public void OnActionExecuting(ActionExecutingContext context)
{
if (context.HttpContext.Session.Keys.Contains("guid") || context.HttpContext.Session.Keys.Contains("unionid"))
{
string guid = context.HttpContext.Request.Query["guid"].ToString();
string unionid = context.HttpContext.Request.Query["guid"].ToString();
string val = string.Empty;
byte[] byVal;
if (!string.IsNullOrEmpty(guid))
{
context.HttpContext.Session.TryGetValue("guid", out byVal);
val = Encoding.Default.GetString(byVal);
if (guid == val)
{
return;
}
else
{
context.HttpContext.Response.StatusCode = 401;
Configs.Conf_ResponseMessage responseMessageObj = new Configs.Conf_ResponseMessage();
responseMessageObj.code = "401";
responseMessageObj.status = "Error";
responseMessageObj.message = "No Access";
JsonResult jsonResult = new JsonResult(responseMessageObj);
context.Result = jsonResult;
}
}
else if (!string.IsNullOrEmpty(unionid))
{
context.HttpContext.Session.TryGetValue("unionid", out byVal);
val = Encoding.Default.GetString(byVal);
if (unionid == val)
{
return;
}
else
{
context.HttpContext.Response.StatusCode = 401;
Configs.Conf_ResponseMessage responseMessageObj = new Configs.Conf_ResponseMessage();
responseMessageObj.code = "401";
responseMessageObj.status = "Error";
responseMessageObj.message = "No Access";
JsonResult jsonResult = new JsonResult(responseMessageObj);
context.Result = jsonResult;
}
}
}
else
{
context.HttpContext.Response.StatusCode = 401;
Configs.Conf_ResponseMessage responseMessageObj = new Configs.Conf_ResponseMessage();
responseMessageObj.code = "401";
responseMessageObj.status = "Error";
responseMessageObj.message = "No Access";
JsonResult jsonResult = new JsonResult(responseMessageObj);
context.Result = jsonResult;
}
}
public void OnActionExecuting(ActionExecutingContext context)
{
string operationCode = context.HttpContext.Request.Query["code"];
if (operationCode == "sys_operation")
{
return;
}
else
{
context.HttpContext.Response.StatusCode = 401;
Configs.Conf_ResponseMessage responseMessageObj = new Configs.Conf_ResponseMessage();
responseMessageObj.code = "401";
responseMessageObj.status = "Error";
responseMessageObj.message = "No Access";
JsonResult jsonResult = new JsonResult(responseMessageObj);
context.Result = jsonResult;
}
}
void IActionFilter.OnActionExecuting(ActionExecutingContext context)
{
string host = context.HttpContext.Request.Host.Host;
string appid = context.HttpContext.Request.Query["appid"].ToString();
WHControllerBase ControllerBaseObj = (WHControllerBase)context.Controller;
if (!string.IsNullOrEmpty(appid))
{
if (ControllerBaseObj != null)
{
if (ControllerBaseObj.dbConnection.State == System.Data.ConnectionState.Open)
{
Orm.Orm_lst_access_ids orm_Lst_Access_Ids = new Orm.Orm_lst_access_ids();
orm_Lst_Access_Ids.appid = appid;
string query = "select * from lst_access_ids where appid=@appid";
Orm.Orm_lst_access_ids orm_Lst_Access_Ids_Selected = ControllerBaseObj.dbConnection.Query <Orm.Orm_lst_access_ids>(query, orm_Lst_Access_Ids).SingleOrDefault();
if (orm_Lst_Access_Ids_Selected != null)
{
context.HttpContext.Response.StatusCode = 201;
return;
}
else
{
context.HttpContext.Response.StatusCode = 401;
Configs.Conf_ResponseMessage responseMessageObj = new Configs.Conf_ResponseMessage();
responseMessageObj.code = "401";
responseMessageObj.status = "Error";
responseMessageObj.message = "No Access";
JsonResult jsonResult = new JsonResult(responseMessageObj);
context.Result = jsonResult;
}
}
}
else
{
context.HttpContext.Response.StatusCode = 401;
Configs.Conf_ResponseMessage responseMessageObj = new Configs.Conf_ResponseMessage();
responseMessageObj.code = "401";
responseMessageObj.status = "Error";
responseMessageObj.message = "No Access";
JsonResult jsonResult = new JsonResult(responseMessageObj);
context.Result = jsonResult;
}
}
else
{
string webtoken = string.Empty;
if (context.HttpContext.Request.Cookies.ContainsKey("token"))
{
webtoken = context.HttpContext.Request.Cookies["token"].ToString();
}
else if (context.HttpContext.Request.Query.ContainsKey("token"))
{
webtoken = context.HttpContext.Request.Query["token"].ToString();
}
if (string.IsNullOrEmpty(webtoken))
{
context.HttpContext.Response.StatusCode = 401;
Configs.Conf_ResponseMessage responseMessageObj = new Configs.Conf_ResponseMessage();
responseMessageObj.code = "401";
responseMessageObj.status = "Error";
responseMessageObj.message = "No Access";
JsonResult jsonResult = new JsonResult(responseMessageObj);
context.Result = jsonResult;
}
else
{
string valToken = string.Empty;
byte[] byVal;
context.HttpContext.Session.TryGetValue("token", out byVal);
valToken = Encoding.Default.GetString(byVal);
if (string.IsNullOrEmpty(valToken))
{
if (valToken == webtoken)
{
context.HttpContext.Session.TryGetValue("token", out byVal);
string strTS = Encoding.Default.GetString(byVal);
DateTime dtTS = DateTime.Parse(strTS);
if ((DateTime.Now - dtTS).Hours >= 1)
{
context.HttpContext.Session.Clear();
context.HttpContext.Response.Cookies.Delete("token");
context.HttpContext.Response.StatusCode = 401;
Configs.Conf_ResponseMessage responseMessageObj = new Configs.Conf_ResponseMessage();
responseMessageObj.code = "401";
responseMessageObj.status = "Error";
responseMessageObj.message = "No Access";
JsonResult jsonResult = new JsonResult(responseMessageObj);
context.Result = jsonResult;
}
else
{
return;
}
}
else
{
context.HttpContext.Response.StatusCode = 401;
Configs.Conf_ResponseMessage responseMessageObj = new Configs.Conf_ResponseMessage();
responseMessageObj.code = "401";
responseMessageObj.status = "Error";
responseMessageObj.message = "No Access";
JsonResult jsonResult = new JsonResult(responseMessageObj);
context.Result = jsonResult;
}
}
else
{
context.HttpContext.Response.StatusCode = 401;
Configs.Conf_ResponseMessage responseMessageObj = new Configs.Conf_ResponseMessage();
responseMessageObj.code = "401";
responseMessageObj.status = "Error";
responseMessageObj.message = "No Access";
JsonResult jsonResult = new JsonResult(responseMessageObj);
context.Result = jsonResult;
}
}
}
}
