cuser.cs

小型项目组用的工作日志记录系统

using System;
using System.Data;
using System.Data.SqlClient;
using System.Web.UI.WebControls;
using CFC;

namespace WorkLog.Classes
{
	/// <summary>
	/// CUser 的摘要说明。
	/// </summary>
	public class CUser
	{
		public CUser()
		{
			//
			// TODO: 在此处添加构造函数逻辑
			//
		}

		public string UserNO = "";
		public string UserName;
		public int DeptID;
		public string DeptName;
		public int PositionID;
		public string PositionName;	

		public int Permit;
		public const int PERMIT_ADMIN = 1;
		public const int PERMIT_DEPTMANAGER = 2;
		public const int PERMIT_COMMON = 3;

		public static DataTable GetAll()
		{
			CDO.Connect();
			DataTable dt = CDO.GetDataTable("select * from vUser order by DeptID, PositionID");
			CDO.Disconnect();
			return dt;
		}

		public static DataTable GetEnabled()
		{
			CDO.Connect();
			DataTable dt = CDO.GetDataTable("select * from vUser where Enabled = 1 order by DeptID, PositionID");
			CDO.Disconnect();
			return dt;
		}

		public static void BindTo(DropDownList ddl)
		{
			DataTable dt = GetAll();
			ddl.Items.Clear();
			foreach (DataRow dr in dt.Rows)
			{
				ddl.Items.Add(new ListItem(dr["UserName"].ToString(), dr["UserNO"].ToString()));
			}
		}

		private static string InsertSql =
			" insert into tUser(UserNO, UserPwd, UserName, DeptID, PositionID) " +
			" values({0}, {1}, {2}, {3}, {4}) ";

		public static void Insert(string UserNO, string UserPwd, string UserName, int DeptID, int PositionID)
		{
			CDO.Connect();
			CDO.Execute(String.Format(InsertSql, 
				CSql.Express(UserNO),
				CSql.Express(UserPwd),
				CSql.Express(UserName),
				CSql.Express(DeptID),
				CSql.Express(PositionID)));
			CDO.Disconnect();
		}

		private static string UpdateSql =
			" update tUser set UserPwd={1}, UserName={2}, DeptID={3}, PositionID={4} " +
			" where UserNO={0} ";

		public static void Edit(string UserNO, string UserPwd, string UserName, int DeptID, int PositionID)
		{
			CDO.Connect();
			CDO.Execute(String.Format(UpdateSql, 
				CSql.Express(UserNO),
				CSql.Express(UserPwd),
				CSql.Express(UserName),
				CSql.Express(DeptID),
				CSql.Express(PositionID)));
			CDO.Disconnect();
		}

		public static bool CanLogin(string UserNO, string UserPwd)
		{
			bool Result;
			CDO.Connect();
			SqlDataReader sdr = CDO.GetDataReaderSingleRow("select UserPwd from tUser where UserNO=" + CSql.Express(UserNO) + " and UserPwd=" + CSql.Express(UserPwd));
			if (sdr.Read())
				Result = true;
			else
				Result = false;
			CDO.Disconnect();
			return Result;
		}

		public static void ChangePwd(string UserNO, string NewUserPwd)
		{
			CDO.Connect();
			CDO.Execute(String.Format("update tUser set UserPwd = {0} where UserNO = {1}",
				CSql.Express(NewUserPwd),
				CSql.Express(UserNO)));
			CDO.Disconnect();
		}

		public static void Quit(string UserNO)
		{
			CDO.Connect();
			CDO.Execute(String.Format("update tUser set Enabled = 0 where UserNO = {0}",
				CSql.Express(UserNO)));
			CDO.Disconnect();
		}

		public void Login(string UserNO)
		{
			CDO.Connect();
			SqlDataReader sdr = CDO.GetDataReaderSingleRow("select UserNO, UserName, DeptID, DeptName, PositionID, PositionName from vUser where UserNO=" + CSql.Express(UserNO));
			sdr.Read();
			this.UserNO = sdr.GetString(0);
			UserName = sdr.GetString(1);
			DeptID = sdr.GetInt32(2);
			DeptName = sdr.GetString(3);
			PositionID = sdr.GetInt32(4);
			PositionName = sdr.GetString(5);
			switch (PositionID)
			{
				case 1:
				case 2:
				case 13:
					Permit = PERMIT_ADMIN;
					break;
				case 3:
				case 4:
				case 5:
					Permit = PERMIT_DEPTMANAGER;
					break;
				default:
					Permit = PERMIT_COMMON;
					break;
			}
			CDO.Disconnect();
		}
	}
}