public int Update(ASSETKKF_MODEL.Data.Mssql.Asset.STUSERASSET d, string EditUser = "", SqlTransaction transac = null, string conStr = null)
{
DynamicParameters param = new DynamicParameters();
//param.Add("@UserCode", d.UserCode);
string cmd = "";
var res = ExecuteNonQuery(transac, cmd, param, conStr);
return(res);
}
public List <ASSETKKF_MODEL.Data.Mssql.Asset.STUSERASSET> CheckApprover(ASSETKKF_MODEL.Data.Mssql.Asset.STUSERASSET d, string conStr = null)
{
DynamicParameters param = new DynamicParameters();
param.Add("@USERCODE", d.UCODE);
string cmd = "SELECT * FROM [dbo].[FT_UserAsset] (" + QuoteStr(d.UCODE) + ")" +
$" where A_Approv = 'Y'";
var res = Query <ASSETKKF_MODEL.Data.Mssql.Asset.STUSERASSET>(cmd, param, conStr).ToList();
return(res);
}
public List <ASSETKKF_MODEL.Data.Mssql.Asset.STUSERASSET> Search(ASSETKKF_MODEL.Data.Mssql.Asset.STUSERASSET d, SqlTransaction transac = null, string conStr = null)
{
DynamicParameters param = new DynamicParameters();
param.Add("@USERCODE", d.UCODE);
param.Add("@UserName", d.OFFICECODE);
string cmd = "SELECT * FROM [dbo].[FT_UserAsset] (" + QuoteStr(d.UCODE) + ") where 1 = 1";
if (!String.IsNullOrEmpty(d.COMPANY))
{
cmd += " and COMPANY = " + QuoteStr(d.COMPANY);
}
var res = Query <ASSETKKF_MODEL.Data.Mssql.Asset.STUSERASSET>(cmd, param, conStr).ToList();
return(res);
}
protected override void ExecuteChild(OauthLoginReq dataReq, ResponseAPI dataRes)
{
DBMode = dataReq.DBMode;
var res = new OauthLoginRes();
res._result.ServerAddr = ConnectionString();
res._result.DBMode = DBMode;
var userApprove = new ASSETKKF_MODEL.Data.Mssql.Asset.STUSERASSET();
userApprove.UCODE = dataReq.usercode;
try
{
var roles = ASSETKKF_ADO.Mssql.Asset.STUSERASSETAdo.GetInstant().CheckApprover(userApprove, conString);
if (roles.Count <= 0)
{
res = new OauthLoginRes();
res.usercode = dataReq.usercode;
res._result._status = "F";
res._result._code = "F0002";
res._result._message = "ไม่มีสิทธิ์ การอนุมัติ";
}
else
{
var user = ASSETKKF_ADO.Mssql.Asset.STUSERASSETAdo.GetInstant().Search(new ASSETKKF_MODEL.Data.Mssql.Asset.STUSERASSET()
{
UCODE = dataReq.usercode.Trim()
}, null, conString).FirstOrDefault();
if (user == null)
{
throw new Exception("Username Not Found.");
}
if (user.STAEMP == "9")
{
throw new Exception("พ้นสภาพพนักงาน ไม่มีสิทธิ์เข้าใช้โปรแกรม.");
}
if (user.A_Review == "N")
{
throw new Exception("ถูกยกเลิกสิทธิ์เข้าใช้โปรแกรม.");
}
//var pass = Core.Util.EncryptUtil.Hash(dataReq.password.Trim());
var pass = Core.Util.EncryptUtil.ENDCodeNEW(dataReq.password.Trim());
if (user.PCODE == pass)
{
var _token = Core.Util.EncryptUtil.Hash(pass);
res.token = _token.NewID();
res.username = user.OFFICECODE;
res.usercode = user.UCODE;
res._result._status = "S";
res._result._code = "S0000";
res._result._message = "username และ password ถูกต้อง";
StaticValue.GetInstant().TokenKey();
}
else
{
res = new OauthLoginRes();
res.usercode = dataReq.usercode;
res._result._status = "F";
res._result._code = "F0002";
res._result._message = "username และ password ไม่ถูกต้อง";
}
}
}
catch
{
res.usercode = dataReq.usercode;
res._result._status = "F";
res._result._code = "F0002";
res._result._message = "การเชื่อมต่อฐานข้อมูลมีปัญหา...";
}
dataRes.data = res;
}
