MemberCenter/Member/MemberWeb/Controllers/CM_OrgController.cs

using JCSoft.WX.Framework.Api;
using Microsoft.AspNetCore.Mvc;
using Microsoft.AspNetCore.Http;
using System;
using System.Collections.Generic;
using System.Linq;
using System.Threading.Tasks;
using Common.Wechat;
using Common;
using System.Data;
using Common.Model;
using ZcPeng.PublicLibrary;
using CoreEntity.Entity;
using CoreEntity.DAL;
using System.Collections.Concurrent;
using Newtonsoft.Json.Converters;
using Newtonsoft.Json;
using System.Data.SqlClient;
using Microsoft.Extensions.Primitives;
using Microsoft.Extensions.Caching.Memory;
using Jwt;
using PublicLibrary.Model;
using Newtonsoft.Json.Linq;
using SupplierWeb.Codes.mvc;
using SupplierWeb.Codes.Auth;
using Common.Config;

namespace SupplierWeb.Controllers
{
    [Route("web/org")]
    public class OrgController : BaseController
    {
        public OrgController(IMemoryCache cache, IApiClient client) : base(cache, client)
        {

        }
        private ConcurrentDictionary<int, Role> roleMap = new ConcurrentDictionary<int, Role>();
        public class TempTableResult
        {
            public int id { get; set; }
            public string permissionName { get; set; }
            public string permissionUrl { get; set; }
            public int roleId { get; set; }
            public int checkedValue { get; set; }
            public string permissionRule { get; set; }
            public string permissionRuleType { get; set; }
            public int relateId { get; set; }
            public string AuthType { get; set; }
        }
        public class TreeNode
        {
            public string parentValue { get; set; }
            public string label { get; set; }
            public int value { get; set; }

        }
        public class TempQuery
        {
            public int[] data { get; set; }
            public int roleId { get; set; }
        }
        public class SortContent
        {
            public Object content { get; set; }//权限内容
            public string code { get; set; }//权限id
            public int sort { get; set; }//权限序号
        }


        /// <summary>
        /// 获取组织机构列表
        /// </summary>
        /// <param name="filters"></param>
        /// <param name="pageIndex"></param>
        /// <param name="pageSize"></param>
        /// <param name="sortField"></param>
        /// <param name="sortDirection"></param>
        /// <param name="sumFields"></param>
        /// <param name="data"></param>
        /// <returns></returns>        
        [AuthPermission]
        [HttpPost, Route("index")]
        public JsonResult Indexp(QueryFilter[] filters, Int32 pageIndex, Int32 pageSize,
            string sortField, Int32 sortDirection, string[] sumFields, [FromBody]dynamic data)
        {
            if (data != null)
            {
                filters = data.filters.ToObject<QueryFilter[]>();
                pageIndex = data.pageIndex;
                pageSize = data.pageSize;
                sortField = data.sortField;
                sortDirection = data.sortDirection;
                sumFields = data.sumFields.ToObject<string[]>();
            }
            #region 获取机构列表
            DataTable dt = new DataTable();
            string result;
            IList<CM_Org> permss = new List<CM_Org>(0);

            List<SqlParameter> parameters = new List<SqlParameter>();
            string filterstr = QueryFilter.getFilterSqlParam(filters, out parameters, new CM_Org(),"A.");

            string direct = " desc ";
            if (sortDirection != 1)
            {
                direct = " asc";
            }

            int start = (pageIndex - 1) * pageSize;
            int end = (start + 1 + pageSize);

            string commandText0 = "select * from ";
            string commandText1 = "(" +
                "select A.*,row_number() over" +
                "(  order by " + sortField + " " + direct + " )  as rownum from " +
                "CM_Org as A  " +
                " where  1=1 " +
                    //" and A.CreationPerson = '" + userids + "'" +
                    filterstr +
            ")AAA ";
            string commandText2 = " where AAA.rownum>" + start + " and AAA.rownum<" + end;
            string commandText3 = commandText0 + commandText1 + commandText2;//-tanyang
            bool success = DataAccess.GetValues(commandText3, ref dt, parameters.ToArray(), out result);

            #endregion
            if (dt != null && dt.Rows.Count > 0)
            {

                // 把DataTable转换为IList<Permission>  
                permss = ModelConvertHelper<CM_Org>.ConvertToModel(dt);

                #region 获取权限的角色列表，角色列表
                ////角色列表
                //IList<CM_Org> roles = Roles();
                //// 把DataTable转换为IList<Role>  
                //if (roleMap.Count < roles.Count)
                //{
                //    foreach (Role role in roles)
                //    {
                //        roleMap.TryAdd(role.Id, role);
                //    }
                //}

                //foreach (CM_Org perms in permss)
                //{
                //    string direct1 = " desc ";
                //    dt = DataAccess.GetDataTable(Config.TablePrefix + "RoleRelatePermission", "Id", "*", "PermissionId=" + perms.Id+ " and IsDelete = 0 ", "", "Id" + direct1, 1, 100,out var msg);
                //    // 把DataTable转换为IList<RoleRelatePermission>  
                //    if (dt != null && dt.Rows.Count > 0)
                //    {
                //        IList<RoleRelatePermission> permRelates = ModelConvertHelper<RoleRelatePermission>.ConvertToModel(dt);

                //        //List<Role> listRoles = new List<Role>();
                //        List<int> superior_list = new List<int>(0);
                //        foreach (RoleRelatePermission permsr in permRelates)
                //        {
                //            //Role role;
                //            //if (roleMap.TryGetValue(permsr.RoleId, out role))
                //            //{
                //            //    listRoles.Add(role);
                //            //}
                //            superior_list.Add(permsr.RoleId);
                //        }
                //        //perms.RoleList = listRoles;
                //        perms.Roleids = string.Join(",", superior_list.ToArray());
                //    }
                //}
                #endregion
            }
            string result1;
            long totalcount = DataAccess.GetRowCountDefine("select count(OrgId) from " + commandText1, parameters.ToArray(), out result1);
            IsoDateTimeConverter timejson = new IsoDateTimeConverter
            {
                DateTimeFormat = "yyyy'-'MM'-'dd' 'HH':'mm':'ss"
            };
            //IList<Menu> menus = Permission.Convert(permss);
            var jsonData = JsonConvert.SerializeObject(permss, timejson);

            return Json(new
            {
                items = JsonConvert.DeserializeObject(jsonData),
                sum = new { },
                totalCount = totalcount
            });
        }

        /// <summary>
        /// 组织机构添加
        /// </summary>
        /// <param name="OrgId"></param>
        /// <param name="ParentOrgId"></param>
        /// <param name="UserId"></param>
        /// <param name="OrgCode"></param>
        /// <param name="OrgName"></param>
        /// <param name="FullCode"></param>
        /// <param name="FullName"></param>
        /// <param name="RoleId"></param>
        /// <param name="data"></param>
        /// <returns></returns>
        [AuthPermission]
        [HttpPost, Route("add")]
        public JsonResult Addp(
            String OrgId,String ParentOrgId,String UserId,
            string OrgCode, string OrgName, 
            string FullCode, Int32 FullName,String RoleId,[FromBody]dynamic data
        )
        {
            if (data != null)
            {
                OrgId = data.id;
                ParentOrgId = data.ParentOrgId;
                UserId = data.UserId;
                OrgCode = data.OrgCode;
                OrgName = data.OrgName;
                FullCode = data.FullCode;
                FullName = data.FullName;
                RoleId = data.RoleId;
            }

            #region 添加机构节点
            String uuid = System.Guid.NewGuid().ToString("N");
            string commandText = "INSERT INTO CM_Org (ParentOrgId," +
                "OrgCode,OrgName,FullCode,FullName,OrgId)" +
                " VALUES (@ParentOrgId,@OrgCode,@OrgName,@FullCode,@FullName,'"+ uuid + "')";

            //String orgRoleId = System.Guid.NewGuid().ToString("N");
            //string commandText1 = "INSERT INTO CM_OrgRole (OrgRoleId,OrgId,RoleId)" +
            //    " VALUES ('"+ orgRoleId + "','" + uuid + "','"+ RoleId +"')";

            //准备参数
            //List<List<Object>> orgRoles = new List<List<Object>>();
            //orgRoles.Add(new List<Object>() { "OrgRoleId", orgRoleId });
            //orgRoles.Add(new List<Object>() { "OrgId", uuid });
            //orgRoles.Add(new List<Object>() { "RoleId", RoleId });
            string result;
            //string result1;
            //准备参数
            List<List<Object>> parameters = new List<List<Object>>();
            parameters.Add(new List<Object>() { "ParentOrgId", ParentOrgId });
            parameters.Add(new List<Object>() { "UserId", UserId });
            parameters.Add(new List<Object>() { "OrgCode", OrgCode });
            parameters.Add(new List<Object>() { "OrgName", OrgName });
            parameters.Add(new List<Object>() { "FullCode", FullCode });
            parameters.Add(new List<Object>() { "FullName", FullName});
            //parameters.Add(new List<Object>() { "UserId", System.Guid.NewGuid().ToString("N")});

            List<SqlParameter> parameters1 = DataAccess.ToParameters(parameters);
            int success = DataAccess.ExecuteCommand(commandText, parameters1, out result);

            //List<SqlParameter> orgRoles1 = DataAccess.ToParameters(orgRoles);
            //int success1 = DataAccess.ExecuteCommand(commandText1, orgRoles1, out result1);
            #endregion
            //#region 添加角色
            //int id = BaseDAL.GetId(Config.TablePrefix + "Permission");
            //RoleDAL.SaveRolesRelatePermission(id, RoleIdis);
            //#endregion

            return Json(new
            {
                //success = success,success1
                success = success
            });
        }

        /// <summary>
        /// 获取角色
        /// </summary>
        /// <returns></returns>
        [HttpGet, Route("roles")]
        public ActionResult Roles()
        {

            var permss = GetTopRoles();
            IList<Option> options = new List<Option>();
            foreach (CM_Role perms in permss)
            {

                var option = new Option() { label = perms.RoleName, value = perms.RoleId.ToString() };
                options.Add(option);
            }
            var jsonData = JsonConvert.SerializeObject(options);

            return Content(jsonData);
        }



        /// <summary>
        /// 组织机构修改
        /// </summary>
        /// <param name="OrgId">组织id</param>
        /// <param name="ParentOrgId">父组织id</param>
        /// <param name="OrgCode"></param>
        /// <param name="OrgName"></param>
        /// <param name="FullCode"></param>
        /// <param name="FullName"></param>
        /// <param name="UserId"></param>
        /// <param name="data"></param>
        /// <param name="IsDelete"></param>
        /// <returns></returns>
        [AuthPermission]
        [HttpPost, Route("edit")]
        public JsonResult editp(string OrgId,
             string ParentOrgId, string OrgCode, 
             string OrgName,
             string FullCode,
             string FullName, string UserId, 
             //string RoleId,
             [FromBody]dynamic data
            //, Int32 IsDelete
            )
        
        {
            if (data != null)
            {
                //Newtonsoft.Json.Linq.JArray
                OrgId = data.OrgId;
                ParentOrgId = data.ParentOrgId;
                OrgCode = data.OrgCode;
                OrgName = data.OrgName;
                FullCode = data.FullCode;
                FullName = data.FullName;
                UserId = data.UserId;
                //RoleId = data.RoleId;
            }
            //string[] RoleIdss = RoleId.Split(",");
            //int[] RoleIdis = Array.ConvertAll(RoleIdss, s => Convert.ToInt32(s));
            #region 编辑用户
            string commandText = "UPDATE  CM_Org " +
                " SET OrgId=@OrgId, ParentOrgId = @ParentOrgId,";
            commandText += " OrgCode = @OrgCode" +
                ",OrgName = @OrgName" +
               " ,FullCode = @FullCode" +
                ",FullName = @FullName" +
                ",UserId = @UserId" +
                //",RoleId = @RoleId" +
                " WHERE OrgId= @OrgId";
            string result;
            //准备参数
            List<List<Object>> parameters = new List<List<Object>>();
                parameters.Add(new List<Object>() { "OrgId", OrgId });
                parameters.Add(new List<Object>() { "ParentOrgId", ParentOrgId });
                parameters.Add(new List<Object>() { "OrgCode", OrgCode });
                parameters.Add(new List<Object>() { "OrgName", OrgName });
                parameters.Add(new List<Object>() { "FullCode", FullCode });
                parameters.Add(new List<Object>() { "FullName", FullName });
                parameters.Add(new List<Object>() { "UserId", UserId });
                //parameters.Add(new List<Object>() { "RoleId", RoleId });

            List<SqlParameter> parameters1 = DataAccess.ToParameters(parameters);
            int success = DataAccess.ExecuteCommand(commandText, parameters1, out result);
            #endregion

            #region 角色
            //RoleDAL.SaveRolesRelatePermission(OrgId, RoleIdis);
            #endregion

            return Json(new
            {
                success = success,
                result = result,
            });
        }
        

        /// <summary>
        /// 组织机构删除
        /// </summary>
        /// <param name="id"></param>
        /// <returns></returns>
        [AuthPermission]
        [HttpPost, Route("delete")]
        public ActionResult Delete(string id)
        {
            //SQL语句
            string commandText = "DELETE FROM CM_Org WHERE OrgId = @id";
            string commandText1 = "DELETE FROM CM_OrgRole WHERE OrgId = @id";
            //准备参数
            List<List<Object>> parameters = new List<List<Object>>();
            parameters.Add(new List<Object>() { "id", id });

            string result = "";
            string result1 = "";
            //参数转换
            List<SqlParameter> parameters1 = DataAccess.ToParameters(parameters);
            //执行并返回结果
            int success = DataAccess.ExecuteCommand(commandText, parameters1, out result);
            int success1 = DataAccess.ExecuteCommand(commandText1, parameters1, out result1);

            //如果CM_Org和CM_OrgRole表记录都删除成功
            int success2 = 0;
            if (success > 0 && success1 > 0)
            {
                success2 = success;//此处应该是success2 = success+success1,由于不清楚前端是怎么接收处理的，暂且这么处理。
            }
            else
            {
                success2 = -1;
            }
            return Content("{success:"+ success2 + "}");
        }


        /// <summary>
        /// 权限列表
        /// </summary>
        /// <param name="staffid"></param>
        /// <returns></returns>
        [HttpGet, Route("menus")]
        public ActionResult menus(string staffid)
        {
            HttpRequest request = HttpContext.Request;
            StringValues oo;
            request.Headers.TryGetValue("token", out oo);
            if (oo.Count > 0 && oo.ToArray()[0] != "")
            {
                staffid = oo.ToArray()[0];
            }

            //取token
            var token = (string)_cache.Get(staffid);
            var secret = TokenConfig.SecretKey;
            Dictionary<string, object> data;
            Object roleid;
            Int64 roleid1;
            string jsonData = "";
            if (token != null)
            {

                try
                {
                    data = JsonWebToken.DecodeToObject<Dictionary<string, object>>(token, secret);

                    data.TryGetValue("roleid", out roleid);
                    roleid1 = (Int64)roleid;

                    var options = RoleDAL.GetPermissions(roleid1);
                    var permissions = Permission.Convert(options);
                    jsonData = JsonConvert.SerializeObject(permissions);
                }
                catch (SignatureVerificationException)
                {
                    // Given token is either expired or hashed with an unsupported algorithm.
                }
            }

            return Content(jsonData
                );
        }


        [HttpGet, Route("parents")]
        public ActionResult parents()
        {

            var permss = RoleDAL.GetTopPermissions();
            IList<Option> options = new List<Option>();
            foreach (Permission perms in permss)
            {
                var option = new Option() { label = perms.PermissionName, value = perms.Id.ToString(), disabled = perms.IsDelete };
                options.Add(option);
            }
            var jsonData = JsonConvert.SerializeObject(options);

            return Content(jsonData
                );
        }
      
        
        [HttpGet, Route("authtype")]
        public ActionResult AuthType()
        {
            
            IList<Option> options = new List<Option>();
                var option = new Option() { label = "界面", value = "U" ,disabled = false };
                options.Add(option);
            var option1 = new Option() { label = "操作", value = "O", disabled = false };
            options.Add(option1);
            var option2 = new Option() { label = "按钮", value = "A", disabled = false };
            options.Add(option2);
            var jsonData = JsonConvert.SerializeObject(options);

            return Content(jsonData
                );
        }


        [HttpGet, Route("permissions")]
        public ActionResult Permissions()
        {
            string roleid = getStaff("roleid");
            if(roleid == null || roleid == "")
            {
                return Json(new { success = false,msg="没有登陆" });
            }
            Dictionary<string, Permission> permission = PermissionHelper.Permissions(Convert.ToInt32(roleid));

            return Json(permission);
        }


        public IList<CM_Role> GetTopRoles()
        {
            IList<CM_Role> permsList = new List<CM_Role>(0);

            DataTable dt = new DataTable();
            string result = string.Empty;
            var sortDirection = 1;
            var pageIndex = 1;
            var pageSize = Config.MaxPageSize;

            string direct = " desc ";
            if (sortDirection != 1)
                direct = " asc";
            int start = (pageIndex - 1) * pageSize;
            int end = (start + 1 + pageSize);
            string commandText = "select * from (" +
                "select A.*, row_number() over" +
                "(  order by A.RoleId " + direct + " )  as rownum" +
                "  from CM_Role A ) AAA" +
                " where AAA.rownum>" + start + " and AAA.rownum<" + end +
                " ";


            List<List<Object>> parameters1 = new List<List<Object>>();
            parameters1.Add(new List<Object>() { "RoleId", 0 });
            bool result1 = DataAccess.GetValues(commandText, ref dt, DataAccess.ToParameters(parameters1).ToArray(), out result);

            if (result1 && dt.Rows.Count > 0)
            {
                // 把DataTable转换为IList<Role>  
                permsList = ModelConvertHelper<CM_Role>.ConvertToModel(dt);
            }
            return permsList;
        }

    }

}