test/Member/SupplierWeb/Controllers/RoleController.cs

using JCSoft.WX.Framework.Api;
using Microsoft.AspNetCore.Mvc;
using Microsoft.AspNetCore.Http;
using System;
using System.Collections.Generic;
using System.Linq;
using System.Threading.Tasks;
using Common.Wechat;
using Common;
using System.Data;
using Common.Model;
using ZcPeng.PublicLibrary;
using CoreEntity.Entity;
using CoreEntity.DAL;
using System.Collections.Concurrent;
using Newtonsoft.Json.Converters;
using Newtonsoft.Json;
using System.Data.SqlClient;
using Microsoft.Extensions.Primitives;
using Microsoft.Extensions.Caching.Memory;
using Jwt;
using PublicLibrary.Model;
using Newtonsoft.Json.Linq;
using SupplierWeb.Codes.mvc;
using SupplierWeb.Codes.Auth;
using Common.Config;

namespace SupplierWeb.Controllers
{
    [Route("web/Role")]
    public class RoleController : BaseController
    {
        public RoleController(IMemoryCache cache, IApiClient client) : base(cache, client)
        {

        }
        private ConcurrentDictionary<String, Role> roleMap = new ConcurrentDictionary<String, Role>();
        public class TempTableResult
        {
            public int id { get; set; }
            public string permissionName { get; set; }
            public string permissionUrl { get; set; }
            public int Id { get; set; }
            public int checkedValue { get; set; }
            public string permissionRule { get; set; }
            public string permissionRuleType { get; set; }
            public int relateId { get; set; }
            public string AuthType { get; set; }
        }
        public class TempRoleResult
        {
            public string parentValue { get; set; }
            public string label { get; set; }
            public int value { get; set; }

        }
        public class TempQuery
        {
            public int[] data { get; set; }
            public int Id { get; set; }
        }
        public class SortContent
        {
            public Object content { get; set; }//权限内容
            public string code { get; set; }//权限id
            public int sort { get; set; }//权限序号
        }


        /// <summary>
        /// 角色列表
        /// </summary>
        /// <param name="filters"></param>
        /// <param name="pageIndex"></param>
        /// <param name="pageSize"></param>
        /// <param name="sortField"></param>
        /// <param name="sortDirection"></param>
        /// <param name="sumFields"></param>
        /// <param name="data"></param>
        /// <returns></returns>
        [AuthPermission]
        [HttpPost, Route("index")]
        public JsonResult Indexp(QueryFilter[] filters, Int32 pageIndex, Int32 pageSize,
            string sortField, Int32 sortDirection, string[] sumFields, [FromBody]dynamic data)
        {
            //取出参数
            if (data != null)
            {
                filters = data.filters.ToObject<QueryFilter[]>();
                pageIndex = data.pageIndex;
                pageSize = data.pageSize;
                sortField = data.sortField;
                sortDirection = data.sortDirection;
                sumFields = data.sumFields.ToObject<string[]>();
            }
            #region 获取角色列表
            DataTable dt = new DataTable();
            string result;
            IList<Role> permss = new List<Role>(0);

            List<SqlParameter> parameters = new List<SqlParameter>();
            string filterstr = QueryFilter.getFilterSqlParam(filters, out parameters, new Role(), "A.");

            string direct = " desc ";
            if (sortDirection != 1)
            {
                direct = " asc";
            }

            int start = (pageIndex - 1) * pageSize;
            int end = (start + 1 + pageSize);

            string commandText0 = "select * from ";
            string commandText1 = "(" +
                "select A.*,row_number() over" +
                "(  order by A.Id " + direct + " )  as rownum from " +
                "SUP_Role as A  " +
                " where  1=1 " +
                    //" and A.CreationPerson = '" + userids + "'" +
                    filterstr +
            ")AAA ";
            string commandText2 = " where AAA.rownum>" + start + " and AAA.rownum<" + end;
            string commandText3 = commandText0 + commandText1 + commandText2;
            bool success = DataAccess.GetValues(commandText3, ref dt, parameters.ToArray(), out result);

            #endregion
            if (dt != null && dt.Rows.Count > 0)
            {
                // 把DataTable转换为IList<Permission>  
                permss = ModelConvertHelper<Role>.ConvertToModel(dt);

                #region 获取权限的角色列表，角色列表
                //角色列表
                IList<Role> roles = GetRoles();
                // 把DataTable转换为IList<Role>  
                if (roleMap.Count < roles.Count)
                {
                    foreach (Role role in roles)
                    {
                        roleMap.TryAdd(role.Id.ToString(), role);
                    }
                }
                #region
                foreach (Role perms in permss)
                {
                    string direct1 = " desc ";
                    dt = DataAccess.GetDataTable("Role", "Id", "*", "Id=" + perms.Id, "", "Id" + direct1, 1, 100, out var msg);
                    // 把DataTable转换为IList<RoleRelatePermission>  
                    if (dt != null && dt.Rows.Count > 0)
                    {
                        IList<Role> permRelates = ModelConvertHelper<Role>.ConvertToModel(dt);

                        List<Role> listRoles = new List<Role>();
                        List<int> superior_list = new List<int>(0);
                        foreach (Role permsr in permRelates)
                        {
                            Role role;
                            if (roleMap.TryGetValue(permsr.Id.ToString(), out role))
                            {
                                listRoles.Add(role);
                            }
                            superior_list.Add(Convert.ToInt32(permsr.Id));
                        }
                        //perms.RoleList = listRoles;
                        perms.Id = Convert.ToInt32(string.Join(",", superior_list.ToArray()));
                    }
                }
                #endregion
                #endregion
            }
            string result1;
            long totalcount = DataAccess.GetRowCountDefine("select count(Id) from " + commandText1, parameters.ToArray(), out result1);
            IsoDateTimeConverter timejson = new IsoDateTimeConverter
            {
                DateTimeFormat = "yyyy'-'MM'-'dd' 'HH':'mm':'ss"
            };
            //IList<Menu> menus = Permission.Convert(permss);
            var jsonData = JsonConvert.SerializeObject(permss, timejson);

            return Json(new
            {
                items = JsonConvert.DeserializeObject(jsonData),
                sum = new { },
                totalCount = totalcount
            });
        }

        /// <summary>
        /// 新增角色
        /// </summary>
        /// <param name="Id"></param>
        /// <param name="RoleCode"></param>
        /// <param name="RoleName"></param>
        /// <param name="data"></param>
        /// <returns></returns>
        [AuthPermission]
        [HttpPost, Route("add")]
        public JsonResult Addp(
            String Id, String RoleCode,
            string RoleName, [FromBody]dynamic data
        )
        {
            int RoleDepartmentId = 0;
            string RoleRemark = "";
            int IsDelete = 0;
            int CreationPerson = 0;
            DateTime CreationDate = Convert.ToDateTime("1900-01-01 00:00:00");
            int LastModifiedPerson = 0;
            DateTime LastModified = Convert.ToDateTime("1900-01-01 00:00:00");
            if (data != null)
            {
                Id = data.id;
                RoleName = data.RoleName;
                //RoleDepartmentId = data.RoleDepartmentId;
                RoleRemark = data.RoleRemark;
                if (data.IsDelete != null) { IsDelete = data.IsDelete; }
                if (data.CreationPerson != null) { CreationPerson = data.CreationPerson; }
                if (data.CreationDate != null) { CreationDate = data.CreationDate; }
                if (data.LastModifiedPerson != null) { LastModifiedPerson = data.LastModifiedPerson; }
                if (data.LastModified != null) {LastModified = data.LastModified; }
            }

            #region 添加角色
            object rid = "";
            string sql = "SELECT MAX(Id) AS ID from sup_role";
            string result2 = "";
            List<SqlParameter> parameters3 = new List<SqlParameter>();
            bool success1 = DataAccess.GetOneValue(sql,parameters3.ToArray(),out rid,out result2);
            RoleDepartmentId = Convert.ToInt32(rid.ToString());
            //String uuid = System.Guid.NewGuid().ToString("N");

            string commandText = "INSERT INTO SUP_ROLE (" +
                "RoleName,RoleDepartmentId,RoleRemark,IsDelete,CreationPerson," +
                "CreationDate,LastModifiedPerson,LastModified)" +
                " VALUES (@RoleName,@RoleDepartmentId,@RoleRemark,@IsDelete," +
                "@CreationPerson,@CreationDate,@LastModifiedPerson,@LastModified)";
            string result;
            //准备参数
            List<List<Object>> parameters = new List<List<Object>>();
            //parameters.Add(new List<Object>() { "Id", rrid });
            parameters.Add(new List<Object>() { "RoleName", RoleName });
            parameters.Add(new List<Object>() { "RoleDepartmentId", RoleDepartmentId });
            parameters.Add(new List<Object>() { "RoleRemark", RoleRemark });
            parameters.Add(new List<Object>() { "IsDelete", IsDelete });
            parameters.Add(new List<Object>() { "CreationPerson", CreationPerson });
            parameters.Add(new List<Object>() { "CreationDate", CreationDate });
            parameters.Add(new List<Object>() { "LastModifiedPerson", LastModifiedPerson });
            parameters.Add(new List<Object>() { "LastModified", LastModified });

            List<SqlParameter> parameters1 = DataAccess.ToParameters(parameters);
            int success = DataAccess.ExecuteCommand(commandText, parameters1, out result);
            #endregion

            return Json(new
            {
                success = success

            });
        }


        /// <summary>
        /// 修改角色
        /// </summary>
        /// <param name="Id"></param>
        /// <param name="RoleCode"></param>
        /// <param name="RoleName"></param>
        /// <param name="data"></param>
        /// <returns></returns>
        [AuthPermission]
        [HttpPost, Route("edit")]
        public JsonResult editp(String Id, String RoleCode,
            string RoleName, [FromBody]dynamic data)
        {
            int RoleDepartmentId = 0;
            string RoleRemark = "";
            int IsDelete = 0;
            int CreationPerson = 0;
            DateTime CreationDate = Convert.ToDateTime("1900-01-01 00:00:00");
            int LastModifiedPerson = 0;
            DateTime LastModified = Convert.ToDateTime("1900-01-01 00:00:00");
            if (data != null)
            {
                Id = data.Id;
                RoleName = data.RoleName;
                RoleDepartmentId = data.RoleDepartmentId;
                RoleRemark = data.RoleRemark;
                if (data.IsDelete != null) { IsDelete = data.IsDelete; }
                if (data.CreationPerson != null) { CreationPerson = data.CreationPerson; }
                if (data.CreationDate != null) { CreationDate = data.CreationDate; }
                if (data.LastModifiedPerson != null) { LastModifiedPerson = data.LastModifiedPerson; }
                if (data.LastModified != null) { LastModified = data.LastModified; }
            }

            #region 编辑用户
            string commandText = "UPDATE SUP_Role " +
                " SET RoleName = @RoleName,RoleDepartmentId = @RoleDepartmentId,RoleRemark = @RoleRemark," +
                "IsDelete = @IsDelete,CreationPerson = @CreationPerson,CreationDate = @CreationDate," +
                "LastModifiedPerson = @LastModifiedPerson,LastModified = @LastModified " +
                "WHERE Id= @Id";
            string result;
            //准备参数
            List<List<Object>> parameters = new List<List<Object>>();
            parameters.Add(new List<Object>() { "Id", Id });
            parameters.Add(new List<Object>() { "RoleName", RoleName });
            parameters.Add(new List<Object>() { "RoleDepartmentId", RoleDepartmentId });
            parameters.Add(new List<Object>() { "RoleRemark", RoleRemark });
            parameters.Add(new List<Object>() { "IsDelete", IsDelete });
            parameters.Add(new List<Object>() { "CreationPerson", CreationPerson });
            parameters.Add(new List<Object>() { "CreationDate", CreationDate });
            parameters.Add(new List<Object>() { "LastModifiedPerson", LastModifiedPerson });
            parameters.Add(new List<Object>() { "LastModified", LastModified });

            List<SqlParameter> parameters1 = DataAccess.ToParameters(parameters);
            int success = DataAccess.ExecuteCommand(commandText, parameters1, out result);
            #endregion

            return Json(new
            {
                success = success
            });
        }

        /// <summary>
        /// 删除角色
        /// </summary>
        /// <param name="id"></param>
        /// <returns></returns>
        [AuthPermission]
        [HttpPost, Route("delete")]
        public ActionResult Delete(string Id)
        {
            //准备SQL语句
            string commandText = "DELETE FROM SUP_Role WHERE Id = @Id";

            //准备参数
            List<List<Object>> parameters = new List<List<Object>>();
            parameters.Add(new List<Object>() { "Id", Id });

            string result = "";
            //转换参数
            List<SqlParameter> parameters1 = DataAccess.ToParameters(parameters);
            //执行并返回结果
            int success = DataAccess.ExecuteCommand(commandText, parameters1, out result);

        
            return Content("{success:" + success + "}");
        }


        [HttpGet, Route("roles")]
        public ActionResult Roles()
        {

            var permss = GetTopRoles();
            IList<Option> options = new List<Option>();
            foreach (Role perms in permss)
            {

                var option = new Option() { label = perms.RoleName, value = perms.Id.ToString() };
                options.Add(option);
            }
            var jsonData = JsonConvert.SerializeObject(options);

            return Content(jsonData);
        }


        /// <summary>
        /// 权限列表
        /// </summary>
        /// <param name="staffid"></param>
        /// <returns></returns>
        [HttpGet, Route("menus")]
        public ActionResult menus(string staffid)
        {
            HttpRequest request = HttpContext.Request;
            StringValues oo;
            request.Headers.TryGetValue("token", out oo);
            if (oo.Count > 0 && oo.ToArray()[0] != "")
            {
                staffid = oo.ToArray()[0];
            }

            //取token
            var token = (string)_cache.Get(staffid);
            var secret = TokenConfig.SecretKey;
            Dictionary<string, object> data;
            Object Id;
            Int64 Id1;
            string jsonData = "";
            if (token != null)
            {

                try
                {
                    data = JsonWebToken.DecodeToObject<Dictionary<string, object>>(token, secret);

                    data.TryGetValue("Id", out Id);
                    Id1 = (Int64)Id;

                    var options = RoleDAL.GetPermissions(Id1);
                    var permissions = Permission.Convert(options);
                    jsonData = JsonConvert.SerializeObject(permissions);
                }
                catch (SignatureVerificationException)
                {
                    // Given token is either expired or hashed with an unsupported algorithm.
                }
            }

            return Content(jsonData
                );
        }


        [HttpGet, Route("authtype")]
        public ActionResult AuthType()
        {

            IList<Option> options = new List<Option>();
            var option = new Option() { label = "界面", value = "U", disabled = false };
            options.Add(option);
            var option1 = new Option() { label = "操作", value = "O", disabled = false };
            options.Add(option1);
            var option2 = new Option() { label = "按钮", value = "A", disabled = false };
            options.Add(option2);
            var jsonData = JsonConvert.SerializeObject(options);

            return Content(jsonData
                );
        }

        [HttpGet, Route("permissions")]
        public ActionResult Permissions()
        {
            string Id = getStaff("Id");
            if (Id == null || Id == "")
            {
                return Json(new { success = false, msg = "没有登陆" });
            }
            Dictionary<string, Permission> permission = PermissionHelper.Permissions(Convert.ToInt32(Id));

            return Json(permission);
        }


        public IList<Role> GetTopRoles()
        {
            IList<Role> permsList = new List<Role>(0);

            DataTable dt = new DataTable();
            string result = string.Empty;
            var sortDirection = 1;
            var pageIndex = 1;
            var pageSize = Config.MaxPageSize;

            string direct = " desc ";
            if (sortDirection != 1)
                direct = " asc";
            int start = (pageIndex - 1) * pageSize;
            int end = (start + 1 + pageSize);
            string commandText = "select * from (" +
                "select A.*, row_number() over" +
                "(  order by A.Id " + direct + " )  as rownum" +
                "  from Role A ) AAA" +
                " where AAA.rownum>" + start + " and AAA.rownum<" + end +
                " ";


            List<List<Object>> parameters1 = new List<List<Object>>();
            parameters1.Add(new List<Object>() { "Id", 0 });
            bool result1 = DataAccess.GetValues(commandText, ref dt, DataAccess.ToParameters(parameters1).ToArray(), out result);

            if (result1 && dt.Rows.Count > 0)
            {
                // 把DataTable转换为IList<Role>  
                permsList = ModelConvertHelper<Role>.ConvertToModel(dt);
            }
            return permsList;
        }

        public static IList<Role> GetRoles()
        {
            IList<Role> roleList = new List<Role>(0);

            DataTable result;

            string direct = " desc ";

            result = DataAccess.GetDataTable("Role", "Id", "Id,RoleName,RoleCode", "", "", "Id" + direct, 1, 100, out var msg);
            if (result != null && result.Rows.Count > 0)
            {
                // 把DataTable转换为IList<Role>  
                roleList = ModelConvertHelper<Role>.ConvertToModel(result);
            }
            return roleList;
        }

    }
}