public ActionResult GetList()
{
AccountPermission permission = GetPermission(CurrentUID);
List <TblQuotation> obList = uow.Modules.Quotation.GetList2((permission.IsAdminTeam || permission.IsManager) ?0 : CurrentUID);
return(Json(obList));
}
public void Delete(int id)
{
AccountPermission adminUser = _db.AccountPermissions.Find(id);
_db.AccountPermissions.Remove(adminUser);
_db.SaveChanges();
}
public ActionResult GetInvoiceList()
{
List <TblInvoice> lst = new List <TblInvoice>();
EnmPaymentCondition payCon = new EnmPaymentCondition();
EnmPaymentCondition payConInvoice = new EnmPaymentCondition();
try
{
AccountPermission permission = GetPermission(CurrentUID);
lst = uow.Modules.Invoice.GetList((permission.IsAdminTeam || permission.IsManager) ? 0 : CurrentUID);
foreach (var pr in lst)
{
pr.SaleOrder = uow.Modules.SaleOrder.GetById(pr.SaleOrderId);
pr.StrInvoiceDate = pr.InvoiceDate.Day.ToString("00") + "/" + pr.InvoiceDate.Month.ToString("00") + "/" + pr.InvoiceDate.Year;
payCon = uow.Modules.PaymentCondition.Get(pr.SaleOrder.ConditionId.HasValue ? pr.SaleOrder.ConditionId.Value : 0);
pr.SaleOrder.ConditionName = payCon.ConditionName;
payConInvoice = uow.Modules.PaymentCondition.Get(pr.ConditionId.HasValue ? pr.ConditionId.Value : 0);
pr.ConditionName = payConInvoice.ConditionName;
}
}
catch (Exception ex)
{
WidgetAlertModel Alert = new WidgetAlertModel()
{
Type = AlertMsgType.Danger,
Message = ex.GetMessage(true)
};
ViewBag.Alert = Alert;
}
return(Json(lst));
}
//create an account permission
public void CreateAccountPermission(AccountPermission accountPermission)
{
//accountPermission.accountID = 32;
accountPermission.createDate = DateTime.Now;
_db.AccountPermissions.Add(accountPermission);
_db.SaveChanges();
}
public void New2()
{
PropertyBag["accounttype"] = typeof(Account);
PropertyBag.Add("licenses", ProductLicense.FindAll());
PropertyBag.Add("permissions", AccountPermission.FindAll());
PropertyBag.Add("users", User.FindAll());
}
public string GetPermissions(int accountId)
{
var sql = new Sql("SELECT * FROM GraphQL_AccountSettings WHERE AccountId=@0", accountId);
var settings = _database.Query <AccountSettings>(sql);
if (settings != null)
{
var accountPermissions = new List <AccountPermission>();
foreach (var permission in settings)
{
var accountPermission = new AccountPermission();
accountPermission.Notes = permission.Notes;
accountPermission.Permission = permission.Permission.ToString();
accountPermission.PropertyAlias = permission.PropertyTypeAlias;
accountPermission.DoctypeAlias = permission.DocTypeAlias;
accountPermission.IsBuiltInProperty = permission.IsBuiltInProperty;
accountPermissions.Add(accountPermission);
}
var results = JsonConvert.SerializeObject(accountPermissions);
return(results);
}
return(null);
}
public ActionResult EditAccountPermission(AccountPermissionEditViewModel model)
{
if (ModelState.IsValid)
{
AccountPermission _accountPermission = accountPermissionDAO.FetchAccountPermissionByID(model.accountPermissionID);
var user = accountPermissionDAO.FetchAccountPermissionByID(model.accountPermissionID);
AccountPermission accountPermission = new AccountPermission
{
accountPermissionID = model.accountPermissionID,
accountID = model.accountID,
permissionID = model.permissionID,
email = _accountPermission.email,
lastUpdateDate = DateTime.Now
};
//prevents user from changing the permission of a super admin user
if (user.Permission.name == "SuperAdmin")
{
TempData["errorMessage"] = "SuperAdmin users cannot be changed. Please see System Administrator !";
return(RedirectToAction("AccountPermissionIndex"));
}
else if (user.Permission.name != "SuperAdmin")
{
accountPermissionDAO.updateAccountPermission(accountPermission);
alertService.AdminUpdatedAlert(accountPermission);
return(RedirectToAction("AccountPermissionDetails", new { id = accountPermission.accountPermissionID }));
}
}
model.Permissions = accountPermissionDAO.FetchAllPermissions();
model.userSession = userSession.LoggedIn;
model.adminUser = true;
return(View(model));
}
public static void AddPermission(Account account, Permission permission)
{
AccountPermission ap = new AccountPermission();
ap.AccountID = account.AccountID;
ap.PermissionID = permission.PermissionID;
ap.Save();
}
//delete an account permission
public void DeleteAccountPermission(int id)
{
AccountPermission accountPermission = _db.AccountPermissions.Find(id);
_db.AccountPermissions.Remove(accountPermission);
_db.SaveChanges();
}
public ActionResult Delete(int id = 0)
{
//returns error message if user fetches an account permission that does not exist
AccountPermission accountPermission = accountPermissionDAL.FetchByID(id);
if (accountPermission == null)
{
TempData["errorMessage"] = "This admin user does not exist!";
return(RedirectToAction("Index"));
}
//prevents user from deleting the permission of a super admin user
if (accountPermission.Permission.name == "SuperAdmin")
{
TempData["errorMessage"] = "SuperAdmin users cannot be deleted. See System Administrator !";
return(RedirectToAction("Index"));
}
DeleteViewModel model = new DeleteViewModel(accountPermission);
model.email = accountPermission.email;
model.Permission = accountPermission.Permission;
model.permissionID = accountPermission.permissionID;
model.createDate = accountPermission.createDate;
model.updateDate = accountPermission.updateDate;
return(View(model));
}
public ActionResult Edit(EditViewModel model)
{
if (ModelState.IsValid)
{
AccountPermission _accountPermission = accountPermissionDAL.FetchByID(model.accountPermissionID);
var user = accountPermissionDAL.FetchByID(model.accountPermissionID);
AccountPermission accountPermission = new AccountPermission
{
accountPermissionID = model.accountPermissionID,
accountID = model.accountID,
permissionID = model.permissionID,
email = _accountPermission.email,
updateDate = DateTime.Now
};
//prevents user from changing the permission of a super admin user
if (user.Permission.name == "SuperAdmin")
{
TempData["errorMessage"] = "SuperAdmin users cannot be modified. Please see System Administrator !";
return(RedirectToAction("Index"));
}
else if (user.Permission.name != "SuperAdmin")
{
accountPermissionDAL.Update(accountPermission);
return(RedirectToAction("Details", new { id = accountPermission.accountPermissionID }));
}
}
model.Permissions = permissionDAL.FetchAll();
return(View(model));
}
private ActionResult ViewDetail(TblInvoice ob, string msg, AlertMsgType?msgType)
{
try
{
if (ob == null)
{
throw new Exception("ไม่พบข้อมูลที่ต้องการ, กรุณาลองใหม่อีกครั้ง");
}
if (!string.IsNullOrWhiteSpace(msg))
{
WidgetAlertModel alert = new WidgetAlertModel()
{
Message = msg
};
if (msgType.HasValue)
{
alert.Type = msgType.Value;
}
ViewBag.Alert = alert;
}
List <TblSaleOrder> saleOrderList = uow.Modules.SaleOrder.GetListForInvoiceByCondition("", "", "2");
List <TblSaleOrder> saleOrderList2 = new List <TblSaleOrder>();
decimal remain = 0;
decimal total = 0;
foreach (TblSaleOrder so in saleOrderList)
{
remain = uow.Modules.Invoice.GetRemain(so.SaleOrderId);
total = so.SubTotalNet.HasValue ? so.SubTotalNet.Value : 0;
if (total - remain > 0)
{
saleOrderList2.Add(so);
}
}
AccountPermission permission = new AccountPermission();
permission = GetPermissionSale(CurrentUser.AccountId, ob.CreatedBy.HasValue?ob.CreatedBy.Value:0);
ViewData["optSaleOrder"] = uow.Modules.SaleOrder.Gets();
//ViewData["optSaleOrder"] = saleOrderList2;
ViewData["optQuotation"] = uow.Modules.Quotation.Gets();
ViewData["optPayment"] = uow.Modules.PaymentCondition.Gets();
ViewData["optRemain"] = uow.Modules.Invoice.GetRemain(ob.SaleOrderId);
ViewData["optInvoiceRemain"] = uow.Modules.Invoice.GetRemain(ob.SaleOrderId, ob.InvoiceTerm);
ViewData["optPermission"] = permission;
ViewData["optHistoryAmt"] = uow.Modules.Invoice.GetHistoryInvoiceAmount(ob.SaleOrderId);
return(View(ob));
}
catch (Exception ex)
{
return(RedirectToAction("Index", MVCController, new
{
area = MVCArea,
msg = ex.GetMessage(),
msgType = AlertMsgType.Danger
}));
}
}
private ActionResult ViewDetail(TransferHeader ob, string msg, AlertMsgType?msgType)
{
try
{
if (ob == null)
{
throw new Exception("ไม่พบข้อมูลที่ต้องการ, กรุณาลองใหม่อีกครั้ง");
}
if (!string.IsNullOrWhiteSpace(msg))
{
WidgetAlertModel alert = new WidgetAlertModel()
{
Message = msg
};
if (msgType.HasValue)
{
alert.Type = msgType.Value;
}
ViewBag.Alert = alert;
}
AccountPermission permission = new AccountPermission();
if (ob.JobOrder != null)
{
ob.JobOrder.Team = uow.Modules.TeamOperation.Get(ob.JobOrder.TeamId.HasValue ? ob.JobOrder.TeamId.Value : 0);
permission = GetPermissionOperation(CurrentUID, ob.JobOrder.Team);
}
else
{
List <TeamOperation> manager = uow.Modules.TeamOperation.Manager(CurrentUID);
if (manager != null)
{
permission.IsManager = true;
permission.IsEdit = true;
permission.IsTeam = true;
permission.IsAdminTeam = false;
}
}
ViewData["optCustomer"] = uow.Modules.Customer.GetAllAddress();
ViewData["optCustomerAddress"] = uow.Modules.CustomerAddress.Gets();
ViewData["optProduct"] = uow.Modules.Product.Gets();
ViewData["optContact"] = uow.Modules.CustomerContact.Gets();
ViewData["optEmployee"] = uow.Modules.Employee.Gets();
ViewData["optPermission"] = permission;
return(View(ob));
}
catch (Exception ex)
{
return(RedirectToAction("Index", MVCController, new
{
area = MVCArea,
msg = ex.GetMessage(),
msgType = AlertMsgType.Danger
}));
}
}
public AccountPermissionEditViewModel(AccountPermission accountPermission, IEnumerable <Permission> permissions)
{
Permission = accountPermission.Permission;
permissionID = accountPermission.permissionID;
accountPermissionID = accountPermission.accountPermissionID;
accountID = accountPermission.accountID;
email = accountPermission.email;
}
public Account(string username, string password, string passwordHashed, DateTime lastUpdate, AccountPermission permission)
{
UserName = username;
Password = password;
PasswordHashed = passwordHashed;
LastUpdate = lastUpdate;
Permission = permission;
}
public ActionResult Edit(int id)
{
AccountPermission accountPermission = accountPermissionDAL.FetchByID(id);
EditViewModel model = new EditViewModel(accountPermission, permissionDAL.FetchAll());
model.Permissions = permissionDAL.FetchAll();
return(View(model));
}
public ActivityViewModel(AccountPermission accountPermission)
{
Account = accountPermission.Account;
firstName = accountPermission.Account.firstName;
lastName = accountPermission.Account.lastName;
dateAdded = accountPermission.createDate;
email = accountPermission.email;
accountPermissionID = accountPermission.accountPermissionID;
}
public AccountPermissionDetailsViewModel(AccountPermission accountPermission)
{
Permission = accountPermission.Permission;
accountPermissionID = accountPermission.accountPermissionID;
permissionID = accountPermission.permissionID;
accountID = accountPermission.accountID;
createDate = accountPermission.createDate;
lastUpdateDate = accountPermission.lastUpdateDate;
email = accountPermission.email;
}
public DeleteViewModel(AccountPermission accountPermission, IEnumerable <Permission> permissions)
{
Permission = accountPermission.Permission;
permissionID = accountPermission.permissionID;
accountPermissionID = accountPermission.accountPermissionID;
accountID = accountPermission.accountID;
email = accountPermission.email;
createDate = accountPermission.createDate;
updateDate = accountPermission.updateDate;
}
public ActionResult EditPermission(AccountPermission model)
{
var permission = DB.AccountPermission.Single(x => x.Id == model.Id);
permission.Description = model.Description;
DB.SaveChanges();
SuccessMessage("Описание сохранено");
return(RedirectToAction("ListPermission"));
}
public ActionResult CreateAccountPermission(AccountPermissionCreateViewModel model)
{
if (ModelState.IsValid)
{
AccountPermission accountPermission = new AccountPermission()
{
permissionID = model.permissionID,
email = model.email,
createDate = DateTime.Now,
};
//admin permissions cannot be added to an account that does not exist on the system
var existingMember = accountDAO.FetchByEmail(model.email);
if (existingMember == null)
{
TempData["errorMessage"] = "This user does not exist in the system";
return(RedirectToAction("AccountPermissionIndex"));
}
//admin permissions cannot be given to a user who has a profile
if (existingMember != null)
{
var profile = profileDAO.fetchByAccountID(existingMember.accountID);
if (profile != null)
{
TempData["errorMessage"] = "This user is a site member. Site members cannot be admin also !.";
return(RedirectToAction("AccountPermissionIndex"));
}
else if (profile == null)
{
//admin permissions cannot be given to a user who is already admin
var existingAdmin = accountPermissionDAO.FetchByEmail(model.email);
if (existingAdmin != null)
{
TempData["errorMessage"] = "This user is already admin. You can change their permission in Admin Users/Change Permission !";
return(RedirectToAction("AccountPermissionIndex"));
}
else if (existingAdmin == null)
{
//adds the admin user to the database
accountPermission.accountID = existingMember.accountID;
accountPermissionDAO.CreateAccountPermission(accountPermission);
alertService.AddAdminUserCreatedAlert(accountPermission); //creates alert for admin news feed
TempData["successMessage"] = "Success. You have created a new admin user !";
return(RedirectToAction("AccountPermissionIndex"));
}
}
}
}
model.Permissions = accountPermissionDAO.FetchAllPermissions();
model.adminUser = true;
return(View(model));
}
public JsonResult GetList()
{
string formateDate = "yyyy-MM-dd";
AccountPermission permission = GetPermission(CurrentUID);
// DateTime searchOrderDate = Converting.StringToDate(saleOrderDate, formateDate);
List <TblJobOrder> ob = uow.Modules.JobOrder.GetHeader((permission.IsAdminTeam || permission.IsManager) ? 0 : CurrentUID);
return(Json(ob));
}
public void Edit2(int id)
{
if (!Flash.Contains("account"))
{
PropertyBag["account"] = ActiveRecordMediator <Account> .FindByPrimaryKey(id);
}
PropertyBag.Add("licenses", ProductLicense.FindAll());
PropertyBag.Add("permissions", AccountPermission.FindAll());
PropertyBag.Add("users", User.FindAll());
}
public void Update(AccountPermission adminUser)
{
AccountPermission originalAdminUser = _db.AccountPermissions.Find(adminUser.accountPermissionID);
originalAdminUser.accountPermissionID = adminUser.accountPermissionID;
originalAdminUser.accountID = adminUser.accountID;
originalAdminUser.permissionID = adminUser.permissionID;
originalAdminUser.email = adminUser.email;
originalAdminUser.updateDate = DateTime.Now;
_db.SaveChanges();
}
// GET: Report
public ActionResult Index()
{
AccountPermission permission = GetPermission(CurrentUID);
List <SaleOrderHeader> ob = uow.Modules.SaleOrder.GetHeader((permission.IsAdminTeam || permission.IsManager) ? 0 : CurrentUID);
List <int> yearAll = ob.GroupBy(o => o.DSaleOrderDate.Value.Year).Select(grp => grp.Key).ToList();
ViewData["optYearAll"] = yearAll;
return(View());
}
public void AddPermission(Account account, Permission permission)
{
using (SPKTDataContext spktDC = conn.GetContext())
{
AccountPermission ap = new AccountPermission();
ap.AccountID = account.AccountID;
ap.PermissionID = permission.PermissionID;
spktDC.AccountPermissions.InsertOnSubmit(ap);
spktDC.SubmitChanges();
}
}
public static void AddPermissions(Account account, List<Permission> permissions)
{
List<AccountPermission> list = new List<AccountPermission>();
foreach (var p in permissions)
{
AccountPermission ap = new AccountPermission();
ap.AccountID = account.AccountID;
ap.PermissionID = p.PermissionID;
list.Add(ap);
}
AccountPermission.AddMany(list);
}
//update an existing account permission
public void updateAccountPermission(AccountPermission accountPermission)
{
AccountPermission originalAccountPermission = _db.AccountPermissions.Find(accountPermission.accountPermissionID);
originalAccountPermission.accountPermissionID = accountPermission.accountPermissionID;
originalAccountPermission.accountID = accountPermission.accountID;
originalAccountPermission.permissionID = accountPermission.permissionID;
originalAccountPermission.email = originalAccountPermission.email;
//originalAccountPermission.Permission.name = accountPermission.Permission.name;
originalAccountPermission.lastUpdateDate = DateTime.Now;
_db.SaveChanges();
}
public ActionResult Create(CreateViewModel model)
{
if (ModelState.IsValid)
{
AccountPermission accountPermission = new AccountPermission()
{
permissionID = model.permissionID,
email = model.email,
createDate = DateTime.Now,
};
//admin permissions cannot be added to an account that does not exist on the system
var existingMember = accountDAL.FetchByEmail(model.email);
if (existingMember == null)
{
TempData["errorMessage"] = "This user does not exist in the system";
return(RedirectToAction("Index"));
}
else if (existingMember != null)
{
if (existingMember.isVerified == false)
{
TempData["errorMessage"] = "This user hasn't verified their email";
return(RedirectToAction("Create"));
}
if (existingMember.isVerified == true)
{
//admin permissions cannot be given to a user who is already admin
var existingAdmin = accountPermissionDAL.FetchByEmail(model.email);
if (existingAdmin != null)
{
TempData["errorMessage"] = "This user is already admin. You can change their permission in Admin Users/Change Permission !";
return(RedirectToAction("Index"));
}
else if (existingAdmin == null)
{
//adds the admin user to the database
accountPermission.accountID = existingMember.accountID;
accountPermissionDAL.Create(accountPermission);
TempData["successMessage"] = "Success. You have created a new admin user !";
return(RedirectToAction("Index"));
}
}
}
}
model.Permissions = permissionDAL.FetchAll();
return(View(model));
}
//Get and post methods for deleting an account permission
public ActionResult DeleteAccountPermission(int id = 0)
{
//prevents users from accessing the page if they are not logged in
if (userSession.LoggedIn == false)
{
return(Content("You are not logged in ! Please login to view this page"));
}
//prevents users who are not super admin from accessing this page
Account account = userSession.CurrentUser;
var adminUser = accountPermissionDAO.FetchByEmail(account.email);
if (adminUser == null)
{
return(Content("Only Super Admin users are permitted to view this page"));
}
if (adminUser.Permission.name != "SuperAdmin")
{
return(Content("Only Super Admin users are permitted to view this page"));
}
//returns error message if user fetches an account permission that does not exist
AccountPermission accountPermission = accountPermissionDAO.FetchAccountPermissionByID(id);
if (accountPermission == null)
{
TempData["errorMessage"] = "This admin user does not exist!";
return(RedirectToAction("AccountPermissionIndex"));
}
//prevents user from deleting the permission of a super admin user
if (accountPermission.Permission.name == "SuperAdmin")
{
TempData["errorMessage"] = "SuperAdmin users cannot be deleted. See System Administrator !";
return(RedirectToAction("AccountPermissionIndex"));
}
AccountPermissionDeleteViewModel model = new AccountPermissionDeleteViewModel(accountPermission);
model.email = accountPermission.email;
model.Permission = accountPermission.Permission;
model.permissionID = accountPermission.permissionID;
model.createDate = accountPermission.createDate;
model.lastUpdateDate = accountPermission.lastUpdateDate;
model.userSession = userSession.LoggedIn;
model.loggedInAccount = account;
model.loggedInAccountID = account.accountID;
model.permissionType = adminUser.Permission.name;
model.adminUser = true;
return(View(model));
}
public void AdminUserRemovedAlert(AccountPermission accountPermission)
{
Account account = userSession.CurrentUser;
var alertMessage = account.email + " removed admin user : " + accountPermission.email;
alert.accountID = account.accountID;
alert.createDate = DateTime.Now;
alert.alertTypeID = (int)AlertType.AlertTypes.AdminRemoved;
alert.message = alertMessage;
SaveAlert(alert);
}
public JsonResult GetReport(string searchYear)
{
ChartModel Result = null;
List <string> xAix = new List <string>();
List <string> yAix = new List <string>();
List <string> yAix2 = new List <string>();
AccountPermission permission = GetPermission(CurrentUID);
try
{
List <SaleOrderHeader> obSaleOrder = uow.Modules.SaleOrder.GetHeader((permission.IsAdminTeam || permission.IsManager) ? 0 : CurrentUID);
List <TblQuotation> objQuation = uow.Modules.Quotation.GetList((permission.IsAdminTeam || permission.IsManager) ? 0 : CurrentUID);
xAix.AddRange(Converting.GetShortMonth());
int intMonth = 1;
obSaleOrder = obSaleOrder.Where(o => o.DSaleOrderDate.Value.Year.ToString() == searchYear).ToList();
objQuation = objQuation.Where(o => o.QuotationDate.Year.ToString() == searchYear).ToList();
foreach (string month in Converting.GetShortMonth())
{
string monthyearFormat = string.Format("{0}{1}", searchYear, intMonth.ToString("##00"));
decimal sumSaleOrder = obSaleOrder.Where(o => (o.DSaleOrderDate.Value.Year.ToString() + o.DSaleOrderDate.Value.Month.ToString("##00") == monthyearFormat)).Sum(o => o.SummaryTot.HasValue?o.SummaryTot.Value:0);
yAix.Add(sumSaleOrder.ToString());
decimal sumQuotation = objQuation.Where(o => (o.QuotationDate.Year.ToString() + o.QuotationDate.Month.ToString("##00") == monthyearFormat)).Sum(o => o.SummaryTot.HasValue ? o.SummaryTot.Value : 0);
yAix2.Add(sumQuotation.ToString());
intMonth++;
}
/* xAix.Add("Jan");
* xAix.Add("Feb");
*
* yAix.Add("10000");
* yAix.Add("20000");*/
Result = new ChartModel();
Result.xAixData = xAix;
Result.yAixData = yAix;
Result.yAixData2 = yAix2;
// customerResult = uow.Modules.Product.GetByCondition(ProductCode, ProductName).Where(o => o.PriceNet > 0).ToList();
}
catch (Exception ex)
{ }
return(Json(Result, JsonRequestBehavior.AllowGet));
}
