public bool GetUserPower(string value, string authKey)
{
string name = GetName(authKey);
BLL.Data_Centre.Link bll = new BLL.Data_Centre.Link();
bll.ChangeDBShop();
string sql = string.Format(@"DECLARE @role VARCHAR(200)
SELECT @role = role
FROM yxs_administrators
WHERE name = '{0}'
SELECT operatecode
FROM dbo.yxs_roles_permissions
WHERE id IN ( SELECT *
FROM dbo.f_split(@role, ',') )", name);
DataTable dt = bll.ExecuteTable(sql);
foreach (DataRow dr in dt.Rows)
{
string v = dr["operatecode"].ToString();
if (value.Equals(v))
{
return(true);
}
}
return(false);
}
public DataSet GetCompleteLink(string t_id, int iden, string authKey)
{
if (islogin(authKey))
{
string sql = string.Format("SELECT * FROM [Link] where t_id='{0}' and iden={1}", t_id, iden);
BLL.Data_Centre.Link bll = new BLL.Data_Centre.Link();
var dr = bll.ExecuteTable(sql).Rows[0];
bll.ChangeDBShop();
sql = string.Format("SELECT * FROM dbo._ViewDrugsBaseAndGoods WHERE Product_ID={0} ", dr["id"]);
return(bll.ExecuteDataSet(sql));
}
return(null);
}