public List <ASSETKKF_MODEL.Data.Mssql.Mcis.msUserSequence> GetData(ASSETKKF_MODEL.Request.Mcis.msUserSequenceReq d) { DynamicParameters param = new DynamicParameters(); param.Add("@USERCODE", d.USERCODE); /* * param.Add("@STDATE", d.STDATE); * param.Add("@ENDATE", d.ENDATE); * param.Add("@USER_ID", d.USER_ID); * param.Add("@USER_DATE", d.USER_DATE); * param.Add("@EDIT_TYPE", d.EDIT_TYPE); * //param.Add("@txtSearch", $"%{d.txtSearch.GetValue()}%");*/ string cmd = "SELECT * FROM mcis.dbo.msUserSequence " + $"WHERE (@USERCODE IS NULL OR USERCODE = @USERCODE) " + $"AND STDATE <= DATEADD(D, 0, DATEDIFF(D, 0, GETDATE() )) " + $"and (ENDATE is null or ENDATE >= DATEADD(D, 0, DATEDIFF(D, 0, GETDATE() )) )" + $"AND EDIT_TYPE = 'A' " + /* * $" AND (@STDATE IS NULL OR STDATE = @STDATE) " + * $" AND (@ENDATE IS NULL OR ENDATE = @ENDATE) " + * $" AND (@USER_ID IS NULL OR USER_ID = @USER_ID) " + * $" AND (@USER_DATE IS NULL OR USER_DATE = @USER_DATE) " + * $" AND (@EDIT_TYPE IS NULL OR EDIT_TYPE = @EDIT_TYPE) " + * //$"AND (USERCODE LIKE @txtSearch OR USERCODE LIKE @txtSearch) " + */ "ORDER BY USERCODE;"; var res = Query <ASSETKKF_MODEL.Data.Mssql.Mcis.msUserSequence>(cmd, param).ToList(); return(res); }
public List <ASSETKKF_MODEL.Data.Mssql.Mcis.msUserSequence> Search(ASSETKKF_MODEL.Request.Mcis.msUserSequenceReq d) { DynamicParameters param = new DynamicParameters(); /* * param.Add("@USERCODEIsNull", d.USERCODE.ListNull()); * param.Add("@STDATEIsNull", d.STDATE.ListNull()); * param.Add("@ENDATEIsNull", d.ENDATE.ListNull()); * param.Add("@USER_IDIsNull", d.USER_ID.ListNull()); * param.Add("@USER_DATEIsNull", d.USER_DATE.ListNull()); * param.Add("@EDIT_TYPEIsNull", d.EDIT_TYPE.ListNull()); * param.Add("@txtSearch", $"%{d.txtSearch.GetValue()}%"); */ string cmd = ""; /* * string cmd = "SELECT * FROM mcis.dbo.msUserSequence " + * $"WHERE (@USERCODEIsNull IS NULL OR USERCODE IN ('{ d.USERCODE.Join("','") }')) " + * $"AND (@STDATEIsNull IS NULL OR STDATE IN ('{ d.STDATE.Join("','") }')) " + * $"AND (@ENDATEIsNull IS NULL OR ENDATE IN ('{ d.ENDATE.Join("','") }')) " + * $"AND (@USER_IDIsNull IS NULL OR USER_ID IN ('{ d.USER_ID.Join("','") }')) " + * $"AND (@USER_DATEIsNull IS NULL OR USER_DATE IN ('{ d.USER_DATE.Join("','") }')) " + * $"AND (@EDIT_TYPEIsNull IS NULL OR EDIT_TYPE IN ('{ d.EDIT_TYPE.Join("','") }')) " + * $"AND (USERCODE LIKE @txtSearch OR USERCODE LIKE @txtSearch) " + * //"ORDER BY ;"; */ var res = Query <ASSETKKF_MODEL.Data.Mssql.Mcis.msUserSequence>(cmd, param).ToList(); return(res); }
protected override void ExecuteChild(OauthLoginReq dataReq, ResponseAPI dataRes) { var res = new OauthLoginRes(); var userApprove = new ASSETKKF_MODEL.Request.Mcis.msUserSequenceReq(); userApprove.USERCODE = dataReq.usercode; try { var roles = ASSETKKF_ADO.Mssql.Mcis.msUserSequenceAdo.GetInstant().GetData(userApprove); if (roles.Count <= 0) { res = new OauthLoginRes(); res.usercode = dataReq.usercode; res._result._status = "F"; res._result._code = "F0002"; res._result._message = "ไม่มีสิทธิ์ การอนุมัติ"; } else { var user = ASSETKKF_ADO.Mssql.Mcis.zUserAdo.GetInstant().Search(new ASSETKKF_MODEL.Data.Mssql.Mcis.zUser() { UserCode = dataReq.usercode.Trim() }).FirstOrDefault(); if (user == null) { throw new Exception("Username Not Found."); } if (user.Status != "A") { throw new Exception("Username is not Confirm."); } //var pass = Core.Util.EncryptUtil.Hash(dataReq.password.Trim()); var pass = Core.Util.EncryptUtil.ENDCodeNEW(dataReq.password.Trim()); /* * var config = Ado.Mssql.Table.UserConfig.GetInstant().Search(user.ID); * if (config.Where(x => x.TwoFactorEnable).ToList().Count != 0) * { * var authenticator = new TwoFactorAuthenticator(); * var isValid = authenticator.ValidateTwoFactorPIN(user.Code, dataReq.twofactor.Replace(" ", "")); * if (!isValid) * { * throw new Exception("T000: 2FA Code invalid."); * } * } * */ // if (user.UserPw == Core.Util.EncryptUtil.Hash(pass + user.SoftPassword)) if (user.UserPw == pass) { var _token = Core.Util.EncryptUtil.Hash(pass); res.token = _token.NewID(); res.username = user.UserName; res.usercode = user.UserCode; res._result._status = "S"; res._result._code = "S0000"; res._result._message = "username และ password ถูกต้อง"; StaticValue.GetInstant().TokenKey(); } else { res = new OauthLoginRes(); res.usercode = dataReq.usercode; res._result._status = "F"; res._result._code = "F0002"; res._result._message = "username และ password ไม่ถูกต้อง"; } } } catch { res.usercode = dataReq.usercode; res._result._status = "F"; res._result._code = "F0002"; res._result._message = "การเชื่อมต่อฐานข้อมูลมีปัญหา..."; } dataRes.data = res; }