public string DeleteInfById(BlacklistInf B)
{
if (B.Token == DataHelper.getToken())
{
//string sql = "insert into T_VisitorAccessInf(VName, VSex, VNation, VBirthDate, VAddress, VIssuingAuthority, VExpiryDate, VCertificatePhoto, VLocalePhoto, VCertificateType, VCertificateNumber, VType, VFromCourtId, VInTime, VOutTime, VInPost, VOutPost, VInDoorkeeper, VOutDoorkeeper, VVisitingReason, VIntervieweeDept, VInterviewee, VOffice, VOfficePhone, VExtensionPhone, VMobilePhone, VRemark) values(@VName, @VSex, @VNation, @VBirthDate, @VAddress, @VIssuingAuthority, @VExpiryDate, @VCertificatePhoto, @VLocalePhoto, @VCertificateType, @VCertificateNumber, @VType, @VFromCourtId, @VInTime, @VOutTime, @VInPost, @VOutPost, @VInDoorkeeper, @VOutDoorkeeper, @VVisitingReason, @VIntervieweeDept, @VInterviewee, @VOffice, @VOfficePhone, @VExtensionPhone, @VMobilePhone, @VRemark)";
string sql = "delete from T_BlacklistInf where BId=@BId";
SqlParameter[] pms = new SqlParameter[] {
new SqlParameter("@BId", SqlDbType.Int)
{
Value = B.BId
}
};
try
{
int result = SQLHelper.ExecuteNonQuery(sql, System.Data.CommandType.Text, pms);
return(ConvertHelper.IntToJson(result));
}
catch (Exception e)
{
//在webapi中要想抛出异常必须这样抛出,否则之抛出一个默认500的异常
var resp = new HttpResponseMessage(HttpStatusCode.InternalServerError)
{
Content = new StringContent(e.ToString()),
ReasonPhrase = "error"
};
throw new HttpResponseException(resp);
}
}
else
{
return(ConvertHelper.resultJson(101, "权限受限!"));
}
}
public string EditInf(BlacklistInf v)
{
if (v.Token == DataHelper.getToken())
{
string wramStr = "";
if (v.BName == "" || v.BName == null)
{
wramStr = "姓名不能为空";
return("{\"code\":0,\"msg\":\"" + wramStr + "\"}");
}
else if (v.BAddress == "" || v.BAddress == null)
{
wramStr = "身份证中的住址不能为空";
return("{\"code\":0,\"msg\":\"" + wramStr + "\"}");
}
else if (v.BCertificateNumber == "" || v.BCertificateNumber == null)
{
wramStr = "证件号不能为空";
return("{\"code\":0,\"msg\":\"" + wramStr + "\"}");
}
else
{
//数据在传输过程中,密文中的“+”号会被替换合成“ ”空格号,把它还原回来
string name = v.BName.Replace(" ", "+");
string address = v.BAddress.Replace(" ", "+");
string certificateNumber = v.BCertificateNumber.Replace(" ", "+");
string p = "";
p += "BName=" + name;
p += "&BSex=" + v.BSex;
p += "&BNation=" + v.BNation;
p += "&BBirthDate=" + v.BBirthDate;
p += "&BAddress=" + address;
p += "&BIssuingAuthority=" + v.BIssuingAuthority;
p += "&BExpiryDate=" + v.BExpiryDate;
p += "&BCertificatePhoto=" + v.BCertificatePhoto;
p += "&BLocalePhoto=" + v.BLocalePhoto;
p += "&BCertificateType=" + v.BCertificateType;
p += "&BCertificateNumber=" + certificateNumber;
p += "&BCreateTime=" + v.BCreateTime;
p += "&BFromCourtId=" + v.BFromCourtId;
p += "&BLevel=" + v.BLevel;
p += "&BRemark=" + v.BRemark;
string md5Ciphertext = v.BMD5Ciphertext;//对方传过来的所有字段的MD5密文
//把传过来的信息再次MD5加密,和所有字段的MD5密文进行比对,保证数据在传输过程中没被修改才允许添加到数据库
string md5P = MD5Helper._md5(p);
if (md5Ciphertext == md5P)
{
//string sql = "insert into T_VisitorAccessInf(VName, VSex, VNation, VBirthDate, VAddress, VIssuingAuthority, VExpiryDate, VCertificatePhoto, VLocalePhoto, VCertificateType, VCertificateNumber, VType, VFromCourtId, VInTime, VOutTime, VInPost, VOutPost, VInDoorkeeper, VOutDoorkeeper, VVisitingReason, VIntervieweeDept, VInterviewee, VOffice, VOfficePhone, VExtensionPhone, VMobilePhone, VRemark) values(@VName, @VSex, @VNation, @VBirthDate, @VAddress, @VIssuingAuthority, @VExpiryDate, @VCertificatePhoto, @VLocalePhoto, @VCertificateType, @VCertificateNumber, @VType, @VFromCourtId, @VInTime, @VOutTime, @VInPost, @VOutPost, @VInDoorkeeper, @VOutDoorkeeper, @VVisitingReason, @VIntervieweeDept, @VInterviewee, @VOffice, @VOfficePhone, @VExtensionPhone, @VMobilePhone, @VRemark)";
string sql = "update T_BlacklistInf set BName=@BName,BSex=@BSex,BNation=@BNation,BBirthDate=@BBirthDate,BAddress=@BAddress,";
sql += "BIssuingAuthority=@BIssuingAuthority,BExpiryDate=@BExpiryDate,BCertificatePhoto=@BCertificatePhoto,BLocalePhoto=@BLocalePhoto,BCertificateType=@BCertificateType,BCertificateNumber=@BCertificateNumber,BCreateTime=@BCreateTime,BFromCourtId=@BFromCourtId,";
sql += "BLevel=@BLevel,BRemark=@BRemark";
sql += " where BId=@BId";
SqlParameter[] pms = new SqlParameter[] {
new SqlParameter("@BName", SqlDbType.NVarChar)
{
Value = DataHelper.IsNullReturnLine(AESHelper.AesDecrypt(name))
},
new SqlParameter("@BSex", SqlDbType.NVarChar)
{
Value = DataHelper.IsNullReturnLine(v.BSex)
},
new SqlParameter("@BNation", SqlDbType.NVarChar)
{
Value = DataHelper.IsNullReturnLine(v.BNation)
},
new SqlParameter("@BBirthDate", SqlDbType.NVarChar)
{
Value = DataHelper.IsNullReturnLine(v.BBirthDate)
},
new SqlParameter("@BAddress", SqlDbType.NVarChar)
{
Value = DataHelper.IsNullReturnLine(AESHelper.AesDecrypt(address))
},
new SqlParameter("@BIssuingAuthority", SqlDbType.NVarChar)
{
Value = DataHelper.IsNullReturnLine(v.BIssuingAuthority)
},
new SqlParameter("@BExpiryDate", SqlDbType.NVarChar)
{
Value = DataHelper.IsNullReturnLine(v.BExpiryDate)
},
new SqlParameter("@BCertificatePhoto", SqlDbType.NVarChar)
{
Value = DataHelper.IsNullReturnLine(v.BCertificatePhoto, true)
},
new SqlParameter("@BLocalePhoto", SqlDbType.NVarChar)
{
Value = DataHelper.IsNullReturnLine(v.BLocalePhoto, true)
},
new SqlParameter("@BCertificateType", SqlDbType.NVarChar)
{
Value = DataHelper.IsNullReturnLine(v.BCertificateType)
},
new SqlParameter("@BCertificateNumber", SqlDbType.NVarChar)
{
Value = DataHelper.IsNullReturnLine(AESHelper.AesDecrypt(certificateNumber))
},
new SqlParameter("@BCreateTime", SqlDbType.NVarChar)
{
Value = DataHelper.IsNullReturnLine(v.BCreateTime)
},
new SqlParameter("@BFromCourtId", SqlDbType.NVarChar)
{
Value = DataHelper.IsNullReturnLine(v.BFromCourtId)
},
new SqlParameter("@BLevel", SqlDbType.NVarChar)
{
Value = DataHelper.IsNullReturnLine(v.BLevel)
},
new SqlParameter("@BRemark", SqlDbType.NVarChar)
{
Value = DataHelper.IsNullReturnLine(v.BRemark)
},
new SqlParameter("@BId", SqlDbType.Int)
{
Value = v.BId
}
};
try
{
int result = SQLHelper.ExecuteNonQuery(sql, System.Data.CommandType.Text, pms);
return(ConvertHelper.IntToJson(result));
}
catch (Exception e)
{
//在webapi中要想抛出异常必须这样抛出,否则之抛出一个默认500的异常
var resp = new HttpResponseMessage(HttpStatusCode.InternalServerError)
{
Content = new StringContent(e.ToString()),
ReasonPhrase = "error"
};
throw new HttpResponseException(resp);
}
}
else
{
return(ConvertHelper.resultJson(0, "数据在传输过程中被篡改!"));
}
}
}
else
{
return(ConvertHelper.resultJson(101, "权限受限!"));
}
}
public string AddInf4Web(BlacklistInf v)
{
if (v.Token == DataHelper.getToken())
{
string wramStr = "";
//数据在传输过程中,密文中的“+”号会被替换合成“ ”空格号,把它还原回来
string name = v.BName.Replace(" ", "+");
string address = v.BAddress.Replace(" ", "+");
string certificateNumber = v.BCertificateNumber.Replace(" ", "+");
string p = "";
p += "BName=" + name;
p += "&BSex=" + v.BSex;
p += "&BNation=" + v.BNation;
p += "&BBirthDate=" + v.BBirthDate;
p += "&BAddress=" + address;
p += "&BIssuingAuthority=" + v.BIssuingAuthority;
p += "&BExpiryDate=" + v.BExpiryDate;
p += "&BCertificatePhoto=" + v.BCertificatePhoto;
p += "&BLocalePhoto=" + v.BLocalePhoto;
p += "&BCertificateType=" + v.BCertificateType;
p += "&BCertificateNumber=" + certificateNumber;
p += "&BCreateTime=" + v.BCreateTime;
p += "&BFromCourtId=" + v.BFromCourtId;
p += "&BLevel=" + v.BLevel;
p += "&BRemark=" + v.BRemark;
string md5Ciphertext = v.BMD5Ciphertext;//对方传过来的所有字段的MD5密文
//把传过来的信息再次MD5加密,和所有字段的MD5密文进行比对,保证数据在传输过程中没被修改才允许添加到数据库
string md5P = MD5Helper._md5(p);
if (md5Ciphertext == md5P)
{
string sql = "sp_addBlacklistInf";
name = AESHelper.AesDecrypt(name);
address = AESHelper.AesDecrypt(address);
certificateNumber = AESHelper.AesDecrypt(certificateNumber);
if (name == "" || name == null || certificateNumber == "undefined")
{
wramStr = "姓名不能为空";
return("{\"code\":0,\"msg\":\"" + wramStr + "\"}");
}
if (address == "" || address == null || certificateNumber == "undefined")
{
wramStr = "身份证中的住址不能为空";
return("{\"code\":0,\"msg\":\"" + wramStr + "\"}");
}
if (certificateNumber == "" || certificateNumber == null || certificateNumber == "undefined")
{
wramStr = "证件号不能为空";
return("{\"code\":0,\"msg\":\"" + wramStr + "\"}");
}
SqlParameter[] pms = new SqlParameter[] {
new SqlParameter("@BName", SqlDbType.NVarChar)
{
Value = DataHelper.IsNullReturnLine(name)
},
new SqlParameter("@BSex", SqlDbType.NVarChar)
{
Value = DataHelper.IsNullReturnLine(v.BSex)
},
new SqlParameter("@BNation", SqlDbType.NVarChar)
{
Value = DataHelper.IsNullReturnLine(v.BNation)
},
new SqlParameter("@BBirthDate", SqlDbType.NVarChar)
{
Value = DataHelper.IsNullReturnLine(v.BBirthDate)
},
new SqlParameter("@BAddress", SqlDbType.NVarChar)
{
Value = DataHelper.IsNullReturnLine(address)
},
new SqlParameter("@BIssuingAuthority", SqlDbType.NVarChar)
{
Value = DataHelper.IsNullReturnLine(v.BIssuingAuthority)
},
new SqlParameter("@BExpiryDate", SqlDbType.NVarChar)
{
Value = DataHelper.IsNullReturnLine(v.BExpiryDate)
},
new SqlParameter("@BCertificatePhoto", SqlDbType.NVarChar)
{
Value = DataHelper.IsNullReturnLine(v.BCertificatePhoto, true)
},
new SqlParameter("@BLocalePhoto", SqlDbType.NVarChar)
{
Value = DataHelper.IsNullReturnLine(v.BLocalePhoto, true)
},
new SqlParameter("@BCertificateType", SqlDbType.NVarChar)
{
Value = DataHelper.IsNullReturnLine(v.BCertificateType)
},
new SqlParameter("@BCertificateNumber", SqlDbType.NVarChar)
{
Value = DataHelper.IsNullReturnLine(certificateNumber)
},
new SqlParameter("@BCreateTime", SqlDbType.NVarChar)
{
Value = DataHelper.IsNullReturnLine(v.BCreateTime)
},
new SqlParameter("@BFromCourtId", SqlDbType.NVarChar)
{
Value = DataHelper.IsNullReturnLine(v.BFromCourtId)
},
new SqlParameter("@BLevel", SqlDbType.NVarChar)
{
Value = DataHelper.IsNullReturnLine(v.BLevel)
},
new SqlParameter("@BRemark", SqlDbType.NVarChar)
{
Value = DataHelper.IsNullReturnLine(v.BRemark)
}
};
try
{
int result = SQLHelper.ExecuteNonQuery(sql, System.Data.CommandType.StoredProcedure, pms);
return(ConvertHelper.IntToJson(result));
}
catch (Exception e)
{
//在webapi中要想抛出异常必须这样抛出,否则只抛出一个默认500的异常
var resp = new HttpResponseMessage(HttpStatusCode.InternalServerError)
{
Content = new StringContent(e.ToString()),
ReasonPhrase = "error"
};
throw new HttpResponseException(resp);
}
}
else
{
return(ConvertHelper.resultJson(0, "数据传输过程中被篡改"));
}
}
else
{
return(ConvertHelper.resultJson(101, "权限受限!"));
}
}
