/// <summary> /// 按某个权限域获取模块列表 /// </summary> /// <param name="userInfo">用户</param> /// <param name="userId">用户主键</param> /// <param name="permissionItemCode">权限域编号</param> /// <returns>数据表</returns> public DataTable GetModuleDTByPermissionScope(BaseUserInfo userInfo, string userId, string permissionItemCode) { // 写入调试信息 #if (DEBUG) int milliStart = BaseBusinessLogic.StartDebug(userInfo, MethodBase.GetCurrentMethod()); #endif // 加强安全验证防止未授权匿名调用 #if (!DEBUG) LogOnService.UserIsLogOn(userInfo); #endif DataTable dataTable = new DataTable(BaseModuleEntity.TableName); using (IDbHelper dbHelper = DbHelperFactory.GetHelper(BaseSystemInfo.UserCenterDbType)) { try { dbHelper.Open(UserCenterDbConnection); BaseModuleManager moduleManager = new BaseModuleManager(dbHelper, userInfo); dataTable = moduleManager.GetDataTableByPermission(userId, permissionItemCode); dataTable.TableName = BaseModuleEntity.TableName; BaseLogManager.Instance.Add(dbHelper, userInfo, this.serviceName, AppMessage.PermissionService_GetModuleDTByPermission, MethodBase.GetCurrentMethod()); } catch (Exception ex) { BaseExceptionManager.LogException(dbHelper, userInfo, ex); throw ex; } finally { dbHelper.Close(); } } // 写入调试信息 #if (DEBUG) BaseBusinessLogic.EndDebug(MethodBase.GetCurrentMethod(), milliStart); #endif return dataTable; }
public new string GetIdByCode(string permissionItemCode) { string tableName = BaseOrganizeEntity.TableName; if (!string.IsNullOrEmpty(BaseSystemInfo.SystemCode)) { tableName = BaseSystemInfo.SystemCode + "PermissionItem"; } BaseModuleManager moduleManager = new BaseModuleManager(dbHelper, UserInfo, tableName); return moduleManager.GetIdByCode(permissionItemCode); //BasePermissionItemManager permissionItemManager = new BasePermissionItemManager(DbHelper); //// 这里应该是若不存在就自动加一个操作权限 //return permissionItemManager.GetIdByAdd(permissionItemCode); }
/// <summary> /// 是否有相应的权限 /// </summary> /// <param name="userId">用户主键</param> /// <param name="permissionItemCode">权限编号</param> /// <returns>是否有权限</returns> public bool IsModuleAuthorized(string userId, string moduleCode, string permissionItemCode) { BaseModuleManager moduleManager = new BaseModuleManager(DbHelper); string moduleId = moduleManager.GetIdByCode(moduleCode); BasePermissionItemManager permissionItemManager = new BasePermissionItemManager(DbHelper); string permissionItemId = permissionItemManager.GetIdByCode(permissionItemCode); // 判断员工权限 if (this.CheckUserModulePermission(userId, moduleId, permissionItemId)) { return true; } // 判断员工角色权限 if (this.CheckRoleModulePermission(userId, moduleId, permissionItemId)) { return true; } return false; }
/// <summary> /// 获得用户有访问权限的模块 /// </summary> /// <param name="userInfo">用户</param> /// <param name="userId">用户主键</param> /// <returns>数据表</returns> public DataTable GetModuleDTByUser(BaseUserInfo userInfo, string userId) { // 写入调试信息 #if (DEBUG) int milliStart = BaseBusinessLogic.StartDebug(userInfo, MethodBase.GetCurrentMethod()); #endif // 加强安全验证防止未授权匿名调用 #if (!DEBUG) LogOnService.UserIsLogOn(userInfo); #endif DataTable dataTable = new DataTable(BaseModuleEntity.TableName); using (IDbHelper dbHelper = DbHelperFactory.GetHelper(BaseSystemInfo.UserCenterDbType)) { try { dbHelper.Open(UserCenterDbConnection); string tableName = BaseModuleEntity.TableName; if (!string.IsNullOrEmpty(BaseSystemInfo.SystemCode)) { tableName = BaseSystemInfo.SystemCode + "Module"; } BaseModuleManager moduleManager = new BaseModuleManager(dbHelper, userInfo, tableName); if (userInfo.IsAdministrator) { List<KeyValuePair<string, object>> parameters = new List<KeyValuePair<string, object>>(); parameters.Add(new KeyValuePair<string, object>(BaseModuleEntity.FieldEnabled, 1)); parameters.Add(new KeyValuePair<string, object>(BaseModuleEntity.FieldDeletionStateCode, 0)); // 有效的,未被删除的显示出来 dataTable = moduleManager.GetDataTable(parameters, BaseModuleEntity.FieldSortCode); } else { dataTable = moduleManager.GetDataTableByUser(userId); } // 若不是员工,有些菜单可以去掉的功能,加在这里 if (string.IsNullOrEmpty(userInfo.StaffId)) { BaseBusinessLogic.Delete(dataTable, BaseModuleEntity.FieldCode, "FrmStaffAddressEdit"); dataTable.AcceptChanges(); } dataTable.TableName = BaseModuleEntity.TableName; BaseLogManager.Instance.Add(dbHelper, userInfo, this.serviceName, AppMessage.PermissionService_GetModuleDTByUser, MethodBase.GetCurrentMethod()); } catch (Exception ex) { BaseExceptionManager.LogException(dbHelper, userInfo, ex); throw ex; } finally { dbHelper.Close(); } } // 写入调试信息 #if (DEBUG) BaseBusinessLogic.EndDebug(MethodBase.GetCurrentMethod(), milliStart); #endif return dataTable; }
/// <summary> /// 某个用户是否对某个模块有相应的权限 /// </summary> /// <param name="userInfo">用户</param> /// <param name="userId">用户主键</param> /// <param name="moduleCode">模块编号</param> /// <returns>是否有权限</returns> public bool IsModuleAuthorizedByUser(BaseUserInfo userInfo, string userId, string moduleCode) { // 写入调试信息 #if (DEBUG) int milliStart = BaseBusinessLogic.StartDebug(userInfo, MethodBase.GetCurrentMethod()); #endif // 加强安全验证防止未授权匿名调用 #if (!DEBUG) LogOnService.UserIsLogOn(userInfo); #endif bool returnValue = false; using (IDbHelper dbHelper = DbHelperFactory.GetHelper(BaseSystemInfo.UserCenterDbType)) { try { dbHelper.Open(UserCenterDbConnection); // 是否超级管理员 BaseUserManager userManager = new BaseUserManager(dbHelper, userInfo); if (userManager.IsAdministrator(userId)) { return true; } else { BaseModuleManager moduleManager = new BaseModuleManager(dbHelper, userInfo); DataTable dataTable = moduleManager.GetDataTableByUser(userId); foreach (DataRow dataRow in dataTable.Rows) { if (dataRow[BaseModuleEntity.FieldCode].ToString().Equals(moduleCode)) { returnValue = true; break; } } } BaseLogManager.Instance.Add(dbHelper, userInfo, this.serviceName, AppMessage.PermissionService_IsModuleAuthorizedByUser, MethodBase.GetCurrentMethod()); } catch (Exception ex) { BaseExceptionManager.LogException(dbHelper, userInfo, ex); throw ex; } finally { dbHelper.Close(); } } // 写入调试信息 #if (DEBUG) BaseBusinessLogic.EndDebug(MethodBase.GetCurrentMethod(), milliStart); #endif return returnValue; }
/// <summary> /// 获取用户有权限访问的模块主键 /// </summary> /// <param name="userInfo">用户</param> /// <param name="userId">用户主键</param> /// <returns>主键数组</returns> public string[] GetModuleIdsByUser(BaseUserInfo userInfo, string userId) { // 写入调试信息 #if (DEBUG) int milliStart = BaseBusinessLogic.StartDebug(userInfo, MethodBase.GetCurrentMethod()); #endif // 加强安全验证防止未授权匿名调用 #if (!DEBUG) LogOnService.UserIsLogOn(userInfo); #endif string[] returnValue = null; using (IDbHelper dbHelper = DbHelperFactory.GetHelper(BaseSystemInfo.UserCenterDbType)) { try { dbHelper.Open(UserCenterDbConnection); BaseModuleManager moduleManager = new BaseModuleManager(dbHelper, userInfo); if (userInfo.IsAdministrator) { // 有效的,未被删除的显示出来 returnValue = moduleManager.GetIds(new KeyValuePair<string, object>(BaseModuleEntity.FieldDeletionStateCode, 0), new KeyValuePair<string, object>(BaseModuleEntity.FieldEnabled, 1)); } else { returnValue = moduleManager.GetIdsByUser(userId); } BaseLogManager.Instance.Add(dbHelper, userInfo, this.serviceName, AppMessage.PermissionService_GetModuleDTByUser, MethodBase.GetCurrentMethod()); } catch (Exception ex) { BaseExceptionManager.LogException(dbHelper, userInfo, ex); throw ex; } finally { dbHelper.Close(); } } // 写入调试信息 #if (DEBUG) BaseBusinessLogic.EndDebug(MethodBase.GetCurrentMethod(), milliStart); #endif return returnValue; }