@@ -112,7 +112,7 @@ function checkSubmit() | |||||
<tr> | <tr> | ||||
<td align="right" class='bline'>等级:</td> | <td align="right" class='bline'>等级:</td> | ||||
<td class='bline' style="text-align:left;"><?php | <td class='bline' style="text-align:left;"><?php | ||||
$MemberTypes = ''; | |||||
$MemberTypes = array(); | |||||
$dsql->SetQuery("Select rank,membername From `#@__arcrank` where rank>0"); | $dsql->SetQuery("Select rank,membername From `#@__arcrank` where rank>0"); | ||||
$dsql->Execute('n'); | $dsql->Execute('n'); | ||||
$MemberTypes[0] = "限制会员"; | $MemberTypes[0] = "限制会员"; | ||||
@@ -92,7 +92,7 @@ else if($dopost=='save') | |||||
} | } | ||||
} | } | ||||
if (empty($dede_fieldshash) || $dede_fieldshash != md5($dede_addonfields.$cfg_cookie_encode)) | |||||
if (empty($dede_fieldshash) || $dede_fieldshash !== md5($dede_addonfields . 'anythingelse' . $cfg_cookie_encode)) | |||||
{ | { | ||||
showMsg('数据校验不对,程序返回', '-1'); | showMsg('数据校验不对,程序返回', '-1'); | ||||
exit(); | exit(); | ||||
@@ -201,52 +201,4 @@ else if($dopost=="viewArchives") | |||||
}else{ | }else{ | ||||
header("location:/book/book.php?bid=".$aid); | header("location:/book/book.php?bid=".$aid); | ||||
} | } | ||||
} | |||||
/*-------------- | |||||
function DelUploads() | |||||
删除上传的附件 | |||||
----------------*/ | |||||
else if($dopost=="delUploads") | |||||
{ | |||||
CheckRank(0,0); | |||||
if(empty($ids)) | |||||
{ | |||||
$ids = ''; | |||||
} | |||||
$tj = 0; | |||||
if($ids=='') | |||||
{ | |||||
$arow = $dsql->GetOne("SELECT url,mid FROM `#@__uploads` WHERE aid='$aid'; "); | |||||
if(is_array($arow) && $arow['mid']==$cfg_ml->M_ID) | |||||
{ | |||||
$dsql->ExecuteNoneQuery("DELETE FROM `#@__uploads` WHERE aid='$aid'; "); | |||||
if(file_exists($cfg_basedir.$arow['url'])) | |||||
{ | |||||
@unlink($cfg_basedir.$arow['url']); | |||||
} | |||||
} | |||||
$tj++; | |||||
} | |||||
else | |||||
{ | |||||
$ids = explode(',',$ids); | |||||
foreach($ids as $aid) | |||||
{ | |||||
$aid = preg_replace("#[^0-9]#", "", $aid); | |||||
$arow = $dsql->GetOne("SELECT url,mid From #@__uploads WHERE aid='$aid'; "); | |||||
if(is_array($arow) && $arow['mid']==$cfg_ml->M_ID) | |||||
{ | |||||
$dsql->ExecuteNoneQuery("DELETE FROM `#@__uploads` WHERE aid='$aid'; "); | |||||
$tj++; | |||||
if(file_exists($cfg_basedir.$arow['url'])) | |||||
{ | |||||
@unlink($cfg_basedir.$arow['url']); | |||||
} | |||||
} | |||||
} | |||||
} | |||||
ShowMsg("成功删除 $tj 个附件!",$ENV_GOBACK_URL); | |||||
exit(); | |||||
} | } |
@@ -88,7 +88,7 @@ else if($dopost=='save') | |||||
} | } | ||||
} | } | ||||
if (empty($idhash) || $idhash != md5($aid.$cfg_cookie_encode)) | |||||
if (empty($idhash) || $idhash != hash("sha256", $aid.$cfg_cookie_encode)) | |||||
{ | { | ||||
showMsg('数据校验不对,程序返回', '-1'); | showMsg('数据校验不对,程序返回', '-1'); | ||||
exit(); | exit(); | ||||
@@ -80,6 +80,9 @@ else if($dopost=='save') | |||||
} | } | ||||
} | } | ||||
// 校验CSRF | |||||
CheckCSRF(); | |||||
$flag = ''; | $flag = ''; | ||||
$autokey = $remote = $dellink = $autolitpic = 0; | $autokey = $remote = $dellink = $autolitpic = 0; | ||||
$userip = GetIP(); | $userip = GetIP(); | ||||
@@ -135,10 +138,6 @@ else if($dopost=='save') | |||||
$mid = $cfg_ml->M_ID; | $mid = $cfg_ml->M_ID; | ||||
$description=empty($description)? "" : $description; | $description=empty($description)? "" : $description; | ||||
//处理上传的缩略图 | |||||
$litpic = MemberUploads('litpic','',$cfg_ml->M_ID,'image','',$cfg_ddimg_width,$cfg_ddimg_height,false); | |||||
if($litpic!='') SaveUploadInfo($title,$litpic,1); | |||||
//分析处理附加表数据 | //分析处理附加表数据 | ||||
$inadd_f = $inadd_v = ''; | $inadd_f = $inadd_v = ''; | ||||
if(!empty($dede_addonfields)) | if(!empty($dede_addonfields)) | ||||
@@ -173,12 +172,6 @@ else if($dopost=='save') | |||||
} | } | ||||
} | } | ||||
if (empty($dede_fieldshash) || $dede_fieldshash != md5($dede_addonfields.$cfg_cookie_encode)) | |||||
{ | |||||
showMsg('数据校验不对,程序返回', '-1'); | |||||
exit(); | |||||
} | |||||
// 这里对前台提交的附加数据进行一次校验 | // 这里对前台提交的附加数据进行一次校验 | ||||
$fontiterm = PrintAutoFieldsAdd($cInfos['fieldset'],'autofield', FALSE); | $fontiterm = PrintAutoFieldsAdd($cInfos['fieldset'],'autofield', FALSE); | ||||
if ($fontiterm != str_replace('`', '', $inadd_f)) | if ($fontiterm != str_replace('`', '', $inadd_f)) | ||||
@@ -206,7 +199,7 @@ else if($dopost=='save') | |||||
} | } | ||||
else | else | ||||
{ | { | ||||
$inquery = "INSERT INTO `{$addtable}`(aid,typeid,arcrank,mid,channel,title,senddate,litpic,userip{$inadd_f}) Values('$arcID','$typeid','$arcrank','$mid','$channelid','$title','$senddate','$litpic','$userip'{$inadd_v})"; | |||||
$inquery = "INSERT INTO `{$addtable}`(aid,typeid,arcrank,mid,channel,title,senddate,litpic,userip{$inadd_f}) Values('$arcID','$typeid','$arcrank','$mid','$channelid','$title','$senddate','','$userip'{$inadd_v})"; | |||||
if(!$dsql->ExecuteNoneQuery($inquery)) | if(!$dsql->ExecuteNoneQuery($inquery)) | ||||
{ | { | ||||
$gerr = $dsql->GetError(); | $gerr = $dsql->GetError(); | ||||
@@ -49,7 +49,6 @@ function _SaveArticle(){ } | |||||
------------------------------*/ | ------------------------------*/ | ||||
else if($dopost=='save') | else if($dopost=='save') | ||||
{ | { | ||||
require_once(DEDEINC."/image.func.php"); | require_once(DEDEINC."/image.func.php"); | ||||
require_once(DEDEINC."/oxwindow.class.php"); | require_once(DEDEINC."/oxwindow.class.php"); | ||||
$flag = ''; | $flag = ''; | ||||
@@ -83,6 +82,9 @@ else if($dopost=='save') | |||||
exit(); | exit(); | ||||
} | } | ||||
// 校验CSRF | |||||
CheckCSRF(); | |||||
//文档的默认状态 | //文档的默认状态 | ||||
if($cInfos['arcsta']==0) | if($cInfos['arcsta']==0) | ||||
{ | { | ||||
@@ -101,11 +103,6 @@ else if($dopost=='save') | |||||
$title = cn_substrR(HtmlReplace($title, 1), $cfg_title_maxlen); | $title = cn_substrR(HtmlReplace($title, 1), $cfg_title_maxlen); | ||||
$mid = $cfg_ml->M_ID; | $mid = $cfg_ml->M_ID; | ||||
//处理上传的缩略图 | |||||
$litpic = MemberUploads('litpic', $oldlitpic, $mid, 'image', '', $cfg_ddimg_width, $cfg_ddimg_height, FALSE); | |||||
if($litpic!='') SaveUploadInfo($title, $litpic, 1); | |||||
else $litpic =$oldlitpic; | |||||
//分析处理附加表数据 | //分析处理附加表数据 | ||||
$inadd_f = $inadd_m = ''; | $inadd_f = $inadd_m = ''; | ||||
if(!empty($dede_addonfields)) | if(!empty($dede_addonfields)) | ||||
@@ -137,11 +134,6 @@ else if($dopost=='save') | |||||
$inadd_m .= ','.$vs[0]; | $inadd_m .= ','.$vs[0]; | ||||
} | } | ||||
} | } | ||||
if (empty($idhash) || $idhash != md5($aid.$cfg_cookie_encode)) | |||||
{ | |||||
showMsg('数据校验不对,程序返回', '-1'); | |||||
exit(); | |||||
} | |||||
// 这里对前台提交的附加数据进行一次校验 | // 这里对前台提交的附加数据进行一次校验 | ||||
$fontiterm = PrintAutoFieldsAdd($cInfos['fieldset'],'autofield', FALSE); | $fontiterm = PrintAutoFieldsAdd($cInfos['fieldset'],'autofield', FALSE); | ||||
@@ -154,7 +146,7 @@ else if($dopost=='save') | |||||
if($addtable!='') | if($addtable!='') | ||||
{ | { | ||||
$upQuery = "UPDATE `$addtable` SET `title`='$title',`typeid`='$typeid',`arcrank`='$arcrank',litpic='$litpic',userip='$userip'{$inadd_f} WHERE aid='$aid' "; | |||||
$upQuery = "UPDATE `$addtable` SET `title`='$title',`typeid`='$typeid',`arcrank`='$arcrank',userip='$userip'{$inadd_f} WHERE aid='$aid' "; | |||||
if(!$dsql->ExecuteNoneQuery($upQuery)) | if(!$dsql->ExecuteNoneQuery($upQuery)) | ||||
{ | { | ||||
ShowMsg("更新附加表 `$addtable` 时出错,请联系管理员!","javascript:;"); | ShowMsg("更新附加表 `$addtable` 时出错,请联系管理员!","javascript:;"); | ||||
@@ -79,13 +79,6 @@ else if($dopost=='save') | |||||
} | } | ||||
} | } | ||||
} | } | ||||
if (empty($dede_fieldshash) || ( $dede_fieldshash != md5($dede_addonfields . $cfg_cookie_encode) && $dede_fieldshash != md5($dede_addonfields . 'anythingelse' . $cfg_cookie_encode)) ) | |||||
{ | |||||
showMsg('数据校验不对,程序返回', '-1'); | |||||
exit(); | |||||
} | |||||
// 这里对前台提交的附加数据进行一次校验 | // 这里对前台提交的附加数据进行一次校验 | ||||
$fontiterm = PrintAutoFieldsAdd($cInfos['fieldset'],'autofield', FALSE); | $fontiterm = PrintAutoFieldsAdd($cInfos['fieldset'],'autofield', FALSE); | ||||
@@ -95,11 +88,6 @@ else if($dopost=='save') | |||||
exit(); | exit(); | ||||
} | } | ||||
//处理图片文档的自定义属性 | |||||
if($litpic!='') | |||||
{ | |||||
$flag = 'p'; | |||||
} | |||||
$body = AnalyseHtmlBody($body, $description); | $body = AnalyseHtmlBody($body, $description); | ||||
$body = HtmlReplace($body, -1); | $body = HtmlReplace($body, -1); | ||||
@@ -115,7 +103,7 @@ else if($dopost=='save') | |||||
$inQuery = "INSERT INTO `#@__archives`(id,typeid,sortrank,flag,ismake,channel,arcrank,click,money,title,shorttitle, | $inQuery = "INSERT INTO `#@__archives`(id,typeid,sortrank,flag,ismake,channel,arcrank,click,money,title,shorttitle, | ||||
color,writer,source,litpic,pubdate,senddate,mid,description,keywords,mtype) | color,writer,source,litpic,pubdate,senddate,mid,description,keywords,mtype) | ||||
VALUES ('$arcID','$typeid','$sortrank','$flag','$ismake','$channelid','$arcrank','0','$money','$title','$shorttitle', | VALUES ('$arcID','$typeid','$sortrank','$flag','$ismake','$channelid','$arcrank','0','$money','$title','$shorttitle', | ||||
'$color','$writer','$source','$litpic','$pubdate','$senddate','$mid','$description','$keywords','$mtypesid'); "; | |||||
'$color','$writer','$source','','$pubdate','$senddate','$mid','$description','$keywords','$mtypesid'); "; | |||||
if(!$dsql->ExecuteNoneQuery($inQuery)) | if(!$dsql->ExecuteNoneQuery($inQuery)) | ||||
{ | { | ||||
$gerr = $dsql->GetError(); | $gerr = $dsql->GetError(); | ||||
@@ -79,12 +79,6 @@ else if($dopost=='save') | |||||
} | } | ||||
} | } | ||||
if (empty($dede_fieldshash) || $dede_fieldshash != md5($dede_addonfields.$cfg_cookie_encode)) | |||||
{ | |||||
showMsg('数据校验不对,程序返回', '-1'); | |||||
exit(); | |||||
} | |||||
// 这里对前台提交的附加数据进行一次校验 | // 这里对前台提交的附加数据进行一次校验 | ||||
$fontiterm = PrintAutoFieldsAdd($cInfos['fieldset'],'autofield', FALSE); | $fontiterm = PrintAutoFieldsAdd($cInfos['fieldset'],'autofield', FALSE); | ||||
if ($fontiterm != $inadd_f) | if ($fontiterm != $inadd_f) | ||||
@@ -97,16 +91,12 @@ else if($dopost=='save') | |||||
$body = AnalyseHtmlBody($body,$description); | $body = AnalyseHtmlBody($body,$description); | ||||
$body = HtmlReplace($body,-1); | $body = HtmlReplace($body,-1); | ||||
//处理图片文档的自定义属性 | |||||
if($litpic!='') $flag = 'p'; | |||||
//更新数据库的SQL语句 | //更新数据库的SQL语句 | ||||
$upQuery = "UPDATE `#@__archives` SET | $upQuery = "UPDATE `#@__archives` SET | ||||
ismake='$ismake', | ismake='$ismake', | ||||
arcrank='$arcrank', | arcrank='$arcrank', | ||||
typeid='$typeid', | typeid='$typeid', | ||||
title='$title', | title='$title', | ||||
litpic='$litpic', | |||||
description='$description', | description='$description', | ||||
mtype = '$mtypesid', | mtype = '$mtypesid', | ||||
keywords='$keywords', | keywords='$keywords', | ||||
@@ -78,6 +78,39 @@ require_once(DEDEINC.'/filter.inc.php'); | |||||
require_once(DEDEINC.'/memberlogin.class.php'); | require_once(DEDEINC.'/memberlogin.class.php'); | ||||
require_once(DEDEINC.'/dedetemplate.class.php'); | require_once(DEDEINC.'/dedetemplate.class.php'); | ||||
// 检查CSRF | |||||
function CheckCSRF() | |||||
{ | |||||
$cc_csrf_token_check = GetCookie("dede_csrf_token"); | |||||
if ( | |||||
!(isset($_POST['_csrf_token'], $cc_csrf_token_check) | |||||
&& is_string($_POST['_csrf_token']) && is_string($cc_csrf_token_check) | |||||
&& hash_equals($_POST['_csrf_token'], $cc_csrf_token_check)) | |||||
) { | |||||
ShowMsg('CSRF校验失败,请刷新页面重新提交', '-1'); | |||||
exit(); | |||||
} | |||||
DropCookie("dede_csrf_token"); | |||||
} | |||||
// 生成CSRF校验token,在比较重要的表单中应该要加上这个token校验 | |||||
$cc_csrf_token = GetCookie("dede_csrf_token"); | |||||
if (!isset($GLOBALS['csrf_token']) || $GLOBALS['csrf_token'] === null) { | |||||
if (isset($cc_csrf_token) && is_string($cc_csrf_token) | |||||
&& preg_match('#^[0-9a-f]{32}$#iS',$cc_csrf_token) === 1 | |||||
) { | |||||
$GLOBALS['csrf_token'] = $cc_csrf_token; | |||||
} else { | |||||
$GLOBALS['csrf_token'] = md5(uniqid(mt_rand(), TRUE)); | |||||
} | |||||
} | |||||
if (strtoupper($_SERVER['REQUEST_METHOD']) !== 'POST') { | |||||
PutCookie('dede_csrf_token', $GLOBALS['csrf_token'], 7200, '/'); | |||||
} | |||||
//获得当前脚本名称,如果你的系统被禁用了$_SERVER变量,请自行更改这个选项 | //获得当前脚本名称,如果你的系统被禁用了$_SERVER变量,请自行更改这个选项 | ||||
$dedeNowurl = $s_scriptName = ''; | $dedeNowurl = $s_scriptName = ''; | ||||
$dedeNowurl = GetCurUrl(); | $dedeNowurl = GetCurUrl(); | ||||
@@ -1,4 +1,5 @@ | |||||
<?php | <?php | ||||
/** | /** | ||||
* @version $Id: edit_baseinfo.php 1 8:38 2010年7月9日Z tianya $ | * @version $Id: edit_baseinfo.php 1 8:38 2010年7月9日Z tianya $ | ||||
* @package DedeCMS.Member | * @package DedeCMS.Member | ||||
@@ -6,124 +7,98 @@ | |||||
* @license http://help.dedecms.com/usersguide/license.html | * @license http://help.dedecms.com/usersguide/license.html | ||||
* @link http://www.dedecms.com | * @link http://www.dedecms.com | ||||
*/ | */ | ||||
require_once(dirname(__FILE__)."/config.php"); | |||||
CheckRank(0,0); | |||||
require_once(dirname(__FILE__) . "/config.php"); | |||||
CheckRank(0, 0); | |||||
$menutype = 'config'; | $menutype = 'config'; | ||||
if(!isset($dopost)) $dopost = ''; | |||||
if (!isset($dopost)) $dopost = ''; | |||||
$pwd2=(empty($pwd2))? "" : $pwd2; | |||||
$row=$dsql->GetOne("SELECT * FROM `#@__member` WHERE mid='".$cfg_ml->M_ID."'"); | |||||
$pwd2 = (empty($pwd2)) ? "" : $pwd2; | |||||
$row = $dsql->GetOne("SELECT * FROM `#@__member` WHERE mid='" . $cfg_ml->M_ID . "'"); | |||||
$face = $row['face']; | $face = $row['face']; | ||||
if($dopost=='save') | |||||
{ | |||||
if ($dopost == 'save') { | |||||
$svali = GetCkVdValue(); | $svali = GetCkVdValue(); | ||||
if(strtolower($vdcode) != $svali || $svali=='') | |||||
{ | |||||
// 校验CSRF | |||||
CheckCSRF(); | |||||
if (strtolower($vdcode) != $svali || $svali == '') { | |||||
ReSETVdValue(); | ReSETVdValue(); | ||||
ShowMsg('验证码错误!','-1'); | |||||
ShowMsg('验证码错误!', '-1'); | |||||
exit(); | exit(); | ||||
} | } | ||||
if(!is_array($row) || $row['pwd'] != md5($oldpwd)) | |||||
{ | |||||
ShowMsg('你输入的旧密码错误或没填写,不允许修改资料!','-1'); | |||||
if (!is_array($row) || $row['pwd'] != md5($oldpwd)) { | |||||
ShowMsg('你输入的旧密码错误或没填写,不允许修改资料!', '-1'); | |||||
exit(); | exit(); | ||||
} | } | ||||
if($userpwd != $userpwdok) | |||||
{ | |||||
ShowMsg('你两次输入的新密码不一致!','-1'); | |||||
if ($userpwd != $userpwdok) { | |||||
ShowMsg('你两次输入的新密码不一致!', '-1'); | |||||
exit(); | exit(); | ||||
} | } | ||||
if($userpwd=='') | |||||
{ | |||||
if ($userpwd == '') { | |||||
$pwd = $row['pwd']; | $pwd = $row['pwd']; | ||||
} | |||||
else | |||||
{ | |||||
} else { | |||||
$pwd = md5($userpwd); | $pwd = md5($userpwd); | ||||
$pwd2 = substr(md5($userpwd),5,20); | |||||
$pwd2 = substr(md5($userpwd), 5, 20); | |||||
} | } | ||||
$addupquery = ''; | $addupquery = ''; | ||||
#api{{ | |||||
if(defined('UC_API') && @include_once DEDEROOT.'/uc_client/client.php') | |||||
{ | |||||
$emailnew = $email != $row['email'] ? $email : ''; | |||||
$ucresult = uc_user_edit($cfg_ml->M_LoginID, $oldpwd, $userpwd, $emailnew); | |||||
} | |||||
#/aip}} | |||||
//修改安全问题或Email | //修改安全问题或Email | ||||
if($email != $row['email'] || ($newsafequestion != 0 && $newsafeanswer != '')) | |||||
{ | |||||
if($row['safequestion']!=0 && ($row['safequestion'] != $safequestion || $row['safeanswer'] != $safeanswer)) | |||||
{ | |||||
ShowMsg('你的旧安全问题及答案不正确,不能修改Email或安全问题!','-1'); | |||||
if ($email != $row['email'] || ($newsafequestion != 0 && $newsafeanswer != '')) { | |||||
if ($row['safequestion'] != 0 && ($row['safequestion'] != $safequestion || $row['safeanswer'] != $safeanswer)) { | |||||
ShowMsg('你的旧安全问题及答案不正确,不能修改Email或安全问题!', '-1'); | |||||
exit(); | exit(); | ||||
} | } | ||||
//修改Email | //修改Email | ||||
if($email != $row['email']) | |||||
{ | |||||
if(!CheckEmail($email)) | |||||
{ | |||||
ShowMsg('Email格式不正确!','-1'); | |||||
if ($email != $row['email']) { | |||||
if (!CheckEmail($email)) { | |||||
ShowMsg('Email格式不正确!', '-1'); | |||||
exit(); | exit(); | ||||
} | |||||
else | |||||
{ | |||||
} else { | |||||
$addupquery .= ",email='$email'"; | $addupquery .= ",email='$email'"; | ||||
} | } | ||||
} | } | ||||
//修改安全问题 | //修改安全问题 | ||||
if($newsafequestion != 0 && $newsafeanswer != '') | |||||
{ | |||||
if(strlen($newsafeanswer) > 30) | |||||
{ | |||||
ShowMsg('你的新安全问题的答案太长了,请保持在30字节以内!','-1'); | |||||
if ($newsafequestion != 0 && $newsafeanswer != '') { | |||||
if (strlen($newsafeanswer) > 30) { | |||||
ShowMsg('你的新安全问题的答案太长了,请保持在30字节以内!', '-1'); | |||||
exit(); | exit(); | ||||
} | |||||
else | |||||
{ | |||||
$newsafequestion = HtmlReplace($newsafequestion,1); | |||||
$newsafeanswer = HtmlReplace($newsafeanswer,1); | |||||
} else { | |||||
$newsafequestion = HtmlReplace($newsafequestion, 1); | |||||
$newsafeanswer = HtmlReplace($newsafeanswer, 1); | |||||
$addupquery .= ",safequestion='$newsafequestion',safeanswer='$newsafeanswer'"; | $addupquery .= ",safequestion='$newsafequestion',safeanswer='$newsafeanswer'"; | ||||
} | } | ||||
} | } | ||||
} | } | ||||
//修改uname | //修改uname | ||||
if($uname != $row['uname']) | |||||
{ | |||||
$rs = CheckUserID($uname,'昵称或公司名称',FALSE); | |||||
if($rs!='ok') | |||||
{ | |||||
ShowMsg($rs,'-1'); | |||||
if ($uname != $row['uname']) { | |||||
$rs = CheckUserID($uname, '昵称或公司名称', FALSE); | |||||
if ($rs != 'ok') { | |||||
ShowMsg($rs, '-1'); | |||||
exit(); | exit(); | ||||
} | } | ||||
$addupquery .= ",uname='$uname'"; | $addupquery .= ",uname='$uname'"; | ||||
} | } | ||||
//性别 | //性别 | ||||
if( !in_array($sex, array('男','女','保密')) ) | |||||
{ | |||||
ShowMsg('请选择正常的性别!','-1'); | |||||
exit(); | |||||
if (!in_array($sex, array('男', '女', '保密'))) { | |||||
ShowMsg('请选择正常的性别!', '-1'); | |||||
exit(); | |||||
} | } | ||||
$query1 = "UPDATE `#@__member` SET pwd='$pwd',sex='$sex'{$addupquery} where mid='".$cfg_ml->M_ID."' "; | |||||
$query1 = "UPDATE `#@__member` SET pwd='$pwd',sex='$sex'{$addupquery} where mid='" . $cfg_ml->M_ID . "' "; | |||||
$dsql->ExecuteNoneQuery($query1); | $dsql->ExecuteNoneQuery($query1); | ||||
//如果是管理员,修改其后台密码 | //如果是管理员,修改其后台密码 | ||||
if($cfg_ml->fields['matt']==10 && $pwd2!="") | |||||
{ | |||||
$query2 = "UPDATE `#@__admin` SET pwd='$pwd2' where id='".$cfg_ml->M_ID."' "; | |||||
if ($cfg_ml->fields['matt'] == 10 && $pwd2 != "") { | |||||
$query2 = "UPDATE `#@__admin` SET pwd='$pwd2' where id='" . $cfg_ml->M_ID . "' "; | |||||
$dsql->ExecuteNoneQuery($query2); | $dsql->ExecuteNoneQuery($query2); | ||||
} | } | ||||
// 清除会员缓存 | // 清除会员缓存 | ||||
$cfg_ml->DelCache($cfg_ml->M_ID); | $cfg_ml->DelCache($cfg_ml->M_ID); | ||||
ShowMsg('成功更新你的基本资料!','edit_baseinfo.php',0,5000); | |||||
ShowMsg('成功更新你的基本资料!', 'edit_baseinfo.php', 0, 5000); | |||||
exit(); | exit(); | ||||
} | } | ||||
include(DEDEMEMBER."/templets/edit_baseinfo.htm"); | |||||
include(DEDEMEMBER . "/templets/edit_baseinfo.htm"); |
@@ -19,31 +19,10 @@ if(!isset($backurl)) | |||||
} | } | ||||
if($dopost=='save') | if($dopost=='save') | ||||
{ | { | ||||
$maxlength = $cfg_max_face * 1024; | |||||
$userdir = $cfg_user_dir.'/'.$cfg_ml->M_ID; | |||||
if(!preg_match("#^".$userdir."#", $oldface)) | |||||
{ | |||||
$oldface = ''; | |||||
} | |||||
if(is_uploaded_file($face)) | |||||
{ | |||||
if(@filesize($_FILES['face']['tmp_name']) > $maxlength) | |||||
{ | |||||
ShowMsg("你上传的头像文件超过了系统限制大小:{$cfg_max_face} K!", '-1'); | |||||
exit(); | |||||
} | |||||
//删除旧图片(防止文件扩展名不同,如:原来的是gif,后来的是jpg) | |||||
if(preg_match("#\.(jpg|gif|png)$#i", $oldface) && file_exists($cfg_basedir.$oldface)) | |||||
{ | |||||
@unlink($cfg_basedir.$oldface); | |||||
} | |||||
//上传新工图片 | |||||
$face = MemberUploads('face', $oldface, $cfg_ml->M_ID, 'image', 'myface', 180, 180); | |||||
} | |||||
else | |||||
{ | |||||
$face = $oldface; | |||||
} | |||||
// 校验CSRF | |||||
CheckCSRF(); | |||||
$face = HtmlReplace($faceurl,-1); | |||||
$query = "UPDATE `#@__member` SET `face` = '$face' WHERE mid='{$cfg_ml->M_ID}' "; | $query = "UPDATE `#@__member` SET `face` = '$face' WHERE mid='{$cfg_ml->M_ID}' "; | ||||
$dsql->ExecuteNoneQuery($query); | $dsql->ExecuteNoneQuery($query); | ||||
// 清除缓存 | // 清除缓存 | ||||
@@ -51,30 +30,6 @@ if($dopost=='save') | |||||
ShowMsg('成功更新头像信息!', $backurl); | ShowMsg('成功更新头像信息!', $backurl); | ||||
exit(); | exit(); | ||||
} | } | ||||
else if($dopost=='delold') | |||||
{ | |||||
if(empty($oldface)) | |||||
{ | |||||
ShowMsg("没有可删除的头像!", "-1"); | |||||
exit(); | |||||
} | |||||
$userdir = $cfg_user_dir.'/'.$cfg_ml->M_ID; | |||||
if(!preg_match("#^".$userdir."#", $oldface) || preg_match('#\.\.#', $oldface)) | |||||
{ | |||||
$oldface = ''; | |||||
} | |||||
if(preg_match("#\.(jpg|gif|png)$#i", $oldface) && file_exists($cfg_basedir.$oldface)) | |||||
{ | |||||
@unlink($cfg_basedir.$oldface); | |||||
} | |||||
$query = "UPDATE `#@__member` SET `face` = '' WHERE mid='{$cfg_ml->M_ID}' "; | |||||
$dsql->ExecuteNoneQuery($query); | |||||
// 清除缓存 | |||||
$cfg_ml->DelCache($cfg_ml->M_ID); | |||||
ShowMsg('成功删除原来的头像!', $backurl); | |||||
exit(); | |||||
} | |||||
$face = $cfg_ml->fields['face']; | $face = $cfg_ml->fields['face']; | ||||
include(DEDEMEMBER."/templets/edit_face.htm"); | include(DEDEMEMBER."/templets/edit_face.htm"); | ||||
exit(); | exit(); | ||||
?> |
@@ -1,4 +1,5 @@ | |||||
<?php | <?php | ||||
/** | /** | ||||
* @version $Id: edit_fullinfo.php 1 8:38 2010年7月9日Z tianya $ | * @version $Id: edit_fullinfo.php 1 8:38 2010年7月9日Z tianya $ | ||||
* @package DedeCMS.Member | * @package DedeCMS.Member | ||||
@@ -6,112 +7,92 @@ | |||||
* @license http://help.dedecms.com/usersguide/license.html | * @license http://help.dedecms.com/usersguide/license.html | ||||
* @link http://www.dedecms.com | * @link http://www.dedecms.com | ||||
*/ | */ | ||||
require_once(dirname(__FILE__).'/config.php'); | |||||
require_once DEDEINC.'/membermodel.cls.php'; | |||||
require_once(DEDEINC."/userlogin.class.php"); | |||||
CheckRank(0,0); | |||||
require_once(DEDEINC.'/enums.func.php'); | |||||
require_once(dirname(__FILE__) . '/config.php'); | |||||
require_once DEDEINC . '/membermodel.cls.php'; | |||||
require_once(DEDEINC . "/userlogin.class.php"); | |||||
CheckRank(0, 0); | |||||
require_once(DEDEINC . '/enums.func.php'); | |||||
$menutype = 'config'; | $menutype = 'config'; | ||||
if(!isset($dopost)) $dopost = ''; | |||||
if (!isset($dopost)) $dopost = ''; | |||||
if ($dopost == '') { | |||||
if($dopost=='') | |||||
{ | |||||
$dede_fields = empty($dede_fields) ? '' : trim($dede_fields); | |||||
if(!empty($dede_fields)) | |||||
{ | |||||
if($dede_fieldshash != md5($dede_fields.$cfg_cookie_encode)) | |||||
{ | |||||
showMsg('数据校验不对,程序返回', '-1'); | |||||
exit(); | |||||
} | |||||
} | |||||
$dede_fieldshash = empty($dede_fieldshash) ? '' : trim($dede_fieldshash); | |||||
$membermodel = new membermodel($cfg_ml->M_MbType); | $membermodel = new membermodel($cfg_ml->M_MbType); | ||||
$modelform = $dsql->GetOne("SELECT * FROM #@__member_model WHERE id='$membermodel->modid' "); | $modelform = $dsql->GetOne("SELECT * FROM #@__member_model WHERE id='$membermodel->modid' "); | ||||
if(!is_array($modelform)) | |||||
{ | |||||
if (!is_array($modelform)) { | |||||
showmsg('模型表单不存在', '-1'); | showmsg('模型表单不存在', '-1'); | ||||
exit(); | exit(); | ||||
} | } | ||||
$row = $dsql->GetOne("SELECT * FROM ".$modelform['table']." WHERE mid=$cfg_ml->M_ID"); | |||||
if(!is_array($row)) | |||||
{ | |||||
$row = $dsql->GetOne("SELECT * FROM " . $modelform['table'] . " WHERE mid=$cfg_ml->M_ID"); | |||||
if (!is_array($row)) { | |||||
showmsg("你访问的记录不存在或未经审核", '-1'); | showmsg("你访问的记录不存在或未经审核", '-1'); | ||||
exit(); | exit(); | ||||
} | } | ||||
$postform = $membermodel->getForm('edit', $row, 'membermodel'); | $postform = $membermodel->getForm('edit', $row, 'membermodel'); | ||||
include(DEDEMEMBER."/templets/edit_fullinfo.htm"); | |||||
include(DEDEMEMBER . "/templets/edit_fullinfo.htm"); | |||||
exit(); | exit(); | ||||
} | } | ||||
/*------------------------ | /*------------------------ | ||||
function __Save() | function __Save() | ||||
------------------------*/ | ------------------------*/ | ||||
if($dopost=='save'){ | |||||
$membermodel = new membermodel($cfg_ml->M_MbType); | |||||
$postform = $membermodel->getForm(true); | |||||
if ($dopost == 'save') { | |||||
// 校验CSRF | |||||
CheckCSRF(); | |||||
//这里完成详细内容填写 | |||||
$dede_fields = empty($dede_fields) ? '' : trim($dede_fields); | |||||
$dede_fieldshash = empty($dede_fieldshash) ? '' : trim($dede_fieldshash); | |||||
$modid = empty($modid)? 0 : intval(preg_replace("/[^\d]/",'', $modid)); | |||||
if(!empty($dede_fields)) | |||||
{ | |||||
if($dede_fieldshash != md5($dede_fields.$cfg_cookie_encode)) | |||||
{ | |||||
showMsg('数据校验不对,程序返回', '-1'); | |||||
exit(); | |||||
} | |||||
} | |||||
$modelform = $dsql->GetOne("SELECT * FROM #@__member_model WHERE id='$modid' "); | |||||
if(!is_array($modelform)) | |||||
{ | |||||
showmsg('模型表单不存在', '-1'); | |||||
$membermodel = new membermodel($cfg_ml->M_MbType); | |||||
$postform = $membermodel->getForm(true); | |||||
//这里完成详细内容填写 | |||||
$dede_fields = empty($dede_fields) ? '' : trim($dede_fields); | |||||
$dede_fieldshash = empty($dede_fieldshash) ? '' : trim($dede_fieldshash); | |||||
$modid = empty($modid) ? 0 : intval(preg_replace("/[^\d]/", '', $modid)); | |||||
if (!empty($dede_fields)) { | |||||
if ($dede_fieldshash != md5($dede_fields . $cfg_cookie_encode)) { | |||||
showMsg('数据校验不对,程序返回', '-1'); | |||||
exit(); | exit(); | ||||
} | } | ||||
$inadd_f = ''; | |||||
if(!empty($dede_fields)) | |||||
{ | |||||
$fieldarr = explode(';', $dede_fields); | |||||
if(is_array($fieldarr)) | |||||
{ | |||||
foreach($fieldarr as $field) | |||||
{ | |||||
if($field == '') continue; | |||||
$fieldinfo = explode(',', $field); | |||||
if($fieldinfo[1] == 'textdata') | |||||
{ | |||||
${$fieldinfo[0]} = FilterSearch(stripslashes(${$fieldinfo[0]})); | |||||
${$fieldinfo[0]} = addslashes(${$fieldinfo[0]}); | |||||
} else if ($fieldinfo[1] == 'img') | |||||
{ | |||||
${$fieldinfo[0]} = addslashes(${$fieldinfo[0]}); | |||||
} | |||||
else | |||||
{ | |||||
if(empty(${$fieldinfo[0]})) ${$fieldinfo[0]} = ''; | |||||
${$fieldinfo[0]} = GetFieldValue(${$fieldinfo[0]}, $fieldinfo[1],0,'add','','diy', $fieldinfo[0]); | |||||
} | |||||
if($fieldinfo[0]=="birthday") ${$fieldinfo[0]}=GetDateMk(${$fieldinfo[0]}); | |||||
$inadd_f .= ','.$fieldinfo[0]." ='".${$fieldinfo[0]}."'"; | |||||
} | |||||
$modelform = $dsql->GetOne("SELECT * FROM #@__member_model WHERE id='$modid' "); | |||||
if (!is_array($modelform)) { | |||||
showmsg('模型表单不存在', '-1'); | |||||
exit(); | |||||
} | |||||
$inadd_f = ''; | |||||
if (!empty($dede_fields)) { | |||||
$fieldarr = explode(';', $dede_fields); | |||||
if (is_array($fieldarr)) { | |||||
foreach ($fieldarr as $field) { | |||||
if ($field == '') continue; | |||||
$fieldinfo = explode(',', $field); | |||||
if ($fieldinfo[1] == 'textdata') { | |||||
${$fieldinfo[0]} = FilterSearch(stripslashes(${$fieldinfo[0]})); | |||||
${$fieldinfo[0]} = addslashes(${$fieldinfo[0]}); | |||||
} else if ($fieldinfo[1] == 'img') { | |||||
${$fieldinfo[0]} = addslashes(${$fieldinfo[0]}); | |||||
} else { | |||||
if (empty(${$fieldinfo[0]})) ${$fieldinfo[0]} = ''; | |||||
${$fieldinfo[0]} = GetFieldValue(${$fieldinfo[0]}, $fieldinfo[1], 0, 'add', '', 'diy', $fieldinfo[0]); | |||||
} | } | ||||
if ($fieldinfo[0] == "birthday") ${$fieldinfo[0]} = GetDateMk(${$fieldinfo[0]}); | |||||
${$fieldinfo[0]} = HtmlReplace(${$fieldinfo[0]}, -1); | |||||
$inadd_f .= ',' . $fieldinfo[0] . " ='" . ${$fieldinfo[0]} . "'"; | |||||
} | } | ||||
} | |||||
$inadd_f=preg_replace('/,/','',$inadd_f,1); | |||||
$query = "UPDATE `{$membermodel->table}`set {$inadd_f} WHERE mid='{$cfg_ml->M_ID}'"; | |||||
// 清除缓存 | |||||
$cfg_ml->DelCache($cfg_ml->M_ID); | |||||
if(!$dsql->ExecuteNoneQuery($query)) | |||||
{ | |||||
ShowMsg("更新附加表 `{$membermodel->table}` 时出错,请联系管理员!","javascript:;"); | |||||
exit(); | |||||
}else{ | |||||
ShowMsg('成功更新你的详细资料!','edit_fullinfo.php',0,5000); | |||||
exit(); | |||||
} | } | ||||
} | |||||
} | |||||
$inadd_f = preg_replace('/,/', '', $inadd_f, 1); | |||||
$query = "UPDATE `{$membermodel->table}` set {$inadd_f} WHERE mid='{$cfg_ml->M_ID}'"; | |||||
// 清除缓存 | |||||
$cfg_ml->DelCache($cfg_ml->M_ID); | |||||
if (!$dsql->ExecuteNoneQuery($query)) { | |||||
ShowMsg("更新附加表 `{$membermodel->table}` 时出错,请联系管理员!", "javascript:;"); | |||||
exit(); | |||||
} else { | |||||
ShowMsg('成功更新你的详细资料!', 'edit_fullinfo.php', 0, 5000); | |||||
exit(); | |||||
} | |||||
} |
@@ -21,34 +21,8 @@ if($dopost=='save') | |||||
$spacename =(empty($spacename))? "" : $spacename; | $spacename =(empty($spacename))? "" : $spacename; | ||||
$maxlength = $cfg_max_face * 1024; | $maxlength = $cfg_max_face * 1024; | ||||
$userdir = $cfg_user_dir.'/'.$cfg_ml->M_ID; | $userdir = $cfg_user_dir.'/'.$cfg_ml->M_ID; | ||||
if (strpos($oldspacelogo,"..") > 0) | |||||
{ | |||||
die("not support!"); | |||||
} | |||||
if(!preg_match('#^'.$userdir."#", $oldspacelogo)) | |||||
{ | |||||
$oldspacelogo = ''; | |||||
} | |||||
if(is_uploaded_file($spacelogo)) | |||||
{ | |||||
if(@filesize($_FILES['spacelogo']['tmp_name']) > $maxlength) | |||||
{ | |||||
ShowMsg("你上传的Logo文件超过了系统限制大小:{$cfg_max_face} K!", '-1'); | |||||
exit(); | |||||
} | |||||
//删除旧图片(防止文件扩展名不同,如:原来的是gif,后来的是jpg) | |||||
if(preg_match("#\.(jpg|gif|png)$#i", $oldspacelogo) && file_exists($cfg_basedir.$oldspacelogo)) | |||||
{ | |||||
@unlink($cfg_basedir.$oldspacelogo); | |||||
} | |||||
//上传新工图片 | |||||
$spacelogo = MemberUploads('spacelogo','',$cfg_ml->M_ID,'image','mylogo', 200, 50); | |||||
} else { | |||||
$spacelogo = $oldspacelogo; | |||||
} | |||||
$spacelogo = HtmlReplace($spacelogo, -1) ; | |||||
$pagesize = intval($pagesize); | $pagesize = intval($pagesize); | ||||
if($pagesize<=0) | if($pagesize<=0) | ||||
{ | { | ||||
@@ -1,4 +1,5 @@ | |||||
<?php | <?php | ||||
/** | /** | ||||
* 文档验证 | * 文档验证 | ||||
* | * | ||||
@@ -8,27 +9,27 @@ | |||||
* @license http://help.dedecms.com/usersguide/license.html | * @license http://help.dedecms.com/usersguide/license.html | ||||
* @link http://www.dedecms.com | * @link http://www.dedecms.com | ||||
*/ | */ | ||||
if(!defined('DEDEMEMBER')) exit('dedecms'); | |||||
if (!defined('DEDEMEMBER')) exit('dedecms'); | |||||
include_once(DEDEINC.'/image.func.php'); | |||||
include_once(DEDEINC.'/oxwindow.class.php'); | |||||
include_once(DEDEINC . '/image.func.php'); | |||||
include_once(DEDEINC . '/oxwindow.class.php'); | |||||
$svali = GetCkVdValue(); | $svali = GetCkVdValue(); | ||||
if(preg_match("/3/",$safe_gdopen)){ | |||||
if(strtolower($vdcode)!=$svali || $svali=='') | |||||
{ | |||||
if (preg_match("/3/", $safe_gdopen)) { | |||||
if (strtolower($vdcode) != $svali || $svali == '') { | |||||
ResetVdValue(); | ResetVdValue(); | ||||
ShowMsg('验证码错误!', '-1'); | ShowMsg('验证码错误!', '-1'); | ||||
exit(); | exit(); | ||||
} | } | ||||
} | } | ||||
// 校验CSRF | |||||
CheckCSRF(); | |||||
$faqkey = isset($faqkey) && is_numeric($faqkey) ? $faqkey : 0; | $faqkey = isset($faqkey) && is_numeric($faqkey) ? $faqkey : 0; | ||||
$safe_faq_send = isset($safe_faq_send) && is_numeric($safe_faq_send) ? $safe_faq_send : 0; | $safe_faq_send = isset($safe_faq_send) && is_numeric($safe_faq_send) ? $safe_faq_send : 0; | ||||
if($safe_faq_send == '1') | |||||
{ | |||||
if($safefaqs[$faqkey]['answer'] != $safeanswer || $safeanswer=='') | |||||
{ | |||||
if ($safe_faq_send == '1') { | |||||
if ($safefaqs[$faqkey]['answer'] != $safeanswer || $safeanswer == '') { | |||||
ShowMsg('验证问题答案错误', '-1'); | ShowMsg('验证问题答案错误', '-1'); | ||||
exit(); | exit(); | ||||
} | } | ||||
@@ -38,8 +39,7 @@ $flag = ''; | |||||
$autokey = $remote = $dellink = $autolitpic = 0; | $autokey = $remote = $dellink = $autolitpic = 0; | ||||
$userip = GetIP(); | $userip = GetIP(); | ||||
if($typeid==0) | |||||
{ | |||||
if ($typeid == 0) { | |||||
ShowMsg('请指定文档隶属的栏目!', '-1'); | ShowMsg('请指定文档隶属的栏目!', '-1'); | ||||
exit(); | exit(); | ||||
} | } | ||||
@@ -49,39 +49,31 @@ $query = "Select tp.ispart,tp.channeltype,tp.issend,ch.issend as cissend,ch.send | |||||
$cInfos = $dsql->GetOne($query); | $cInfos = $dsql->GetOne($query); | ||||
//检测栏目是否有投稿权限 | //检测栏目是否有投稿权限 | ||||
if($cInfos['issend']!=1 || $cInfos['ispart']!=0 || $cInfos['channeltype']!=$channelid || $cInfos['cissend']!=1) | |||||
{ | |||||
ShowMsg("你所选择的栏目不支持投稿!","-1"); | |||||
if ($cInfos['issend'] != 1 || $cInfos['ispart'] != 0 || $cInfos['channeltype'] != $channelid || $cInfos['cissend'] != 1) { | |||||
ShowMsg("你所选择的栏目不支持投稿!", "-1"); | |||||
exit(); | exit(); | ||||
} | } | ||||
//检查频道设定的投稿许可权限 | //检查频道设定的投稿许可权限 | ||||
if($cInfos['sendrank'] > $cfg_ml->M_Rank ) | |||||
{ | |||||
$row = $dsql->GetOne("Select membername From #@__arcrank where rank='".$cInfos['sendrank']."' "); | |||||
ShowMsg("对不起,需要[".$row['membername']."]才能在这个频道发布文档!","-1","0",5000); | |||||
if ($cInfos['sendrank'] > $cfg_ml->M_Rank) { | |||||
$row = $dsql->GetOne("Select membername From #@__arcrank where rank='" . $cInfos['sendrank'] . "' "); | |||||
ShowMsg("对不起,需要[" . $row['membername'] . "]才能在这个频道发布文档!", "-1", "0", 5000); | |||||
exit(); | exit(); | ||||
} | } | ||||
if($cInfos['usertype'] !='' && $cInfos['usertype'] != $cfg_ml->M_MbType) | |||||
{ | |||||
ShowMsg("对不起,需要[".$cInfos['usertype']."]才能在这个频道发布文档!","-1","0",5000); | |||||
if ($cInfos['usertype'] != '' && $cInfos['usertype'] != $cfg_ml->M_MbType) { | |||||
ShowMsg("对不起,需要[" . $cInfos['usertype'] . "]才能在这个频道发布文档!", "-1", "0", 5000); | |||||
exit(); | exit(); | ||||
} | } | ||||
//文档的默认状态 | //文档的默认状态 | ||||
if($cInfos['arcsta']==0) | |||||
{ | |||||
if ($cInfos['arcsta'] == 0) { | |||||
$ismake = 0; | $ismake = 0; | ||||
$arcrank = 0; | $arcrank = 0; | ||||
} | |||||
else if($cInfos['arcsta']==1) | |||||
{ | |||||
} else if ($cInfos['arcsta'] == 1) { | |||||
$ismake = -1; | $ismake = -1; | ||||
$arcrank = 0; | $arcrank = 0; | ||||
} | |||||
else | |||||
{ | |||||
} else { | |||||
$ismake = 0; | $ismake = 0; | ||||
$arcrank = -1; | $arcrank = -1; | ||||
} | } | ||||
@@ -90,24 +82,18 @@ else | |||||
$money = 0; | $money = 0; | ||||
$flag = $shorttitle = $color = $source = ''; | $flag = $shorttitle = $color = $source = ''; | ||||
$sortrank = $senddate = $pubdate = time(); | $sortrank = $senddate = $pubdate = time(); | ||||
$title = cn_substrR(HtmlReplace($title,1),$cfg_title_maxlen); | |||||
$writer = cn_substrR(HtmlReplace($writer,1),20); | |||||
if(empty($description)) $description = ''; | |||||
$description = cn_substrR(HtmlReplace($description,1),250); | |||||
$keywords = cn_substrR(HtmlReplace($tags,1),30); | |||||
$title = cn_substrR(HtmlReplace($title, 1), $cfg_title_maxlen); | |||||
$writer = cn_substrR(HtmlReplace($writer, 1), 20); | |||||
if (empty($description)) $description = ''; | |||||
$description = cn_substrR(HtmlReplace($description, 1), 250); | |||||
$keywords = cn_substrR(HtmlReplace($tags, 1), 30); | |||||
$mid = $cfg_ml->M_ID; | $mid = $cfg_ml->M_ID; | ||||
//处理上传的缩略图 | |||||
$litpic = MemberUploads('litpic', '', $cfg_ml->M_ID, 'image', '', $cfg_ddimg_width, $cfg_ddimg_height, FALSE); | |||||
if($litpic!='') SaveUploadInfo($title,$litpic,1); | |||||
//检测文档是否重复 | //检测文档是否重复 | ||||
if($cfg_mb_cktitle=='Y') | |||||
{ | |||||
if ($cfg_mb_cktitle == 'Y') { | |||||
$row = $dsql->GetOne("SELECT * FROM `#@__archives` WHERE title LIKE '$title' "); | $row = $dsql->GetOne("SELECT * FROM `#@__archives` WHERE title LIKE '$title' "); | ||||
if(is_array($row)) | |||||
{ | |||||
ShowMsg("对不起,请不要发布重复文档!","-1","0",5000); | |||||
if (is_array($row)) { | |||||
ShowMsg("对不起,请不要发布重复文档!", "-1", "0", 5000); | |||||
exit(); | exit(); | ||||
} | } | ||||
} | |||||
} |
@@ -1,4 +1,5 @@ | |||||
<?php | <?php | ||||
/** | /** | ||||
* 文档编辑验证 | * 文档编辑验证 | ||||
* | * | ||||
@@ -8,86 +9,76 @@ | |||||
* @license http://help.dedecms.com/usersguide/license.html | * @license http://help.dedecms.com/usersguide/license.html | ||||
* @link http://www.dedecms.com | * @link http://www.dedecms.com | ||||
*/ | */ | ||||
if(!defined('DEDEMEMBER')) exit('dedecms'); | |||||
if (!defined('DEDEMEMBER')) exit('dedecms'); | |||||
require_once(DEDEINC."/image.func.php"); | |||||
require_once(DEDEINC."/oxwindow.class.php"); | |||||
require_once(DEDEINC . "/image.func.php"); | |||||
require_once(DEDEINC . "/oxwindow.class.php"); | |||||
$flag = ''; | $flag = ''; | ||||
$typeid = isset($typeid) && is_numeric($typeid) ? $typeid : 0; | $typeid = isset($typeid) && is_numeric($typeid) ? $typeid : 0; | ||||
$userip = GetIP(); | $userip = GetIP(); | ||||
$svali = GetCkVdValue(); | $svali = GetCkVdValue(); | ||||
if(preg_match("/3/",$safe_gdopen)){ | |||||
if(strtolower($vdcode)!=$svali || $svali=='') | |||||
{ | |||||
if (preg_match("/3/", $safe_gdopen)) { | |||||
if (strtolower($vdcode) != $svali || $svali == '') { | |||||
ResetVdValue(); | ResetVdValue(); | ||||
ShowMsg('验证码错误!', '-1'); | ShowMsg('验证码错误!', '-1'); | ||||
exit(); | exit(); | ||||
} | } | ||||
} | } | ||||
if($typeid==0) | |||||
if ($typeid == 0) { | |||||
ShowMsg('请指定文档隶属的栏目!', '-1'); | |||||
exit(); | |||||
} | |||||
if (empty($idhash) || $idhash != hash("sha256", $aid.$cfg_cookie_encode)) | |||||
{ | { | ||||
ShowMsg('请指定文档隶属的栏目!','-1'); | |||||
showMsg('数据校验不对,程序返回', '-1'); | |||||
exit(); | exit(); | ||||
} | } | ||||
// 校验CSRF | |||||
CheckCSRF(); | |||||
$query = "SELECT tp.ispart,tp.channeltype,tp.issend,ch.issend as cissend,ch.sendrank,ch.arcsta,ch.addtable,ch.fieldset,ch.usertype | $query = "SELECT tp.ispart,tp.channeltype,tp.issend,ch.issend as cissend,ch.sendrank,ch.arcsta,ch.addtable,ch.fieldset,ch.usertype | ||||
FROM `#@__arctype` tp LEFT JOIN `#@__channeltype` ch ON ch.id=tp.channeltype WHERE tp.id='$typeid' "; | FROM `#@__arctype` tp LEFT JOIN `#@__channeltype` ch ON ch.id=tp.channeltype WHERE tp.id='$typeid' "; | ||||
$cInfos = $dsql->GetOne($query); | $cInfos = $dsql->GetOne($query); | ||||
$addtable = $cInfos['addtable']; | $addtable = $cInfos['addtable']; | ||||
//检测栏目是否有投稿权限 | //检测栏目是否有投稿权限 | ||||
if($cInfos['issend']!=1 || $cInfos['ispart']!=0|| $cInfos['channeltype']!=$channelid || $cInfos['cissend']!=1) | |||||
{ | |||||
ShowMsg("你所选择的栏目不支持投稿!","-1"); | |||||
if ($cInfos['issend'] != 1 || $cInfos['ispart'] != 0 || $cInfos['channeltype'] != $channelid || $cInfos['cissend'] != 1) { | |||||
ShowMsg("你所选择的栏目不支持投稿!", "-1"); | |||||
exit(); | exit(); | ||||
} | } | ||||
//文档的默认状态 | //文档的默认状态 | ||||
if($cInfos['arcsta']==0) | |||||
{ | |||||
if ($cInfos['arcsta'] == 0) { | |||||
$ismake = 0; | $ismake = 0; | ||||
$arcrank = 0; | $arcrank = 0; | ||||
} | |||||
else if($cInfos['arcsta']==1) | |||||
{ | |||||
} else if ($cInfos['arcsta'] == 1) { | |||||
$ismake = -1; | $ismake = -1; | ||||
$arcrank = 0; | $arcrank = 0; | ||||
} | |||||
else | |||||
{ | |||||
} else { | |||||
$ismake = 0; | $ismake = 0; | ||||
$arcrank = -1; | $arcrank = -1; | ||||
} | } | ||||
//对保存的内容进行处理 | //对保存的内容进行处理 | ||||
$title = cn_substrR(HtmlReplace($title,1),$cfg_title_maxlen); | |||||
$writer = cn_substrR(HtmlReplace($writer,1),20); | |||||
if(empty($description)) $description = ''; | |||||
$description = cn_substrR(HtmlReplace($description,1),250); | |||||
$keywords = cn_substrR(HtmlReplace($tags,1),30); | |||||
$title = cn_substrR(HtmlReplace($title, 1), $cfg_title_maxlen); | |||||
$writer = cn_substrR(HtmlReplace($writer, 1), 20); | |||||
if (empty($description)) $description = ''; | |||||
$description = cn_substrR(HtmlReplace($description, 1), 250); | |||||
$keywords = cn_substrR(HtmlReplace($tags, 1), 30); | |||||
$mid = $cfg_ml->M_ID; | $mid = $cfg_ml->M_ID; | ||||
$midQuery = "SELECT mid FROM `#@__arctiny` WHERE id='$aid'"; | $midQuery = "SELECT mid FROM `#@__arctiny` WHERE id='$aid'"; | ||||
$midRow = $dsql->GetOne($midQuery); | $midRow = $dsql->GetOne($midQuery); | ||||
if($midRow['mid'] != $mid) | |||||
{ | |||||
ShowMsg('您暂无权限在这里进行修改文档!','javascript:;'); | |||||
if ($midRow['mid'] != $mid) { | |||||
ShowMsg('您暂无权限在这里进行修改文档!', 'javascript:;'); | |||||
exit; | exit; | ||||
} | } | ||||
$isadmin = ($cfg_ml->fields['matt']==10 ? true : false); | |||||
if (empty($oldlitpic)) | |||||
{ | |||||
$isadmin = ($cfg_ml->fields['matt'] == 10 ? true : false); | |||||
if (empty($oldlitpic)) { | |||||
$oldlitpic = ''; | $oldlitpic = ''; | ||||
} | } | ||||
//处理上传的缩略图 | |||||
if($litpic != '') | |||||
{ | |||||
$litpic = MemberUploads('litpic', $oldlitpic, $mid, 'image', '', $cfg_ddimg_width, $cfg_ddimg_height, false, $isadmin); | |||||
SaveUploadInfo($title, $litpic, 1); | |||||
} | |||||
else | |||||
{ | |||||
$litpic =$oldlitpic; if (strpos( $litpic, '..') !== false || strpos( $litpic, $cfg_user_dir."/{$userid}/" ) === false) exit('not allowed path!'); | |||||
} |
@@ -217,7 +217,6 @@ function GetFormItemValueA($ctag,$fvalue) | |||||
*/ | */ | ||||
function PrintAutoFieldsAdd(&$fieldset, $loadtype='all', $isprint=TRUE) | function PrintAutoFieldsAdd(&$fieldset, $loadtype='all', $isprint=TRUE) | ||||
{ | { | ||||
global $cfg_cookie_encode; | |||||
$dtp = new DedeTagParse(); | $dtp = new DedeTagParse(); | ||||
$dtp->SetNameSpace('field','<','>'); | $dtp->SetNameSpace('field','<','>'); | ||||
$dtp->LoadSource($fieldset); | $dtp->LoadSource($fieldset); | ||||
@@ -235,8 +234,8 @@ function PrintAutoFieldsAdd(&$fieldset, $loadtype='all', $isprint=TRUE) | |||||
} | } | ||||
} | } | ||||
} | } | ||||
if ($isprint) echo "<input type='hidden' name='dede_addonfields' value=\"".$dede_addonfields."\">\r\n"; | |||||
echo "<input type=\"hidden\" name=\"dede_fieldshash\" value=\"".md5($dede_addonfields . 'anythingelse' .$cfg_cookie_encode) ."\" />"; | |||||
echo "<input type=\"hidden\" name=\"_csrf_token\" value=\"".$GLOBALS['csrf_token']."\" />"; | |||||
// 增加一个返回 | // 增加一个返回 | ||||
return $addonfieldsname; | return $addonfieldsname; | ||||
} | } | ||||
@@ -267,7 +266,7 @@ function PrintAutoFieldsEdit(&$fieldset, &$fieldValues, $loadtype='all') | |||||
} | } | ||||
} | } | ||||
} | } | ||||
echo "<input type='hidden' name='dede_addonfields' value=\"".$dede_addonfields."\">\r\n"; | |||||
echo "<input type=\"hidden\" name=\"_csrf_token\" value=\"".$GLOBALS['csrf_token']."\" />"; | |||||
} | } | ||||
/** | /** | ||||
@@ -279,7 +278,6 @@ function PrintAutoFieldsEdit(&$fieldset, &$fieldValues, $loadtype='all') | |||||
*/ | */ | ||||
function MakeArt($aid, $ismakesign=FALSE) | function MakeArt($aid, $ismakesign=FALSE) | ||||
{ | { | ||||
global $cfg_makeindex,$cfg_basedir,$cfg_templets_dir,$cfg_df_style; | |||||
include_once(DEDEINC.'/arc.archives.class.php'); | include_once(DEDEINC.'/arc.archives.class.php'); | ||||
if($ismakesign) | if($ismakesign) | ||||
{ | { | ||||
@@ -410,119 +408,3 @@ function GetCurContent(&$body) | |||||
$htd->Close(); | $htd->Close(); | ||||
return $body; | return $body; | ||||
} | } | ||||
/** | |||||
* 上传一个未经处理的图片 | |||||
* | |||||
* 参数一 upname 上传框名称 | |||||
* 参数二 handurl 手工填写的网址 | |||||
* 参数三 ddisremote 是否下载远程图片 0 不下, 1 下载 | |||||
* 参数四 ntitle 注解文字 如果表单有 title 字段可不管 | |||||
* | |||||
* @access public | |||||
* @param string $upname 上传名称 | |||||
* @param string $handurl 操作地址 | |||||
* @param int $isremote 是否远程 | |||||
* @param string $ntitle 注释文字 | |||||
* @return string | |||||
*/ | |||||
function UploadOneImage($upname,$handurl='',$isremote=1,$ntitle='') | |||||
{ | |||||
global $cfg_ml,$cfg_basedir,$cfg_image_dir,$dsql,$title, $dsql; | |||||
if($ntitle!='') | |||||
{ | |||||
$title = $ntitle; | |||||
} | |||||
$ntime = time(); | |||||
$filename = ''; | |||||
$isrm_up = false; | |||||
$handurl = trim($handurl); | |||||
//如果用户自行上传了图片 | |||||
if(!empty($_FILES[$upname]['tmp_name']) && is_uploaded_file($_FILES[$upname]['tmp_name'])) | |||||
{ | |||||
$istype = 0; | |||||
$sparr = Array("image/pjpeg","image/jpeg","image/gif","image/png"); | |||||
$_FILES[$upname]['type'] = strtolower(trim($_FILES[$upname]['type'])); | |||||
if(!in_array($_FILES[$upname]['type'],$sparr)) | |||||
{ | |||||
ShowMsg("上传的图片格式错误,请使用JPEG、GIF、PNG格式的其中一种!","-1"); | |||||
exit(); | |||||
} | |||||
if(!empty($handurl) && !preg_match("#^http:\/\/#", $handurl) && file_exists($cfg_basedir.$handurl) ) | |||||
{ | |||||
$dsql->ExecuteNoneQuery("Delete From #@__uploads where url like '$handurl' "); | |||||
$fullUrl = preg_replace("#\.([a-z]*)$#i", "", $handurl); | |||||
} | |||||
else | |||||
{ | |||||
$savepath = $cfg_image_dir."/".strftime("%Y-%m",$ntime); | |||||
CreateDir($savepath); | |||||
$fullUrl = $savepath."/".strftime("%d",$ntime).dd2char(strftime("%H%M%S",$ntime).'0'.$cfg_ml->M_ID.'0'.mt_rand(1000,9999)); | |||||
} | |||||
if(strtolower($_FILES[$upname]['type'])=="image/gif") | |||||
{ | |||||
$fullUrl = $fullUrl.".gif"; | |||||
} | |||||
else if(strtolower($_FILES[$upname]['type'])=="image/png") | |||||
{ | |||||
$fullUrl = $fullUrl.".png"; | |||||
} | |||||
else | |||||
{ | |||||
$fullUrl = $fullUrl.".jpg"; | |||||
} | |||||
//保存 | |||||
@move_uploaded_file($_FILES[$upname]['tmp_name'],$cfg_basedir.$fullUrl); | |||||
$filename = $fullUrl; | |||||
//水印 | |||||
@WaterImg($imgfile,'up'); | |||||
$isrm_up = TRUE; | |||||
} | |||||
//远程或选择本地图片 | |||||
else{ | |||||
if($handurl=='') | |||||
{ | |||||
return ''; | |||||
} | |||||
//远程图片并要求本地化 | |||||
if($isremote==1 && preg_match("#^http:\/\/#", $handurl)) | |||||
{ | |||||
$ddinfos = GetRemoteImage($handurl,$cuserLogin->getUserID()); | |||||
if(!is_array($ddinfos)) | |||||
{ | |||||
$litpic = ""; | |||||
} | |||||
else | |||||
{ | |||||
$filename = $ddinfos[0]; | |||||
} | |||||
$isrm_up = TRUE; | |||||
//本地图片或远程不要求本地化 | |||||
} | |||||
else | |||||
{ | |||||
$filename = $handurl; | |||||
} | |||||
} | |||||
$imgfile = $cfg_basedir.$filename; | |||||
if(is_file($imgfile) && $isrm_up && $filename!='') | |||||
{ | |||||
$info = ""; | |||||
$imginfos = GetImageSize($imgfile,$info); | |||||
//把新上传的图片信息保存到媒体文档管理档案中 | |||||
$inquery = " | |||||
INSERT INTO #@__uploads(title,url,mediatype,width,height,playtime,filesize,uptime,mid) | |||||
VALUES ('$title','$filename','1','".$imginfos[0]."','".$imginfos[1]."','0','".filesize($imgfile)."','".time()."','".$cfg_ml->M_ID."'); | |||||
"; | |||||
$dsql->ExecuteNoneQuery($inquery); | |||||
} | |||||
$fid = $dsql->GetLastID(); | |||||
AddMyAddon($fid, $filename); | |||||
return $filename; | |||||
} |
@@ -1,4 +1,5 @@ | |||||
<?php | <?php | ||||
/** | /** | ||||
* 我的收藏夹 | * 我的收藏夹 | ||||
* | * | ||||
@@ -8,30 +9,29 @@ | |||||
* @license http://help.dedecms.com/usersguide/license.html | * @license http://help.dedecms.com/usersguide/license.html | ||||
* @link http://www.dedecms.com | * @link http://www.dedecms.com | ||||
*/ | */ | ||||
require_once(dirname(__FILE__)."/config.php"); | |||||
CheckRank(0,0); | |||||
require_once(DEDEINC."/datalistcp.class.php"); | |||||
setcookie("ENV_GOBACK_URL",GetCurUrl(),time()+3600,"/"); | |||||
$type = empty($type)? "sys" : trim($type); | |||||
require_once(dirname(__FILE__) . "/config.php"); | |||||
CheckRank(0, 0); | |||||
require_once(DEDEINC . "/datalistcp.class.php"); | |||||
setcookie("ENV_GOBACK_URL", GetCurUrl(), time() + 3600, "/"); | |||||
$type = empty($type) ? "sys" : trim($type); | |||||
$tpl = ''; | $tpl = ''; | ||||
$menutype = 'mydede'; | $menutype = 'mydede'; | ||||
$rank = empty($rank)? "" : $rank; | |||||
if($rank == 'top'){ | |||||
$rank = empty($rank) ? "" : $rank; | |||||
if ($rank == 'top') { | |||||
$sql = "SELECT s.*,COUNT(s.aid) AS num,t.* from #@__member_stow AS s LEFT JOIN `#@__member_stowtype` AS t on t.stowname=s.type group by s.aid order by num desc"; | $sql = "SELECT s.*,COUNT(s.aid) AS num,t.* from #@__member_stow AS s LEFT JOIN `#@__member_stowtype` AS t on t.stowname=s.type group by s.aid order by num desc"; | ||||
$tpl = 'stowtop'; | $tpl = 'stowtop'; | ||||
}else{ | |||||
$sql = "SELECT s.*,t.* FROM `#@__member_stow` AS s left join `#@__member_stowtype` AS t on t.stowname=s.type where s.mid='".$cfg_ml->M_ID."' order by s.id desc"; | |||||
} else { | |||||
$sql = "SELECT s.*,t.* FROM `#@__member_stow` AS s left join `#@__member_stowtype` AS t on t.stowname=s.type where s.mid='" . $cfg_ml->M_ID . "' order by s.id desc"; | |||||
$tpl = 'mystow'; | $tpl = 'mystow'; | ||||
} | } | ||||
$dsql->Execute('nn','SELECT indexname,stowname FROM `#@__member_stowtype`'); | |||||
while($row = $dsql->GetArray('nn')) | |||||
{ | |||||
$rows[]=$row; | |||||
$dsql->Execute('nn', 'SELECT indexname,stowname FROM `#@__member_stowtype`'); | |||||
while ($row = $dsql->GetArray('nn')) { | |||||
$rows[] = $row; | |||||
} | } | ||||
$dlist = new DataListCP(); | $dlist = new DataListCP(); | ||||
$dlist->pageSize = 20; | $dlist->pageSize = 20; | ||||
$dlist->SetTemplate(DEDEMEMBER."/templets/$tpl.htm"); | |||||
$dlist->SetTemplate(DEDEMEMBER . "/templets/$tpl.htm"); | |||||
$dlist->SetSource($sql); | $dlist->SetSource($sql); | ||||
$dlist->Display(); | |||||
$dlist->Display(); |
@@ -67,10 +67,6 @@ | |||||
<label>图集简介:</label> | <label>图集简介:</label> | ||||
<textarea name="description" id="description"></textarea>(内容的简要说明) | <textarea name="description" id="description"></textarea>(内容的简要说明) | ||||
</p> | </p> | ||||
<p class="cellBg"> | |||||
<label>缩略图:</label> | |||||
<input name="litpic" type="file" id="litpic" onchange="SeePicNew('divpicview',this);" maxlength="100" class="intxt"/> | |||||
</p> | |||||
</div> | </div> | ||||
<input name="maxwidth" type="hidden" id="maxwidth" value="<?php echo $cfg_album_width; ?>" /> | <input name="maxwidth" type="hidden" id="maxwidth" value="<?php echo $cfg_album_width; ?>" /> | ||||
<input name="prow" type="hidden" value="<?php echo $cfg_album_row; ?>" /> | <input name="prow" type="hidden" value="<?php echo $cfg_album_row; ?>" /> | ||||
@@ -25,7 +25,7 @@ | |||||
<form name="addcontent" action="album_edit.php" method="post" enctype="multipart/form-data" onsubmit="return checkSubmit();"> | <form name="addcontent" action="album_edit.php" method="post" enctype="multipart/form-data" onsubmit="return checkSubmit();"> | ||||
<input type="hidden" name="dopost" value="save" /> | <input type="hidden" name="dopost" value="save" /> | ||||
<input type="hidden" name="aid" value="<?php echo $row['id']; ?>" /> | <input type="hidden" name="aid" value="<?php echo $row['id']; ?>" /> | ||||
<input type="hidden" name="idhash" value="<?php echo md5($row['id'].$cfg_cookie_encode); ?>" /> | |||||
<input type="hidden" name="idhash" value="<?php echo hash('sha256', $row['id'].$cfg_cookie_encode); ?>" /> | |||||
<input type="hidden" name="channelid" value="<?php echo $row['channel']; ?>" /> | <input type="hidden" name="channelid" value="<?php echo $row['channel']; ?>" /> | ||||
<input type="hidden" name="oldlitpic" value="<?php echo $row['litpic']; ?>" /> | <input type="hidden" name="oldlitpic" value="<?php echo $row['litpic']; ?>" /> | ||||
<input type="hidden" name="sortrank" value="<?php echo $row['sortrank']; ?>" /> | <input type="hidden" name="sortrank" value="<?php echo $row['sortrank']; ?>" /> | ||||
@@ -69,17 +69,7 @@ | |||||
<label>图集简介:</label> | <label>图集简介:</label> | ||||
<textarea name="description" id="description"><?php echo $row["description"]; ?></textarea>(内容的简要说明) | <textarea name="description" id="description"><?php echo $row["description"]; ?></textarea>(内容的简要说明) | ||||
</p> | </p> | ||||
<p class="cellBg"> | |||||
<label>缩略图:</label> | |||||
<input name="litpic" type="file" id="litpic" onchange="SeePicNew('divpicview',this);" maxlength="100" class="intxt"/> | |||||
</p> | |||||
<?php if($row['litpic']!=''){ ?> | |||||
<p> | |||||
<label style="width: 85px;">原来的缩略图:</label> | |||||
<img name="nlitpic" id="nlitpic" src='<?php echo $row['litpic']; ?>' style="width: 200px; height:150px"/> | |||||
</p> | |||||
<?php | <?php | ||||
} | |||||
//自定义字段 | //自定义字段 | ||||
PrintAutoFieldsEdit($row['fieldset'],$addRow,'autofield'); | PrintAutoFieldsEdit($row['fieldset'],$addRow,'autofield'); | ||||
?> | ?> | ||||
@@ -126,7 +116,7 @@ | |||||
</tr> | </tr> | ||||
<tr> | <tr> | ||||
<td width="310" height="25"> 本地上传: | <td width="310" height="25"> 本地上传: | ||||
<input type="file" name='imgfile<?php echo $j; ?>' style="width:200px;" maxlength="100" class="intxt" onchange="SeePicNew('divpicview<?php echo $j; ?>',this);" /> | |||||
<input type="text" name='imgfile<?php echo $j; ?>' style="width:200px;" maxlength="100" class="intxt"/> | |||||
</td> | </td> | ||||
<td width="322" rowspan="3" align="center"><div id='divpicview<?php echo $j; ?>' class='divpre' style="height:5px"></div> | <td width="322" rowspan="3" align="center"><div id='divpicview<?php echo $j; ?>' class='divpre' style="height:5px"></div> | ||||
<img src="<?php echo trim($ctag->GetInnerText()); ?>" id="picview<?php echo $j; ?>" name="picview<?php echo $j; ?>" style="width: 128px; height: 128px;"/></td> | <img src="<?php echo trim($ctag->GetInnerText()); ?>" id="picview<?php echo $j; ?>" name="picview<?php echo $j; ?>" style="width: 128px; height: 128px;"/></td> | ||||
@@ -1,55 +1,60 @@ | |||||
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> | |||||
<!DOCTYPE html | |||||
PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> | |||||
<html xmlns="http://www.w3.org/1999/xhtml"> | <html xmlns="http://www.w3.org/1999/xhtml"> | ||||
<head> | <head> | ||||
<meta http-equiv="Content-Type" content="text/html; charset=<?php echo $cfg_soft_lang; ?>" /> | |||||
<title>发表<?php echo $cInfos['typename']; ?> - 会员中心 - <?php echo $cfg_webname; ?></title> | |||||
<link href="templets/style/base.css" rel="stylesheet" type="text/css" /> | |||||
<script type="text/javascript" src="../static/js/jquery.js"></script> | |||||
<script language='javascript' src="templets/js/main.js"></script> | |||||
<script type="text/javascript" src="templets/js/inputAutoClear.js"></script> | |||||
<script type="text/javascript" src="templets/js/load.js"></script> | |||||
<script type="text/javascript" src="templets/js/leftmenu.js"></script> | |||||
<script type="text/javascript" src="templets/js/checkSubmit.js"></script> | |||||
<meta http-equiv="Content-Type" content="text/html; charset=<?php echo $cfg_soft_lang; ?>" /> | |||||
<title>发表<?php echo $cInfos['typename']; ?> - 会员中心 - <?php echo $cfg_webname; ?></title> | |||||
<link href="templets/style/base.css" rel="stylesheet" type="text/css" /> | |||||
<script type="text/javascript" src="../static/js/jquery.js"></script> | |||||
<script language='javascript' src="templets/js/main.js"></script> | |||||
<script type="text/javascript" src="templets/js/inputAutoClear.js"></script> | |||||
<script type="text/javascript" src="templets/js/load.js"></script> | |||||
<script type="text/javascript" src="templets/js/leftmenu.js"></script> | |||||
<script type="text/javascript" src="templets/js/checkSubmit.js"></script> | |||||
</head> | </head> | ||||
<body> | <body> | ||||
<div id="main"> | |||||
<?php include(DEDEMEMBER."/templets/head.htm"); ?> | |||||
<div id="content" class="w960 clearfix"> | |||||
<?php include(DEDEMEMBER."/templets/menu.php"); ?> | |||||
<div id="mcpmain"> | |||||
<div id="appTab"> | |||||
<div id="appTab2"> | |||||
<ul> | |||||
<li class="thisTab"><a href="#"><span>发表<?php echo $cInfos['typename']; ?></span></a></li> | |||||
</ul> | |||||
<div id="main"> | |||||
<?php include(DEDEMEMBER."/templets/head.htm"); ?> | |||||
<div id="content" class="w960 clearfix"> | |||||
<?php include(DEDEMEMBER."/templets/menu.php"); ?> | |||||
<div id="mcpmain"> | |||||
<div id="appTab"> | |||||
<div id="appTab2"> | |||||
<ul> | |||||
<li class="thisTab"><a href="#"><span>发表<?php echo $cInfos['typename']; ?></span></a></li> | |||||
</ul> | |||||
</div> | |||||
</div> | </div> | ||||
</div> | |||||
<form name="addcontent" action="archives_add.php" method="post" enctype="multipart/form-data" onsubmit="return checkSubmit();"> | |||||
<form name="addcontent" action="archives_add.php" method="post" enctype="multipart/form-data" | |||||
onsubmit="return checkSubmit();"> | |||||
<input type="hidden" name="dopost" value="save" /> | <input type="hidden" name="dopost" value="save" /> | ||||
<input type="hidden" name="channelid" value="<?php echo $channelid; ?>" /> | <input type="hidden" name="channelid" value="<?php echo $channelid; ?>" /> | ||||
<div id="mainCp"> | |||||
<h3 class="meTitle"><strong>发表<?php echo $cInfos['typename']; ?></strong></h3> | |||||
<div class="postForm"> | |||||
<p class="cellBg"> | |||||
<label><?php echo $cInfos['titlename']; ?>:</label> | |||||
<input name="title" type="text" id="title" value="请输入内容主题" maxlength="100" class="intxt" onfocus="inputAutoClear(this)"/> | |||||
</p> | |||||
<p> | |||||
<label>标签TAG:</label> | |||||
<input name="tags" type="text" id="tags" size="30" class="intxt" style="width:400px;"/> (用逗号分开) | |||||
</p> | |||||
<p class="cellBg"> | |||||
<label>作者:</label> | |||||
<input type="text" name="writer" id="writer" value="<?php echo $cfg_ml->M_UserName?>" class="intxt" /> | |||||
</p> | |||||
<?php | |||||
<div id="mainCp"> | |||||
<h3 class="meTitle"><strong>发表<?php echo $cInfos['typename']; ?></strong></h3> | |||||
<div class="postForm"> | |||||
<p class="cellBg"> | |||||
<label><?php echo $cInfos['titlename']; ?>:</label> | |||||
<input name="title" type="text" id="title" value="请输入内容主题" maxlength="100" class="intxt" | |||||
onfocus="inputAutoClear(this)" /> | |||||
</p> | |||||
<p> | |||||
<label>标签TAG:</label> | |||||
<input name="tags" type="text" id="tags" size="30" class="intxt" style="width:400px;" /> (用逗号分开) | |||||
</p> | |||||
<p class="cellBg"> | |||||
<label>作者:</label> | |||||
<input type="text" name="writer" id="writer" value="<?php echo $cfg_ml->M_UserName?>" class="intxt" /> | |||||
</p> | |||||
<?php | |||||
if($cInfos['dfcid']>0) { | if($cInfos['dfcid']>0) { | ||||
echo "<input type='hidden' name='typeid' value='{$cInfos['dfcid']}' />"; | echo "<input type='hidden' name='typeid' value='{$cInfos['dfcid']}' />"; | ||||
}else{ | }else{ | ||||
?> | ?> | ||||
<p> | |||||
<label>隶属栏目:</label> | |||||
<?php | |||||
<p> | |||||
<label>隶属栏目:</label> | |||||
<?php | |||||
$typeOptions = GetOptionList(0,$channelid); | $typeOptions = GetOptionList(0,$channelid); | ||||
echo "<select name='typeid' size='1'>\r\n"; | echo "<select name='typeid' size='1'>\r\n"; | ||||
echo "<option value='0' selected>请选择栏目...</option>\r\n"; | echo "<option value='0' selected>请选择栏目...</option>\r\n"; | ||||
@@ -57,70 +62,68 @@ | |||||
echo "</select>"; | echo "</select>"; | ||||
?> | ?> | ||||
<span style="color:#F00">*</span>(不能选择带颜色的分类) | <span style="color:#F00">*</span>(不能选择带颜色的分类) | ||||
</p> | |||||
<?php | |||||
</p> | |||||
<?php | |||||
} | } | ||||
?> | ?> | ||||
<p class="cellBg"> | |||||
<label>我的分类:</label> | |||||
<?php | |||||
<p class="cellBg"> | |||||
<label>我的分类:</label> | |||||
<?php | |||||
$classlist = classification($cfg_ml->M_ID, 0, $channelid); | $classlist = classification($cfg_ml->M_ID, 0, $channelid); | ||||
echo "<select name='mtypesid' size='1'>\r\n"; | echo "<select name='mtypesid' size='1'>\r\n"; | ||||
echo "<option value='0' selected>请选择分类...</option>\r\n"; | echo "<option value='0' selected>请选择分类...</option>\r\n"; | ||||
echo $classlist; | echo $classlist; | ||||
echo "</select>"; | echo "</select>"; | ||||
?> | ?> | ||||
</p> | |||||
<?php | |||||
</p> | |||||
<?php | |||||
if($cInfos['needdes']==1) { | if($cInfos['needdes']==1) { | ||||
?> | |||||
<p> | |||||
<label>信息摘要:</label> | |||||
<textarea name="description" id="description" style="height:50px"></textarea> (内容的简要说明) | |||||
</p> | |||||
<?php | |||||
?> | |||||
<p> | |||||
<label>信息摘要:</label> | |||||
<textarea name="description" id="description" style="height:50px"></textarea> (内容的简要说明) | |||||
</p> | |||||
<?php | |||||
} | } | ||||
if($cInfos['needpic']==1) { | |||||
?> | |||||
<p class="cellBg"> | |||||
<label>缩略图:</label> | |||||
<input class="file" name="litpic" type="file" id="litpic" onchange="SeePicNew('divpicview',this);" /> | |||||
</p> | |||||
<?php | |||||
} | |||||
?> | |||||
<?php | |||||
//自定义字段 | //自定义字段 | ||||
PrintAutoFieldsAdd($cInfos['fieldset'],'autofield'); | PrintAutoFieldsAdd($cInfos['fieldset'],'autofield'); | ||||
if($safe_faq_send == 1){ | if($safe_faq_send == 1){ | ||||
$faqkey = array_rand($safefaqs); | $faqkey = array_rand($safefaqs); | ||||
?> | ?> | ||||
<p class="cellBg"> | |||||
<label>验证问题:</label> | |||||
<?php echo $safefaqs[$faqkey]['question'];?> (答案:<?php echo $safefaqs[$faqkey]['answer'];?>)<input class="intxt" name="safeanswer" type="text" id="safeanswer" size="25" style='width:200px;'/> | |||||
<p class="cellBg"> | |||||
<label>验证问题:</label> | |||||
<?php echo $safefaqs[$faqkey]['question'];?> (答案:<?php echo $safefaqs[$faqkey]['answer'];?>)<input | |||||
class="intxt" name="safeanswer" type="text" id="safeanswer" size="25" style='width:200px;' /> | |||||
<input type="hidden" name="faqkey" value="<?php echo $faqkey;?>" /> | <input type="hidden" name="faqkey" value="<?php echo $faqkey;?>" /> | ||||
</p> | |||||
<?php | |||||
</p> | |||||
<?php | |||||
} | } | ||||
if(preg_match("/3/",$safe_gdopen)){ | if(preg_match("/3/",$safe_gdopen)){ | ||||
?> | ?> | ||||
<p class="cellBg"> | |||||
<label>验证码:</label> | |||||
<input class="text" name="vdcode" type="text" id="vdcode" size="10" style='width:50px;text-transform:uppercase;' /> | |||||
<img src="../plus/vdimgck.php" width="70" height="25" align="absmiddle" alt="看不清?点击更换" style="cursor:pointer" onclick="this.src=this.src+'?'" /> | |||||
</p> | |||||
<?php }?> | |||||
<p> | |||||
<button class="button2" type="submit">提交</button> | |||||
<button class="button2 ml10" type="reset" onclick="location.reload();">重置</button> | |||||
</p> | |||||
</div> | |||||
<p class="cellBg"> | |||||
<label>验证码:</label> | |||||
<input class="text" name="vdcode" type="text" id="vdcode" size="10" | |||||
style='width:50px;text-transform:uppercase;' /> | |||||
<img src="../plus/vdimgck.php" width="70" height="25" align="absmiddle" alt="看不清?点击更换" | |||||
style="cursor:pointer" onclick="this.src=this.src+'?'" /> | |||||
</p> | |||||
<?php }?> | |||||
<p> | |||||
<button class="button2" type="submit">提交</button> | |||||
<button class="button2 ml10" type="reset" onclick="location.reload();">重置</button> | |||||
</p> | |||||
</div> | |||||
</div> | |||||
</form> | |||||
<!--主操作区域 --> | |||||
</div> | </div> | ||||
</form> | |||||
<!--主操作区域 --> | |||||
</div> | </div> | ||||
</div> | |||||
<?php include(DEDEMEMBER."/templets/foot.htm"); ?> | |||||
</div> | |||||
<?php include(DEDEMEMBER."/templets/foot.htm"); ?> | |||||
</div> | |||||
</body> | </body> | ||||
</html> | |||||
</html> |
@@ -26,7 +26,7 @@ | |||||
<form name="addcontent" action="archives_edit.php?aid=<?php echo $aid;?>" method="post" enctype="multipart/form-data" onsubmit="return checkSubmit();"> | <form name="addcontent" action="archives_edit.php?aid=<?php echo $aid;?>" method="post" enctype="multipart/form-data" onsubmit="return checkSubmit();"> | ||||
<input type="hidden" name="dopost" value="save" /> | <input type="hidden" name="dopost" value="save" /> | ||||
<input type="hidden" name="channelid" value="<?php echo $channelid; ?>" /> | <input type="hidden" name="channelid" value="<?php echo $channelid; ?>" /> | ||||
<input type="hidden" name="idhash" value="<?php echo md5($aid.$cfg_cookie_encode); ?>" /> | |||||
<input type="hidden" name="idhash" value="<?php echo hash('sha256', $aid.$cfg_cookie_encode); ?>" /> | |||||
<div id="mainCp"> | <div id="mainCp"> | ||||
<h3 class="meTitle"><strong>修改<?php echo $cInfos['typename']; ?></strong></h3> | <h3 class="meTitle"><strong>修改<?php echo $cInfos['typename']; ?></strong></h3> | ||||
<div class="postForm"> | <div class="postForm"> | ||||
@@ -79,21 +79,8 @@ | |||||
</p> | </p> | ||||
<?php | <?php | ||||
} | } | ||||
if($cInfos['needpic']==1) { | |||||
?> | ?> | ||||
<p class="cellBg"> | |||||
<label>缩略图:</label> | |||||
<input class="file" name="litpic" type="file" id="litpic" onchange="SeePicNew('divpicview',this);" /> | |||||
</p> | |||||
<?php | |||||
if($row['litpic']!=''){ | |||||
?> | |||||
<p class="cellBg"> | |||||
<label style="width:90px">原来的缩略图:</label> | |||||
<div id='divpicview' class='divpre mTB10 litPic'> <img name="nlitpic" id="nlitpic" src='<?php echo $row['litpic']; ?>' /> | |||||
</p> | |||||
<?php | <?php | ||||
}} | |||||
//自定义字段 | //自定义字段 | ||||
PrintAutoFieldsEdit($cInfos['fieldset'],$addRow,'autofield'); | PrintAutoFieldsEdit($cInfos['fieldset'],$addRow,'autofield'); | ||||
//游客强制加验证码,会员则判断后台开关 | //游客强制加验证码,会员则判断后台开关 | ||||
@@ -51,10 +51,6 @@ | |||||
?> | ?> | ||||
(只允许并且必须选择白色背景的项目<span style="color:#F00">*</span>) | (只允许并且必须选择白色背景的项目<span style="color:#F00">*</span>) | ||||
</p> | </p> | ||||
<p class="cellBg" style='<?php if($cInfos['needpic']==0) echo 'display:none'; ?>'> | |||||
<label>缩略图:</label> | |||||
<input name="litpic" type="file" id="litpic" onchange="SeePicNew('divpicview',this);" maxlength="100" class="intxt"/> | |||||
</p> | |||||
<?php | <?php | ||||
if($safe_faq_send == '1'){ | if($safe_faq_send == '1'){ | ||||
$faqkey = array_rand($safefaqs); | $faqkey = array_rand($safefaqs); | ||||
@@ -27,7 +27,7 @@ | |||||
<form name="addcontent" action="archives_sg_edit.php" method="post" enctype="multipart/form-data" onsubmit="return checkSubmit();"> | <form name="addcontent" action="archives_sg_edit.php" method="post" enctype="multipart/form-data" onsubmit="return checkSubmit();"> | ||||
<input type="hidden" name="dopost" value="save" /> | <input type="hidden" name="dopost" value="save" /> | ||||
<input type="hidden" name="aid" value="<?php echo $addRow['aid']; ?>" /> | <input type="hidden" name="aid" value="<?php echo $addRow['aid']; ?>" /> | ||||
<input type="hidden" name="idhash" value="<?php echo md5($addRow['aid'].$cfg_cookie_encode); ?>" /> | |||||
<input type="hidden" name="idhash" value="<?php echo hash('sha256', $addRow['aid'].$cfg_cookie_encode); ?>" /> | |||||
<input type="hidden" name="channelid" value="<?php echo $addRow['channel']; ?>" /> | <input type="hidden" name="channelid" value="<?php echo $addRow['channel']; ?>" /> | ||||
<input type="hidden" name="sortrank" value="<?php echo $addRow['senddate']; ?>" /> | <input type="hidden" name="sortrank" value="<?php echo $addRow['senddate']; ?>" /> | ||||
<input type="hidden" name="oldlitpic" value="<?php echo (isset($row['litpic']) ? $row['litpic'] : ''); ?>" /> | <input type="hidden" name="oldlitpic" value="<?php echo (isset($row['litpic']) ? $row['litpic'] : ''); ?>" /> | ||||
@@ -53,10 +53,6 @@ | |||||
?> | ?> | ||||
(只允许并且必须选择白色背景的项目<span style="color:#F00">*</span>) | (只允许并且必须选择白色背景的项目<span style="color:#F00">*</span>) | ||||
</p> | </p> | ||||
<p class="cellBg" style='<?php if($cInfos['needpic']==0) echo 'display:none'; ?>'> | |||||
<label>缩略图:</label> | |||||
<input name="litpic" type="file" id="litpic" onchange="SeePicNew('divpicview',this);" maxlength="100" class="intxt"/> | |||||
</p> | |||||
<?php | <?php | ||||
} | } | ||||
//自定义字段 | //自定义字段 | ||||
@@ -65,10 +65,6 @@ | |||||
<label>信息摘要:</label> | <label>信息摘要:</label> | ||||
<textarea name="description" id="description"></textarea>(内容的简要说明) | <textarea name="description" id="description"></textarea>(内容的简要说明) | ||||
</p> | </p> | ||||
<p class="cellBg"> | |||||
<label>缩略图:</label> | |||||
<input name="litpic" type="file" id="litpic" onchange="SeePicNew('divpicview',this);" maxlength="100" class="intxt"/> | |||||
</p> | |||||
<?php | <?php | ||||
//自定义字段 | //自定义字段 | ||||
PrintAutoFieldsAdd($cInfos['fieldset'],'autofield'); | PrintAutoFieldsAdd($cInfos['fieldset'],'autofield'); | ||||
@@ -24,7 +24,7 @@ | |||||
<form class="mTB10 mL10 mR10" name="addcontent" id="addcontent" action="article_edit.php" method="post" enctype="multipart/form-data" onsubmit="return checkSubmit();"> | <form class="mTB10 mL10 mR10" name="addcontent" id="addcontent" action="article_edit.php" method="post" enctype="multipart/form-data" onsubmit="return checkSubmit();"> | ||||
<input type="hidden" name="dopost" value="save" /> | <input type="hidden" name="dopost" value="save" /> | ||||
<input type="hidden" name="aid" value="<?php echo $row['id']; ?>" /> | <input type="hidden" name="aid" value="<?php echo $row['id']; ?>" /> | ||||
<input type="hidden" name="idhash" value="<?php echo md5($row['id'].$cfg_cookie_encode); ?>" /> | |||||
<input type="hidden" name="idhash" value="<?php echo hash('sha256', $row['id'].$cfg_cookie_encode); ?>" /> | |||||
<input type="hidden" name="channelid" value="<?php echo $row['channel']; ?>" /> | <input type="hidden" name="channelid" value="<?php echo $row['channel']; ?>" /> | ||||
<input type="hidden" name="oldlitpic" value="<?php echo $row['litpic']; ?>" /> | <input type="hidden" name="oldlitpic" value="<?php echo $row['litpic']; ?>" /> | ||||
<input type="hidden" name="sortrank" value="<?php echo $row['sortrank']; ?>" /> | <input type="hidden" name="sortrank" value="<?php echo $row['sortrank']; ?>" /> | ||||
@@ -67,19 +67,7 @@ | |||||
<label>信息摘要:</label> | <label>信息摘要:</label> | ||||
<textarea name="description" id="description"><?php echo $row["description"]; ?></textarea> | <textarea name="description" id="description"><?php echo $row["description"]; ?></textarea> | ||||
(内容的简要说明) </p> | (内容的简要说明) </p> | ||||
<p class="cellBg"> | |||||
<label>缩略图:</label> | |||||
<input name="litpic" type="file" id="litpic" onchange="SeePicNew('divpicview',this);" maxlength="100" class="intxt"/> | |||||
</p> | |||||
<?php if($row['litpic']!='') | |||||
{ | |||||
?> | |||||
<p> | |||||
<label style="width: 85px;">原来的缩略图:</label> | |||||
<img name="nlitpic" id="nlitpic" src='<?php echo $row['litpic']; ?>' style="width: 200px; height:150px" /> | |||||
</p> | |||||
<?php | <?php | ||||
} | |||||
//自定义字段 | //自定义字段 | ||||
PrintAutoFieldsEdit($row['fieldset'],$addRow,'autofield'); | PrintAutoFieldsEdit($row['fieldset'],$addRow,'autofield'); | ||||
?> | ?> | ||||
@@ -1,147 +1,151 @@ | |||||
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> | |||||
<!DOCTYPE html | |||||
PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> | |||||
<html xmlns="http://www.w3.org/1999/xhtml"> | <html xmlns="http://www.w3.org/1999/xhtml"> | ||||
<head> | <head> | ||||
<meta http-equiv="Content-Type" content="text/html; charset=<?php echo $cfg_soft_lang; ?>" /> | |||||
<title>更改帐号基本资料 - 会员中心 - <?php echo $cfg_webname; ?></title> | |||||
<link href="templets/style/base.css" rel="stylesheet" type="text/css" /> | |||||
<script type="text/javascript" src="../static/js/jquery.js"></script> | |||||
<script type="text/javascript" language='javascript'src='templets/js/main.js'></script> | |||||
<script type="text/javascript" src="templets/js/load.js"></script> | |||||
<script type="text/javascript" src="templets/js/leftmenu.js"></script> | |||||
<script type="text/javascript"> | |||||
function checkSubmit() | |||||
{ | |||||
if(document.form2.oldpwd.value=='') | |||||
{ | |||||
document.form2.oldpwd.focus(); | |||||
alert("旧密码必须填写!"); | |||||
return false; | |||||
} | |||||
if(document.form2.userpwdok.value!=document.form2.userpwd.value) | |||||
{ | |||||
document.form2.userpwdok.focus(); | |||||
alert("两次密码不一致!"); | |||||
return false; | |||||
} | |||||
if(document.form2.email.value=="") | |||||
{ | |||||
document.form2.email.focus(); | |||||
alert("Email不能为空!"); | |||||
return false; | |||||
} | |||||
if(document.form2.uname.value=="") | |||||
{ | |||||
document.form2.uname.focus(); | |||||
alert("用户昵称不能为空!"); | |||||
return false; | |||||
} | |||||
if(document.form2.vdcode.value=="") | |||||
{ | |||||
document.form2.vdcode.focus(); | |||||
alert("验证码不能为空!"); | |||||
return false; | |||||
} | |||||
} | |||||
</script> | |||||
<meta http-equiv="Content-Type" content="text/html; charset=<?php echo $cfg_soft_lang; ?>" /> | |||||
<title>更改帐号基本资料 - 会员中心 - <?php echo $cfg_webname; ?></title> | |||||
<link href="templets/style/base.css" rel="stylesheet" type="text/css" /> | |||||
<script type="text/javascript" src="../static/js/jquery.js"></script> | |||||
<script type="text/javascript" language='javascript' src='templets/js/main.js'></script> | |||||
<script type="text/javascript" src="templets/js/load.js"></script> | |||||
<script type="text/javascript" src="templets/js/leftmenu.js"></script> | |||||
<script type="text/javascript"> | |||||
function checkSubmit() { | |||||
if (document.form2.oldpwd.value == '') { | |||||
document.form2.oldpwd.focus(); | |||||
alert("旧密码必须填写!"); | |||||
return false; | |||||
} | |||||
if (document.form2.userpwdok.value != document.form2.userpwd.value) { | |||||
document.form2.userpwdok.focus(); | |||||
alert("两次密码不一致!"); | |||||
return false; | |||||
} | |||||
if (document.form2.email.value == "") { | |||||
document.form2.email.focus(); | |||||
alert("Email不能为空!"); | |||||
return false; | |||||
} | |||||
if (document.form2.uname.value == "") { | |||||
document.form2.uname.focus(); | |||||
alert("用户昵称不能为空!"); | |||||
return false; | |||||
} | |||||
if (document.form2.vdcode.value == "") { | |||||
document.form2.vdcode.focus(); | |||||
alert("验证码不能为空!"); | |||||
return false; | |||||
} | |||||
} | |||||
</script> | |||||
</head> | </head> | ||||
<body> | <body> | ||||
<div id="main"> | |||||
<?php include(DEDEMEMBER."/templets/head.htm"); ?> | |||||
<div id="content" class="w960 clearfix"> | |||||
<?php include(DEDEMEMBER."/templets/menu.php"); ?> | |||||
<div id="mcpmain"> | |||||
<div id="appTab"> | |||||
<ul> | |||||
<li class="thisTab"><a href="edit_baseinfo.php">基本资料</a></li> | |||||
<li><a href="edit_fullinfo.php">详细资料</a></li> | |||||
<li><a href="edit_face.php">头像设置</a></li> | |||||
</ul> | |||||
</div> | |||||
<form action="edit_baseinfo.php" method="post" enctype="multipart/form-data" name="form2" onsubmit="return checkSubmit();"> | |||||
<input type="hidden" name="dopost" value="save" /> | |||||
<div id="mainCp"> | |||||
<h3 class="meTitle"><strong>基本资料</strong></h3> | |||||
<div class="postForm"> | |||||
<p class="cellBg"> | |||||
<label>帐号类型:</label> | |||||
<?php echo $row['mtype']; ?></p> | |||||
<p> | |||||
<label>用户名:</label> | |||||
<?php echo $cfg_ml->M_LoginID; ?> | |||||
</p> | |||||
<p class="cellBg"> | |||||
<label style="width:90px">昵称/公司名称:</label> | |||||
<input name="uname" type="text" id="uname" value="<?php echo $row['uname']; ?>" class="intxt" style="width:100px"/> | |||||
* <span id="_uname">(个人会员该项为昵称,企业会员填写公司名称)</span> | |||||
</p> | |||||
<p> | |||||
<label>原登陆密码:</label> | |||||
<input name="oldpwd" type="password" id="oldpwd" class="intxt" /> <span style="color:red;">*</span> | |||||
</p> | |||||
<p class="cellBg"> | |||||
<label>新密码:</label> | |||||
<input name="userpwd" type="password" id="userpwd" class="intxt" /> | |||||
<span id="_userpwdok">(不修改密码请保留此项为空)</span> | |||||
</p> | |||||
<p> | |||||
<label>确认新密码:</label> | |||||
<input name="userpwdok" type="password" id="userpwdok" value="" class="intxt" /> | |||||
<span id="_userpwdok2">(不修改密码请保留此项为空)</span> </span> | |||||
</p> | |||||
<p class="cellBg"> | |||||
<label>原安全问题:</label> | |||||
<?php | |||||
<div id="main"> | |||||
<?php include(DEDEMEMBER."/templets/head.htm"); ?> | |||||
<div id="content" class="w960 clearfix"> | |||||
<?php include(DEDEMEMBER."/templets/menu.php"); ?> | |||||
<div id="mcpmain"> | |||||
<div id="appTab"> | |||||
<ul> | |||||
<li class="thisTab"><a href="edit_baseinfo.php">基本资料</a></li> | |||||
<li><a href="edit_fullinfo.php">详细资料</a></li> | |||||
<li><a href="edit_face.php">头像设置</a></li> | |||||
</ul> | |||||
</div> | |||||
<form action="edit_baseinfo.php" method="post" enctype="multipart/form-data" name="form2" | |||||
onsubmit="return checkSubmit();"> | |||||
<input type="hidden" name="_csrf_token" value="<?php echo $GLOBALS['csrf_token'];?>" /> | |||||
<input type="hidden" name="dopost" value="save" /> | |||||
<div id="mainCp"> | |||||
<h3 class="meTitle"><strong>基本资料</strong></h3> | |||||
<div class="postForm"> | |||||
<p class="cellBg"> | |||||
<label>帐号类型:</label> | |||||
<?php echo $row['mtype']; ?></p> | |||||
<p> | |||||
<label>用户名:</label> | |||||
<?php echo $cfg_ml->M_LoginID; ?> | |||||
</p> | |||||
<p class="cellBg"> | |||||
<label style="width:90px">昵称/公司名称:</label> | |||||
<input name="uname" type="text" id="uname" value="<?php echo $row['uname']; ?>" class="intxt" | |||||
style="width:100px" /> | |||||
* <span id="_uname">(个人会员该项为昵称,企业会员填写公司名称)</span> | |||||
</p> | |||||
<p> | |||||
<label>原登陆密码:</label> | |||||
<input name="oldpwd" type="password" id="oldpwd" class="intxt" /> <span style="color:red;">*</span> | |||||
</p> | |||||
<p class="cellBg"> | |||||
<label>新密码:</label> | |||||
<input name="userpwd" type="password" id="userpwd" class="intxt" /> | |||||
<span id="_userpwdok">(不修改密码请保留此项为空)</span> | |||||
</p> | |||||
<p> | |||||
<label>确认新密码:</label> | |||||
<input name="userpwdok" type="password" id="userpwdok" value="" class="intxt" /> | |||||
<span id="_userpwdok2">(不修改密码请保留此项为空)</span> </span> | |||||
</p> | |||||
<p class="cellBg"> | |||||
<label>原安全问题:</label> | |||||
<?php | |||||
require(DEDEDATA.'/safequestions.php'); | require(DEDEDATA.'/safequestions.php'); | ||||
echo GetSafequestion($row['safequestion'],'safequestion'); | echo GetSafequestion($row['safequestion'],'safequestion'); | ||||
?> | ?> | ||||
<span id="_safequestion">(忘记密码时重设密码用)</span> | <span id="_safequestion">(忘记密码时重设密码用)</span> | ||||
</p> | |||||
<p> | |||||
<label>原问题答案:</label> | |||||
<input name="safeanswer" type="text" id="safeanswer" value="" class="intxt" /> | |||||
</p> | |||||
</p> | |||||
<p> | |||||
<label>原问题答案:</label> | |||||
<input name="safeanswer" type="text" id="safeanswer" value="" class="intxt" /> | |||||
</p> | |||||
<p class="cellBg"> | |||||
<label>新安全问题:</label> | |||||
<?php | |||||
<p class="cellBg"> | |||||
<label>新安全问题:</label> | |||||
<?php | |||||
echo GetSafequestion(0,'newsafequestion'); | echo GetSafequestion(0,'newsafequestion'); | ||||
?> | ?> | ||||
<span id="_safequestionnew">(不修改不用填写)</span> | |||||
</p> | |||||
<p> | |||||
<label>新问题答案:</label> | |||||
<input name="newsafeanswer" type="text" id="newsafeanswer" class="intxt"/> | |||||
</p> | |||||
<p class="cellBg"> | |||||
<label><span class="tdl">电子邮箱</span>:</label> | |||||
<input name="email" type="text" id="email" value="<?php echo $row['email']; ?>" class="intxt"/><br> | |||||
<span id="_email" style="margin-left:80px"> <span style="color:red;">*</span> (每个电子邮邮箱只能注册一个帐号,要修改电子邮箱必须填写正确安全问题的答案)</span> | |||||
</p> | |||||
<p> | |||||
<label>性别:</label> | |||||
<input type="radio" name="sex" value="男" <?php if($row['sex']=='男') echo " checked='checked' "; ?>/> | |||||
男 | |||||
<input type="radio" name="sex" value="女" <?php if($row['sex']=='女') echo " checked='checked' "; ?>/> | |||||
女 | |||||
<input type="radio" name="sex" value="保密'" <?php if($row['sex']=='保密') echo " checked='checked' "; ?>/> | |||||
保密 | |||||
</p> | |||||
<p class="cellBg"> | |||||
<label>验证码:</label> | |||||
<input name="vdcode" type="text" id="vdcode" style='width:50px;text-transform:uppercase;' class="intxt" /> | |||||
<img src="../plus/vdimgck.php" align="absmiddle" alt="看不清?点击更换" style="cursor:pointer" onclick="this.src=this.src+'?'" /> | |||||
</p> | |||||
<p> | |||||
<button class="button2" type="submit">更新</button> | |||||
<button class="button2 ml10" type="reset">重设</button> | |||||
</p> | |||||
</div> | |||||
<span id="_safequestionnew">(不修改不用填写)</span> | |||||
</p> | |||||
<p> | |||||
<label>新问题答案:</label> | |||||
<input name="newsafeanswer" type="text" id="newsafeanswer" class="intxt" /> | |||||
</p> | |||||
<p class="cellBg"> | |||||
<label><span class="tdl">电子邮箱</span>:</label> | |||||
<input name="email" type="text" id="email" value="<?php echo $row['email']; ?>" class="intxt" /><br> | |||||
<span id="_email" style="margin-left:80px"> <span style="color:red;">*</span> | |||||
(每个电子邮邮箱只能注册一个帐号,要修改电子邮箱必须填写正确安全问题的答案)</span> | |||||
</p> | |||||
<p> | |||||
<label>性别:</label> | |||||
<input type="radio" name="sex" value="男" <?php if($row['sex']=='男') echo " checked='checked' "; ?> /> | |||||
男 | |||||
<input type="radio" name="sex" value="女" <?php if($row['sex']=='女') echo " checked='checked' "; ?> /> | |||||
女 | |||||
<input type="radio" name="sex" value="保密'" <?php if($row['sex']=='保密') echo " checked='checked' "; ?> /> | |||||
保密 | |||||
</p> | |||||
<p class="cellBg"> | |||||
<label>验证码:</label> | |||||
<input name="vdcode" type="text" id="vdcode" style='width:50px;text-transform:uppercase;' | |||||
class="intxt" /> | |||||
<img src="../plus/vdimgck.php" align="absmiddle" alt="看不清?点击更换" style="cursor:pointer" | |||||
onclick="this.src=this.src+'?'" /> | |||||
</p> | |||||
<p> | |||||
<button class="button2" type="submit">更新</button> | |||||
<button class="button2 ml10" type="reset">重设</button> | |||||
</p> | |||||
</div> | |||||
</div> | |||||
</form> | |||||
<!--主操作区域 --> | |||||
</div> | </div> | ||||
</form> | |||||
<!--主操作区域 --> | |||||
</div> | </div> | ||||
<?php include(DEDEMEMBER."/templets/foot.htm"); ?> | |||||
</div> | </div> | ||||
<?php include(DEDEMEMBER."/templets/foot.htm"); ?> | |||||
</div> | |||||
</body> | </body> | ||||
</html> | </html> |
@@ -1,70 +1,63 @@ | |||||
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> | |||||
<!DOCTYPE html | |||||
PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> | |||||
<html xmlns="http://www.w3.org/1999/xhtml"> | <html xmlns="http://www.w3.org/1999/xhtml"> | ||||
<head> | <head> | ||||
<meta http-equiv="Content-Type" content="text/html; charset=<?php echo $cfg_soft_lang; ?>" /> | |||||
<title>更改头像 - 会员中心 - <?php echo $cfg_webname; ?></title> | |||||
<link href="templets/style/base.css" rel="stylesheet" type="text/css" /> | |||||
<script type="text/javascript" src="../static/js/jquery.js"></script> | |||||
<script type="text/javascript" language='javascript'src='templets/js/main.js'></script> | |||||
<script type="text/javascript" src="templets/js/load.js"></script> | |||||
<script type="text/javascript" src="templets/js/leftmenu.js"></script> | |||||
<meta http-equiv="Content-Type" content="text/html; charset=<?php echo $cfg_soft_lang; ?>" /> | |||||
<title>更改头像 - 会员中心 - <?php echo $cfg_webname; ?></title> | |||||
<link href="templets/style/base.css" rel="stylesheet" type="text/css" /> | |||||
<script type="text/javascript" src="../static/js/jquery.js"></script> | |||||
<script type="text/javascript" language='javascript' src='templets/js/main.js'></script> | |||||
<script type="text/javascript" src="templets/js/load.js"></script> | |||||
<script type="text/javascript" src="templets/js/leftmenu.js"></script> | |||||
</head> | </head> | ||||
<body> | <body> | ||||
<div id="main"> | |||||
<?php include(DEDEMEMBER."/templets/head.htm"); ?> | |||||
<div id="content" class="w960 clearfix"> | |||||
<?php include(DEDEMEMBER."/templets/menu.php"); ?> | |||||
<div id="mcpmain"> | |||||
<div id="appTab"> | |||||
<ul> | |||||
<li><a href="edit_baseinfo.php">基本资料</a></li> | |||||
<li><a href="edit_fullinfo.php">详细资料</a></li> | |||||
<li class="thisTab"><a href="edit_face.php">头像设置</a></li> | |||||
</ul> | |||||
</div> | |||||
<form action="edit_face.php" method="post" enctype="multipart/form-data" name="form1"> | |||||
<input type="hidden" name="dopost" value="save" /> | |||||
<div id="mainCp"> | |||||
<h3 class="meTitle"><strong>用户头像</strong></h3> | |||||
<?php | |||||
if(defined('UC_API') && @include_once DEDEROOT.'/uc_client/client.php') | |||||
{ | |||||
$data = uc_get_user($cfg_ml->M_LoginID); | |||||
echo uc_avatar($data[0]); | |||||
} | |||||
else | |||||
{ | |||||
?> | |||||
<div class="postForm"> | |||||
<p class="cellBg"> | |||||
<label style="width:90px">手工填写网址:</label> | |||||
<input name='oldface' type='hidden' id='oldface' value='<?php echo $face; ?>' /> | |||||
<input name='faceurl' type='text' id='faceurl' size='35' class='intxt' style='width:250px' value='<?php echo $face; ?>' /> | |||||
<p> | |||||
<label style="width:100px">选择上传的文件:</label> | |||||
<input name="face" type="file" id="face" size="45" /> 大小180x180像 | |||||
</p> | |||||
<p class="cellBg"> | |||||
<label style="width:90px"><b>原来的头像:</b><br /> | |||||
<a href="edit_face.php?dopost=delold&oldface=<?php echo urlencode($face); ?>">[删除旧头像]</a></label> | |||||
<div id='faceview' class='overflow mTB10 litPic' style="width:180px;height:180px;text-align:center;vertical-align:middle;line-height:180px;display:table-cell;"> | |||||
<?php | |||||
<div id="main"> | |||||
<?php include(DEDEMEMBER."/templets/head.htm"); ?> | |||||
<div id="content" class="w960 clearfix"> | |||||
<?php include(DEDEMEMBER."/templets/menu.php"); ?> | |||||
<div id="mcpmain"> | |||||
<div id="appTab"> | |||||
<ul> | |||||
<li><a href="edit_baseinfo.php">基本资料</a></li> | |||||
<li><a href="edit_fullinfo.php">详细资料</a></li> | |||||
<li class="thisTab"><a href="edit_face.php">头像设置</a></li> | |||||
</ul> | |||||
</div> | |||||
<form action="edit_face.php" method="post" enctype="multipart/form-data" name="form1"> | |||||
<input type="hidden" name="_csrf_token" value="<?php echo $GLOBALS['csrf_token'];?>" /> | |||||
<input type="hidden" name="dopost" value="save" /> | |||||
<div id="mainCp"> | |||||
<h3 class="meTitle"><strong>用户头像</strong></h3> | |||||
<div class="postForm"> | |||||
<p class="cellBg"> | |||||
<label style="width:90px">手工填写网址:</label> | |||||
<input name='oldface' type='hidden' id='oldface' value='<?php echo $face; ?>' /> | |||||
<input name='faceurl' type='text' id='faceurl' size='35' class='intxt' style='width:250px' | |||||
value='<?php echo $face; ?>' /> | |||||
<p class="cellBg"> | |||||
<label style="width:90px"><b>原来的头像:</b><br /> | |||||
</label> | |||||
<div id='faceview' class='overflow mTB10 litPic' | |||||
style="width:180px;height:180px;text-align:center;vertical-align:middle;line-height:180px;display:table-cell;"> | |||||
<?php | |||||
if($face!='') echo " <img class='' src='$face' style='_margin-top:expression(( 180 - this.height ) / 2);' />\r\n"; | if($face!='') echo " <img class='' src='$face' style='_margin-top:expression(( 180 - this.height ) / 2);' />\r\n"; | ||||
?> | ?> | ||||
</div> | </div> | ||||
</p> | |||||
<p> | |||||
<button class="button2" type="submit">更新</button> | |||||
<button class="button2 ml10" type="reset">重设</button> | |||||
</p> | |||||
</div> | |||||
<?php } ?> | |||||
</div> | |||||
</form> | |||||
<!--主操作区域 --> | |||||
</p> | |||||
<p> | |||||
<button class="button2" type="submit">更新</button> | |||||
<button class="button2 ml10" type="reset">重设</button> | |||||
</p> | |||||
</div> | |||||
</div> | |||||
</form> | |||||
<!--主操作区域 --> | |||||
</div> | |||||
</div> | </div> | ||||
<?php include(DEDEMEMBER."/templets/foot.htm"); ?> | |||||
</div> | </div> | ||||
<?php include(DEDEMEMBER."/templets/foot.htm"); ?> | |||||
</div> | |||||
</body> | </body> | ||||
</html> | |||||
</html> |
@@ -1,50 +1,54 @@ | |||||
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> | |||||
<!DOCTYPE html | |||||
PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> | |||||
<html xmlns="http://www.w3.org/1999/xhtml"> | <html xmlns="http://www.w3.org/1999/xhtml"> | ||||
<head> | <head> | ||||
<meta http-equiv="Content-Type" content="text/html; charset=<?php echo $cfg_soft_lang; ?>" /> | |||||
<title>更改详细资料 - 会员中心 -<?php echo $cfg_webname; ?></title> | |||||
<link href="templets/style/base.css" rel="stylesheet" type="text/css" /> | |||||
<script type="text/javascript" src="../static/js/jquery.js"></script> | |||||
<script type="text/javascript" language='javascript'src='templets/js/main.js'></script> | |||||
<script type="text/javascript" src="templets/js/load.js"></script> | |||||
<script type="text/javascript" src="templets/js/calendar/calendar.js"></script> | |||||
<script type="text/javascript" src="templets/js/leftmenu.js"></script> | |||||
<meta http-equiv="Content-Type" content="text/html; charset=<?php echo $cfg_soft_lang; ?>" /> | |||||
<title>更改详细资料 - 会员中心 -<?php echo $cfg_webname; ?></title> | |||||
<link href="templets/style/base.css" rel="stylesheet" type="text/css" /> | |||||
<script type="text/javascript" src="../static/js/jquery.js"></script> | |||||
<script type="text/javascript" language='javascript' src='templets/js/main.js'></script> | |||||
<script type="text/javascript" src="templets/js/load.js"></script> | |||||
<script type="text/javascript" src="templets/js/calendar/calendar.js"></script> | |||||
<script type="text/javascript" src="templets/js/leftmenu.js"></script> | |||||
</head> | </head> | ||||
<body> | <body> | ||||
<div id="main"> | |||||
<?php include(DEDEMEMBER."/templets/head.htm"); ?> | |||||
<div id="content" class="w960 clearfix"> | |||||
<?php include(DEDEMEMBER."/templets/menu.php"); ?> | |||||
<div id="mcpmain"> | |||||
<div id="appTab"> | |||||
<ul> | |||||
<li><a href="edit_baseinfo.php">基本资料</a></li> | |||||
<li class="thisTab"><a href="edit_fullinfo.php">详细资料</a></li> | |||||
<li><a href="edit_face.php">头像设置</a></li> | |||||
</ul> | |||||
<div id="main"> | |||||
<?php include(DEDEMEMBER."/templets/head.htm"); ?> | |||||
<div id="content" class="w960 clearfix"> | |||||
<?php include(DEDEMEMBER."/templets/menu.php"); ?> | |||||
<div id="mcpmain"> | |||||
<div id="appTab"> | |||||
<ul> | |||||
<li><a href="edit_baseinfo.php">基本资料</a></li> | |||||
<li class="thisTab"><a href="edit_fullinfo.php">详细资料</a></li> | |||||
<li><a href="edit_face.php">头像设置</a></li> | |||||
</ul> | |||||
</div> | |||||
<form method="post" action="edit_fullinfo.php" name="form1"> | |||||
<input type="hidden" value="save" name="dopost" /> | |||||
<input type="hidden" name="_csrf_token" value="<?php echo $GLOBALS['csrf_token'];?>" /> | |||||
<input type="hidden" value="<?php echo $membermodel->modid;?>" name="modid" /> | |||||
<div id="mainCp"> | |||||
<h3 class="meTitle"><strong>详细资料</strong></h3> | |||||
<div class="postForm"> | |||||
<?php | |||||
echo $postform; | |||||
?> | |||||
<p> | |||||
<label> </label> | |||||
<button type="submit" id="btnSignCheck" class="buttonGreen142">完 成 </button> | |||||
</p> | |||||
</div> | |||||
</div> | |||||
</form> | |||||
<!--主操作区域 --> | |||||
</div> | </div> | ||||
<form method="post" action="edit_fullinfo.php" name="form1"> | |||||
<input type="hidden" value="save" name="dopost"/> | |||||
<input type="hidden" value="<?php echo $membermodel->modid;?>" name="modid"/> | |||||
<div id="mainCp"> | |||||
<h3 class="meTitle"><strong>详细资料</strong></h3> | |||||
<div class="postForm"> | |||||
<?php | |||||
echo $postform; | |||||
?> | |||||
<p> | |||||
<label> </label> | |||||
<button type="submit" id="btnSignCheck" class="buttonGreen142">完 成 </button> | |||||
</p> | |||||
</div> | |||||
</div> | |||||
</form> | |||||
<!--主操作区域 --> | |||||
</div> | </div> | ||||
<?php include(DEDEMEMBER."/templets/foot.htm"); ?> | |||||
</div> | </div> | ||||
<?php include(DEDEMEMBER."/templets/foot.htm"); ?> | |||||
</div> | |||||
</body> | </body> | ||||
</html> | |||||
</html> |
@@ -1,73 +1,78 @@ | |||||
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> | |||||
<!DOCTYPE html | |||||
PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> | |||||
<html xmlns="http://www.w3.org/1999/xhtml"> | <html xmlns="http://www.w3.org/1999/xhtml"> | ||||
<head> | <head> | ||||
<meta http-equiv="Content-Type" content="text/html; charset=<?php echo $cfg_soft_lang; ?>" /> | |||||
<title>空间设置 - 会员中心 - <?php echo $cfg_webname; ?></title> | |||||
<link href="templets/style/base.css" rel="stylesheet" type="text/css" /> | |||||
<script type="text/javascript" src="../static/js/jquery.js"></script> | |||||
<script type="text/javascript" src='templets/js/main.js'></script> | |||||
<script type="text/javascript" src="templets/js/load.js"></script> | |||||
<script type="text/javascript" src="templets/js/leftmenu.js"></script> | |||||
<meta http-equiv="Content-Type" content="text/html; charset=<?php echo $cfg_soft_lang; ?>" /> | |||||
<title>空间设置 - 会员中心 - <?php echo $cfg_webname; ?></title> | |||||
<link href="templets/style/base.css" rel="stylesheet" type="text/css" /> | |||||
<script type="text/javascript" src="../static/js/jquery.js"></script> | |||||
<script type="text/javascript" src='templets/js/main.js'></script> | |||||
<script type="text/javascript" src="templets/js/load.js"></script> | |||||
<script type="text/javascript" src="templets/js/leftmenu.js"></script> | |||||
</head> | </head> | ||||
<body> | <body> | ||||
<div id="main"> | |||||
<?php include(DEDEMEMBER."/templets/head.htm"); ?> | |||||
<div id="content" class="w960 clearfix"> | |||||
<?php include(DEDEMEMBER."/templets/menu.php"); ?> | |||||
<div id="mcpmain"> | |||||
<div id="appTab"> | |||||
<ul> | |||||
<li><a href="mtypes.php">分类管理</a></li> | |||||
<li><a href="flink_main.php">书签管理</a></li> | |||||
<li class="thisTab"><a href="edit_space_info.php"><span>空间设置</span></a></li> | |||||
<li><a href="spaceskin.php">风格选择</a></li> | |||||
</ul> | |||||
</div> | |||||
<form action="edit_space_info.php" method="post" enctype="multipart/form-data" name="form1"> | |||||
<div id="main"> | |||||
<?php include(DEDEMEMBER."/templets/head.htm"); ?> | |||||
<div id="content" class="w960 clearfix"> | |||||
<?php include(DEDEMEMBER."/templets/menu.php"); ?> | |||||
<div id="mcpmain"> | |||||
<div id="appTab"> | |||||
<ul> | |||||
<li><a href="mtypes.php">分类管理</a></li> | |||||
<li><a href="flink_main.php">书签管理</a></li> | |||||
<li class="thisTab"><a href="edit_space_info.php"><span>空间设置</span></a></li> | |||||
<li><a href="spaceskin.php">风格选择</a></li> | |||||
</ul> | |||||
</div> | |||||
<form action="edit_space_info.php" method="post" enctype="multipart/form-data" name="form1"> | |||||
<input type="hidden" name="dopost" value="save" /> | <input type="hidden" name="dopost" value="save" /> | ||||
<div id="mainCp"> | |||||
<h3 class="meTitle"><strong>空间设置</strong></h3> | |||||
<div class="postForm"> | |||||
<p class="cellBg"> | |||||
<label>空间名称:</label> | |||||
<input name="spacename" type="text" id="spacename" value="<?php echo $spacename; ?>" maxlength="100" class="intxt"/> | |||||
</p> | |||||
<p> | |||||
<label>每页文档数:</label> | |||||
<input name="pagesize" type="text" id="pagesize" value="<?php echo $pagesize; ?>" maxlength="100" class="intxt"/> | |||||
</p> | |||||
<p class="cellBg"> | |||||
<label>个人签名:</label> | |||||
<textarea name="sign" cols="50" id="sign"><?php echo $sign; ?></textarea> 少于50中文字 | |||||
</p> | |||||
<p> | |||||
<label style="width:90px">空间Logo上传:</label> | |||||
<input name="oldspacelogo" type="hidden" value="<?php echo $spacelogo; ?>" /> | |||||
<input name="spacelogo" type="file" id="spacelogo" maxlength="100" class="intxt" /> | |||||
</p> | |||||
<p class="cellBg" style="height:60px; margin-top:5px"> | |||||
<label>原有Logo:</label> | |||||
<?php | |||||
<div id="mainCp"> | |||||
<h3 class="meTitle"><strong>空间设置</strong></h3> | |||||
<div class="postForm"> | |||||
<p class="cellBg"> | |||||
<label>空间名称:</label> | |||||
<input name="spacename" type="text" id="spacename" value="<?php echo $spacename; ?>" maxlength="100" | |||||
class="intxt" /> | |||||
</p> | |||||
<p> | |||||
<label>每页文档数:</label> | |||||
<input name="pagesize" type="text" id="pagesize" value="<?php echo $pagesize; ?>" maxlength="100" | |||||
class="intxt" /> | |||||
</p> | |||||
<p class="cellBg"> | |||||
<label>个人签名:</label> | |||||
<textarea name="sign" cols="50" id="sign"><?php echo $sign; ?></textarea> 少于50中文字 | |||||
</p> | |||||
<p> | |||||
<label style="width:90px">远程Logo地址:</label> | |||||
<input name="spacelogo" type="text" id="spacelogo" maxlength="100" class="intxt" /> | |||||
</p> | |||||
<p class="cellBg" style="height:60px; margin-top:5px"> | |||||
<label>原有Logo:</label> | |||||
<?php | |||||
if($spacelogo!='') $logo = $spacelogo; | if($spacelogo!='') $logo = $spacelogo; | ||||
else $logo = 'templets/images/mylogo.jpg'; | else $logo = 'templets/images/mylogo.jpg'; | ||||
echo "<img src='$logo' style='margin-top:5px;width:200px;height: 50px;'/> (规格为:200x50像素)\r\n"; | echo "<img src='$logo' style='margin-top:5px;width:200px;height: 50px;'/> (规格为:200x50像素)\r\n"; | ||||
?> | ?> | ||||
</p> | |||||
<p> | |||||
<label>空间公告:</label> | |||||
<?php GetEditor("spacenews",$spacenews,250,"MemberLit"); ?> | |||||
</p> | |||||
<p class="cellBg"> | |||||
<button class="button2" type="submit">更新</button> | |||||
<button class="button2 ml10" type="reset">重设</button> | |||||
</p> | |||||
</div> | |||||
</p> | |||||
<p> | |||||
<label>空间公告:</label> | |||||
<?php GetEditor("spacenews",$spacenews,250,"MemberLit"); ?> | |||||
</p> | |||||
<p class="cellBg"> | |||||
<button class="button2" type="submit">更新</button> | |||||
<button class="button2 ml10" type="reset">重设</button> | |||||
</p> | |||||
</div> | |||||
</div> | |||||
</form> | |||||
<!--主操作区域 --> | |||||
</div> | </div> | ||||
</form> | |||||
<!--主操作区域 --> | |||||
</div> | </div> | ||||
<?php include(DEDEMEMBER."/templets/foot.htm"); ?> | |||||
</div> | </div> | ||||
<?php include(DEDEMEMBER."/templets/foot.htm"); ?> | |||||
</div> | |||||
</body> | </body> | ||||
</html> | |||||
</html> |
@@ -66,8 +66,8 @@ function MakeUpload(mnum) | |||||
fhtml += "<td height=\"25\" colspan=\"2\"> <strong>图片"+startNum+":</strong></td>"; | fhtml += "<td height=\"25\" colspan=\"2\"> <strong>图片"+startNum+":</strong></td>"; | ||||
fhtml += "</tr>"; | fhtml += "</tr>"; | ||||
fhtml += "<tr bgcolor=\"#FFFFFF\"> "; | fhtml += "<tr bgcolor=\"#FFFFFF\"> "; | ||||
fhtml += "<td width=\"510\" height=\"25\"> 本地上传: "; | |||||
fhtml += "<input type=\"file\" name='imgfile"+startNum+"' style=\"width:200px\" class=\"intxt\" onChange=\"SeePicNew('divpicview"+startNum+"',this);\" /> <nobr>可填远程网址</nobr></td>"; | |||||
fhtml += "<td width=\"510\" height=\"25\"> 图片地址: "; | |||||
fhtml += "<input type=\"text\" name='imgfile"+startNum+"' style=\"width:330px\" class=\"intxt\"/> <nobr>填写远程网址</nobr></td>"; | |||||
fhtml += "<td width=\"100\" rowspan=\"2\" align=\"center\"><div id='divpicview"+startNum+"' class='divpre'></div></td>"; | fhtml += "<td width=\"100\" rowspan=\"2\" align=\"center\"><div id='divpicview"+startNum+"' class='divpre'></div></td>"; | ||||
fhtml += "</tr>"; | fhtml += "</tr>"; | ||||
fhtml += "<tr bgcolor=\"#FFFFFF\"> "; | fhtml += "<tr bgcolor=\"#FFFFFF\"> "; | ||||
@@ -7,7 +7,7 @@ $(document).ready(function(){ | |||||
$(".submit tbody tr:odd").addClass("row1");//奇行 | $(".submit tbody tr:odd").addClass("row1");//奇行 | ||||
//修正IE6下hover Bug | //修正IE6下hover Bug | ||||
if ( $.browser.msie ){ | |||||
if ( typeof $.browser !== "undefined" ){ | |||||
if($.browser.version == '6.0'){ | if($.browser.version == '6.0'){ | ||||
$("#menuBody li").hover( | $("#menuBody li").hover( | ||||
function(){ | function(){ | ||||
@@ -1,221 +1,130 @@ | |||||
<!-- | |||||
function $Nav(){ | |||||
if(window.navigator.userAgent.indexOf("MSIE")>=1) return 'IE'; | |||||
else if(window.navigator.userAgent.indexOf("Firefox")>=1) return 'FF'; | |||||
function $Nav() { | |||||
if (window.navigator.userAgent.indexOf("MSIE") >= 1) return 'IE'; | |||||
else if (window.navigator.userAgent.indexOf("Firefox") >= 1) return 'FF'; | |||||
else return "OT"; | else return "OT"; | ||||
} | } | ||||
function $Obj(objname){ | |||||
function $Obj(objname) { | |||||
return document.getElementById(objname); | return document.getElementById(objname); | ||||
} | } | ||||
function ShowColor(){ | |||||
if(document.all){ | |||||
var posLeft = window.event.clientY-100; | |||||
var posTop = window.event.clientX-400; | |||||
} | |||||
else{ | |||||
var posLeft = 100; | |||||
var posTop = 100; | |||||
} | |||||
var fcolor=showModalDialog("img/color.htm?ok",false,"dialogWidth:106px;dialogHeight:110px;status:0;dialogTop:"+posTop+";dialogLeft:"+posLeft); | |||||
if(fcolor!=null && fcolor!="undefined") document.form1.color.value = fcolor; | |||||
function ShowColor() { | |||||
if (document.all) { | |||||
var posLeft = window.event.clientY - 100; | |||||
var posTop = window.event.clientX - 400; | |||||
} | |||||
else { | |||||
var posLeft = 100; | |||||
var posTop = 100; | |||||
} | |||||
var fcolor = showModalDialog("img/color.htm?ok", false, "dialogWidth:106px;dialogHeight:110px;status:0;dialogTop:" + posTop + ";dialogLeft:" + posLeft); | |||||
if (fcolor != null && fcolor != "undefined") document.form1.color.value = fcolor; | |||||
} | } | ||||
function ShowHide(objname){ | |||||
function ShowHide(objname) { | |||||
var obj = $Obj(objname); | var obj = $Obj(objname); | ||||
if(obj.style.display == "block" || obj.style.display == ""){ obj.style.display = "none"; } | |||||
else{ obj.style.display = "block"; } | |||||
if (obj.style.display == "block" || obj.style.display == "") { obj.style.display = "none"; } | |||||
else { obj.style.display = "block"; } | |||||
} | } | ||||
function ShowObj(objname){ | |||||
function ShowObj(objname) { | |||||
var obj = $Obj(objname); | var obj = $Obj(objname); | ||||
obj.style.display = "block"; | obj.style.display = "block"; | ||||
} | } | ||||
function HideObj(objname){ | |||||
function HideObj(objname) { | |||||
var obj = $Obj(objname); | var obj = $Obj(objname); | ||||
obj.style.display = "none"; | obj.style.display = "none"; | ||||
} | } | ||||
function ShowItem1(){ | |||||
function ShowItem1() { | |||||
ShowObj('head1'); ShowObj('needset'); HideObj('head2'); HideObj('adset'); | ShowObj('head1'); ShowObj('needset'); HideObj('head2'); HideObj('adset'); | ||||
} | } | ||||
function ShowItem2(){ | |||||
function ShowItem2() { | |||||
ShowObj('head2'); ShowObj('adset'); HideObj('head1'); HideObj('needset'); | ShowObj('head2'); ShowObj('adset'); HideObj('head1'); HideObj('needset'); | ||||
} | } | ||||
function SeePic(img,f){ | |||||
if ( f.value != "" ) { img.src = f.value; } | |||||
} | |||||
function SeePicNew(imgdid,f) { | |||||
if(f.value=='') return ; | |||||
var newPreview = document.getElementById(imgdid); | |||||
var filepath = 'file:///'+f.value.replace(/\\/g,"/").replace(/\:/,"|"); | |||||
var image = new Image(); var ImgD = new Image(); | |||||
ImgD.src = filepath; | |||||
image.src = ImgD.src; FitWidth = 150; FitHeight = 100; | |||||
if(image.width>0 && image.height>0) | |||||
{ | |||||
if(image.width/image.height>= FitWidth/FitHeight) | |||||
{ | |||||
if(image.width>FitWidth) | |||||
{ | |||||
ImgD.width=FitWidth; | |||||
ImgD.height=(image.height*FitWidth)/image.width; | |||||
} | |||||
else | |||||
{ | |||||
ImgD.width=image.width; | |||||
ImgD.height=image.height; | |||||
} | |||||
} | |||||
else | |||||
{ | |||||
if(image.height>FitHeight) | |||||
{ | |||||
ImgD.height=FitHeight; | |||||
ImgD.width=(image.width*FitHeight)/image.height; | |||||
} | |||||
else | |||||
{ | |||||
ImgD.width=image.width; | |||||
ImgD.height=image.height; | |||||
} | |||||
} | |||||
} | |||||
newPreview.style.width = ImgD.width+"px"; | |||||
newPreview.style.height = ImgD.height+"px"; | |||||
if(window.navigator.userAgent.indexOf("MSIE") < 1) | |||||
{ | |||||
newPreview.style.background = "url('"+ImgD.src+"') no-repeat"; | |||||
} | |||||
else | |||||
{ | |||||
newPreview.style.filter = "progid:DXImageTransform.Microsoft.AlphaImageLoader(src='"+ImgD.src+"',sizingMethod='scale')"; | |||||
} | |||||
ImgD = image = null; | |||||
//newPreview.filters.item('DXImageTransform.Microsoft.AlphaImageLoader').src = f.value; | |||||
} | |||||
function SelectFlash(){ | |||||
if($Nav()=='IE'){ var posLeft = window.event.clientX-300; var posTop = window.event.clientY; } | |||||
else{ var posLeft = 100; var posTop = 100; } | |||||
window.open("uploads_select.php?mediatype=2&f=form1.flashurl", "popUpFlashWin", "scrollbars=yes,resizable=yes,statebar=no,width=500,height=350,left="+posLeft+", top="+posTop); | |||||
function SeePic(img, f) { | |||||
if (f.value != "") { img.src = f.value; } | |||||
} | } | ||||
function SelectMedia(fname){ | |||||
if($Nav()=='IE'){ var posLeft = window.event.clientX-200; var posTop = window.event.clientY; } | |||||
else{ var posLeft = 100;var posTop = 100; } | |||||
window.open("uploads_select.php?mediatype=3&f="+fname, "popUpFlashWin", "scrollbars=yes,resizable=yes,statebar=no,width=500,height=350,left="+posLeft+", top="+posTop); | |||||
function SelectKeywords(f) { | |||||
if ($Nav() == 'IE') { var posLeft = window.event.clientX - 350; var posTop = window.event.clientY - 200; } | |||||
else { var posLeft = 100; var posTop = 100; } | |||||
window.open("article_keywords_select.php?f=" + f, "popUpkwWin", "scrollbars=yes,resizable=yes,statebar=no,width=600,height=450,left=" + posLeft + ", top=" + posTop); | |||||
} | } | ||||
function SelectSoft(fname){ | |||||
if($Nav()=='IE'){ var posLeft = window.event.clientX-200; var posTop = window.event.clientY-50; } | |||||
else{ var posLeft = 100; var posTop = 100; } | |||||
window.open("uploads_select.php?mediatype=4&f="+fname, "popUpImagesWin", "scrollbars=yes,resizable=yes,statebar=no,width=600,height=400,left="+posLeft+", top="+posTop); | |||||
} | |||||
function SelectImage(fname,stype){ | |||||
if($Nav()=='IE'){ var posLeft = window.event.clientX-100; var posTop = window.event.clientY; } | |||||
else{ var posLeft = 100; var posTop = 100; } | |||||
if(!fname) fname = 'form1.picname'; | |||||
if(!stype) stype = ''; | |||||
window.open("uploads_select.php?mediatype=1&f="+fname+"&imgstick="+stype, "popUpImagesWin", "scrollbars=yes,resizable=yes,statebar=no,width=600,height=400,left="+posLeft+", top="+posTop); | |||||
} | |||||
function SelectImageN(fname,stype,vname){ | |||||
if($Nav()=='IE'){ var posLeft = window.event.clientX-100; var posTop = window.event.clientY; } | |||||
else{ var posLeft = 100; var posTop = 100; } | |||||
if(!fname) fname = 'form1.picname'; | |||||
if(!stype) stype = ''; | |||||
window.open("uploads_select.php?mediatype=1&f="+fname+"&imgstick="+stype+"&v="+vname, "popUpImagesWin", "scrollbars=yes,resizable=yes,statebar=no,width=600,height=400,left="+posLeft+", top="+posTop); | |||||
} | |||||
function SelectKeywords(f){ | |||||
if($Nav()=='IE'){ var posLeft = window.event.clientX-350; var posTop = window.event.clientY-200; } | |||||
else{ var posLeft = 100; var posTop = 100; } | |||||
window.open("article_keywords_select.php?f="+f, "popUpkwWin", "scrollbars=yes,resizable=yes,statebar=no,width=600,height=450,left="+posLeft+", top="+posTop); | |||||
} | |||||
function InitPage(){ | |||||
function InitPage() { | |||||
var selsource = $Obj('selsource'); | var selsource = $Obj('selsource'); | ||||
var selwriter = $Obj('selwriter'); | var selwriter = $Obj('selwriter'); | ||||
if(selsource){ selsource.onmousedown=function(e){ SelectSource(e); } } | |||||
if(selwriter){ selwriter.onmousedown=function(e){ SelectWriter(e); } } | |||||
if (selsource) { selsource.onmousedown = function (e) { SelectSource(e); } } | |||||
if (selwriter) { selwriter.onmousedown = function (e) { SelectWriter(e); } } | |||||
} | } | ||||
function OpenMyWin(surl){ | |||||
function OpenMyWin(surl) { | |||||
window.open(surl, "popUpMyWin", "scrollbars=yes,resizable=yes,statebar=no,width=500,height=350,left=200, top=100"); | window.open(surl, "popUpMyWin", "scrollbars=yes,resizable=yes,statebar=no,width=500,height=350,left=200, top=100"); | ||||
} | } | ||||
function PutSource(str){ | |||||
function PutSource(str) { | |||||
var osource = $Obj('source'); | var osource = $Obj('source'); | ||||
if(osource) osource.value = str; | |||||
if (osource) osource.value = str; | |||||
} | } | ||||
function PutWriter(str){ | |||||
function PutWriter(str) { | |||||
var owriter = $Obj('writer'); | var owriter = $Obj('writer'); | ||||
if(owriter) owriter.value = str; | |||||
if (owriter) owriter.value = str; | |||||
} | } | ||||
function SelectSource(e){ | |||||
LoadNewDiv(e,'article_select_sw.php?t=source&k=8','_mysource'); | |||||
function SelectSource(e) { | |||||
LoadNewDiv(e, 'article_select_sw.php?t=source&k=8', '_mysource'); | |||||
} | } | ||||
function SelectWriter(e){ | |||||
LoadNewDiv(e,'article_select_sw.php?t=writer&k=8','_mywriter'); | |||||
function SelectWriter(e) { | |||||
LoadNewDiv(e, 'article_select_sw.php?t=writer&k=8', '_mywriter'); | |||||
} | } | ||||
function LoadNewDiv(e,surl,oname){ | |||||
if($Nav()=='IE'){ var posLeft = window.event.clientX-20; var posTop = window.event.clientY-20; } | |||||
else{ var posLeft = e.pageX-20; var posTop = e.pageY-20; } | |||||
function LoadNewDiv(e, surl, oname) { | |||||
if ($Nav() == 'IE') { var posLeft = window.event.clientX - 20; var posTop = window.event.clientY - 20; } | |||||
else { var posLeft = e.pageX - 20; var posTop = e.pageY - 20; } | |||||
var newobj = $Obj(oname); | var newobj = $Obj(oname); | ||||
if(!newobj){ | |||||
if (!newobj) { | |||||
newobj = document.createElement("DIV"); | newobj = document.createElement("DIV"); | ||||
newobj.id = oname; | newobj.id = oname; | ||||
newobj.style.position='absolute'; | |||||
newobj.style.position = 'absolute'; | |||||
newobj.className = "dlg"; | newobj.className = "dlg"; | ||||
newobj.style.top = posTop; | newobj.style.top = posTop; | ||||
newobj.style.left = posLeft; | newobj.style.left = posLeft; | ||||
document.body.appendChild(newobj); | document.body.appendChild(newobj); | ||||
} | } | ||||
else{ | |||||
else { | |||||
newobj.style.display = "block"; | newobj.style.display = "block"; | ||||
} | } | ||||
if(newobj.innerHTML.length<10){ | |||||
if (newobj.innerHTML.length < 10) { | |||||
var myajax = new DedeAjax(newobj); myajax.SendGet(surl); | var myajax = new DedeAjax(newobj); myajax.SendGet(surl); | ||||
} | } | ||||
} | } | ||||
function ShowUrlTr(){ | |||||
function ShowUrlTr() { | |||||
var jumpTest = $Obj('isjump'); | var jumpTest = $Obj('isjump'); | ||||
var jtr = $Obj('redirecturltr'); | var jtr = $Obj('redirecturltr'); | ||||
if(jumpTest.checked) jtr.style.display = "block"; | |||||
if (jumpTest.checked) jtr.style.display = "block"; | |||||
else jtr.style.display = "none"; | else jtr.style.display = "none"; | ||||
} | } | ||||
function ShowUrlTrEdit(){ | |||||
function ShowUrlTrEdit() { | |||||
ShowUrlTr(); | ShowUrlTr(); | ||||
var jumpTest = $Obj('isjump'); | var jumpTest = $Obj('isjump'); | ||||
var rurl = $Obj('redirecturl'); | var rurl = $Obj('redirecturl'); | ||||
if(!jumpTest.checked) rurl.value=""; | |||||
if (!jumpTest.checked) rurl.value = ""; | |||||
} | } | ||||
function CkRemote(ckname,fname){ | |||||
function CkRemote(ckname, fname) { | |||||
var ckBox = $Obj(ckname); | var ckBox = $Obj(ckname); | ||||
var fileBox = $Obj(fname); | var fileBox = $Obj(fname); | ||||
if(ckBox.checked){ | |||||
if (ckBox.checked) { | |||||
fileBox.style.display = 'none'; | fileBox.style.display = 'none'; | ||||
}else{ | |||||
} else { | |||||
fileBox.style.display = 'block'; | fileBox.style.display = 'block'; | ||||
} | } | ||||
} | |||||
--> | |||||
} |
@@ -1,147 +1,134 @@ | |||||
<?php | <?php | ||||
$add_channel_menu = array(); | |||||
//如果为游客访问,不启用左侧菜单 | |||||
if(!empty($cfg_ml->M_ID)) | |||||
{ | |||||
$channelInfos = array(); | |||||
$dsql->Execute('addmod',"SELECT id,nid,typename,useraddcon,usermancon,issend,issystem,usertype,isshow FROM `#@__channeltype` "); | |||||
while($menurow = $dsql->GetArray('addmod')) | |||||
{ | |||||
$channelInfos[$menurow['nid']] = $menurow; | |||||
//禁用的模型 | |||||
if($menurow['isshow']==0) | |||||
{ | |||||
continue; | |||||
} | |||||
//其它情况 | |||||
if($menurow['issend']!=1 || $menurow['issystem']==1 | |||||
|| ( !preg_match("#".$cfg_ml->M_MbType."#", $menurow['usertype']) && trim($menurow['usertype'])!='' ) ) | |||||
{ | |||||
continue; | |||||
} | |||||
$menurow['ddcon'] = empty($menurow['useraddcon']) ? 'archives_add.php' : $menurow['useraddcon']; | |||||
$menurow['list'] = empty($menurow['usermancon']) ? 'content_list.php' : $menurow['usermancon']; | |||||
$add_channel_menu[] = $menurow; | |||||
} | |||||
unset($menurow); | |||||
?> | |||||
<div id="mcpsub"> | |||||
<div class="topGr"></div> | |||||
<div id="menuBody"> | |||||
<!-- 内容中心菜单--> | |||||
<?php | |||||
if($menutype == 'content') | |||||
{ | |||||
?> | |||||
<h2 class="menuTitle" onclick="menuShow('menuFirst')" id="menuFirst_t"><b></b>系统模型内容</h2> | |||||
<ul id="menuFirst"> | |||||
<?php | |||||
//是否启用文章投稿 | |||||
if($channelInfos['article']['issend']==1 && $channelInfos['article']['isshow']==1) | |||||
{ | |||||
?> | |||||
<li class="articles"><a href="../member/content_list.php?channelid=1" title="已发布的文章"><b></b>文章</a><a href="../member/article_add.php" class="act" title="发表新文章">发表</a></li> | |||||
<?php | |||||
} | |||||
//是否启用图集投稿 | |||||
if($channelInfos['image']['issend']==1 && $cfg_mb_album=='Y' && $channelInfos['image']['isshow']==1 | |||||
&& ($channelInfos['image']['usertype']=='' || preg_match("#".$cfg_ml->fields['mtype']."#", $channelInfos['image']['usertype'])) ) | |||||
{ | |||||
?> | |||||
<li class="photo"><a href="../member/content_list.php?channelid=2" title="管理图集"><b></b>图集</a><a href="../member/album_add.php" class="act" title="新建图集">新建</a></li> | |||||
<?php | |||||
} | |||||
//是否启用软件投稿 | |||||
if($channelInfos['soft']['issend']==1 && $channelInfos['soft']['isshow']==1 | |||||
&& ($channelInfos['image']['usertype']=='' || preg_match("#".$cfg_ml->fields['mtype']."#", $channelInfos['image']['usertype'])) | |||||
) | |||||
{ | |||||
?> | |||||
<li class="soft"><a href="../member/content_list.php?channelid=3" title="已发布的软件"><b></b>软件</a><a href="../member/soft_add.php" title="上传软件"class="act">上传</a></li> | |||||
<?php | |||||
} | |||||
?> | |||||
</ul> | |||||
<?php | |||||
//是否允许对自定义模型投稿 | |||||
if($cfg_mb_sendall=='Y') | |||||
{ | |||||
?> | |||||
<h2 class="menuTitle" onclick="menuShow('menuSec')" id="menuSec_t"><b></b>自定义内容</h2> | |||||
<ul id="menuSec"> | |||||
<?php | |||||
foreach($add_channel_menu as $nnarr) { | |||||
?> | |||||
<li class="<?php echo $nnarr['nid'];?>"><a href="../member/<?php echo $nnarr['list'];?>?channelid=<?php echo $nnarr['id'];?>" title="已发布的<?php echo $nnarr['typename'];?>"><b></b><?php echo $nnarr['typename'];?></a><a href='archives_do.php?dopost=addArc&channelid=<?php echo $nnarr['id'];?>' class="act" title="发表新文章">发表</a></li> | |||||
<?php | |||||
} | |||||
} | |||||
?> | |||||
</ul> | |||||
<h2 class="menuTitle" onclick="menuShow('menuThird')" id="menuThird_t"><b></b>其他管理</h2> | |||||
<ul id="menuThird"> | |||||
<li class="icon attachment"><a href="../member/uploads.php"><b></b>附件管理</a></li> | |||||
</ul> | |||||
<?php | |||||
} | |||||
?> | |||||
<!-- 我的织梦菜单--> | |||||
<?php | |||||
if($menutype == 'mydede') | |||||
{ | |||||
?> | |||||
<h2 class="menuTitle" onclick="menuShow('menuFirst')" id="menuFirst_t"><b></b>会员互动</h2> | |||||
<ul id="menuFirst"> | |||||
<li class="icon mystow"><a href="../member/mystow.php"><b></b>我的收藏夹</a></li> | |||||
<?php | |||||
if($cfg_feedback_forbid=='N') | |||||
{ | |||||
//<li class="icon feedback"><a href='../member/myfeedback.php'>我的评论</a></li> | |||||
$add_channel_menu = array(); | |||||
//如果为游客访问,不启用左侧菜单 | |||||
if (!empty($cfg_ml->M_ID)) { | |||||
$channelInfos = array(); | |||||
$dsql->Execute('addmod', "SELECT id,nid,typename,useraddcon,usermancon,issend,issystem,usertype,isshow FROM `#@__channeltype` "); | |||||
while ($menurow = $dsql->GetArray('addmod')) { | |||||
$channelInfos[$menurow['nid']] = $menurow; | |||||
//禁用的模型 | |||||
if ($menurow['isshow'] == 0) { | |||||
continue; | |||||
} | } | ||||
$dsql->Execute('nn','Select indexname,indexurl From `#@__sys_module` where ismember=1 '); | |||||
while($nnarr = $dsql->GetArray('nn')) | |||||
{ | |||||
@preg_match("/\/(.+?)\//is", $nnarr['indexurl'],$matches); | |||||
$nnarr['class'] = isset($matches[1]) ? $matches[1] : 'channel'; | |||||
$nnarr['indexurl'] = str_replace("**","=",$nnarr['indexurl']); | |||||
?> | |||||
<li class="<?php echo $nnarr['class'];?>"><a href="<?php echo $nnarr['indexurl']; ?>"><b></b><?php echo $nnarr['indexname']; ?>模块</a></li> | |||||
<?php | |||||
//其它情况 | |||||
if ( | |||||
$menurow['issend'] != 1 || $menurow['issystem'] == 1 | |||||
|| (!preg_match("#" . $cfg_ml->M_MbType . "#", $menurow['usertype']) && trim($menurow['usertype']) != '') | |||||
) { | |||||
continue; | |||||
} | } | ||||
?> | |||||
</ul> | |||||
<?php | |||||
} | |||||
?> | |||||
<!-- 系统设置菜单--> | |||||
<?php | |||||
if($menutype == 'config') | |||||
{ | |||||
?> | |||||
<h2 class="menuTitle" onclick="menuShow('menuFirst')" id="menuFirst_t"><b></b><?php echo $cfg_ml->M_MbType; ?>资料</a></h2> | |||||
<ul id="menuFirst"> | |||||
<li class="icon baseinfo"><a href="../member/edit_baseinfo.php"><b></b>基本资料</a></li> | |||||
<li class="icon myinfo"><a href="../member/edit_fullinfo.php"><b></b><?php echo $cfg_ml->M_MbType; ?>资料</a></li> | |||||
<li class="icon face"><a href="../member/edit_face.php"><b></b>头像设置</a></li> | |||||
</ul> | |||||
<h2 class="menuTitle" onclick="menuShow('menuSec')" id="menuSec_t"><b></b>空间管理</h2> | |||||
<ul id="menuSec"> | |||||
<li class="icon mtypes"><a href="../member/mtypes.php"><b></b>分类管理</a></li> | |||||
<li class="icon flink"><a href="../member/flink_main.php"><b></b>书签管理</a></li> | |||||
<li class="icon info"><a href="../member/edit_space_info.php"><b></b>空间设置</a></li> | |||||
<li class="icon spaceskin"><a href="../member/spaceskin.php"><b></b>风格选择</a></li> | |||||
</ul> | |||||
<?php | |||||
$menurow['ddcon'] = empty($menurow['useraddcon']) ? 'archives_add.php' : $menurow['useraddcon']; | |||||
$menurow['list'] = empty($menurow['usermancon']) ? 'content_list.php' : $menurow['usermancon']; | |||||
$add_channel_menu[] = $menurow; | |||||
} | } | ||||
?> | |||||
<!--<h2 class="menuTitle"><b class="showMenu"></b>操作主菜单项</h2> --> | |||||
unset($menurow); | |||||
?> | |||||
<div id="mcpsub"> | |||||
<div class="topGr"></div> | |||||
<div id="menuBody"> | |||||
<!-- 内容中心菜单--> | |||||
<?php | |||||
if ($menutype == 'content') { | |||||
?> | |||||
<h2 class="menuTitle" onclick="menuShow('menuFirst')" id="menuFirst_t"><b></b>系统模型内容</h2> | |||||
<ul id="menuFirst"> | |||||
<?php | |||||
//是否启用文章投稿 | |||||
if ($channelInfos['article']['issend'] == 1 && $channelInfos['article']['isshow'] == 1) { | |||||
?> | |||||
<li class="articles"><a href="../member/content_list.php?channelid=1" title="已发布的文章"><b></b>文章</a><a href="../member/article_add.php" class="act" title="发表新文章">发表</a></li> | |||||
<?php | |||||
} | |||||
//是否启用图集投稿 | |||||
if ( | |||||
$channelInfos['image']['issend'] == 1 && $cfg_mb_album == 'Y' && $channelInfos['image']['isshow'] == 1 | |||||
&& ($channelInfos['image']['usertype'] == '' || preg_match("#" . $cfg_ml->fields['mtype'] . "#", $channelInfos['image']['usertype'])) | |||||
) { | |||||
?> | |||||
<li class="photo"><a href="../member/content_list.php?channelid=2" title="管理图集"><b></b>图集</a><a href="../member/album_add.php" class="act" title="新建图集">新建</a></li> | |||||
<?php | |||||
} | |||||
//是否启用软件投稿 | |||||
if ( | |||||
$channelInfos['soft']['issend'] == 1 && $channelInfos['soft']['isshow'] == 1 | |||||
&& ($channelInfos['image']['usertype'] == '' || preg_match("#" . $cfg_ml->fields['mtype'] . "#", $channelInfos['image']['usertype'])) | |||||
) { | |||||
?> | |||||
<li class="soft"><a href="../member/content_list.php?channelid=3" title="已发布的软件"><b></b>软件</a><a href="../member/soft_add.php" title="上传软件" class="act">上传</a></li> | |||||
<?php | |||||
} | |||||
?> | |||||
</ul> | |||||
<?php | |||||
//是否允许对自定义模型投稿 | |||||
if ($cfg_mb_sendall == 'Y') { | |||||
?> | |||||
<h2 class="menuTitle" onclick="menuShow('menuSec')" id="menuSec_t"><b></b>自定义内容</h2> | |||||
<ul id="menuSec"> | |||||
<?php | |||||
foreach ($add_channel_menu as $nnarr) { | |||||
?> | |||||
<li class="<?php echo $nnarr['nid']; ?>"><a href="../member/<?php echo $nnarr['list']; ?>?channelid=<?php echo $nnarr['id']; ?>" title="已发布的<?php echo $nnarr['typename']; ?>"><b></b><?php echo $nnarr['typename']; ?></a><a href='archives_do.php?dopost=addArc&channelid=<?php echo $nnarr['id']; ?>' class="act" title="发表新文章">发表</a></li> | |||||
<?php | |||||
} | |||||
} | |||||
?> | |||||
</ul> | |||||
<?php | |||||
} | |||||
?> | |||||
<!-- 我的织梦菜单--> | |||||
<?php | |||||
if ($menutype == 'mydede') { | |||||
?> | |||||
<h2 class="menuTitle" onclick="menuShow('menuFirst')" id="menuFirst_t"><b></b>会员互动</h2> | |||||
<ul id="menuFirst"> | |||||
<li class="icon mystow"><a href="../member/mystow.php"><b></b>我的收藏夹</a></li> | |||||
<?php | |||||
if ($cfg_feedback_forbid == 'N') { | |||||
//<li class="icon feedback"><a href='../member/myfeedback.php'>我的评论</a></li> | |||||
} | |||||
$dsql->Execute('nn', 'Select indexname,indexurl From `#@__sys_module` where ismember=1 '); | |||||
while ($nnarr = $dsql->GetArray('nn')) { | |||||
@preg_match("/\/(.+?)\//is", $nnarr['indexurl'], $matches); | |||||
$nnarr['class'] = isset($matches[1]) ? $matches[1] : 'channel'; | |||||
$nnarr['indexurl'] = str_replace("**", "=", $nnarr['indexurl']); | |||||
?> | |||||
<li class="<?php echo $nnarr['class']; ?>"><a href="<?php echo $nnarr['indexurl']; ?>"><b></b><?php echo $nnarr['indexname']; ?>模块</a></li> | |||||
<?php | |||||
} | |||||
?> | |||||
</ul> | |||||
<?php | |||||
} | |||||
?> | |||||
<!-- 系统设置菜单--> | |||||
<?php | |||||
if ($menutype == 'config') { | |||||
?> | |||||
<h2 class="menuTitle" onclick="menuShow('menuFirst')" id="menuFirst_t"><b></b><?php echo $cfg_ml->M_MbType; ?>资料</a></h2> | |||||
<ul id="menuFirst"> | |||||
<li class="icon baseinfo"><a href="../member/edit_baseinfo.php"><b></b>基本资料</a></li> | |||||
<li class="icon myinfo"><a href="../member/edit_fullinfo.php"><b></b><?php echo $cfg_ml->M_MbType; ?>资料</a></li> | |||||
<li class="icon face"><a href="../member/edit_face.php"><b></b>头像设置</a></li> | |||||
</ul> | |||||
<h2 class="menuTitle" onclick="menuShow('menuSec')" id="menuSec_t"><b></b>空间管理</h2> | |||||
<ul id="menuSec"> | |||||
<li class="icon mtypes"><a href="../member/mtypes.php"><b></b>分类管理</a></li> | |||||
<li class="icon flink"><a href="../member/flink_main.php"><b></b>书签管理</a></li> | |||||
<li class="icon info"><a href="../member/edit_space_info.php"><b></b>空间设置</a></li> | |||||
<li class="icon spaceskin"><a href="../member/spaceskin.php"><b></b>风格选择</a></li> | |||||
</ul> | |||||
<?php | |||||
} | |||||
?> | |||||
<!--<h2 class="menuTitle"><b class="showMenu"></b>操作主菜单项</h2> --> | |||||
</div> | |||||
<div class="buttomGr"></div> | |||||
</div> | </div> | ||||
<div class="buttomGr"></div> | |||||
</div> | |||||
<?php | <?php | ||||
} | } | ||||
?> | ?> |
@@ -170,10 +170,6 @@ function ShowHideAddr() | |||||
<input name="needmoney" type="text" value="0" id="needmoney" maxlength="100" class="intxt" style="width:80px" />(最大允许100个) | <input name="needmoney" type="text" value="0" id="needmoney" maxlength="100" class="intxt" style="width:80px" />(最大允许100个) | ||||
</span> | </span> | ||||
</p> | </p> | ||||
<p> | |||||
<label>缩略图:</label> | |||||
<input name="litpic" type="file" id="litpic" onchange="SeePicNew('divpicview',this);" maxlength="100" class="intxt"/> | |||||
</p> | |||||
<?php | <?php | ||||
//自定义字段 | //自定义字段 | ||||
PrintAutoFieldsAdd($cInfos['fieldset'],'autofield'); | PrintAutoFieldsAdd($cInfos['fieldset'],'autofield'); | ||||
@@ -185,11 +181,10 @@ function ShowHideAddr() | |||||
<label>文字介绍:</label><?php GetEditor("body","",200,"Member"); ?> | <label>文字介绍:</label><?php GetEditor("body","",200,"Member"); ?> | ||||
</p> | </p> | ||||
<p class="cellBg"> | <p class="cellBg"> | ||||
<label>本地地址:</label> | |||||
<label>下载地址:</label> | |||||
<input name="softurl1" type="text" id="softurl1" class="intxt" style="width:230px" /> | <input name="softurl1" type="text" id="softurl1" class="intxt" style="width:230px" /> | ||||
<button name="sel1" type="button" id="sel1" onclick="SelectSoft('addcontent.softurl1')" class="bt3">选取</button> | |||||
服务器名称: | 服务器名称: | ||||
<input name="servermsg1" type="text" id="servermsg1" value="本地下载" class="intxt" style="width:150px" /> | |||||
<input name="servermsg1" type="text" id="servermsg1" value="下载" class="intxt" style="width:150px" /> | |||||
</p> | </p> | ||||
<p> | <p> | ||||
<label>其它地址:</label> | <label>其它地址:</label> | ||||
@@ -198,7 +193,6 @@ function ShowHideAddr() | |||||
<button type="button" name="Submit3" id="btsh3" onclick="ShowHideAddr();" class="bt2">隐藏地址</button> | <button type="button" name="Submit3" id="btsh3" onclick="ShowHideAddr();" class="bt2">隐藏地址</button> | ||||
(最多为12个链接)</p> | (最多为12个链接)</p> | ||||
<div id="morelink" style="display:none"><p><?php echo "<span id='uploadfield' style='line-height: 32px;'></span>"; ?></p></div> | <div id="morelink" style="display:none"><p><?php echo "<span id='uploadfield' style='line-height: 32px;'></span>"; ?></p></div> | ||||
<?php | <?php | ||||
if($safe_faq_send == '1'){ | if($safe_faq_send == '1'){ | ||||
$faqkey = array_rand($safefaqs); | $faqkey = array_rand($safefaqs); | ||||
@@ -50,7 +50,7 @@ function ShowHideAddr() | |||||
<form class="mTB10 mR10 mL10" name="form1" action="soft_edit.php" method="post" enctype="multipart/form-data" onsubmit="return checkSubmit();"> | <form class="mTB10 mR10 mL10" name="form1" action="soft_edit.php" method="post" enctype="multipart/form-data" onsubmit="return checkSubmit();"> | ||||
<input type="hidden" name="dopost" value="save" /> | <input type="hidden" name="dopost" value="save" /> | ||||
<input type="hidden" name="aid" value="<?php echo $row['id']; ?>" /> | <input type="hidden" name="aid" value="<?php echo $row['id']; ?>" /> | ||||
<input type="hidden" name="idhash" value="<?php echo md5($row['id'].$cfg_cookie_encode); ?>" /> | |||||
<input type="hidden" name="idhash" value="<?php echo hash('sha256', $row['id'].$cfg_cookie_encode); ?>" /> | |||||
<input type="hidden" name="channelid" value="<?php echo $row['channel']; ?>" /> | <input type="hidden" name="channelid" value="<?php echo $row['channel']; ?>" /> | ||||
<input type="hidden" name="oldlitpic" value="<?php echo $row['litpic']; ?>" /> | <input type="hidden" name="oldlitpic" value="<?php echo $row['litpic']; ?>" /> | ||||
<input type="hidden" name="sortrank" value="<?php echo $row['sortrank']; ?>" /> | <input type="hidden" name="sortrank" value="<?php echo $row['sortrank']; ?>" /> | ||||
@@ -178,17 +178,6 @@ function ShowHideAddr() | |||||
<label>需要金币:</label> | <label>需要金币:</label> | ||||
<input name="needmoney" type="text" value="<?php echo isset($addRow["needmoney"])? $addRow["needmoney"] : ''; ?>" id="needmoney" maxlength="100" class="intxt" style="width:80px" />(最大允许100个) | <input name="needmoney" type="text" value="<?php echo isset($addRow["needmoney"])? $addRow["needmoney"] : ''; ?>" id="needmoney" maxlength="100" class="intxt" style="width:80px" />(最大允许100个) | ||||
</span> | </span> | ||||
</p> | |||||
<p> | |||||
<label>缩略图:</label> | |||||
<input name="litpic" type="file" id="litpic" onchange="SeePicNew('divpicview',this);" maxlength="100" class="intxt"/> | |||||
</p> | |||||
<p class="cellBg"> | |||||
<label style="width: 85px;">原来的缩略图:</label> | |||||
<img name="nlitpic" id="nlitpic" src=' | |||||
<?php | |||||
echo !empty($row['litpic'])? $row['litpic'] : 'templets/images/dfpic.gif'; | |||||
?>' style="width: 200px; height:150px"/> | |||||
</p> | </p> | ||||
<?php | <?php | ||||
//自定义字段 | //自定义字段 | ||||
@@ -206,7 +195,6 @@ function ShowHideAddr() | |||||
<p class="cellBg"> | <p class="cellBg"> | ||||
<label>本地地址:</label> | <label>本地地址:</label> | ||||
<input name="softurl1" type="text" id="softurl1" class="intxt" style="width:230px" /> | <input name="softurl1" type="text" id="softurl1" class="intxt" style="width:230px" /> | ||||
<button name="sel1" type="button" id="sel1" onclick="SelectSoft('form1.softurl1')" class="bt3">选取</button> | |||||
服务器名称: | 服务器名称: | ||||
<input name="servermsg1" type="text" id="servermsg1" value="本地下载" class="intxt" style="width:150px" /> | <input name="servermsg1" type="text" id="servermsg1" value="本地下载" class="intxt" style="width:150px" /> | ||||
</p> | </p> | ||||