public void ProcessRequest(HttpContext context)
{
context.Response.ContentType = "application/json";
string action = context.Request.Params["action"];
ZGZY.Model.UserOperateLog userOperateLog = null; //操作日志对象
try
{
ZGZY.Model.User user = ZGZY.Common.UserHelper.GetUser(context); //获取cookie里的用户对象
userOperateLog = new Model.UserOperateLog();
userOperateLog.UserIp = context.Request.UserHostAddress;
userOperateLog.UserName = user.UserId;
switch (action)
{
case "getbutton": //根据用户的权限获取用户点击的菜单有权限的按钮
string pageName = context.Request.Params["pagename"];
string menuCode = context.Request.Params["menucode"]; //菜单标识码
DataTable dt = new ZGZY.BLL.Button().GetButtonByMenuCodeAndUserId(menuCode, user.Id);
context.Response.Write(ZGZY.Common.ToolbarHelper.GetToolBar(dt, pageName));
break;
case "search":
string strWhere = "1=1";
string sort = context.Request.Params["sort"]; //排序列
string order = context.Request.Params["order"]; //排序方式 asc或者desc
int pageindex = int.Parse(context.Request.Params["page"]);
int pagesize = int.Parse(context.Request.Params["rows"]);
int totalCount; //输出参数
string strJson = new ZGZY.BLL.Button().GetPager("tbButton", "Id,Name,Code,Icon,Sort,AddDate,Description", sort + " " + order, pagesize, pageindex, strWhere, out totalCount);
context.Response.Write("{\"total\": " + totalCount.ToString() + ",\"rows\":" + strJson + "}");
userOperateLog.OperateInfo = "查询按钮";
userOperateLog.IfSuccess = true;
userOperateLog.Description = "查询条件:" + strWhere + " 排序:" + sort + " " + order + " 页码/每页大小:" + pageindex + " " + pagesize;
//ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog);
break;
case "getall":
context.Response.Write(new ZGZY.BLL.Button().GetAllButton("1=1"));
break;
default:
context.Response.Write("{\"result\":\"参数错误!\",\"success\":false}");
break;
}
}
catch (Exception ex)
{
context.Response.Write("{\"msg\":\"" + ZGZY.Common.JsonHelper.StringFilter(ex.Message) + "\",\"success\":false}");
userOperateLog.OperateInfo = "按钮功能异常";
userOperateLog.IfSuccess = false;
userOperateLog.Description = ZGZY.Common.JsonHelper.StringFilter(ex.Message);
//ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog);
}
}
public void ProcessRequest(HttpContext context)
{
context.Response.ContentType = "application/json";
string action = context.Request.Params["action"];
ZGZY.Model.UserOperateLog userOperateLog = null; //操作日志对象
try {
ZGZY.Model.User user = ZGZY.Common.UserHelper.GetUser(context); //获取cookie里的用户对象
userOperateLog = new Model.UserOperateLog();
userOperateLog.UserIp = context.Request.UserHostAddress;
userOperateLog.UserName = user.UserId;
switch (action)
{
case "getUserMenu": //获取特定用户能看到的菜单(左侧树)
context.Response.Write(new ZGZY.BLL.Menu().GetUserMenu(user.Id));
break;
case "getAllMenu": //根据角色id获取此角色有的权限(设置角色时自动勾选已经有的按钮权限)
int roleid = Convert.ToInt32(context.Request.Params["roleid"]); //角色id
context.Response.Write(new ZGZY.BLL.Menu().GetAllMenu(roleid));
break;
case "getMyAuthority": //前台根据用户名查“我的权限”
context.Response.Write(new ZGZY.BLL.Menu().GetMyAuthority(user.Id));
userOperateLog.OperateInfo = "查询我的信息";
userOperateLog.IfSuccess = true;
userOperateLog.Description = "查询我的信息";
ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog);
break;
case "search":
string strWhere = "1=1";
string sort = context.Request.Params["sort"] == null ? "Id" : context.Request.Params["sort"]; //排序列
string order = context.Request.Params["order"] == null ? "asc" : context.Request.Params["order"]; //排序方式 asc或者desc
int pageindex = int.Parse(context.Request.Params["page"]);
int pagesize = int.Parse(context.Request.Params["rows"]);
int totalCount; //输出参数
string strJson = ""; //输出结果
if (order.IndexOf(',') != -1) //如果有","就是多列排序(不能拿列判断,列名中间可能有","符号)
{
//多列排序:
//sort:ParentId,Sort,AddDate
//order:asc,desc,asc
string sortMulti = ""; //拼接排序条件,例:ParentId desc,Sort asc
string[] sortArray = sort.Split(','); //列名中间有","符号,这里也要出错。正常不会有
string[] orderArray = order.Split(',');
for (int i = 0; i < sortArray.Length; i++)
{
sortMulti += sortArray[i] + " " + orderArray[i] + ",";
}
strJson = new ZGZY.BLL.Menu().GetPager("tbMenu", "Id,Name,ParentId,Code,LinkAddress,Icon,Sort,AddDate", sortMulti.Trim(','), pagesize, pageindex, strWhere, out totalCount);
userOperateLog.Description = "查询条件:" + strWhere + " 排序:" + sortMulti.Trim(',') + " 页码/每页大小:" + pageindex + " " + pagesize;
}
else
{
strJson = new ZGZY.BLL.Menu().GetPager("tbMenu", "Id,Name,ParentId,Code,LinkAddress,Icon,Sort,AddDate", sort + " " + order, pagesize, pageindex, strWhere, out totalCount);
userOperateLog.Description = "查询条件:" + strWhere + " 排序:" + sort + " " + order + " 页码/每页大小:" + pageindex + " " + pagesize;
}
context.Response.Write("{\"total\": " + totalCount.ToString() + ",\"rows\":" + strJson + "}");
userOperateLog.OperateInfo = "查询菜单";
userOperateLog.IfSuccess = true;
ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog);
break;
case "add":
DbHelper db = new DbHelper();
Result rs = new Result();
string sqlMenu = @"insert into tbMenu(name,parentid,code,linkaddress,adddate)
values('{0}',{1},'{2}','{3}',getdate());";
string formType = context.Request["formType"];
string formName = context.Request["formName"];
string mainFormID = context.Request["mainFormID"];
string htmlPath = context.Request["htmlPath"];
string sqlExist = "select count(1) from tbMenu where name='" + formName + "';";
int count = db.ExecuteScalar(sqlExist);
if (count > 0)
{
rs.status = 0;
rs.msg = "该界面名称已经存在,请检查。";
context.Response.Write("{\"msg\":\"该界面名称已经存在,请检查。\",\"success\":false}");
return;
}
else
{
if (formType == "mainForm")
{
sqlMenu = string.Format(sqlMenu, formName, "0", "", "");
}
else
{
sqlMenu = string.Format(sqlMenu, formName, mainFormID, "Function", htmlPath);
}
string sqlMenuButton = "insert into tbMenuButton select id, 1 from tbmenu where name='" + formName + "';";
if (db.ExecuteNonQuery(sqlMenu) == 1)
{
if (db.ExecuteNonQuery(sqlMenuButton) == 1)
{
rs.status = 1;
rs.msg = "保存成功!";
}
}
else
{
rs.status = 0;
rs.msg = "服务器繁忙,请稍后再试!";
}
}
rs.item = "[]";
string json = JsonConvert.SerializeObject(rs);
context.Response.Clear();
context.Response.ContentEncoding = Encoding.UTF8;
context.Response.ContentType = "application/json";
context.Response.Write(json);
context.Response.Flush();
context.Response.End();
break;
default:
context.Response.Write("{\"result\":\"参数错误!\",\"success\":false}");
break;
}
} catch (Exception ex) {
context.Response.Write("{\"msg\":\"" + ZGZY.Common.JsonHelper.StringFilter(ex.Message) + "\",\"success\":false}");
userOperateLog.OperateInfo = "菜单功能异常";
userOperateLog.IfSuccess = false;
userOperateLog.Description = ZGZY.Common.JsonHelper.StringFilter(ex.Message);
ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog);
}
}
public void ProcessRequest(HttpContext context)
{
context.Response.ContentType = "application/json";
string action = context.Request.Params["action"];
ZGZY.Model.UserOperateLog userOperateLog = null; //操作日志对象
try
{
ZGZY.Model.User user = ZGZY.Common.UserHelper.GetUser(context); //获取cookie里的用户对象
userOperateLog = new Model.UserOperateLog();
userOperateLog.UserIp = context.Request.UserHostAddress;
userOperateLog.UserName = user.UserId;
switch (action)
{
case "getall":
context.Response.Write(new ZGZY.BLL.Department().GetAllDepartment("1=1"));
break;
case "search":
string strJson = new ZGZY.BLL.Department().GetAllDepartment(null);
context.Response.Write(strJson);
userOperateLog.OperateInfo = "查询部门";
userOperateLog.IfSuccess = true;
userOperateLog.Description = "查询条件:1=1";
ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog);
break;
case "searchDepartmentUser":
string userDepartmentIds = context.Request.Params["departmentId"];
string sortDepartmentUser = context.Request.Params["sort"]; //排序列
string orderDepartmentUser = context.Request.Params["order"]; //排序方式 asc或者desc
int pageindexDepartmentUser = int.Parse(context.Request.Params["page"]);
int pagesizeDepartmentUser = int.Parse(context.Request.Params["rows"]);
string strJsonDepartmentUser = new ZGZY.BLL.Department().GetPagerDepartmentUser(userDepartmentIds, sortDepartmentUser + " " + orderDepartmentUser, pagesizeDepartmentUser, pageindexDepartmentUser);
context.Response.Write(strJsonDepartmentUser);
userOperateLog.OperateInfo = "查询部门用户";
userOperateLog.IfSuccess = true;
userOperateLog.Description = "查询部门Id:" + userDepartmentIds + " 排序:" + sortDepartmentUser + " " + orderDepartmentUser + " 页码/每页大小:" + pageindexDepartmentUser + " " + pagesizeDepartmentUser;
ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog);
break;
case "add":
if (user != null && new ZGZY.BLL.Authority().IfAuthority("department", "add", user.Id))
{
ZGZY.Model.Department departmentAdd = new Model.Department();
departmentAdd.DepartmentName = context.Request.Params["ui_department_departmentname_add"] ?? "";
departmentAdd.Sort = Convert.ToInt32(context.Request.Params["ui_department_sort_add"]);
if (context.Request.Params["ui_department_parentid_add"] != null && context.Request.Params["ui_department_parentid_add"] != "")
{
departmentAdd.ParentId = Convert.ToInt32(context.Request.Params["ui_department_parentid_add"]);
}
else
{
departmentAdd.ParentId = 0; //根节点
}
int departmentId = new ZGZY.BLL.Department().AddDepartment(departmentAdd);
if (departmentId > 0)
{
userOperateLog.OperateInfo = "添加部门";
userOperateLog.IfSuccess = true;
userOperateLog.Description = "添加成功,部门主键:" + departmentId;
context.Response.Write("{\"msg\":\"添加成功!\",\"success\":true}");
}
else
{
userOperateLog.OperateInfo = "添加部门";
userOperateLog.IfSuccess = false;
userOperateLog.Description = "添加失败";
context.Response.Write("{\"msg\":\"添加失败!\",\"success\":false}");
}
}
else
{
userOperateLog.OperateInfo = "添加部门";
userOperateLog.IfSuccess = false;
userOperateLog.Description = "无权限,请联系管理员";
context.Response.Write("{\"msg\":\"无权限,请联系管理员!\",\"success\":true}");
}
ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog);
break;
case "edit":
if (user != null && new ZGZY.BLL.Authority().IfAuthority("department", "edit", user.Id))
{
ZGZY.Model.Department departmentEdit = new Model.Department();
departmentEdit.Id = Convert.ToInt32(context.Request.Params["id"]);
departmentEdit.DepartmentName = context.Request.Params["ui_department_departmentname_edit"] ?? "";
departmentEdit.Sort = Convert.ToInt32(context.Request.Params["ui_department_sort_edit"]);
bool result = new ZGZY.BLL.Department().EditDepartment(departmentEdit);
if (result)
{
userOperateLog.OperateInfo = "修改部门";
userOperateLog.IfSuccess = true;
userOperateLog.Description = "修改成功,部门主键:" + departmentEdit.Id;
context.Response.Write("{\"msg\":\"修改成功!\",\"success\":true}");
}
else
{
userOperateLog.OperateInfo = "修改部门";
userOperateLog.IfSuccess = false;
userOperateLog.Description = "修改失败,部门主键:" + departmentEdit.Id;
context.Response.Write("{\"msg\":\"修改失败!\",\"success\":false}");
}
}
else
{
userOperateLog.OperateInfo = "修改部门";
userOperateLog.IfSuccess = false;
userOperateLog.Description = "无权限,请联系管理员";
context.Response.Write("{\"msg\":\"无权限,请联系管理员!\",\"success\":false}");
}
ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog);
break;
case "delete":
if (user != null && new ZGZY.BLL.Authority().IfAuthority("department", "delete", user.Id))
{
string departmentIds = context.Request.Params["id"];
if (new ZGZY.BLL.Department().DeleteDepartment(departmentIds))
{
userOperateLog.OperateInfo = "删除部门";
userOperateLog.IfSuccess = true;
userOperateLog.Description = "删除成功,部门主键:" + departmentIds;
context.Response.Write("{\"msg\":\"删除成功!\",\"success\":true}");
}
else
{
userOperateLog.OperateInfo = "删除部门";
userOperateLog.IfSuccess = false;
userOperateLog.Description = "删除失败,部门主键:" + departmentIds;
context.Response.Write("{\"msg\":\"删除失败!\",\"success\":false}");
}
}
else
{
userOperateLog.OperateInfo = "删除部门";
userOperateLog.IfSuccess = false;
userOperateLog.Description = "无权限,请联系管理员";
context.Response.Write("{\"msg\":\"无权限,请联系管理员!\",\"success\":false}");
}
ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog);
break;
default:
context.Response.Write("{\"msg\":\"参数错误!\",\"success\":false}");
break;
}
}
catch (Exception ex)
{
context.Response.Write("{\"msg\":\"" + ZGZY.Common.JsonHelper.StringFilter(ex.Message) + "\",\"success\":false}");
userOperateLog.OperateInfo = "部门功能异常";
userOperateLog.IfSuccess = false;
userOperateLog.Description = ZGZY.Common.JsonHelper.StringFilter(ex.Message);
ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog);
}
}
public void ProcessRequest(HttpContext context)
{
context.Response.ContentType = "application/json";
string action = context.Request.Params["action"];
ZGZY.Model.UserOperateLog userOperateLog = null; //操作日志对象
try
{
ZGZY.Model.User user = ZGZY.Common.UserHelper.GetUser(context); //获取cookie里的用户对象
userOperateLog = new Model.UserOperateLog();
userOperateLog.UserIp = context.Request.UserHostAddress;
userOperateLog.UserName = user.UserId;
int menuid = Convert.ToInt32(context.Request.Params["menuid"]);
switch (action)
{
case "getUserMenu": //获取特定用户能看到的菜单(左侧树)
int mainMenuId = Convert.ToInt32(context.Request.Params["mainMenuId"]);
context.Response.Write(new ZGZY.BLL.Menu().GetUserMenu(user.Id, mainMenuId));
break;
case "getAllMenu": //根据角色id获取此角色有的权限(设置角色时自动勾选已经有的按钮权限)
int roleid = Convert.ToInt32(context.Request.Params["roleid"]); //角色id
context.Response.Write(new ZGZY.BLL.Menu().GetAllMenu(roleid));
break;
case "getMyAuthority": //前台根据用户名查“我的权限”
context.Response.Write(new ZGZY.BLL.Menu().GetMyAuthority(user.Id));
userOperateLog.OperateInfo = "查询我的信息";
userOperateLog.IfSuccess = true;
userOperateLog.Description = "查询我的信息";
//ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog);
break;
case "search":
string strWhere = "1=1";
string sort = context.Request.Params["sort"] == null ? "Id" : context.Request.Params["sort"]; //排序列
string order = context.Request.Params["order"] == null ? "asc" : context.Request.Params["order"]; //排序方式 asc或者desc
int pageindex = int.Parse(context.Request.Params["page"]);
int pagesize = int.Parse(context.Request.Params["rows"]);
int totalCount; //输出参数
string strJson = ""; //输出结果
if (order.IndexOf(',') != -1) //如果有","就是多列排序(不能拿列判断,列名中间可能有","符号)
{
//多列排序:
//sort:ParentId,Sort,AddDate
//order:asc,desc,asc
string sortMulti = ""; //拼接排序条件,例:ParentId desc,Sort asc
string[] sortArray = sort.Split(','); //列名中间有","符号,这里也要出错。正常不会有
string[] orderArray = order.Split(',');
for (int i = 0; i < sortArray.Length; i++)
{
sortMulti += sortArray[i] + " " + orderArray[i] + ",";
}
strJson = new ZGZY.BLL.Menu().GetPager("tbMenu", "Id,Name,ParentId,Code,LinkAddress,Icon,Sort,AddDate", sortMulti.Trim(','), pagesize, pageindex, strWhere, out totalCount);
userOperateLog.Description = "查询条件:" + strWhere + " 排序:" + sortMulti.Trim(',') + " 页码/每页大小:" + pageindex + " " + pagesize;
}
else
{
strJson = new ZGZY.BLL.Menu().GetPager("tbMenu", "Id,Name,ParentId,Code,LinkAddress,Icon,Sort,AddDate", sort + " " + order, pagesize, pageindex, strWhere, out totalCount);
userOperateLog.Description = "查询条件:" + strWhere + " 排序:" + sort + " " + order + " 页码/每页大小:" + pageindex + " " + pagesize;
}
context.Response.Write("{\"total\": " + totalCount.ToString() + ",\"rows\":" + strJson + "}");
userOperateLog.OperateInfo = "查询菜单";
userOperateLog.IfSuccess = true;
//ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog);
break;
case "getMenuButton":
context.Response.Write(new ZGZY.BLL.Menu().GetMenuButton(menuid));
break;
case "setMenuButton":
string ui_menu_setbutton_menuid = context.Request.Params["ui_menu_setbutton_menuid"] ?? "";
string ui_menu_setbutton_button = context.Request.Params["ui_menu_setbutton_button"] ?? "";
if (ui_menu_setbutton_menuid != "" && new BLL.Menu().SetMenuButton(ui_menu_setbutton_menuid, ui_menu_setbutton_button))
{
context.Response.Write("{\"msg\":\"分配成功!\",\"success\":true}");
}
else
{
context.Response.Write("{\"msg\":\"分配失败!\",\"success\":false}");
}
break;
case "getMainMenu":
context.Response.Write(new ZGZY.BLL.Menu().GetMainMenu(1));
break;
case "getBelongMainMenu":
string belongMainMenuId = new ZGZY.BLL.Menu().GetBelongMainMenuId(menuid);
context.Response.Write("{\"mainMenuId\":\"" + belongMainMenuId + "\"}");
break;
case "setMainMenu":
string ui_menu_setMainMenu_menuid = context.Request.Params["ui_menu_setMainMenu_menuid"] ?? "";
string ui_menu_setMainMenu_button = context.Request.Params["ui_menu_setMainMenu_button"] ?? "";
if (ui_menu_setMainMenu_menuid != "" && new BLL.Menu().SetMainMenu(ui_menu_setMainMenu_menuid, ui_menu_setMainMenu_button))
{
context.Response.Write("{\"msg\":\"配置成功!\",\"success\":true}");
}
else
{
context.Response.Write("{\"msg\":\"配置失败!\",\"success\":false}");
}
break;
default:
context.Response.Write("{\"result\":\"参数错误!\",\"success\":false}");
break;
}
}
catch (Exception ex)
{
context.Response.Write("{\"msg\":\"" + ZGZY.Common.JsonHelper.StringFilter(ex.Message) + "\",\"success\":false}");
userOperateLog.OperateInfo = "菜单功能异常";
userOperateLog.IfSuccess = false;
userOperateLog.Description = ZGZY.Common.JsonHelper.StringFilter(ex.Message);
//ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog);
}
}
public void ProcessRequest(HttpContext context)
{
context.Response.ContentType = "application/json";
string action = context.Request.Params["action"];
ZGZY.Model.UserOperateLog userOperateLog = null; //操作日志对象
try
{
ZGZY.Model.User userFromCookie = ZGZY.Common.UserHelper.GetUser(context); //获取cookie里的用户对象
userOperateLog = new Model.UserOperateLog();
userOperateLog.UserIp = context.Request.UserHostAddress;
userOperateLog.UserName = userFromCookie.UserId;
switch (action)
{
case "firstlogin":
int ui_user_firstlogin_id = Convert.ToInt32(context.Request.Params["ui_user_firstlogin_id"]);
string ui_user_firstlogin_pwd = context.Request.Params["ui_user_firstlogin_pwd"] ?? "";
if (userFromCookie != null && userFromCookie.Id == ui_user_firstlogin_id) //只能修改当前登录的用户
{
ZGZY.Model.User initUser = new Model.User();
initUser.Id = ui_user_firstlogin_id;
initUser.UserPwd = ZGZY.Common.Md5.GetMD5String(ui_user_firstlogin_pwd); //加密
if (initUser.UserPwd != userFromCookie.UserPwd)
{
if (new ZGZY.BLL.User().InitUserPwd(initUser))
{
//修改成功需要重写cookie,否则cookie里的密码不对下次经过bg_user_login.asxh里的getuser语句块就自动退出了
FormsIdentity id = (FormsIdentity)context.User.Identity;
FormsAuthenticationTicket ticketOld = id.Ticket;
userFromCookie.UserPwd = initUser.UserPwd; //赋值新密码,其他属性不变
FormsAuthentication.SignOut();
FormsAuthenticationTicket ticket = new FormsAuthenticationTicket
(
2,
userFromCookie.UserId,
DateTime.Now,
ticketOld.Expiration,
false,
new JavaScriptSerializer().Serialize(userFromCookie) //序列化新的用户对象
);
string encTicket = FormsAuthentication.Encrypt(ticket);
HttpCookie cookie = new HttpCookie(FormsAuthentication.FormsCookieName, encTicket);
if (ticket.Expiration != new DateTime(9999, 12, 31)) //不是默认时间才设置过期时间,否则会话cookie
{
cookie.Expires = ticketOld.Expiration;
}
context.Response.Cookies.Add(cookie);
userOperateLog.OperateInfo = "用户重置密码";
userOperateLog.IfSuccess = true;
userOperateLog.Description = "重置密码成功";
context.Response.Write("{\"msg\":\"重置密码成功!\",\"success\":true}");
}
else
{
userOperateLog.OperateInfo = "用户重置密码";
userOperateLog.IfSuccess = false;
userOperateLog.Description = "重置密码失败";
context.Response.Write("{\"msg\":\"重置密码失败!\",\"success\":false}");
}
}
else
{
userOperateLog.OperateInfo = "用户重置密码";
userOperateLog.IfSuccess = false;
userOperateLog.Description = "重置密码失败,不能和默认密码一样";
context.Response.Write("{\"msg\":\"重置密码失败,不能和默认密码一样!\",\"success\":false}");
}
}
else
{
userOperateLog.OperateInfo = "用户重置密码";
userOperateLog.IfSuccess = false;
userOperateLog.Description = "未知错误,重置密码失败";
context.Response.Write("{\"msg\":\"未知错误,重置密码失败!\",\"success\":false}");
}
ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog);
break;
case "changepwd":
string ui_user_userchangepwd_originalpwd = context.Request.Params["ui_user_userchangepwd_originalpwd"] ?? "";
string ui_user_userchangepwd_newpwd = context.Request.Params["ui_user_userchangepwd_newpwd"] ?? "";
ZGZY.Model.User userChangePwd = new Model.User();
userChangePwd.Id = userFromCookie.Id;
userChangePwd.UserPwd = ZGZY.Common.Md5.GetMD5String(ui_user_userchangepwd_newpwd); //md5加密
if (ZGZY.Common.Md5.GetMD5String(ui_user_userchangepwd_originalpwd) == userFromCookie.UserPwd)
{
if (new ZGZY.BLL.User().ChangePwd(userChangePwd))
{
FormsAuthentication.SignOut(); //这里如果不退出还得重写cookie
userOperateLog.OperateInfo = "用户修改密码";
userOperateLog.IfSuccess = true;
userOperateLog.Description = "修改成功,用户主键:" + userChangePwd.Id;
context.Response.Write("{\"msg\":\"修改成功,正在跳转到登陆页面!\",\"success\":true}");
}
else
{
userOperateLog.OperateInfo = "用户修改密码";
userOperateLog.IfSuccess = false;
userOperateLog.Description = "修改失败";
context.Response.Write("{\"msg\":\"修改失败!\",\"success\":false}");
}
}
else
{
userOperateLog.OperateInfo = "用户修改密码";
userOperateLog.IfSuccess = false;
userOperateLog.Description = "原密码不正确";
context.Response.Write("{\"msg\":\"原密码不正确!\",\"success\":false}");
}
ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog);
break;
case "getUserInfo":
context.Response.Write(new ZGZY.BLL.User().GetUserInfo(userFromCookie.Id)); //“我的信息”
break;
case "search":
string strWhere = "1=1";
string sort = context.Request.Params["sort"]; //排序列
string order = context.Request.Params["order"]; //排序方式 asc或者desc
int pageindex = int.Parse(context.Request.Params["page"]);
int pagesize = int.Parse(context.Request.Params["rows"]);
string ui_user_userid = context.Request.Params["ui_user_userid"] ?? "";
string ui_user_username = context.Request.Params["ui_user_username"] ?? "";
string ui_user_isable = context.Request.Params["ui_user_isable"] ?? "";
string ui_user_ifchangepwd = context.Request.Params["ui_user_ifchangepwd"] ?? "";
string ui_user_description = context.Request.Params["ui_user_description"] ?? "";
string ui_user_adddatestart = context.Request.Params["ui_user_adddatestart"] ?? "";
string ui_user_adddateend = context.Request.Params["ui_user_adddateend"] ?? "";
if (ui_user_userid.Trim() != "" && !ZGZY.Common.SqlInjection.GetString(ui_user_userid)) //防止sql注入
{
strWhere += string.Format(" and UserId like '%{0}%'", ui_user_userid.Trim());
}
if (ui_user_username.Trim() != "" && !ZGZY.Common.SqlInjection.GetString(ui_user_username))
{
strWhere += string.Format(" and UserName like '%{0}%'", ui_user_username.Trim());
}
if (ui_user_description.Trim() != "" && !ZGZY.Common.SqlInjection.GetString(ui_user_description))
{
strWhere += string.Format(" and Description like '%{0}%'", ui_user_description.Trim());
}
if (ui_user_isable.Trim() != "select" && ui_user_isable.Trim() != "")
{
strWhere += " and IsAble = '" + ui_user_isable.Trim() + "'";
}
if (ui_user_ifchangepwd.Trim() != "select" && ui_user_ifchangepwd.Trim() != "")
{
strWhere += " and IfChangePwd = '" + ui_user_ifchangepwd.Trim() + "'";
}
if (ui_user_adddatestart.Trim() != "")
{
strWhere += " and AddDate > '" + ui_user_adddatestart.Trim() + "'";
}
if (ui_user_adddateend.Trim() != "")
{
strWhere += " and AddDate < '" + ui_user_adddateend.Trim() + "'";
}
int totalCount; //输出参数
string strJson = new ZGZY.BLL.User().GetPager("tbUser", "Id,UserId,UserName,IsAble,IfChangePwd,AddDate,Description", sort + " " + order, pagesize, pageindex, strWhere, out totalCount);
context.Response.Write("{\"total\": " + totalCount.ToString() + ",\"rows\":" + strJson + "}");
userOperateLog.OperateInfo = "查询用户";
userOperateLog.IfSuccess = true;
userOperateLog.Description = "查询条件:" + strWhere + " 排序:" + sort + " " + order + " 页码/每页大小:" + pageindex + " " + pagesize;
ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog);
break;
case "add":
if (userFromCookie != null && new ZGZY.BLL.Authority().IfAuthority("user", "add", userFromCookie.Id))
{
string ui_user_userid_add = context.Request.Params["ui_user_userid_add"] ?? "";
string ui_user_username_add = context.Request.Params["ui_user_username_add"] ?? "";
bool ui_user_isable_add = context.Request.Params["ui_user_isable_add"] == null ? false : true;
bool ui_user_ifchangepwd_add = context.Request.Params["ui_user_ifchangepwd_add"] == null ? false : true;
string ui_user_description_add = context.Request.Params["ui_user_description_add"] ?? "";
ZGZY.Model.User userAdd = new Model.User();
userAdd.UserId = ui_user_userid_add.Trim();
userAdd.UserName = ui_user_username_add.Trim();
userAdd.UserPwd = ZGZY.Common.Md5.GetMD5String("123"); //md5加密
userAdd.IsAble = ui_user_isable_add;
userAdd.IfChangePwd = ui_user_ifchangepwd_add;
userAdd.Description = ui_user_description_add.Trim();
int userId = new ZGZY.BLL.User().AddUser(userAdd);
if (userId > 0)
{
userOperateLog.OperateInfo = "添加用户";
userOperateLog.IfSuccess = true;
userOperateLog.Description = "添加成功,用户主键:" + userId;
context.Response.Write("{\"msg\":\"添加成功!默认密码是【123】\",\"success\":true}");
}
else
{
userOperateLog.OperateInfo = "添加用户";
userOperateLog.IfSuccess = false;
userOperateLog.Description = "添加失败";
context.Response.Write("{\"msg\":\"添加失败!\",\"success\":false}");
}
}
else
{
userOperateLog.OperateInfo = "添加用户";
userOperateLog.IfSuccess = false;
userOperateLog.Description = "无权限,请联系管理员";
context.Response.Write("{\"msg\":\"无权限,请联系管理员!\",\"success\":false}");
}
ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog);
break;
case "edit":
if (userFromCookie != null && new ZGZY.BLL.Authority().IfAuthority("user", "edit", userFromCookie.Id))
{
int id = Convert.ToInt32(context.Request.Params["id"]);
string originalName = context.Request.Params["originalName"] ?? "";
string ui_user_userid_edit = context.Request.Params["ui_user_userid_edit"] ?? "";
string ui_user_username_edit = context.Request.Params["ui_user_username_edit"] ?? "";
bool ui_user_isable_edit = context.Request.Params["ui_user_isable_edit"] == null ? false : true;
bool ui_user_ifchangepwd_edit = context.Request.Params["ui_user_ifchangepwd_edit"] == null ? false : true;
string ui_user_description_edit = context.Request.Params["ui_user_description_edit"] ?? "";
ZGZY.Model.User userEdit = new Model.User();
userEdit.Id = id;
userEdit.UserId = ui_user_userid_edit.Trim();
userEdit.UserName = ui_user_username_edit.Trim();
userEdit.IsAble = ui_user_isable_edit;
userEdit.IfChangePwd = ui_user_ifchangepwd_edit;
userEdit.Description = ui_user_description_edit.Trim();
if (new ZGZY.BLL.User().EditUser(userEdit, originalName))
{
userOperateLog.OperateInfo = "修改用户";
userOperateLog.IfSuccess = true;
userOperateLog.Description = "修改成功,用户主键:" + userEdit.Id;
context.Response.Write("{\"msg\":\"修改成功!\",\"success\":true}");
}
else
{
userOperateLog.OperateInfo = "修改用户";
userOperateLog.IfSuccess = false;
userOperateLog.Description = "修改失败";
context.Response.Write("{\"msg\":\"修改失败!\",\"success\":false}");
}
}
else
{
userOperateLog.OperateInfo = "修改用户";
userOperateLog.IfSuccess = false;
userOperateLog.Description = "无权限,请联系管理员";
context.Response.Write("{\"msg\":\"无权限,请联系管理员!\",\"success\":false}");
}
ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog);
break;
case "delete":
if (userFromCookie != null && new ZGZY.BLL.Authority().IfAuthority("user", "delete", userFromCookie.Id))
{
string ids = context.Request.Params["id"].Trim(',');
if (new ZGZY.BLL.User().DeleteUser(ids))
{
userOperateLog.OperateInfo = "删除用户";
userOperateLog.IfSuccess = true;
userOperateLog.Description = "删除成功,用户主键:" + ids;
context.Response.Write("{\"msg\":\"删除成功!\",\"success\":true}");
}
else
{
userOperateLog.OperateInfo = "删除用户";
userOperateLog.IfSuccess = false;
userOperateLog.Description = "删除失败";
context.Response.Write("{\"msg\":\"删除失败!\",\"success\":false}");
}
}
else
{
userOperateLog.OperateInfo = "删除用户";
userOperateLog.IfSuccess = false;
userOperateLog.Description = "无权限,请联系管理员";
context.Response.Write("{\"msg\":\"无权限,请联系管理员!\",\"success\":false}");
}
ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog);
break;
case "setdep":
if (userFromCookie != null && new ZGZY.BLL.Authority().IfAuthority("user", "setdepartment", userFromCookie.Id))
{
string ui_user_setdep_userid = context.Request.Params["ui_user_setdep_userid"] ?? "";
string ui_user_setdep_dep = context.Request.Params["ui_user_setdep_dep"] ?? "";
if (ui_user_setdep_userid.IndexOf(",") == -1) //单个用户设置部门
{
if (ui_user_setdep_userid != "" && new BLL.UserDepartment().SetDepartmentSingle(Convert.ToInt32(ui_user_setdep_userid), ui_user_setdep_dep))
{
userOperateLog.OperateInfo = "设置用户部门";
userOperateLog.IfSuccess = true;
userOperateLog.Description = "设置成功,用户主键:" + ui_user_setdep_userid + " 部门主键:" + ui_user_setdep_dep;
context.Response.Write("{\"msg\":\"设置成功!\",\"success\":true}");
}
else
{
userOperateLog.OperateInfo = "设置用户部门";
userOperateLog.IfSuccess = false;
userOperateLog.Description = "设置失败,用户主键:" + ui_user_setdep_userid + " 部门主键:" + ui_user_setdep_dep;
context.Response.Write("{\"msg\":\"设置失败!\",\"success\":true}");
}
}
else //批量设置用户部门
{
if (ui_user_setdep_userid != "" && new BLL.UserDepartment().SetDepartmentBatch(ui_user_setdep_userid, ui_user_setdep_dep))
{
userOperateLog.OperateInfo = "批量设置用户部门";
userOperateLog.IfSuccess = true;
userOperateLog.Description = "设置成功,用户主键:" + ui_user_setdep_userid + " 部门主键:" + ui_user_setdep_dep;
context.Response.Write("{\"msg\":\"设置成功!\",\"success\":true}");
}
else
{
userOperateLog.OperateInfo = "批量设置用户部门";
userOperateLog.IfSuccess = false;
userOperateLog.Description = "设置失败,用户主键:" + ui_user_setdep_userid + " 部门主键:" + ui_user_setdep_dep;
context.Response.Write("{\"msg\":\"设置失败!\",\"success\":true}");
}
}
}
else
{
userOperateLog.OperateInfo = "设置用户部门";
userOperateLog.IfSuccess = false;
userOperateLog.Description = "无权限,请联系管理员";
context.Response.Write("{\"msg\":\"无权限,请联系管理员!\",\"success\":false}");
}
ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog);
break;
case "setrole":
if (userFromCookie != null && new ZGZY.BLL.Authority().IfAuthority("user", "setrole", userFromCookie.Id))
{
string ui_user_setrole_userid = context.Request.Params["ui_user_setrole_userid"] ?? ""; //用户id,可能是多个
string ui_user_setrole_role = context.Request.Params["ui_user_setrole_role"] ?? ""; //角色id,可能是多个
if (ui_user_setrole_userid.IndexOf(",") == -1) //单个用户分配角色
{
if (ui_user_setrole_userid != "" && new BLL.UserRole().SetRoleSingle(Convert.ToInt32(ui_user_setrole_userid), ui_user_setrole_role))
{
userOperateLog.OperateInfo = "设置用户角色";
userOperateLog.IfSuccess = true;
userOperateLog.Description = "设置成功,用户主键:" + ui_user_setrole_userid + " 角色主键:" + ui_user_setrole_role;
context.Response.Write("{\"msg\":\"设置成功!\",\"success\":true}");
}
else
{
userOperateLog.OperateInfo = "设置用户角色";
userOperateLog.IfSuccess = false;
userOperateLog.Description = "设置失败,用户主键:" + ui_user_setrole_userid + " 角色主键:" + ui_user_setrole_role;
context.Response.Write("{\"msg\":\"设置失败!\",\"success\":true}");
}
}
else //批量设置用户角色
{
if (ui_user_setrole_userid != "" && new BLL.UserRole().SetRoleBatch(ui_user_setrole_userid, ui_user_setrole_role))
{
userOperateLog.OperateInfo = "批量设置用户角色";
userOperateLog.IfSuccess = true;
userOperateLog.Description = "设置成功,用户主键:" + ui_user_setrole_userid + " 角色主键:" + ui_user_setrole_role;
context.Response.Write("{\"msg\":\"设置成功!\",\"success\":true}");
}
else
{
userOperateLog.OperateInfo = "批量设置用户角色";
userOperateLog.IfSuccess = false;
userOperateLog.Description = "设置失败,用户主键:" + ui_user_setrole_userid + " 角色主键:" + ui_user_setrole_role;
context.Response.Write("{\"msg\":\"设置失败!\",\"success\":true}");
}
}
}
else
{
userOperateLog.OperateInfo = "设置用户角色";
userOperateLog.IfSuccess = false;
userOperateLog.Description = "无权限,请联系管理员";
context.Response.Write("{\"msg\":\"无权限,请联系管理员!\",\"success\":false}");
}
ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog);
break;
default:
context.Response.Write("{\"msg\":\"参数错误!\",\"success\":false}");
break;
}
}
catch (Exception ex)
{
context.Response.Write("{\"msg\":\"" + ZGZY.Common.JsonHelper.StringFilter(ex.Message) + "\",\"success\":false}");
userOperateLog.OperateInfo = "用户功能异常";
userOperateLog.IfSuccess = false;
userOperateLog.Description = ZGZY.Common.JsonHelper.StringFilter(ex.Message);
ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog);
}
}
public void ProcessRequest(HttpContext context)
{
context.Response.ContentType = "application/json";
string action = context.Request.Params["action"];
ZGZY.Model.UserOperateLog userOperateLog = null; //操作日志对象
try
{
ZGZY.Model.User user = ZGZY.Common.UserHelper.GetUser(context); //获取cookie里的用户对象
userOperateLog = new Model.UserOperateLog();
userOperateLog.UserIp = context.Request.UserHostAddress;
userOperateLog.UserName = user.UserId;
switch (action)
{
case "getall":
context.Response.Write(new ZGZY.BLL.Role().GetAllRole("1=1"));
break;
case "search":
string strWhere = "1=1";
string sort = context.Request.Params["sort"]; //排序列
string order = context.Request.Params["order"]; //排序方式 asc或者desc
int pageindex = int.Parse(context.Request.Params["page"]);
int pagesize = int.Parse(context.Request.Params["rows"]);
int totalCount; //输出参数
string strJson = new ZGZY.BLL.Role().GetPager("tbRole", "Id,RoleName,AddDate,ModifyDate,Description", sort + " " + order, pagesize, pageindex, strWhere, out totalCount);
context.Response.Write("{\"total\": " + totalCount.ToString() + ",\"rows\":" + strJson + "}");
userOperateLog.OperateInfo = "查询角色";
userOperateLog.IfSuccess = true;
userOperateLog.Description = "查询条件:" + strWhere + " 排序:" + sort + " " + order + " 页码/每页大小:" + pageindex + " " + pagesize;
//ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog);
break;
case "searchRoleUser":
int roleUserId = int.Parse(context.Request.Params["roleId"]);
string sortRoleUser = context.Request.Params["sort"]; //排序列
string orderRoleUser = context.Request.Params["order"]; //排序方式 asc或者desc
int pageindexRoleUser = int.Parse(context.Request.Params["page"]);
int pagesizeRoleUser = int.Parse(context.Request.Params["rows"]);
string strJsonRoleUser = new ZGZY.BLL.Role().GetPagerRoleUser(roleUserId, sortRoleUser + " " + orderRoleUser, pagesizeRoleUser, pageindexRoleUser);
context.Response.Write(strJsonRoleUser);
userOperateLog.OperateInfo = "查询角色用户";
userOperateLog.IfSuccess = true;
userOperateLog.Description = "查询角色Id:" + roleUserId + " 排序:" + sortRoleUser + " " + orderRoleUser + " 页码/每页大小:" + pageindexRoleUser + " " + pagesizeRoleUser;
//ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog);
break;
case "add":
if (user != null && new ZGZY.BLL.Authority().IfAuthority("role", "add", user.Id))
{
string ui_role_rolename_add = context.Request.Params["ui_role_rolename_add"] ?? "";
string ui_role_description_add = context.Request.Params["ui_role_description_add"] ?? "";
ZGZY.Model.Role roleAdd = new Model.Role();
roleAdd.RoleName = ui_role_rolename_add;
roleAdd.Description = ui_role_description_add.Trim();
int roleId = new ZGZY.BLL.Role().AddRole(roleAdd);
if (roleId > 0)
{
userOperateLog.OperateInfo = "添加角色";
userOperateLog.IfSuccess = true;
userOperateLog.Description = "添加成功,角色主键:" + roleId;
context.Response.Write("{\"msg\":\"添加成功!\",\"success\":true}");
}
else
{
userOperateLog.OperateInfo = "添加角色";
userOperateLog.IfSuccess = false;
userOperateLog.Description = "添加失败";
context.Response.Write("{\"msg\":\"添加失败!\",\"success\":false}");
}
}
else
{
userOperateLog.OperateInfo = "添加角色";
userOperateLog.IfSuccess = false;
userOperateLog.Description = "无权限,请联系管理员";
context.Response.Write("{\"msg\":\"无权限,请联系管理员!\",\"success\":false}");
}
//ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog);
break;
case "edit":
if (user != null && new ZGZY.BLL.Authority().IfAuthority("role", "edit", user.Id))
{
int id = Convert.ToInt32(context.Request.Params["id"]);
string originalName = context.Request.Params["originalName"] ?? "";
string ui_role_rolename_edit = context.Request.Params["ui_role_rolename_edit"] ?? "";
string ui_role_description_edit = context.Request.Params["ui_role_description_edit"] ?? "";
ZGZY.Model.Role roleEdit = new Model.Role();
roleEdit.Id = id;
roleEdit.RoleName = ui_role_rolename_edit;
roleEdit.Description = ui_role_description_edit.Trim();
if (new ZGZY.BLL.Role().EditRole(roleEdit, originalName))
{
userOperateLog.OperateInfo = "修改角色";
userOperateLog.IfSuccess = true;
userOperateLog.Description = "修改成功,角色主键:" + roleEdit.Id;
context.Response.Write("{\"msg\":\"修改成功!\",\"success\":true}");
}
else
{
userOperateLog.OperateInfo = "修改角色";
userOperateLog.IfSuccess = false;
userOperateLog.Description = "修改失败";
context.Response.Write("{\"msg\":\"修改失败!\",\"success\":false}");
}
}
else
{
userOperateLog.OperateInfo = "修改角色";
userOperateLog.IfSuccess = false;
userOperateLog.Description = "无权限,请联系管理员";
context.Response.Write("{\"msg\":\"无权限,请联系管理员!\",\"success\":false}");
}
//ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog);
break;
case "delete":
if (user != null && new ZGZY.BLL.Authority().IfAuthority("role", "delete", user.Id))
{
int id = Convert.ToInt32(context.Request.Params["id"]);
if (new ZGZY.BLL.Role().DeleteRole(id))
{
userOperateLog.OperateInfo = "删除角色";
userOperateLog.IfSuccess = true;
userOperateLog.Description = "删除成功,角色主键:" + id;
context.Response.Write("{\"msg\":\"删除成功!\",\"success\":true}");
}
else
{
userOperateLog.OperateInfo = "删除角色";
userOperateLog.IfSuccess = false;
userOperateLog.Description = "删除失败";
context.Response.Write("{\"msg\":\"删除失败!\",\"success\":false}");
}
}
else
{
userOperateLog.OperateInfo = "删除角色";
userOperateLog.IfSuccess = false;
userOperateLog.Description = "无权限,请联系管理员";
context.Response.Write("{\"msg\":\"无权限,请联系管理员!\",\"success\":false}");
}
//ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog);
break;
case "authorize":
if (user != null && new ZGZY.BLL.Authority().IfAuthority("role", "authorize", user.Id))
{
int roleId = Convert.ToInt32(context.Request.Params["roleId"]); //要授权的角色id
string menuButtonId = context.Request.Params["menuButtonId"].Trim(','); //具体的菜单和按钮权限
if (new ZGZY.BLL.Role().Authorize(roleId, menuButtonId))
{
userOperateLog.OperateInfo = "角色授权";
userOperateLog.IfSuccess = true;
userOperateLog.Description = "授权成功,菜单/按钮Id:" + menuButtonId;
context.Response.Write("{\"msg\":\"授权成功!\",\"success\":true}");
}
else
{
userOperateLog.OperateInfo = "角色授权";
userOperateLog.IfSuccess = false;
userOperateLog.Description = "授权失败";
context.Response.Write("{\"msg\":\"授权失败!\",\"success\":false}");
}
}
else
{
userOperateLog.OperateInfo = "角色授权";
userOperateLog.IfSuccess = false;
userOperateLog.Description = "无权限,请联系管理员";
context.Response.Write("{\"msg\":\"无权限,请联系管理员!\",\"success\":false}");
}
//ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog);
break;
default:
context.Response.Write("{\"msg\":\"参数错误!\",\"success\":false}");
break;
}
}
catch (Exception ex)
{
context.Response.Write("{\"msg\":\"" + ZGZY.Common.JsonHelper.StringFilter(ex.Message) + "\",\"success\":false}");
userOperateLog.OperateInfo = "角色功能异常";
userOperateLog.IfSuccess = false;
userOperateLog.Description = ZGZY.Common.JsonHelper.StringFilter(ex.Message);
//ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog);
}
}
public void ProcessRequest(HttpContext context)
{
context.Response.ContentType = "application/json";
string action = context.Request.Params["action"];
ZGZY.Model.UserOperateLog userOperateLog = null; //操作日志对象
try
{
ZGZY.Model.User user = ZGZY.Common.UserHelper.GetUser(context); //获取cookie里的用户对象
userOperateLog = new Model.UserOperateLog();
userOperateLog.UserIp = context.Request.UserHostAddress;
userOperateLog.UserName = user.UserId;
switch (action)
{
case "search":
string strWhere = "1=1";
string sort = context.Request.Params["sort"]; //排序列
string order = context.Request.Params["order"]; //排序方式 asc或者desc
int pageindex = int.Parse(context.Request.Params["page"]);
int pagesize = int.Parse(context.Request.Params["rows"]);
string ui_loginlog_username = context.Request.Params["ui_loginlog_username"] ?? "";
string ui_loginlog_userip = context.Request.Params["ui_loginlog_userip"] ?? "";
string ui_loginlog_city = context.Request.Params["ui_loginlog_city"] ?? "";
string ui_loginlog_success = context.Request.Params["ui_loginlog_success"] ?? "";
string ui_loginlog_logindatestart = context.Request.Params["ui_loginlog_logindatestart"] ?? "";
string ui_loginlog_logindateend = context.Request.Params["ui_loginlog_logindateend"] ?? "";
if (ui_loginlog_username.Trim() != "" && !ZGZY.Common.SqlInjection.GetString(ui_loginlog_username)) //防止sql注入
{
strWhere += string.Format(" and UserName like '%{0}%'", ui_loginlog_username.Trim());
}
if (ui_loginlog_userip.Trim() != "" && !ZGZY.Common.SqlInjection.GetString(ui_loginlog_userip))
{
strWhere += string.Format(" and UserIp like '%{0}%'", ui_loginlog_userip.Trim());
}
if (ui_loginlog_city.Trim() != "" && !ZGZY.Common.SqlInjection.GetString(ui_loginlog_city))
{
strWhere += string.Format(" and City like '%{0}%'", ui_loginlog_city.Trim());
}
if (ui_loginlog_success.Trim() != "select" && ui_loginlog_success.Trim() != "")
{
strWhere += " and Success = '" + ui_loginlog_success.Trim() + "'";
}
if (ui_loginlog_logindatestart.Trim() != "")
{
strWhere += " and LoginDate > '" + ui_loginlog_logindatestart.Trim() + "'";
}
if (ui_loginlog_logindateend.Trim() != "")
{
strWhere += " and LoginDate < '" + ui_loginlog_logindateend.Trim() + "'";
}
string strJson = new ZGZY.BLL.LoginLog().GetPager(strWhere, sort, order, pageindex, pagesize);
context.Response.Write(strJson);
userOperateLog.OperateInfo = "查询登陆日志";
userOperateLog.IfSuccess = true;
userOperateLog.Description = "查询条件:" + strWhere + " 排序:" + sort + " " + order + " 页码/每页大小:" + pageindex + " " + pagesize;
//ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog);
break;
case "export": //导出
break;
default:
context.Response.Write("{\"msg\":\"参数错误!\",\"success\":false}");
break;
}
}
catch (Exception ex)
{
context.Response.Write("{\"msg\":\"" + ZGZY.Common.JsonHelper.StringFilter(ex.Message) + "\",\"success\":false}");
userOperateLog.OperateInfo = "登陆日志功能异常";
userOperateLog.IfSuccess = false;
userOperateLog.Description = ZGZY.Common.JsonHelper.StringFilter(ex.Message);
//ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog);
}
}
public void ProcessRequest(HttpContext context)
{
context.Response.ContentType = "application/json";
string action = context.Request.Params["action"];
ZGZY.Model.UserOperateLog userOperateLog = null; //操作日志对象
try
{
ZGZY.Model.User user = ZGZY.Common.UserHelper.GetUser(context); //获取cookie里的用户对象
userOperateLog = new Model.UserOperateLog();
userOperateLog.UserIp = context.Request.UserHostAddress;
userOperateLog.UserName = user.UserId;
switch (action)
{
case "getbutton": //根据用户的权限获取用户点击的菜单有权限的按钮
string pageName = context.Request.Params["pagename"];
string menuCode = context.Request.Params["menucode"]; //菜单标识码
DataTable dt = new ZGZY.BLL.Customers().GetButtonByMenuCodeAndUserId(menuCode, user.Id);
string sum = ZGZY.Common.ToolbarHelper.GetToolBar(dt, pageName);
context.Response.Write(sum);
break;
case "add":
if (user != null && new ZGZY.BLL.Authority().IfAuthority("Channel", "add", user.Id))
{
ZGZY.Model.Channel channelAdd = new Model.Channel();
channelAdd.ChannelName = context.Request.Params["ui_Channel_ChannelName_add"];
channelAdd.Creator = context.Request.Params["ui_Channel_Creator_add"];
channelAdd.BeginDate = DateTime.Parse(context.Request.Params["ui_Channel_BeginDate_add"]);
channelAdd.EndDate = DateTime.Parse(context.Request.Params["ui_Channel_EndDate_add"]);
channelAdd.CreateDate = DateTime.Now;
channelAdd.SealNameId = 72;
int departmentId = new ZGZY.BLL.Channel().AddChannel(channelAdd);
if (departmentId > 0)
{
userOperateLog.OperateInfo = "添加引用";
userOperateLog.IfSuccess = true;
userOperateLog.Description = "添加成功,客户主键:" + departmentId;
context.Response.Write("{\"msg\":\"添加成功!\",\"success\":true}");
}
else
{
userOperateLog.OperateInfo = "添加引用";
userOperateLog.IfSuccess = false;
userOperateLog.Description = "添加失败";
context.Response.Write("{\"msg\":\"添加失败!\",\"success\":false}");
}
}
else
{
userOperateLog.OperateInfo = "添加引用";
userOperateLog.IfSuccess = false;
userOperateLog.Description = "无权限,请联系管理员";
context.Response.Write("{\"msg\":\"无权限,请联系管理员!\",\"success\":true}");
}
ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog);
break;
case "search":
string strWhere = "1=1";
string sort = context.Request.Params["sort"]; //排序列
string order = context.Request.Params["order"]; //排序方式 asc或者desc
int pageindex = int.Parse(context.Request.Params["page"]);
int pagesize = int.Parse(context.Request.Params["rows"]);
int totalCount; //输出参数
string strJson = new ZGZY.BLL.Button().GetPager("Channel", "Id, ChannelName, CreateDate, Creator, SealNameId, BeginDate, EndDate", sort + " " + order, pagesize, pageindex, strWhere, out totalCount);
context.Response.Write("{\"total\": " + totalCount.ToString() + ",\"rows\":" + strJson + "}");
userOperateLog.OperateInfo = "查询按钮";
userOperateLog.IfSuccess = true;
userOperateLog.Description = "查询条件:" + strWhere + " 排序:" + sort + " " + order + " 页码/每页大小:" + pageindex + " " + pagesize;
ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog);
break;
case "edit":
if (user != null && new ZGZY.BLL.Authority().IfAuthority("Channel", "edit", user.Id))
{
ZGZY.Model.Channel channelAdd = new Model.Channel();
channelAdd.Id = Int32.Parse(context.Request.Params["id"]);
channelAdd.ChannelName = context.Request.Params["ui_Channel_ChannelName_edit"];
channelAdd.Creator = context.Request.Params["ui_Channel_Creator_edit"];
channelAdd.BeginDate = DateTime.Parse(context.Request.Params["ui_Channel_BeginDate_edit"]);
channelAdd.EndDate = DateTime.Parse(context.Request.Params["ui_Channel_EndDate_edit"]);
int outputRow = new ZGZY.BLL.Channel().EditChannelById(channelAdd);
if (outputRow > 0)
{
userOperateLog.OperateInfo = "修改引用";
userOperateLog.IfSuccess = true;
userOperateLog.Description = "修改成功,客户主键:" + outputRow;
context.Response.Write("{\"msg\":\"修改成功!\",\"success\":true}");
}
else
{
userOperateLog.OperateInfo = "修改引用";
userOperateLog.IfSuccess = false;
userOperateLog.Description = "修改失败";
context.Response.Write("{\"msg\":\"修改失败!\",\"success\":false}");
}
}
else
{
userOperateLog.OperateInfo = "修改引用";
userOperateLog.IfSuccess = false;
userOperateLog.Description = "无权限,请联系管理员";
context.Response.Write("{\"msg\":\"无权限,请联系管理员!\",\"success\":true}");
}
ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog);
break;
case "delete":
if (user != null && new ZGZY.BLL.Authority().IfAuthority("Channel", "delete", user.Id))
{
object departmentIds = context.Request.Params["id"];
if (new ZGZY.BLL.Channel().DeleteChannelById(departmentIds) == 1)
{
userOperateLog.OperateInfo = "删除引用";
userOperateLog.IfSuccess = true;
userOperateLog.Description = "删除成功,引用主键:" + departmentIds;
context.Response.Write("{\"msg\":\"删除成功!\",\"success\":true}");
}
else
{
userOperateLog.OperateInfo = "删除引用";
userOperateLog.IfSuccess = false;
userOperateLog.Description = "删除失败,客户主键:" + departmentIds;
context.Response.Write("{\"msg\":\"删除失败!\",\"success\":false}");
}
}
else
{
userOperateLog.OperateInfo = "删除引用";
userOperateLog.IfSuccess = false;
userOperateLog.Description = "无权限,请联系管理员";
context.Response.Write("{\"msg\":\"无权限,请联系管理员!\",\"success\":false}");
}
ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog);
break;
default:
context.Response.Write("{\"result\":\"参数错误!\",\"success\":false}");
break;
}
}
catch (Exception ex)
{
context.Response.Write("{\"msg\":\"" + ZGZY.Common.JsonHelper.StringFilter(ex.Message) + "\",\"success\":false}");
userOperateLog.OperateInfo = "菜单功能异常";
userOperateLog.IfSuccess = false;
userOperateLog.Description = ZGZY.Common.JsonHelper.StringFilter(ex.Message);
ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog);
}
}
public void ProcessRequest(HttpContext context)
{
context.Response.ContentType = "application/json";
string action = context.Request.Params["action"];
ZGZY.Model.UserOperateLog userOperateLog = null; //操作日志对象
try
{
ZGZY.Model.User user = ZGZY.Common.UserHelper.GetUser(context); //获取cookie里的用户对象
userOperateLog = new Model.UserOperateLog();
userOperateLog.UserIp = context.Request.UserHostAddress;
userOperateLog.UserName = user.UserId;
switch (action)
{
case "search":
string strWhere = "1=1";
string sort = context.Request.Params["sort"]; //排序列
string order = context.Request.Params["order"]; //排序方式 asc或者desc
int pageindex = int.Parse(context.Request.Params["page"]);
int pagesize = int.Parse(context.Request.Params["rows"]);
string ui_operatelog_username = context.Request.Params["ui_operatelog_username"] ?? "";
string ui_operatelog_userip = context.Request.Params["ui_operatelog_userip"] ?? "";
string ui_operatelog_info = context.Request.Params["ui_operatelog_info"] ?? "";
string ui_operatelog_description = context.Request.Params["ui_operatelog_description"] ?? "";
string ui_operatelog_success = context.Request.Params["ui_operatelog_success"] ?? "";
string ui_operatelog_operatedatestart = context.Request.Params["ui_operatelog_operatedatestart"] ?? "";
string ui_operatelog_operatedateend = context.Request.Params["ui_operatelog_operatedateend"] ?? "";
if (ui_operatelog_username.Trim() != "" && !ZGZY.Common.SqlInjection.GetString(ui_operatelog_username)) //防止sql注入
{
strWhere += string.Format(" and UserName like '%{0}%'", ui_operatelog_username.Trim());
}
if (ui_operatelog_userip.Trim() != "" && !ZGZY.Common.SqlInjection.GetString(ui_operatelog_userip))
{
strWhere += string.Format(" and UserIp like '%{0}%'", ui_operatelog_userip.Trim());
}
if (ui_operatelog_info.Trim() != "" && !ZGZY.Common.SqlInjection.GetString(ui_operatelog_info))
{
strWhere += string.Format(" and OperateInfo like '%{0}%'", ui_operatelog_info.Trim());
}
if (ui_operatelog_description.Trim() != "" && !ZGZY.Common.SqlInjection.GetString(ui_operatelog_description))
{
strWhere += string.Format(" and Description like '%{0}%'", ui_operatelog_description.Trim());
}
if (ui_operatelog_success.Trim() != "select" && ui_operatelog_success.Trim() != "")
{
strWhere += " and IfSuccess = '" + ui_operatelog_success.Trim() + "'";
}
if (ui_operatelog_operatedatestart.Trim() != "")
{
strWhere += " and OperateDate > '" + ui_operatelog_operatedatestart.Trim() + "'";
}
if (ui_operatelog_operatedateend.Trim() != "")
{
strWhere += " and OperateDate < '" + ui_operatelog_operatedateend.Trim() + "'";
}
userOperateLog.OperateInfo = "查询操作日志";
userOperateLog.IfSuccess = true;
userOperateLog.Description = "查询条件:" + strWhere + " 排序:" + sort + " " + order + " 页码/每页大小:" + pageindex + " " + pagesize;
ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog);
int totalCount; //输出参数
string strJson = new ZGZY.BLL.UserOperateLog().GetPager("tbUserOperateLog", "Id,UserName,UserIp,OperateInfo,Description,IfSuccess,OperateDate", sort + " " + order, pagesize, pageindex, strWhere, out totalCount);
context.Response.Write("{\"total\": " + totalCount.ToString() + ",\"rows\":" + strJson + "}");
break;
default:
context.Response.Write("{\"msg\":\"参数错误!\",\"success\":false}");
break;
}
}
catch (Exception ex)
{
context.Response.Write("{\"msg\":\"" + ZGZY.Common.JsonHelper.StringFilter(ex.Message) + "\",\"success\":false}");
userOperateLog.OperateInfo = "操作日志功能异常";
userOperateLog.IfSuccess = false;
userOperateLog.Description = ZGZY.Common.JsonHelper.StringFilter(ex.Message);
ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog);
}
}
public void ProcessRequest(HttpContext context)
{
context.Response.ContentType = "application/json";
string action = context.Request.Params["action"];
ZGZY.Model.UserOperateLog userOperateLog = null; //操作日志对象
try
{
ZGZY.Model.User user = ZGZY.Common.UserHelper.GetUser(context); //获取cookie里的用户对象
userOperateLog = new Model.UserOperateLog();
userOperateLog.UserIp = context.Request.UserHostAddress;
userOperateLog.UserName = user.UserId;
JavaScriptSerializer jsonSerialize = new JavaScriptSerializer();
switch (action)
{
case "getbutton": //根据用户的权限获取用户点击的菜单有权限的按钮
string pageName = context.Request.Params["pagename"];
string menuCode = context.Request.Params["menucode"]; //菜单标识码
DataTable dt = new ZGZY.BLL.Customers().GetButtonByMenuCodeAndUserId(menuCode, user.Id);
string sum = ZGZY.Common.ToolbarHelper.GetToolBar(dt, pageName);
context.Response.Write(sum);
break;
case "add":
if (user != null && new ZGZY.BLL.Authority().IfAuthority("Channel", "add", user.Id))
{
Model.Finance FinanceModel = new Model.Finance();
FinanceModel.FinanceName = context.Request.Params["ui_Finance_FinanceName_add"];
FinanceModel.ChannelId = Int32.Parse(context.Request.Params["ui_Finance_ChannelID"]);
FinanceModel.ManagerId = 72;
FinanceModel.State = Int32.Parse(context.Request.Params["ui_Finance_State_add"]);
FinanceModel.CreateDate = DateTime.Now;
FinanceModel.FinanceType = Int32.Parse(context.Request.Params["ui_Finance_FinanceType_add"]);
FinanceModel.Remark = context.Request.Params["ui_Finance_Remark_add"];
FinanceModel.FinanceNum = Int32.Parse(context.Request.Params["ui_Finance_FinanceNum_add"]);
FinanceModel.Amount = Int32.Parse(context.Request.Params["ui_Finance_Amount_add"]);
int departmentId = new ZGZY.BLL.Finance().AddFinance(FinanceModel);
if (departmentId > 0)
{
Model.CustomerFinance cusFin = new Model.CustomerFinance();
cusFin.CusId = Int32.Parse(context.Request.Params["ui_Finance_CustomersID"]);
cusFin.FinanceId = departmentId;
cusFin.BeginDate = DateTime.Parse(context.Request.Params["ui_Finance_BeginDate_add"]);
cusFin.EndDate = DateTime.Parse(context.Request.Params["ui_Finance_EndDate_add"]);
new ZGZY.BLL.CustomerFinance().AddCustomerFinance(cusFin);
userOperateLog.OperateInfo = "添加结算";
userOperateLog.IfSuccess = true;
userOperateLog.Description = "添加成功,客户主键:" + departmentId;
context.Response.Write("{\"msg\":\"添加成功!\",\"success\":true}");
}
else
{
userOperateLog.OperateInfo = "添加结算";
userOperateLog.IfSuccess = false;
userOperateLog.Description = "添加失败";
context.Response.Write("{\"msg\":\"添加失败!\",\"success\":false}");
}
}
else
{
userOperateLog.OperateInfo = "添加结算";
userOperateLog.IfSuccess = false;
userOperateLog.Description = "无权限,请联系管理员";
context.Response.Write("{\"msg\":\"无权限,请联系管理员!\",\"success\":true}");
}
ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog);
break;
case "GetChannelList":
List <Model.VW_GetEndDateAndBeginDateByChannelID> list = new ZGZY.BLL.Finance().GetFinanceFromCombobox();
context.Response.Write(jsonSerialize.Serialize(list));
//string strjson = GetJsonStr(list);
//context.Response.Write(strjson); GetDateById
break;
case "GetCustomersList":
List <Model.Customers> listCus = new ZGZY.BLL.Customers().GetCustomersTbaleNoP();
context.Response.Write(jsonSerialize.Serialize(listCus));
break;
case "GetDateById":
object Id = context.Request.Params["Id"];
Model.VW_GetEndDateAndBeginDateByChannelID model = new ZGZY.BLL.Finance().Get_VWDate(Id);
context.Response.Write(jsonSerialize.Serialize(model));
break;
case "search":
string strWhere = "1=1";
string sort = context.Request.Params["sort"]; //排序列
string order = context.Request.Params["order"]; //排序方式 asc或者desc
int pageindex = int.Parse(context.Request.Params["page"]);
int pagesize = int.Parse(context.Request.Params["rows"]);
int totalCount; //输出参数
string strJson = new ZGZY.BLL.Button().GetPager("VW_FinanceAndChannel", "UserName,Id,CusId,CusName, FinanceName,BeginDate,EndDate, ChannelId, ManagerId, State, CreateDate, FinanceType, Remark, Amount, FinanceNum, ChannelName, Creator, SealNameId", sort + " " + order, pagesize, pageindex, strWhere, out totalCount);
context.Response.Write("{\"total\": " + totalCount.ToString() + ",\"rows\":" + strJson + "}");
userOperateLog.OperateInfo = "查询按钮";
userOperateLog.IfSuccess = true;
userOperateLog.Description = "查询条件:" + strWhere + " 排序:" + sort + " " + order + " 页码/每页大小:" + pageindex + " " + pagesize;
ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog);
break;
case "edit":
if (user != null && new ZGZY.BLL.Authority().IfAuthority("Channel", "edit", user.Id))
{
Model.Finance financemodel = new Model.Finance();
financemodel.Id = Int32.Parse(context.Request.Params["ID"]);
financemodel.FinanceName = context.Request.Params["ui_Finance_FinanceName_edit"];
financemodel.ChannelId = Int32.Parse(context.Request.Params["ui_Finance_ChannelID_edit"]);
financemodel.State = Int32.Parse(context.Request.Params["ui_Finance_State_edit"]);
financemodel.FinanceType = Int32.Parse(context.Request.Params["ui_Finance_FinanceType_edit"]);
financemodel.FinanceNum = Int32.Parse(context.Request.Params["ui_Finance_FinanceNum_edit"]);
financemodel.Amount = double.Parse(context.Request.Params["ui_Finance_Amount_edit"]);
financemodel.Remark = context.Request.Params["ui_Finance_Remark_edit"];
int outputRow = new ZGZY.BLL.Finance().EditFinanceByFinanceID(financemodel);
Model.CustomerFinance modelCusFin = new Model.CustomerFinance();
modelCusFin.FinanceId = financemodel.Id;
modelCusFin.BeginDate = DateTime.Parse(context.Request.Params["ui_Finance_BeginDate_edit"]);
modelCusFin.EndDate = DateTime.Parse(context.Request.Params["ui_Finance_EndDate_edit"]);
modelCusFin.CusId = Int32.Parse(context.Request.Params["ui_Finance_CustomersID_edit"]);
outputRow += new ZGZY.BLL.CustomerFinance().EditCustomerFinanceByFinanceId(modelCusFin);
if (outputRow == 2)
{
userOperateLog.OperateInfo = "修改结算";
userOperateLog.IfSuccess = true;
userOperateLog.Description = "修改成功,客户主键:" + outputRow;
context.Response.Write("{\"msg\":\"修改成功!\",\"success\":true}");
}
else
{
userOperateLog.OperateInfo = "修改结算";
userOperateLog.IfSuccess = false;
userOperateLog.Description = "修改失败";
context.Response.Write("{\"msg\":\"修改失败!\",\"success\":false}");
}
}
else
{
userOperateLog.OperateInfo = "修改结算";
userOperateLog.IfSuccess = false;
userOperateLog.Description = "无权限,请联系管理员";
context.Response.Write("{\"msg\":\"无权限,请联系管理员!\",\"success\":true}");
}
ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog);
break;
case "delete":
if (user != null && new ZGZY.BLL.Authority().IfAuthority("Channel", "delete", user.Id))
{
object departmentIds = context.Request.Params["id"];
if (new ZGZY.BLL.Finance().DeleteFinanceByFinanceID(departmentIds) == 1)
{
userOperateLog.OperateInfo = "删除结算";
userOperateLog.IfSuccess = true;
userOperateLog.Description = "删除成功,结算主键:" + departmentIds;
context.Response.Write("{\"msg\":\"删除成功!\",\"success\":true}");
}
else
{
userOperateLog.OperateInfo = "删除结算";
userOperateLog.IfSuccess = false;
userOperateLog.Description = "删除失败,客户主键:" + departmentIds;
context.Response.Write("{\"msg\":\"删除失败!\",\"success\":false}");
}
}
else
{
userOperateLog.OperateInfo = "删除结算";
userOperateLog.IfSuccess = false;
userOperateLog.Description = "无权限,请联系管理员";
context.Response.Write("{\"msg\":\"无权限,请联系管理员!\",\"success\":false}");
}
ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog);
break;
default:
context.Response.Write("{\"result\":\"参数错误!\",\"success\":false}");
break;
}
}
catch (Exception ex)
{
context.Response.Write("{\"msg\":\"" + ZGZY.Common.JsonHelper.StringFilter(ex.Message) + "\",\"success\":false}");
userOperateLog.OperateInfo = "菜单功能异常";
userOperateLog.IfSuccess = false;
userOperateLog.Description = ZGZY.Common.JsonHelper.StringFilter(ex.Message);
ZGZY.BLL.UserOperateLog.InsertOperateInfo(userOperateLog);
}
}
