public MessageLogin AdminCheckLogin(string username, string password) { MessageLogin systemMessage = new MessageLogin(); var db = new DB_CSEntities1(); try { password = Md5.md5(password.Trim(), 16); var login = db.User.FirstOrDefault(i => i.UserName == username.Trim() && i.isusingaccount == true && i.IsActive == true); if (login == null) { systemMessage.IsSuccess = false; systemMessage.Message = SystemMessageConst.systemmessage.AccountNotExist; } else { if (password != login.Password) { systemMessage.IsSuccess = false; systemMessage.Message = SystemMessageConst.systemmessage.PasswordNotCorrect; } else { var checkrole = db.RoleUser.Where(m => m.UserId == login.Id).ToList(); if (checkrole.Count == 0) { systemMessage.IsSuccess = false; systemMessage.Message = SystemMessageConst.systemmessage.NotRole; } else { var branch = db.Branch.FirstOrDefault(i => i.Id == login.BranchId); SessionUser sessionUser = new SessionUser(); sessionUser.Id = login.Id; sessionUser.UserName = login.UserName; sessionUser.Email = login.Email; sessionUser.Phone = login.Phone; sessionUser.FullName = login.FullName; sessionUser.BranchId = login.BranchId.Value; sessionUser.BranchName = branch.ShortName; sessionUser.Roleid = checkrole[0].RoleId; sessionUser.Code_brand = branch.Branch_code; HttpContext.Current.Session["session"] = sessionUser; systemMessage.IsSuccess = true; systemMessage.Message = "/Home/Index"; } } } if (systemMessage.IsSuccess) { SessionUser user = GetSessionBusiness.GetUser(); var myrole = db.Role.FirstOrDefault(ob => ob.Id == user.Roleid); var url = myrole.HomeUrl; if (!string.IsNullOrEmpty(url)) { systemMessage.Message = url; } } return(systemMessage); } catch (Exception e) { systemMessage.IsSuccess = false; systemMessage.Message = e.ToString(); return(systemMessage); } }
protected override void OnActionExecuting(ActionExecutingContext ctx) { var entity = new DB_CSEntities1(); //Check to see if we need to skip authentication //if (ctx.ActionDescriptor.GetCustomAttributes(typeof(AllowAnonymousAttribute), true).Any() // || ctx.ActionDescriptor.ControllerDescriptor.GetCustomAttributes(typeof(AllowAnonymousAttribute), true).Any()) // return; //if (!ctx.HttpContext.User.Identity.IsAuthenticated) //{ // ctx.Result = new RedirectToRouteResult( // new RouteValueDictionary(new { controller = "Login", action = "Index" }) // ); // return; //} //else //{ SessionUser user = GetSessionBusiness.GetUser(); if (user.Id == 0) { ctx.Result = new RedirectToRouteResult( new RouteValueDictionary(new { controller = "Login", action = "Index" }) ); return; } else { int userid = user.Id; int roleiduser = user.Roleid; int branchId = user.BranchId; string actionName = this.ControllerContext.RouteData.Values["action"].ToString(); string controllerName = this.ControllerContext.RouteData.Values["controller"].ToString(); if (controllerName != "User" && controllerName != "SiMenuBar") { var checkNewPass = entity.User.FirstOrDefault(m => m.Id == userid); if (checkNewPass != null && checkNewPass.status_password.ToString() == "1") { ctx.Result = new RedirectToRouteResult( new RouteValueDictionary(new { controller = "User", action = "ChangePassword" }) ); return; } } string TitleWeb = ""; var menu = entity.Menu.FirstOrDefault(m => m.MenuURL == controllerName); if (menu != null) { if (!string.IsNullOrEmpty(menu.ParentId.ToString())) { int id_parent = 0; int.TryParse(menu.ParentId.ToString(), out id_parent); var parent = entity.Menu.FirstOrDefault(m => m.Id == id_parent).MenuText; TitleWeb = parent; } else { TitleWeb += " > " + menu.MenuText; } user.TitleWeb = TitleWeb; var check = entity.MenuPermission.FirstOrDefault(m => (m.UserId == null || m.UserId == userid) && m.RoleId == roleiduser && m.MenuId == menu.Id && m.IsRead == true); if (check == null) { ctx.Result = new RedirectToRouteResult( new RouteValueDictionary(new { controller = "NotFound", action = "Index" }) ); return; } } } // } }
// GET: Base protected override void OnActionExecuting(ActionExecutingContext ctx) { var entity = new CRMDataContext(); SessionUser user = GetSessionBusiness.GetUser(); if (user.id == 0) { ctx.Result = new RedirectToRouteResult( new RouteValueDictionary(new { controller = "Authentication", action = "login" }) ); return; } else { int userid = user.id; // int roleiduser = user.roleid; int?branchId = user.id_center; string actionName = this.ControllerContext.RouteData.Values["action"].ToString(); string controllerName = this.ControllerContext.RouteData.Values["controller"].ToString(); if (controllerName != "Authentication" && controllerName != "SiMenuBar") { var checkNewPass = entity.sys_user.FirstOrDefault(m => m.id == userid); if (checkNewPass != null && checkNewPass.status_password.ToString() == "1") { ctx.Result = new RedirectToRouteResult( new RouteValueDictionary(new { controller = "Authentication", action = "ChangePassword" }) ); return; } } string TitleWeb = ""; var menu = entity.sys_menu.FirstOrDefault(m => m.url == controllerName); if (menu != null) { if (!string.IsNullOrEmpty(menu.parent_id.ToString())) { int id_parent = 0; int.TryParse(menu.parent_id.ToString(), out id_parent); var parent = entity.sys_menu.FirstOrDefault(m => m.id == id_parent); TitleWeb = parent.menu + " > " + menu.menu; //user.UrlParent = parent.url; //user.UrlChil = menu.url; } else { TitleWeb += " > " + menu.menu; //user.UrlParent = menu.menu; } //user.TitleWeb = TitleWeb; //var check = entity.MenuPermission.FirstOrDefault(m => // (m.UserId == null || m.UserId == userid) && m.RoleId == roleiduser && m.MenuId == menu.Id && // m.IsRead == true); //if (check == null) //{ // ctx.Result = new RedirectToRouteResult( // new RouteValueDictionary(new { controller = "NotFound", action = "Index" }) // ); // return; //} } } }