MES-WEB-API.git

parent: d1ff6d3f | 补丁 | 提交 | ignore whitespace

zzr99

2022-02-10 919ffdcf960b886d99a1977767add03ba42e4cd1

基础建模每个模块的权限

27个文件已修改

	LMES/LMES.csproj.user	1 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史
	WarM/仓库管理/Gy_BarCodeBill_ChaiMa.cs	2 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史
	WebAPI/Controllers/BaseSet/Gy_BadReasonController.cs	12 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史
	WebAPI/Controllers/BaseSet/Gy_CheckItemController.cs	45 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史
	WebAPI/Controllers/BaseSet/Gy_CurrencyController.cs	48 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史
	WebAPI/Controllers/BaseSet/Gy_CustomerController.cs	26 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史
	WebAPI/Controllers/BaseSet/Gy_DepartmentController.cs	39 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史
	WebAPI/Controllers/BaseSet/Gy_EmployeeController.cs	43 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史
	WebAPI/Controllers/BaseSet/Gy_GroupController.cs	76 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史
	WebAPI/Controllers/BaseSet/Gy_MaterialController.cs	50 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史
	WebAPI/Controllers/BaseSet/Gy_OrderBackInfoController.cs	50 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史
	WebAPI/Controllers/BaseSet/Gy_OrderLevController.cs	32 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史
	WebAPI/Controllers/BaseSet/Gy_ProcessController.cs	51 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史
	WebAPI/Controllers/BaseSet/Gy_PropertyController.cs	11 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史
	WebAPI/Controllers/BaseSet/Gy_QCCheckClassController.cs	32 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史
	WebAPI/Controllers/BaseSet/Gy_SourceController.cs	49 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史
	WebAPI/Controllers/BaseSet/Gy_SupplierController.cs	13 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史
	WebAPI/Controllers/BaseSet/Gy_UnitController.cs	49 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史
	WebAPI/Controllers/BaseSet/Gy_WarehouseController.cs	50 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史
	WebAPI/Controllers/BaseSet/Gy_WorkCenterController.cs	56 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史
	WebAPI/Controllers/BaseSet/Pay_PeriodInfoSetController.cs	51 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史
	WebAPI/Controllers/BaseSet/Xt_ORGANIZATIONSController.cs	31 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史
	WebAPI/Controllers/WebAPIController.cs	37 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史
	WebAPI/Controllers/基础资料/基础资料/Gy_ConkReasonBillController.cs	33 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史
	WebAPI/Controllers/基础资料/基础资料/Gy_DotCheckBillController.cs	7 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史
	WebAPI/Controllers/基础资料/基础资料/Gy_MaintainBillController.cs	16 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史
	WebAPI/Controllers/基础资料/工资基础资料/Gy_ProcPriceController.cs	22 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史

 LMES/LMES.csproj.user

@@ -9,5 +9,6 @@
    <ErrorReportUrlHistory />
    <FallbackCulture>zh-CN</FallbackCulture>
    <VerifyUploadedFiles>false</VerifyUploadedFiles>
    <ProjectView>ShowAllFiles</ProjectView>
  </PropertyGroup>
</Project>

 WarM/²Ö¿â¹ÜÀí/Gy_BarCodeBill_ChaiMa.cs

@@ -200,7 +200,7 @@
                        model.HQty = DBUtility.ClsPub.isLong(grdMain_Pay.Rows[i].Cells[HNum2].Value);
                        model.HQty = DBUtility.ClsPub.isInt(grdMain_Pay.Rows[i].Cells[HNum2].Value);
                        model.HBatchNo = DBUtility.ClsPub.isStrNull(grdMain_Pay.Rows[i].Cells[HBatchNo].Value);
                        model.HMaterID = DBUtility.ClsPub.isLong(grdMain_Pay.Rows[i].Cells[HMaterCol].Value);
                        model.HMaterID = DBUtility.ClsPub.isLong(Ds.Tables[0].Rows[0]["HMaterID"].ToString());
                        model.HUnitID = DBUtility.ClsPub.isLong(Ds.Tables[0].Rows[0]["HUnitID"].ToString());
                        model.HSupID = DBUtility.ClsPub.isLong(Ds.Tables[0].Rows[0]["HSupID"].ToString());
                        model.HDeptID = DBUtility.ClsPub.isLong(Ds.Tables[0].Rows[0]["HDeptID"].ToString());

 WebAPI/Controllers/BaseSet/Gy_BadReasonController.cs

@@ -25,10 +25,20 @@
        /// </summary>
        [Route("Gy_BadReason/list")]
        [HttpGet]
        public object list(string sWhere)
        public object list(string sWhere,string user)
        {
            try
            {
                //æ¥çæé
                if (!DBUtility.ClsPub.Security_Log("Gy_BadReason", 1, false, user))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ æ¥çæéï¼";
                    objJsonResult.data = null;
                    return objJsonResult;
                }

                if (sWhere == null || sWhere.Equals(""))
                {
                    ds = oCN.RunProcReturn("select * from h_v_IF_BadReasonList " + sWhere+ " order by HItemID desc", "h_v_IF_BadReasonList");

 WebAPI/Controllers/BaseSet/Gy_CheckItemController.cs

@@ -27,10 +27,20 @@
        /// </summary>
        [Route("Gy_CheckItem/list")]
        [HttpGet]
        public object list(string sWhere)
        public object list(string sWhere,string user)
        {
            try
            {
                //æ¥çæé
                if (!DBUtility.ClsPub.Security_Log("Gy_QCCheckItem", 1, false, user))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ æ¥çæéï¼";
                    objJsonResult.data = null;
                    return objJsonResult;
                }

                if (sWhere == null || sWhere.Equals(""))
                {
                    ds = oCN.RunProcReturn("select * from h_v_IF_QCCheckItemList " + sWhere, "h_v_IF_QCCheckItemList");
@@ -126,14 +136,15 @@
            DAL.ClsGy_QCCheckItem_View oDeptHlp = new DAL.ClsGy_QCCheckItem_View();
            try
            {
                //if (!DBUtility.ClsPub.Security_Log(ModRightNameDelete, 1, false, User))
                //{
                //    objJsonResult.code = "0";
                //    objJsonResult.count = 0;
                //    objJsonResult.Message = "æ²¡æå é¤æé";
                //    objJsonResult.data = null;
                //    return objJsonResult;
                //}
                if (!DBUtility.ClsPub.Security_Log(ModRightNameDelete, 1, false, User))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ²¡æå é¤æé";
                    objJsonResult.data = null;
                    return objJsonResult;
                }

                if (oDeptHlp.GetInfoByID(HItemID))
                {
                    if (oDept.HavChildCodes(HItemID))
@@ -313,14 +324,14 @@


                //å¤ææé
                //if (!ClsPub.Security_Log(msg5, 1, false, msg4))
                //{
                //    objJsonResult.code = "0";
                //    objJsonResult.count = 0;
                //    objJsonResult.Message = "æ²¡ææ¾å°è¯¥åè½æ¨¡åï¼";
                //    objJsonResult.data = null;
                //    return objJsonResult;
                //}
                if (!ClsPub.Security_Log(msg5, 1, false, msg4))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ ä¿åæé";
                    objJsonResult.data = null;
                    return objJsonResult;
                }


                if (!DBUtility.ClsPub.AllowNumber(HNumber))

 WebAPI/Controllers/BaseSet/Gy_CurrencyController.cs

@@ -27,10 +27,20 @@
        /// </summary>
        [Route("Gy_Currency/list1")]
        [HttpGet]
        public object list(string sWhere)
        public object list(string sWhere,string user)
        {
            try
            {
                //ç¼è¾æé
                if (!DBUtility.ClsPub.Security_Log_second("Gy_Currency", 1, false, user))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ æ¥çæéï¼";
                    objJsonResult.data = null;
                    return objJsonResult;
                }

                if (sWhere == null || sWhere.Equals(""))
                {
                    ds = oCN.RunProcReturn("select * from h_v_Gy_CurrencyList where ç¦ç¨æ è®°=''" + sWhere, "h_v_Gy_CurrencyList");
@@ -106,10 +116,10 @@
        {
            DataSet ds;
            var _value = msg["msg"].ToString();
            string msg1 = _value.ToString();
            //string[] sArray = msg1.Split(new string[] { ";" }, StringSplitOptions.RemoveEmptyEntries);
            //string msg2 = sArray[0].ToString();
            //string msg3 = sArray[1].ToString();
            string msg3 = _value.ToString();
            string[] sArray = msg3.Split(new string[] { ";" }, StringSplitOptions.RemoveEmptyEntries);
            string msg1 = sArray[0].ToString();
            string user = sArray[1].ToString();
            Int64 HItemID = 0;
            SQLHelper.ClsCN oCN = new SQLHelper.ClsCN();
            //è·åæå¤§IDå¼èµå¼
@@ -124,6 +134,16 @@
            ListModels oListModels = new ListModels();
            try
            {
                //ç¼è¾æé
                if (!DBUtility.ClsPub.Security_Log_second("Gy_Currency_Edit", 1, false, user))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ ä¿åæéï¼";
                    objJsonResult.data = null;
                    return objJsonResult;
                }

                DAL.ClsGy_Currency_Ctl oBill = new DAL.ClsGy_Currency_Ctl();
                List<Model.ClsGy_Currency_Model> lsmain = new List<Model.ClsGy_Currency_Model>();
                msg1 = msg1.Replace("\\", "");
@@ -306,21 +326,21 @@
        /// <returns></returns>
        [Route("DeltetGy_Currency")]
        [HttpGet]
        public object DeltetGy_Currency(string HItemID)
        public object DeltetGy_Currency(string HItemID,string user)
        {
            DataSet ds;
            //string ModRightNameCheck = "Sc_ProcessReport_check";
            try
            {
                //å é¤æé
                //if (!DBUtility.ClsPub.Security_Log(ModRightNameCheck, 1, false, CurUserName))
                //{
                //    objJsonResult.code = "0";
                //    objJsonResult.count = 0;
                //    objJsonResult.Message = "å®¡æ ¸å¤±è´¥ï¼æ æéï¼";
                //    objJsonResult.data = null;
                //    return objJsonResult;
                //}
                if (!DBUtility.ClsPub.Security_Log("Gy_Currency_Edit", 1, false, user))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ å é¤æéï¼";
                    objJsonResult.data = null;
                    return objJsonResult;
                }

                SQLHelper.ClsCN oCN = new SQLHelper.ClsCN();
                if (string.IsNullOrWhiteSpace(HItemID))

 WebAPI/Controllers/BaseSet/Gy_CustomerController.cs

@@ -25,10 +25,19 @@
        /// </summary>
        [Route("Gy_Customer/list")]
        [HttpGet]
        public object list(string sWhere, string Organization)
        public object list(string sWhere,string user, string Organization)
        {
            try
            {
                //ç¼è¾æé
                if (!DBUtility.ClsPub.Security_Log_second("Crm_CustomerFileList", 1, false, user))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ æ¥çæéï¼";
                    objJsonResult.data = null;
                    return objJsonResult;
                }
                string sql1 = string.Format(@"select * from h_v_Gy_CustomerList where ç»ç»åç§°='" + Organization + "'");
                if (sWhere == null || sWhere.Equals(""))
                {
@@ -165,14 +174,25 @@
            try
            {
                var _value = oMain["oMain"].ToString();
                string msg1 = _value.ToString();
                string msg3 = _value.ToString();
                string[] sArray = msg3.Split(new string[] { ";" }, StringSplitOptions.RemoveEmptyEntries);
                string msg1 = sArray[0].ToString();
                string msg2 = sArray[1].ToString();
                //ååºåå
                msg1 = "[" + msg1.ToString() + "]";

                DAL.ClsGy_Customer_Ctl oDept = new DAL.ClsGy_Customer_Ctl();
                DAL.ClsGy_Customer_View oDeptHlp = new DAL.ClsGy_Customer_View();


                //ç¼è¾æé
                if (!DBUtility.ClsPub.Security_Log_second("Gy_Customer_Edit", 1, false, msg2))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ ä¿åæéï¼";
                    objJsonResult.data = null;
                    return objJsonResult;
                }

                List<Customer> list = Newtonsoft.Json.JsonConvert.DeserializeObject<List<Customer>>(msg1);


 WebAPI/Controllers/BaseSet/Gy_DepartmentController.cs

@@ -25,10 +25,19 @@
        /// </summary>
        [Route("Gy_Department/list")]
        [HttpGet]
        public object list(string sWhere,string Organization)
        public object list(string sWhere,string user,string Organization)
        {
            try
            {
                //æ¥çæé
                if (!DBUtility.ClsPub.Security_Log("Gy_Department", 1, false, user))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ æ¥çæé";
                    objJsonResult.data = null;
                    return objJsonResult;
                }
                string sql1 = string.Format(@"select * from h_v_IF_DepartmentList where ç»ç»åç§°='" + Organization + "'");
                if (sWhere == null || sWhere.Equals(""))
                {
@@ -103,21 +112,21 @@
        /// <returns></returns>
        [Route("DeltetGy_Department")]
        [HttpGet]
        public object DeltetGy_Department(string HItemID)
        public object DeltetGy_Department(string HItemID,string user)
        {
            DataSet ds;
            DataSet ds1;
            try
            {
                //å é¤æé
                //if (!DBUtility.ClsPub.Security_Log(ModRightNameCheck, 1, false, CurUserName))
                //{
                //    objJsonResult.code = "0";
                //    objJsonResult.count = 0;
                //    objJsonResult.Message = "å®¡æ ¸å¤±è´¥ï¼æ æéï¼";
                //    objJsonResult.data = null;
                //    return objJsonResult;
                //}
                if (!DBUtility.ClsPub.Security_Log("Gy_Department_Delete", 1, false, user))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ å é¤æé";
                    objJsonResult.data = null;
                    return objJsonResult;
                }

                SQLHelper.ClsCN oCN = new SQLHelper.ClsCN();
                if (string.IsNullOrWhiteSpace(HItemID))
@@ -368,6 +377,16 @@
                string msg3 = sArray[1].ToString();
                //string msg4 = sArray[2].ToString();
                //string msg5 = sArray[3].ToString();
                
                //ç¼è¾æé
                if (!DBUtility.ClsPub.Security_Log_second("Gy_Department_Edit", 1, false, msg3))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ ä¿åæéï¼";
                    objJsonResult.data = null;
                    return objJsonResult;
                }
                //ååºåå
                msg2 = "[" + msg2.ToString() + "]";
                List<Department> list = Newtonsoft.Json.JsonConvert.DeserializeObject<List<Department>>(msg2);

 WebAPI/Controllers/BaseSet/Gy_EmployeeController.cs

@@ -27,10 +27,19 @@
        /// </summary>
        [Route("Gy_Employee/list")]
        [HttpGet]
        public object list(string sWhere,string Organization)
        public object list(string sWhere,string user,string Organization)
        {
            try
            {
                //ç¼è¾æé
                if (!DBUtility.ClsPub.Security_Log_second("Gy_Employee", 1, false, user))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ æ¥çæéï¼";
                    objJsonResult.data = null;
                    return objJsonResult;
                }
                string sql1 = string.Format(@"select * from h_v_IF_EmployeeList where ç»ç»åç§°='" + Organization + "'");
                if (sWhere == null || sWhere.Equals(""))
                {
@@ -261,9 +270,20 @@
                string msg1 = _value.ToString();
                string[] sArray = msg1.Split(new string[] { ";" }, StringSplitOptions.RemoveEmptyEntries);
                string msg2 = sArray[0].ToString();
                //string msg3 = sArray[1].ToString();
                string msg3 = sArray[1].ToString();
                //string msg4 = sArray[2].ToString();
                //string msg5 = sArray[3].ToString();

                //ç¼è¾æé
                if (!DBUtility.ClsPub.Security_Log_second("Gy_Employee_Edit", 1, false, msg3))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ ä¿åæéï¼";
                    objJsonResult.data = null;
                    return objJsonResult;
                }

                //ååºåå
                msg2 = "[" + msg2.ToString() + "]";
                List<Gy_Employee> list = Newtonsoft.Json.JsonConvert.DeserializeObject<List<Gy_Employee>>(msg2);
@@ -795,21 +815,20 @@
        /// <returns></returns>
        [Route("DeltetGy_Employee")]
        [HttpGet]
        public object DeltetGy_Employee(string HItemID)
        public object DeltetGy_Employee(string HItemID,string user)
        {
            DataSet ds;
            //string ModRightNameCheck = "Sc_ProcessReport_check";
            try
            {
                //å é¤æé
                //if (!DBUtility.ClsPub.Security_Log(ModRightNameCheck, 1, false, CurUserName))
                //{
                //    objJsonResult.code = "0";
                //    objJsonResult.count = 0;
                //    objJsonResult.Message = "å®¡æ ¸å¤±è´¥ï¼æ æéï¼";
                //    objJsonResult.data = null;
                //    return objJsonResult;
                //}
                if (!DBUtility.ClsPub.Security_Log("Gy_Employee_Delete", 1, false, user))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ å é¤æé";
                    objJsonResult.data = null;
                    return objJsonResult;
                }

                SQLHelper.ClsCN oCN = new SQLHelper.ClsCN();
                if (string.IsNullOrWhiteSpace(HItemID))

 WebAPI/Controllers/BaseSet/Gy_GroupController.cs

@@ -26,10 +26,20 @@
        /// </summary>
        [Route("Gy_Group/list")]
        [HttpGet]
        public object list(string sWhere)
        public object list(string sWhere,string user)
        {
            try
            {
                //æ¥çæé
                if (!DBUtility.ClsPub.Security_Log("Gy_Group_Query", 1, false, user))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ æ¥çæéï¼";
                    objJsonResult.data = null;
                    return objJsonResult;
                }

                if (sWhere == null || sWhere.Equals(""))
                {
                    ds = oCN.RunProcReturn("select * from h_v_GroupList " + sWhere, "h_v_GroupList");
@@ -146,10 +156,26 @@
            {
                var _value = oMain["oMain"].ToString();
                string msg1 = _value.ToString();
                string[] sArray = msg1.Split(new string[] { ";" }, StringSplitOptions.RemoveEmptyEntries);
                string msg2 = sArray[0].ToString();
                string msg3 = sArray[1].ToString();
                string msg4 = sArray[2].ToString();
                string msg5 = sArray[3].ToString();

                //å¤ææé
                if (!ClsPub.Security_Log(msg5, 1, false, msg4))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ ä¿åæé";
                    objJsonResult.data = null;
                    return objJsonResult;
                }

                //ååºåå
                msg1 = "[" + msg1.ToString() + "]";
                msg2 = "[" + msg2.ToString() + "]";
                DAL.ClsGy_Group_Ctl oDept = new DAL.ClsGy_Group_Ctl();
                List<Gy_Group> list = Newtonsoft.Json.JsonConvert.DeserializeObject<List<Gy_Group>>(msg1);
                List<Gy_Group> list = Newtonsoft.Json.JsonConvert.DeserializeObject<List<Gy_Group>>(msg2);
                long HItemID = list[0].HItemID;
                string HNumber = list[0].HNumber;
                string HName = list[0].HName;
@@ -227,9 +253,9 @@
                string msg1 = _value.ToString();
                string[] sArray = msg1.Split(new string[] { ";" }, StringSplitOptions.RemoveEmptyEntries);
                string msg2 = sArray[0].ToString();
                //string msg3 = sArray[1].ToString();
                //string msg4 = sArray[2].ToString();
                //string msg5 = sArray[3].ToString();
                string msg3 = sArray[1].ToString();
                string msg4 = sArray[2].ToString();
                string msg5 = sArray[3].ToString();
                //ååºåå
                msg2 = "[" + msg2.ToString() + "]";
                List<Gy_Group> list = Newtonsoft.Json.JsonConvert.DeserializeObject<List<Gy_Group>>(msg2);
@@ -253,15 +279,15 @@
                long HLevel = 1;
                //var HProcID = "";

                ////å¤ææé
                //if (!ClsPub.Security_Log(msg5, 1, false, msg4))
                //{
                //    objJsonResult.code = "0";
                //    objJsonResult.count = 0;
                //    objJsonResult.Message = "æ²¡ææ¾å°è¯¥åè½æ¨¡åï¼";
                //    objJsonResult.data = null;
                //    return objJsonResult;
                //}
                //å¤ææé
                if (!ClsPub.Security_Log(msg5, 1, false, msg4))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ ä¿åæé";
                    objJsonResult.data = null;
                    return objJsonResult;
                }

                //if (!DBUtility.ClsPub.AllowNumber(HNumber))
                //{
@@ -430,9 +456,9 @@
        /// çç»å é¤åè½
        /// </summary>
        /// <returns></returns>
        [Route("DeltetGy_Group")]
        [Route("Gy_Group/DeltetGy_Group")]
        [HttpGet]
        public object DeltetGy_Group(string HItemID)
        public object DeltetGy_Group(string HItemID,string user)
        {
            DataSet ds;
            DataSet ds1;
@@ -440,14 +466,14 @@
            try
            {
                //å é¤æé
                //if (!DBUtility.ClsPub.Security_Log(ModRightNameCheck, 1, false, CurUserName))
                //{
                //    objJsonResult.code = "0";
                //    objJsonResult.count = 0;
                //    objJsonResult.Message = "å®¡æ ¸å¤±è´¥ï¼æ æéï¼";
                //    objJsonResult.data = null;
                //    return objJsonResult;
                //}
                if (!DBUtility.ClsPub.Security_Log("Gy_Group_Delete", 1, false, user))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ å é¤æéï¼";
                    objJsonResult.data = null;
                    return objJsonResult;
                }

                SQLHelper.ClsCN oCN = new SQLHelper.ClsCN();
                if (string.IsNullOrWhiteSpace(HItemID))

 WebAPI/Controllers/BaseSet/Gy_MaterialController.cs

@@ -27,10 +27,19 @@
        /// </summary>
        [Route("Gy_Material/list")]
        [HttpGet]
        public object list(string sWhere, string Organization)
        public object list(string sWhere,string user, string Organization)
        {
            try
            {
                //ç¼è¾æé
                if (!DBUtility.ClsPub.Security_Log_second("Gy_Material", 1, false, user))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ æ¥çæéï¼";
                    objJsonResult.data = null;
                    return objJsonResult;
                }
                string sql1 = string.Format(@"select * from h_v_Gy_MaterialList where ç»ç»åç§°='" + Organization + "'");
                if (sWhere == null || sWhere.Equals(""))
                {
@@ -80,12 +89,23 @@
        {
            DataSet ds;
            var _value = msg["msg"].ToString();
            string msg1 = _value.ToString();
            //string[] sArray = msg1.Split(new string[] { ";" }, StringSplitOptions.RemoveEmptyEntries);
            //string msg2 = sArray[0].ToString();
            //string msg3 = sArray[1].ToString();
            string msg3 = _value.ToString();
            string[] sArray = msg3.Split(new string[] { ";" }, StringSplitOptions.RemoveEmptyEntries);
            string msg1 = sArray[0].ToString();
            string msg2 = sArray[1].ToString();
            Int64 HItemID = 0;
            SQLHelper.ClsCN oCN = new SQLHelper.ClsCN();

            //ç¼è¾æé
            if (!DBUtility.ClsPub.Security_Log_second("Gy_Material_Edit", 1, false, msg2))
            {
                objJsonResult.code = "0";
                objJsonResult.count = 0;
                objJsonResult.Message = "æ ä¿åæéï¼";
                objJsonResult.data = null;
                return objJsonResult;
            }

            //è·åæå¤§IDå¼èµå¼
            DataSet Maxds = oCN.RunProcReturn("select MAX(HItemID) HItemID from Gy_Material ", "Gy_Material");
            if (Maxds != null || Maxds.Tables[0].Rows.Count > 0)
@@ -96,6 +116,7 @@
                HItemID = maxid;
            }
            ListModels oListModels = new ListModels();
            
            try
            {
                DLL.ClsGy_Material_Ctl oBill = new DLL.ClsGy_Material_Ctl();
@@ -276,21 +297,20 @@
        /// <returns></returns>
        [Route("Gy_Material/Delete")]
        [HttpGet]
        public object DeltetGy_Material(string HItemID)
        public object DeltetGy_Material(string HItemID,string user)
        {
            DataSet ds;
            //string ModRightNameCheck = "Sc_ProcessReport_check";
            try
            {
                //å é¤æé
                //if (!DBUtility.ClsPub.Security_Log(ModRightNameCheck, 1, false, CurUserName))
                //{
                //    objJsonResult.code = "0";
                //    objJsonResult.count = 0;
                //    objJsonResult.Message = "å®¡æ ¸å¤±è´¥ï¼æ æéï¼";
                //    objJsonResult.data = null;
                //    return objJsonResult;
                //}
                if (!DBUtility.ClsPub.Security_Log("Gy_Material_Delete", 1, false, user))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ å é¤æé";
                    objJsonResult.data = null;
                    return objJsonResult;
                }

                SQLHelper.ClsCN oCN = new SQLHelper.ClsCN();
                if (string.IsNullOrWhiteSpace(HItemID))

 WebAPI/Controllers/BaseSet/Gy_OrderBackInfoController.cs

@@ -27,10 +27,19 @@
        /// </summary>
        [Route("Gy_OrderBackInfo/list")]
        [HttpGet]
        public object list(string sWhere)
        public object list(string sWhere,string user)
        {
            try
            {
                //ç¼è¾æé
                if (!DBUtility.ClsPub.Security_Log_second("Gy_OrderBackInfoList", 1, false, user))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ æ¥çæéï¼";
                    objJsonResult.data = null;
                    return objJsonResult;
                }
                if (sWhere == null || sWhere.Equals(""))
                {
                    ds = oCN.RunProcReturn("select * from h_v_Gy_OrderBackInfoList " + sWhere, "h_v_Gy_OrderBackInfoList");
@@ -120,11 +129,20 @@
        /// </summary>
        [Route("Gy_OrderBackInfo/Delete_Json")]
        [HttpGet]
        public object Delete_Json(long HItemID, string User, string ModRightNameDelete)
        public object Delete_Json(long HItemID, string User)
        {
 
            try
            {
                //ç¼è¾æé
                if (!DBUtility.ClsPub.Security_Log_second("Gy_OrderBackInfo_Delete", 1, false, User))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ å é¤æéï¼";
                    objJsonResult.data = null;
                    return objJsonResult;
                }
                ds = oCN.RunProcReturn("delete from Gy_OrderBackInfo where HItemID =  " + HItemID, "Gy_OrderBackInfo");
 
                objJsonResult.code = "1";
@@ -158,12 +176,18 @@
            {
                var _value = oMain["oMain"].ToString();
                string msg1 = _value.ToString();
                string[] sArray = msg1.Split(new string[] { ";" }, StringSplitOptions.RemoveEmptyEntries);
                string msg2 = sArray[0].ToString();
                string msg3 = sArray[1].ToString();
                string msg4 = sArray[2].ToString();
                string msg5 = sArray[3].ToString();

                
                //ååºåå
                msg1 = "[" + msg1.ToString() + "]";
                msg2 = "[" + msg2.ToString() + "]";
                List<Gy_OrderBackInfo> list = Newtonsoft.Json.JsonConvert.DeserializeObject<List<Gy_OrderBackInfo>>(msg2);
 
                List<Gy_OrderBackInfo> list = Newtonsoft.Json.JsonConvert.DeserializeObject<List<Gy_OrderBackInfo>>(msg1);
 
                long HItemID = list[0].HItemID.ToString() == "" ? 0 : list[0].HItemID;
                long HItemID = int.Parse(msg3);
                string HNumber = list[0].HNumber;
                string HName = list[0].HName;
                string HShortNumber = list[0].HNumber;
@@ -172,7 +196,17 @@
                string HRemark = list[0].HRemark;
                bool HStopflag = list[0].HStopflag;
                bool HUseFlag = list[0].HUseFlag;
 

                //å¤ææé
                if (!ClsPub.Security_Log(msg5, 1, false, msg4))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ ä¿åæéï¼";
                    objJsonResult.data = null;
                    return objJsonResult;
                }

                if (!DBUtility.ClsPub.AllowNumber(HNumber))
                {
                    objJsonResult.code = "0";
@@ -256,7 +290,7 @@
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ²¡ææ¾å°è¯¥åè½æ¨¡åï¼";
                    objJsonResult.Message = "æ ä¿åæéï¼";
                    objJsonResult.data = null;
                    return objJsonResult;
                }

 WebAPI/Controllers/BaseSet/Gy_OrderLevController.cs

@@ -27,10 +27,20 @@
        /// </summary>
        [Route("Gy_OrderLev/list")]
        [HttpGet]
        public object list(string sWhere)
        public object list(string sWhere,string user)
        {
            try
            {
                //ç¼è¾æé
                if (!DBUtility.ClsPub.Security_Log_second("Gy_OrderLev", 1, false, user))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ æ¥çæéï¼";
                    objJsonResult.data = null;
                    return objJsonResult;
                }

                if (sWhere == null || sWhere.Equals(""))
                {
                    ds = oCN.RunProcReturn("select * from h_v_Gy_OrderLevList " + sWhere, "h_v_Gy_OrderLevList");
@@ -206,7 +216,11 @@
            try
            {
                var _value = oMain["oMain"].ToString();
                string msg1 = _value.ToString();
                string msg3 = _value.ToString();
                string[] sArray = msg3.Split(new string[] { ";" }, StringSplitOptions.RemoveEmptyEntries);
                string msg1 = sArray[0].ToString();
                string msg2 = sArray[1].ToString();

                //ååºåå
                msg1 = "[" + msg1.ToString() + "]";
 
@@ -227,7 +241,17 @@
                string HYX = list[0].HYX;
                bool HStopflag = list[0].HStopflag;
                bool HUseFlag = list[0].HUseFlag;
 

                //ç¼è¾æé
                if (!DBUtility.ClsPub.Security_Log_second("Gy_VipLevel_Edit", 1, false, msg2))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ ä¿åæéï¼";
                    objJsonResult.data = null;
                    return objJsonResult;
                }

                if (!DBUtility.ClsPub.AllowNumber(HNumber))
                {
                    objJsonResult.code = "0";
@@ -314,7 +338,7 @@
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ²¡ææ¾å°è¯¥åè½æ¨¡åï¼";
                    objJsonResult.Message = "æ ä¿åæéï¼";
                    objJsonResult.data = null;
                    return objJsonResult;
                }

 WebAPI/Controllers/BaseSet/Gy_ProcessController.cs

@@ -275,7 +275,7 @@
                string msg1 = _value.ToString();
                string[] sArray = msg1.Split(new string[] { ";" }, StringSplitOptions.RemoveEmptyEntries);
                string msg2 = sArray[0].ToString();
                //string msg3 = sArray[1].ToString();
                string msg3 = sArray[1].ToString();
                //string msg4 = sArray[2].ToString();
                //string msg5 = sArray[3].ToString();
                //ååºåå
@@ -310,15 +310,15 @@
                long HDeptID = list[0].HDeptID;
                long HProcID = list[0].HProcID;

                ////å¤ææé
                //if (!ClsPub.Security_Log(msg5, 1, false, msg4))
                //{
                //    objJsonResult.code = "0";
                //    objJsonResult.count = 0;
                //    objJsonResult.Message = "æ²¡ææ¾å°è¯¥åè½æ¨¡åï¼";
                //    objJsonResult.data = null;
                //    return objJsonResult;
                //}
                //å¤ææé
                if (!ClsPub.Security_Log("Gy_Process_Edit", 1, false, msg3))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ²¡ææ¾å°è¯¥åè½æ¨¡åï¼";
                    objJsonResult.data = null;
                    return objJsonResult;
                }

                //if (!DBUtility.ClsPub.AllowNumber(HNumber))
                //{
@@ -412,10 +412,20 @@
        /// </summary>
        [Route("Gy_Process/list")]
        [HttpGet]
        public object getProcessList(string sWhere)
        public object getProcessList(string sWhere,string user)
        {
            try
            {
                //æ¥çæé
                if (!DBUtility.ClsPub.Security_Log("Gy_Process_Query", 1, false, user))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ æ¥çæéï¼";
                    objJsonResult.data = null;
                    return objJsonResult;
                }

                if (sWhere == null || sWhere.Equals(""))
                {
                    ds = oCN.RunProcReturn("select * from h_v_Gy_ProcessList " + sWhere, "h_v_Gy_ProcessList");
@@ -499,22 +509,21 @@
        /// <returns></returns>
        [Route("DeltetGy_Process")]
        [HttpGet]
        public object DeltetGy_Process(string HItemID)
        public object DeltetGy_Process(string HItemID, string user)
        {
            DataSet ds;
            DataSet ds1;
            //string ModRightNameCheck = "Sc_ProcessReport_check";
            try
            {
                //å é¤æé
                //if (!DBUtility.ClsPub.Security_Log(ModRightNameCheck, 1, false, CurUserName))
                //{
                //    objJsonResult.code = "0";
                //    objJsonResult.count = 0;
                //    objJsonResult.Message = "å®¡æ ¸å¤±è´¥ï¼æ æéï¼";
                //    objJsonResult.data = null;
                //    return objJsonResult;
                //}
                if (!DBUtility.ClsPub.Security_Log("Gy_Process_Delete", 1, false, user))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ å é¤æéï¼";
                    objJsonResult.data = null;
                    return objJsonResult;
                }

                SQLHelper.ClsCN oCN = new SQLHelper.ClsCN();
                if (string.IsNullOrWhiteSpace(HItemID))

 WebAPI/Controllers/BaseSet/Gy_PropertyController.cs

@@ -25,10 +25,19 @@
        /// </summary>
        [Route("Gy_Property/list")]
        [HttpGet]
        public object list(string sWhere)
        public object list(string sWhere,string user)
        {
            try
            {
                //ç¼è¾æé
                if (!DBUtility.ClsPub.Security_Log_second("Gy_Property", 1, false, user))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ æ¥çæéï¼";
                    objJsonResult.data = null;
                    return objJsonResult;
                }
                if (sWhere == null || sWhere.Equals(""))
                {
                    ds = oCN.RunProcReturn("select * from h_v_IF_PropertyList " + sWhere, "h_v_IF_PropertyList");

 WebAPI/Controllers/BaseSet/Gy_QCCheckClassController.cs

@@ -27,10 +27,20 @@
        /// </summary>
        [Route("Gy_QCCheckClass/list")]
        [HttpGet]
        public object list(string sWhere)
        public object list(string sWhere,string user)
        {
            try
            {
                //æ¥çæé
                if (!DBUtility.ClsPub.Security_Log("Gy_QCCheckItem", 1, false, user))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ æ¥çæéï¼";
                    objJsonResult.data = null;
                    return objJsonResult;
                }

                if (sWhere == null || sWhere.Equals(""))
                {
                    ds = oCN.RunProcReturn("select * from h_v_IF_QCCheckClassList " + sWhere, "h_v_IF_QCCheckClassList");
@@ -207,15 +217,29 @@
            {
                var _value = oMain["oMain"].ToString();
                string msg1 = _value.ToString();
                string[] sArray = msg1.Split(new string[] { ";" }, StringSplitOptions.RemoveEmptyEntries);
                string msg2 = sArray[0].ToString();
                string msg3 = sArray[1].ToString();
                string msg4 = sArray[2].ToString();
                string msg5 = sArray[3].ToString();
                //ååºåå
                msg1 = "[" + msg1.ToString() + "]";
                msg2 = "[" + msg2.ToString() + "]";

                DAL.ClsGy_QCCheckClass_Ctl oDept = new DAL.ClsGy_QCCheckClass_Ctl();
                DAL.ClsGy_QCCheckClass_View oDeptHlp = new DAL.ClsGy_QCCheckClass_View();


                //å¤ææé
                if (!ClsPub.Security_Log(msg5, 1, false, msg4))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ ä¿åæé";
                    objJsonResult.data = null;
                    return objJsonResult;
                }

                List<CheckItem> list = Newtonsoft.Json.JsonConvert.DeserializeObject<List<CheckItem>>(msg1);
                List<CheckItem> list = Newtonsoft.Json.JsonConvert.DeserializeObject<List<CheckItem>>(msg2);

                long HItemID = list[0].HItemID.ToString() == "" ? 0 : list[0].HItemID;
                string HNumber = list[0].HNumber;
@@ -313,7 +337,7 @@
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ²¡ææ¾å°è¯¥åè½æ¨¡åï¼";
                    objJsonResult.Message = "æ ä¿åæé";
                    objJsonResult.data = null;
                    return objJsonResult;
                }

 WebAPI/Controllers/BaseSet/Gy_SourceController.cs

@@ -28,10 +28,19 @@
        /// </summary>
        [Route("Gy_Source/list")]
        [HttpGet]
        public object list(string sWhere)
        public object list(string sWhere,string user)
        {
            try
            {
                //æ¥çæé
                if (!DBUtility.ClsPub.Security_Log("Gy_Source", 1, false, user))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ æ¥çæéï¼";
                    objJsonResult.data = null;
                    return objJsonResult;
                }
                if (sWhere == null || sWhere.Equals(""))
                {
                    ds = oCN.RunProcReturn("select * from h_v_IF_SourceList where 1=1 ", "h_v_IF_SourceList");
@@ -80,10 +89,21 @@
        {
            DataSet ds;
            var _value = msg["msg"].ToString();
            string msg1 = _value.ToString();
            //string[] sArray = msg1.Split(new string[] { ";" }, StringSplitOptions.RemoveEmptyEntries);
            //string msg2 = sArray[0].ToString();
            //string msg3 = sArray[1].ToString();
            string msg3 = _value.ToString();
            string[] sArray = msg3.Split(new string[] { ";" }, StringSplitOptions.RemoveEmptyEntries);
            string msg1 = sArray[0].ToString();
            string msg2 = sArray[1].ToString();

            //æ¥çæé
            if (!DBUtility.ClsPub.Security_Log("Gy_Source_Edit", 1, false, msg2))
            {
                objJsonResult.code = "0";
                objJsonResult.count = 0;
                objJsonResult.Message = "æ ä¿åæéï¼";
                objJsonResult.data = null;
                return objJsonResult;
            }

            Int64 HItemID = 0;
            SQLHelper.ClsCN oCN = new SQLHelper.ClsCN();
            //è·åæå¤§IDå¼èµå¼
@@ -280,21 +300,20 @@
        /// <returns></returns>
        [Route("DeltetGy_Source")]
        [HttpGet]
        public object DeltetGy_Source(string HItemID)
        public object DeltetGy_Source(string HItemID,string user)
        {
            DataSet ds;
            //string ModRightNameCheck = "Sc_ProcessReport_check";
            try
            {
                //å é¤æé
                //if (!DBUtility.ClsPub.Security_Log(ModRightNameCheck, 1, false, CurUserName))
                //{
                //    objJsonResult.code = "0";
                //    objJsonResult.count = 0;
                //    objJsonResult.Message = "å®¡æ ¸å¤±è´¥ï¼æ æéï¼";
                //    objJsonResult.data = null;
                //    return objJsonResult;
                //}
                if (!DBUtility.ClsPub.Security_Log("Gy_Source_Delete", 1, false, user))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ å é¤æé";
                    objJsonResult.data = null;
                    return objJsonResult;
                }

                SQLHelper.ClsCN oCN = new SQLHelper.ClsCN();
                if (string.IsNullOrWhiteSpace(HItemID))

 WebAPI/Controllers/BaseSet/Gy_SupplierController.cs

@@ -25,10 +25,19 @@
        /// </summary>
        [Route("Gy_Supplier/list")]
        [HttpGet]
        public object list(string sWhere,string Organization)
        public object list(string sWhere,string user,string Organization)
        {
            try
            {
                //ç¼è¾æé
                if (!DBUtility.ClsPub.Security_Log_second("Gy_Supplier", 1, false, user))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ æ¥çæéï¼";
                    objJsonResult.data = null;
                    return objJsonResult;
                }
                string sql1 = string.Format(@"select * from h_v_Gy_SupplierList where ç»ç»åç§°='" + Organization + "'");
                if (sWhere == null || sWhere.Equals(""))
                {
@@ -303,7 +312,7 @@
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ²¡ææ¾å°è¯¥åè½æ¨¡åï¼";
                    objJsonResult.Message = "æ ä¿åæéï¼";
                    objJsonResult.data = null;
                    return objJsonResult;
                }

 WebAPI/Controllers/BaseSet/Gy_UnitController.cs

@@ -27,10 +27,20 @@
        /// </summary>
        [Route("Gy_Unit/list1")]
        [HttpGet]
        public object list(string sWhere,string Organization)
        public object list(string sWhere,string user,string Organization)
        {
            try
            {
                //ç¼è¾æé
                if (!DBUtility.ClsPub.Security_Log_second("Gy_UnitGroup", 1, false, user))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ æ¥çæéï¼";
                    objJsonResult.data = null;
                    return objJsonResult;
                }

                string sql1 = string.Format(@"select * from h_v_Gy_UnitList where ç¦ç¨æ è®°='' and ç»ç»åç§°='" + Organization + "'");
                if (sWhere == null || sWhere.Equals(""))
                {
@@ -96,12 +106,13 @@
        {
            DataSet ds;
            var _value = msg["msg"].ToString();
            string msg1 = _value.ToString();
            //string[] sArray = msg1.Split(new string[] { ";" }, StringSplitOptions.RemoveEmptyEntries);
            //string msg2 = sArray[0].ToString();
            //string msg3 = sArray[1].ToString();
            string msg4 = _value.ToString();
            string[] sArray = msg4.Split(new string[] { ";" }, StringSplitOptions.RemoveEmptyEntries);
            string msg1 = sArray[0].ToString();
            string msg3 = sArray[1].ToString();
            Int64 HItemID = 0;
            SQLHelper.ClsCN oCN = new SQLHelper.ClsCN();

            //è·åæå¤§IDå¼èµå¼
            DataSet Maxds = oCN.RunProcReturn("select MAX(HItemID) HItemID from Gy_Unit ", "Gy_Unit");
            if (Maxds != null || Maxds.Tables[0].Rows.Count > 0)
@@ -114,6 +125,16 @@
            ListModels oListModels = new ListModels();
            try
            {
                //ç¼è¾æé
                if (!DBUtility.ClsPub.Security_Log_second("Gy_UnitGroup_Edit", 1, false, msg3))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ ä¿åæéï¼";
                    objJsonResult.data = null;
                    return objJsonResult;
                }

                DAL.ClsGy_Unit_Ctl oBill = new DAL.ClsGy_Unit_Ctl();
                List<Model.ClsGy_Unit_Model> lsmain = new List<Model.ClsGy_Unit_Model>();
                msg1 = msg1.Replace("\\", "");
@@ -295,21 +316,21 @@
        /// <returns></returns>
        [Route("DeltetGy_Unit")]
        [HttpGet]
        public object DeltetGy_Unit(string HItemID)
        public object DeltetGy_Unit(string HItemID,string user)
        {
            DataSet ds;
            //string ModRightNameCheck = "Sc_ProcessReport_check";
            try
            {
                //å é¤æé
                //if (!DBUtility.ClsPub.Security_Log(ModRightNameCheck, 1, false, CurUserName))
                //{
                //    objJsonResult.code = "0";
                //    objJsonResult.count = 0;
                //    objJsonResult.Message = "å®¡æ ¸å¤±è´¥ï¼æ æéï¼";
                //    objJsonResult.data = null;
                //    return objJsonResult;
                //}
                if (!DBUtility.ClsPub.Security_Log("Gy_UnitGroup_Delete", 1, false, user))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ å é¤æé";
                    objJsonResult.data = null;
                    return objJsonResult;
                }

                SQLHelper.ClsCN oCN = new SQLHelper.ClsCN();
                if (string.IsNullOrWhiteSpace(HItemID))

 WebAPI/Controllers/BaseSet/Gy_WarehouseController.cs

@@ -25,10 +25,19 @@
        /// </summary>
        [Route("Gy_Warehouse/list")]
        [HttpGet]
        public object list(string sWhere,string Organization)
        public object list(string sWhere,string user,string Organization)
        {
            try
            {
                //ç¼è¾æé
                if (!DBUtility.ClsPub.Security_Log_second("Gy_Warehouse", 1, false, user))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ æ¥çæéï¼";
                    objJsonResult.data = null;
                    return objJsonResult;
                }
                string sql1 = string.Format(@"select * from h_v_IF_WareHouseList where ç»ç»åç§°='" + Organization + "'");
                if (sWhere == null || sWhere.Equals(""))
                {
@@ -280,9 +289,8 @@
                string msg1 = _value.ToString();
                string[] sArray = msg1.Split(new string[] { ";" }, StringSplitOptions.RemoveEmptyEntries);
                string msg2 = sArray[0].ToString();
                //string msg3 = sArray[1].ToString();
                //string msg4 = sArray[2].ToString();
                //string msg5 = sArray[3].ToString();
                string msg3 = sArray[1].ToString();
               
                //ååºåå
                msg2 = "[" + msg2.ToString() + "]";
                List<Warehouse> list = Newtonsoft.Json.JsonConvert.DeserializeObject<List<Warehouse>>(msg2);
@@ -305,14 +313,14 @@
                string HUpDater = list[0].HUpDater;

                ////å¤ææé
                //if (!ClsPub.Security_Log(msg5, 1, false, msg4))
                //{
                //    objJsonResult.code = "0";
                //    objJsonResult.count = 0;
                //    objJsonResult.Message = "æ²¡ææ¾å°è¯¥åè½æ¨¡åï¼";
                //    objJsonResult.data = null;
                //    return objJsonResult;
                //}
                if (!ClsPub.Security_Log("Gy_Warehouse_Edit", 1, false, msg3))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ²¡ææ¾å°è¯¥åè½æ¨¡åï¼";
                    objJsonResult.data = null;
                    return objJsonResult;
                }

                //if (!DBUtility.ClsPub.AllowNumber(HNumber))
                //{
@@ -395,21 +403,21 @@
        /// <returns></returns>
        [Route("DeltetGy_Warehouse")]
        [HttpGet]
        public object DeltetGy_Warehouse(string HItemID)
        public object DeltetGy_Warehouse(string HItemID,string user)
        {
            DataSet ds;
            DataSet ds1;
            try
            {
                //å é¤æé
                //if (!DBUtility.ClsPub.Security_Log(ModRightNameCheck, 1, false, CurUserName))
                //{
                //    objJsonResult.code = "0";
                //    objJsonResult.count = 0;
                //    objJsonResult.Message = "å®¡æ ¸å¤±è´¥ï¼æ æéï¼";
                //    objJsonResult.data = null;
                //    return objJsonResult;
                //}
                if (!DBUtility.ClsPub.Security_Log("Gy_Warehouse_Delete", 1, false, user))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ å é¤æé";
                    objJsonResult.data = null;
                    return objJsonResult;
                }

                SQLHelper.ClsCN oCN = new SQLHelper.ClsCN();
                if (string.IsNullOrWhiteSpace(HItemID))

 WebAPI/Controllers/BaseSet/Gy_WorkCenterController.cs

@@ -26,10 +26,20 @@
        /// </summary>
        [Route("Gy_WorkCenter/list")]
        [HttpGet]
        public object list(string sWhere)
        public object list(string sWhere,string user)
        {
            try
            {
                //æ¥çæé
                if (!DBUtility.ClsPub.Security_Log("Gy_WorkCenter", 1, false, user))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ æ¥çæéï¼";
                    objJsonResult.data = null;
                    return objJsonResult;
                }

                if (sWhere == null || sWhere.Equals(""))
                {
                    ds = oCN.RunProcReturn("select * from h_v_WorkCenterList " + sWhere, "h_v_WorkCenterList");
@@ -227,10 +237,10 @@
                DAL.ClsGy_WorkCenter_View oDeptHlp = new DAL.ClsGy_WorkCenter_View();

                var _value = oMain["oMain"].ToString();
                string msg1 = _value.ToString();
                string[] sArray = msg1.Split(new string[] { ";" }, StringSplitOptions.RemoveEmptyEntries);
                string msg2 = sArray[0].ToString();
                //string msg3 = sArray[1].ToString();
                string msg3 = _value.ToString();
                string[] sArray = msg3.Split(new string[] { ";" }, StringSplitOptions.RemoveEmptyEntries);
                string msg1 = sArray[0].ToString();
                string msg2 = sArray[1].ToString();
                //string msg4 = sArray[2].ToString();
                //string msg5 = sArray[3].ToString();
                //ååºåå
@@ -256,15 +266,15 @@
                var HLevel = list[0].HLevel;
                var HWorkTimes = list[0].HWorkTimes;

                ////å¤ææé
                //if (!ClsPub.Security_Log(msg5, 1, false, msg4))
                //{
                //    objJsonResult.code = "0";
                //    objJsonResult.count = 0;
                //    objJsonResult.Message = "æ²¡ææ¾å°è¯¥åè½æ¨¡åï¼";
                //    objJsonResult.data = null;
                //    return objJsonResult;
                //}
                //å¤ææé
                if (!ClsPub.Security_Log("Gy_WorkCenter_Edit", 1, false, msg3))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ²¡ææ¾å°è¯¥åè½æ¨¡åï¼";
                    objJsonResult.data = null;
                    return objJsonResult;
                }

                //if (!DBUtility.ClsPub.AllowNumber(HNumber))
                //{
@@ -442,7 +452,7 @@
        /// <returns></returns>
        [Route("DeltetGy_WorkCenter")]
        [HttpGet]
        public object DeltetGy_WorkCenter(string HItemID)
        public object DeltetGy_WorkCenter(string HItemID,string user)
        {
            DataSet ds;
            DataSet ds1;
@@ -450,14 +460,14 @@
            try
            {
                //å é¤æé
                //if (!DBUtility.ClsPub.Security_Log(ModRightNameCheck, 1, false, CurUserName))
                //{
                //    objJsonResult.code = "0";
                //    objJsonResult.count = 0;
                //    objJsonResult.Message = "å®¡æ ¸å¤±è´¥ï¼æ æéï¼";
                //    objJsonResult.data = null;
                //    return objJsonResult;
                //}
                if (!DBUtility.ClsPub.Security_Log("Gy_WorkCenter_Delete", 1, false, user))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ å é¤æé";
                    objJsonResult.data = null;
                    return objJsonResult;
                }

                SQLHelper.ClsCN oCN = new SQLHelper.ClsCN();
                if (string.IsNullOrWhiteSpace(HItemID))

 WebAPI/Controllers/BaseSet/Pay_PeriodInfoSetController.cs

@@ -26,10 +26,19 @@
        /// </summary>
        [Route("Pay_PeriodInfoSet/list")]
        [HttpGet]
        public object list(string sWhere)
        public object list(string sWhere,string user)
        {
            try
            {
                //ç¼è¾æé
                if (!DBUtility.ClsPub.Security_Log_second("Pay_PeriodInfoSetList", 1, false, user))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ æ¥çæéï¼";
                    objJsonResult.data = null;
                    return objJsonResult;
                }
                if (sWhere == null || sWhere.Equals(""))
                {
                    ds = oCN.RunProcReturn("select * from h_v_Pay_PeriodInfoSetList " + sWhere, "h_v_Pay_PeriodInfoSetList");
@@ -187,7 +196,7 @@
                string msg1 = _value.ToString();
                string[] sArray = msg1.Split(new string[] { ";" }, StringSplitOptions.RemoveEmptyEntries);
                string msg2 = sArray[0].ToString();
                //string msg3 = sArray[1].ToString();
                string msg3 = sArray[1].ToString();
                //string msg4 = sArray[2].ToString();
                //string msg5 = sArray[3].ToString();
                //ååºåå
@@ -204,15 +213,15 @@
                bool HStopflag = list[0].HStopflag;
                string HUseFlag = list[0].HUseFlag;

                ////å¤ææé
                //if (!ClsPub.Security_Log(msg5, 1, false, msg4))
                //{
                //    objJsonResult.code = "0";
                //    objJsonResult.count = 0;
                //    objJsonResult.Message = "æ²¡ææ¾å°è¯¥åè½æ¨¡åï¼";
                //    objJsonResult.data = null;
                //    return objJsonResult;
                //}
                //å¤ææé
                if (!ClsPub.Security_Log("Pay_PeriodInfoSet_Edit", 1, false, msg3))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ ä¿åæé";
                    objJsonResult.data = null;
                    return objJsonResult;
                }

                //if (!DBUtility.ClsPub.AllowNumber(HNumber))
                //{
@@ -285,22 +294,20 @@
        /// <returns></returns>
        [Route("DeltetPay_PeriodInfoSet")]
        [HttpGet]
        public object DeltetPay_PeriodInfoSet(string HItemID)
        public object DeltetPay_PeriodInfoSet(string HItemID,string user)
        {
            DataSet ds;
            DataSet ds1;
            //string ModRightNameCheck = "Sc_ProcessReport_check";
            try
            {
                //å é¤æé
                //if (!DBUtility.ClsPub.Security_Log(ModRightNameCheck, 1, false, CurUserName))
                //{
                //    objJsonResult.code = "0";
                //    objJsonResult.count = 0;
                //    objJsonResult.Message = "å®¡æ ¸å¤±è´¥ï¼æ æéï¼";
                //    objJsonResult.data = null;
                //    return objJsonResult;
                //}
                if (!DBUtility.ClsPub.Security_Log("Pay_PeriodInfoSet_Delete", 1, false, user))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "å®¡æ ¸å¤±è´¥ï¼æ æéï¼";
                    objJsonResult.data = null;
                    return objJsonResult;
                }

                SQLHelper.ClsCN oCN = new SQLHelper.ClsCN();
                if (string.IsNullOrWhiteSpace(HItemID))

 WebAPI/Controllers/BaseSet/Xt_ORGANIZATIONSController.cs

@@ -25,10 +25,19 @@
        /// </summary>
        [Route("Xt_ORGANIZATIONS/list")]
        [HttpGet]
        public object list(string sWhere, string Organization)
        public object list(string sWhere,string user, string Organization)
        {
            try
            {
                //ç¼è¾æé
                if (!DBUtility.ClsPub.Security_Log_second("Gy_WorkCenter_Query", 1, false, user))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ æ¥çæéï¼";
                    objJsonResult.data = null;
                    return objJsonResult;
                }
                string sql1 = string.Format(@"select * from h_v_IF_ORGANIZATIONSList where ç»ç»åç§°='" + Organization + "'");
                if (sWhere == null || sWhere.Equals(""))
                {
@@ -139,7 +148,7 @@
                string msg1 = _value.ToString();
                string[] sArray = msg1.Split(new string[] { ";" }, StringSplitOptions.RemoveEmptyEntries);
                string msg2 = sArray[0].ToString();
                //string msg3 = sArray[1].ToString();
                string msg3 = sArray[1].ToString();
                //string msg4 = sArray[2].ToString();
                //string msg5 = sArray[3].ToString();
                //ååºåå
@@ -155,15 +164,15 @@
                string HRemark = list[0].HRemark;
                bool HStopflag = list[0].HStopflag;

                ////å¤ææé
                //if (!ClsPub.Security_Log(msg5, 1, false, msg4))
                //{
                //    objJsonResult.code = "0";
                //    objJsonResult.count = 0;
                //    objJsonResult.Message = "æ²¡ææ¾å°è¯¥åè½æ¨¡åï¼";
                //    objJsonResult.data = null;
                //    return objJsonResult;
                //}
                //å¤ææé
                if (!ClsPub.Security_Log("Gy_WorkCenter_Edit", 1, false, msg3))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ²¡ææ¾å°è¯¥åè½æ¨¡åï¼";
                    objJsonResult.data = null;
                    return objJsonResult;
                }

                //if (!DBUtility.ClsPub.AllowNumber(HNumber))
                //{

 WebAPI/Controllers/WebAPIController.cs

@@ -1270,10 +1270,21 @@
        {
            DataSet ds;
            var _value = msg["msg"].ToString();
            string msg1 = _value.ToString();
            //string[] sArray = msg1.Split(new string[] { ";" }, StringSplitOptions.RemoveEmptyEntries);
            //string msg2 = sArray[0].ToString();
            //string msg3 = sArray[1].ToString();
            string msg3 = _value.ToString();
            string[] sArray = msg3.Split(new string[] { ";" }, StringSplitOptions.RemoveEmptyEntries);
            string msg1 = sArray[0].ToString();
            string msg2 = sArray[1].ToString();

            //æ¥çæé
            if (!DBUtility.ClsPub.Security_Log("Gy_BadReason_Edit", 1, false, msg2))
            {
                objJsonResult.code = "0";
                objJsonResult.count = 0;
                objJsonResult.Message = "æ ä¿åæéï¼";
                objJsonResult.data = null;
                return objJsonResult;
            }

            Int64 HItemID = 0;
            SQLHelper.ClsCN oCN = new SQLHelper.ClsCN();
            //è·åæå¤§IDå¼èµå¼
@@ -1469,21 +1480,21 @@
        /// <returns></returns>
        [Route("DeltetGy_BadReason")]
        [HttpGet]
        public object DeltetGy_BadReason(string HItemID)
        public object DeltetGy_BadReason(string HItemID,string user)
        {
            DataSet ds;
            //string ModRightNameCheck = "Sc_ProcessReport_check";
            try
            {
                //å é¤æé
                //if (!DBUtility.ClsPub.Security_Log(ModRightNameCheck, 1, false, CurUserName))
                //{
                //    objJsonResult.code = "0";
                //    objJsonResult.count = 0;
                //    objJsonResult.Message = "å®¡æ ¸å¤±è´¥ï¼æ æéï¼";
                //    objJsonResult.data = null;
                //    return objJsonResult;
                //}
                if (!DBUtility.ClsPub.Security_Log("Gy_BadReason_Delete", 1, false, user))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ å é¤æéï¼";
                    objJsonResult.data = null;
                    return objJsonResult;
                }

                SQLHelper.ClsCN oCN = new SQLHelper.ClsCN();
                if (string.IsNullOrWhiteSpace(HItemID))

 WebAPI/Controllers/»ù´¡×ÊÁÏ/»ù´¡×ÊÁÏ/Gy_ConkReasonBillController.cs

@@ -22,10 +22,20 @@
        #region æéåå åè¡¨
        [Route("Gy_ConkReasonBill/Get_ConkReasonBillList")]
        [HttpGet]
        public object Get_ConkReasonBillList(string sWhere)
        public object Get_ConkReasonBillList(string sWhere,string user)
        {
            try
            {
                //æ¥çæé
                if (!DBUtility.ClsPub.Security_Log("Gy_ConkReason", 1, false, user))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ æ¥çæéï¼";
                    objJsonResult.data = null;
                    return objJsonResult;
                }

                ds = Sc_GetConkReasonBill(sWhere);
                if (ds == null)
                {
@@ -72,8 +82,18 @@
        #region [æéåå å é¤åè½]
        [Route("Gy_ConkReasonBill/set_DeleteBill")]
        [HttpGet]
        public object set_DeleteBill(string HItemID)
        public object set_DeleteBill(string HItemID,string user)
        {
            //å é¤æé
            if (!DBUtility.ClsPub.Security_Log("Gy_ConkReason_Delete", 1, false, user))
            {
                objJsonResult.code = "0";
                objJsonResult.count = 0;
                objJsonResult.Message = "æ å é¤æéï¼";
                objJsonResult.data = null;
                return objJsonResult;
            }

            Int64 lngBillKey = 0;
            lngBillKey = DBUtility.ClsPub.isLong(HItemID);
            if (lngBillKey == 0)
@@ -158,6 +178,15 @@
            ListModels oListModels = new ListModels();
            try
            {
                //æ¥çæé
                if (!DBUtility.ClsPub.Security_Log("Gy_ConkReason_Edit", 1, false, msg3))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ ä¿åæéï¼";
                    objJsonResult.data = null;
                    return objJsonResult;
                }
                Model.ClsGy_ConkReason_Model oBill = new Model.ClsGy_ConkReason_Model();
                List<Model.ClsGy_ConkReason_Model> lsmain = new List<Model.ClsGy_ConkReason_Model>();
                msg1 = msg1.Replace("\\", "");

 WebAPI/Controllers/»ù´¡×ÊÁÏ/»ù´¡×ÊÁÏ/Gy_DotCheckBillController.cs

@@ -74,7 +74,7 @@

            try
            {
                if (!DBUtility.ClsPub.Security_Log("Gy_DotCheck", 1, false, User))
                if (!DBUtility.ClsPub.Security_Log("Gy_DotCheck_Delete", 1, false, User))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
@@ -82,6 +82,7 @@
                    objJsonResult.data = null;
                    return objJsonResult;
                }

                ds = oCN.RunProcReturn("Select * from Gy_DotCheck Where HItemID='" + HItemID + "'", "Gy_DotCheck", ref DBUtility.ClsPub.sExeReturnInfo);
                if (ds.Tables[0].Rows.Count != 0)
                {
@@ -167,7 +168,7 @@
                string HUseFlag = list[0].HUseFlag;

                //å¤ææé
                if (!ClsPub.Security_Log("Gy_DotCheck", 1, false, msg4))
                if (!ClsPub.Security_Log("Gy_DotCheck_Edit", 1, false, msg4))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
@@ -257,7 +258,7 @@
                bool HEndFlag = list[0].HEndFlag;

                //å¤ææé
                if (!ClsPub.Security_Log("Gy_DotCheck", 1, false, msg3))
                if (!ClsPub.Security_Log("Gy_DotCheck_Edit", 1, false, msg3))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;

 WebAPI/Controllers/»ù´¡×ÊÁÏ/»ù´¡×ÊÁÏ/Gy_MaintainBillController.cs

@@ -257,14 +257,14 @@
                int HParentID = list[0].HParentID;

                //å¤ææé
                //if (!ClsPub.Security_Log("Gy_Maintain_Edit", 1, false, msg3))
                //{
                //    objJsonResult.code = "0";
                //    objJsonResult.count = 0;
                //    objJsonResult.Message = "æ²¡ææ¾å°è¯¥åè½æ¨¡åï¼";
                //    objJsonResult.data = null;
                //    return objJsonResult;
                //}
                if (!ClsPub.Security_Log("Gy_Maintain_Edit", 1, false, msg3))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ²¡ææ¾å°è¯¥åè½æ¨¡åï¼";
                    objJsonResult.data = null;
                    return objJsonResult;
                }

                if (!DBUtility.ClsPub.AllowNumber(HNumber))
                {

 WebAPI/Controllers/»ù´¡×ÊÁÏ/¹¤×Ê»ù´¡×ÊÁÏ/Gy_ProcPriceController.cs

@@ -21,10 +21,20 @@
        #region è¿åå·¥åºå·¥ä»·åè¡¨
        [Route("Gy_ProcPrice/list")]
        [HttpGet]
        public object list(string sWhere)
        public object list(string sWhere,string user)
        {
            try
            {
                //æ¥çæé
                if (!DBUtility.ClsPub.Security_Log("Gy_ProcPriceList", 1, false, user))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ æ¥çæéï¼";
                    objJsonResult.data = null;
                    return objJsonResult;
                }

                ds = oCN.RunProcReturn("select * from h_v_Gy_ProcPriceList where 1 = 1 " + sWhere, "h_v_Gy_ProcPriceList");
                if (ds == null || ds.Tables[0].Rows.Count == 0)
                {
@@ -71,9 +81,19 @@
            string msg2 = sArray[0].ToString();
            string msg3 = sArray[1].ToString();
            string OperationType = sArray[2].ToString().Trim();
            string msg4 = sArray[3].ToString();
            bool bResult;
            try
            {
                //æ¥çæé
                if (!DBUtility.ClsPub.Security_Log("Gy_ProcPriceList_Edit", 1, false, msg4))
                {
                    objJsonResult.code = "0";
                    objJsonResult.count = 0;
                    objJsonResult.Message = "æ ä¿åæéï¼";
                    objJsonResult.data = null;
                    return objJsonResult;
                }
                msg2 = "[" + msg2.ToString() + "]";
                List<ClsGy_ProcPrice> mainList = Newtonsoft.Json.JsonConvert.DeserializeObject<List<ClsGy_ProcPrice>>(msg2);
                List<ClsGy_ProcPrice> subList = Newtonsoft.Json.JsonConvert.DeserializeObject<List<ClsGy_ProcPrice>>(msg3);

			@@ -9,5 +9,6 @@
			<ErrorReportUrlHistory />
			<FallbackCulture>zh-CN</FallbackCulture>
			<VerifyUploadedFiles>false</VerifyUploadedFiles>
			<ProjectView>ShowAllFiles</ProjectView>
			</PropertyGroup>
			</Project>

			@@ -200,7 +200,7 @@
			model.HQty = DBUtility.ClsPub.isLong(grdMain_Pay.Rows[i].Cells[HNum2].Value);
			model.HQty = DBUtility.ClsPub.isInt(grdMain_Pay.Rows[i].Cells[HNum2].Value);
			model.HBatchNo = DBUtility.ClsPub.isStrNull(grdMain_Pay.Rows[i].Cells[HBatchNo].Value);
			model.HMaterID = DBUtility.ClsPub.isLong(grdMain_Pay.Rows[i].Cells[HMaterCol].Value);
			model.HMaterID = DBUtility.ClsPub.isLong(Ds.Tables[0].Rows[0]["HMaterID"].ToString());
			model.HUnitID = DBUtility.ClsPub.isLong(Ds.Tables[0].Rows[0]["HUnitID"].ToString());
			model.HSupID = DBUtility.ClsPub.isLong(Ds.Tables[0].Rows[0]["HSupID"].ToString());
			model.HDeptID = DBUtility.ClsPub.isLong(Ds.Tables[0].Rows[0]["HDeptID"].ToString());

			@@ -25,10 +25,20 @@
			/// </summary>
			[Route("Gy_BadReason/list")]
			[HttpGet]
			public object list(string sWhere)
			public object list(string sWhere,string user)
			{
			try
			{
			//æ¥çæé
			if (!DBUtility.ClsPub.Security_Log("Gy_BadReason", 1, false, user))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ æ¥çæéï¼";
			objJsonResult.data = null;
			return objJsonResult;
			}

			if (sWhere == null \|\| sWhere.Equals(""))
			{
			ds = oCN.RunProcReturn("select * from h_v_IF_BadReasonList " + sWhere+ " order by HItemID desc", "h_v_IF_BadReasonList");

			@@ -27,10 +27,20 @@
			/// </summary>
			[Route("Gy_CheckItem/list")]
			[HttpGet]
			public object list(string sWhere)
			public object list(string sWhere,string user)
			{
			try
			{
			//æ¥çæé
			if (!DBUtility.ClsPub.Security_Log("Gy_QCCheckItem", 1, false, user))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ æ¥çæéï¼";
			objJsonResult.data = null;
			return objJsonResult;
			}

			if (sWhere == null \|\| sWhere.Equals(""))
			{
			ds = oCN.RunProcReturn("select * from h_v_IF_QCCheckItemList " + sWhere, "h_v_IF_QCCheckItemList");
			@@ -126,14 +136,15 @@
			DAL.ClsGy_QCCheckItem_View oDeptHlp = new DAL.ClsGy_QCCheckItem_View();
			try
			{
			//if (!DBUtility.ClsPub.Security_Log(ModRightNameDelete, 1, false, User))
			//{
			// objJsonResult.code = "0";
			// objJsonResult.count = 0;
			// objJsonResult.Message = "æ²¡æå é¤æé";
			// objJsonResult.data = null;
			// return objJsonResult;
			//}
			if (!DBUtility.ClsPub.Security_Log(ModRightNameDelete, 1, false, User))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ²¡æå é¤æé";
			objJsonResult.data = null;
			return objJsonResult;
			}

			if (oDeptHlp.GetInfoByID(HItemID))
			{
			if (oDept.HavChildCodes(HItemID))
			@@ -313,14 +324,14 @@


			//å¤ææé
			//if (!ClsPub.Security_Log(msg5, 1, false, msg4))
			//{
			// objJsonResult.code = "0";
			// objJsonResult.count = 0;
			// objJsonResult.Message = "æ²¡ææ¾å°è¯¥åè½æ¨¡åï¼";
			// objJsonResult.data = null;
			// return objJsonResult;
			//}
			if (!ClsPub.Security_Log(msg5, 1, false, msg4))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ ä¿åæé";
			objJsonResult.data = null;
			return objJsonResult;
			}


			if (!DBUtility.ClsPub.AllowNumber(HNumber))

			@@ -27,10 +27,20 @@
			/// </summary>
			[Route("Gy_Currency/list1")]
			[HttpGet]
			public object list(string sWhere)
			public object list(string sWhere,string user)
			{
			try
			{
			//ç¼è¾æé
			if (!DBUtility.ClsPub.Security_Log_second("Gy_Currency", 1, false, user))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ æ¥çæéï¼";
			objJsonResult.data = null;
			return objJsonResult;
			}

			if (sWhere == null \|\| sWhere.Equals(""))
			{
			ds = oCN.RunProcReturn("select * from h_v_Gy_CurrencyList where ç¦ç¨æ è®°=''" + sWhere, "h_v_Gy_CurrencyList");
			@@ -106,10 +116,10 @@
			{
			DataSet ds;
			var _value = msg["msg"].ToString();
			string msg1 = _value.ToString();
			//string[] sArray = msg1.Split(new string[] { ";" }, StringSplitOptions.RemoveEmptyEntries);
			//string msg2 = sArray[0].ToString();
			//string msg3 = sArray[1].ToString();
			string msg3 = _value.ToString();
			string[] sArray = msg3.Split(new string[] { ";" }, StringSplitOptions.RemoveEmptyEntries);
			string msg1 = sArray[0].ToString();
			string user = sArray[1].ToString();
			Int64 HItemID = 0;
			SQLHelper.ClsCN oCN = new SQLHelper.ClsCN();
			//è·åæå¤§IDå¼èµå¼
			@@ -124,6 +134,16 @@
			ListModels oListModels = new ListModels();
			try
			{
			//ç¼è¾æé
			if (!DBUtility.ClsPub.Security_Log_second("Gy_Currency_Edit", 1, false, user))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ ä¿åæéï¼";
			objJsonResult.data = null;
			return objJsonResult;
			}

			DAL.ClsGy_Currency_Ctl oBill = new DAL.ClsGy_Currency_Ctl();
			List<Model.ClsGy_Currency_Model> lsmain = new List<Model.ClsGy_Currency_Model>();
			msg1 = msg1.Replace("\\", "");
			@@ -306,21 +326,21 @@
			/// <returns></returns>
			[Route("DeltetGy_Currency")]
			[HttpGet]
			public object DeltetGy_Currency(string HItemID)
			public object DeltetGy_Currency(string HItemID,string user)
			{
			DataSet ds;
			//string ModRightNameCheck = "Sc_ProcessReport_check";
			try
			{
			//å é¤æé
			//if (!DBUtility.ClsPub.Security_Log(ModRightNameCheck, 1, false, CurUserName))
			//{
			// objJsonResult.code = "0";
			// objJsonResult.count = 0;
			// objJsonResult.Message = "å®¡æ ¸å¤±è´¥ï¼æ æéï¼";
			// objJsonResult.data = null;
			// return objJsonResult;
			//}
			if (!DBUtility.ClsPub.Security_Log("Gy_Currency_Edit", 1, false, user))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ å é¤æéï¼";
			objJsonResult.data = null;
			return objJsonResult;
			}

			SQLHelper.ClsCN oCN = new SQLHelper.ClsCN();
			if (string.IsNullOrWhiteSpace(HItemID))

			@@ -25,10 +25,19 @@
			/// </summary>
			[Route("Gy_Customer/list")]
			[HttpGet]
			public object list(string sWhere, string Organization)
			public object list(string sWhere,string user, string Organization)
			{
			try
			{
			//ç¼è¾æé
			if (!DBUtility.ClsPub.Security_Log_second("Crm_CustomerFileList", 1, false, user))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ æ¥çæéï¼";
			objJsonResult.data = null;
			return objJsonResult;
			}
			string sql1 = string.Format(@"select * from h_v_Gy_CustomerList where ç»ç»åç§°='" + Organization + "'");
			if (sWhere == null \|\| sWhere.Equals(""))
			{
			@@ -165,14 +174,25 @@
			try
			{
			var _value = oMain["oMain"].ToString();
			string msg1 = _value.ToString();
			string msg3 = _value.ToString();
			string[] sArray = msg3.Split(new string[] { ";" }, StringSplitOptions.RemoveEmptyEntries);
			string msg1 = sArray[0].ToString();
			string msg2 = sArray[1].ToString();
			//ååºåå
			msg1 = "[" + msg1.ToString() + "]";

			DAL.ClsGy_Customer_Ctl oDept = new DAL.ClsGy_Customer_Ctl();
			DAL.ClsGy_Customer_View oDeptHlp = new DAL.ClsGy_Customer_View();


			//ç¼è¾æé
			if (!DBUtility.ClsPub.Security_Log_second("Gy_Customer_Edit", 1, false, msg2))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ ä¿åæéï¼";
			objJsonResult.data = null;
			return objJsonResult;
			}

			List<Customer> list = Newtonsoft.Json.JsonConvert.DeserializeObject<List<Customer>>(msg1);

			@@ -25,10 +25,19 @@
			/// </summary>
			[Route("Gy_Department/list")]
			[HttpGet]
			public object list(string sWhere,string Organization)
			public object list(string sWhere,string user,string Organization)
			{
			try
			{
			//æ¥çæé
			if (!DBUtility.ClsPub.Security_Log("Gy_Department", 1, false, user))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ æ¥çæé";
			objJsonResult.data = null;
			return objJsonResult;
			}
			string sql1 = string.Format(@"select * from h_v_IF_DepartmentList where ç»ç»åç§°='" + Organization + "'");
			if (sWhere == null \|\| sWhere.Equals(""))
			{
			@@ -103,21 +112,21 @@
			/// <returns></returns>
			[Route("DeltetGy_Department")]
			[HttpGet]
			public object DeltetGy_Department(string HItemID)
			public object DeltetGy_Department(string HItemID,string user)
			{
			DataSet ds;
			DataSet ds1;
			try
			{
			//å é¤æé
			//if (!DBUtility.ClsPub.Security_Log(ModRightNameCheck, 1, false, CurUserName))
			//{
			// objJsonResult.code = "0";
			// objJsonResult.count = 0;
			// objJsonResult.Message = "å®¡æ ¸å¤±è´¥ï¼æ æéï¼";
			// objJsonResult.data = null;
			// return objJsonResult;
			//}
			if (!DBUtility.ClsPub.Security_Log("Gy_Department_Delete", 1, false, user))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ å é¤æé";
			objJsonResult.data = null;
			return objJsonResult;
			}

			SQLHelper.ClsCN oCN = new SQLHelper.ClsCN();
			if (string.IsNullOrWhiteSpace(HItemID))
			@@ -368,6 +377,16 @@
			string msg3 = sArray[1].ToString();
			//string msg4 = sArray[2].ToString();
			//string msg5 = sArray[3].ToString();

			//ç¼è¾æé
			if (!DBUtility.ClsPub.Security_Log_second("Gy_Department_Edit", 1, false, msg3))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ ä¿åæéï¼";
			objJsonResult.data = null;
			return objJsonResult;
			}
			//ååºåå
			msg2 = "[" + msg2.ToString() + "]";
			List<Department> list = Newtonsoft.Json.JsonConvert.DeserializeObject<List<Department>>(msg2);

			@@ -27,10 +27,19 @@
			/// </summary>
			[Route("Gy_Employee/list")]
			[HttpGet]
			public object list(string sWhere,string Organization)
			public object list(string sWhere,string user,string Organization)
			{
			try
			{
			//ç¼è¾æé
			if (!DBUtility.ClsPub.Security_Log_second("Gy_Employee", 1, false, user))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ æ¥çæéï¼";
			objJsonResult.data = null;
			return objJsonResult;
			}
			string sql1 = string.Format(@"select * from h_v_IF_EmployeeList where ç»ç»åç§°='" + Organization + "'");
			if (sWhere == null \|\| sWhere.Equals(""))
			{
			@@ -261,9 +270,20 @@
			string msg1 = _value.ToString();
			string[] sArray = msg1.Split(new string[] { ";" }, StringSplitOptions.RemoveEmptyEntries);
			string msg2 = sArray[0].ToString();
			//string msg3 = sArray[1].ToString();
			string msg3 = sArray[1].ToString();
			//string msg4 = sArray[2].ToString();
			//string msg5 = sArray[3].ToString();

			//ç¼è¾æé
			if (!DBUtility.ClsPub.Security_Log_second("Gy_Employee_Edit", 1, false, msg3))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ ä¿åæéï¼";
			objJsonResult.data = null;
			return objJsonResult;
			}

			//ååºåå
			msg2 = "[" + msg2.ToString() + "]";
			List<Gy_Employee> list = Newtonsoft.Json.JsonConvert.DeserializeObject<List<Gy_Employee>>(msg2);
			@@ -795,21 +815,20 @@
			/// <returns></returns>
			[Route("DeltetGy_Employee")]
			[HttpGet]
			public object DeltetGy_Employee(string HItemID)
			public object DeltetGy_Employee(string HItemID,string user)
			{
			DataSet ds;
			//string ModRightNameCheck = "Sc_ProcessReport_check";
			try
			{
			//å é¤æé
			//if (!DBUtility.ClsPub.Security_Log(ModRightNameCheck, 1, false, CurUserName))
			//{
			// objJsonResult.code = "0";
			// objJsonResult.count = 0;
			// objJsonResult.Message = "å®¡æ ¸å¤±è´¥ï¼æ æéï¼";
			// objJsonResult.data = null;
			// return objJsonResult;
			//}
			if (!DBUtility.ClsPub.Security_Log("Gy_Employee_Delete", 1, false, user))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ å é¤æé";
			objJsonResult.data = null;
			return objJsonResult;
			}

			SQLHelper.ClsCN oCN = new SQLHelper.ClsCN();
			if (string.IsNullOrWhiteSpace(HItemID))

			@@ -26,10 +26,20 @@
			/// </summary>
			[Route("Gy_Group/list")]
			[HttpGet]
			public object list(string sWhere)
			public object list(string sWhere,string user)
			{
			try
			{
			//æ¥çæé
			if (!DBUtility.ClsPub.Security_Log("Gy_Group_Query", 1, false, user))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ æ¥çæéï¼";
			objJsonResult.data = null;
			return objJsonResult;
			}

			if (sWhere == null \|\| sWhere.Equals(""))
			{
			ds = oCN.RunProcReturn("select * from h_v_GroupList " + sWhere, "h_v_GroupList");
			@@ -146,10 +156,26 @@
			{
			var _value = oMain["oMain"].ToString();
			string msg1 = _value.ToString();
			string[] sArray = msg1.Split(new string[] { ";" }, StringSplitOptions.RemoveEmptyEntries);
			string msg2 = sArray[0].ToString();
			string msg3 = sArray[1].ToString();
			string msg4 = sArray[2].ToString();
			string msg5 = sArray[3].ToString();

			//å¤ææé
			if (!ClsPub.Security_Log(msg5, 1, false, msg4))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ ä¿åæé";
			objJsonResult.data = null;
			return objJsonResult;
			}

			//ååºåå
			msg1 = "[" + msg1.ToString() + "]";
			msg2 = "[" + msg2.ToString() + "]";
			DAL.ClsGy_Group_Ctl oDept = new DAL.ClsGy_Group_Ctl();
			List<Gy_Group> list = Newtonsoft.Json.JsonConvert.DeserializeObject<List<Gy_Group>>(msg1);
			List<Gy_Group> list = Newtonsoft.Json.JsonConvert.DeserializeObject<List<Gy_Group>>(msg2);
			long HItemID = list[0].HItemID;
			string HNumber = list[0].HNumber;
			string HName = list[0].HName;
			@@ -227,9 +253,9 @@
			string msg1 = _value.ToString();
			string[] sArray = msg1.Split(new string[] { ";" }, StringSplitOptions.RemoveEmptyEntries);
			string msg2 = sArray[0].ToString();
			//string msg3 = sArray[1].ToString();
			//string msg4 = sArray[2].ToString();
			//string msg5 = sArray[3].ToString();
			string msg3 = sArray[1].ToString();
			string msg4 = sArray[2].ToString();
			string msg5 = sArray[3].ToString();
			//ååºåå
			msg2 = "[" + msg2.ToString() + "]";
			List<Gy_Group> list = Newtonsoft.Json.JsonConvert.DeserializeObject<List<Gy_Group>>(msg2);
			@@ -253,15 +279,15 @@
			long HLevel = 1;
			//var HProcID = "";

			////å¤ææé
			//if (!ClsPub.Security_Log(msg5, 1, false, msg4))
			//{
			// objJsonResult.code = "0";
			// objJsonResult.count = 0;
			// objJsonResult.Message = "æ²¡ææ¾å°è¯¥åè½æ¨¡åï¼";
			// objJsonResult.data = null;
			// return objJsonResult;
			//}
			//å¤ææé
			if (!ClsPub.Security_Log(msg5, 1, false, msg4))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ ä¿åæé";
			objJsonResult.data = null;
			return objJsonResult;
			}

			//if (!DBUtility.ClsPub.AllowNumber(HNumber))
			//{
			@@ -430,9 +456,9 @@
			/// çç»å é¤åè½
			/// </summary>
			/// <returns></returns>
			[Route("DeltetGy_Group")]
			[Route("Gy_Group/DeltetGy_Group")]
			[HttpGet]
			public object DeltetGy_Group(string HItemID)
			public object DeltetGy_Group(string HItemID,string user)
			{
			DataSet ds;
			DataSet ds1;
			@@ -440,14 +466,14 @@
			try
			{
			//å é¤æé
			//if (!DBUtility.ClsPub.Security_Log(ModRightNameCheck, 1, false, CurUserName))
			//{
			// objJsonResult.code = "0";
			// objJsonResult.count = 0;
			// objJsonResult.Message = "å®¡æ ¸å¤±è´¥ï¼æ æéï¼";
			// objJsonResult.data = null;
			// return objJsonResult;
			//}
			if (!DBUtility.ClsPub.Security_Log("Gy_Group_Delete", 1, false, user))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ å é¤æéï¼";
			objJsonResult.data = null;
			return objJsonResult;
			}

			SQLHelper.ClsCN oCN = new SQLHelper.ClsCN();
			if (string.IsNullOrWhiteSpace(HItemID))

			@@ -27,10 +27,19 @@
			/// </summary>
			[Route("Gy_Material/list")]
			[HttpGet]
			public object list(string sWhere, string Organization)
			public object list(string sWhere,string user, string Organization)
			{
			try
			{
			//ç¼è¾æé
			if (!DBUtility.ClsPub.Security_Log_second("Gy_Material", 1, false, user))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ æ¥çæéï¼";
			objJsonResult.data = null;
			return objJsonResult;
			}
			string sql1 = string.Format(@"select * from h_v_Gy_MaterialList where ç»ç»åç§°='" + Organization + "'");
			if (sWhere == null \|\| sWhere.Equals(""))
			{
			@@ -80,12 +89,23 @@
			{
			DataSet ds;
			var _value = msg["msg"].ToString();
			string msg1 = _value.ToString();
			//string[] sArray = msg1.Split(new string[] { ";" }, StringSplitOptions.RemoveEmptyEntries);
			//string msg2 = sArray[0].ToString();
			//string msg3 = sArray[1].ToString();
			string msg3 = _value.ToString();
			string[] sArray = msg3.Split(new string[] { ";" }, StringSplitOptions.RemoveEmptyEntries);
			string msg1 = sArray[0].ToString();
			string msg2 = sArray[1].ToString();
			Int64 HItemID = 0;
			SQLHelper.ClsCN oCN = new SQLHelper.ClsCN();

			//ç¼è¾æé
			if (!DBUtility.ClsPub.Security_Log_second("Gy_Material_Edit", 1, false, msg2))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ ä¿åæéï¼";
			objJsonResult.data = null;
			return objJsonResult;
			}

			//è·åæå¤§IDå¼èµå¼
			DataSet Maxds = oCN.RunProcReturn("select MAX(HItemID) HItemID from Gy_Material ", "Gy_Material");
			if (Maxds != null \|\| Maxds.Tables[0].Rows.Count > 0)
			@@ -96,6 +116,7 @@
			HItemID = maxid;
			}
			ListModels oListModels = new ListModels();

			try
			{
			DLL.ClsGy_Material_Ctl oBill = new DLL.ClsGy_Material_Ctl();
			@@ -276,21 +297,20 @@
			/// <returns></returns>
			[Route("Gy_Material/Delete")]
			[HttpGet]
			public object DeltetGy_Material(string HItemID)
			public object DeltetGy_Material(string HItemID,string user)
			{
			DataSet ds;
			//string ModRightNameCheck = "Sc_ProcessReport_check";
			try
			{
			//å é¤æé
			//if (!DBUtility.ClsPub.Security_Log(ModRightNameCheck, 1, false, CurUserName))
			//{
			// objJsonResult.code = "0";
			// objJsonResult.count = 0;
			// objJsonResult.Message = "å®¡æ ¸å¤±è´¥ï¼æ æéï¼";
			// objJsonResult.data = null;
			// return objJsonResult;
			//}
			if (!DBUtility.ClsPub.Security_Log("Gy_Material_Delete", 1, false, user))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ å é¤æé";
			objJsonResult.data = null;
			return objJsonResult;
			}

			SQLHelper.ClsCN oCN = new SQLHelper.ClsCN();
			if (string.IsNullOrWhiteSpace(HItemID))

			@@ -27,10 +27,19 @@
			/// </summary>
			[Route("Gy_OrderBackInfo/list")]
			[HttpGet]
			public object list(string sWhere)
			public object list(string sWhere,string user)
			{
			try
			{
			//ç¼è¾æé
			if (!DBUtility.ClsPub.Security_Log_second("Gy_OrderBackInfoList", 1, false, user))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ æ¥çæéï¼";
			objJsonResult.data = null;
			return objJsonResult;
			}
			if (sWhere == null \|\| sWhere.Equals(""))
			{
			ds = oCN.RunProcReturn("select * from h_v_Gy_OrderBackInfoList " + sWhere, "h_v_Gy_OrderBackInfoList");
			@@ -120,11 +129,20 @@
			/// </summary>
			[Route("Gy_OrderBackInfo/Delete_Json")]
			[HttpGet]
			public object Delete_Json(long HItemID, string User, string ModRightNameDelete)
			public object Delete_Json(long HItemID, string User)
			{

			try
			{
			//ç¼è¾æé
			if (!DBUtility.ClsPub.Security_Log_second("Gy_OrderBackInfo_Delete", 1, false, User))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ å é¤æéï¼";
			objJsonResult.data = null;
			return objJsonResult;
			}
			ds = oCN.RunProcReturn("delete from Gy_OrderBackInfo where HItemID = " + HItemID, "Gy_OrderBackInfo");

			objJsonResult.code = "1";
			@@ -158,12 +176,18 @@
			{
			var _value = oMain["oMain"].ToString();
			string msg1 = _value.ToString();
			string[] sArray = msg1.Split(new string[] { ";" }, StringSplitOptions.RemoveEmptyEntries);
			string msg2 = sArray[0].ToString();
			string msg3 = sArray[1].ToString();
			string msg4 = sArray[2].ToString();
			string msg5 = sArray[3].ToString();


			//ååºåå
			msg1 = "[" + msg1.ToString() + "]";
			msg2 = "[" + msg2.ToString() + "]";
			List<Gy_OrderBackInfo> list = Newtonsoft.Json.JsonConvert.DeserializeObject<List<Gy_OrderBackInfo>>(msg2);

			List<Gy_OrderBackInfo> list = Newtonsoft.Json.JsonConvert.DeserializeObject<List<Gy_OrderBackInfo>>(msg1);

			long HItemID = list[0].HItemID.ToString() == "" ? 0 : list[0].HItemID;
			long HItemID = int.Parse(msg3);
			string HNumber = list[0].HNumber;
			string HName = list[0].HName;
			string HShortNumber = list[0].HNumber;
			@@ -172,7 +196,17 @@
			string HRemark = list[0].HRemark;
			bool HStopflag = list[0].HStopflag;
			bool HUseFlag = list[0].HUseFlag;


			//å¤ææé
			if (!ClsPub.Security_Log(msg5, 1, false, msg4))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ ä¿åæéï¼";
			objJsonResult.data = null;
			return objJsonResult;
			}

			if (!DBUtility.ClsPub.AllowNumber(HNumber))
			{
			objJsonResult.code = "0";
			@@ -256,7 +290,7 @@
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ²¡ææ¾å°è¯¥åè½æ¨¡åï¼";
			objJsonResult.Message = "æ ä¿åæéï¼";
			objJsonResult.data = null;
			return objJsonResult;
			}

			@@ -27,10 +27,20 @@
			/// </summary>
			[Route("Gy_OrderLev/list")]
			[HttpGet]
			public object list(string sWhere)
			public object list(string sWhere,string user)
			{
			try
			{
			//ç¼è¾æé
			if (!DBUtility.ClsPub.Security_Log_second("Gy_OrderLev", 1, false, user))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ æ¥çæéï¼";
			objJsonResult.data = null;
			return objJsonResult;
			}

			if (sWhere == null \|\| sWhere.Equals(""))
			{
			ds = oCN.RunProcReturn("select * from h_v_Gy_OrderLevList " + sWhere, "h_v_Gy_OrderLevList");
			@@ -206,7 +216,11 @@
			try
			{
			var _value = oMain["oMain"].ToString();
			string msg1 = _value.ToString();
			string msg3 = _value.ToString();
			string[] sArray = msg3.Split(new string[] { ";" }, StringSplitOptions.RemoveEmptyEntries);
			string msg1 = sArray[0].ToString();
			string msg2 = sArray[1].ToString();

			//ååºåå
			msg1 = "[" + msg1.ToString() + "]";

			@@ -227,7 +241,17 @@
			string HYX = list[0].HYX;
			bool HStopflag = list[0].HStopflag;
			bool HUseFlag = list[0].HUseFlag;


			//ç¼è¾æé
			if (!DBUtility.ClsPub.Security_Log_second("Gy_VipLevel_Edit", 1, false, msg2))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ ä¿åæéï¼";
			objJsonResult.data = null;
			return objJsonResult;
			}

			if (!DBUtility.ClsPub.AllowNumber(HNumber))
			{
			objJsonResult.code = "0";
			@@ -314,7 +338,7 @@
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ²¡ææ¾å°è¯¥åè½æ¨¡åï¼";
			objJsonResult.Message = "æ ä¿åæéï¼";
			objJsonResult.data = null;
			return objJsonResult;
			}

			@@ -275,7 +275,7 @@
			string msg1 = _value.ToString();
			string[] sArray = msg1.Split(new string[] { ";" }, StringSplitOptions.RemoveEmptyEntries);
			string msg2 = sArray[0].ToString();
			//string msg3 = sArray[1].ToString();
			string msg3 = sArray[1].ToString();
			//string msg4 = sArray[2].ToString();
			//string msg5 = sArray[3].ToString();
			//ååºåå
			@@ -310,15 +310,15 @@
			long HDeptID = list[0].HDeptID;
			long HProcID = list[0].HProcID;

			////å¤ææé
			//if (!ClsPub.Security_Log(msg5, 1, false, msg4))
			//{
			// objJsonResult.code = "0";
			// objJsonResult.count = 0;
			// objJsonResult.Message = "æ²¡ææ¾å°è¯¥åè½æ¨¡åï¼";
			// objJsonResult.data = null;
			// return objJsonResult;
			//}
			//å¤ææé
			if (!ClsPub.Security_Log("Gy_Process_Edit", 1, false, msg3))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ²¡ææ¾å°è¯¥åè½æ¨¡åï¼";
			objJsonResult.data = null;
			return objJsonResult;
			}

			//if (!DBUtility.ClsPub.AllowNumber(HNumber))
			//{
			@@ -412,10 +412,20 @@
			/// </summary>
			[Route("Gy_Process/list")]
			[HttpGet]
			public object getProcessList(string sWhere)
			public object getProcessList(string sWhere,string user)
			{
			try
			{
			//æ¥çæé
			if (!DBUtility.ClsPub.Security_Log("Gy_Process_Query", 1, false, user))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ æ¥çæéï¼";
			objJsonResult.data = null;
			return objJsonResult;
			}

			if (sWhere == null \|\| sWhere.Equals(""))
			{
			ds = oCN.RunProcReturn("select * from h_v_Gy_ProcessList " + sWhere, "h_v_Gy_ProcessList");
			@@ -499,22 +509,21 @@
			/// <returns></returns>
			[Route("DeltetGy_Process")]
			[HttpGet]
			public object DeltetGy_Process(string HItemID)
			public object DeltetGy_Process(string HItemID, string user)
			{
			DataSet ds;
			DataSet ds1;
			//string ModRightNameCheck = "Sc_ProcessReport_check";
			try
			{
			//å é¤æé
			//if (!DBUtility.ClsPub.Security_Log(ModRightNameCheck, 1, false, CurUserName))
			//{
			// objJsonResult.code = "0";
			// objJsonResult.count = 0;
			// objJsonResult.Message = "å®¡æ ¸å¤±è´¥ï¼æ æéï¼";
			// objJsonResult.data = null;
			// return objJsonResult;
			//}
			if (!DBUtility.ClsPub.Security_Log("Gy_Process_Delete", 1, false, user))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ å é¤æéï¼";
			objJsonResult.data = null;
			return objJsonResult;
			}

			SQLHelper.ClsCN oCN = new SQLHelper.ClsCN();
			if (string.IsNullOrWhiteSpace(HItemID))

			@@ -25,10 +25,19 @@
			/// </summary>
			[Route("Gy_Property/list")]
			[HttpGet]
			public object list(string sWhere)
			public object list(string sWhere,string user)
			{
			try
			{
			//ç¼è¾æé
			if (!DBUtility.ClsPub.Security_Log_second("Gy_Property", 1, false, user))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ æ¥çæéï¼";
			objJsonResult.data = null;
			return objJsonResult;
			}
			if (sWhere == null \|\| sWhere.Equals(""))
			{
			ds = oCN.RunProcReturn("select * from h_v_IF_PropertyList " + sWhere, "h_v_IF_PropertyList");

			@@ -27,10 +27,20 @@
			/// </summary>
			[Route("Gy_QCCheckClass/list")]
			[HttpGet]
			public object list(string sWhere)
			public object list(string sWhere,string user)
			{
			try
			{
			//æ¥çæé
			if (!DBUtility.ClsPub.Security_Log("Gy_QCCheckItem", 1, false, user))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ æ¥çæéï¼";
			objJsonResult.data = null;
			return objJsonResult;
			}

			if (sWhere == null \|\| sWhere.Equals(""))
			{
			ds = oCN.RunProcReturn("select * from h_v_IF_QCCheckClassList " + sWhere, "h_v_IF_QCCheckClassList");
			@@ -207,15 +217,29 @@
			{
			var _value = oMain["oMain"].ToString();
			string msg1 = _value.ToString();
			string[] sArray = msg1.Split(new string[] { ";" }, StringSplitOptions.RemoveEmptyEntries);
			string msg2 = sArray[0].ToString();
			string msg3 = sArray[1].ToString();
			string msg4 = sArray[2].ToString();
			string msg5 = sArray[3].ToString();
			//ååºåå
			msg1 = "[" + msg1.ToString() + "]";
			msg2 = "[" + msg2.ToString() + "]";

			DAL.ClsGy_QCCheckClass_Ctl oDept = new DAL.ClsGy_QCCheckClass_Ctl();
			DAL.ClsGy_QCCheckClass_View oDeptHlp = new DAL.ClsGy_QCCheckClass_View();


			//å¤ææé
			if (!ClsPub.Security_Log(msg5, 1, false, msg4))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ ä¿åæé";
			objJsonResult.data = null;
			return objJsonResult;
			}

			List<CheckItem> list = Newtonsoft.Json.JsonConvert.DeserializeObject<List<CheckItem>>(msg1);
			List<CheckItem> list = Newtonsoft.Json.JsonConvert.DeserializeObject<List<CheckItem>>(msg2);

			long HItemID = list[0].HItemID.ToString() == "" ? 0 : list[0].HItemID;
			string HNumber = list[0].HNumber;
			@@ -313,7 +337,7 @@
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ²¡ææ¾å°è¯¥åè½æ¨¡åï¼";
			objJsonResult.Message = "æ ä¿åæé";
			objJsonResult.data = null;
			return objJsonResult;
			}

			@@ -28,10 +28,19 @@
			/// </summary>
			[Route("Gy_Source/list")]
			[HttpGet]
			public object list(string sWhere)
			public object list(string sWhere,string user)
			{
			try
			{
			//æ¥çæé
			if (!DBUtility.ClsPub.Security_Log("Gy_Source", 1, false, user))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ æ¥çæéï¼";
			objJsonResult.data = null;
			return objJsonResult;
			}
			if (sWhere == null \|\| sWhere.Equals(""))
			{
			ds = oCN.RunProcReturn("select * from h_v_IF_SourceList where 1=1 ", "h_v_IF_SourceList");
			@@ -80,10 +89,21 @@
			{
			DataSet ds;
			var _value = msg["msg"].ToString();
			string msg1 = _value.ToString();
			//string[] sArray = msg1.Split(new string[] { ";" }, StringSplitOptions.RemoveEmptyEntries);
			//string msg2 = sArray[0].ToString();
			//string msg3 = sArray[1].ToString();
			string msg3 = _value.ToString();
			string[] sArray = msg3.Split(new string[] { ";" }, StringSplitOptions.RemoveEmptyEntries);
			string msg1 = sArray[0].ToString();
			string msg2 = sArray[1].ToString();

			//æ¥çæé
			if (!DBUtility.ClsPub.Security_Log("Gy_Source_Edit", 1, false, msg2))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ ä¿åæéï¼";
			objJsonResult.data = null;
			return objJsonResult;
			}

			Int64 HItemID = 0;
			SQLHelper.ClsCN oCN = new SQLHelper.ClsCN();
			//è·åæå¤§IDå¼èµå¼
			@@ -280,21 +300,20 @@
			/// <returns></returns>
			[Route("DeltetGy_Source")]
			[HttpGet]
			public object DeltetGy_Source(string HItemID)
			public object DeltetGy_Source(string HItemID,string user)
			{
			DataSet ds;
			//string ModRightNameCheck = "Sc_ProcessReport_check";
			try
			{
			//å é¤æé
			//if (!DBUtility.ClsPub.Security_Log(ModRightNameCheck, 1, false, CurUserName))
			//{
			// objJsonResult.code = "0";
			// objJsonResult.count = 0;
			// objJsonResult.Message = "å®¡æ ¸å¤±è´¥ï¼æ æéï¼";
			// objJsonResult.data = null;
			// return objJsonResult;
			//}
			if (!DBUtility.ClsPub.Security_Log("Gy_Source_Delete", 1, false, user))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ å é¤æé";
			objJsonResult.data = null;
			return objJsonResult;
			}

			SQLHelper.ClsCN oCN = new SQLHelper.ClsCN();
			if (string.IsNullOrWhiteSpace(HItemID))

			@@ -25,10 +25,19 @@
			/// </summary>
			[Route("Gy_Supplier/list")]
			[HttpGet]
			public object list(string sWhere,string Organization)
			public object list(string sWhere,string user,string Organization)
			{
			try
			{
			//ç¼è¾æé
			if (!DBUtility.ClsPub.Security_Log_second("Gy_Supplier", 1, false, user))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ æ¥çæéï¼";
			objJsonResult.data = null;
			return objJsonResult;
			}
			string sql1 = string.Format(@"select * from h_v_Gy_SupplierList where ç»ç»åç§°='" + Organization + "'");
			if (sWhere == null \|\| sWhere.Equals(""))
			{
			@@ -303,7 +312,7 @@
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ²¡ææ¾å°è¯¥åè½æ¨¡åï¼";
			objJsonResult.Message = "æ ä¿åæéï¼";
			objJsonResult.data = null;
			return objJsonResult;
			}

			@@ -27,10 +27,20 @@
			/// </summary>
			[Route("Gy_Unit/list1")]
			[HttpGet]
			public object list(string sWhere,string Organization)
			public object list(string sWhere,string user,string Organization)
			{
			try
			{
			//ç¼è¾æé
			if (!DBUtility.ClsPub.Security_Log_second("Gy_UnitGroup", 1, false, user))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ æ¥çæéï¼";
			objJsonResult.data = null;
			return objJsonResult;
			}

			string sql1 = string.Format(@"select * from h_v_Gy_UnitList where ç¦ç¨æ è®°='' and ç»ç»åç§°='" + Organization + "'");
			if (sWhere == null \|\| sWhere.Equals(""))
			{
			@@ -96,12 +106,13 @@
			{
			DataSet ds;
			var _value = msg["msg"].ToString();
			string msg1 = _value.ToString();
			//string[] sArray = msg1.Split(new string[] { ";" }, StringSplitOptions.RemoveEmptyEntries);
			//string msg2 = sArray[0].ToString();
			//string msg3 = sArray[1].ToString();
			string msg4 = _value.ToString();
			string[] sArray = msg4.Split(new string[] { ";" }, StringSplitOptions.RemoveEmptyEntries);
			string msg1 = sArray[0].ToString();
			string msg3 = sArray[1].ToString();
			Int64 HItemID = 0;
			SQLHelper.ClsCN oCN = new SQLHelper.ClsCN();

			//è·åæå¤§IDå¼èµå¼
			DataSet Maxds = oCN.RunProcReturn("select MAX(HItemID) HItemID from Gy_Unit ", "Gy_Unit");
			if (Maxds != null \|\| Maxds.Tables[0].Rows.Count > 0)
			@@ -114,6 +125,16 @@
			ListModels oListModels = new ListModels();
			try
			{
			//ç¼è¾æé
			if (!DBUtility.ClsPub.Security_Log_second("Gy_UnitGroup_Edit", 1, false, msg3))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ ä¿åæéï¼";
			objJsonResult.data = null;
			return objJsonResult;
			}

			DAL.ClsGy_Unit_Ctl oBill = new DAL.ClsGy_Unit_Ctl();
			List<Model.ClsGy_Unit_Model> lsmain = new List<Model.ClsGy_Unit_Model>();
			msg1 = msg1.Replace("\\", "");
			@@ -295,21 +316,21 @@
			/// <returns></returns>
			[Route("DeltetGy_Unit")]
			[HttpGet]
			public object DeltetGy_Unit(string HItemID)
			public object DeltetGy_Unit(string HItemID,string user)
			{
			DataSet ds;
			//string ModRightNameCheck = "Sc_ProcessReport_check";
			try
			{
			//å é¤æé
			//if (!DBUtility.ClsPub.Security_Log(ModRightNameCheck, 1, false, CurUserName))
			//{
			// objJsonResult.code = "0";
			// objJsonResult.count = 0;
			// objJsonResult.Message = "å®¡æ ¸å¤±è´¥ï¼æ æéï¼";
			// objJsonResult.data = null;
			// return objJsonResult;
			//}
			if (!DBUtility.ClsPub.Security_Log("Gy_UnitGroup_Delete", 1, false, user))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ å é¤æé";
			objJsonResult.data = null;
			return objJsonResult;
			}

			SQLHelper.ClsCN oCN = new SQLHelper.ClsCN();
			if (string.IsNullOrWhiteSpace(HItemID))

			@@ -25,10 +25,19 @@
			/// </summary>
			[Route("Gy_Warehouse/list")]
			[HttpGet]
			public object list(string sWhere,string Organization)
			public object list(string sWhere,string user,string Organization)
			{
			try
			{
			//ç¼è¾æé
			if (!DBUtility.ClsPub.Security_Log_second("Gy_Warehouse", 1, false, user))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ æ¥çæéï¼";
			objJsonResult.data = null;
			return objJsonResult;
			}
			string sql1 = string.Format(@"select * from h_v_IF_WareHouseList where ç»ç»åç§°='" + Organization + "'");
			if (sWhere == null \|\| sWhere.Equals(""))
			{
			@@ -280,9 +289,8 @@
			string msg1 = _value.ToString();
			string[] sArray = msg1.Split(new string[] { ";" }, StringSplitOptions.RemoveEmptyEntries);
			string msg2 = sArray[0].ToString();
			//string msg3 = sArray[1].ToString();
			//string msg4 = sArray[2].ToString();
			//string msg5 = sArray[3].ToString();
			string msg3 = sArray[1].ToString();

			//ååºåå
			msg2 = "[" + msg2.ToString() + "]";
			List<Warehouse> list = Newtonsoft.Json.JsonConvert.DeserializeObject<List<Warehouse>>(msg2);
			@@ -305,14 +313,14 @@
			string HUpDater = list[0].HUpDater;

			////å¤ææé
			//if (!ClsPub.Security_Log(msg5, 1, false, msg4))
			//{
			// objJsonResult.code = "0";
			// objJsonResult.count = 0;
			// objJsonResult.Message = "æ²¡ææ¾å°è¯¥åè½æ¨¡åï¼";
			// objJsonResult.data = null;
			// return objJsonResult;
			//}
			if (!ClsPub.Security_Log("Gy_Warehouse_Edit", 1, false, msg3))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ²¡ææ¾å°è¯¥åè½æ¨¡åï¼";
			objJsonResult.data = null;
			return objJsonResult;
			}

			//if (!DBUtility.ClsPub.AllowNumber(HNumber))
			//{
			@@ -395,21 +403,21 @@
			/// <returns></returns>
			[Route("DeltetGy_Warehouse")]
			[HttpGet]
			public object DeltetGy_Warehouse(string HItemID)
			public object DeltetGy_Warehouse(string HItemID,string user)
			{
			DataSet ds;
			DataSet ds1;
			try
			{
			//å é¤æé
			//if (!DBUtility.ClsPub.Security_Log(ModRightNameCheck, 1, false, CurUserName))
			//{
			// objJsonResult.code = "0";
			// objJsonResult.count = 0;
			// objJsonResult.Message = "å®¡æ ¸å¤±è´¥ï¼æ æéï¼";
			// objJsonResult.data = null;
			// return objJsonResult;
			//}
			if (!DBUtility.ClsPub.Security_Log("Gy_Warehouse_Delete", 1, false, user))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ å é¤æé";
			objJsonResult.data = null;
			return objJsonResult;
			}

			SQLHelper.ClsCN oCN = new SQLHelper.ClsCN();
			if (string.IsNullOrWhiteSpace(HItemID))

			@@ -26,10 +26,20 @@
			/// </summary>
			[Route("Gy_WorkCenter/list")]
			[HttpGet]
			public object list(string sWhere)
			public object list(string sWhere,string user)
			{
			try
			{
			//æ¥çæé
			if (!DBUtility.ClsPub.Security_Log("Gy_WorkCenter", 1, false, user))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ æ¥çæéï¼";
			objJsonResult.data = null;
			return objJsonResult;
			}

			if (sWhere == null \|\| sWhere.Equals(""))
			{
			ds = oCN.RunProcReturn("select * from h_v_WorkCenterList " + sWhere, "h_v_WorkCenterList");
			@@ -227,10 +237,10 @@
			DAL.ClsGy_WorkCenter_View oDeptHlp = new DAL.ClsGy_WorkCenter_View();

			var _value = oMain["oMain"].ToString();
			string msg1 = _value.ToString();
			string[] sArray = msg1.Split(new string[] { ";" }, StringSplitOptions.RemoveEmptyEntries);
			string msg2 = sArray[0].ToString();
			//string msg3 = sArray[1].ToString();
			string msg3 = _value.ToString();
			string[] sArray = msg3.Split(new string[] { ";" }, StringSplitOptions.RemoveEmptyEntries);
			string msg1 = sArray[0].ToString();
			string msg2 = sArray[1].ToString();
			//string msg4 = sArray[2].ToString();
			//string msg5 = sArray[3].ToString();
			//ååºåå
			@@ -256,15 +266,15 @@
			var HLevel = list[0].HLevel;
			var HWorkTimes = list[0].HWorkTimes;

			////å¤ææé
			//if (!ClsPub.Security_Log(msg5, 1, false, msg4))
			//{
			// objJsonResult.code = "0";
			// objJsonResult.count = 0;
			// objJsonResult.Message = "æ²¡ææ¾å°è¯¥åè½æ¨¡åï¼";
			// objJsonResult.data = null;
			// return objJsonResult;
			//}
			//å¤ææé
			if (!ClsPub.Security_Log("Gy_WorkCenter_Edit", 1, false, msg3))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ²¡ææ¾å°è¯¥åè½æ¨¡åï¼";
			objJsonResult.data = null;
			return objJsonResult;
			}

			//if (!DBUtility.ClsPub.AllowNumber(HNumber))
			//{
			@@ -442,7 +452,7 @@
			/// <returns></returns>
			[Route("DeltetGy_WorkCenter")]
			[HttpGet]
			public object DeltetGy_WorkCenter(string HItemID)
			public object DeltetGy_WorkCenter(string HItemID,string user)
			{
			DataSet ds;
			DataSet ds1;
			@@ -450,14 +460,14 @@
			try
			{
			//å é¤æé
			//if (!DBUtility.ClsPub.Security_Log(ModRightNameCheck, 1, false, CurUserName))
			//{
			// objJsonResult.code = "0";
			// objJsonResult.count = 0;
			// objJsonResult.Message = "å®¡æ ¸å¤±è´¥ï¼æ æéï¼";
			// objJsonResult.data = null;
			// return objJsonResult;
			//}
			if (!DBUtility.ClsPub.Security_Log("Gy_WorkCenter_Delete", 1, false, user))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ å é¤æé";
			objJsonResult.data = null;
			return objJsonResult;
			}

			SQLHelper.ClsCN oCN = new SQLHelper.ClsCN();
			if (string.IsNullOrWhiteSpace(HItemID))

			@@ -26,10 +26,19 @@
			/// </summary>
			[Route("Pay_PeriodInfoSet/list")]
			[HttpGet]
			public object list(string sWhere)
			public object list(string sWhere,string user)
			{
			try
			{
			//ç¼è¾æé
			if (!DBUtility.ClsPub.Security_Log_second("Pay_PeriodInfoSetList", 1, false, user))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ æ¥çæéï¼";
			objJsonResult.data = null;
			return objJsonResult;
			}
			if (sWhere == null \|\| sWhere.Equals(""))
			{
			ds = oCN.RunProcReturn("select * from h_v_Pay_PeriodInfoSetList " + sWhere, "h_v_Pay_PeriodInfoSetList");
			@@ -187,7 +196,7 @@
			string msg1 = _value.ToString();
			string[] sArray = msg1.Split(new string[] { ";" }, StringSplitOptions.RemoveEmptyEntries);
			string msg2 = sArray[0].ToString();
			//string msg3 = sArray[1].ToString();
			string msg3 = sArray[1].ToString();
			//string msg4 = sArray[2].ToString();
			//string msg5 = sArray[3].ToString();
			//ååºåå
			@@ -204,15 +213,15 @@
			bool HStopflag = list[0].HStopflag;
			string HUseFlag = list[0].HUseFlag;

			////å¤ææé
			//if (!ClsPub.Security_Log(msg5, 1, false, msg4))
			//{
			// objJsonResult.code = "0";
			// objJsonResult.count = 0;
			// objJsonResult.Message = "æ²¡ææ¾å°è¯¥åè½æ¨¡åï¼";
			// objJsonResult.data = null;
			// return objJsonResult;
			//}
			//å¤ææé
			if (!ClsPub.Security_Log("Pay_PeriodInfoSet_Edit", 1, false, msg3))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ ä¿åæé";
			objJsonResult.data = null;
			return objJsonResult;
			}

			//if (!DBUtility.ClsPub.AllowNumber(HNumber))
			//{
			@@ -285,22 +294,20 @@
			/// <returns></returns>
			[Route("DeltetPay_PeriodInfoSet")]
			[HttpGet]
			public object DeltetPay_PeriodInfoSet(string HItemID)
			public object DeltetPay_PeriodInfoSet(string HItemID,string user)
			{
			DataSet ds;
			DataSet ds1;
			//string ModRightNameCheck = "Sc_ProcessReport_check";
			try
			{
			//å é¤æé
			//if (!DBUtility.ClsPub.Security_Log(ModRightNameCheck, 1, false, CurUserName))
			//{
			// objJsonResult.code = "0";
			// objJsonResult.count = 0;
			// objJsonResult.Message = "å®¡æ ¸å¤±è´¥ï¼æ æéï¼";
			// objJsonResult.data = null;
			// return objJsonResult;
			//}
			if (!DBUtility.ClsPub.Security_Log("Pay_PeriodInfoSet_Delete", 1, false, user))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "å®¡æ ¸å¤±è´¥ï¼æ æéï¼";
			objJsonResult.data = null;
			return objJsonResult;
			}

			SQLHelper.ClsCN oCN = new SQLHelper.ClsCN();
			if (string.IsNullOrWhiteSpace(HItemID))

			@@ -25,10 +25,19 @@
			/// </summary>
			[Route("Xt_ORGANIZATIONS/list")]
			[HttpGet]
			public object list(string sWhere, string Organization)
			public object list(string sWhere,string user, string Organization)
			{
			try
			{
			//ç¼è¾æé
			if (!DBUtility.ClsPub.Security_Log_second("Gy_WorkCenter_Query", 1, false, user))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ æ¥çæéï¼";
			objJsonResult.data = null;
			return objJsonResult;
			}
			string sql1 = string.Format(@"select * from h_v_IF_ORGANIZATIONSList where ç»ç»åç§°='" + Organization + "'");
			if (sWhere == null \|\| sWhere.Equals(""))
			{
			@@ -139,7 +148,7 @@
			string msg1 = _value.ToString();
			string[] sArray = msg1.Split(new string[] { ";" }, StringSplitOptions.RemoveEmptyEntries);
			string msg2 = sArray[0].ToString();
			//string msg3 = sArray[1].ToString();
			string msg3 = sArray[1].ToString();
			//string msg4 = sArray[2].ToString();
			//string msg5 = sArray[3].ToString();
			//ååºåå
			@@ -155,15 +164,15 @@
			string HRemark = list[0].HRemark;
			bool HStopflag = list[0].HStopflag;

			////å¤ææé
			//if (!ClsPub.Security_Log(msg5, 1, false, msg4))
			//{
			// objJsonResult.code = "0";
			// objJsonResult.count = 0;
			// objJsonResult.Message = "æ²¡ææ¾å°è¯¥åè½æ¨¡åï¼";
			// objJsonResult.data = null;
			// return objJsonResult;
			//}
			//å¤ææé
			if (!ClsPub.Security_Log("Gy_WorkCenter_Edit", 1, false, msg3))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ²¡ææ¾å°è¯¥åè½æ¨¡åï¼";
			objJsonResult.data = null;
			return objJsonResult;
			}

			//if (!DBUtility.ClsPub.AllowNumber(HNumber))
			//{

			@@ -1270,10 +1270,21 @@
			{
			DataSet ds;
			var _value = msg["msg"].ToString();
			string msg1 = _value.ToString();
			//string[] sArray = msg1.Split(new string[] { ";" }, StringSplitOptions.RemoveEmptyEntries);
			//string msg2 = sArray[0].ToString();
			//string msg3 = sArray[1].ToString();
			string msg3 = _value.ToString();
			string[] sArray = msg3.Split(new string[] { ";" }, StringSplitOptions.RemoveEmptyEntries);
			string msg1 = sArray[0].ToString();
			string msg2 = sArray[1].ToString();

			//æ¥çæé
			if (!DBUtility.ClsPub.Security_Log("Gy_BadReason_Edit", 1, false, msg2))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ ä¿åæéï¼";
			objJsonResult.data = null;
			return objJsonResult;
			}

			Int64 HItemID = 0;
			SQLHelper.ClsCN oCN = new SQLHelper.ClsCN();
			//è·åæå¤§IDå¼èµå¼
			@@ -1469,21 +1480,21 @@
			/// <returns></returns>
			[Route("DeltetGy_BadReason")]
			[HttpGet]
			public object DeltetGy_BadReason(string HItemID)
			public object DeltetGy_BadReason(string HItemID,string user)
			{
			DataSet ds;
			//string ModRightNameCheck = "Sc_ProcessReport_check";
			try
			{
			//å é¤æé
			//if (!DBUtility.ClsPub.Security_Log(ModRightNameCheck, 1, false, CurUserName))
			//{
			// objJsonResult.code = "0";
			// objJsonResult.count = 0;
			// objJsonResult.Message = "å®¡æ ¸å¤±è´¥ï¼æ æéï¼";
			// objJsonResult.data = null;
			// return objJsonResult;
			//}
			if (!DBUtility.ClsPub.Security_Log("Gy_BadReason_Delete", 1, false, user))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ å é¤æéï¼";
			objJsonResult.data = null;
			return objJsonResult;
			}

			SQLHelper.ClsCN oCN = new SQLHelper.ClsCN();
			if (string.IsNullOrWhiteSpace(HItemID))

			@@ -22,10 +22,20 @@
			#region æéåå åè¡¨
			[Route("Gy_ConkReasonBill/Get_ConkReasonBillList")]
			[HttpGet]
			public object Get_ConkReasonBillList(string sWhere)
			public object Get_ConkReasonBillList(string sWhere,string user)
			{
			try
			{
			//æ¥çæé
			if (!DBUtility.ClsPub.Security_Log("Gy_ConkReason", 1, false, user))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ æ¥çæéï¼";
			objJsonResult.data = null;
			return objJsonResult;
			}

			ds = Sc_GetConkReasonBill(sWhere);
			if (ds == null)
			{
			@@ -72,8 +82,18 @@
			#region [æéåå å é¤åè½]
			[Route("Gy_ConkReasonBill/set_DeleteBill")]
			[HttpGet]
			public object set_DeleteBill(string HItemID)
			public object set_DeleteBill(string HItemID,string user)
			{
			//å é¤æé
			if (!DBUtility.ClsPub.Security_Log("Gy_ConkReason_Delete", 1, false, user))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ å é¤æéï¼";
			objJsonResult.data = null;
			return objJsonResult;
			}

			Int64 lngBillKey = 0;
			lngBillKey = DBUtility.ClsPub.isLong(HItemID);
			if (lngBillKey == 0)
			@@ -158,6 +178,15 @@
			ListModels oListModels = new ListModels();
			try
			{
			//æ¥çæé
			if (!DBUtility.ClsPub.Security_Log("Gy_ConkReason_Edit", 1, false, msg3))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ ä¿åæéï¼";
			objJsonResult.data = null;
			return objJsonResult;
			}
			Model.ClsGy_ConkReason_Model oBill = new Model.ClsGy_ConkReason_Model();
			List<Model.ClsGy_ConkReason_Model> lsmain = new List<Model.ClsGy_ConkReason_Model>();
			msg1 = msg1.Replace("\\", "");

			@@ -74,7 +74,7 @@

			try
			{
			if (!DBUtility.ClsPub.Security_Log("Gy_DotCheck", 1, false, User))
			if (!DBUtility.ClsPub.Security_Log("Gy_DotCheck_Delete", 1, false, User))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			@@ -82,6 +82,7 @@
			objJsonResult.data = null;
			return objJsonResult;
			}

			ds = oCN.RunProcReturn("Select * from Gy_DotCheck Where HItemID='" + HItemID + "'", "Gy_DotCheck", ref DBUtility.ClsPub.sExeReturnInfo);
			if (ds.Tables[0].Rows.Count != 0)
			{
			@@ -167,7 +168,7 @@
			string HUseFlag = list[0].HUseFlag;

			//å¤ææé
			if (!ClsPub.Security_Log("Gy_DotCheck", 1, false, msg4))
			if (!ClsPub.Security_Log("Gy_DotCheck_Edit", 1, false, msg4))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			@@ -257,7 +258,7 @@
			bool HEndFlag = list[0].HEndFlag;

			//å¤ææé
			if (!ClsPub.Security_Log("Gy_DotCheck", 1, false, msg3))
			if (!ClsPub.Security_Log("Gy_DotCheck_Edit", 1, false, msg3))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;

			@@ -257,14 +257,14 @@
			int HParentID = list[0].HParentID;

			//å¤ææé
			//if (!ClsPub.Security_Log("Gy_Maintain_Edit", 1, false, msg3))
			//{
			// objJsonResult.code = "0";
			// objJsonResult.count = 0;
			// objJsonResult.Message = "æ²¡ææ¾å°è¯¥åè½æ¨¡åï¼";
			// objJsonResult.data = null;
			// return objJsonResult;
			//}
			if (!ClsPub.Security_Log("Gy_Maintain_Edit", 1, false, msg3))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ²¡ææ¾å°è¯¥åè½æ¨¡åï¼";
			objJsonResult.data = null;
			return objJsonResult;
			}

			if (!DBUtility.ClsPub.AllowNumber(HNumber))
			{

			@@ -21,10 +21,20 @@
			#region è¿åå·¥åºå·¥ä»·åè¡¨
			[Route("Gy_ProcPrice/list")]
			[HttpGet]
			public object list(string sWhere)
			public object list(string sWhere,string user)
			{
			try
			{
			//æ¥çæé
			if (!DBUtility.ClsPub.Security_Log("Gy_ProcPriceList", 1, false, user))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ æ¥çæéï¼";
			objJsonResult.data = null;
			return objJsonResult;
			}

			ds = oCN.RunProcReturn("select * from h_v_Gy_ProcPriceList where 1 = 1 " + sWhere, "h_v_Gy_ProcPriceList");
			if (ds == null \|\| ds.Tables[0].Rows.Count == 0)
			{
			@@ -71,9 +81,19 @@
			string msg2 = sArray[0].ToString();
			string msg3 = sArray[1].ToString();
			string OperationType = sArray[2].ToString().Trim();
			string msg4 = sArray[3].ToString();
			bool bResult;
			try
			{
			//æ¥çæé
			if (!DBUtility.ClsPub.Security_Log("Gy_ProcPriceList_Edit", 1, false, msg4))
			{
			objJsonResult.code = "0";
			objJsonResult.count = 0;
			objJsonResult.Message = "æ ä¿åæéï¼";
			objJsonResult.data = null;
			return objJsonResult;
			}
			msg2 = "[" + msg2.ToString() + "]";
			List<ClsGy_ProcPrice> mainList = Newtonsoft.Json.JsonConvert.DeserializeObject<List<ClsGy_ProcPrice>>(msg2);
			List<ClsGy_ProcPrice> subList = Newtonsoft.Json.JsonConvert.DeserializeObject<List<ClsGy_ProcPrice>>(msg3);