MES-WEB-API.git

			@@ -25,20 +25,30 @@
			/// </summary>
			[Route("Gy_Customer/list")]
			[HttpGet]
			public object list(string sWhere, string Organization)
			public object list(string sWhere,string user, string Organization)
			{
			try
			{
			//编辑权限
			if (!DBUtility.ClsPub.Security_Log_second("Crm_CustomerFileList", 1, false, user))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "无查看权限！";
			objJsonResult.data = null;
			return objJsonResult;
			}
			string sql1 = string.Format(@"select * from h_v_Gy_CustomerList where 组织名称='" + Organization + "'");
			if (sWhere == null \|\| sWhere.Equals(""))
			{
			ds = oCN.RunProcReturn(sql1 + sWhere + " order by HItemID desc", "h_v_Gy_CustomerList");
			ds = oCN.RunProcReturn(sql1 + sWhere + " order by 客户代码 ", "h_v_Gy_CustomerList");
			}
			else
			{
			string sql = sql1 + sWhere + " order by HItemID desc";
			string sql = sql1 + sWhere + " order by 客户代码 ";
			ds = oCN.RunProcReturn(sql, "h_v_Gy_CustomerList");
			}

			objJsonResult.code = "1";
			objJsonResult.count = 1;
			objJsonResult.Message = "Sucess！";
			@@ -165,14 +175,25 @@
			try
			{
			var _value = oMain["oMain"].ToString();
			string msg1 = _value.ToString();
			string msg3 = _value.ToString();
			string[] sArray = msg3.Split(new string[] { ";" }, StringSplitOptions.RemoveEmptyEntries);
			string msg1 = sArray[0].ToString();
			string msg2 = sArray[1].ToString();
			//反序列化
			msg1 = "[" + msg1.ToString() + "]";

			DAL.ClsGy_Customer_Ctl oDept = new DAL.ClsGy_Customer_Ctl();
			DAL.ClsGy_Customer_View oDeptHlp = new DAL.ClsGy_Customer_View();


			//编辑权限
			if (!DBUtility.ClsPub.Security_Log_second("Gy_Customer_Edit", 1, false, msg2))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "无保存权限！";
			objJsonResult.data = null;
			return objJsonResult;
			}

			List<Customer> list = Newtonsoft.Json.JsonConvert.DeserializeObject<List<Customer>>(msg1);