess = true; userOperateLog.Description = "修改成功,用户主键:" + userChangePwd.Id; context.Response.Write("{\"msg\":\"修改成功,正在跳转到登陆页面!\",\"success\":true}"); } else { userOperateLog.OperateInfo = "用户修改密码"; userOperateLog.IfSuccess = false; userOperateLog.Description = "修改失败"; context.Response.Write("{\"msg\":\"修改失败!\",\"success\":false}"); } } else { userOperateLog.OperateInfo = "用户修改密码"; userOperateLog.IfSuccess = false; userOperateLog.Description = "原密码不正确"; context.Response.Write("{\"msg\":\"原密码不正确!\",\"success\":false}"); } ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog); break; case "getUserInfo": context.Response.Write(new ZGZY.BLL.User().GetUserInfo(userFromCookie.Id)); //“我的信息” break; case "search": string strWhere = "1=1"; string sort = context.Request.Params["sort"]; //排序列 string order = context.Request.Params["order"]; //排序方式 asc或者desc int pageindex = int.Parse(context.Request.Params["page"]); int pagesize = int.Parse(context.Request.Params["rows"]); string ui_user_userid = context.Request.Params["ui_user_userid"] ?? ""; string ui_user_username = context.Request.Params["ui_user_username"] ?? ""; string ui_user_isable = context.Request.Params["ui_user_isable"] ?? ""; string ui_user_ifchangepwd = context.Request.Params["ui_user_ifchangepwd"] ?? ""; string ui_user_description = context.Request.Params["ui_user_description"] ?? ""; string ui_user_adddatestart = context.Request.Params["ui_user_adddatestart"] ?? ""; string ui_user_adddateend = context.Request.Params["ui_user_adddateend"] ?? ""; if (ui_user_userid.Trim() != "" && !ZGZY.Common.SqlInjection.GetString(ui_user_userid)) //防止sql注入 { strWhere += string.Format(" and UserId like '%{0}%'", ui_user_userid.Trim()); } if (ui_user_username.Trim() != "" && !ZGZY.Common.SqlInjection.GetString(ui_user_username)) { strWhere += string.Format(" and UserName like '%{0}%'", ui_user_username.Trim()); } if (ui_user_description.Trim() != "" && !ZGZY.Common.SqlInjection.GetString(ui_user_description)) { strWhere += string.Format(" and Description like '%{0}%'", ui_user_description.Trim()); } if (ui_user_isable.Trim() != "select" && ui_user_isable.Trim() != "") { strWhere += " and IsAble = '" + ui_user_isable.Trim() + "'"; } if (ui_user_ifchangepwd.Trim() != "select" && ui_user_ifchangepwd.Trim() != "") { strWhere += " and IfChangePwd = '" + ui_user_ifchangepwd.Trim() + "'"; } if (ui_user_adddatestart.Trim() != "") { strWhere += " and AddDate > '" + ui_user_adddatestart.Trim() + "'"; } if (ui_user_adddateend.Trim() != "") { strWhere += " and AddDate < '" + ui_user_adddateend.Trim() + "'"; } int totalCount; //输出参数 string strJson = new ZGZY.BLL.User().GetPager("tbUser", "Id,UserId,UserName,IsAble,IfChangePwd,AddDate,Description", sort + " " + order, pagesize, pageindex, strWhere, out totalCount); context.Response.Write("{\"total\": " + totalCount.ToString() + ",\"rows\":" + strJson + "}"); userOperateLog.OperateInfo = "查询用户"; userOperateLog.IfSuccess = true; userOperateLog.Description = "查询条件:" + strWhere + " 排序:" + sort + " " + order + " 页码/每页大小:" + pageindex + " " + pagesize; ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog); break; case "add": if (userFromCookie != null && new ZGZY.BLL.Authority().IfAuthority("user", "add", userFromCookie.Id)) { string ui_user_userid_add = context.Request.Params["ui_user_userid_add"] ?? ""; string ui_user_username_add = context.Request.Params["ui_user_username_add"] ?? ""; bool ui_user_isable_add = context.Request.Params["ui_user_isable_add"] == null ? false : true; bool ui_user_ifchangepwd_add = context.Request.Params["ui_user_ifchangepwd_add"] == null ? false : true; string ui_user_description_add = context.Request.Params["ui_user_description_add"] ?? ""; ZGZY.Model.User userAdd = new Model.User(); userAdd.UserId = ui_user_userid_add.Trim(); userAdd.UserName = ui_user_username_add.Trim(); userAdd.UserPwd = ZGZY.Common.Md5.GetMD5String("123"); //md5加密 userAdd.IsAble = ui_user_isable_add; userAdd.IfChangePwd = ui_user_ifchangepwd_add; userAdd.Description = ui_user_description_add.Trim(); int userId = new ZGZY.BLL.User().AddUser(userAdd); if (userId > 0) { userOperateLog.OperateInfo = "添加用户"; userOperateLog.IfSuccess = true; userOperateLog.Description = "添加成功,用户主键:" + userId; context.Response.Write("{\"msg\":\"添加成功!默认密码是【123】\",\"success\":true}"); } else { userOperateLog.OperateInfo = "添加用户"; userOperateLog.IfSuccess = false; userOperateLog.Description = "添加失败"; context.Response.Write("{\"msg\":\"添加失败!\",\"success\":false}"); } } else { userOperateLog.OperateInfo = "添加用户"; userOperateLog.IfSuccess = false; userOperateLog.Description = "无权限,请联系管理员"; context.Response.Write("{\"msg\":\"无权限,请联系管理员!\",\"success\":false}"); } ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog); break; case "edit": if (userFromCookie != null && new ZGZY.BLL.Authority().IfAuthority("user", "edit", userFromCookie.Id)) { int id = Convert.ToInt32(context.Request.Params["id"]); string originalName = context.Request.Params["originalName"] ?? ""; string ui_user_userid_edit = context.Request.Params["ui_user_userid_edit"] ?? ""; string ui_user_username_edit = context.Request.Params["ui_user_username_edit"] ?? ""; bool ui_user_isable_edit = context.Request.Params["ui_user_isable_edit"] == null ? false : true; bool ui_user_ifchangepwd_edit = context.Request.Params["ui_user_ifchangepwd_edit"] == null ? false : true; string ui_user_description_edit = context.Request.Params["ui_user_description_edit"] ?? ""; ZGZY.Model.User userEdit = new Model.User(); userEdit.Id = id; userEdit.UserId = ui_user_userid_edit.Trim(); userEdit.UserName = ui_user_username_edit.Trim(); userEdit.IsAble = ui_user_isable_edit; userEdit.IfChangePwd = ui_user_ifchangepwd_edit; userEdit.Description = ui_user_description_edit.Trim(); if (new ZGZY.BLL.User().EditUser(userEdit, originalName)) { userOperateLog.OperateInfo = "修改用户"; userOperateLog.IfSuccess = true; userOperateLog.Description = "修改成功,用户主键:" + userEdit.Id; context.Response.Write("{\"msg\":\"修改成功!\",\"success\":true}"); } else { userOperateLog.OperateInfo = "修改用户"; userOperateLog.IfSuccess = false; userOperateLog.Description = "修改失败"; context.Response.Write("{\"msg\":\"修改失败!\",\"success\":false}"); } } else { userOperateLog.OperateInfo = "修改用户"; userOperateLog.IfSuccess = false; userOperateLog.Description = "无权限,请联系管理员"; context.Response.Write("{\"msg\":\"无权限,请联系管理员!\",\"success\":false}"); } ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog); break; case "delete": if (userFromCookie != null && new ZGZY.BLL.Authority().IfAuthority("user", "delete", userFromCookie.Id)) { string ids = context.Request.Params["id"].Trim(','); if (new ZGZY.BLL.User().DeleteUser(ids)) { userOperateLog.OperateInfo = "删除用户"; userOperateLog.IfSuccess = true; userOperateLog.Description = "删除成功,用户主键:" + ids; context.Response.Write("{\"msg\":\"删除成功!\",\"success\":true}"); } else { userOperateLog.OperateInfo = "删除用户"; userOperateLog.IfSuccess = false; userOperateLog.Description = "删除失败"; context.Response.Write("{\"msg\":\"删除失败!\",\"success\":false}"); } } else { userOperateLog.OperateInfo = "删除用户"; userOperateLog.IfSuccess = false; userOperateLog.Description = "无权限,请联系管理员"; context.Response.Write("{\"msg\":\"无权限,请联系管理员!\",\"success\":false}"); } ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog); break; case "setdep": if (userFromCookie != null && new ZGZY.BLL.Authority().IfAuthority("user", "setdepartment", userFromCookie.Id)) { string ui_user_setdep_userid = context.Request.Params["ui_user_setdep_userid"] ?? ""; string ui_user_setdep_dep = context.Request.Params["ui_user_setdep_dep"] ?? ""; if (ui_user_setdep_userid.IndexOf(",") == -1) //单个用户设置部门 { if (ui_user_setdep_userid != "" && new BLL.UserDepartment().SetDepartmentSingle(Convert.ToInt32(ui_user_setdep_userid), ui_user_setdep_dep)) { userOperateLog.OperateInfo = "设置用户部门"; userOperateLog.IfSuccess = true; userOperateLog.Description = "设置成功,用户主键:" + ui_user_setdep_userid + " 部门主键:" + ui_user_setdep_dep; context.Response.Write("{\"msg\":\"设置成功!\",\"success\":true}"); } else { userOperateLog.OperateInfo = "设置用户部门"; userOperateLog.IfSuccess = false; userOperateLog.Description = "设置失败,用户主键:" + ui_user_setdep_userid + " 部门主键:" + ui_user_setdep_dep; context.Response.Write("{\"msg\":\"设置失败!\",\"success\":true}"); } } else //批量设置用户部门 { if (ui_user_setdep_userid != "" && new BLL.UserDepartment().SetDepartmentBatch(ui_user_setdep_userid, ui_user_setdep_dep)) { userOperateLog.OperateInfo = "批量设置用户部门"; userOperateLog.IfSuccess = true; userOperateLog.Description = "设置成功,用户主键:" + ui_user_setdep_userid + " 部门主键:" + ui_user_setdep_dep; context.Response.Write("{\"msg\":\"设置成功!\",\"success\":true}"); } else { userOperateLog.OperateInfo = "批量设置用户部门"; userOperateLog.IfSuccess = false; userOperateLog.Description = "设置失败,用户主键:" + ui_user_setdep_userid + " 部门主键:" + ui_user_setdep_dep; context.Response.Write("{\"msg\":\"设置失败!\",\"success\":true}"); } } } else { userOperateLog.OperateInfo = "设置用户部门"; userOperateLog.IfSuccess = false; userOperateLog.Description = "无权限,请联系管理员"; context.Response.Write("{\"msg\":\"无权限,请联系管理员!\",\"success\":false}"); } ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog); break; case "setrole": if (userFromCookie != null && new ZGZY.BLL.Authority().IfAuthority("user", "setrole", userFromCookie.Id)) { string ui_user_setrole_userid = context.Request.Params["ui_user_setrole_userid"] ?? ""; //用户id,可能是多个 string ui_user_setrole_role = context.Request.Params["ui_user_setrole_role"] ?? ""; //角色id,可能是多个 if (ui_user_setrole_userid.IndexOf(",") == -1) //单个用户分配角色 { if (ui_user_setrole_userid != "" && new BLL.UserRole().SetRoleSingle(Convert.ToInt32(ui_user_setrole_userid), ui_user_setrole_role)) { userOperateLog.OperateInfo = "设置用户角色"; userOperateLog.IfSuccess = true; userOperateLog.Description = "设置成功,用户主键:" + ui_user_setrole_userid + " 角色主键:" + ui_user_setrole_role; context.Response.Write("{\"msg\":\"设置成功!\",\"success\":true}"); } else { userOperateLog.OperateInfo = "设置用户角色"; userOperateLog.IfSuccess = false; userOperateLog.Description = "设置失败,用户主键:" + ui_user_setrole_userid + " 角色主键:" + ui_user_setrole_role; context.Response.Write("{\"msg\":\"设置失败!\",\"success\":true}"); } } else //批量设置用户角色 { if (ui_user_setrole_userid != "" && new BLL.UserRole().SetRoleBatch(ui_user_setrole_userid, ui_user_setrole_role)) { userOperateLog.OperateInfo = "批量设置用户角色"; userOperateLog.IfSuccess = true; userOperateLog.Description = "设置成功,用户主键:" + ui_user_setrole_userid + " 角色主键:" + ui_user_setrole_role; context.Response.Write("{\"msg\":\"设置成功!\",\"success\":true}"); } else { userOperateLog.OperateInfo = "批量设置用户角色"; userOperateLog.IfSuccess = false; userOperateLog.Description = "设置失败,用户主键:" + ui_user_setrole_userid + " 角色主键:" + ui_user_setrole_role; context.Response.Write("{\"msg\":\"设置失败!\",\"success\":true}"); } } } else { userOperateLog.OperateInfo = "设置用户角色"; userOperateLog.IfSuccess = false; userOperateLog.Description = "无权限,请联系管理员"; context.Response.Write("{\"msg\":\"无权限,请联系管理员!\",\"success\":false}"); } ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog); break; default: context.Response.Write("{\"msg\":\"参数错误!\",\"success\":false}"); break; } } catch (Exception ex) { context.Response.Write("{\"msg\":\"" + ZGZY.Common.JsonHelper.StringFilter(ex.Message) + "\",\"success\":false}"); userOperateLog.OperateInfo = "用户功能异常"; userOperateLog.IfSuccess = false; userOperateLog.Description = ZGZY.Common.JsonHelper.StringFilter(ex.Message); ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog); } }
public void ProcessRequest(HttpContext context) { context.Response.ContentType = "application/json"; string action = context.Request.Params["action"]; ZGZY.Model.UserOperateLog userOperateLog = null; //操作日志对象 try { ZGZY.Model.User user = ZGZY.Common.UserHelper.GetUser(context); //获取cookie里的用户对象 userOperateLog = new Model.UserOperateLog(); userOperateLog.UserIp = context.Request.UserHostAddress; userOperateLog.UserName = user.UserId; int menuid = Convert.ToInt32(context.Request.Params["menuid"]); switch (action) { case "getUserMenu": //获取特定用户能看到的菜单(左侧树) int mainMenuId = Convert.ToInt32(context.Request.Params["mainMenuId"]); context.Response.Write(new ZGZY.BLL.Menu().GetUserMenu(user.Id, mainMenuId)); break; case "getAllMenu": //根据角色id获取此角色有的权限(设置角色时自动勾选已经有的按钮权限) int roleid = Convert.ToInt32(context.Request.Params["roleid"]); //角色id context.Response.Write(new ZGZY.BLL.Menu().GetAllMenu(roleid)); break; case "getMyAuthority": //前台根据用户名查“我的权限” context.Response.Write(new ZGZY.BLL.Menu().GetMyAuthority(user.Id)); userOperateLog.OperateInfo = "查询我的信息"; userOperateLog.IfSuccess = true; userOperateLog.Description = "查询我的信息"; //ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog); break; case "search": string strWhere = "1=1"; string sort = context.Request.Params["sort"] == null ? "Id" : context.Request.Params["sort"]; //排序列 string order = context.Request.Params["order"] == null ? "asc" : context.Request.Params["order"]; //排序方式 asc或者desc int pageindex = int.Parse(context.Request.Params["page"]); int pagesize = int.Parse(context.Request.Params["rows"]); int totalCount; //输出参数 string strJson = ""; //输出结果 if (order.IndexOf(',') != -1) //如果有","就是多列排序(不能拿列判断,列名中间可能有","符号) { //多列排序: //sort:ParentId,Sort,AddDate //order:asc,desc,asc string sortMulti = ""; //拼接排序条件,例:ParentId desc,Sort asc string[] sortArray = sort.Split(','); //列名中间有","符号,这里也要出错。正常不会有 string[] orderArray = order.Split(','); for (int i = 0; i < sortArray.Length; i++) { sortMulti += sortArray[i] + " " + orderArray[i] + ","; } strJson = new ZGZY.BLL.Menu().GetPager("tbMenu", "Id,Name,ParentId,Code,LinkAddress,Icon,Sort,AddDate", sortMulti.Trim(','), pagesize, pageindex, strWhere, out totalCount); userOperateLog.Description = "查询条件:" + strWhere + " 排序:" + sortMulti.Trim(',') + " 页码/每页大小:" + pageindex + " " + pagesize; } else { strJson = new ZGZY.BLL.Menu().GetPager("tbMenu", "Id,Name,ParentId,Code,LinkAddress,Icon,Sort,AddDate", sort + " " + order, pagesize, pageindex, strWhere, out totalCount); userOperateLog.Description = "查询条件:" + strWhere + " 排序:" + sort + " " + order + " 页码/每页大小:" + pageindex + " " + pagesize; } context.Response.Write("{\"total\": " + totalCount.ToString() + ",\"rows\":" + strJson + "}"); userOperateLog.OperateInfo = "查询菜单"; userOperateLog.IfSuccess = true; //ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog); break; case "getMenuButton": context.Response.Write(new ZGZY.BLL.Menu().GetMenuButton(menuid)); break; case "setMenuButton": string ui_menu_setbutton_menuid = context.Request.Params["ui_menu_setbutton_menuid"] ?? ""; string ui_menu_setbutton_button = context.Request.Params["ui_menu_setbutton_button"] ?? ""; if (ui_menu_setbutton_menuid != "" && new BLL.Menu().SetMenuButton(ui_menu_setbutton_menuid, ui_menu_setbutton_button)) { context.Response.Write("{\"msg\":\"分配成功!\",\"success\":true}"); } else { context.Response.Write("{\"msg\":\"分配失败!\",\"success\":false}"); } break; case "getMainMenu": context.Response.Write(new ZGZY.BLL.Menu().GetMainMenu(1)); break; case "getBelongMainMenu": string belongMainMenuId = new ZGZY.BLL.Menu().GetBelongMainMenuId(menuid); context.Response.Write("{\"mainMenuId\":\"" + belongMainMenuId + "\"}"); break; case "setMainMenu": string ui_menu_setMainMenu_menuid = context.Request.Params["ui_menu_setMainMenu_menuid"] ?? ""; string ui_menu_setMainMenu_button = context.Request.Params["ui_menu_setMainMenu_button"] ?? ""; if (ui_menu_setMainMenu_menuid != "" && new BLL.Menu().SetMainMenu(ui_menu_setMainMenu_menuid, ui_menu_setMainMenu_button)) { context.Response.Write("{\"msg\":\"配置成功!\",\"success\":true}"); } else { context.Response.Write("{\"msg\":\"配置失败!\",\"success\":false}"); } break; default: context.Response.Write("{\"result\":\"参数错误!\",\"success\":false}"); break; } } catch (Exception ex) { context.Response.Write("{\"msg\":\"" + ZGZY.Common.JsonHelper.StringFilter(ex.Message) + "\",\"success\":false}"); userOperateLog.OperateInfo = "菜单功能异常"; userOperateLog.IfSuccess = false; userOperateLog.Description = ZGZY.Common.JsonHelper.StringFilter(ex.Message); //ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog); } }
public void ProcessRequest(HttpContext context) { context.Response.ContentType = "application/json"; string action = context.Request.Params["action"]; ZGZY.Model.UserOperateLog userOperateLog = null; //操作日志对象 try { ZGZY.Model.User user = ZGZY.Common.UserHelper.GetUser(context); //获取cookie里的用户对象 userOperateLog = new Model.UserOperateLog(); userOperateLog.UserIp = context.Request.UserHostAddress; userOperateLog.UserName = user.UserId; switch (action) { case "getbutton": //根据用户的权限获取用户点击的菜单有权限的按钮 string pageName = context.Request.Params["pagename"]; string menuCode = context.Request.Params["menucode"]; //菜单标识码 DataTable dt = new ZGZY.BLL.Customers().GetButtonByMenuCodeAndUserId(menuCode, user.Id); string sum = ZGZY.Common.ToolbarHelper.GetToolBar(dt, pageName); context.Response.Write(sum); break; case "add": if (user != null && new ZGZY.BLL.Authority().IfAuthority("Channel", "add", user.Id)) { ZGZY.Model.Channel channelAdd = new Model.Channel(); channelAdd.ChannelName = context.Request.Params["ui_Channel_ChannelName_add"]; channelAdd.Creator = context.Request.Params["ui_Channel_Creator_add"]; channelAdd.BeginDate = DateTime.Parse(context.Request.Params["ui_Channel_BeginDate_add"]); channelAdd.EndDate = DateTime.Parse(context.Request.Params["ui_Channel_EndDate_add"]); channelAdd.CreateDate = DateTime.Now; channelAdd.SealNameId = 72; int departmentId = new ZGZY.BLL.Channel().AddChannel(channelAdd); if (departmentId > 0) { userOperateLog.OperateInfo = "添加引用"; userOperateLog.IfSuccess = true; userOperateLog.Description = "添加成功,客户主键:" + departmentId; context.Response.Write("{\"msg\":\"添加成功!\",\"success\":true}"); } else { userOperateLog.OperateInfo = "添加引用"; userOperateLog.IfSuccess = false; userOperateLog.Description = "添加失败"; context.Response.Write("{\"msg\":\"添加失败!\",\"success\":false}"); } } else { userOperateLog.OperateInfo = "添加引用"; userOperateLog.IfSuccess = false; userOperateLog.Description = "无权限,请联系管理员"; context.Response.Write("{\"msg\":\"无权限,请联系管理员!\",\"success\":true}"); } ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog); break; case "search": string strWhere = "1=1"; string sort = context.Request.Params["sort"]; //排序列 string order = context.Request.Params["order"]; //排序方式 asc或者desc int pageindex = int.Parse(context.Request.Params["page"]); int pagesize = int.Parse(context.Request.Params["rows"]); int totalCount; //输出参数 string strJson = new ZGZY.BLL.Button().GetPager("Channel", "Id, ChannelName, CreateDate, Creator, SealNameId, BeginDate, EndDate", sort + " " + order, pagesize, pageindex, strWhere, out totalCount); context.Response.Write("{\"total\": " + totalCount.ToString() + ",\"rows\":" + strJson + "}"); userOperateLog.OperateInfo = "查询按钮"; userOperateLog.IfSuccess = true; userOperateLog.Description = "查询条件:" + strWhere + " 排序:" + sort + " " + order + " 页码/每页大小:" + pageindex + " " + pagesize; ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog); break; case "edit": if (user != null && new ZGZY.BLL.Authority().IfAuthority("Channel", "edit", user.Id)) { ZGZY.Model.Channel channelAdd = new Model.Channel(); channelAdd.Id = Int32.Parse(context.Request.Params["id"]); channelAdd.ChannelName = context.Request.Params["ui_Channel_ChannelName_edit"]; channelAdd.Creator = context.Request.Params["ui_Channel_Creator_edit"]; channelAdd.BeginDate = DateTime.Parse(context.Request.Params["ui_Channel_BeginDate_edit"]); channelAdd.EndDate = DateTime.Parse(context.Request.Params["ui_Channel_EndDate_edit"]); int outputRow = new ZGZY.BLL.Channel().EditChannelById(channelAdd); if (outputRow > 0) { userOperateLog.OperateInfo = "修改引用"; userOperateLog.IfSuccess = true; userOperateLog.Description = "修改成功,客户主键:" + outputRow; context.Response.Write("{\"msg\":\"修改成功!\",\"success\":true}"); } else { userOperateLog.OperateInfo = "修改引用"; userOperateLog.IfSuccess = false; userOperateLog.Description = "修改失败"; context.Response.Write("{\"msg\":\"修改失败!\",\"success\":false}"); } } else { userOperateLog.OperateInfo = "修改引用"; userOperateLog.IfSuccess = false; userOperateLog.Description = "无权限,请联系管理员"; context.Response.Write("{\"msg\":\"无权限,请联系管理员!\",\"success\":true}"); } ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog); break; case "delete": if (user != null && new ZGZY.BLL.Authority().IfAuthority("Channel", "delete", user.Id)) { object departmentIds = context.Request.Params["id"]; if (new ZGZY.BLL.Channel().DeleteChannelById(departmentIds) == 1) { userOperateLog.OperateInfo = "删除引用"; userOperateLog.IfSuccess = true; userOperateLog.Description = "删除成功,引用主键:" + departmentIds; context.Response.Write("{\"msg\":\"删除成功!\",\"success\":true}"); } else { userOperateLog.OperateInfo = "删除引用"; userOperateLog.IfSuccess = false; userOperateLog.Description = "删除失败,客户主键:" + departmentIds; context.Response.Write("{\"msg\":\"删除失败!\",\"success\":false}"); } } else { userOperateLog.OperateInfo = "删除引用"; userOperateLog.IfSuccess = false; userOperateLog.Description = "无权限,请联系管理员"; context.Response.Write("{\"msg\":\"无权限,请联系管理员!\",\"success\":false}"); } ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog); break; default: context.Response.Write("{\"result\":\"参数错误!\",\"success\":false}"); break; } } catch (Exception ex) { context.Response.Write("{\"msg\":\"" + ZGZY.Common.JsonHelper.StringFilter(ex.Message) + "\",\"success\":false}"); userOperateLog.OperateInfo = "菜单功能异常"; userOperateLog.IfSuccess = false; userOperateLog.Description = ZGZY.Common.JsonHelper.StringFilter(ex.Message); ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog); } }
public void ProcessRequest(HttpContext context) { context.Response.ContentType = "application/json"; string action = context.Request.Params["action"]; ZGZY.Model.UserOperateLog userOperateLog = null; //操作日志对象 try { ZGZY.Model.User user = ZGZY.Common.UserHelper.GetUser(context); //获取cookie里的用户对象 userOperateLog = new Model.UserOperateLog(); userOperateLog.UserIp = context.Request.UserHostAddress; userOperateLog.UserName = user.UserId; switch (action) { case "search": string strWhere = "1=1"; string sort = context.Request.Params["sort"]; //排序列 string order = context.Request.Params["order"]; //排序方式 asc或者desc int pageindex = int.Parse(context.Request.Params["page"]); int pagesize = int.Parse(context.Request.Params["rows"]); string ui_operatelog_username = context.Request.Params["ui_operatelog_username"] ?? ""; string ui_operatelog_userip = context.Request.Params["ui_operatelog_userip"] ?? ""; string ui_operatelog_info = context.Request.Params["ui_operatelog_info"] ?? ""; string ui_operatelog_description = context.Request.Params["ui_operatelog_description"] ?? ""; string ui_operatelog_success = context.Request.Params["ui_operatelog_success"] ?? ""; string ui_operatelog_operatedatestart = context.Request.Params["ui_operatelog_operatedatestart"] ?? ""; string ui_operatelog_operatedateend = context.Request.Params["ui_operatelog_operatedateend"] ?? ""; if (ui_operatelog_username.Trim() != "" && !ZGZY.Common.SqlInjection.GetString(ui_operatelog_username)) //防止sql注入 { strWhere += string.Format(" and UserName like '%{0}%'", ui_operatelog_username.Trim()); } if (ui_operatelog_userip.Trim() != "" && !ZGZY.Common.SqlInjection.GetString(ui_operatelog_userip)) { strWhere += string.Format(" and UserIp like '%{0}%'", ui_operatelog_userip.Trim()); } if (ui_operatelog_info.Trim() != "" && !ZGZY.Common.SqlInjection.GetString(ui_operatelog_info)) { strWhere += string.Format(" and OperateInfo like '%{0}%'", ui_operatelog_info.Trim()); } if (ui_operatelog_description.Trim() != "" && !ZGZY.Common.SqlInjection.GetString(ui_operatelog_description)) { strWhere += string.Format(" and Description like '%{0}%'", ui_operatelog_description.Trim()); } if (ui_operatelog_success.Trim() != "select" && ui_operatelog_success.Trim() != "") { strWhere += " and IfSuccess = '" + ui_operatelog_success.Trim() + "'"; } if (ui_operatelog_operatedatestart.Trim() != "") { strWhere += " and OperateDate > '" + ui_operatelog_operatedatestart.Trim() + "'"; } if (ui_operatelog_operatedateend.Trim() != "") { strWhere += " and OperateDate < '" + ui_operatelog_operatedateend.Trim() + "'"; } userOperateLog.OperateInfo = "查询操作日志"; userOperateLog.IfSuccess = true; userOperateLog.Description = "查询条件:" + strWhere + " 排序:" + sort + " " + order + " 页码/每页大小:" + pageindex + " " + pagesize; ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog); int totalCount; //输出参数 string strJson = new ZGZY.BLL.UserOperateLog().GetPager("tbUserOperateLog", "Id,UserName,UserIp,OperateInfo,Description,IfSuccess,OperateDate", sort + " " + order, pagesize, pageindex, strWhere, out totalCount); context.Response.Write("{\"total\": " + totalCount.ToString() + ",\"rows\":" + strJson + "}"); break; default: context.Response.Write("{\"msg\":\"参数错误!\",\"success\":false}"); break; } } catch (Exception ex) { context.Response.Write("{\"msg\":\"" + ZGZY.Common.JsonHelper.StringFilter(ex.Message) + "\",\"success\":false}"); userOperateLog.OperateInfo = "操作日志功能异常"; userOperateLog.IfSuccess = false; userOperateLog.Description = ZGZY.Common.JsonHelper.StringFilter(ex.Message); ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog); } }
public void ProcessRequest(HttpContext context) { context.Response.ContentType = "application/json"; string action = context.Request.Params["action"]; ZGZY.Model.UserOperateLog userOperateLog = null; //操作日志对象 try { ZGZY.Model.User user = ZGZY.Common.UserHelper.GetUser(context); //获取cookie里的用户对象 userOperateLog = new Model.UserOperateLog(); userOperateLog.UserIp = context.Request.UserHostAddress; userOperateLog.UserName = user.UserId; switch (action) { case "search": string strWhere = "1=1"; string sort = context.Request.Params["sort"]; //排序列 string order = context.Request.Params["order"]; //排序方式 asc或者desc int pageindex = int.Parse(context.Request.Params["page"]); int pagesize = int.Parse(context.Request.Params["rows"]); string ui_loginlog_username = context.Request.Params["ui_loginlog_username"] ?? ""; string ui_loginlog_userip = context.Request.Params["ui_loginlog_userip"] ?? ""; string ui_loginlog_city = context.Request.Params["ui_loginlog_city"] ?? ""; string ui_loginlog_success = context.Request.Params["ui_loginlog_success"] ?? ""; string ui_loginlog_logindatestart = context.Request.Params["ui_loginlog_logindatestart"] ?? ""; string ui_loginlog_logindateend = context.Request.Params["ui_loginlog_logindateend"] ?? ""; if (ui_loginlog_username.Trim() != "" && !ZGZY.Common.SqlInjection.GetString(ui_loginlog_username)) //防止sql注入 { strWhere += string.Format(" and UserName like '%{0}%'", ui_loginlog_username.Trim()); } if (ui_loginlog_userip.Trim() != "" && !ZGZY.Common.SqlInjection.GetString(ui_loginlog_userip)) { strWhere += string.Format(" and UserIp like '%{0}%'", ui_loginlog_userip.Trim()); } if (ui_loginlog_city.Trim() != "" && !ZGZY.Common.SqlInjection.GetString(ui_loginlog_city)) { strWhere += string.Format(" and City like '%{0}%'", ui_loginlog_city.Trim()); } if (ui_loginlog_success.Trim() != "select" && ui_loginlog_success.Trim() != "") { strWhere += " and Success = '" + ui_loginlog_success.Trim() + "'"; } if (ui_loginlog_logindatestart.Trim() != "") { strWhere += " and LoginDate > '" + ui_loginlog_logindatestart.Trim() + "'"; } if (ui_loginlog_logindateend.Trim() != "") { strWhere += " and LoginDate < '" + ui_loginlog_logindateend.Trim() + "'"; } string strJson = new ZGZY.BLL.LoginLog().GetPager(strWhere, sort, order, pageindex, pagesize); context.Response.Write(strJson); userOperateLog.OperateInfo = "查询登陆日志"; userOperateLog.IfSuccess = true; userOperateLog.Description = "查询条件:" + strWhere + " 排序:" + sort + " " + order + " 页码/每页大小:" + pageindex + " " + pagesize; //ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog); break; case "export": //导出 break; default: context.Response.Write("{\"msg\":\"参数错误!\",\"success\":false}"); break; } } catch (Exception ex) { context.Response.Write("{\"msg\":\"" + ZGZY.Common.JsonHelper.StringFilter(ex.Message) + "\",\"success\":false}"); userOperateLog.OperateInfo = "登陆日志功能异常"; userOperateLog.IfSuccess = false; userOperateLog.Description = ZGZY.Common.JsonHelper.StringFilter(ex.Message); //ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog); } }
public void ProcessRequest(HttpContext context) { context.Response.ContentType = "application/json"; string action = context.Request.Params["action"]; string key = context.Request.Params["q"]; try { ZGZY.Model.User user = ZGZY.Common.UserHelper.GetUser(context); //获取cookie里的用户对象 string userid = user.UserId; switch (action) { case "getFactory": string where = " and facusing = '1' and factid in (select factid from apuserpriority where id= '" + userid + "')"; string strJson = new ZGZY.BLL.Dddw().GetDwFactory(where); context.Response.Write(strJson); break; case "getSpec": string strJsonSpec = new ZGZY.BLL.Dddw().GetDwSpec("spec like '" + key + "%'"); context.Response.Write(strJsonSpec); break; case "getStrength": string strJsonStrength = new ZGZY.BLL.Dddw().GetDwStrength("strength like '" + key + "%'"); context.Response.Write(strJsonStrength); break; case "getDays": string strJsonDays = new ZGZY.BLL.Dddw().GetDwDays(); context.Response.Write(strJsonDays); break; case "getOrdtype": string strJsonOrdtype = new ZGZY.BLL.Dddw().GetDwOrdtype(null); context.Response.Write(strJsonOrdtype); break; case "getOrdid": string strJsonOrdid = new ZGZY.BLL.Dddw().GetDwOrdid("ordh12 like '%" + key + "%'"); context.Response.Write(strJsonOrdid); break; case "getBujino": string strJsonBujino = new ZGZY.BLL.Dddw().GetDwBujino(); context.Response.Write(strJsonBujino); break; case "getPosid": string strJsonPosid = new ZGZY.BLL.Dddw().GetDwPosid(); context.Response.Write(strJsonPosid); break; case "getSubcategory": string strJsonSubcategoryid = new ZGZY.BLL.Dddw().GetDwSubcategory(); context.Response.Write(strJsonSubcategoryid); break; case "getAddid": string strJsonAddid = new ZGZY.BLL.Dddw().GetDwAddid("addid like '%" + key + "%'"); //context.Response.Write("{\"jsondata\":" + strJsonAddid + ",\"success\":true}"); context.Response.Write(strJsonAddid); break; case "getCustid": string strJsonCustid = new ZGZY.BLL.Dddw().GetDwCustid("custid like '%" + key + "%'"); context.Response.Write(strJsonCustid); break; case "getEmpid": string strJsonEmpid = new ZGZY.BLL.Dddw().GetDwEmpid("empid like '%" + key + "%'"); context.Response.Write(strJsonEmpid); break; default: context.Response.Write("{\"msg\":\"参数错误!\",\"success\":false}"); break; } } catch (Exception ex) { context.Response.Write("{\"msg\":\"" + ZGZY.Common.JsonHelper.StringFilter(ex.Message) + "\",\"success\":false}"); } }
public void ProcessRequest(HttpContext context) { context.Response.ContentType = "application/json"; string action = context.Request.Params["action"]; ZGZY.Model.UserOperateLog userOperateLog = null; //操作日志对象 try { ZGZY.Model.User user = ZGZY.Common.UserHelper.GetUser(context); //获取cookie里的用户对象 userOperateLog = new Model.UserOperateLog(); userOperateLog.UserIp = context.Request.UserHostAddress; userOperateLog.UserName = user.UserId; switch (action) { case "getall": context.Response.Write(new ZGZY.BLL.Role().GetAllRole("1=1")); break; case "search": string strWhere = "1=1"; string sort = context.Request.Params["sort"]; //排序列 string order = context.Request.Params["order"]; //排序方式 asc或者desc int pageindex = int.Parse(context.Request.Params["page"]); int pagesize = int.Parse(context.Request.Params["rows"]); int totalCount; //输出参数 string strJson = new ZGZY.BLL.Role().GetPager("tbRole", "Id,RoleName,AddDate,ModifyDate,Description", sort + " " + order, pagesize, pageindex, strWhere, out totalCount); context.Response.Write("{\"total\": " + totalCount.ToString() + ",\"rows\":" + strJson + "}"); userOperateLog.OperateInfo = "查询角色"; userOperateLog.IfSuccess = true; userOperateLog.Description = "查询条件:" + strWhere + " 排序:" + sort + " " + order + " 页码/每页大小:" + pageindex + " " + pagesize; //ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog); break; case "searchRoleUser": int roleUserId = int.Parse(context.Request.Params["roleId"]); string sortRoleUser = context.Request.Params["sort"]; //排序列 string orderRoleUser = context.Request.Params["order"]; //排序方式 asc或者desc int pageindexRoleUser = int.Parse(context.Request.Params["page"]); int pagesizeRoleUser = int.Parse(context.Request.Params["rows"]); string strJsonRoleUser = new ZGZY.BLL.Role().GetPagerRoleUser(roleUserId, sortRoleUser + " " + orderRoleUser, pagesizeRoleUser, pageindexRoleUser); context.Response.Write(strJsonRoleUser); userOperateLog.OperateInfo = "查询角色用户"; userOperateLog.IfSuccess = true; userOperateLog.Description = "查询角色Id:" + roleUserId + " 排序:" + sortRoleUser + " " + orderRoleUser + " 页码/每页大小:" + pageindexRoleUser + " " + pagesizeRoleUser; //ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog); break; case "add": if (user != null && new ZGZY.BLL.Authority().IfAuthority("role", "add", user.Id)) { string ui_role_rolename_add = context.Request.Params["ui_role_rolename_add"] ?? ""; string ui_role_description_add = context.Request.Params["ui_role_description_add"] ?? ""; ZGZY.Model.Role roleAdd = new Model.Role(); roleAdd.RoleName = ui_role_rolename_add; roleAdd.Description = ui_role_description_add.Trim(); int roleId = new ZGZY.BLL.Role().AddRole(roleAdd); if (roleId > 0) { userOperateLog.OperateInfo = "添加角色"; userOperateLog.IfSuccess = true; userOperateLog.Description = "添加成功,角色主键:" + roleId; context.Response.Write("{\"msg\":\"添加成功!\",\"success\":true}"); } else { userOperateLog.OperateInfo = "添加角色"; userOperateLog.IfSuccess = false; userOperateLog.Description = "添加失败"; context.Response.Write("{\"msg\":\"添加失败!\",\"success\":false}"); } } else { userOperateLog.OperateInfo = "添加角色"; userOperateLog.IfSuccess = false; userOperateLog.Description = "无权限,请联系管理员"; context.Response.Write("{\"msg\":\"无权限,请联系管理员!\",\"success\":false}"); } //ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog); break; case "edit": if (user != null && new ZGZY.BLL.Authority().IfAuthority("role", "edit", user.Id)) { int id = Convert.ToInt32(context.Request.Params["id"]); string originalName = context.Request.Params["originalName"] ?? ""; string ui_role_rolename_edit = context.Request.Params["ui_role_rolename_edit"] ?? ""; string ui_role_description_edit = context.Request.Params["ui_role_description_edit"] ?? ""; ZGZY.Model.Role roleEdit = new Model.Role(); roleEdit.Id = id; roleEdit.RoleName = ui_role_rolename_edit; roleEdit.Description = ui_role_description_edit.Trim(); if (new ZGZY.BLL.Role().EditRole(roleEdit, originalName)) { userOperateLog.OperateInfo = "修改角色"; userOperateLog.IfSuccess = true; userOperateLog.Description = "修改成功,角色主键:" + roleEdit.Id; context.Response.Write("{\"msg\":\"修改成功!\",\"success\":true}"); } else { userOperateLog.OperateInfo = "修改角色"; userOperateLog.IfSuccess = false; userOperateLog.Description = "修改失败"; context.Response.Write("{\"msg\":\"修改失败!\",\"success\":false}"); } } else { userOperateLog.OperateInfo = "修改角色"; userOperateLog.IfSuccess = false; userOperateLog.Description = "无权限,请联系管理员"; context.Response.Write("{\"msg\":\"无权限,请联系管理员!\",\"success\":false}"); } //ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog); break; case "delete": if (user != null && new ZGZY.BLL.Authority().IfAuthority("role", "delete", user.Id)) { int id = Convert.ToInt32(context.Request.Params["id"]); if (new ZGZY.BLL.Role().DeleteRole(id)) { userOperateLog.OperateInfo = "删除角色"; userOperateLog.IfSuccess = true; userOperateLog.Description = "删除成功,角色主键:" + id; context.Response.Write("{\"msg\":\"删除成功!\",\"success\":true}"); } else { userOperateLog.OperateInfo = "删除角色"; userOperateLog.IfSuccess = false; userOperateLog.Description = "删除失败"; context.Response.Write("{\"msg\":\"删除失败!\",\"success\":false}"); } } else { userOperateLog.OperateInfo = "删除角色"; userOperateLog.IfSuccess = false; userOperateLog.Description = "无权限,请联系管理员"; context.Response.Write("{\"msg\":\"无权限,请联系管理员!\",\"success\":false}"); } //ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog); break; case "authorize": if (user != null && new ZGZY.BLL.Authority().IfAuthority("role", "authorize", user.Id)) { int roleId = Convert.ToInt32(context.Request.Params["roleId"]); //要授权的角色id string menuButtonId = context.Request.Params["menuButtonId"].Trim(','); //具体的菜单和按钮权限 if (new ZGZY.BLL.Role().Authorize(roleId, menuButtonId)) { userOperateLog.OperateInfo = "角色授权"; userOperateLog.IfSuccess = true; userOperateLog.Description = "授权成功,菜单/按钮Id:" + menuButtonId; context.Response.Write("{\"msg\":\"授权成功!\",\"success\":true}"); } else { userOperateLog.OperateInfo = "角色授权"; userOperateLog.IfSuccess = false; userOperateLog.Description = "授权失败"; context.Response.Write("{\"msg\":\"授权失败!\",\"success\":false}"); } } else { userOperateLog.OperateInfo = "角色授权"; userOperateLog.IfSuccess = false; userOperateLog.Description = "无权限,请联系管理员"; context.Response.Write("{\"msg\":\"无权限,请联系管理员!\",\"success\":false}"); } //ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog); break; default: context.Response.Write("{\"msg\":\"参数错误!\",\"success\":false}"); break; } } catch (Exception ex) { context.Response.Write("{\"msg\":\"" + ZGZY.Common.JsonHelper.StringFilter(ex.Message) + "\",\"success\":false}"); userOperateLog.OperateInfo = "角色功能异常"; userOperateLog.IfSuccess = false; userOperateLog.Description = ZGZY.Common.JsonHelper.StringFilter(ex.Message); //ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog); } }