override public void RegistInstants(params object[] instants)
{
if (instants.Length > 0)
{
this.admuserContract = (AdmUserContract)(instants[0]);
}
}
/// <summary>
/// Insert đối tượng vào database
/// </summary>
/// <param name="menu"></param>
/// <returns></returns>
public string Insert(AdmUserContract admuser, SqlTransaction tran = null)
{
DataTable dtResult = null;
string query = string.Format(@"INSERT INTO Adm_User
VALUES ({0},{1},{2},{3},convert(datetime,{4},103),convert(datetime,{5},103),{6},{7},{8})",
(admuser.Code.Trim() != String.Empty? "N'" + SQLHelper.RejectInjection(admuser.Code.ToString()) + "'" : "null").ToString(),
(admuser.Name.Trim() != String.Empty? "N'" + SQLHelper.RejectInjection(admuser.Name.ToString()) + "'" : "null").ToString(),
(admuser.Password.Trim() != String.Empty? "N'" + SQLHelper.RejectInjection(admuser.Password.ToString()) + "'" : "null").ToString(),
(admuser.Description.Trim() != String.Empty? "N'" + SQLHelper.RejectInjection(admuser.Description.ToString()) + "'" : "null").ToString(),
(admuser.Createdate != null? "'" + SQLHelper.RejectInjection(admuser.Createdate.ToString()) + "'" : "null").ToString(),
(admuser.Expiredate != null? "'" + SQLHelper.RejectInjection(admuser.Expiredate.ToString()) + "'" : "null").ToString(),
(admuser.Sitemap.Trim() != String.Empty? "N'" + SQLHelper.RejectInjection(admuser.Sitemap.ToString()) + "'" : "null").ToString(),
(admuser.Disabled != null? "'" + SQLHelper.RejectInjection(admuser.Disabled.ToString()) + "'" : "null").ToString(),
(admuser.Ordernum.Trim() != String.Empty ? admuser.Ordernum.ToString() : "null").ToString());
query += " ; select SCOPE_IDENTITY();";
if (tran == null)
{
dtResult = DataProvider.ExecuteQuery(query);
}
else
{
dtResult = DataProvider.ExecuteQueryWithTransaction(query, tran);
}
if (dtResult != null && dtResult.Rows.Count > 0)
{
return(dtResult.Rows[0][0].ToString());
}
return("");
}
public HttpResponseMessage Save(string userJson, string roleIds)
{
string userId = "";
string errMessage = "";
AdmUserContract userDTO = JsonConvert.DeserializeObject <AdmUserContract>(userJson);
string[] selectedRoles = JsonConvert.DeserializeObject <string[]>(roleIds);
SqlTransaction tran = DataProvider.beginTrans();
try
{
businessRule.RegistInstants(userDTO);
userDTO.Sitemap = buildSiteMap(selectedRoles);
if (userDTO.Id > 0)
{
userId = userDT.Update(userDTO, tran);
}
else
{
businessRule.RegistRule("Insert");
if (businessRule.CheckRules(out errMessage))
{
userId = userDT.Insert(userDTO);
}
else
{
return(handleBRFailed(errMessage, tran));
}
}
if (Converter.ToInt32(userId) > 0)
{
deleteOldRoles(userId, tran);
foreach (string roleId in selectedRoles)
{
AdmUserroleContract userRoleDTO = new AdmUserroleContract()
{
Userid = Converter.ToInt32(userId), Roleid = Converter.ToInt32(roleId)
};
userRoleDT.Insert(userRoleDTO, tran);
}
}
DataProvider.CommitTrans(tran);
}
catch (Exception e)
{
DataProvider.RollbackTrans(tran);
ExceptionHandler.Log(e);
}
return(Request.CreateResponse <string>(HttpStatusCode.OK, errMessage != string.Empty ? errMessage : userId));
}
public HttpResponseMessage RenderMenu(string sessionKey)
{
AdmUserContract userContract = SessionController.GetUserInfo(sessionKey);
try
{
if (userContract != null)
{
return(Request.CreateResponse <string>(HttpStatusCode.OK, userContract.Sitemap));
}
}
catch (Exception e)
{
ExceptionHandler.Log(e);
}
return(Request.CreateResponse <string>(HttpStatusCode.OK, ""));
}
public static AdmUserContract GetUserInfo(string sessionKey)
{
DataTable session = sessionDT.GetByCond("SessionID='" + sessionKey + "'", " ID DESC");
if (session != null && session.Rows.Count != 0)
{
DataTable userTable = userDT.GetByID(session.Rows[0]["UserId"].ToString());
AdmUserContract user = new AdmUserContract();
if (userTable != null && userTable.Rows.Count > 0)
{
DataRow userRow = userTable.Rows[0];
user.Name = userRow["Name"].ToString();
user.Sitemap = userRow["Sitemap"].ToString();
return(user);
}
}
return(null);
}
public HttpResponseMessage Save(string admuserJson)
{
string errMessage = string.Empty;
try
{ AdmUserContract admuser = JsonConvert.DeserializeObject <AdmUserContract>(admuserJson);
businessRule.RegistInstants(admuser);
if (admuser.Id == 0)
{
businessRule.RegistRule("Insert");
if (businessRule.CheckRules(out errMessage))
{
return(Request.CreateResponse <string>(HttpStatusCode.OK, dta.Insert(admuser)));
}
else
{
return(handleBRFailed(errMessage));
}
}
else
{
businessRule.RegistRule("Update");
if (businessRule.CheckRules(out errMessage))
{
return(Request.CreateResponse <string>(HttpStatusCode.OK, dta.Update(admuser)));
}
else
{
return(handleBRFailed(errMessage));
}
} }
catch (Exception e)
{
ExceptionHandler.Log(e);
return(Request.CreateResponse <string>(HttpStatusCode.OK, "Có lỗi xảy ra trên chương trình."));
}
}
/// <summary>
/// Cập nhật thông tin đối tượng
/// </summary>
/// <param name="menu"></param>
/// <param name="tran"></param>
/// <returns></returns>
public string Update(AdmUserContract admuser, SqlTransaction tran = null)
{
string query = String.Format("UPDATE " + TableName + @" SET Code={0},Name={1},Password={2},Description={3},CreateDate=convert(datetime,{4},103),ExpireDate=convert(datetime,{5},103),SiteMap={6},Disabled={7},OrderNum={8}
WHERE ID=" + admuser.Id.ToString(),
(admuser.Code.Trim() != String.Empty? "N'" + SQLHelper.RejectInjection(admuser.Code.ToString()) + "'" : "null").ToString(),
(admuser.Name.Trim() != String.Empty? "N'" + SQLHelper.RejectInjection(admuser.Name.ToString()) + "'" : "null").ToString(),
(admuser.Password.Trim() != String.Empty? "N'" + SQLHelper.RejectInjection(admuser.Password.ToString()) + "'" : "null").ToString(),
(admuser.Description.Trim() != String.Empty? "N'" + SQLHelper.RejectInjection(admuser.Description.ToString()) + "'" : "null").ToString(),
(admuser.Createdate != null? "'" + SQLHelper.RejectInjection(admuser.Createdate.ToString()) + "'" : "null").ToString(),
(admuser.Expiredate != null? "'" + SQLHelper.RejectInjection(admuser.Expiredate.ToString()) + "'" : "null").ToString(),
(admuser.Sitemap.Trim() != String.Empty? "N'" + SQLHelper.RejectInjection(admuser.Sitemap.ToString()) + "'" : "null").ToString(),
(admuser.Disabled != null? "'" + SQLHelper.RejectInjection(admuser.Disabled.ToString()) + "'" : "null").ToString(),
(admuser.Ordernum.Trim() != String.Empty ? admuser.Ordernum.ToString() : "null").ToString());
if (tran == null)
{
DataProvider.ExecuteNonQuery(query);
}
else
{
DataProvider.ExecuteNonQueryWithTransaction(query, tran);
}
return(admuser.Id.ToString());
}
public AdmUserRule ValidateInstant(AdmUserContract dto)
{
return(this);
}
