public ActionResult Index(String userId) { UserAuthUtil authUtil = new UserAuthUtil(); String opScope = ""; String[] roleInfo = authUtil.chkUserFuncAuth(Session["UserID"].ToString(), "~/UserMgr/"); if (roleInfo != null && roleInfo.Length == 1) { opScope = "1"; //roleId = roleInfo[1]; //funcType = roleInfo[2]; } ViewBag.opScope = opScope; /*---畫面下拉選單初始值---*/ SysCodeDao sysCodeDao = new SysCodeDao(); //啟用狀態 var isDisabledList = sysCodeDao.loadSelectList("IS_DISABLED"); ViewBag.isDisabledList = isDisabledList; //是否寄送MAIL var isMailList = sysCodeDao.loadSelectList("YN_FLAG"); ViewBag.isMailList = isMailList; //角色群組 var roleAuthTypeList = sysCodeDao.loadSelectList("ROLE_AUTH_TYPE"); ViewBag.roleAuthTypeList = roleAuthTypeList; //角色名稱 CodeRoleDao codeRoleDao = new CodeRoleDao(); var CodeRoleList = codeRoleDao.loadSelectList(); ViewBag.CodeRoleList = CodeRoleList; //異動人員 CodeUserDao codeUserDao = new CodeUserDao(); var CodeUserList = codeUserDao.loadSelectList(); ViewBag.CodeUserList = CodeUserList; if (userId != null) { UserMgrModel userMgrModel = new UserMgrModel(); userMgrModel.cUserID = userId; ViewBag.cUserID = userId; return(View(userMgrModel)); } else { return(View()); } }
public JsonResult LoadData(UserMgrModel userMgrModel) { List <UserMgrModel> rows = qryUserData(userMgrModel); CodeUserDao codeUserDao = new CodeUserDao(); procTrackLog(userMgrModel, codeUserDao, rows.Count); var jsonData = new { success = true, rows }; return(Json(jsonData, JsonRequestBehavior.AllowGet)); }
public ActionResult Logout() { logger.Info("[AccountController][Logout]Session[UserID]:" + Session["UserID"]?.ToString()); try { CodeUserDao codeUserDao = new CodeUserDao(); CODE_USER codeUser = codeUserDao.qryUserByKey(Session["UserID"]?.ToString()); writeLog("O", true, Session["UserID"]?.ToString(), codeUser); Session.Clear(); Session.Abandon(); //Response.Cookies["ASP.NET_SessionId"].Value = ""; //Response.Cookies["ASP.NET_SessionId"].Expires = DateTime.Now.AddDays(-30); if (Request.Cookies["ASP.NET_SessionId"] != null) { Response.Cookies["ASP.NET_SessionId"].Value = string.Empty; Response.Cookies["ASP.NET_SessionId"].Expires = DateTime.Now.AddMonths(-20); } if (Request.Cookies["adAuthCookie"] != null) { Response.Cookies["adAuthCookie"].Value = string.Empty; Response.Cookies["adAuthCookie"].Expires = DateTime.Now.AddMonths(-20); } ////建立一個同名的 Cookie 來覆蓋原本的 Cookie //HttpCookie cookie1 = new HttpCookie(FormsAuthentication.FormsCookieName, ""); //cookie1.Expires = DateTime.Now.AddYears(-1); //Response.Cookies.Add(cookie1); ////建立 ASP.NET 的 Session Cookie 同樣是為了覆蓋 //HttpCookie cookie2 = new HttpCookie("ASP.NET_SessionId", ""); //cookie2.Expires = DateTime.Now.AddYears(-1); //Response.Cookies.Add(cookie2); TempData["Logout"] = "true"; //Response.Cache.SetNoStore(); return(RedirectToAction("Login")); } catch (Exception e) { return(RedirectToAction("Login")); logger.Error("[AccountController][Logout]e:" + e.ToString()); } }
/// <summary> /// 新增稽核軌跡 /// </summary> /// <param name="codeUserDao"></param> /// <param name="codeUser"></param> /// <param name="conn"></param> /// <param name="transaction"></param> public void procTrackLog(string type, CodeUserDao codeUserDao, CODE_USER codeUser, SqlConnection conn, SqlTransaction transaction) { PIA_LOG_MAIN piaLog = new PIA_LOG_MAIN(); piaLog.TRACKING_TYPE = "A"; piaLog.ACCESS_ACCOUNT = Session["UserID"].ToString(); piaLog.ACCOUNT_NAME = Session["UserName"].ToString(); piaLog.PROGFUN_NAME = "UserReview"; piaLog.ACCESSOBJ_NAME = "CodeUser"; piaLog.EXECUTION_TYPE = type; piaLog.EXECUTION_CONTENT = codeUserDao.userLogContent(codeUser); piaLog.AFFECT_ROWS = 1; piaLog.PIA_OWNER1 = codeUser.USER_ID; piaLog.PIA_OWNER2 = ""; piaLog.PIA_TYPE = "0100000000"; PiaLogMainDao piaLogMainDao = new PiaLogMainDao(); piaLogMainDao.Insert(piaLog, conn, transaction); }
/// <summary> /// 主頁面查詢紀錄至稽核軌跡 /// </summary> /// <param name="userMgrModel"></param> /// <param name="codeUserDao"></param> /// <param name="cnt"></param> public void procTrackLog(UserMgrModel userMgrModel, CodeUserDao codeUserDao, int cnt) { string strConn = DbUtil.GetDBTreasuryConnStr(); using (SqlConnection conn = new SqlConnection(strConn)) { conn.Open(); SqlTransaction transaction = conn.BeginTransaction("Transaction"); try { PIA_LOG_MAIN piaLog = new PIA_LOG_MAIN(); piaLog.TRACKING_TYPE = "A"; piaLog.ACCESS_ACCOUNT = Session["UserID"].ToString(); //piaLog.ACCOUNT_NAME = Session["UserName"].ToString(); piaLog.PROGFUN_NAME = "UserMgrController"; piaLog.ACCESSOBJ_NAME = "CodeUser"; piaLog.EXECUTION_TYPE = "Q"; piaLog.EXECUTION_CONTENT = codeUserDao.trackLogContent(userMgrModel); piaLog.AFFECT_ROWS = cnt; piaLog.PIA_OWNER1 = ""; piaLog.PIA_OWNER2 = ""; piaLog.PIA_TYPE = "0100000000"; PiaLogMainDao piaLogMainDao = new PiaLogMainDao(); piaLogMainDao.Insert(piaLog, conn, transaction); transaction.Commit(); } catch (Exception e) { transaction.Rollback(); logger.Error("[procTrackLog]其它錯誤:" + e.ToString()); } } }
public JsonResult execReviewU(string aplyNo, string userId, string apprStatus) { string strConn = DbUtil.GetDBTreasuryConnStr(); using (SqlConnection conn = new SqlConnection(strConn)) { conn.Open(); SqlTransaction transaction = conn.BeginTransaction("Transaction"); try { AuthApprDao AuthApprDao = new AuthApprDao(); AUTH_APPR authAppr = AuthApprDao.qryByKey(aplyNo); if (StringUtil.toString(authAppr.CREATE_UID).Equals(Session["UserID"].ToString())) { return(Json(new { success = false, errors = "覆核人員與申請人員相同,不可執行覆核作業!!" }, JsonRequestBehavior.AllowGet)); } //異動使用者資料檔 string cExecType = ""; CodeUserHisDao codeUserHisDao = new CodeUserHisDao(); CodeUserDao codeUserDao = new CodeUserDao(); CODE_USER cODEUSERO = new CODE_USER(); CODE_USER_HIS codeUserHis = codeUserHisDao.qryByAplyNo(aplyNo); string execAction = ""; if (codeUserHis != null) { execAction = StringUtil.toString(codeUserHis.EXEC_ACTION); } if ("A".Equals(execAction)) //新增使用者 { } else { //異動角色 cODEUSERO = codeUserDao.qryUserByKey(userId); } if ("A".Equals(execAction)) { if ("2".Equals(apprStatus)) { cODEUSERO.USER_ID = StringUtil.toString(codeUserHis.USER_ID); cODEUSERO.IS_DISABLED = codeUserHis.IS_DISABLED; cODEUSERO.IS_MAIL = codeUserHis.IS_MAIL; cODEUSERO.MEMO = codeUserHis.MEMO; cODEUSERO.DATA_STATUS = "1"; cODEUSERO.CREATE_UID = authAppr.CREATE_UID; cODEUSERO.CREATE_DT = authAppr.CREATE_DT; cODEUSERO.LAST_UPDATE_UID = StringUtil.toString(authAppr.CREATE_UID); cODEUSERO.LAST_UPDATE_DT = authAppr.CREATE_DT; cODEUSERO.APPR_UID = Session["UserID"].ToString(); cODEUSERO.APPR_DT = DateTime.Now; int cnt = codeUserDao.Create(cODEUSERO, conn, transaction); //新增LOG Log log = new Log(); log.CFUNCTION = "使用者管理-新增"; log.CACTION = "A"; log.CCONTENT = codeUserDao.userLogContent(cODEUSERO); LogDao.Insert(log, Session["UserID"].ToString()); //新增稽核軌跡 procTrackLog("A", codeUserDao, cODEUSERO, conn, transaction); } } else { //新增LOG Log log = new Log(); log.CFUNCTION = "使用者管理-修改"; log.CACTION = "U"; log.CCONTENT = codeUserDao.userLogContent(cODEUSERO); LogDao.Insert(log, Session["UserID"].ToString()); cODEUSERO.DATA_STATUS = "1"; cODEUSERO.LAST_UPDATE_UID = StringUtil.toString(authAppr.CREATE_UID); cODEUSERO.LAST_UPDATE_DT = authAppr.CREATE_DT; cODEUSERO.APPR_UID = Session["UserID"].ToString(); cODEUSERO.APPR_DT = DateTime.Now; cODEUSERO.FREEZE_DT = null; cODEUSERO.FREEZE_UID = ""; if ("U".Equals(execAction) && "2".Equals(apprStatus)) { cODEUSERO.IS_DISABLED = codeUserHis.IS_DISABLED; cODEUSERO.IS_MAIL = StringUtil.toString(codeUserHis.IS_MAIL); cODEUSERO.MEMO = StringUtil.toString(codeUserHis.MEMO); } int cnt = codeUserDao.Update(cODEUSERO, conn, transaction); //20190418 201904160117-00 Bianco 修改稽核軌跡 procTrackLog("E", codeUserDao, cODEUSERO, conn, transaction); } //覆核狀態=核可時 if ("2".Equals(apprStatus)) { procUserRoleHis(cODEUSERO, aplyNo, conn, transaction); //異動使用者角色 } //異動覆核資料檔 procAuthAppr(aplyNo, apprStatus, conn, transaction); transaction.Commit(); return(Json(new { success = true })); } catch (Exception e) { transaction.Rollback(); logger.Error("[execReviewR]其它錯誤:" + e.ToString()); return(Json(new { success = false, errors = "其它錯誤,請洽系統管理員!!" }, JsonRequestBehavior.AllowGet)); } } }
///// <summary> ///// 開啟使用者修改明細畫面 ///// </summary> ///// <param name="aplyNo"></param> ///// <returns></returns> //public ActionResult detailUser(string cReviewSeq) //{ // try // { // using (DbAccountEntities db = new DbAccountEntities()) // { // CodeUserHisDao codeUserHisDao = new CodeUserHisDao(); // AuthReviewUserModel userData = codeUserHisDao.qryByNowHis(cReviewSeq, db); // string[] cDateTime = userData.cCrtDateTime.Split(' '); // userData.cCrtDateTime = DateUtil.formatDateTimeDbToSc(cDateTime[0] + " " + cDateTime[1], "DT"); // ViewBag.bHaveData = "Y"; // ViewBag.cReviewSeq = cReviewSeq; // return View(userData); // } // } // catch (Exception e) // { // ViewBag.bHaveData = "N"; // return View(); // } //} /// <summary> /// 開啟使用者修改明細畫面 /// </summary> /// <param name="aplyNo"></param> /// <returns></returns> public ActionResult detailUser(string aplyNo, string userId) { try { string execAction = ""; AuthApprDao AuthApprDao = new AuthApprDao(); AUTH_APPR authAppr = new AUTH_APPR(); if (!"".Equals(StringUtil.toString(aplyNo))) { authAppr = AuthApprDao.qryByKey(aplyNo); ViewBag.bView = "N"; } else { authAppr = AuthApprDao.qryByFreeRole(userId); if (authAppr != null) { aplyNo = StringUtil.toString(authAppr.APLY_NO); } ViewBag.bView = "Y"; } AuthReviewUserModel userData = new AuthReviewUserModel(); userData.aplyNo = aplyNo; userData.userId = authAppr.APPR_MAPPING_KEY; userData.createUid = authAppr.CREATE_UID; OaEmpDao oaEmpDao = new OaEmpDao(); using (DB_INTRAEntities dbIntra = new DB_INTRAEntities()) { try { userData.createUid = userData.createUid == null ? "" : StringUtil.toString(oaEmpDao.qryByUsrId(userData.createUid, dbIntra).EMP_NAME); userData.userName = userData.userId == null ? "" : StringUtil.toString(oaEmpDao.qryByUsrId(userData.userId, dbIntra).EMP_NAME); } catch (Exception e) { } } userData.createDt = authAppr.CREATE_DT.ToString(); SysCodeDao sysCodeDao = new SysCodeDao(); Dictionary <string, string> dicExecAction = sysCodeDao.qryByTypeDic("EXEC_ACTION"); Dictionary <string, string> dicYNFlag = sysCodeDao.qryByTypeDic("YN_FLAG"); CodeUserHisDao codeUserHisDao = new CodeUserHisDao(); CODE_USER_HIS codeUserHis = codeUserHisDao.qryByAplyNo(aplyNo); if (codeUserHis != null) { execAction = StringUtil.toString(codeUserHis.EXEC_ACTION); } if ("".Equals(execAction)) { CodeUserDao codeUserDao = new CodeUserDao(); CODE_USER codeUser = new CODE_USER(); codeUser = codeUserDao.qryUserByKey(authAppr.APPR_MAPPING_KEY); userData.isMailB = StringUtil.toString(codeUser.IS_MAIL); userData.isDisabledB = StringUtil.toString(codeUser.IS_DISABLED); userData.memoB = StringUtil.toString(codeUser.MEMO); } else { if ("A".Equals(execAction)) { userData.isMail = StringUtil.toString(codeUserHis.IS_MAIL); userData.isDisabled = StringUtil.toString(codeUserHis.IS_DISABLED); userData.memo = StringUtil.toString(codeUserHis.MEMO); } else { userData.isMail = StringUtil.toString(codeUserHis.IS_MAIL); userData.isDisabled = StringUtil.toString(codeUserHis.IS_MAIL); userData.memo = StringUtil.toString(codeUserHis.MEMO); userData.isMailB = StringUtil.toString(codeUserHis.IS_MAIL_B); userData.isDisabledB = StringUtil.toString(codeUserHis.IS_DISABLED_B); userData.memoB = StringUtil.toString(codeUserHis.MEMO_B); } } userData.execAction = execAction; userData.execActionDesc = dicExecAction.ContainsKey(userData.execAction) ? dicExecAction[userData.execAction] : userData.execAction; userData.isDisabledDesc = dicYNFlag.ContainsKey(userData.isDisabled) ? dicYNFlag[userData.isDisabled] : userData.isDisabled; userData.isDisabledDescB = dicYNFlag.ContainsKey(userData.isDisabledB) ? dicYNFlag[userData.isDisabledB] : userData.isDisabledB; userData.isMailDesc = dicYNFlag.ContainsKey(userData.isMail) ? dicYNFlag[userData.isMail] : userData.isMail; userData.isMailDescB = dicYNFlag.ContainsKey(userData.isMailB) ? dicYNFlag[userData.isMailB] : userData.isMailB; ViewBag.bHaveData = "Y"; ViewBag.aplyNo = aplyNo; return(View(userData)); } catch (Exception e) { ViewBag.bHaveData = "N"; return(View()); } }
public ActionResult Index(String cRoleID) { UserAuthUtil authUtil = new UserAuthUtil(); String opScope = ""; String roleId = ""; String funcType = ""; String[] roleInfo = authUtil.chkUserFuncAuth(Session["UserID"].ToString(), "~/RoleMgr/"); if (roleInfo != null && roleInfo.Length == 1) { opScope = "1"; //roleId = roleInfo[1]; //funcType = roleInfo[2]; } ViewBag.opScope = opScope; /*---畫面下拉選單初始值---*/ SysCodeDao sysCodeDao = new SysCodeDao(); //啟用狀態 var isDisabledList = sysCodeDao.loadSelectList("IS_DISABLED"); ViewBag.isDisabledList = isDisabledList; //角色群組 var roleAuthTypeList = sysCodeDao.loadSelectList("ROLE_AUTH_TYPE"); ViewBag.roleAuthTypeList = roleAuthTypeList; //角色名稱 CodeRoleDao codeRoleDao = new CodeRoleDao(); var CodeRoleList = codeRoleDao.loadSelectList(); ViewBag.CodeRoleList = CodeRoleList; //異動人員 CodeUserDao codeUserDao = new CodeUserDao(); var CodeUserList = codeUserDao.loadSelectList(); ViewBag.CodeUserList = CodeUserList; RoleMgrModel roleMgrModel = new RoleMgrModel(); if (!"".Equals(StringUtil.toString(cRoleID))) { CODE_ROLE codeRole = new CODE_ROLE(); codeRole = codeRoleDao.qryRoleByKey(cRoleID); roleMgrModel.cRoleID = StringUtil.toString(codeRole.ROLE_ID); roleMgrModel.cRoleName = StringUtil.toString(codeRole.ROLE_NAME); roleMgrModel.roleAuthType = StringUtil.toString(codeRole.ROLE_AUTH_TYPE); roleMgrModel.isDisabled = StringUtil.toString(codeRole.IS_DISABLED); roleMgrModel.vMemo = StringUtil.toString(codeRole.MEMO); roleMgrModel.cUpdUserID = StringUtil.toString(codeRole.LAST_UPDATE_UID); ViewBag.cRoleID = cRoleID; return(View(roleMgrModel)); } else { return(View()); } }
/// <summary> /// 異動使用者資訊 /// </summary> /// <param name="userMgrModel"></param> /// <returns></returns> public JsonResult updateUser(UserMgrModel userMgrModel, List <CodeUserRoleModel> roleData, string execAction) { bool bUserChg = false; bool bRoleChg = false; CodeUserDao codeUserDao = new CodeUserDao(); CODE_USER userO = codeUserDao.qryUserByKey(userMgrModel.cUserID); if ("A".Equals(execAction)) { if (userO != null) { if (!"".Equals(StringUtil.toString(userO.USER_ID))) { return(Json(new { success = false, err = "使用者已存在系統,不可新增!!" }, JsonRequestBehavior.AllowGet)); } } bUserChg = true; } else { if (userO == null) { return(Json(new { success = false, err = "該使用者不存在系統!!" }, JsonRequestBehavior.AllowGet)); } else { if (StringUtil.toString(userMgrModel.isDisabled).Equals(StringUtil.toString(userO.IS_DISABLED)) && StringUtil.toString(userMgrModel.isMail).Equals(StringUtil.toString(userO.IS_MAIL)) && StringUtil.toString(userMgrModel.vMemo).Equals(StringUtil.toString(userO.MEMO)) ) { bUserChg = false; } else { bUserChg = true; } } } //比對是否有異動"角色授權" CodeUserRoleDao codeUserRoleDao = new CodeUserRoleDao(); List <CodeUserRoleModel> roleDataO = codeUserRoleDao.qryByUserID(userMgrModel.cUserID); List <CodeUserRoleModel> roleList = new List <CodeUserRoleModel>(); if (roleData != null) { foreach (CodeUserRoleModel role in roleData) { CodeUserRoleModel codeUserRoleModel = new CodeUserRoleModel(); codeUserRoleModel.userId = StringUtil.toString(userMgrModel.cUserID); codeUserRoleModel.roleId = StringUtil.toString(role.roleId); if (roleDataO.Exists(x => x.roleId == role.roleId)) { codeUserRoleModel.execAction = ""; } else { bRoleChg = true; codeUserRoleModel.execAction = "A"; } roleList.Add(codeUserRoleModel); } } foreach (CodeUserRoleModel oRole in roleDataO) { if (roleList != null) { if (!roleList.Exists(x => x.roleId == oRole.roleId)) { bRoleChg = true; CodeUserRoleModel codeUserRoleModel = new CodeUserRoleModel(); codeUserRoleModel.userId = StringUtil.toString(userMgrModel.cUserID); codeUserRoleModel.roleId = StringUtil.toString(oRole.roleId); codeUserRoleModel.execAction = "D"; roleList.Add(codeUserRoleModel); } } else { bRoleChg = true; CodeUserRoleModel codeUserRoleModel = new CodeUserRoleModel(); codeUserRoleModel.userId = StringUtil.toString(oRole.userId); codeUserRoleModel.roleId = StringUtil.toString(oRole.roleId); codeUserRoleModel.execAction = "D"; roleList.Add(codeUserRoleModel); } } if (bUserChg == false && bRoleChg == false) { return(Json(new { success = false, errors = "未異動畫面資料,將不進行修改覆核作業!!" }, JsonRequestBehavior.AllowGet)); } /*------------------ DB處理 begin------------------*/ string strConn = DbUtil.GetDBTreasuryConnStr(); using (SqlConnection conn = new SqlConnection(strConn)) { conn.Open(); SqlTransaction transaction = conn.BeginTransaction("Transaction"); try { AuthApprDao authApprDao = new AuthApprDao(); AUTH_APPR authAppr = new AUTH_APPR(); authAppr.AUTH_APLY_TYPE = "U"; authAppr.APPR_STATUS = "1"; authAppr.APPR_MAPPING_KEY = userMgrModel.cUserID; authAppr.CREATE_UID = Session["UserID"].ToString(); //新增"覆核資料檔" string aplyNo = authApprDao.insert(authAppr, conn, transaction); // 異動"使用者資料檔"資料狀態 if (!"A".Equals(execAction)) { Log log = new Log(); log.CFUNCTION = "使用者管理-修改"; log.CACTION = "U"; log.CCONTENT = codeUserDao.userLogContent(userO); LogDao.Insert(log, Session["UserID"].ToString()); userO.DATA_STATUS = "2"; userO.LAST_UPDATE_UID = Session["UserID"].ToString(); userO.LAST_UPDATE_DT = DateTime.Now; userO.FREEZE_UID = Session["UserID"].ToString(); userO.FREEZE_DT = DateTime.Now; int cnt = codeUserDao.Update(userO, conn, transaction); } //處理使用者資料檔的異動 if (bUserChg) { CodeUserHisDao codeUserHisDao = new CodeUserHisDao(); CODE_USER_HIS userHis = new CODE_USER_HIS(); userHis.APLY_NO = aplyNo; userHis.USER_ID = userMgrModel.cUserID; userHis.IS_DISABLED = userMgrModel.isDisabled; userHis.IS_MAIL = userMgrModel.isMail; userHis.MEMO = userMgrModel.vMemo; if (!"A".Equals(execAction)) { userHis.IS_DISABLED_B = userO.IS_DISABLED; userHis.IS_MAIL_B = userO.IS_MAIL; userHis.MEMO_B = userO.MEMO; userHis.EXEC_ACTION = "U"; } else { userHis.EXEC_ACTION = "A"; } codeUserHisDao.insert(userHis, conn, transaction); } //處理角色金庫設備資料檔的異動 if (bRoleChg) { CodeUserRoleHisDao codeUserRoleHisDao = new CodeUserRoleHisDao(); foreach (CodeUserRoleModel role in roleList) { codeUserRoleHisDao.insert(aplyNo, role, conn, transaction); //if (!"".Equals(role.execAction)) //{ // codeUserRoleHisDao.insert(aplyNo, role, conn, transaction); //} } } transaction.Commit(); /*------------------ DB處理 end------------------*/ return(Json(new { success = true, aplyNo = aplyNo })); } catch (Exception e) { transaction.Rollback(); logger.Error("[updateUser]其它錯誤:" + e.ToString()); return(Json(new { success = false, err = "其它錯誤,請洽系統管理員!!" }, JsonRequestBehavior.AllowGet)); } } }
private List <UserMgrModel> qryUserData(UserMgrModel userMgrModel) { CodeUserDao codeUserDao = new CodeUserDao(); List <UserMgrModel> rows = codeUserDao.qryUserMgr(userMgrModel); using (DB_INTRAEntities db = new DB_INTRAEntities()) { OaEmpDao oaEmpDao = new OaEmpDao(); for (int i = 0; i < rows.Count; i++) { rows[i] = oaEmpDao.getUserOaData(rows[i], db); Dictionary <string, string> userNameMap = new Dictionary <string, string>(); if (!"".Equals(StringUtil.toString(rows[i].cCrtUserID))) { if (!"".Equals(rows[i].cCrtUserID)) { if (!userNameMap.ContainsKey(rows[i].cCrtUserID)) { userNameMap = oaEmpDao.qryUsrName(userNameMap, rows[i].cCrtUserID, db); } rows[i].cCrtUserID = rows[i].cCrtUserID + " " + userNameMap[rows[i].cCrtUserID]; } } if (!"".Equals(StringUtil.toString(rows[i].cUpdUserID))) { if (!"".Equals(rows[i].cUpdUserID)) { if (!userNameMap.ContainsKey(rows[i].cUpdUserID)) { userNameMap = oaEmpDao.qryUsrName(userNameMap, rows[i].cUpdUserID, db); } rows[i].cUpdUserID = rows[i].cUpdUserID + " " + userNameMap[rows[i].cUpdUserID]; } } if (!"".Equals(StringUtil.toString(rows[i].apprUid))) { if (!"".Equals(rows[i].apprUid)) { if (!userNameMap.ContainsKey(rows[i].apprUid)) { userNameMap = oaEmpDao.qryUsrName(userNameMap, rows[i].apprUid, db); } rows[i].apprUid = rows[i].apprUid + " " + userNameMap[rows[i].apprUid]; } } if (!"".Equals(StringUtil.toString(rows[i].frezzeUid))) { if (!"".Equals(rows[i].frezzeUid)) { if (!userNameMap.ContainsKey(rows[i].frezzeUid)) { userNameMap = oaEmpDao.qryUsrName(userNameMap, rows[i].frezzeUid, db); } rows[i].frezzeUid = rows[i].frezzeUid + " " + userNameMap[rows[i].frezzeUid]; } } } } bool bcUserName = StringUtil.isEmpty(userMgrModel.cUserName); if (!bcUserName) { rows = rows.Where(x => x.cUserName == userMgrModel.cUserName).ToList(); } return(rows); }
public ActionResult Login(LoginModel loginModel) { logger.Info("[AccountController][Login]UserId:" + loginModel.UserId); bool hasuser = System.Web.HttpContext.Current.User != null; bool isAuthenticated = hasuser && System.Web.HttpContext.Current.User.Identity.IsAuthenticated; if (ModelState.IsValid) //if (isAuthenticated) { logger.Info("[AccountController][Login]IsValid"); this.HttpContext.Response.RemoveOutputCacheItem(Url.Action("MenuByUser", "NavigationController")); string ADPath = System.Configuration.ConfigurationManager.AppSettings.Get("ADPath"); loginModel.UserId = loginModel.UserId.ToUpper(); DirectoryEntry entry = new DirectoryEntry(ADPath, loginModel.UserId, loginModel.Password); try { string objectSid = (new SecurityIdentifier((byte[])entry.Properties["objectSid"].Value, 0).Value); //AD驗證成功,檢查該user是否有系統權限 CodeUserDao codeUserDao = new CodeUserDao(); CODE_USER codeUser = codeUserDao.qryUserByKey(loginModel.UserId); if (codeUser != null) { if ("N".Equals(codeUser.IS_DISABLED)) { Session["UserID"] = loginModel.UserId; //Session["UserID"] = "A8272"; //Session["UserID"] = "A7040"; //Session["UserID"] = "A0190"; //Session["AgentID"] = codeUser.CAGENTID; //Session["UserName"] = ""; //Session["UserUnit"] = ""; OaEmpDao oaEmpDao = new OaEmpDao(); try { using (DB_INTRAEntities dbIntra = new DB_INTRAEntities()) { V_EMPLY2 emp = oaEmpDao.qryByUsrId(loginModel.UserId, dbIntra); if (emp != null) { Session["UserName"] = StringUtil.toString(emp.EMP_NAME); Session["UserUnit"] = StringUtil.toString(emp.DPT_CD); //Session["UserUnit"] = "VE303"; } } } catch (Exception e) { } writeLog("I", true, loginModel.UserId, codeUser); LoginProcess(loginModel.UserId, false); //System.Web.HttpContext context = System.Web.HttpContext.Current; //SessionIDManager smgr = new SessionIDManager(); //string newId = smgr.CreateSessionID(context); //string oldId = context.Session.SessionID; //bool redirected = false; //bool isAdded = false; //smgr.SaveSessionID(context, newId, out redirected, out isAdded); //string guid = Guid.NewGuid().ToString(); //string guid2 = Guid.NewGuid().ToString(); //Session["ASP.NET_SessionId"] = guid; //// now create a new cookie with this guid value //Response.Cookies["ASP.NET_SessionId"].Value = guid; //Response.Cookies["adAuthCookie"].Value = guid2; //Response.Cookies.Add(new HttpCookie("ASP.NET_SessionId", guid)); //Response.Cookies.Add(new HttpCookie("adAuthCookie", guid2)); return(RedirectToAction("Index", "Home")); } } writeLog("I", false, loginModel.UserId, null); ModelState.AddModelError("", "找不到這個使用者或登入帳號密碼失敗!"); return(View(loginModel)); } catch (Exception e) { logger.Error("[Login]其它錯誤:" + e.ToString()); writeLog("I", false, loginModel.UserId, null); //驗證失敗 ModelState.AddModelError("", "找不到這個使用者或登入帳號密碼失敗!"); return(View(loginModel)); } finally { logger.Info("[Login]finally:" + loginModel.UserId); //entry.Dispose(); } } else { logger.Info("[Login](ModelState.IsValid=false):" + loginModel.UserId); return(View(loginModel)); } }
private void writeLog(String type, bool bSuccess, String userId, CODE_USER codeUser) { CommonUtil commonUtil = new CommonUtil(); //logModel Log log = new Log(); log.CFUNCTION = "I".Equals(type) ? "登入作業" : "登出作業"; log.CACTION = "L"; log.CCONTENT = "UserId:" + userId + "| UserName:" + commonUtil.GetIPAddress() + "|" + ("I".Equals(type) ? "登入成功" : "登出成功"); //PiaLogMainModel PIA_LOG_MAIN piaLogMain = new PIA_LOG_MAIN(); piaLogMain.TRACKING_TYPE = "B"; piaLogMain.ACCESS_ACCOUNT = userId; piaLogMain.ACCOUNT_NAME = ""; piaLogMain.PROGFUN_NAME = "AccountController"; piaLogMain.EXECUTION_CONTENT = userId; piaLogMain.AFFECT_ROWS = 0; piaLogMain.PIA_TYPE = "0000000000"; if (bSuccess) { CodeUserDao codeUserDao = new CodeUserDao(); //更新login/logout日期時間 if ("I".Equals(type)) { codeUserDao.updateLogInOut(userId, "I"); } //codeUser.cLoginDateTime = DateTime.Now; else { codeUserDao.updateLogInOut(userId, "O"); } //codeUser.cLogoutDateTime = DateTime.Now; //寫入系統LOG LogDao.Insert(log, userId); //寫入稽核軌跡 //piaLogMain.ACCOUNT_NAME = codeUser.CUSERNAME; piaLogMain.EXECUTION_TYPE = "I".Equals(type) ? "LS" : "LO"; piaLogMain.ACCESSOBJ_NAME = "CodeUser"; PiaLogMainDao piaLogMainDao = new PiaLogMainDao(); piaLogMainDao.Insert(piaLogMain); } else { //寫入系統LOG log.CCONTENT = "UserId:" + userId + "| UserName:" + commonUtil.GetIPAddress() + "|" + "登入失敗"; LogDao.Insert(log, userId); //寫入稽核軌跡 piaLogMain.EXECUTION_TYPE = "LF"; piaLogMain.ACCESSOBJ_NAME = "AD"; PiaLogMainDao piaLogMainDao = new PiaLogMainDao(); piaLogMainDao.Insert(piaLogMain); } }