// 大名科技(天津)有限公司版权所有 电话:18020030720 QQ:515096995 // // 此源代码遵循位于源代码树根目录中的 LICENSE 文件的许可证 namespace Admin.NET.Core.Service; using AspectCore.Extensions.Reflection; using NewLife.Data; using Newtonsoft.Json.Linq; using Newtonsoft.Json.Schema; using OfficeOpenXml.FormulaParsing.Excel.Functions.Math; using OfficeOpenXml.FormulaParsing.Excel.Functions.Text; using SqlSugar; using StackExchange.Redis; using System; using System.Collections; using System.Collections.Generic; using System.Dynamic; using System.Linq; using System.Text.RegularExpressions; using static OfficeOpenXml.ExcelErrorValue; /// /// /// public class SelectTable : ISingleton { private readonly IdentityService _identitySvc; private readonly TableMapper _tableMapper; private readonly ISqlSugarClient _db; /// /// /// /// /// /// public SelectTable(IdentityService identityService, TableMapper tableMapper, ISqlSugarClient dbClient) { _identitySvc = identityService; _tableMapper = tableMapper; _db = dbClient; } /// /// 判断表名是否正确,如果不正确则抛异常 /// /// /// public virtual bool IsTable(string table) { if (_db.DbMaintenance.GetTableInfoList().Any(it => it.Name.Equals(table, StringComparison.CurrentCultureIgnoreCase))) return true; else throw new Exception($"表名【{table}】不正确!"); } /// /// 判断表的列名是否正确,如果不正确则抛异常,更早地暴露给调用方 /// /// /// /// public virtual bool IsCol(string table, string col) { if (_db.DbMaintenance.GetColumnInfosByTableName(table).Any(it => it.DbColumnName.Equals(col, StringComparison.CurrentCultureIgnoreCase))) return true; else throw new Exception($"表【{table}】不存在列【{col}】!请检查输入参数"); } /// /// /// /// /// /// /// /// /// public virtual Tuple GetTableData(string subtable, int page, int count, int query, string json, JObject dd) { var role = _identitySvc.GetSelectRole(subtable); if (!role.Item1)//没有权限返回异常 { throw new Exception(role.Item2); } string selectrole = role.Item2; subtable = _tableMapper.GetTableName(subtable); JObject values = JObject.Parse(json); page = values["page"] == null ? page : int.Parse(values["page"].ToString()); count = values["count"] == null ? count : int.Parse(values["count"].ToString()); query = values["query"] == null ? query : int.Parse(values["query"].ToString()); values.Remove("page"); values.Remove("count"); var tb = SugarQueryable(subtable, selectrole, values, dd); if (query == 1)//1-总数 return new Tuple(null, tb.MergeTable().Count()); else { if (page > 0)//分页 { int total = 0; if (query == 0)//0-对象 return new Tuple(tb.ToPageList(page, count), total); else //2-以上全部 return new Tuple(tb.ToPageList(page, count, ref total), total); } else//列表 { IList l = tb.ToList(); if (query == 0) return new Tuple(l, 0); else return new Tuple(l, l.Count); } } } /// /// 解析并查询 /// /// /// public virtual JObject Query(string queryJson) { JObject resultObj = new JObject(); JObject queryJobj = JObject.Parse(queryJson); resultObj = Query(queryJobj); return resultObj; } /// /// 单表查询 /// /// /// 返回数据的节点名称 默认为 infos /// public virtual JObject QuerySingle(JObject queryObj, string nodeName = "infos") { JObject resultObj = new JObject(); int total = 0; foreach (var item in queryObj) { string key = item.Key.Trim(); if (key.EndsWith("[]")) { total = QuerySingleList(resultObj, item, nodeName); } else if (key.Equals("func")) { ExecFunc(resultObj, item); } else if (key.Equals("total@") || key.Equals("total")) { resultObj.Add("total", total); } } return resultObj; } /// /// 获取查询语句 /// /// /// public virtual string ToSql(JObject queryObj) { foreach (var item in queryObj) { string key = item.Key.Trim(); if (key.EndsWith("[]")) { return ToSql(item); } } return string.Empty; } /// /// 解析并查询 /// /// /// public virtual JObject Query(JObject queryObj) { JObject resultObj = new JObject(); int total; foreach (var item in queryObj) { string key = item.Key.Trim(); if (key.Equals("[]")) { total = QueryMoreList(resultObj, item); resultObj.Add("total", total);//只要是列表查询都自动返回总数 } else if (key.EndsWith("[]")) { total = QuerySingleList(resultObj, item); } else if (key.Equals("func")) { ExecFunc(resultObj, item); } else if (key.Equals("total@") || key.Equals("total")) { //resultObj.Add("total", total); continue; } else { var template = GetFirstData(key, item.Value.ToString(), resultObj); if (template != null) { resultObj.Add(key, JToken.FromObject(template)); } } } return resultObj; } //动态调用方法 private object ExecFunc(string funcname, object[] param, Type[] types) { var method = typeof(FuncList).GetMethod(funcname); var reflector = method.GetReflector(); var result = reflector.Invoke(new FuncList(), param); return result; } //生成sql private string ToSql(string subtable, int page, int count, int query, string json) { JObject values = JObject.Parse(json); page = values["page"] == null ? page : int.Parse(values["page"].ToString()); count = values["count"] == null ? count : int.Parse(values["count"].ToString()); query = values["query"] == null ? query : int.Parse(values["query"].ToString()); values.Remove("page"); values.Remove("count"); subtable = _tableMapper.GetTableName(subtable); var tb = SugarQueryable(subtable, "*", values, null); var sqlObj = tb.Skip((page - 1) * count).Take(10).ToSql(); return sqlObj.Key; } // private dynamic GetFirstData(string subtable, string json, JObject job) { var role = _identitySvc.GetSelectRole(subtable); if (!role.Item1)//没有权限返回异常 { throw new Exception(role.Item2); } string selectrole = role.Item2; subtable = _tableMapper.GetTableName(subtable); JObject values = JObject.Parse(json); values.Remove("page"); values.Remove("count"); //todo * var tb = SugarQueryable(subtable, selectrole, values, job).First(); var dic = (IDictionary)tb; foreach (var item in values.Properties().Where(it => it.Name.EndsWith("()"))) { if (item.Value.HasValue()) { string func = item.Value.ToString().Substring(0, item.Value.ToString().IndexOf("(")); string param = item.Value.ToString().Substring(item.Value.ToString().IndexOf("(") + 1).TrimEnd(')'); var types = new List(); var paramss = new List(); foreach (var va in param.Split(',')) { types.Add(typeof(object)); paramss.Add(tb.Where(it => it.Key.Equals(va)).Select(i => i.Value)); } dic[item.Name] = ExecFunc(func, paramss.ToArray(), types.ToArray()); } } return tb; } //单表查询,返回的数据在指定的NodeName节点 private int QuerySingleList(JObject resultObj, KeyValuePair item, string nodeName) { string key = item.Key.Trim(); var jb = JObject.Parse(item.Value.ToString()); int page = jb["page"] == null ? 0 : int.Parse(jb["page"].ToString()); int count = jb["count"] == null ? 10 : int.Parse(jb["count"].ToString()); int query = jb["query"] == null ? 2 : int.Parse(jb["query"].ToString());//默认输出数据和数量 int total = 0; jb.Remove("page"); jb.Remove("count"); jb.Remove("query"); var htt = new JArray(); foreach (var t in jb) { var datas = GetTableData(t.Key, page, count, query, t.Value.ToString(), null); if (query > 0) { total = datas.Item2; } foreach (var data in datas.Item1) { htt.Add(JToken.FromObject(data)); } } if (!string.IsNullOrEmpty(nodeName)) { resultObj.Add(nodeName, htt); } else resultObj.Add(key, htt); return total; } //生成sql private string ToSql(KeyValuePair item) { string key = item.Key.Trim(); var jb = JObject.Parse(item.Value.ToString()); int page = jb["page"] == null ? 0 : int.Parse(jb["page"].ToString()); int count = jb["count"] == null ? 10 : int.Parse(jb["count"].ToString()); int query = jb["query"] == null ? 2 : int.Parse(jb["query"].ToString());//默认输出数据和数量 jb.Remove("page"); jb.Remove("count"); jb.Remove("query"); var htt = new JArray(); foreach (var t in jb) { return ToSql(t.Key, page, count, query, t.Value.ToString()); } return string.Empty; } //单表查询 private int QuerySingleList(JObject resultObj, KeyValuePair item) { string key = item.Key.Trim(); return QuerySingleList(resultObj, item, key); } //多列表查询 private int QueryMoreList(JObject resultObj, KeyValuePair item) { int total = 0; var jb = JObject.Parse(item.Value.ToString()); var page = jb["page"] == null ? 0 : int.Parse(jb["page"].ToString()); var count = jb["count"] == null ? 10 : int.Parse(jb["count"].ToString()); var query = jb["query"] == null ? 2 : int.Parse(jb["query"].ToString());//默认输出数据和数量 jb.Remove("page"); jb.Remove("count"); jb.Remove("query"); var htt = new JArray(); List tables = new List(), where = new List(); foreach (var t in jb) { tables.Add(t.Key); where.Add(t.Value.ToString()); } if (tables.Count > 0) { string table = tables[0]; var temp = GetTableData(table, page, count, query, where[0], null); if (query > 0) { total = temp.Item2; } foreach (var dd in temp.Item1) { var zht = new JObject(); zht.Add(table, JToken.FromObject(dd)); for (int i = 1; i < tables.Count; i++) { string subtable = tables[i]; if (subtable.EndsWith("[]")) { subtable = subtable.TrimEnd("[]".ToCharArray()); var jbb = JObject.Parse(where[i]); page = jbb["page"] == null ? 0 : int.Parse(jbb["page"].ToString()); count = jbb["count"] == null ? 0 : int.Parse(jbb["count"].ToString()); var lt = new JArray(); foreach (var d in GetTableData(subtable, page, count, query, jbb[subtable].ToString(), zht).Item1) { lt.Add(JToken.FromObject(d)); } zht.Add(tables[i], lt); } else { var ddf = GetFirstData(subtable, where[i].ToString(), zht); if (ddf != null) { zht.Add(subtable, JToken.FromObject(ddf)); } } } htt.Add(zht); } } if (query != 1) { resultObj.Add("[]", htt); } //分页自动添加当前页数和数量 if (page > 0 && count > 0) { resultObj.Add("page", page); resultObj.Add("count", count); resultObj.Add("max", total / count + 1); } return total; } //执行方法 private void ExecFunc(JObject resultObj, KeyValuePair item) { JObject jb = JObject.Parse(item.Value.ToString()); Type type = typeof(FuncList); var dataJObj = new JObject(); foreach (var f in jb) { var types = new List(); var param = new List(); foreach (var va in JArray.Parse(f.Value.ToString())) { types.Add(typeof(object)); param.Add(va); } dataJObj.Add(f.Key, JToken.FromObject(ExecFunc(f.Key, param.ToArray(), types.ToArray()))); } resultObj.Add("func", dataJObj); } /// /// 构造查询过程 /// /// /// /// /// /// private ISugarQueryable SugarQueryable(string subtable, string selectrole, JObject values, JObject dd) { IsTable(subtable); var tb = _db.Queryable(subtable, "tb"); //select if (values["@column"].HasValue()) { ProcessColumn(subtable, selectrole, values, tb); } else { tb.Select(selectrole); } //前几行 ProcessLimit(values, tb); //where ProcessWhere(subtable, values, tb, dd); //排序 ProcessOrder(subtable, values, tb); //分组 PrccessGroup(subtable, values, tb); //Having ProcessHaving(values, tb); return tb; } //处理字段重命名 "@column":"toId:parentId",对应SQL是toId AS parentId,将查询的字段toId变为parentId返回 private void ProcessColumn(string subtable, string selectrole, JObject values, ISugarQueryable tb) { var str = new System.Text.StringBuilder(100); foreach (var item in values["@column"].ToString().Split(',')) { string[] ziduan = item.Split(':'); string colName = ziduan[0]; var ma = new Regex(@"\((\w+)\)").Match(colName); //处理max,min这样的函数 if (ma.Success && ma.Groups.Count > 1) { colName = ma.Groups[1].Value; } //判断列表是否有权限 sum(1),sum(*),Count(1)这样的值直接有效 if (colName == "*" || int.TryParse(colName, out int colNumber) || (IsCol(subtable, colName) && _identitySvc.ColIsRole(colName, selectrole.Split(',')))) { if (ziduan.Length > 1) { if (ziduan[1].Length > 20) { throw new Exception("别名不能超过20个字符"); } str.Append(ziduan[0] + " as `" + ReplaceSQLChar(ziduan[1]) + "`,"); } //不对函数加``,解决sum(*),Count(1)等不能使用的问题 else if (ziduan[0].Contains('(')) { str.Append(ziduan[0] + ","); } else str.Append("`" + ziduan[0] + "`" + ","); } } if (string.IsNullOrEmpty(str.ToString())) { throw new Exception($"表名{subtable}没有可查询的字段!"); } tb.Select(str.ToString().TrimEnd(',')); } /// /// 构造查询条件 where /// /// /// /// /// private void ProcessWhere(string subtable, JObject values, ISugarQueryable tb, JObject dd) { List conModels = new List(); if (values["identity"].HasValue()) { conModels.Add(new ConditionalModel() { FieldName = values["identity"].ToString(), ConditionalType = ConditionalType.Equal, FieldValue = _identitySvc.GetUserIdentity() }); } foreach (var va in values) { string key = va.Key.Trim(); string fieldValue = va.Value.ToString(); if (key.StartsWith("@")) { continue; } if (key.EndsWith("$"))//模糊查询 { FuzzyQuery(subtable, conModels, va); } else if (key.EndsWith("{}"))//逻辑运算 { ConditionQuery(subtable, conModels, va); } else if (key.EndsWith("%"))//bwtween查询 { ConditionBetween(subtable, conModels, va); } else if (key.EndsWith("@") && dd != null) // 关联上一个table { string[] str = fieldValue.Split('/', StringSplitOptions.RemoveEmptyEntries); string value = string.Empty; if (str.Length == 3) { value = dd[str[1]][str[2]].ToString(); } else if (str.Length == 2) { value = dd[str[0]][str[1]].ToString(); } conModels.Add(new ConditionalModel() { FieldName = key.TrimEnd('@'), ConditionalType = ConditionalType.Equal, FieldValue = value }); } else if (key.EndsWith("~"))//不等于 { conModels.Add(new ConditionalModel() { FieldName = key.TrimEnd('~'), ConditionalType = ConditionalType.NoEqual, FieldValue = fieldValue }); } else if (IsCol(subtable, key)) //其他where条件 { if (string.IsNullOrEmpty(fieldValue)) { conModels.Add(new ConditionalModel() { FieldName = key, ConditionalType = ConditionalType.IsNullOrEmpty });//增加null、""匹配 } else { conModels.Add(new ConditionalModel() { FieldName = key, ConditionalType = ConditionalType.Equal, FieldValue = fieldValue }); } } } tb.Where(conModels); } // "@having":"function0(...)?value0;function1(...)?value1;function2(...)?value2...", // SQL函数条件,一般和 @group一起用,函数一般在 @column里声明 private void ProcessHaving(JObject values, ISugarQueryable tb) { if (values["@having"].HasValue()) { List hw = new List(); List havingItems = new List(); if (values["@having"].HasValues) { havingItems = values["@having"].Select(p => p.ToString()).ToList(); } else { havingItems.Add(values["@having"].ToString()); } foreach (var item in havingItems) { string and = item.ToString(); var model = new ConditionalModel(); if (and.Contains(">=")) { model.FieldName = and.Split(new string[] { ">=" }, StringSplitOptions.RemoveEmptyEntries)[0]; model.ConditionalType = ConditionalType.GreaterThanOrEqual; model.FieldValue = and.Split(new string[] { ">=" }, StringSplitOptions.RemoveEmptyEntries)[1]; } else if (and.Contains("<=")) { model.FieldName = and.Split(new string[] { "<=" }, StringSplitOptions.RemoveEmptyEntries)[0]; model.ConditionalType = ConditionalType.LessThanOrEqual; model.FieldValue = and.Split(new string[] { "<=" }, StringSplitOptions.RemoveEmptyEntries)[1]; } else if (and.Contains(">")) { model.FieldName = and.Split(new string[] { ">" }, StringSplitOptions.RemoveEmptyEntries)[0]; model.ConditionalType = ConditionalType.GreaterThan; model.FieldValue = and.Split(new string[] { ">" }, StringSplitOptions.RemoveEmptyEntries)[1]; } else if (and.Contains("<")) { model.FieldName = and.Split(new string[] { "<" }, StringSplitOptions.RemoveEmptyEntries)[0]; model.ConditionalType = ConditionalType.LessThan; model.FieldValue = and.Split(new string[] { "<" }, StringSplitOptions.RemoveEmptyEntries)[1]; } else if (and.Contains("!=")) { model.FieldName = and.Split(new string[] { "!=" }, StringSplitOptions.RemoveEmptyEntries)[0]; model.ConditionalType = ConditionalType.NoEqual; model.FieldValue = and.Split(new string[] { "!=" }, StringSplitOptions.RemoveEmptyEntries)[1]; } else if (and.Contains("=")) { model.FieldName = and.Split(new string[] { "=" }, StringSplitOptions.RemoveEmptyEntries)[0]; model.ConditionalType = ConditionalType.Equal; model.FieldValue = and.Split(new string[] { "=" }, StringSplitOptions.RemoveEmptyEntries)[1]; } hw.Add(model); } //var d = db.Context.Utilities.ConditionalModelToSql(hw); //tb.Having(d.Key, d.Value); tb.Having(string.Join(",", havingItems)); } } //"@group":"column0,column1...",分组方式。如果 @column里声明了Table的id,则id也必须在 @group中声明;其它情况下必须满足至少一个条件: //1.分组的key在 @column里声明 //2.Table主键在 @group中声明 private void PrccessGroup(string subtable, JObject values, ISugarQueryable tb) { if (values["@group"].HasValue()) { List groupList = new();//多库兼容写法 foreach (var col in values["@group"].ToString().Split(',')) { if (IsCol(subtable, col)) { //str.Append(and + ","); groupList.Add(new GroupByModel() { FieldName = col }); } } if (groupList.Any()) { tb.GroupBy(groupList); } } } //处理排序 "@order":"name-,id"查询按 name降序、id默认顺序 排序的User数组 private void ProcessOrder(string subtable, JObject values, ISugarQueryable tb) { if (values["@order"].HasValue()) { List orderList = new(); //多库兼容写法 foreach (var item in values["@order"].ToString().Split(',')) { string col = item.Replace("-", "").Replace("+", "").Replace(" desc", "").Replace(" asc", "");//增加对原生排序的支持 if (IsCol(subtable, col)) { orderList.Add(new OrderByModel() { FieldName = col, OrderByType = item.EndsWith("-") || item.EndsWith(" desc") ? OrderByType.Desc : OrderByType.Asc }); } } if (orderList.Any()) { tb.OrderBy(orderList); } } } /// /// 表内参数"@count"(int):查询前几行,不能同时使用count和@count函数 /// /// /// private void ProcessLimit(JObject values, ISugarQueryable tb) { if (values["@count"].HasValue()) { int c = values["@count"].ToObject(); tb.Take(c); } } //条件查询 "key{}":"条件0,条件1...",条件为任意SQL比较表达式字符串,非Number类型必须用''包含条件的值,如'a' //&, |, ! 逻辑运算符,对应数据库 SQL 中的 AND, OR, NOT。 // 横或纵与:同一字段的值内条件默认 | 或连接,不同字段的条件默认 & 与连接。 // ① & 可用于"key&{}":"条件"等 // ② | 可用于"key|{}":"条件", "key|{}":[] 等,一般可省略 // ③ ! 可单独使用,如"key!":Object,也可像&,|一样配合其他功能符使用 private void ConditionQuery(string subtable, List conModels, KeyValuePair va) { string vakey = va.Key.Trim(); string field = vakey.TrimEnd("{}".ToCharArray()); if (va.Value.HasValues) { List inValues = new List(); foreach (var cm in va.Value) { inValues.Add(cm.ToString()); } conModels.Add(new ConditionalModel() { FieldName = field.TrimEnd("!".ToCharArray()), ConditionalType = field.EndsWith("!") ? ConditionalType.NotIn : ConditionalType.In, FieldValue = string.Join(",", inValues) }); } else { var ddt = new List>(); foreach (var and in va.Value.ToString().Split(',')) { var model = new ConditionalModel(); model.FieldName = field.TrimEnd("&".ToCharArray());//处理&()的查询方式 if (and.StartsWith(">=")) { model.ConditionalType = ConditionalType.GreaterThanOrEqual; model.FieldValue = and.TrimStart(">=".ToCharArray()); } else if (and.StartsWith("<=")) { model.ConditionalType = ConditionalType.LessThanOrEqual; model.FieldValue = and.TrimStart("<=".ToCharArray()); } else if (and.StartsWith(">")) { model.ConditionalType = ConditionalType.GreaterThan; model.FieldValue = and.TrimStart('>'); } else if (and.StartsWith("<")) { model.ConditionalType = ConditionalType.LessThan; model.FieldValue = and.TrimStart('<'); } ddt.Add(new KeyValuePair((field.EndsWith("&") ? WhereType.And : WhereType.Or), model)); } conModels.Add(new ConditionalCollections() { ConditionalList = ddt }); } } //"key%":"start,end" => "key%":["start,end"],其中 start 和 end 都只能为 Boolean, Number, String 中的一种,如 "2017-01-01,2019-01-01" ,["1,90000", "82001,100000"] ,可用于连续范围内的筛选 private void ConditionBetween(string subtable, List conModels, KeyValuePair va) { string vakey = va.Key.Trim(); string field = vakey.TrimEnd("%".ToCharArray()); List inValues = new List(); if (va.Value.HasValues) { foreach (var cm in va.Value) { inValues.Add(cm.ToString()); } } else { inValues.Add(va.Value.ToString()); } for (var i = 0; i < inValues.Count; i++) { var fileds = inValues[i].Split(','); if (fileds.Length == 2) { var ddt = new List>(); var leftCondition = new ConditionalModel() { FieldName = field, ConditionalType = ConditionalType.GreaterThanOrEqual, FieldValue = fileds[0] }; ddt.Add(new KeyValuePair(i == 0 ? WhereType.And : WhereType.Or, leftCondition)); var rightCondition = new ConditionalModel() { FieldName = field, ConditionalType = ConditionalType.LessThanOrEqual, FieldValue = fileds[1] }; ddt.Add(new KeyValuePair(WhereType.And, rightCondition)); conModels.Add(new ConditionalCollections() { ConditionalList = ddt }); } } } //模糊搜索 "key$":"SQL搜索表达式" => "key$":["SQL搜索表达式"],任意SQL搜索表达式字符串,如 %key%(包含key), key%(以key开始), %k%e%y%(包含字母k,e,y) 等,%表示任意字符 private void FuzzyQuery(string subtable, List conModels, KeyValuePair va) { string vakey = va.Key.Trim(); string fieldValue = va.Value.ToString(); var conditionalType = ConditionalType.Like; if (IsCol(subtable, vakey.TrimEnd('$'))) { //支持三种like查询 if (fieldValue.StartsWith("%") && fieldValue.EndsWith("%")) { conditionalType = ConditionalType.Like; } else if (fieldValue.StartsWith("%")) { conditionalType = ConditionalType.LikeRight; } else if (fieldValue.EndsWith("%")) { conditionalType = ConditionalType.LikeLeft; } conModels.Add(new ConditionalModel() { FieldName = vakey.TrimEnd('$'), ConditionalType = conditionalType, FieldValue = fieldValue.TrimEnd("%".ToArray()).TrimStart("%".ToArray()) }); } } //处理sql注入 private string ReplaceSQLChar(string str) { if (str == String.Empty) return String.Empty; str = str.Replace("'", ""); str = str.Replace(";", ""); str = str.Replace(",", ""); str = str.Replace("?", ""); str = str.Replace("<", ""); str = str.Replace(">", ""); str = str.Replace("(", ""); str = str.Replace(")", ""); str = str.Replace("@", ""); str = str.Replace("=", ""); str = str.Replace("+", ""); str = str.Replace("*", ""); str = str.Replace("&", ""); str = str.Replace("#", ""); str = str.Replace("%", ""); str = str.Replace("$", ""); str = str.Replace("\"", ""); //删除与数据库相关的词 str = Regex.Replace(str, "delete from", "", RegexOptions.IgnoreCase); str = Regex.Replace(str, "drop table", "", RegexOptions.IgnoreCase); str = Regex.Replace(str, "truncate", "", RegexOptions.IgnoreCase); str = Regex.Replace(str, "xp_cmdshell", "", RegexOptions.IgnoreCase); str = Regex.Replace(str, "exec master", "", RegexOptions.IgnoreCase); str = Regex.Replace(str, "net localgroup administrators", "", RegexOptions.IgnoreCase); str = Regex.Replace(str, "net user", "", RegexOptions.IgnoreCase); str = Regex.Replace(str, "-", "", RegexOptions.IgnoreCase); str = Regex.Replace(str, "truncate", "", RegexOptions.IgnoreCase); return str; } /// /// 单条插入 /// /// /// /// /// (各种类型的)id public object InsertSingle(string tableName, JObject cols, APIJSON_Role role = null) { role ??= _identitySvc.GetRole(); var dt = new Dictionary(); foreach (var f in cols)//遍历字段 { if (//f.Key.ToLower() != "id" && //是否一定要传id IsCol(tableName, f.Key) && (role.Insert.Column.Contains("*") || role.Insert.Column.Contains(f.Key, StringComparer.CurrentCultureIgnoreCase))) dt.Add(f.Key, FuncList.TransJObjectToSugarPara(f.Value)); } //如果外部没传id,就后端生成或使用数据库默认值,如果都没有会出错 object id; if (!dt.ContainsKey("id")) { id = YitIdHelper.NextId();//自己生成id的方法,可以由外部传入 dt.Add("id", id); } else { id = dt["id"]; } _db.Insertable(dt).AS(tableName).ExecuteCommand();//根据主键类型设置返回雪花或自增,目前返回条数 return id; } /// /// 为每天记录创建udpate sql /// /// /// /// /// public int UpdateSingleRecord(string tableName, JObject record, APIJSON_Role role = null) { role ??= _identitySvc.GetRole(); if (!record.ContainsKey("id")) { throw Oops.Bah("未传主键id"); } var dt = new Dictionary(); var sb = new StringBuilder(100); object id = null; foreach (var f in record)//遍历每个字段 { if (f.Key.Equals("id", StringComparison.OrdinalIgnoreCase)) { if (f.Value is JArray)//id数组 { sb.Append($"{f.Key} in (@{f.Key})"); id = FuncList.TransJArrayToSugarPara(f.Value); } else//单个id { sb.Append($"{f.Key}=@{f.Key}"); id = FuncList.TransJObjectToSugarPara(f.Value); } } else if (IsCol(tableName, f.Key) && (role.Update.Column.Contains("*") || role.Update.Column.Contains(f.Key, StringComparer.CurrentCultureIgnoreCase))) { dt.Add(f.Key, FuncList.TransJObjectToSugarPara(f.Value)); } } string whereSql = sb.ToString(); int count = _db.Updateable(dt).AS(tableName).Where(whereSql, new { id }).ExecuteCommand(); return count; } /// /// 更新单表,支持同表多条记录 /// /// /// /// /// public int UpdateSingleTable(string tableName, JToken records, APIJSON_Role role = null) { role ??= _identitySvc.GetRole(); int count = 0; if (records is JArray)//遍历每行记录 { foreach (var record in records.ToObject()) { count += UpdateSingleRecord(tableName, record, role); } } else//单条记录 { count = UpdateSingleRecord(tableName, records.ToObject(), role); } return count; } }