public ActionResult MyFunds(BillsSearchModel info) { if (!User.Identity.IsAuthenticated) { return(RedirectToRoute(new { controller = "Login", action = "LogOut" })); } int user = PageValidate.FilterParam(User.Identity.Name); Bills dal = new Bills(db); if (!RoleCheck.CheckHasAuthority(user, db, "经费管理")) { info.userId = user; } info.PageSize = 0; info.userId = user; var bills = dal.GetApplyList(info).ToList(); foreach (var bill in bills) { bill.contents = dal.getContents(bill.reimbursementCode, 0).ToList(); bill.attachmentsCount = dal.getAttachments(bill.reimbursementCode, 0).Count(); } ViewData["Bills"] = bills; List <SelectOption> options = DropDownList.RespondStateSelect(); ViewData["RState"] = DropDownList.SetDropDownList(options); return(View(info)); }
public static List <SelectOption> FundsSelect(int user) { string key = cache_funds + user; List <Funds> funds = DBCaches <Funds> .getCache(cache_funds); List <SelectOption> options = (List <SelectOption>)DataCache.GetCache(key); if (options == null) { var query = from fund in funds where fund.f_state == 1 select fund; if (user > 0 && !RoleCheck.CheckHasAuthority(user, db, "经费管理")) { query = query.Where(x => x.f_manager == user); } options = (from fund in query select new SelectOption { id = fund.f_id.ToString(), text = string.Format("{0}({1})", fund.f_name, fund.f_code) }).ToList(); if (options.Count() > 0) { DataCache.SetCache(key, options); } } return(options); }
public ActionResult Responded(BillsSearchModel info) { if (!User.Identity.IsAuthenticated) { return(RedirectToRoute(new { controller = "Login", action = "Index" })); } ApplyManager dal = new ApplyManager(db); int userId = PageValidate.FilterParam(User.Identity.Name); if (!RoleCheck.CheckHasAuthority(userId, db, "批复管理", "批复")) { return(RedirectToRoute(new { controller = "Error", action = "Index", err = "没有权限。" })); } if (RoleCheck.CheckHasAuthority(userId, db, "批复管理")) { if (info.userId == null) { info.userId = 0; } } else { info.userId = userId; } SetSelect(); var list = getResponseDetail((int)info.userId, 1, 2, 3, 4); ViewData["Bills"] = list; return(View(info)); }
public JsonResult SetRoleAuth(List <ViewRoleAuthority> auths) { BaseJsonData json = new BaseJsonData(); if (!User.Identity.IsAuthenticated) { json.msg_text = "没有登陆或登陆失效,请重新登陆后操作。"; json.msg_code = "notLogin"; goto next; } int user = PageValidate.FilterParam(User.Identity.Name); if (!RoleCheck.CheckHasAuthority(user, db, "系统管理")) { json.msg_text = "没有权限。"; json.msg_code = "NoPower"; goto next; } if (auths == null || auths.Count() == 0) { json.msg_text = "没有接收任何数据。"; json.msg_code = "NoReceive"; goto next; } bool firstIn = true; foreach (ViewRoleAuthority item in auths) { if (firstIn) { db.Role_vs_Authority.RemoveRange(db.Role_vs_Authority.Where(x => x.rva_role_id == item.roleId)); firstIn = false; } Role_vs_Authority rva = new Role_vs_Authority() { rva_auth_id = item.authId, rva_role_id = item.roleId }; db.Role_vs_Authority.Add(rva); } try { db.SaveChanges(); json.state = 1; json.msg_text = "角色的权限修改成功。"; json.msg_code = "success"; } catch (Exception ex) { json.msg_text = "角色权限修改出错。"; json.msg_code = "error"; Common.ErrorUnit.WriteErrorLog(ex.ToString(), this.GetType().ToString()); } SysLog.WriteLog(user, "重置角色的权限", IpHelper.GetIP(), "", 5, "", db); //重设置角色权限后,必需清除缓存 DataCache.RemoveCacheBySearch("user_vs_roles"); next: return(Json(json, JsonRequestBehavior.AllowGet)); }
public JsonResult ContrlModule(EditModules models) { BaseJsonData json = new BaseJsonData(); if (!User.Identity.IsAuthenticated) { json.msg_text = "没有登陆或登陆失效,请重新登陆后操作。"; json.msg_code = "notLogin"; goto next; } int user = PageValidate.FilterParam(User.Identity.Name); if (!RoleCheck.CheckHasAuthority(user, db, "系统管理")) { json.msg_text = "没有权限。"; json.msg_code = "NoPower"; goto next; } if (ModelState.IsValid) { string ctrl_name; foreach (ModuleInfo info in models.modules) { ctrl_name = info.name; var no1 = db.Role_vs_Controller.Where(x => x.rvc_role_id != 1 && x.rvc_controller == ctrl_name); if (no1.Count() > 0) { db.Role_vs_Controller.RemoveRange(no1); db.SaveChanges(); } if (info.roles != null && info.roles.Length > 0) { foreach (RoleInfo rinfo in info.roles) { Role_vs_Controller rvc = new Role_vs_Controller(); rvc.rvc_role_id = rinfo.id; rvc.rvc_controller = ctrl_name; if (db.Role_vs_Controller.Find(rvc.rvc_role_id, rvc.rvc_controller) == null) { db.Role_vs_Controller.Add(rvc); } } } } db.SaveChanges(); SysLog.WriteLog(user, "修改系统模块", IpHelper.GetIP(), "", 5, "", db); json.state = 1; json.msg_code = "success"; json.msg_text = "数据更新成功。"; DBCaches2.ClearCache("dic-module"); } else { json.msg_code = "error"; json.msg_text = "数据接收错误。"; } next: return(Json(json, JsonRequestBehavior.AllowGet)); }
public JsonResult UpdateRole(Dic_Role model) { BaseJsonData json = new BaseJsonData(); if (!User.Identity.IsAuthenticated) { json.msg_text = "没有登陆或登陆失效,请重新登陆后操作。"; json.msg_code = "notLogin"; goto next; } int user = PageValidate.FilterParam(User.Identity.Name); if (!RoleCheck.CheckHasAuthority(user, db, "系统管理")) { json.msg_text = "没有权限。"; json.msg_code = "NoPower"; goto next; } if (model.role_id == 0) { json.msg_text = "获取角色的ID出错。"; json.msg_code = "IDError"; goto next; } if (model.role_id == 1) { json.msg_text = "该角色不允许修改。"; json.msg_code = "CanNotUpdate"; goto next; } var same = db.Dic_Role.Where(x => x.role_name == model.role_name && x.role_id != model.role_id); if (same.Count() > 0) { json.msg_text = "该名称已存在。"; json.msg_code = "NameExists"; goto next; } db.Entry(model).State = EntityState.Modified; try { db.SaveChanges(); DBCaches <Dic_Role> .ClearCache("cache_role"); } catch { json.msg_text = "更新,请重新操作。"; json.msg_code = "UpdateErr"; goto next; } json.state = 1; json.msg_code = "success"; json.msg_text = "更新成功!"; SysLog.WriteLog(user, string.Format("更新角色[{0}]名称", model.role_name), IpHelper.GetIP(), "", 5, "", db); next: return(Json(json, JsonRequestBehavior.AllowGet)); }
public ActionResult Index(BasePagerModel pager) { if (!User.Identity.IsAuthenticated) { return(RedirectToRoute(new { controller = "Login", action = "LogOut" })); } int uid = PageValidate.FilterParam(User.Identity.Name); if (!RoleCheck.CheckHasAuthority(uid, db, "用户管理")) { return(RedirectToRoute(new { controller = "Error", action = "Index", err = "没有权限。" })); } if (pager == null) { pager = new BasePagerModel(); } ViewData["search"] = pager; var list = (from user in db.User_Info join uvr in db.User_vs_Role on user.user_id equals uvr.uvr_user_id into T1 from t1 in T1.DefaultIfEmpty() join role in db.Dic_Role on t1.uvr_role_id equals role.role_id into T2 from t2 in T2.DefaultIfEmpty() join ue in db.User_Extend on user.user_id equals ue.user_id into T3 from t3 in T3.DefaultIfEmpty() join dept in db.Dic_Department on t3.user_dept_id equals dept.dept_id into T4 from t4 in T4.DefaultIfEmpty() join post in db.Dic_Post on t3.user_post_id equals post.post_id into T5 from t5 in T5.DefaultIfEmpty() orderby user.user_id ascending select new UserListModel { id = user.user_id, name = user.user_name, roleName = t2.role_name == null?"":t2.role_name, stateTxt = user.user_state == 1 ? "正常" : (user.user_state == 2 ? "锁定" : (user.user_state == 0 ? "未启用" : "未知")), realName = user.real_name, times = user.user_login_times, deptName = t4.dept_name == null?"":t4.dept_name, postName = t5.post_name == null?"":t5.post_name, picture = t3.user_picture == null?"default.jpg":t3.user_picture, loginTimes = user.user_login_times }).Skip((pager.PageIndex - 1) * pager.PageSize).Take(pager.PageSize).ToList(); foreach (var item in list) { item.realName = Common.DEncrypt.AESEncrypt.Decrypt(item.realName); } return(View(list)); }
public ActionResult Index() { int uid = PageValidate.FilterParam(User.Identity.Name); if (!RoleCheck.CheckHasAuthority(uid, db, "用户管理")) { return(RedirectToRoute(new { controller = "Error", action = "Index", err = "没有权限。" })); } BasePagerModel pager = new BasePagerModel(); return(Index(pager)); }
public JsonResult DeleteRole(string rid) { int id = PageValidate.FilterParam(rid); BaseJsonData json = new BaseJsonData(); if (!User.Identity.IsAuthenticated) { json.msg_text = "没有登陆或登陆失效,请重新登陆后操作。"; json.msg_code = "notLogin"; goto next; } int user = PageValidate.FilterParam(User.Identity.Name); if (!RoleCheck.CheckHasAuthority(user, db, "系统管理")) { json.msg_text = "没有权限。"; json.msg_code = "NoPower"; goto next; } if (id == 1) { json.msg_text = "该角色不允许删除。"; json.msg_code = "CanNotDel"; goto next; } Dic_Role model = db.Dic_Role.Find(id); if (model == null) { json.msg_text = "没有找到该角色,该角色可能已被删除。"; json.msg_code = "noThis"; goto next; } db.Dic_Role.Remove(model); try { db.SaveChanges(); DBCaches <Dic_Role> .ClearCache("cache_role"); } catch { json.msg_text = "删除失败,请重新操作。"; json.msg_code = "recyErr"; goto next; } json.state = 1; json.msg_code = "success"; json.msg_text = "删除成功!"; SysLog.WriteLog(user, string.Format("删除角色[{0}]", model.role_name), IpHelper.GetIP(), "", 5, "", db); next: return(Json(json, JsonRequestBehavior.AllowGet)); }
// GET: UserManager/Edit/5 public ActionResult Edit(int?id) { if (!User.Identity.IsAuthenticated) { return(RedirectToRoute(new { controller = "Login", action = "LogOut" })); } int user = PageValidate.FilterParam(User.Identity.Name); if (!RoleCheck.CheckHasAuthority(user, db, "用户管理")) { id = user; } if (id == null) { id = user; } setSelect(); UserEditModel model = new UserEditModel(); User_Info info = db.User_Info.Find(id); if (info == null) { ViewBag.msg = "该用户可能已被删除,无法查到该用户信息。"; goto next; } info.ToDecrypt(); model.FromUserInfoDB(info); User_Extend extend = db.User_Extend.Find(id); if (extend != null) { model.FromUserExtendDB(extend); int p = (from dept in db.Dic_Department where dept.dept_id == extend.user_dept_id select dept.dept_parent_id).FirstOrDefault(); if (p == 0) { model.deptId = extend.user_dept_id; } else { int dept_id = (from dept in db.Dic_Department where dept.dept_id == p select dept.dept_id).FirstOrDefault(); model.deptId = dept_id; model.deptChild = extend.user_dept_id; List <SelectOption> options = DropDownList.getDepartment(dept_id); ViewBag.DeptChild = DropDownList.SetDropDownList(options); } } model.roleId = (from svr in db.User_vs_Role where svr.uvr_user_id == id select svr.uvr_role_id).DefaultIfEmpty(0).FirstOrDefault(); next: return(View(model)); }
public JsonResult DeleteAttachment(int id) { BaseJsonData json = new BaseJsonData(); if (!User.Identity.IsAuthenticated) { json.msg_code = "nologin"; goto next; } Reimbursement_Attachment atta = db.Reimbursement_Attachment.Find(id); if (atta == null) { json.msg_code = "nodate"; json.msg_text = "附件不存在或被删除。"; goto next; } Reimbursement bill = db.Reimbursement.Find(atta.atta_reimbursement_code); if (bill != null) { int user = Common.PageValidate.FilterParam(User.Identity.Name); if (user != bill.r_add_user_id && !RoleCheck.CheckHasAuthority(user, db, "系统管理")) { json.msg_code = "forbidden"; json.msg_text = "没有权限操作他人申请的报销单。"; goto next; } if (bill.r_bill_state == 1) { json.msg_code = "forbidden"; json.msg_text = "已批复同意的报销单不允许删除任何信息。"; goto next; } } db.Reimbursement_Attachment.Remove(atta); try { db.SaveChanges(); } catch (Exception e) { ErrorUnit.WriteErrorLog(e.ToString(), this.GetType().Name); json.msg_code = "error"; json.msg_text = "附件删除失败。"; goto next; } json.state = 1; json.msg_code = "success"; next: return(Json(json, JsonRequestBehavior.AllowGet)); }
public ActionResult Detail(StatisticsSearch search) { if (!User.Identity.IsAuthenticated) { return(RedirectToRoute(new { controller = "Login", action = "LogOut" })); } int user = PageValidate.FilterParam(User.Identity.Name); setSearchSelect(user); if (!RoleCheck.CheckHasAuthority(user, db, "经费管理")) { search.manager = user; search.userId = user; } if (search.userId == null) { search.userId = 0; } ApplyManager dal = new ApplyManager(db); var query = dal.GetReimbursement("", (int)search.userId).Where(x => x.state == 1); if (search.manager > 0) { query = query.Where(x => x.manager == search.manager); } if (search.beginDate != null) { search.beginDate = DateTime.Parse(((DateTime)search.beginDate).ToString("yyyy-MM-dd 00:00:00.000")); query = query.Where(x => x.time >= search.beginDate); } if (search.endDate != null) { search.endDate = DateTime.Parse(((DateTime)search.endDate).ToString("yyyy-MM-dd 23:59:59.999")); query = query.Where(x => x.time <= search.endDate); } search.Amount = query.Count(); query = query.OrderByDescending(x => x.time).Skip(search.PageSize * (search.PageIndex - 1)).Take(search.PageSize); var list = query.ToList(); foreach (var item in list) { item.userName = AESEncrypt.Decrypt(item.userName); item.attachmentsCount = (from content in db.Reimbursement_Content join detail in db.Reimbursement_Detail on content.content_id equals detail.detail_content_id where content.c_reimbursement_code == item.reimbursementCode select content.content_id).Count(); } ViewData["Details"] = list; return(View(search)); }
public static List <SelectOption> FundsManagerSelect(int userId) { string key; bool isManager = RoleCheck.CheckHasAuthority(userId, db, "经费管理"); if (isManager) { key = cache_response_user; } else { key = cache_response_user + userId; } List <SelectOption> options = (List <SelectOption>)DataCache.GetCache(key); if (options == null) { var query = (from funds in db.Funds join user in db.User_Info on funds.f_manager equals user.user_id group funds by new { funds.f_manager, user.user_name } into g select new { userId = g.Key.f_manager, userName = g.Key.user_name } ).ToList(); if (userId > 0 && !isManager) { query = query.Where(x => x.userId == userId).ToList(); } options = (from user in query select new SelectOption { id = user.userId.ToString(), text = AESEncrypt.Decrypt(user.userName) }).ToList(); if (isManager) { options.Insert(0, new SelectOption { id = "0", text = "全部" }); } if (options.Count() > 0) { DataCache.SetCache(key, options); } } return(options); }
public ActionResult Role() { if (!User.Identity.IsAuthenticated) { return(RedirectToRoute(new { controller = "Login", action = "LogOut" })); } int user = PageValidate.FilterParam(User.Identity.Name); if (!RoleCheck.CheckHasAuthority(user, db, "系统管理")) { return(RedirectToRoute(new { controller = "Error", action = "Index", err = "没有权限当前内容。" })); } ViewData["RoleList"] = DBCaches <Dic_Role> .getCache("cache_role");; return(View(new Dic_Role())); }
// GET: FundsManager/Create public ActionResult Create() { if (!User.Identity.IsAuthenticated) { return(RedirectToRoute(new { controller = "Login", action = "LogOut" })); } int user = Common.PageValidate.FilterParam(User.Identity.Name); if (!RoleCheck.CheckHasAuthority(user, db, "添加经费", "经费管理")) { return(RedirectToRoute(new { controller = "Error", action = "Index", err = "没有权限。" })); } SetSelect(); return(View(new FundsModel())); }
public static List <SelectOption> UserSelect(int userId) { string key = cache_user + userId; bool isManager = RoleCheck.CheckHasAuthority(userId, db, "经费管理", "用户管理"); if (isManager) { key = cache_user; } else { key = cache_user + userId; } List <SelectOption> options = (List <SelectOption>)DataCache.GetCache(key); if (options == null) { var query = (from user in db.User_Info where user.user_state == 1 select new { userId = user.user_id, userName = user.real_name }).ToList(); if (userId > 0 && !isManager) { query = query.Where(x => x.userId == userId).ToList(); } options = (from user in query select new SelectOption { id = user.userId.ToString(), text = AESEncrypt.Decrypt(user.userName) }).ToList(); if (isManager) { options.Insert(0, new SelectOption { id = "0", text = "全部" }); } if (options.Count() > 0) { DataCache.SetCache(key, options); } } return(options); }
public ActionResult SiteSet() { if (!User.Identity.IsAuthenticated) { return(RedirectToRoute(new { controller = "Login", action = "LogOut" })); } int user = PageValidate.FilterParam(User.Identity.Name); if (!RoleCheck.CheckHasAuthority(user, db, "系统管理")) { return(RedirectToRoute(new { controller = "Error", action = "Index", err = "没有权限执行当前操作。" })); } ViewModels.SiteInfo info = Lythen.Controllers.SiteInfo.getSiteInfo(); return(View(info)); }
public JsonResult DeleteDept(string pid) { int id = PageValidate.FilterParam(pid); BaseJsonData json = new BaseJsonData(); if (!User.Identity.IsAuthenticated) { json.msg_text = "没有登陆或登陆失效,请重新登陆后操作。"; json.msg_code = "notLogin"; goto next; } int user = PageValidate.FilterParam(User.Identity.Name); if (!RoleCheck.CheckHasAuthority(user, db, "系统管理")) { json.msg_text = "没有权限。"; json.msg_code = "NoPower"; goto next; } Dic_Department model = db.Dic_Department.Find(id); if (model == null) { json.msg_text = "没有找到该部门/科室,该部门/科室可能已被删除。"; json.msg_code = "noThis"; goto next; } db.Dic_Department.Remove(model); try { db.SaveChanges(); DBCaches2.ClearCache("cache_depts"); } catch { json.msg_text = "删除失败,请重新操作。"; json.msg_code = "recyErr"; goto next; } SysLog.WriteLog(user, string.Format("删除部门[{0}]", model.dept_name), IpHelper.GetIP(), "", 5, "", db); json.state = 1; json.msg_code = "success"; json.msg_text = "删除成功!"; next: return(Json(json, JsonRequestBehavior.AllowGet)); }
public JsonResult GetRoleAuth(int roleId) { BaseJsonData json = new BaseJsonData(); if (!User.Identity.IsAuthenticated) { json.msg_text = "没有登陆或登陆失效,请重新登陆后操作。"; json.msg_code = "notLogin"; goto next; } int user = PageValidate.FilterParam(User.Identity.Name); if (!RoleCheck.CheckHasAuthority(user, db, "系统管理")) { json.msg_text = "没有权限。"; json.msg_code = "NoPower"; goto next; } if (roleId == 0) { json.msg_text = "获取角色出错。"; json.msg_code = "IDError"; goto next; } var rvas = from rva in db.Role_vs_Authority where rva.rva_role_id == roleId select new ViewRoleAuthority { authId = rva.rva_auth_id, roleId = rva.rva_role_id }; if (rvas.Count() == 0) { json.state = 0; json.msg_code = "noData"; json.msg_text = "没有数据。"; } else { json.state = 1; json.data = rvas.ToList(); } next: return(Json(json, JsonRequestBehavior.AllowGet)); }
public ActionResult Create([Bind(Include = "code,name,source,amount,balance,processId,info,state")] FundsModel funds) { if (!User.Identity.IsAuthenticated) { return(RedirectToRoute(new { controller = "Login", action = "LogOut" })); } int user = Common.PageValidate.FilterParam(User.Identity.Name); if (!RoleCheck.CheckHasAuthority(user, db, "添加经费", "经费管理")) { return(RedirectToRoute(new { controller = "Error", action = "Index", err = "没有权限。" })); } SetSelect(); if (ModelState.IsValid) { if (db.Funds.Where(x => x.f_code == funds.code).Count() > 0) { ViewBag.msg = "该代码已被使用"; return(View(funds)); } if (db.Funds.Where(x => x.f_name == funds.name).Count() > 0) { ViewBag.msg = "该名称已被使用"; return(View(funds)); } //if (funds.processId == null || funds.processId == 0) //{ // ViewBag.msg = "未选择批复流程。"; // return View(funds); //} if (funds.amount == 0) { ViewBag.msg = "请设置经费总额。"; return(View(funds)); } Funds model = new Funds(); funds.toDBModel(model); model.f_manager = user; db.Funds.Add(model); db.SaveChanges(); SysLog.WriteLog(user, string.Format("经费添加[{0}]", model.f_code), IpHelper.GetIP(), model.f_id.ToString(), 6, "", db); ViewBag.msg = "经费添加成功。"; } return(View(funds)); }
// GET: Teacher/Details/5 public ActionResult Details(int id) { if (!User.Identity.IsAuthenticated) { return(RedirectToRoute(new { controller = "Login", action = "LogOut" })); } int userid = PageValidate.FilterParam(User.Identity.Name); if (!RoleCheck.CheckHasAuthority(userid, db, "用户查询", "用户管理") && id != userid) { return(RedirectToRoute(new { controller = "Error", action = "Index", err = "没有权限。" })); } TeacherSearch model = new TeacherSearch(); model.id = id; return(View(GetInfo(model))); }
public ActionResult DeleteConfirmed(int id) { if (!User.Identity.IsAuthenticated) { return(RedirectToRoute(new { controller = "Login", action = "LogOut" })); } int userid = PageValidate.FilterParam(User.Identity.Name); if (!RoleCheck.CheckHasAuthority(userid, db, "用户管理")) { return(RedirectToRoute(new { controller = "Error", action = "Index", err = "没有权限。" })); } User_Info user_Info = db.User_Infos.Find(id); db.User_Infos.Remove(user_Info); db.SaveChanges(); return(RedirectToAction("Index")); }
public ActionResult TimesStaticstics(StatisticsSearch search) { if (!User.Identity.IsAuthenticated) { return(RedirectToRoute(new { controller = "Login", action = "LogOut" })); } int user = PageValidate.FilterParam(User.Identity.Name); setSearchSelect(user); if (!RoleCheck.CheckHasAuthority(user, db, "统计")) { return(RedirectToRoute(new { controller = "Error", action = "Index", err = "没有权限。" })); } Statistics dal = new Statistics(db); var query = dal.GetTimesStatistics(search); ViewData["StatData"] = query; return(View(search)); }
public ActionResult Department() { if (!User.Identity.IsAuthenticated) { return(RedirectToRoute(new { controller = "Login", action = "LogOut" })); } int user = PageValidate.FilterParam(User.Identity.Name); if (!RoleCheck.CheckHasAuthority(user, db, "系统管理")) { return(RedirectToRoute(new { controller = "Error", action = "Index", err = "没有权限执行当前操作。" })); } List <SelectOption> options = DropDownList.getDepartment(); ViewBag.Dept = DropDownList.SetDropDownList(options); ViewData["DeptList"] = DBCaches2.getDeptCache(); return(View(new DepartMentModel())); }
// GET: FundsManager/Edit/5 public ActionResult Edit(int?id) { if (!User.Identity.IsAuthenticated) { return(RedirectToRoute(new { controller = "Login", action = "LogOut" })); } if (id == null) { return(new HttpStatusCodeResult(HttpStatusCode.BadRequest)); } int user = Common.PageValidate.FilterParam(User.Identity.Name); if (!RoleCheck.CheckHasAuthority(user, db, "添加经费", "经费管理")) { return(RedirectToRoute(new { controller = "Error", action = "Index", err = "没有权限。" })); } SetSelect(); FundsModel funds = (from f in db.Funds where f.f_id == (int)id select new FundsModel { amount = f.f_amount, id = f.f_id, balance = f.f_balance, info = f.f_info, manager = f.f_manager, name = f.f_name, source = f.f_source, state = f.f_state, code = f.f_code }).FirstOrDefault(); if (funds == null) { return(RedirectToRoute(new { controller = "Error", action = "Index", err = "没有找到该经费。" })); } if (user != funds.manager && !RoleCheck.CheckHasAuthority(user, db, "经费管理")) { return(RedirectToRoute(new { controller = "Error", action = "Index", err = "没有对该经费的管理权限。" })); } return(View(funds)); }
public ActionResult Department(DepartMentModel info) { if (!User.Identity.IsAuthenticated) { return(RedirectToRoute(new { controller = "Login", action = "LogOut" })); } int user = PageValidate.FilterParam(User.Identity.Name); if (!RoleCheck.CheckHasAuthority(user, db, "系统管理")) { return(RedirectToRoute(new { controller = "Error", action = "Index", err = "没有权限执行当前操作。" })); } List <SelectOption> options = DropDownList.getDepartment(); ViewBag.Dept = DropDownList.SetDropDownList(options); Dic_Department model = new Dic_Department(); model.dept_name = PageValidate.InputText(info.deptName, 50); if (db.Dic_Department.Where(x => x.dept_name == model.dept_name && x.dept_parent_id == info.parentId).Count() > 0) { ViewBag.msg = "名称已存在"; } else { model.dept_parent_id = info.parentId; db.Dic_Department.Add(model); try { db.SaveChanges(); DBCaches2.ClearCache("cache_depts"); } catch { ViewBag.msg = "部门添加失败,请重试。"; } } SysLog.WriteLog(user, string.Format("添加部门[{0}]", model.dept_name), IpHelper.GetIP(), "", 5, "", db); ViewData["DeptList"] = DBCaches2.getDeptCache(); return(View(info)); }
public JsonResult DeleteAllCache() { BaseJsonData json = new BaseJsonData(); if (!User.Identity.IsAuthenticated) { json.msg_text = "没有登陆或登陆失效,请重新登陆后操作。"; json.msg_code = "notLogin"; return(Json(json, JsonRequestBehavior.AllowGet)); } int user = PageValidate.FilterParam(User.Identity.Name); if (!RoleCheck.CheckHasAuthority(user, db, "系统管理")) { json.msg_text = "没有权限。"; json.msg_code = "NoPower"; return(Json(json, JsonRequestBehavior.AllowGet)); } DataCache.RemoveAllCache(); return(Json(json, JsonRequestBehavior.AllowGet)); }
public ActionResult SiteSet([Bind(Include = "name,company,introduce,companyAddress,companyPhone,companyEmail,managerName,managerPhone,managerEmail")] ViewModels.SiteInfo info) { if (!User.Identity.IsAuthenticated) { return(RedirectToRoute(new { controller = "Login", action = "LogOut" })); } int user = PageValidate.FilterParam(User.Identity.Name); if (!RoleCheck.CheckHasAuthority(user, db, "系统管理")) { return(RedirectToRoute(new { controller = "Error", action = "Index", err = "没有权限执行当前操作。" })); } Sys_SiteInfo model = db.Sys_SiteInfo.FirstOrDefault(); if (model != null) { db.Sys_SiteInfo.Remove(model); db.SaveChanges(); } model = new Sys_SiteInfo(); info.toDBModel(model); db.Sys_SiteInfo.Add(model); try { db.SaveChanges(); DBCaches <Sys_SiteInfo> .ClearCache("site-name"); DBCaches <Sys_SiteInfo> .ClearCache("site-info"); } catch (Exception ex) { @ViewBag.msg = "修改失败。"; } SysLog.WriteLog(user, "修改网站信息", IpHelper.GetIP(), "", 5, "", db); @ViewBag.msg = "修改成功。"; return(View(info)); }
public ActionResult ContrlModule() { if (!User.Identity.IsAuthenticated) { return(RedirectToRoute(new { controller = "Login", action = "LogOut" })); } int user = PageValidate.FilterParam(User.Identity.Name); if (!RoleCheck.CheckHasAuthority(user, db, "系统管理")) { return(RedirectToRoute(new { controller = "Error", action = "Index", err = "没有权限执行当前操作。" })); } List <ModuleInfo> models = DBCaches2.getModuleInfo(); foreach (ModuleInfo model in models) { int[] roles = (from rvc in db.Role_vs_Controller where rvc.rvc_controller == model.name select rvc.rvc_role_id ).ToArray(); RoleInfo[] rvcs = DBCaches2.getRoleInfo(); foreach (RoleInfo item in rvcs) { if (roles.Contains(item.id)) { item.hasrole = true; } else { item.hasrole = false; } } model.roles = rvcs; } return(View(models)); }
public ActionResult Role(Dic_Role model) { if (!User.Identity.IsAuthenticated) { return(RedirectToRoute(new { controller = "Login", action = "LogOut" })); } int user = PageValidate.FilterParam(User.Identity.Name); if (!RoleCheck.CheckHasAuthority(user, db, "系统管理")) { return(RedirectToRoute(new { controller = "Error", action = "Index", err = "没有权限当前内容。" })); } model.role_name = PageValidate.InputText(model.role_name, 50); if (db.Dic_Role.Where(x => x.role_name == model.role_name).Count() > 0) { ViewBag.msg = "角色名称已存在"; } else { db.Dic_Role.Add(model); try { db.SaveChanges(); DBCaches <Dic_Role> .ClearCache("cache_role"); } catch { ViewBag.msg = "角色添加失败,请重试。"; } } SysLog.WriteLog(user, string.Format("添加角色[{0}]", model.role_name), IpHelper.GetIP(), "", 5, "", db); ViewData["RoleList"] = DBCaches <Dic_Role> .getCache("cache_role");// db.Dic_Post.ToList(); return(View(model)); }