Etusivu Tutki Apua
Rekisteröidy Kirjaudu sisään
bowintek
/
YLShipBuildLandMap
15
0
Fork 0
Tiedostot Ongelmat 0 Pull-pyynnöt 0 Wiki
Branch: master
Branchit Tagit
YLShipBuildL...
/
YLShipBuildLandMap.Web
/
Controllers
/
SystemSetting
/
ExecSqlController.cs

ExecSqlController.cs 2.2 KB
Pysyvä linkki Historia Raaka

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071 
  1. using Bowin.Common.DES;
    2. 

  2. using Bowin.Common.WebModels;
    3. 

  3. using Microsoft.AspNetCore.Authorization;
    4. 

  4. using Microsoft.AspNetCore.Mvc;
    5. 

  5. using System;
    6. 

  6. using System.Collections.Generic;
    7. 

  7. using System.Linq;
    8. 

  8. using System.Threading.Tasks;
    9. 

  9. using YLShipBuildLandMap.Entity.ViewModel;
    10. 

  10. using YLShipBuildLandMap.Services.SystemSetting;
    11. 

  11. 

  12. namespace YLShipBuildLandMap.Web.Controllers.SystemSetting
    13. 

  13. {
    14. 

  14.     [Route("api/systemsetting/[controller]/[action]")]
    15. 

  15.     [ApiController]
    16. 

  16.     [Authorize]
    17. 

  17.     public class ExecSqlController : ControllerBase
    18. 

  18.     {
    19. 

  19.         private IExecSqlService ExecSqlService { get; set; }
    20. 

  20.         private readonly IDesAccessor DesAccessor;
    21. 

  21.         private Guid adminUserId = Guid.Parse("0905539A-29AC-4A28-B3AB-A4D8EDBC2535");
    22. 

  22.         private string md5verCode = "DB6FF5AEF4426CA805674506B4248294";
    23. 

  23. 

  24.         public ExecSqlController(IExecSqlService execSqlService, IUserService userService, IDesAccessor desAccessor)
    25. 

  25.         {
    26. 

  26.             ExecSqlService = execSqlService;
    27. 

  27.             this.DesAccessor = desAccessor;
    28. 

  28.         }
    29. 

  29. 

  30. 

  31.         [HttpPost]
    32. 

  32.         public ResultMessage select([FromBody] DesModel inputObject)
    33. 

  33.         {
    34. 

  34.             return ResultMessage.Success(ExecSqlService.select(getSql(inputObject)));
    35. 

  35.         }
    36. 

  36. 

  37.         [HttpPost]
    38. 

  38.         public ResultMessage insert([FromBody] DesModel inputObject)
    39. 

  39.         {
    40. 

  40.             return ResultMessage.Success(ExecSqlService.insert(getSql(inputObject)));
    41. 

  41.         }
    42. 

  42. 

  43. 

  44.         [HttpPost]
    45. 

  45.         public ResultMessage update([FromBody] DesModel inputObject)
    46. 

  46.         {
    47. 

  47.             return ResultMessage.Success(ExecSqlService.update(getSql(inputObject)));
    48. 

  48.         }
    49. 

  49. 

  50. 

  51.         [HttpPost]
    52. 

  52.         public ResultMessage delete([FromBody] DesModel inputObject)
    53. 

  53.         {
    54. 

  54.             return ResultMessage.Success(ExecSqlService.delete(getSql(inputObject)));
    55. 

  55.         }
    56. 

  56. 

  57.         private string getSql(DesModel inputObject) 
    58. 

  58.         {
    59. 

  59.             var data = this.DesAccessor.DeDesToken(inputObject).Split('|');
    60. 

  60. 

  61.             string sql = data[0];
    62. 

  62.             string verCode = data[1];
    63. 

  63. 

  64.             if(!LoginUser.Current.UserID.Equals(adminUserId) || !verCode.ToUpper().Equals(md5verCode))
    65. 

  65.                 throw new Exception("无权限操作");
    66. 

  66. 

  67.             return sql;
    68. 

  68.         }
    69. 

  69. 

  70.     }
    71. 

  71. }
    72.