C#管理一笔资金

时间:2014-08-18 07:59:46

标签: c# grant

我遇到管理问题,为两个/三个不同区域的用户启用了授权,例如,拥有此个人资料的用户我没有问题:

User = Foo 
Area = East 
Level = 2

相反,对于用户个人资料:

User = Pluto 
Area = East 
Area = West 
Level = 2

根据成员资格区域和预期级别(0,1和2)对授权用户的表执行访问控制的语句 Users()仅考虑West Area User冥王星,而不是启用东区和西区。

我的代码如下。

任何帮助将不胜感激,提前谢谢。

protected void Users()
{
    using (OdbcConnection conn =
        new OdbcConnection(ConfigurationManager.ConnectionStrings["cn"].ConnectionString))
    {
        sql = " SELECT * FROM ";
        sql = sql + " tblUsers ";
        sql = sql + " WHERE (Email = ? ";
        sql = sql + " AND degree IS NOT NULL); ";

        using (OdbcCommand command =
            new OdbcCommand(sql, conn))
        {
            try
            {
                command.Parameters.AddWithValue("param1", Server.UrlDecode(Request.Cookies["email"].Value));
                command.Connection.Open();

                using (OdbcDataReader reader = command.ExecuteReader())
                {
                    while (reader.Read())
                    {
                        degree = reader["degree"].ToString();
                        area = reader["Area"].ToString();
                    }
                }
            }
            catch (Exception ex)
            {
                throw ex;
            }
            finally
            {
                command.Connection.Close();
            }
        }
    }
}

编辑1 

    string Level;
    string Area;

    public class GrantUser
    {
        public string Area { get; set; }
        public string Level { get; set; }

        public GrantUser() { }
        public GrantUser(string Area, string Level)
        {
            this.Area = Area;
            this.Level = Level;
        }
    }


    protected void Users()
    {
        using (OdbcConnection conn =
            new OdbcConnection(ConfigurationManager.ConnectionStrings["cn"].ConnectionString))
        {
            sql = " SELECT * FROM tblUsers WHERE (Email = ? AND Level IS NOT NULL); ";

            using (OdbcCommand command =
                new OdbcCommand(sql, conn))
            {
                try
                {
                    command.Parameters.AddWithValue("param1", Server.UrlDecode(Request.Cookies["email"].Value));
                    command.Connection.Open();

                    List<GrantUser> lsGrantUser = new List<GrantUser>();

                    using (OdbcDataReader reader = command.ExecuteReader())
                    {
                        while (reader.Read())
                        {
                            Level = reader["Level"].ToString();
                            Area = reader["Area"].ToString();

                            lsGrantUser.Add(new GrantUser(reader["Area"].ToString(), reader["Level"].ToString()));
                        }
                    }
                }
                catch (Exception ex)
                {
                    throw ex;
                }
                finally
                {
                    command.Connection.Close();
                }
            }
        }
    }


    protected void GridView1_RowDataBound(object sender, GridViewRowEventArgs e)
    {
        if (e.Row.RowType == DataControlRowType.DataRow)
        {
            Label area = (Label)e.Row.FindControl("Area");

            if (!string.IsNullOrEmpty(Level.ToString()))
            {
                if (Level.ToString() == "0")
                {
                       //here the condition 0
                }

                if (Level.ToString() == "1")
                {
                    if (area.Text == Area.ToString())
                    {
                       //here the condition 1
                    }
                }

                if (Level.ToString() == "2")
                {
                    if (area.Text == Area.ToString())
                    {
                       //here the condition 2
                    }
                }
            }
        }
    }




 public DataTable GridViewBind()
    {
        sql = " SELECT ....... ; ";

        try
        {
            dadapter = new OdbcDataAdapter(sql, conn);

            dset = new DataSet();
            dset.Clear();
            dadapter.Fill(dset);
            DataTable dt = dset.Tables[0];
            GridView1.DataSource = dt;

            conn.Open();
            GridView1.DataBind();

            if (dt.Rows.Count == 0)
            {
                Page.ClientScript.RegisterStartupScript(this.GetType(), "Alert", "alert('No data.');", true);               
            }

            return dt;
        }
        catch (Exception ex)
        {
            throw ex;
        }
        finally
        {
            dadapter.Dispose();
            dadapter = null;
            conn.Close();
        }
    }

编辑2 

Users();
GridView1.DataBind();

1 个答案:

答案 0 :(得分:0)

如果我理解你的问题,听起来你有Area属性可以采用多个不同的值,如“东方”,“西方”,我会假设“北方”和“南方” “(或类似的东西)。

在这种情况下,我会从这样的枚举开始:

enum Areas
{
   East, West, North, South
}

然后将Area的类型从string更改为Areas

public class GrantUser
{
    public Areas Area { get; set; }
    public string Level { get; set; }

    public GrantUser() { }
    public GrantUser(Areas Area, string Level)
    {
        this.Area = Area;
        this.Level = Level;
    }
}

现在你只能将GrantUser.Area设置为列表中的一个值(否则你将无法编译):

GrantUser user = GetUserFromSomewhere();
user.Area = Areas.East; //valid
user.Area = Areas.Elsewhere; // invalid, won't compile

最后,如果您希望用户能够为其分配多个“区域”,那么我们将为枚举提供[Flags]属性,创建默认的None值,然后为每个项目分配一个增加2的幂的值(听起来令人困惑,但是一旦你做了几次就会觉得正常)。查看“FlagsAttribute Class”了解详情。

[Flags]
public enum Areas
{
   None = 0, East = 1, West = 2, North = 4, South = 8
}

最后,要让用户同时访问EastWest,我们只需要将这些区域组合在一起:

GrantUser user = GetUserFromSomewhere();
user.Area = Areas.East | Areas.West; //Gives a value of 3, which is 1 + 2

请注意,当我们对OR的幂为2时,它与将它们加在一起相同,但这只是因为比特排列为2的幂(并且是另一个主题)。请注意,在一般情况下,情况并非如此。即:3 | 7 == 7。

现在要检查用户有权访问的Area,请使用AND运算符:

if(user.Area & Areas.East == Areas.East) {//has access to East}
if(user.Area & Areas.West == Areas.West) {//has access to West}

如需进一步阅读和详细的代码示例,请查看Enumeration Types C# Programming Guide

相关问题
最新问题