public IActionResult AddBank([FromBody] BanksysBank Bank) { try { var userType = this.help.GetCurrentUserType(HttpContext); if (userType != 1) { return(StatusCode(401, "لا تملك الصلاحية لإضافة المصرف")); } if (Bank == null) { return(BadRequest("حذث خطأ في ارسال البيانات الرجاء إعادة الادخال")); } var userId = this.help.GetCurrentUser(HttpContext); if (userId <= 0) { return(StatusCode(401, "الرجاء الـتأكد من أنك قمت بتسجيل الدخول")); } Bank.CreatedBy = userId; Bank.CreatedOn = DateTime.Now; Bank.Status = 1; db.BanksysBank.Add(Bank); db.SaveChanges(); return(Ok("لقد قمت بتسـجيل بيانات المصرف بنــجاح")); } catch (Exception e) { return(StatusCode(500, e.Message)); } }
public IActionResult AddBank([FromBody] BanksysBranch Branch) { try { if (Branch == null) { return(BadRequest("حذث خطأ في ارسال البيانات الرجاء إعادة الادخال")); } var userId = this.help.GetCurrentUser(HttpContext); if (userId <= 0) { return(StatusCode(401, "الرجاء الـتأكد من أنك قمت بتسجيل الدخول")); } Branch.CreatedBy = userId; Branch.CreatedOn = DateTime.Now; Branch.Status = 1; db.BanksysBranch.Add(Branch); db.SaveChanges(); return(Ok("لقد قمت بتسـجيل بيانات الفرع بنــجاح")); } catch (Exception e) { return(StatusCode(500, e.Message)); } }
public async Task <IActionResult> loginUser([FromBody] user loginUser) { try { if (loginUser == null) { return(NotFound("There is an error in the email or password")); } //if (!Validation.IsValidEmail(loginUser.Email)) //{ // return BadRequest("Please enter correct email address"); //} if (string.IsNullOrWhiteSpace(loginUser.Email)) { return(BadRequest("Please enter your Login name")); } if (string.IsNullOrWhiteSpace(loginUser.Password)) { return(BadRequest("Please enter your Password")); } var cUser = (from p in db.BanksysUsers where (p.Email == loginUser.Email || p.LoginName == loginUser.Email) && p.Status != 9 select p).SingleOrDefault(); if (cUser == null) { return(NotFound("There is an error in the email or password")); } if (cUser.UserType != 1 && cUser.UserType != 2 && cUser.UserType != 3) { return(BadRequest("You are not authorized to access here")); } if (cUser.Status == 0) { return(BadRequest("Please activate your account first")); } if (cUser.Status == 2) { return(BadRequest("Your are account is suspended")); } if (!Security.VerifyHash(loginUser.Password, cUser.Password, HashAlgorithms.SHA512)) { cUser.LoginTryAttempts++; if (cUser.LoginTryAttempts >= 5 && cUser.Status == 1) { cUser.Status = 2; } db.SaveChanges(); return(NotFound("There is an error in the email or password")); } cUser.LoginTryAttempts = 0; db.SaveChanges(); // if he has one permission //var branchName = db.Branch.Where(h => h.BranchId == cUser.BranchId).SingleOrDefault(); //var BankName = db.Bank.Where(h => h.BankId == cUser.).SingleOrDefault().Name; // if (UserBranch.Count()>0) // { //} //else //{ // var userInfo = new // { // userId = cUser.UserId, // fullName = cUser.FullName, // userType = cUser.UserType, // LoginName = cUser.LoginName, // DateOfBirth = cUser.DateOfBirth, // Email = cUser.Email, // Gender = cUser.Gender, // Status = cUser.Status, // }; //} // if he has many permission const string Issuer = "http://www.sadad.ly"; var claims = new List <Claim>(); claims.Add(new Claim("http://schemas.xmlsoap.org/ws/2005/05/identity/claims/id", cUser.UserId.ToString(), ClaimValueTypes.Integer64, Issuer)); claims.Add(new Claim(ClaimTypes.Name, cUser.FullName, ClaimValueTypes.String, Issuer)); claims.Add(new Claim("http://schemas.xmlsoap.org/ws/2005/05/identity/claims/UserType", cUser.UserType.ToString(), ClaimValueTypes.Integer64, Issuer)); if (cUser.UserType != 1) { claims.Add(new Claim("http://schemas.xmlsoap.org/ws/2005/05/identity/claims/BranchId", cUser.BranchId.ToString(), ClaimValueTypes.Integer64, Issuer)); } claims.Add(new Claim("userType", cUser.UserType.ToString(), ClaimValueTypes.Integer32, Issuer)); var userIdentity = new ClaimsIdentity("thisisasecreteforauth"); userIdentity.AddClaims(claims); var userPrincipal = new ClaimsPrincipal(userIdentity); await HttpContext.SignInAsync( CookieAuthenticationDefaults.AuthenticationScheme, userPrincipal, new AuthenticationProperties { ExpiresUtc = DateTime.UtcNow.AddMinutes(20), IsPersistent = true, AllowRefresh = true }); var userInfo = (dynamic)null; if (cUser.UserType != 1) { var UserBranch = db.BanksysUserBranchs.Where(x => x.UserId == cUser.UserId && x.Status == 1); var branch = db.BanksysBranch.Where(h => h.BranchId == cUser.BranchId && cUser.Status == 1).SingleOrDefault(); var BankName = db.BanksysBank.Where(h => h.BankId == branch.BankId && cUser.Status == 1).SingleOrDefault(); userInfo = new { userId = cUser.UserId, fullName = cUser.FullName, userType = cUser.UserType, LoginName = cUser.LoginName, DateOfBirth = cUser.DateOfBirth, Email = cUser.Email, Gender = cUser.Gender, Status = cUser.Status, RM = cUser.RegisterMaker, RC = cUser.RegisterChecker, CM = cUser.CashInMaker, CC = cUser.CashInChecker, BranchId = cUser.BranchId, BranchName = cUser.Branch.Name, BankName = cUser.Branch.Bank.Name, BankId = cUser.Branch.BankId, UserBranch = UserBranch.Select(t => new { t.Branch.Name, t.BranchId, t.RegisterMaker, t.RegisterChecker, t.CashInMaker, t.CashInChecker, t.UserBranchId }).ToList() }; } else { //var UserBranch = db.UserBranchs.Where(x => x.UserId == cUser.UserId); //var branch = db.Branch.Where(h => h.BranchId == cUser.BranchId).SingleOrDefault(); //var BankName = db.Bank.Where(h => h.BankId == branch.BankId).SingleOrDefault(); userInfo = new { userId = cUser.UserId, fullName = cUser.FullName, userType = cUser.UserType, LoginName = cUser.LoginName, DateOfBirth = cUser.DateOfBirth, Email = cUser.Email, Gender = cUser.Gender, Status = cUser.Status, RM = cUser.RegisterMaker, RC = cUser.RegisterChecker, CM = cUser.CashInMaker, CC = cUser.CashInChecker, BranchId = -1, BranchName = -1, BankName = -1, BankId = -1, UserBranch = -1 }; } return(Ok(userInfo)); } catch (Exception e) { return(StatusCode(500, e.Message)); } }
public IActionResult AddCashIn([FromBody] CashInObj CashInData) { using (var transaction = db.Database.BeginTransaction()) { try { if (CashInData == null) { transaction.Rollback(); return(BadRequest("حذث خطأ في ارسال البيانات الرجاء إعادة الادخال")); } var userId = this.help.GetCurrentUser(HttpContext); if (userId <= 0) { transaction.Rollback(); return(StatusCode(401, "الرجاء الـتأكد من أنك قمت بتسجيل الدخول")); } var UserType = this.help.GetCurrentUserType(HttpContext); if (UserType == 1) { transaction.Rollback(); return(StatusCode(401, "عفوا لايمكن اضافة قيمة نقدية الا عن طريق المصرف")); } CashIn Cash = new CashIn(); Cash.Status = 1; Cash.Refrence = 3; Cash.Valuedigits = CashInData.Valuedigits; Cash.DepositType = 3; Cash.Description = CashInData.description; Cash.NumInvoiceDep = CashInData.NumInvoiceDep; Cash.PersonalId = CashInData.PersonalId; //Cash.BankId =(int) db.BanksysBranch.Where(x => x.BranchId == this.help.GetCurrentBranche(HttpContext)).SingleOrDefault().BankId; db.CashIn.Add(Cash); db.SaveChanges(); BanksysBankActions BA = new BanksysBankActions(); BA.ActionType = 3; BA.Description = "إنشاء عملية نقدية - تأكيد مبدئي"; BA.UserId = userId; BA.CashInId = Cash.CashInId; BA.BranchId = this.help.GetCurrentBranche(HttpContext); BA.UserType = UserType; BA.ActionDate = DateTime.Now; db.BanksysBankActions.Add(BA); db.SaveChanges(); transaction.Commit(); return(Ok("لقد قمت بتسـجيل بيانات العملية النقدية")); } catch (Exception e) { transaction.Rollback(); return(StatusCode(500, e.Message)); } } }