public string DeleteInfById(BlacklistInf B) { if (B.Token == DataHelper.getToken()) { //string sql = "insert into T_VisitorAccessInf(VName, VSex, VNation, VBirthDate, VAddress, VIssuingAuthority, VExpiryDate, VCertificatePhoto, VLocalePhoto, VCertificateType, VCertificateNumber, VType, VFromCourtId, VInTime, VOutTime, VInPost, VOutPost, VInDoorkeeper, VOutDoorkeeper, VVisitingReason, VIntervieweeDept, VInterviewee, VOffice, VOfficePhone, VExtensionPhone, VMobilePhone, VRemark) values(@VName, @VSex, @VNation, @VBirthDate, @VAddress, @VIssuingAuthority, @VExpiryDate, @VCertificatePhoto, @VLocalePhoto, @VCertificateType, @VCertificateNumber, @VType, @VFromCourtId, @VInTime, @VOutTime, @VInPost, @VOutPost, @VInDoorkeeper, @VOutDoorkeeper, @VVisitingReason, @VIntervieweeDept, @VInterviewee, @VOffice, @VOfficePhone, @VExtensionPhone, @VMobilePhone, @VRemark)"; string sql = "delete from T_BlacklistInf where BId=@BId"; SqlParameter[] pms = new SqlParameter[] { new SqlParameter("@BId", SqlDbType.Int) { Value = B.BId } }; try { int result = SQLHelper.ExecuteNonQuery(sql, System.Data.CommandType.Text, pms); return(ConvertHelper.IntToJson(result)); } catch (Exception e) { //在webapi中要想抛出异常必须这样抛出,否则之抛出一个默认500的异常 var resp = new HttpResponseMessage(HttpStatusCode.InternalServerError) { Content = new StringContent(e.ToString()), ReasonPhrase = "error" }; throw new HttpResponseException(resp); } } else { return(ConvertHelper.resultJson(101, "权限受限!")); } }
public string EditInf(BlacklistInf v) { if (v.Token == DataHelper.getToken()) { string wramStr = ""; if (v.BName == "" || v.BName == null) { wramStr = "姓名不能为空"; return("{\"code\":0,\"msg\":\"" + wramStr + "\"}"); } else if (v.BAddress == "" || v.BAddress == null) { wramStr = "身份证中的住址不能为空"; return("{\"code\":0,\"msg\":\"" + wramStr + "\"}"); } else if (v.BCertificateNumber == "" || v.BCertificateNumber == null) { wramStr = "证件号不能为空"; return("{\"code\":0,\"msg\":\"" + wramStr + "\"}"); } else { //数据在传输过程中,密文中的“+”号会被替换合成“ ”空格号,把它还原回来 string name = v.BName.Replace(" ", "+"); string address = v.BAddress.Replace(" ", "+"); string certificateNumber = v.BCertificateNumber.Replace(" ", "+"); string p = ""; p += "BName=" + name; p += "&BSex=" + v.BSex; p += "&BNation=" + v.BNation; p += "&BBirthDate=" + v.BBirthDate; p += "&BAddress=" + address; p += "&BIssuingAuthority=" + v.BIssuingAuthority; p += "&BExpiryDate=" + v.BExpiryDate; p += "&BCertificatePhoto=" + v.BCertificatePhoto; p += "&BLocalePhoto=" + v.BLocalePhoto; p += "&BCertificateType=" + v.BCertificateType; p += "&BCertificateNumber=" + certificateNumber; p += "&BCreateTime=" + v.BCreateTime; p += "&BFromCourtId=" + v.BFromCourtId; p += "&BLevel=" + v.BLevel; p += "&BRemark=" + v.BRemark; string md5Ciphertext = v.BMD5Ciphertext;//对方传过来的所有字段的MD5密文 //把传过来的信息再次MD5加密,和所有字段的MD5密文进行比对,保证数据在传输过程中没被修改才允许添加到数据库 string md5P = MD5Helper._md5(p); if (md5Ciphertext == md5P) { //string sql = "insert into T_VisitorAccessInf(VName, VSex, VNation, VBirthDate, VAddress, VIssuingAuthority, VExpiryDate, VCertificatePhoto, VLocalePhoto, VCertificateType, VCertificateNumber, VType, VFromCourtId, VInTime, VOutTime, VInPost, VOutPost, VInDoorkeeper, VOutDoorkeeper, VVisitingReason, VIntervieweeDept, VInterviewee, VOffice, VOfficePhone, VExtensionPhone, VMobilePhone, VRemark) values(@VName, @VSex, @VNation, @VBirthDate, @VAddress, @VIssuingAuthority, @VExpiryDate, @VCertificatePhoto, @VLocalePhoto, @VCertificateType, @VCertificateNumber, @VType, @VFromCourtId, @VInTime, @VOutTime, @VInPost, @VOutPost, @VInDoorkeeper, @VOutDoorkeeper, @VVisitingReason, @VIntervieweeDept, @VInterviewee, @VOffice, @VOfficePhone, @VExtensionPhone, @VMobilePhone, @VRemark)"; string sql = "update T_BlacklistInf set BName=@BName,BSex=@BSex,BNation=@BNation,BBirthDate=@BBirthDate,BAddress=@BAddress,"; sql += "BIssuingAuthority=@BIssuingAuthority,BExpiryDate=@BExpiryDate,BCertificatePhoto=@BCertificatePhoto,BLocalePhoto=@BLocalePhoto,BCertificateType=@BCertificateType,BCertificateNumber=@BCertificateNumber,BCreateTime=@BCreateTime,BFromCourtId=@BFromCourtId,"; sql += "BLevel=@BLevel,BRemark=@BRemark"; sql += " where BId=@BId"; SqlParameter[] pms = new SqlParameter[] { new SqlParameter("@BName", SqlDbType.NVarChar) { Value = DataHelper.IsNullReturnLine(AESHelper.AesDecrypt(name)) }, new SqlParameter("@BSex", SqlDbType.NVarChar) { Value = DataHelper.IsNullReturnLine(v.BSex) }, new SqlParameter("@BNation", SqlDbType.NVarChar) { Value = DataHelper.IsNullReturnLine(v.BNation) }, new SqlParameter("@BBirthDate", SqlDbType.NVarChar) { Value = DataHelper.IsNullReturnLine(v.BBirthDate) }, new SqlParameter("@BAddress", SqlDbType.NVarChar) { Value = DataHelper.IsNullReturnLine(AESHelper.AesDecrypt(address)) }, new SqlParameter("@BIssuingAuthority", SqlDbType.NVarChar) { Value = DataHelper.IsNullReturnLine(v.BIssuingAuthority) }, new SqlParameter("@BExpiryDate", SqlDbType.NVarChar) { Value = DataHelper.IsNullReturnLine(v.BExpiryDate) }, new SqlParameter("@BCertificatePhoto", SqlDbType.NVarChar) { Value = DataHelper.IsNullReturnLine(v.BCertificatePhoto, true) }, new SqlParameter("@BLocalePhoto", SqlDbType.NVarChar) { Value = DataHelper.IsNullReturnLine(v.BLocalePhoto, true) }, new SqlParameter("@BCertificateType", SqlDbType.NVarChar) { Value = DataHelper.IsNullReturnLine(v.BCertificateType) }, new SqlParameter("@BCertificateNumber", SqlDbType.NVarChar) { Value = DataHelper.IsNullReturnLine(AESHelper.AesDecrypt(certificateNumber)) }, new SqlParameter("@BCreateTime", SqlDbType.NVarChar) { Value = DataHelper.IsNullReturnLine(v.BCreateTime) }, new SqlParameter("@BFromCourtId", SqlDbType.NVarChar) { Value = DataHelper.IsNullReturnLine(v.BFromCourtId) }, new SqlParameter("@BLevel", SqlDbType.NVarChar) { Value = DataHelper.IsNullReturnLine(v.BLevel) }, new SqlParameter("@BRemark", SqlDbType.NVarChar) { Value = DataHelper.IsNullReturnLine(v.BRemark) }, new SqlParameter("@BId", SqlDbType.Int) { Value = v.BId } }; try { int result = SQLHelper.ExecuteNonQuery(sql, System.Data.CommandType.Text, pms); return(ConvertHelper.IntToJson(result)); } catch (Exception e) { //在webapi中要想抛出异常必须这样抛出,否则之抛出一个默认500的异常 var resp = new HttpResponseMessage(HttpStatusCode.InternalServerError) { Content = new StringContent(e.ToString()), ReasonPhrase = "error" }; throw new HttpResponseException(resp); } } else { return(ConvertHelper.resultJson(0, "数据在传输过程中被篡改!")); } } } else { return(ConvertHelper.resultJson(101, "权限受限!")); } }
public string AddInf4Web(BlacklistInf v) { if (v.Token == DataHelper.getToken()) { string wramStr = ""; //数据在传输过程中,密文中的“+”号会被替换合成“ ”空格号,把它还原回来 string name = v.BName.Replace(" ", "+"); string address = v.BAddress.Replace(" ", "+"); string certificateNumber = v.BCertificateNumber.Replace(" ", "+"); string p = ""; p += "BName=" + name; p += "&BSex=" + v.BSex; p += "&BNation=" + v.BNation; p += "&BBirthDate=" + v.BBirthDate; p += "&BAddress=" + address; p += "&BIssuingAuthority=" + v.BIssuingAuthority; p += "&BExpiryDate=" + v.BExpiryDate; p += "&BCertificatePhoto=" + v.BCertificatePhoto; p += "&BLocalePhoto=" + v.BLocalePhoto; p += "&BCertificateType=" + v.BCertificateType; p += "&BCertificateNumber=" + certificateNumber; p += "&BCreateTime=" + v.BCreateTime; p += "&BFromCourtId=" + v.BFromCourtId; p += "&BLevel=" + v.BLevel; p += "&BRemark=" + v.BRemark; string md5Ciphertext = v.BMD5Ciphertext;//对方传过来的所有字段的MD5密文 //把传过来的信息再次MD5加密,和所有字段的MD5密文进行比对,保证数据在传输过程中没被修改才允许添加到数据库 string md5P = MD5Helper._md5(p); if (md5Ciphertext == md5P) { string sql = "sp_addBlacklistInf"; name = AESHelper.AesDecrypt(name); address = AESHelper.AesDecrypt(address); certificateNumber = AESHelper.AesDecrypt(certificateNumber); if (name == "" || name == null || certificateNumber == "undefined") { wramStr = "姓名不能为空"; return("{\"code\":0,\"msg\":\"" + wramStr + "\"}"); } if (address == "" || address == null || certificateNumber == "undefined") { wramStr = "身份证中的住址不能为空"; return("{\"code\":0,\"msg\":\"" + wramStr + "\"}"); } if (certificateNumber == "" || certificateNumber == null || certificateNumber == "undefined") { wramStr = "证件号不能为空"; return("{\"code\":0,\"msg\":\"" + wramStr + "\"}"); } SqlParameter[] pms = new SqlParameter[] { new SqlParameter("@BName", SqlDbType.NVarChar) { Value = DataHelper.IsNullReturnLine(name) }, new SqlParameter("@BSex", SqlDbType.NVarChar) { Value = DataHelper.IsNullReturnLine(v.BSex) }, new SqlParameter("@BNation", SqlDbType.NVarChar) { Value = DataHelper.IsNullReturnLine(v.BNation) }, new SqlParameter("@BBirthDate", SqlDbType.NVarChar) { Value = DataHelper.IsNullReturnLine(v.BBirthDate) }, new SqlParameter("@BAddress", SqlDbType.NVarChar) { Value = DataHelper.IsNullReturnLine(address) }, new SqlParameter("@BIssuingAuthority", SqlDbType.NVarChar) { Value = DataHelper.IsNullReturnLine(v.BIssuingAuthority) }, new SqlParameter("@BExpiryDate", SqlDbType.NVarChar) { Value = DataHelper.IsNullReturnLine(v.BExpiryDate) }, new SqlParameter("@BCertificatePhoto", SqlDbType.NVarChar) { Value = DataHelper.IsNullReturnLine(v.BCertificatePhoto, true) }, new SqlParameter("@BLocalePhoto", SqlDbType.NVarChar) { Value = DataHelper.IsNullReturnLine(v.BLocalePhoto, true) }, new SqlParameter("@BCertificateType", SqlDbType.NVarChar) { Value = DataHelper.IsNullReturnLine(v.BCertificateType) }, new SqlParameter("@BCertificateNumber", SqlDbType.NVarChar) { Value = DataHelper.IsNullReturnLine(certificateNumber) }, new SqlParameter("@BCreateTime", SqlDbType.NVarChar) { Value = DataHelper.IsNullReturnLine(v.BCreateTime) }, new SqlParameter("@BFromCourtId", SqlDbType.NVarChar) { Value = DataHelper.IsNullReturnLine(v.BFromCourtId) }, new SqlParameter("@BLevel", SqlDbType.NVarChar) { Value = DataHelper.IsNullReturnLine(v.BLevel) }, new SqlParameter("@BRemark", SqlDbType.NVarChar) { Value = DataHelper.IsNullReturnLine(v.BRemark) } }; try { int result = SQLHelper.ExecuteNonQuery(sql, System.Data.CommandType.StoredProcedure, pms); return(ConvertHelper.IntToJson(result)); } catch (Exception e) { //在webapi中要想抛出异常必须这样抛出,否则只抛出一个默认500的异常 var resp = new HttpResponseMessage(HttpStatusCode.InternalServerError) { Content = new StringContent(e.ToString()), ReasonPhrase = "error" }; throw new HttpResponseException(resp); } } else { return(ConvertHelper.resultJson(0, "数据传输过程中被篡改")); } } else { return(ConvertHelper.resultJson(101, "权限受限!")); } }