public ActionResult _AddUser(string username, string password, string confirmPassword, string fullname, string email, int branch, string code, string birth, string phone, int roleId = 0, int parent = 0, bool isusingaccount = false) { var db = new ManagerListUserBussiness(); User itemuser = new User(); itemuser.FullName = fullname.Trim().ToUpper(); itemuser.Email = email.Trim().ToUpper(); itemuser.BranchId = branch; itemuser.UserCode = code.Trim().ToUpper(); itemuser.Phone = phone.Trim().ToUpper(); itemuser.isusingaccount = isusingaccount; if (itemuser.isusingaccount == true) { if (password != confirmPassword) { SystemMessage systemMessage = new SystemMessage(); systemMessage.IsSuccess = false; systemMessage.Message = SystemMessageConst.systemmessage.ConfirmPasswordNotCorrect; return(Json(new { result = systemMessage }, JsonRequestBehavior.AllowGet)); } itemuser.UserName = username.Trim().ToUpper(); itemuser.Password = password; } if (parent != 0) { itemuser.ParentId = parent; itemuser.parent_create_by = user.Id; itemuser.parent_create_time = DateTime.Now; } itemuser.DateCreated = DateTime.Now; itemuser.user_create_by = user.Id; DateTime _birth; if (!string.IsNullOrEmpty(birth)) { if (!DateTime.TryParseExact(birth, "dd/MM/yyyy", CultureInfo.InvariantCulture, DateTimeStyles.None, out _birth)) { SystemMessage systemMessage = new SystemMessage(); systemMessage.IsSuccess = false; systemMessage.Message = string.Format(SystemMessageConst.ValidateConst.DateIsNotValid, "Ngày sinh"); return(Json(new { result = systemMessage }, JsonRequestBehavior.AllowGet)); } itemuser.DateOfBirth = _birth; } var myRole = user.Roleid; if (myRole != SystemMessageConst.Role.Admin) { var userId = user.Id; var db2 = new CommonBusiness(); var myLevel = db2.GetLevelMaxByIdAcc(userId); var newUserLevel = db2.GetLevelByIdRole(roleId); if (myLevel >= newUserLevel) { SystemMessage systemMessage = new SystemMessage(); systemMessage.IsSuccess = false; systemMessage.Message = "Quyền không hợp lệ"; return(Json(new { result = systemMessage }, JsonRequestBehavior.AllowGet)); } } ; var result = db.AddUser(itemuser, roleId); return(Json(new { result }, JsonRequestBehavior.AllowGet)); }