public ActionResult Add(T_Articles article) { var msg = new Message(); var currentUser = UserService.GetModal(a => a.username.Equals(User.Identity.Name)); if (article == null || string.IsNullOrEmpty(article.title) || article.cateid <= 0 || string.IsNullOrEmpty(article.body)) { msg.code = 0; msg.body = "请确认信息的完整性"; } else if (currentUser.type == 0) { msg.code = 0; msg.body = "您的权限不足"; } else { article.title = Encoder.HtmlEncode(article.title); article.body = Encoder.HtmlEncode(article.body); article.from = Encoder.HtmlEncode(article.from); article.author = Encoder.HtmlEncode(article.author); article.createtime = DateTime.Now; article.uid = currentUser.id; var result = ArticleService.Insert(article); if (result) { msg.code = 1; msg.body = "添加成功"; } else { msg.code = 0; msg.body = "添加失败,请联系管理员"; } } return Json(msg); }
public ActionResult Verify(string goodid) { var msg = new Message(); if (string.IsNullOrEmpty(goodid)) { msg.code = 0; msg.body = "产品编号为空"; } else { //TODO: Verify var result = DoVerify(goodid); if (result == 1) { msg.code = 1; msg.body = "验证成功"; } else if (result == -1) { msg.code = 0; msg.body = "此订单已经安装"; } else if (result == 0) { msg.code = 0; msg.body = "订单不存在"; } else { msg.code = 0; msg.body = "未知错误"; } } return Json(msg); }
public ActionResult Logout() { var msg = new Message { body = "OK", code = 1 }; if (User != null) { FormsAuthentication.SignOut(); LogHelper.Info("用户" + User.Identity.Name + "登出"); } return Json(msg); }
public ActionResult Login(string username, string password) { var msg = new Message(); //获取前端滑动验证的三个数据 var geetestChallenge = Request["validate[geetest_challenge]"] ?? ""; var geetestValidate = Request["validate[geetest_validate]"] ?? ""; var geetestSeccode = Request["validate[geetest_seccode]"] ?? ""; //滑动验证的后端校验 var result = BackValidate(geetestChallenge, geetestValidate, geetestSeccode); if (!result) { msg.code = 0; msg.body = "滑动验证失败,请重试"; } else if (string.IsNullOrEmpty(username) || string.IsNullOrEmpty(password)) { msg.code = 0; msg.body = "用户名或密码为空"; } else { var decryptedName = DecryptStr(username); var decryptedPwd = DecryptStr(password); var bll = UserService; var user = bll.GetModal(a => a.username.Equals(decryptedName)); if (user == null) { msg.code = 0; msg.body = "用户不存在"; } else { var salt = user.salt; var pwd = user.password; var loginPwd = FormsAuthentication.HashPasswordForStoringInConfigFile(decryptedPwd + salt, "MD5"); //比较密码 if (pwd.Equals(loginPwd)) { //登录成功后设置Cookie FormsAuthentication.SetAuthCookie(user.username, false); user.lastlogintime = DateTime.Now; user.lastloginip = Request.UserHostAddress == "::1" ? "127.0.0.1" : Request.UserHostAddress; user.lastloginarea = GetArea(Request.UserHostAddress); bll.Update(user); msg.code = 1; msg.body = "登录成功"; LogHelper.Info("用户" + user.username + "登录成功"); } else { msg.code = 0; msg.body = "密码不正确"; } } } return Json(msg); }
public ActionResult Update(int id, string name, int parentid) { var msg = new Message(); if (id <= 0 || string.IsNullOrEmpty(name)) { msg.code = 0; msg.body = "请检查信息的完整性"; } else if (parentid <= 0 && parentid != -1) { msg.code = 0; msg.body = "上级分类选择出错"; } else if (id.Equals(parentid)) { msg.code = 0; msg.body = "上级分类不能是自己"; } else if (UserService.GetModal(a => a.username.Equals(User.Identity.Name)).type == 0) { msg.code = 0; msg.body = "您的权限不足"; } else { var model = CategoryService.GetModal(a => a.id.Equals(id)); if (model == null) { msg.code = 0; msg.body = "分类不存在"; } else { model.name = name; model.parentid = parentid; var result = CategoryService.Update(model); if (result) { msg.code = 1; msg.body = "修改成功"; } else { msg.code = 0; msg.body = "修改失败,请联系管理员"; } } } return Json(msg); }
public ActionResult Delete(int id) { var msg = new Message(); if (id == 0) { msg.code = 0; msg.body = "非法的ID"; } else if (UserService.GetModal(a => a.username.Equals(User.Identity.Name)).type == 0) { msg.code = 0; msg.body = "您的权限不足"; } else { var bll = CategoryService; var model = bll.GetModal(a => a.id.Equals(id)); if (model == null) { msg.code = 0; msg.body = "分类不存在ID"; } else { var isExitsSubCate = bll.GetModal(a => a.parentid.Equals(id)) != null; var isExitsArticle = ArticleService.GetModal(a => a.cateid.Equals(id)) != null; if (isExitsSubCate) { msg.code = 0; msg.body = "该分类存在子分类,不能删除"; } else if (isExitsArticle) { msg.code = 0; msg.body = "该分类下还存在文章,不能删除"; } else { var result = bll.Delete(model); if (result) { msg.code = 1; msg.body = "删除成功"; } else { msg.code = 0; msg.body = "删除失败"; } } } } return Json(msg); }
public ActionResult Add(T_Categories cate) { var msg = new Message(); var currentUser = UserService.GetModal(a => a.username.Equals(User.Identity.Name)); //用户为空 if (cate == null) { msg.code = 0; msg.body = "请确认信息的完整性"; } else if (cate.name.Length > 120) { msg.code = 0; msg.body = "分类名的长度不能大于120"; } else if (CheckCateIsExits(cate.name)) { msg.code = 0; msg.body = "该分类已存在"; } else if (cate.id.Equals(cate.parentid)) { msg.code = 0; msg.body = "上级分类不能是自己"; } else if (currentUser.type == 0) { msg.code = 0; msg.body = "您的权限不足"; } else { var bll = CategoryService; cate.createtime = DateTime.Now; cate.uid = currentUser.id; var result = bll.Insert(cate); if (result) { msg.code = 1; msg.body = "添加成功"; } else { msg.code = 0; msg.body = "添加失败,请联系管理员"; } } return Json(msg); }
public ActionResult Login(string username, string password) { var msg = new Message(); if (string.IsNullOrEmpty(username) || string.IsNullOrEmpty(password)) { msg.code = 0; msg.body = "用户名或密码为空"; } else { var bll = UserService; var user = bll.GetModal(a => a.username.Equals(username)); if (user == null) { msg.code = 0; msg.body = "用户不存在"; } else { var salt = user.salt; var pwd = user.password; var loginPwd = Security.SetMD5(password, salt); //比较密码 if (pwd.Equals(loginPwd)) { //登录成功后设置Cookie FormsAuthentication.SetAuthCookie(user.username, false, FormsAuthentication.FormsCookiePath); // FormsAuthenticationTicket ticket = new FormsAuthenticationTicket //(1, user.username, DateTime.Now, DateTime.Now.AddMinutes(20), true, ""); msg.code = 1; msg.body = "登录成功"; } else { msg.code = 0; msg.body = "密码不正确"; } } } return Json(msg); }
public ActionResult UpdatePwd(string oldpwd, string newpwd) { var msg = new Message(); if (string.IsNullOrEmpty(oldpwd) || string.IsNullOrEmpty(newpwd)) { msg.code = 0; msg.body = "请确认信息的完整性"; } else { //根据用户ID获取用户实体 var username = User.Identity.Name; var user = UserService.GetModal(a => a.username.Equals(username)); if (user != null) { //获取用户加密盐 var salt = user.salt; //计算用户输入的旧密码是否正确 var hashPasswordForStoringInConfigFile = FormsAuthentication.HashPasswordForStoringInConfigFile(oldpwd + salt, "MD5"); var isOldPwdCurrect = hashPasswordForStoringInConfigFile != null && hashPasswordForStoringInConfigFile.Equals(user.password); if (isOldPwdCurrect) { //获取新的加密盐 var newsalt = Security.GetPwdSalt(); //设置新的加密盐 user.salt = newsalt; //计算新的密码 user.password = FormsAuthentication.HashPasswordForStoringInConfigFile(newpwd + salt, "MD5"); var res = UserService.Update(user); if (res) { msg.code = 1; msg.body = "修改成功,请牢记您的密码"; } else { msg.code = 0; msg.body = "修改失败,请联系管理员"; } } else { msg.code = 0; msg.body = "旧密码不正确"; } } else { msg.code = 0; msg.body = "用户不存在"; } } return Json(msg); }
public ActionResult IsAdmin() { var user = User; var msg = new Message(); if (user == null) { throw new Exception("会话过期,请重新登录"); } else { var userModel = UserService.GetModal(a => a.username.Equals(user.Identity.Name)); if (userModel == null) { throw new Exception("用户不存在"); } else { if (userModel.type == 1) { msg.code = 1; } else { msg.code = 0; } } } return Json(msg, JsonRequestBehavior.AllowGet); }
public ActionResult Delete(string id) { var msg = new Message(); if (string.IsNullOrEmpty(id)) { msg.code = 0; msg.body = "ID为空"; } else if (UserService.GetModal(a => a.username.Equals(User.Identity.Name)).type == 0) { msg.code = 0; msg.body = "您的权限不足"; } else { var bll = ArticleService; var model = bll.GetModal(a => a.id.Equals(int.Parse(id))); if (model == null) { msg.code = 0; msg.body = "文章不存在"; } else { var result = bll.Delete(model); if (result) { msg.code = 1; msg.body = "删除成功"; } else { msg.code = 0; msg.body = "删除失败,请联系管理员"; } } } return Json(msg); }
public ActionResult Add(tb_sales_user user) { var msg = new Message(); //用户为空 if (user == null) { msg.code = 0; msg.body = "该用户不存在"; } else if (UserService.GetModal(a => a.username.Equals(User.Identity.Name)).type == 0) { msg.code = 0; msg.body = "您的权限不足"; } else if (AllianceService.GetModal(a => a.twocodeid.Equals(user.alliance)) == null) { msg.code = 0; msg.body = "此经销商不存在"; } else { //检查用户名格式: result>0则正确,-1为空,-2为长度过长 var userNameFormatCheck = CheckUserName(user.username); //检查用户名有效性,即是否重复 var userNameOkCheck = CheckUserNameIsExits(user.username); //检查用户类型 var typeCheck = CheckUserType(user.type); //用户名为空 if (userNameFormatCheck == -1) { msg.code = 0; msg.body = "用户名为空"; } //用户名长度不能大于100 else if (userNameFormatCheck == -2) { msg.code = 0; msg.body = "用户名长度不能大于100"; } //用户名是否存在 else if (userNameOkCheck) { msg.code = 0; msg.body = "用户已存在"; } //请选择正确的用户类型 else if (!typeCheck) { msg.code = 0; msg.body = "请选择正确的用户类型"; } //用户名输入正确且已经选择正确的用户类型 else { //执行添加用户操作 var result = DoAdd(user); //添加成功 if (result) { msg.code = 1; msg.body = "添加成功"; } //添加失败 else { msg.code = 0; msg.body = "添加失败"; } } } return Json(msg); }
public ActionResult GetUser() { var username = User.Identity.Name; var user = UserService.GetModal(a => a.username.Equals(username)); var msg = new Message { code = 1, body = new { username, } }; return Json(msg, JsonRequestBehavior.AllowGet); }
public ActionResult Logout() { var msg = new Message { body = "OK", code = 1 }; if (User != null) { FormsAuthentication.SignOut(); } return Json(msg); }
public ActionResult Delete(string id) { var msg = new Message(); if (string.IsNullOrEmpty(id)) { msg.code = 0; msg.body = "ID为空"; } else if (!Information.IsNumeric(id)) { msg.code = 0; msg.body = "ID应为数字"; } else if (UserService.GetModal(a => a.username.Equals(User.Identity.Name)).type == 0) { msg.code = 0; msg.body = "您的权限不足"; } else { var bll = UserService; var model = bll.GetModal(a => a.id.Equals(int.Parse(id))); if (model == null) { msg.code = 0; msg.body = "ID为空"; } else if (model.T_Articles.Count > 0) { msg.code = 0; msg.body = "此用户下还有文章,不能删除"; } else if (GetCurrentUserId().Equals(int.Parse(id))) { msg.code = 0; msg.body = "不能删除自己"; } else { var result = bll.Delete(model); if (result) { msg.code = 1; msg.body = "删除成功"; } else { msg.code = 0; msg.body = "删除失败,请联系管理员"; } } } return Json(msg); }
public ActionResult GetUser() { var username = User.Identity.Name; var user = UserService.GetModal(a => a.username.Equals(username)); var msg = new Message { code = 1, body = new { username, time = user.lastlogintime.ToString(), ip = user.lastloginip, area = user.lastloginarea } }; return Json(msg, JsonRequestBehavior.AllowGet); }
public ActionResult Install(string goodid) { var msg = new Message(); var user = User; if (user == null) { msg.code = 0; msg.body = "会话时间到,请重新登陆"; return Json(msg); } var allian_id = UserService.GetModal(a => a.username.Equals(user.Identity.Name)).alliance; var install = new tb_sales_install { install_time = DateTime.Now, order_id = goodid, allian_id = allian_id.ToString(), user_id = UserService.GetModal(b => b.username.Equals(user.Identity.Name)).id.ToString() }; //1.在安装表中插入条目 var result1 = InstallService.Insert(install); //2.修改订单中的条目,将订单标识为已安装 var order = OrderService.GetModal(a => a.order_id.Equals(goodid)); order.is_installed = 1; var result2 = OrderService.Update(order); if (result1 && result2) { msg.code = 1; msg.body = "安装成功"; } else { msg.code = 0; msg.body = "安装失败"; } return Json(msg); }
public ActionResult Add(T_Users user) { var msg = new Message(); //用户为空 if (user == null) { msg.code = 0; msg.body = "该用户不存在"; } //判断用户的权限 else if (UserService.GetModal(a => a.username.Equals(User.Identity.Name)).type == 0) { msg.code = 0; msg.body = "您的权限不足"; } else { //检查用户名格式: result>0则正确,-1为空,-2为长度过长 var userNameFormatCheck = CheckUserNameLength(user.username); //检查用户名有效性,即是否重复 var userNameOkCheck = CheckUserNameIsExits(user.username); //检查用户类型 var typeCheck = CheckUserType(user.type); //用户名为空 switch (userNameFormatCheck) { case -1: msg.code = 0; msg.body = "用户名为空"; break; case -2: msg.code = 0; msg.body = "用户名长度不能大于120"; break; default: if (userNameOkCheck) { msg.code = 0; msg.body = "用户已存在"; } //请选择正确的用户类型 else if (!typeCheck) { msg.code = 0; msg.body = "请选择正确的用户类型"; } //用户名输入正确且已经选择正确的用户类型 else { //执行添加用户操作 var result = DoAdd(user); //添加成功 if (result) { msg.code = 1; msg.body = "添加成功"; } //添加失败 else { msg.code = 0; msg.body = "添加失败"; } } break; } } return Json(msg); }
public ActionResult SetFee(tb_sales_fee fee) { var msg = new Message(); if (UserService.GetModal(a => a.username.Equals(User.Identity.Name)).type == 0) { msg.code = 0; msg.body = "您的权限不足"; return Json(msg); } if (fee.installfee <= 0 || fee.recommendfee <= 0) { fee.installfee = 0; fee.recommendfee = 0; } else { var fees = FeeService.GetList(a => a.id > 0); if (fees != null) { if (fees.Count >= 1) { fees.ToList().ForEach((f) => { FeeService.Delete(f); }); } } var result = FeeService.Insert(fee); if (result) { msg.code = 1; msg.body = "设置成功"; } else { msg.code = 0; msg.body = "设置失败"; } } return Json(msg); }