MES-WEB-API.git

			@@ -27,18 +27,27 @@
			/// </summary>
			[Route("Gy_Material/list")]
			[HttpGet]
			public object list(string sWhere, string Organization)
			public object list(string sWhere,string user, string Organization)
			{
			try
			{
			//编辑权限
			if (!DBUtility.ClsPub.Security_Log_second("Gy_Material", 1, false, user))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "无查看权限！";
			objJsonResult.data = null;
			return objJsonResult;
			}
			string sql1 = string.Format(@"select * from h_v_Gy_MaterialList where 组织名称='" + Organization + "'");
			if (sWhere == null \|\| sWhere.Equals(""))
			{
			ds = oCN.RunProcReturn(sql1 + sWhere + "order by HItemID desc", "h_v_Gy_MaterialList");
			ds = oCN.RunProcReturn(sql1 + sWhere + " order by 物料代码 ", "h_v_Gy_MaterialList");
			}
			else
			{
			string sql = sql1 + sWhere + "order by HItemID desc";
			string sql = sql1 + sWhere + " order by 物料代码 ";
			ds = oCN.RunProcReturn(sql, "h_v_Gy_MaterialList");
			}

			@@ -80,12 +89,23 @@
			{
			DataSet ds;
			var _value = msg["msg"].ToString();
			string msg1 = _value.ToString();
			//string[] sArray = msg1.Split(new string[] { ";" }, StringSplitOptions.RemoveEmptyEntries);
			//string msg2 = sArray[0].ToString();
			//string msg3 = sArray[1].ToString();
			string msg3 = _value.ToString();
			string[] sArray = msg3.Split(new string[] { ";" }, StringSplitOptions.RemoveEmptyEntries);
			string msg1 = sArray[0].ToString();
			string msg2 = sArray[1].ToString();
			Int64 HItemID = 0;
			SQLHelper.ClsCN oCN = new SQLHelper.ClsCN();

			//编辑权限
			if (!DBUtility.ClsPub.Security_Log_second("Gy_Material_Edit", 1, false, msg2))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "无保存权限！";
			objJsonResult.data = null;
			return objJsonResult;
			}

			//获取最大ID值赋值
			DataSet Maxds = oCN.RunProcReturn("select MAX(HItemID) HItemID from Gy_Material ", "Gy_Material");
			if (Maxds != null \|\| Maxds.Tables[0].Rows.Count > 0)
			@@ -96,6 +116,7 @@
			HItemID = maxid;
			}
			ListModels oListModels = new ListModels();

			try
			{
			DLL.ClsGy_Material_Ctl oBill = new DLL.ClsGy_Material_Ctl();
			@@ -276,21 +297,20 @@
			/// <returns></returns>
			[Route("Gy_Material/Delete")]
			[HttpGet]
			public object DeltetGy_Material(string HItemID)
			public object DeltetGy_Material(string HItemID,string user)
			{
			DataSet ds;
			//string ModRightNameCheck = "Sc_ProcessReport_check";
			try
			{
			//删除权限
			//if (!DBUtility.ClsPub.Security_Log(ModRightNameCheck, 1, true, CurUserName))
			//{
			// objJsonResult.code = "0";
			// objJsonResult.count = 0;
			// objJsonResult.Message = "审核失败！无权限！";
			// objJsonResult.data = null;
			// return objJsonResult;
			//}
			if (!DBUtility.ClsPub.Security_Log("Gy_Material_Delete", 1, false, user))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "无删除权限";
			objJsonResult.data = null;
			return objJsonResult;
			}

			SQLHelper.ClsCN oCN = new SQLHelper.ClsCN();
			if (string.IsNullOrWhiteSpace(HItemID))
			@@ -353,7 +373,7 @@
			{
			try
			{
			if (!DBUtility.ClsPub.Security_Log(ModRightNameSelect, 1, true, user))
			if (!DBUtility.ClsPub.Security_Log(ModRightNameSelect, 1, false, user))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			@@ -363,12 +383,12 @@
			}
			if (sWhere == null \|\| sWhere.Equals(""))
			{
			ds = oCN.RunProcReturn("select * from h_v_Gy_MouldFileList " + sWhere + "order by 日期 desc", "h_v_Gy_MouldFileList");
			ds = oCN.RunProcReturn("select * from h_v_Gy_MouldFileList " + sWhere + "order by hmainid desc", "h_v_Gy_MouldFileList");
			}
			else
			{
			string sql1 = "select * from h_v_Gy_MouldFileList where 1 = 1 ";
			string sql = sql1 + sWhere + "order by 日期 desc";
			string sql = sql1 + sWhere + "order by hmainid desc";
			ds = oCN.RunProcReturn(sql, "h_v_Gy_MouldFileList");
			}
			if (ds == null \|\| ds.Tables[0].Rows.Count == 0)
			@@ -457,18 +477,28 @@
			/// </summary>
			[Route("Gy_BarCodeBillList/GetBarCodeBillList")]
			[HttpGet]
			public object GetBarCodeBillList(string sWhere)
			public object GetBarCodeBillList(string sWhere,string user)
			{
			try
			{
			//判断是否有查询权限
			if (!DBUtility.ClsPub.Security_Log("Gy_BarCodeBill_Query", 1, false, user))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "无权限查询!";
			objJsonResult.data = null;
			return objJsonResult;
			}

			if (sWhere == null \|\| sWhere.Equals(""))
			{
			ds = oCN.RunProcReturn("select * from h_v_IF_BarCodeBillList " + sWhere + "order by 日期 desc", "h_v_IF_BarCodeBillList");
			ds = oCN.RunProcReturn("select * from h_v_IF_BarCodeBillList order by hmainid desc", "h_v_IF_BarCodeBillList");
			}
			else
			{
			string sql1 = "select * from h_v_IF_BarCodeBillList where 1 = 1 ";
			string sql = sql1 + sWhere + "order by 日期 desc";
			string sql = sql1 + sWhere + "order by hmainid desc";
			ds = oCN.RunProcReturn(sql, "h_v_IF_BarCodeBillList");
			}
			if (ds == null \|\| ds.Tables[0].Rows.Count == 0)
			@@ -517,7 +547,7 @@
			string msg4 = sArray[2].ToString();//当前人

			oCN.BeginTran();
			if (!DBUtility.ClsPub.Security_Log(msg3, 1, true, msg4))
			if (!DBUtility.ClsPub.Security_Log(msg3, 1, false, msg4))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			@@ -675,7 +705,7 @@
			string msg4 = sArray[2].ToString();//当前人
			try
			{
			if (!DBUtility.ClsPub.Security_Log(msg3, 1, true, msg4))
			if (!DBUtility.ClsPub.Security_Log(msg3, 1, false, msg4))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			@@ -855,7 +885,7 @@
			DAL.ClsGy_MouldFile oBill = new DAL.ClsGy_MouldFile();
			try
			{
			if (!DBUtility.ClsPub.Security_Log(ModRightNameDelete, 1, true, user))
			if (!DBUtility.ClsPub.Security_Log(ModRightNameDelete, 1, false, user))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			@@ -972,7 +1002,7 @@
			try
			{
			//审核权限
			if (!DBUtility.ClsPub.Security_Log(ModRightNameCheck, 1, true, CurUserName))
			if (!DBUtility.ClsPub.Security_Log(ModRightNameCheck, 1, false, CurUserName))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;