public ActionResult CreateApprover(M_ApproverSequence data)
        {
            try
            {
                data.CreateID   = user.EmployeeNo;
                data.CreateDate = DateTime.Now;
                data.UpdateID   = user.EmployeeNo;
                data.UpdateDate = DateTime.Now;

                string Query = "";
                Query += "INSERT INTO [dbo].[M_ApproverSequence]" +
                         "     ([DivisionID]" +
                         "     ,[DepartmentID]" +
                         "     ,[SectionID]" +
                         "     ,[EmployeeNo]" +
                         "     ,[OrderNo]" +
                         "     ,[MainBackupApprover]" +
                         "     ,[Position]" +
                         "     ,[IsDeleted]" +
                         "     ,[CreateID]" +
                         "     ,[CreateDate]" +
                         "     ,[UpdateID]" +
                         "     ,[UpdateDate])" +
                         "VALUES" +
                         "     ('" + data.DivisionID + "'," +
                         "     '" + data.DepartmentID + "'," +
                         "     '" + data.SectionID + "'," +
                         "     '" + data.EmployeeNo + "'," +
                         "     '" + data.OrderNo + "'," +
                         "     '" + data.MainBackupApprover + "'," +
                         "     '" + data.Position + "'," +
                         "     '" + 0 + "'," +
                         "     '" + data.CreateID + "'," +
                         "     '" + data.CreateDate + "'," +
                         "     '" + data.UpdateID + "'," +
                         "     '" + data.UpdateDate + "')";

                SqlCommand cmdSql = new SqlCommand();
                cmdSql.Connection     = conn;
                cmdSql.CommandTimeout = 0;
                cmdSql.CommandText    = Query;

                conn.Open();
                cmdSql.ExecuteNonQuery();
                conn.Close();

                return(Json(new { msg = "Success" }, JsonRequestBehavior.AllowGet));
            }
            catch (Exception err)
            {
                return(Json(new { msg = err.Message }, JsonRequestBehavior.AllowGet));
            }
        }
        public ActionResult UpdateApproverSequence(M_ApproverSequence data)
        {
            try
            {
                data.CreateID   = user.EmployeeNo;
                data.CreateDate = DateTime.Now;
                data.UpdateID   = user.EmployeeNo;
                data.UpdateDate = DateTime.Now;


                string Query = "";
                Query += "UPDATE [dbo].[M_ApproverSequence] SET " +
                         "      [DivisionID] =   '" + data.DivisionID + "'" +
                         "     ,[DepartmentID]=         '" + data.DepartmentID + "'" +
                         "     ,[SectionID]=         '" + data.SectionID + "'" +
                         "     ,[EmployeeNo]=         '" + data.EmployeeNo + "'" +
                         "     ,[OrderNo]=         '" + data.OrderNo + "'" +
                         "     ,[MainBackupApprover]=         '" + data.MainBackupApprover + "'" +
                         "     ,[Position]=         '" + data.Position + "'" +
                         "     ,[UpdateID]=        '" + data.UpdateID + "'" +
                         "     ,[UpdateDate]=      '" + data.UpdateDate + "'" +
                         " WHERE [ID] =   '" + data.ID + "'";

                SqlCommand cmdSql = new SqlCommand();
                cmdSql.Connection     = conn;
                cmdSql.CommandTimeout = 0;
                cmdSql.CommandText    = Query;

                conn.Open();
                cmdSql.ExecuteNonQuery();
                conn.Close();

                return(Json(new { msg = "Success" }, JsonRequestBehavior.AllowGet));
            }
            catch (Exception err)
            {
                return(Json(new { msg = err.Message }, JsonRequestBehavior.AllowGet));
            }
        }