public async Task <HttpResponseMessage> SetStaffAuthorize(StaffAuthorize item)
{
Result response = new Result();
bool ret = false;
DataSet ds = new DataSet();
DataTable dt = new DataTable();
try
{
int iCount = repository.GetCheckUniqeAuthorize(
" StaffAuthorize ",
" StaffCode ",
" and StaffID=" + item.StaffID + " and DEPid=" + item.DEPid + " and PositionPermissionId=" + item.PositionPermissionId, "Authorizeid", item.Authorizeid);
bool ExistOK = false;
if (iCount > 0)
{
ExistOK = true;
}
if (ExistOK)
{
response.StatusCode = (int)StatusCodes.Error;
response.Messages = "รหัสบทบาทหน้าที่ซ้ำ";
//throw new Exception(" รหัสแผนก ซ้ำ !!!");
}
else
{
ret = await repository.SetStaffAuthorize(item);
if (ret)
{
response.StatusCode = (int)StatusCodes.Succuss;
response.Messages = "บันทึกข้อมูลเรียบร้อยแล้ว";
}
else
{
response.StatusCode = (int)StatusCodes.Error;
response.Messages = "";
}
}
}
catch (Exception e)
{
response.StatusCode = (int)StatusCodes.Error;
response.Messages = e.Message;
}
//response.Results = ds;
//response.Records = ds.Tables[0].Rows.Count;
return(Request.CreateResponse(HttpStatusCode.OK, response));
}
public async Task <bool> SetStaffAuthorize(StaffAuthorize item)
{
bool result = false;
string strSQL = null;
DataTable dt = new DataTable();
item.StaffCode = GetNameFromTB(item.StaffID, "Staffs", "StaffCode");
item.DEPdescT = GetNameFromTB(item.DEPid, "Department", "DEPdescT");
item.PositionCode = GetNameFromTB(item.PositionPermissionId, "PositionPermission", "PositionCode");
if (item.Authorizeid == 0)
{
strSQL = "Insert Into StaffAuthorize (StaffID,StaffCode,DEPid,DEPdescT,PositionPermissionId,PositionCode,PositionLimit,AuthorizeLevel,isPreview) VALUES (@StaffID,@StaffCode,@DEPid,@DEPdescT,@PositionPermissionId,@PositionCode,@PositionLimit,@AuthorizeLevel,@isPreview)";
List <SqlParameter> sp = new List <SqlParameter>()
{
new SqlParameter()
{
ParameterName = "@StaffID", SqlDbType = SqlDbType.Int, Value = item.StaffID
},
new SqlParameter()
{
ParameterName = "@StaffCode", SqlDbType = SqlDbType.NVarChar, Value = item.StaffCode.ToUpper()
},
new SqlParameter()
{
ParameterName = "@DEPid", SqlDbType = SqlDbType.Int, Value = item.DEPid
},
new SqlParameter()
{
ParameterName = "@DEPdescT", SqlDbType = SqlDbType.NVarChar, Value = item.DEPdescT
},
new SqlParameter()
{
ParameterName = "@PositionPermissionId", SqlDbType = SqlDbType.Int, Value = item.PositionPermissionId
},
new SqlParameter()
{
ParameterName = "@PositionCode", SqlDbType = SqlDbType.NVarChar, Value = item.PositionCode.ToUpper()
},
new SqlParameter()
{
ParameterName = "@PositionLimit", SqlDbType = SqlDbType.Decimal, Value = item.PositionLimit
},
new SqlParameter()
{
ParameterName = "@AuthorizeLevel", SqlDbType = SqlDbType.TinyInt, Value = item.AuthorizeLevel
},
new SqlParameter()
{
ParameterName = "@isPreview", SqlDbType = SqlDbType.Bit, Value = item.isPreview
}
};
DBHelper.Execute(strSQL, sp);
}
else
{
strSQL = "UPDATE StaffAuthorize SET StaffID=@StaffID,StaffCode=@StaffCode,DEPid=@DEPid,DEPdescT=@DEPdescT,PositionPermissionId=@PositionPermissionId,PositionCode=@PositionCode,PositionLimit=@PositionLimit,AuthorizeLevel=@AuthorizeLevel,isPreview=@isPreview WHERE Authorizeid=@Authorizeid";
List <SqlParameter> sp = new List <SqlParameter>()
{
new SqlParameter()
{
ParameterName = "@Authorizeid", SqlDbType = SqlDbType.VarChar, Value = item.Authorizeid
},
new SqlParameter()
{
ParameterName = "@StaffID", SqlDbType = SqlDbType.Int, Value = item.StaffID
},
new SqlParameter()
{
ParameterName = "@StaffCode", SqlDbType = SqlDbType.NVarChar, Value = item.StaffCode.ToUpper()
},
new SqlParameter()
{
ParameterName = "@DEPid", SqlDbType = SqlDbType.Int, Value = item.DEPid
},
new SqlParameter()
{
ParameterName = "@DEPdescT", SqlDbType = SqlDbType.NVarChar, Value = item.DEPdescT
},
new SqlParameter()
{
ParameterName = "@PositionPermissionId", SqlDbType = SqlDbType.Int, Value = item.PositionPermissionId
},
new SqlParameter()
{
ParameterName = "@PositionCode", SqlDbType = SqlDbType.NVarChar, Value = item.PositionCode.ToUpper()
},
new SqlParameter()
{
ParameterName = "@PositionLimit", SqlDbType = SqlDbType.Decimal, Value = item.PositionLimit
},
new SqlParameter()
{
ParameterName = "@AuthorizeLevel", SqlDbType = SqlDbType.TinyInt, Value = item.AuthorizeLevel
},
new SqlParameter()
{
ParameterName = "@isPreview", SqlDbType = SqlDbType.Bit, Value = item.isPreview
}
};
DBHelper.Execute(strSQL, sp);
}
return(true);
}
