Browse Source

Merge pull request 'master' (#9) from Vaecq/DedeCMSV6:master into develop

tags/6.0.4^2
tianya 2 years ago
parent
commit
9d70912541
100 changed files with 475 additions and 521 deletions
  1. +2
    -2
      src/dede/ad_add.php
  2. +3
    -3
      src/dede/ad_edit.php
  3. +1
    -1
      src/dede/adtype_main.php
  4. +1
    -1
      src/dede/article_coonepage_rule.php
  5. +2
    -2
      src/dede/article_keywords_select.php
  6. +8
    -8
      src/dede/article_template_rand.php
  7. +3
    -3
      src/dede/article_test_same.php
  8. +1
    -1
      src/dede/article_test_title.php
  9. +1
    -1
      src/dede/cards_make.php
  10. +1
    -1
      src/dede/cards_manage.php
  11. +1
    -1
      src/dede/cards_type.php
  12. +7
    -7
      src/dede/catalog_add.php
  13. +2
    -2
      src/dede/catalog_del.php
  14. +11
    -11
      src/dede/catalog_do.php
  15. +1
    -1
      src/dede/config.php
  16. +1
    -1
      src/dede/content_att.php
  17. +12
    -12
      src/dede/content_batchup_action.php
  18. +1
    -1
      src/dede/content_list.php
  19. +3
    -3
      src/dede/content_sg_list.php
  20. +1
    -1
      src/dede/content_tj.php
  21. +1
    -1
      src/dede/css/base.css
  22. +5
    -5
      src/dede/dialog/select_images_post.php
  23. +4
    -4
      src/dede/dialog/select_soft.php
  24. +5
    -5
      src/dede/dialog/select_soft_post.php
  25. +4
    -4
      src/dede/dialog/select_templets_post.php
  26. +3
    -3
      src/dede/diy_add.php
  27. +3
    -3
      src/dede/diy_edit.php
  28. +2
    -2
      src/dede/diy_field_add.php
  29. +3
    -3
      src/dede/diy_field_edit.php
  30. +1
    -1
      src/dede/diy_list.php
  31. +2
    -2
      src/dede/erraddsave.php
  32. +1
    -1
      src/dede/feedback_edit.php
  33. +1
    -1
      src/dede/feedback_main.php
  34. +8
    -8
      src/dede/file_class.php
  35. +4
    -4
      src/dede/file_manage_control.php
  36. +2
    -2
      src/dede/freelist_main.php
  37. +4
    -4
      src/dede/friendlink_edit.php
  38. +1
    -1
      src/dede/friendlink_type.php
  39. +6
    -6
      src/dede/imagecut.php
  40. +1
    -1
      src/dede/inc/inc_action_info.php
  41. +2
    -2
      src/dede/inc/inc_archives_functions.php
  42. +1
    -1
      src/dede/index_body.php
  43. +2
    -2
      src/dede/index_testenv.php
  44. +3
    -3
      src/dede/js/album.js
  45. +2
    -2
      src/dede/js/handlers.js
  46. +4
    -4
      src/dede/js/list.js
  47. +2
    -2
      src/dede/js/main.js
  48. +4
    -4
      src/dede/log_edit.php
  49. +2
    -2
      src/dede/login.php
  50. +1
    -1
      src/dede/mail_file_manage.php
  51. +5
    -5
      src/dede/mail_title.php
  52. +5
    -5
      src/dede/mail_type.php
  53. +7
    -7
      src/dede/makehtml_all.php
  54. +1
    -1
      src/dede/makehtml_archives_action.php
  55. +3
    -3
      src/dede/makehtml_freelist_action.php
  56. +3
    -3
      src/dede/makehtml_js_action.php
  57. +5
    -5
      src/dede/makehtml_list_action.php
  58. +2
    -2
      src/dede/makehtml_rss_action.php
  59. +1
    -1
      src/dede/makehtml_spec.php
  60. +4
    -4
      src/dede/makehtml_taglist_action.php
  61. +7
    -7
      src/dede/mda_main.php
  62. +2
    -2
      src/dede/media_add.php
  63. +9
    -9
      src/dede/media_edit.php
  64. +13
    -13
      src/dede/member_do.php
  65. +5
    -5
      src/dede/member_pmone.php
  66. +2
    -2
      src/dede/member_rank.php
  67. +4
    -4
      src/dede/member_toadmin.php
  68. +92
    -138
      src/dede/module_main.php
  69. +12
    -12
      src/dede/module_make.php
  70. +6
    -6
      src/dede/module_upload.php
  71. +5
    -5
      src/dede/mychannel_add.php
  72. +17
    -17
      src/dede/mychannel_edit.php
  73. +2
    -2
      src/dede/mychannel_field_add.php
  74. +4
    -4
      src/dede/mychannel_field_edit.php
  75. +2
    -2
      src/dede/mychannel_main.php
  76. +1
    -1
      src/dede/mynews_add.php
  77. +2
    -2
      src/dede/mynews_edit.php
  78. +2
    -2
      src/dede/mytag_add.php
  79. +3
    -3
      src/dede/mytag_edit.php
  80. +1
    -1
      src/dede/plus_edit.php
  81. +2
    -2
      src/dede/plus_main.php
  82. +2
    -2
      src/dede/public_guide.php
  83. +6
    -6
      src/dede/search_keywords_main.php
  84. +3
    -3
      src/dede/shops_operations.php
  85. +1
    -1
      src/dede/soft_config.php
  86. +18
    -18
      src/dede/stepselect_main.php
  87. +2
    -2
      src/dede/swfupload.php
  88. +5
    -5
      src/dede/sys_admin_user_add.php
  89. +7
    -7
      src/dede/sys_admin_user_edit.php
  90. +1
    -1
      src/dede/sys_cache_up.php
  91. +8
    -8
      src/dede/sys_data.php
  92. +3
    -3
      src/dede/sys_data_done.php
  93. +7
    -7
      src/dede/sys_data_replace.php
  94. +5
    -5
      src/dede/sys_info.php
  95. +5
    -5
      src/dede/sys_info_mark.php
  96. +2
    -2
      src/dede/sys_passport.php
  97. +6
    -6
      src/dede/sys_repair.php
  98. +2
    -2
      src/dede/sys_safetest.php
  99. +9
    -9
      src/dede/sys_sql_query.php
  100. +7
    -7
      src/dede/task_do.php

+ 2
- 2
src/dede/ad_add.php View File

@@ -21,7 +21,7 @@ if ($dopost == "save") {
$tagname = trim($tagname);
$row = $dsql->GetOne("SELECT typeid FROM #@__myad WHERE typeid='$typeid' AND tagname LIKE '$tagname'");
if (is_array($row)) {
ShowMsg("在相同栏目下已经存在同名的标记", "-1");
ShowMsg("在相同栏目下已经存在同名的标记", "-1");
exit();
}
$starttime = GetMkTime($starttime);
@@ -62,7 +62,7 @@ if ($dopost == "save") {
VALUES('$clsid','$typeid','$tagname','$adname','$timeset','$starttime','$endtime','$normbody','$expbody');
";
$dsql->ExecuteNoneQuery($query);
ShowMsg("成功增加一个广告", "ad_main.php");
ShowMsg("成功增加一个广告", "ad_main.php");
exit();
}
$dsql->Execute('dd', 'SELECT * FROM `#@__myadtype` ORDER BY id DESC');


+ 3
- 3
src/dede/ad_edit.php View File

@@ -18,7 +18,7 @@ $ENV_GOBACK_URL = empty($_COOKIE['ENV_GOBACK_URL']) ? "ad_main.php" : $_COOKIE['

if ($dopost == 'delete') {
$dsql->ExecuteNoneQuery("DELETE FROM `#@__myad` WHERE aid='$aid' ");
ShowMsg("成功删除一则广告代码", $ENV_GOBACK_URL);
ShowMsg("成功删除一则广告代码", $ENV_GOBACK_URL);
exit();
} else if ($dopost == "gettag") {
require_once(DEDEINC.'/oxwindow.class.php');
@@ -32,7 +32,7 @@ if ($dopost == 'delete') {
如果不希望重新生成所有页面,则直接调用JS代码即可。
";
$wintitle = "广告管理-获取广告标签";
$wecome_info = "<a href='ad_main.php'><u>广告管理</u></a>::获取JS";
$wecome_info = "<a href='ad_main.php'>广告管理</a>::获取JS";
$win = new OxWindow();
$win->Init();
$winform = $win->GetWindow("hand", $info);
@@ -63,7 +63,7 @@ if ($dopost == 'delete') {
WHERE aid='$aid'
";
$dsql->ExecuteNoneQuery($query);
ShowMsg("成功更改一则广告代码", $ENV_GOBACK_URL);
ShowMsg("成功更改一则广告代码", $ENV_GOBACK_URL);
exit();
}



+ 1
- 1
src/dede/adtype_main.php View File

@@ -36,7 +36,7 @@ if ($dopost == "save") {
$dsql->ExecuteNoneQuery($query);
}
header("Content-Type: text/html; charset={$cfg_soft_lang}");
ShowMsg("成功更新广告分类列表", 'adtype_main.php');
ShowMsg("成功更新广告分类列表", 'adtype_main.php');
exit;
}


+ 1
- 1
src/dede/article_coonepage_rule.php View File

@@ -20,7 +20,7 @@ function _AddNote(){ }
if ($action == 'add') {
$row = $dsql->GetOne("SELECT * FROM `#@__co_onepage` WHERE url LIKE '$url' ");
if (is_array($row)) {
echo "系统已经存在这个网址的条目";
echo "系统已经存在这个网址的条目";
} else {
$query = " INSERT INTO `#@__co_onepage`(`url`,`title`,`issource`,`lang`,`rule`) Values('$url','$title','$issource','$lang','$rule'); ";
$dsql->ExecuteNonequery($query);


+ 2
- 2
src/dede/article_keywords_select.php View File

@@ -33,6 +33,6 @@ function GetSta($sta)
function GetMan($sta)
{
if ($sta == 1) return "<u>禁用</u>";
else return "<u>启用</u>";
if ($sta == 1) return "禁用";
else return "启用";
}

+ 8
- 8
src/dede/article_template_rand.php View File

@@ -33,19 +33,19 @@ else if ($dopost == 'makeold') {
set_time_limit(3600);
if (!file_exists($m_file)) {
AjaxHead();
echo "配置文件不存在";
echo "配置文件不存在";
exit();
}
require_once($m_file);
if ($cfg_tamplate_rand == 0) {
AjaxHead();
echo "系统没开启允许随机模板的选项";
echo "系统没开启允许随机模板的选项";
exit();
}
$totalTmp = count($cfg_tamplate_arr) - 1;
if ($totalTmp < 1) {
AjaxHead();
echo "随机模板的数量必须为2个或以上";
echo "随机模板的数量必须为2个或以上";
exit();
}
for ($i = 0; $i < 10; $i++) {
@@ -53,7 +53,7 @@ else if ($dopost == 'makeold') {
$dsql->ExecuteNoneQuery(" Update `#@__addonarticle` set templet='$temp' where RIGHT(aid, 1)='$i' ");
}
AjaxHead();
echo "全部随机操作成功";
echo "全部随机操作成功";
exit();
}
//清除全部的指定模板
@@ -62,7 +62,7 @@ else if ($dopost == 'clearold') {
$dsql->ExecuteNoneQuery(" Update `#@__addonarticle` set templet='' ");
$dsql->ExecuteNoneQuery(" OPTIMIZE TABLE `#@__addonarticle` ");
AjaxHead();
echo "全部清除操作成功";
echo "全部清除操作成功";
exit();
}

@@ -96,8 +96,8 @@ function DoRand(jobname)
</div>
<table width='98%' align='center'>
<tr>
<td height='28'>
如果您想对旧的文章应用随机模板设置,请点击此对旧文章进行处理(必须设置好模板项)
<td height='26'>
如果您想对旧的文章应用随机模板设置,请点击此对旧文章进行处理(必须设置好模板项)
&nbsp; <a href='#' onclick='DoRand(\"makeold\")' class='btn btn-success btn-sm'>设置全部</a>
&nbsp; <a href='#' onclick='DoRand(\"clearold\")' class='btn btn-success btn-sm'>取消全部</a>
&nbsp; <span id='tmpct' style='color:red;font-weight:bold'>$okmsg</span>
@@ -115,7 +115,7 @@ $win = new OxWindow();
$win->Init('article_template_rand.php', 'js/blank.js', 'POST');
$win->AddHidden('dopost', 'save');
$win->AddHidden('token', $_SESSION['token']);
$win->AddTitle("本设置仅适用于系统默认的文章模型,设置后发布文章时会自动按指定的模板随机获取一个,如果不想使用此功能,把它设置为空即可");
$win->AddTitle("本设置仅适用于系统默认的文章模型,设置后发布文章时会自动按指定的模板随机获取一个,如果不想使用此功能,把它设置为空即可");
$win->AddMsgItem($msg);
$winform = $win->GetWindow('ok');
$win->Display();

+ 3
- 3
src/dede/article_test_same.php View File

@@ -18,7 +18,7 @@ if ($dopost == 'analyse') {
if (is_array($arr)) {
$maintable = $arr['maintable'];
} else {
showmsg('频道id不正确,无法处理', 'javascript:;');
showmsg('频道id不正确,无法处理', 'javascript:;');
exit();
}
$dsql->SetQuery("SELECT COUNT(title) AS dd,title FROM `$maintable` WHERE channel='$channelid' GROUP BY title ORDER BY dd DESC LIMIT 0, $pagesize");
@@ -35,7 +35,7 @@ else if ($dopost == 'delsel') {
if (empty($titles)) {
header("Content-Type: text/html; charset={$cfg_ver_lang}");
echo "<meta http-equiv=\"Content-Type\" content=\"text/html; charset={$cfg_ver_lang}\">\r\n";
echo "没有指定删除的文档";
echo "没有指定删除的文档";
exit();
}
@@ -72,7 +72,7 @@ else if ($dopost == 'delsel') {
}
}
$dsql->ExecuteNoneQuery(" OPTIMIZE TABLE `$maintable`; ");
ShowMsg("一共删除了[{$totalarc}]篇重复的文档", "javascript:;");
ShowMsg("一共删除了[{$totalarc}]篇重复的文档", "javascript:;");
exit();
}


+ 1
- 1
src/dede/article_test_title.php View File

@@ -15,5 +15,5 @@ if (empty($t) || $cfg_check_title == 'N') exit;
$row = $dsql->GetOne("SELECT id FROM `#@__archives` WHERE title LIKE '$t' ");
if (is_array($row)) {
echo "提示:系统已经存在标题为 '<a href='../plus/view.php?aid={$row['id']}' style='color:red' target='_blank'><u>$t</u></a>' 的文档。[<a href='#' onclick='javascript:HideObj(\"mytitle\")'>关闭</a>]";
echo "提示:系统已经存在标题为 '<a href='../plus/view.php?aid={$row['id']}' style='color:red' target='_blank'>$t</a>' 的文档。[<a href='#' onclick='javascript:HideObj(\"mytitle\")'>关闭</a>]";
}

+ 1
- 1
src/dede/cards_make.php View File

@@ -55,5 +55,5 @@ elseif ($dopost == 'make') {
$dsql->ExecuteNoneQuery($inquery);
echo "成功生成点卡:{$cardid}<br/>";
}
echo "成功生成 {$mnum} 个点卡";
echo "成功生成 {$mnum} 个点卡";
}

+ 1
- 1
src/dede/cards_manage.php View File

@@ -21,7 +21,7 @@ if ($dopost == "delete") {
}
if ($dquery != "") $dquery = " WHERE ".$dquery;
$dsql->ExecuteNoneQuery("DELETE FROM #@__moneycard_record $dquery");
ShowMsg("成功删除指定的记录", "cards_manage.php");
ShowMsg("成功删除指定的记录", "cards_manage.php");
exit();
} else {
$addsql = '';


+ 1
- 1
src/dede/cards_type.php View File

@@ -44,6 +44,6 @@ if ($dopost == "save") {
$dsql->ExecuteNoneQuery($query);
}
header("Content-Type: text/html; charset={$cfg_soft_lang}");
echo "<script> alert('成功更新点卡产品分类表'); </script>";
echo "<script> alert('成功更新点卡产品分类表'); </script>";
}
require_once(DEDEADMIN."/templets/cards_type.htm");

+ 7
- 7
src/dede/catalog_add.php View File

@@ -27,7 +27,7 @@ if ($id == 0 && $reid == 0) {
} else {
$checkID = empty($id) ? $reid : $id;
CheckPurview('t_AccNew');
CheckCatalog($checkID, '您无权在本栏目下创建子类');
CheckCatalog($checkID, '您无权在本栏目下创建子类');
}
if (empty($myrow)) $myrow = array();
@@ -136,7 +136,7 @@ function action_savequick(){ }
}
}
UpDateCatCache();
ShowMsg('成功增加指定栏目', 'catalog_main.php');
ShowMsg('成功增加指定栏目', 'catalog_main.php');
exit();
}
/*---------------------
@@ -173,11 +173,11 @@ function action_save(){ }
if ($siteurl != '') {
$siteurl = preg_replace("#\/$#", "", $siteurl);
if (!preg_match("#http:\/\/#i", $siteurl)) {
ShowMsg("您绑定的二级域名无效,请用(http://host)的形式", "-1");
ShowMsg("您绑定的二级域名无效,请用(http://host)的形式", "-1");
exit();
}
if (preg_match("#".$cfg_basehost."#i", $siteurl)) {
ShowMsg("您绑定的二级域名与当前站点是同一个域,不需要绑定", "-1");
ShowMsg("您绑定的二级域名与当前站点是同一个域,不需要绑定", "-1");
exit();
}
}
@@ -188,7 +188,7 @@ function action_save(){ }
$true_typedir = str_replace("{cmspath}", $cfg_cmspath, $typedir);
$true_typedir = preg_replace("#\/{1,}#", "/", $true_typedir);
if (!CreateDir($true_typedir)) {
ShowMsg("创建目录 {$true_typedir} 失败,请检查您的路径是否存在问题", "-1");
ShowMsg("创建目录 {$true_typedir} 失败,请检查您的路径是否存在问题", "-1");
exit();
}
}
@@ -201,14 +201,14 @@ function action_save(){ }
'$ispart','$corank','$description','$keywords','$seotitle','$moresite','$siteurl','$sitepath','$ishidden','$cross','$crossid','$content','$smalltypes')";
if (!$dsql->ExecuteNoneQuery($in_query)) {
ShowMsg("保存目录数据时失败,请检查您的输入资料是否存在问题", "-1");
ShowMsg("保存目录数据时失败,请检查您的输入资料是否存在问题", "-1");
exit();
}
UpDateCatCache();
if ($reid > 0) {
PutCookie('lastCid', GetTopid($reid), 3600 * 24, '/');
}
ShowMsg("成功创建一个分类", "catalog_main.php");
ShowMsg("成功创建一个分类", "catalog_main.php");
exit();
} //End dopost==save


+ 2
- 2
src/dede/catalog_del.php View File

@@ -18,13 +18,13 @@ require_once(DEDEINC.'/oxwindow.class.php');
$id = trim(preg_replace("#[^0-9]#", '', $id));
//检查栏目操作许可
CheckCatalog($id, "您无权删除本栏目");
CheckCatalog($id, "您无权删除本栏目");
if (empty($dopost)) $dopost = '';
if ($dopost == 'ok') {
$ut = new TypeUnit();
$ut->DelType($id, $delfile);
UpDateCatCache();
ShowMsg("成功删除一个栏目", "catalog_main.php");
ShowMsg("成功删除一个栏目", "catalog_main.php");
exit();
}
$dsql->SetQuery("SELECT typename,typedir FROM #@__arctype WHERE id=".$id);


+ 11
- 11
src/dede/catalog_do.php View File

@@ -11,7 +11,7 @@
*/
require_once(dirname(__FILE__).'/config.php');
if (empty($dopost)) {
ShowMsg("对不起,请指定栏目参数", "catalog_main.php");
ShowMsg("对不起,请指定栏目参数", "catalog_main.php");
exit();
}
$cid = empty($cid) ? 0 : intval($cid);
@@ -37,7 +37,7 @@ if ($dopost == "addArchives") {
}
$gurl = $row["addcon"];
if ($gurl == "") {
ShowMsg("对不起,您指的栏目可能有误", "catalog_main.php");
ShowMsg("对不起,您指的栏目可能有误", "catalog_main.php");
exit();
}
@@ -64,7 +64,7 @@ function listArchives();
$typename = $row["typename"];
$channelname = $row["channelname"];
if ($gurl == "") {
ShowMsg("对不起,您指的栏目可能有误", "catalog_main.php");
ShowMsg("对不起,您指的栏目可能有误", "catalog_main.php");
exit();
}
} else if ($channelid > 0) {
@@ -104,7 +104,7 @@ function upRank()
CheckPurview('t_Edit,t_AccEdit');
//检查栏目操作许可
CheckCatalog($cid, "您无权更改本栏目");
CheckCatalog($cid, "您无权更改本栏目");
$row = $dsql->GetOne("SELECT reid,sortrank FROM #@__arctype WHERE id='$cid'");
$reid = $row['reid'];
$sortrank = $row['sortrank'];
@@ -211,7 +211,7 @@ function unitCatalog() { }
$reid = $tl->TypeInfos['reid'];
$channelid = $tl->TypeInfos['channeltype'];
if (!empty($row['dd'])) {
ShowMsg("栏目: $typename($typeid) 有子栏目,不能进行合并操作", '-1');
ShowMsg("栏目: $typename($typeid) 有子栏目,不能进行合并操作", '-1');
exit();
}
$typeOptions = $tl->GetOptionArray(0, 0, $channelid);
@@ -232,11 +232,11 @@ function unitCatalog() { }
exit();
} else {
if ($typeid == $unittype) {
ShowMsg("同一栏目无法合并,请后退重试", '-1');
ShowMsg("同一栏目无法合并,请后退重试", '-1');
exit();
}
if (IsParent($unittype, $typeid)) {
ShowMsg('不能从父类合并到子类', 'catalog_main.php');
ShowMsg('不能从父类合并到子类', 'catalog_main.php');
exit();
}
$row = $dsql->GetOne("SELECT addtable FROM `#@__channeltype` WHERE id='$channelid' ");
@@ -249,7 +249,7 @@ function unitCatalog() { }
$dsql->ExecuteNoneQuery("UPDATE `$addtable` SET typeid='$unittype' WHERE typeid='$typeid' ");
$dsql->ExecuteNoneQuery("DELETE FROM `#@__arctype` WHERE id='$typeid' ");
UpDateCatCache();
ShowMsg('成功合并指定栏目', 'catalog_main.php');
ShowMsg('成功合并指定栏目', 'catalog_main.php');
exit();
}
}
@@ -284,16 +284,16 @@ function moveCatalog() { }
exit();
} else {
if ($typeid == $movetype) {
ShowMsg('移对对象和目标位置相同', 'catalog_main.php');
ShowMsg('移对对象和目标位置相同', 'catalog_main.php');
exit();
}
if (IsParent($movetype, $typeid)) {
ShowMsg('不能从父类移动到子类', 'catalog_main.php');
ShowMsg('不能从父类移动到子类', 'catalog_main.php');
exit();
}
$dsql->ExecuteNoneQuery(" UPDATE `#@__arctype` SET reid='$movetype' WHERE id='$typeid' ");
UpDateCatCache();
ShowMsg('成功移动目录', 'catalog_main.php');
ShowMsg('成功移动目录', 'catalog_main.php');
exit();
}
}

+ 1
- 1
src/dede/config.php View File

@@ -100,7 +100,7 @@ if (strlen($cfg_cookie_encode) <= 10) {
$dsql->ExecuteNoneQuery("UPDATE `#@__sysconfig` SET `value`='{$hash}' WHERE varname='cfg_cookie_encode' ");
$configfile = DEDEDATA . '/config.cache.inc.php';
if (!is_writeable($configfile)) {
echo "配置文件'{$configfile}'不支持写入,无法修改系统配置参数";
echo "配置文件'{$configfile}'不支持写入,无法修改系统配置参数";
exit();
}
$fp = fopen($configfile, 'w');


+ 1
- 1
src/dede/content_att.php View File

@@ -24,7 +24,7 @@ if ($dopost == "save") {
$query = "UPDATE `#@__arcatt` SET `attname`='$attname',`sortid`='$sortid' WHERE att='$att' ";
$dsql->ExecuteNoneQuery($query);
}
echo "<script> alert('成功更新自定文档义属性表'); </script>";
echo "<script> alert('成功更新自定文档义属性表'); </script>";
}
include DedeInclude('templets/content_att.htm');

+ 12
- 12
src/dede/content_batchup_action.php View File

@@ -60,7 +60,7 @@ if (!empty($heightdone)) $action = $heightdone;
//指量审核
if ($action == 'check') {
if (empty($startid) || empty($endid) || $endid < $startid) {
ShowMsg('该操作必须指定起始ID', 'javascript:;');
ShowMsg('该操作必须指定起始ID', 'javascript:;');
exit();
}
$jumpurl = "makehtml_archives_action.php?endid=$endid&startid=$startid";
@@ -80,7 +80,7 @@ if ($action == 'check') {
//批量删除
else if ($action == 'del') {
if (empty($startid) || empty($endid) || $endid < $startid) {
ShowMsg('该操作必须指定起始ID', 'javascript:;');
ShowMsg('该操作必须指定起始ID', 'javascript:;');
exit();
}
$dsql->SetQuery("SELECT id FROM `#@__archives` $gwhere");
@@ -89,7 +89,7 @@ else if ($action == 'del') {
while ($row = $dsql->GetObject('x')) {
if (DelArc($row->id)) $tdd++;
}
ShowMsg("成功删除 $tdd 条记录", "javascript:;");
ShowMsg("成功删除 $tdd 条记录", "javascript:;");
exit();
}
//删除空标题文档
@@ -100,7 +100,7 @@ else if ($action == 'delnulltitle') {
while ($row = $dsql->GetObject('x')) {
if (DelArc($row->id)) $tdd++;
}
ShowMsg("成功删除 $tdd 条记录", "javascript:;");
ShowMsg("成功删除 $tdd 条记录", "javascript:;");
exit();
}
//删除空内容文章
@@ -111,33 +111,33 @@ else if ($action == 'delnullbody') {
while ($row = $dsql->GetObject('x')) {
if (DelArc($row->aid)) $tdd++;
}
ShowMsg("成功删除 $tdd 条记录", "javascript:;");
ShowMsg("成功删除 $tdd 条记录", "javascript:;");
exit();
}
//修正缩略图错误
else if ($action == 'modddpic') {
$dsql->ExecuteNoneQuery("UPDATE `#@__archives` SET litpic='' WHERE trim(litpic)='litpic' ");
ShowMsg("成功修正缩略图错误", "javascript:;");
ShowMsg("成功修正缩略图错误", "javascript:;");
exit();
}
//批量移动
else if ($action == 'move') {
if (empty($typeid)) {
ShowMsg('该操作必须指定栏目', 'javascript:;');
ShowMsg('该操作必须指定栏目', 'javascript:;');
exit();
}
$typeold = $dsql->GetOne("SELECT * FROM #@__arctype WHERE id='$typeid'; ");
$typenew = $dsql->GetOne("SELECT * FROM #@__arctype WHERE id='$newtypeid'; ");
if (!is_array($typenew)) {
ShowMsg("无法检测移动到的新栏目的信息,不能完成操作", "javascript:;");
ShowMsg("无法检测移动到的新栏目的信息,不能完成操作", "javascript:;");
exit();
}
if ($typenew['ispart'] != 0) {
ShowMsg("您不能把数据移动到非最终列表的栏目", "javascript:;");
ShowMsg("您不能把数据移动到非最终列表的栏目", "javascript:;");
exit();
}
if ($typenew['channeltype'] != $typeold['channeltype']) {
ShowMsg("不能把数据移动到内容类型不同的栏目", "javascript:;");
ShowMsg("不能把数据移动到内容类型不同的栏目", "javascript:;");
exit();
}
$gwhere .= " And channel='".$typenew['channeltype']."' And title like '%$keyword%'";
@@ -175,12 +175,12 @@ else if ($action == 'delnulltitle') {
while ($row = $dsql->GetObject('x')) {
if (DelArc($row->id)) $tdd++;
}
ShowMsg("成功删除 $tdd 条记录", "javascript:;");
ShowMsg("成功删除 $tdd 条记录", "javascript:;");
exit();
}
//修正缩略图错误
else if ($action == 'modddpic') {
$dsql->ExecuteNoneQuery("UPDATE #@__archives SET litpic='' WHERE trim(litpic)='litpic' ");
ShowMsg("成功修正缩略图错误", "javascript:;");
ShowMsg("成功修正缩略图错误", "javascript:;");
exit();
}

+ 1
- 1
src/dede/content_list.php View File

@@ -39,7 +39,7 @@ if (TestPurview('a_List')) {;
$admin_catalog = join(',', $admin_catalogs);
$userCatalogSql = " arc.typeid IN($admin_catalog) ";
} else {
CheckCatalog($cid, '您无权浏览非指定栏目的内容');
CheckCatalog($cid, '您无权浏览非指定栏目的内容');
}
if (TestPurview('a_MyList')) $mid = $cuserLogin->getUserID();
}


+ 3
- 3
src/dede/content_sg_list.php View File

@@ -17,7 +17,7 @@ if (!isset($keyword)) $keyword = '';
if (!isset($arcrank)) $arcrank = '';
if (empty($cid) && empty($channelid)) {
ShowMsg("该页面必须指定栏目ID或内容模型ID才能浏览", "javascript:;");
ShowMsg("该页面必须指定栏目ID或内容模型ID才能浏览", "javascript:;");
exit();
}
@@ -30,7 +30,7 @@ if (TestPurview('a_List')) {
if ($cid == 0) {
$ucid = $cid = $cuserLogin->getUserChannel();
} else {
CheckCatalog($cid, "您无权浏览非指定栏目的内容");
CheckCatalog($cid, "您无权浏览非指定栏目的内容");
}
}
@@ -43,7 +43,7 @@ setcookie("ENV_GOBACK_URL", $dedeNowurl, time() + 3600, "/");
$tl = new TypeLink($cid);
$listtable = @trim($tl->TypeInfos['addtable']);
if (!empty($channelid) && !empty($ucid) && $tl->TypeInfos['channeltype'] != $channelid) {
ShowMsg('您没权限访问此页', 'javascript:;');
ShowMsg('您没权限访问此页', 'javascript:;');
exit();
}


+ 1
- 1
src/dede/content_tj.php View File

@@ -40,7 +40,7 @@ function GetArchives($dsql, $ordertype)
$dsql->Execute('ga');
while ($row = $dsql->GetObject('ga')) {
if (preg_match("#feedback#i", $ordertype)) {
$moreinfo = "[<a target='_blank' href='".$GLOBALS['cfg_phpurl']."/feedback.php?aid={$row->id}'><u>评论:{$row->scores}</u></a>]";
$moreinfo = "[<a target='_blank' href='".$GLOBALS['cfg_phpurl']."/feedback.php?aid={$row->id}'>评论:{$row->scores}</a>]";
} else {
$moreinfo = "[点击:{$row->click}]";
}


+ 1
- 1
src/dede/css/base.css
File diff suppressed because it is too large
View File


+ 5
- 5
src/dede/dialog/select_images_post.php View File

@@ -34,14 +34,14 @@ $CKEditorFuncNum = (isset($CKEditorFuncNum)) ? $CKEditorFuncNum : 1;
$imgfile_name = trim(preg_replace("#[ \r\n\t\*\%\\\/\?><\|\":]{1,}#", '', $imgfile_name));
if (!preg_match("#\.(".$cfg_imgtype.")#i", $imgfile_name)) {
ShowMsg("您所上传的图片类型不在许可列表,请更改系统对扩展名限定的配置", "-1");
ShowMsg("您所上传的图片类型不在许可列表,请更改系统对扩展名限定的配置", "-1");
exit();
}
$nowtme = time();
$sparr = array("image/pjpeg", "image/jpeg", "image/gif", "image/png", "image/xpng", "image/wbmp");
$imgfile_type = strtolower(trim($imgfile_type));
if (!in_array($imgfile_type, $sparr)) {
ShowMsg("上传的图片格式错误,请使用JPEG、GIF、PNG、WBMP格式的其中一种", "-1");
ShowMsg("上传的图片格式错误,请使用JPEG、GIF、PNG、WBMP格式的其中一种", "-1");
exit();
}
$mdir = MyDate($cfg_addon_savetype, $nowtme);
@@ -55,7 +55,7 @@ $fs = explode('.', $imgfile_name);
$filename = $filename.'.'.$fs[count($fs) - 1];
$filename_name = $filename_name.'.'.$fs[count($fs) - 1];
$fullfilename = $cfg_basedir.$activepath."/".$filename;
move_uploaded_file($imgfile, $fullfilename) or die("上传文件到 $fullfilename 失败");
move_uploaded_file($imgfile, $fullfilename) or die("上传文件到 $fullfilename 失败");
@unlink($imgfile);
if (empty($resize)) {
@@ -93,8 +93,8 @@ if ($GLOBALS['cfg_html_editor'] == 'ckeditor' && $CKUpload) {
if (!empty($noeditor)) {
ShowMsg("成功上传一幅图片", "select_images.php?imgstick=$imgstick&comeback=".urlencode($filename_name)."&v=$v&f=$f&CKEditorFuncNum=$CKEditorFuncNum&noeditor=yes&activepath=".urlencode($activepath)."/$mdir&d=".time());
ShowMsg("成功上传一幅图片", "select_images.php?imgstick=$imgstick&comeback=".urlencode($filename_name)."&v=$v&f=$f&CKEditorFuncNum=$CKEditorFuncNum&noeditor=yes&activepath=".urlencode($activepath)."/$mdir&d=".time());
} else {
ShowMsg("成功上传一幅图片", "select_images.php?imgstick=$imgstick&comeback=".urlencode($filename_name)."&v=$v&f=$f&CKEditorFuncNum=$CKEditorFuncNum&activepath=".urlencode($activepath)."/$mdir&d=".time());
ShowMsg("成功上传一幅图片", "select_images.php?imgstick=$imgstick&comeback=".urlencode($filename_name)."&v=$v&f=$f&CKEditorFuncNum=$CKEditorFuncNum&activepath=".urlencode($activepath)."/$mdir&d=".time());
}
exit();

+ 4
- 4
src/dede/dialog/select_soft.php View File

@@ -122,7 +122,7 @@ table{background:#fff}
else if ($file == "..") {
if ($activepath == "") continue;
$tmp = preg_replace("#[\/][^\/]*$#i", "", $activepath);
$line = "\n<tr height='28'>
$line = "\n<tr height='26'>
<td class='linerow'><a href='select_soft.php?f=$f&activepath=".urlencode($tmp).$addparm."'><img src='img/dir2.gif'>上级目录</a></td>
<td colspan='2' class='linerow'>当前目录:$activepath</td>
</tr>\r\n";
@@ -130,7 +130,7 @@ table{background:#fff}
} else if (is_dir("$inpath/$file")) {
if (preg_match("#^_(.*)$#i", $file)) continue;
if (preg_match("#^\.(.*)$#i", $file)) continue;
$line = "\n<tr height='28'>
$line = "\n<tr height='26'>
<td class='linerow'><a href=select_soft.php?f=$f&activepath=".urlencode("$activepath/$file").$addparm."><img src='img/dir.gif'>$file</a></td>
<td class='linerow'></td>
<td class='linerow'></td>
@@ -142,7 +142,7 @@ table{background:#fff}
$reurl = "$activeurl/$file";
$reurl = preg_replace("#^\.\.#", "", $reurl);
$reurl = $reurl;
$line = "\n<tr height='28'>
$line = "\n<tr height='26'>
<td class='linerow'><a href=\"javascript:ReturnValue('$reurl');\" $lstyle><img src='img/zip.gif'>$file</a></td>
<td class='linerow'>$filesize KB</td>
<td class='linerow'>$filetime</td>
@@ -154,7 +154,7 @@ table{background:#fff}
$reurl = "$activeurl/$file";
$reurl = preg_replace("#^\.\.#", "", $reurl);
$reurl = $reurl;
$line = "\n<tr height='28'>
$line = "\n<tr height='26'>
<td class='linerow'><a href=\"javascript:ReturnValue('$reurl');\" $lstyle><img src='img/exe.gif'>$file</a></td>
<td class='linerow'>$filesize KB</td>
<td class='linerow'>$filetime</td>


+ 5
- 5
src/dede/dialog/select_soft_post.php View File

@@ -32,7 +32,7 @@ $cfg_softtype = $cfg_softtype;
$cfg_softtype = str_replace('||', '|', $cfg_softtype);
$uploadfile_name = trim(preg_replace("#[ \r\n\t\*\%\\\/\?><\|\":]{1,}#", '', $uploadfile_name));
if (!preg_match("#\.(".$cfg_softtype.")#i", $uploadfile_name)) {
ShowMsg("您所上传的{$uploadmbtype}不在许可列表,请更改系统对扩展名限定的配置", "");
ShowMsg("您所上传的{$uploadmbtype}不在许可列表,请更改系统对扩展名限定的配置", "");
exit();
}
@@ -52,7 +52,7 @@ if (!empty($newname)) {
if (!preg_match("#\.#", $filename)) $fs = explode('.', $uploadfile_name);
else $fs = explode('.', $filename);
if (preg_match("#".$cfg_not_allowall."#", $fs[count($fs) - 1])) {
ShowMsg("您指定的文件名被系统禁止", 'javascript:;');
ShowMsg("您指定的文件名被系统禁止", 'javascript:;');
exit();
}
if (!preg_match("#\.#", $filename)) $filename = $filename.'.'.$fs[count($fs) - 1];
@@ -60,7 +60,7 @@ if (!empty($newname)) {
$filename = $cuserLogin->getUserID().'-'.dd2char(MyDate('ymdHis', $nowtme));
$fs = explode('.', $uploadfile_name);
if (preg_match("#".$cfg_not_allowall."#", $fs[count($fs) - 1])) {
ShowMsg("您上传了某些可能存在不安全因素的文件,系统拒绝操作", 'javascript:;');
ShowMsg("您上传了某些可能存在不安全因素的文件,系统拒绝操作", 'javascript:;');
exit();
}
$filename = $filename.'.'.$fs[count($fs) - 1];
@@ -68,7 +68,7 @@ if (!empty($newname)) {
$fullfilename = $cfg_basedir.$activepath.'/'.$filename;
$fullfileurl = $activepath.'/'.$filename;
move_uploaded_file($uploadfile, $fullfilename) or die("上传文件到 $fullfilename 失败");
move_uploaded_file($uploadfile, $fullfilename) or die("上传文件到 $fullfilename 失败");
@unlink($uploadfile);
if ($uploadfile_type == 'application/x-shockwave-flash') {
@@ -99,6 +99,6 @@ if ($ck == 1) {
);
echo json_encode($arr);
} else {
ShowMsg("成功上传文件", $bkurl."?comeback=".urlencode($filename)."&f=$f&CKEditorFuncNum=$CKEditorFuncNum&activepath=".urlencode($activepath)."&d=".time());
ShowMsg("成功上传文件", $bkurl."?comeback=".urlencode($filename)."&f=$f&CKEditorFuncNum=$CKEditorFuncNum&activepath=".urlencode($activepath)."&d=".time());
exit();
}

+ 4
- 4
src/dede/dialog/select_templets_post.php View File

@@ -24,7 +24,7 @@ if (!preg_match("#^text#", $uploadfile_type)) {
exit();
}
if (!preg_match("#\.(".$cfg_txttype.")#i", $uploadfile_name)) {
ShowMsg("您所上传的模板文件类型不能被识别,只允许htm、html、tpl、txt扩展名", "-1");
ShowMsg("您所上传的模板文件类型不能被识别,只允许htm、html、tpl、txt扩展名", "-1");
exit();
}
if ($filename != '') {
@@ -33,12 +33,12 @@ if ($filename != '') {
$uploadfile_name = trim(preg_replace("#[ \r\n\t\*\%\\\/\?><\|\":]{1,}#", '', $uploadfile_name));
$filename = $uploadfile_name;
if ($filename == '' || !preg_match("#\.(".$cfg_txttype.")#i", $filename)) {
ShowMsg("您所上传的文件存在问题,请检查文件类型是否适合", "-1");
ShowMsg("您所上传的文件存在问题,请检查文件类型是否适合", "-1");
exit();
}
}
$fullfilename = $cfg_basedir.$activepath."/".$filename;
move_uploaded_file($uploadfile, $fullfilename) or die("上传文件到 $fullfilename 失败");
move_uploaded_file($uploadfile, $fullfilename) or die("上传文件到 $fullfilename 失败");
@unlink($uploadfile);
ShowMsg("成功上传文件", "select_templets.php?comeback=".urlencode($filename)."&f=$f&activepath=".urlencode($activepath)."&d=".time());
ShowMsg("成功上传文件", "select_templets.php?comeback=".urlencode($filename)."&f=$f&activepath=".urlencode($activepath)."&d=".time());
exit();

+ 3
- 3
src/dede/diy_add.php View File

@@ -21,18 +21,18 @@ if (empty($action)) {
include(DEDEADMIN."/templets/diy_add.htm");
} else {
if (preg_match("#[^0-9-]#", $diyid) || empty($diyid)) {
ShowMsg("<font color=red>'自定义表单diyid'</font>必须为数字", "-1");
ShowMsg("<font color=red>'自定义表单diyid'</font>必须为数字", "-1");
exit();
}
if ($table == "") {
ShowMsg("表名不能为空", "-1");
ShowMsg("表名不能为空", "-1");
exit();
}
$public = isset($public) && is_numeric($public) ? $public : 0;
$name = dede_htmlspecialchars($name);
$row = $dsql->GetOne("SELECT * FROM #@__diyforms WHERE diyid='$diyid' OR `table` LIKE '$table' OR name LIKE '$name' ");
if (is_array($row)) {
ShowMsg("可能自定义表单的‘diyid’、‘名称’在数据库中已存在,不能重复使用", "-1");
ShowMsg("可能自定义表单的‘diyid’、‘名称’在数据库中已存在,不能重复使用", "-1");
exit();
}
$query = "SHOW TABLES FROM {$dsql->dbName} ";


+ 3
- 3
src/dede/diy_edit.php View File

@@ -25,7 +25,7 @@ if ($dopost == "save") {
$name = dede_htmlspecialchars($name);
$query = "UPDATE `#@__diyforms` SET name = '$name', listtemplate='$listtemplate', viewtemplate='$viewtemplate', posttemplate='$posttemplate', public='$public' WHERE diyid='$diyid' ";
$dsql->ExecuteNoneQuery($query);
ShowMsg("成功更改一个自定义表单", "diy_main.php");
ShowMsg("成功更改一个自定义表单", "diy_main.php");
exit();
}
/*----------------
@@ -45,7 +45,7 @@ function __Delete()
$win->AddHidden("job", "yes");
$win->AddHidden("dopost", $dopost);
$win->AddHidden("diyid", $diyid);
$win->AddTitle("将删除所有与该自定义表单相关的文件和数据<br />您确实要删除 \"".$row['name']."\" 这个自定义表单?");
$win->AddTitle("将删除所有与该自定义表单相关的文件和数据<br />您确实要删除 \"".$row['name']."\" 这个自定义表单?");
$winform = $win->GetWindow("ok");
$win->Display();
exit();
@@ -64,7 +64,7 @@ function __Delete()
//删除频道配置信息
$dsql->ExecuteNoneQuery("DELETE FROM `#@__diyforms` WHERE diyid='$diyid'");
ShowMsg("成功删除一个自定义表单", "diy_main.php");
ShowMsg("成功删除一个自定义表单", "diy_main.php");
exit();
}
}


+ 2
- 2
src/dede/diy_field_add.php View File

@@ -71,10 +71,10 @@ if ($action == 'save') {
$rs = $dsql->ExecuteNoneQuery("Update #@__diyforms set `info`='$oksetting' where diyid='$diyid' ");
if (!$rs) {
$grr = $dsql->GetError();
ShowMsg("保存节点配置出错".$grr, "javascript:;");
ShowMsg("保存节点配置出错".$grr, "javascript:;");
exit();
}
ShowMsg("成功增加一个字段", "diy_edit.php?diyid=$diyid");
ShowMsg("成功增加一个字段", "diy_edit.php?diyid=$diyid");
exit();
}


+ 3
- 3
src/dede/diy_field_edit.php View File

@@ -45,7 +45,7 @@ function _SAVE()
if ($action == 'save') {
if (!isset($fieldtypes[$dtype])) {
ShowMsg("您修改的是系统专用类型的数据,禁止操作", "-1");
ShowMsg("您修改的是系统专用类型的数据,禁止操作", "-1");
exit();
}
@@ -101,7 +101,7 @@ if ($action == 'save') {
$oksetting = $dtp->GetResultNP();
$oksetting = addslashes($oksetting);
$dsql->ExecuteNoneQuery("UPDATE #@__diyforms SET info='$oksetting' WHERE diyid='$diyid' ");
ShowMsg("成功更改一个字段的配置", "diy_edit.php?diyid={$diyid}");
ShowMsg("成功更改一个字段的配置", "diy_edit.php?diyid={$diyid}");
exit();
}
/*------------------
@@ -117,7 +117,7 @@ function _DELETE()
$oksetting = addslashes($dtp->GetResultNP());
$dsql->ExecuteNoneQuery("UPDATE #@__diyforms SET info='$oksetting' WHERE diyid='$diyid' ");
$dsql->ExecuteNoneQuery("ALTER TABLE `$trueTable` DROP `$fname` ");
ShowMsg("成功删除一个字段", "diy_edit.php?diyid=$diyid");
ShowMsg("成功删除一个字段", "diy_edit.php?diyid=$diyid");
exit();
}
require_once(DEDEADMIN."/templets/diy_field_edit.htm");

+ 1
- 1
src/dede/diy_list.php View File

@@ -80,7 +80,7 @@ if ($action == 'post') {
if (empty($do)) {
$id = isset($id) && is_numeric($id) ? $id : 0;
if (empty($id)) {
showMsg('非法操作未指定id', 'javascript:;');
showMsg('非法操作未指定id', 'javascript:;');
exit();
}
$query = "SELECT * FROM {$diy->table} WHERE id=$id";


+ 2
- 2
src/dede/erraddsave.php View File

@@ -63,7 +63,7 @@ function typename($me)
if ($dopost == "delete") {
if ($id == '') {
ShowMsg("参数无效", "-1");
ShowMsg("参数无效", "-1");
exit();
}
@@ -74,7 +74,7 @@ if ($dopost == "delete") {
$query = "DELETE FROM `#@__erradd` WHERE `id` = '$var'";
$dsql->ExecuteNoneQuery($query);
}
ShowMsg("成功删除指定的文档", "erraddsave.php");
ShowMsg("成功删除指定的文档", "erraddsave.php");
exit();
} else {
require_once(DEDEINC."/oxwindow.class.php");


+ 1
- 1
src/dede/feedback_edit.php View File

@@ -28,7 +28,7 @@ if ($dopost == 'edit') {
}
$query = "UPDATE `#@__feedback` SET username='$username',msg='$msg',ischeck=1 WHERE id=$id";
$dsql->ExecuteNoneQuery($query);
ShowMsg("成功回复一则留言", $ENV_GOBACK_URL);
ShowMsg("成功回复一则留言", $ENV_GOBACK_URL);
exit();
} elseif ($dopost === 'makehtml') {
require_once(DEDEADMIN.'/inc/inc_archives_functions.php');


+ 1
- 1
src/dede/feedback_main.php View File

@@ -36,7 +36,7 @@ function jsTrimjajx($str, $len)
if (!empty($job)) {
$ids = preg_replace("#[^0-9,]#", '', $fid);
if (empty($ids)) {
ShowMsg("您没选中任何选项", $_COOKIE['ENV_GOBACK_URL'], 0, 500);
ShowMsg("您没选中任何选项", $_COOKIE['ENV_GOBACK_URL'], 0, 500);
exit;
}
} else {


+ 8
- 8
src/dede/file_class.php View File

@@ -33,7 +33,7 @@ class FileManagement
if (($newname != $oldname) && is_writable($oldname)) {
rename($oldname, $newname);
}
ShowMsg("成功更改一个文件名", "file_manage_main.php?activepath=".$this->activeDir);
ShowMsg("成功更改一个文件名", "file_manage_main.php?activepath=".$this->activeDir);
return 0;
}
@@ -45,10 +45,10 @@ class FileManagement
if (is_writable($this->baseDir.$this->activeDir)) {
MkdirAll($dirname, $GLOBALS['cfg_dir_purview']);
CloseFtp();
ShowMsg("成功创建一个新目录", "file_manage_main.php?activepath=".$this->activeDir."/".$newdir);
ShowMsg("成功创建一个新目录", "file_manage_main.php?activepath=".$this->activeDir."/".$newdir);
return 1;
} else {
ShowMsg("创建新目录失败,因为这个位置不允许写入", "file_manage_main.php?activepath=".$this->activeDir);
ShowMsg("创建新目录失败,因为这个位置不允许写入", "file_manage_main.php?activepath=".$this->activeDir);
return 0;
}
}
@@ -80,14 +80,14 @@ class FileManagement
copy($oldfile, $truepath."/$mfile");
}
unlink($oldfile);
ShowMsg("成功移动文件", "file_manage_main.php?activepath=$mpath", 0, 1000);
ShowMsg("成功移动文件", "file_manage_main.php?activepath=$mpath", 0, 1000);
return 1;
} else {
ShowMsg("移动文件 $oldfile -&gt; $truepath/$mfile 失败,可能是某个位置权限不足", "file_manage_main.php?activepath=$mpath", 0, 1000);
ShowMsg("移动文件 $oldfile -&gt; $truepath/$mfile 失败,可能是某个位置权限不足", "file_manage_main.php?activepath=$mpath", 0, 1000);
return 0;
}
} else {
ShowMsg("对不起,您移动的路径不合法", "-1", 0, 5000);
ShowMsg("对不起,您移动的路径不合法", "-1", 0, 5000);
return 0;
}
}
@@ -157,11 +157,11 @@ class FileManagement
$this->RmDirFiles($filename);
} else {
// 完善用户体验,by:sumic
ShowMsg("系统禁止删除".$t."", "file_manage_main.php?activepath=".$this->activeDir);
ShowMsg("系统禁止删除".$t."", "file_manage_main.php?activepath=".$this->activeDir);
exit;
}
}
ShowMsg("成功删除一个".$t."", "file_manage_main.php?activepath=".$this->activeDir);
ShowMsg("成功删除一个".$t."", "file_manage_main.php?activepath=".$this->activeDir);
return 0;
}
}


+ 4
- 4
src/dede/file_manage_control.php View File

@@ -68,9 +68,9 @@ function __saveEdit();
fputs($fp, $str);
fclose($fp);
if (empty($backurl)) {
ShowMsg("成功保存一个文件", "file_manage_main.php?activepath=$activepath");
ShowMsg("成功保存一个文件", "file_manage_main.php?activepath=$activepath");
} else {
ShowMsg("成功保存文件", $backurl);
ShowMsg("成功保存文件", $backurl);
}
exit();
}
@@ -90,7 +90,7 @@ else if($fmdo=="editview")
{
$backurl = "file_manage_main.php?activepath=$activepath";
}
ShowMsg("成功保存文件",$backurl);
ShowMsg("成功保存文件",$backurl);
exit();
}
*/
@@ -126,7 +126,7 @@ else if ($fmdo == "space") {
} else {
$ecpath = $activepath;
}
$titleinfo = "目录 <a href='file_manage_main.php?activepath=$activepath'><b><u>$ecpath</u></b></a> 空间使用状况:<br/>";
$titleinfo = "目录 <a href='file_manage_main.php?activepath=$activepath'><b>$ecpath</b></a> 空间使用状况:<br/>";
$wintitle = "文件管理";
$wecome_info = "文件管理::空间大小检查 [<a href='file_manage_main.php?activepath=$activepath'>文件浏览器</a>]</a>";
$activepath = $cfg_basedir.$activepath;


+ 2
- 2
src/dede/freelist_main.php View File

@@ -68,10 +68,10 @@ function GetTagList($dsql,$pageno,$pagesize,$orderby='aid')
$start = ($pageno-1) * $pagesize;
$printhead ="<table width='98%' border='0' cellpadding='1' cellspacing='1' align='center' class='table maintable table-bordered' style='background:#cfcfcf;margin-bottom:5px;'>
<tr align='center' bgcolor='#FBFCE2'>
<td width='5%' class='tbsname'><a href='#' onclick=\"ReloadPage('aid')\"><u>ID</u></a></td>
<td width='5%' class='tbsname'><a href='#' onclick=\"ReloadPage('aid')\">ID</a></td>
<td width='20%' class='tbsname'>列表名称</td>
<td width='20%' class='tbsname'>模板文件</td>
<td width='5%' class='tbsname'><a href='#' onclick=\"ReloadPage('click')\"><u>点击</u></a></td>
<td width='5%' class='tbsname'><a href='#' onclick=\"ReloadPage('click')\">点击</a></td>
<td width='15%' class='tbsname'>创建时间</td>
<td class='tbsname'>管理</td>
</tr>\r\n";


+ 4
- 4
src/dede/friendlink_edit.php View File

@@ -24,7 +24,7 @@ if (isset($allid)) {
if ($dopost == "delete") {
$id = preg_replace("#[^0-9]#", "", $id);
$dsql->ExecuteNoneQuery("DELETE FROM `#@__flink` WHERE id='$id'");
ShowMsg("成功删除一个链接", $ENV_GOBACK_URL);
ShowMsg("成功删除一个链接", $ENV_GOBACK_URL);
exit();
} else if ($dopost == "delall") {
$aids = explode(',', $aids);
@@ -33,10 +33,10 @@ if ($dopost == "delete") {
$aid = preg_replace("#[^0-9]#", "", $aid);
$dsql->ExecuteNoneQuery("DELETE FROM `#@__flink` WHERE id='$aid'");
}
ShowMsg("成功删除指定链接", $ENV_GOBACK_URL);
ShowMsg("成功删除指定链接", $ENV_GOBACK_URL);
exit();
} else {
ShowMsg("您没选定任何链接", $ENV_GOBACK_URL);
ShowMsg("您没选定任何链接", $ENV_GOBACK_URL);
exit();
}
} else if ($dopost == "saveedit") {
@@ -61,7 +61,7 @@ if ($dopost == "delete") {
$query = "UPDATE `#@__flink` SET sortrank='$sortrank',url='$url',webname='$webname',logo='$logo',msg='$msg',
email='$email',typeid='$typeid',ischeck='$ischeck' WHERE id='$id' ";
$dsql->ExecuteNoneQuery($query);
ShowMsg("成功更改一个链接", $ENV_GOBACK_URL);
ShowMsg("成功更改一个链接", $ENV_GOBACK_URL);
exit();
}
$myLink = $dsql->GetOne("SELECT #@__flink.*,#@__flinktype.typename FROM #@__flink LEFT JOIN #@__flinktype ON #@__flink.typeid=#@__flinktype.id WHERE #@__flink.id=$id");


+ 1
- 1
src/dede/friendlink_type.php View File

@@ -36,7 +36,7 @@ if ($dopost == "save") {
$dsql->ExecuteNoneQuery($query);
}
header("Content-Type: text/html; charset={$cfg_soft_lang}");
echo "<script> alert('成功更新友情链接网站分类表'); </script>";
echo "<script> alert('成功更新友情链接网站分类表'); </script>";
}
include DedeInclude('templets/friendlink_type.htm');

+ 6
- 6
src/dede/imagecut.php View File

@@ -13,7 +13,7 @@ require_once(dirname(__FILE__).'/config.php');
$action = isset($action) ? trim($action) : '';
if (empty($action)) {
if (!@is_file($cfg_basedir.$file)) {
ShowMsg("对不起,必须选择站内的图片才能进行裁剪<br />点击'<a href='./dialog/select_images.php?f=form1.picname&imgstick=small'>站内选择</a>', 上传或选择一个图片,然后才能进行裁剪", "./dialog/select_images.php?f=form1.picname&imgstick=small", 0, 10000);
ShowMsg("对不起,必须选择站内的图片才能进行裁剪<br />点击'<a href='./dialog/select_images.php?f=form1.picname&imgstick=small'>站内选择</a>', 上传或选择一个图片,然后才能进行裁剪", "./dialog/select_images.php?f=form1.picname&imgstick=small", 0, 10000);
exit();
}
include DEDEADMIN.'/templets/imagecut.htm';
@@ -22,15 +22,15 @@ if (empty($action)) {
require_once(DEDEINC.'/image.func.php');
if (!@is_file($cfg_basedir.$file)) {
ShowMsg('对不起,请重新选择裁剪图片', '-1');
ShowMsg('对不起,请重新选择裁剪图片', '-1');
exit();
}
if (empty($width)) {
ShowMsg('对不起,请选择裁剪图片的尺寸', '-1');
ShowMsg('对不起,请选择裁剪图片的尺寸', '-1');
exit();
}
if (empty($height)) {
ShowMsg('对不起,请选择裁剪图片的尺寸', '-1');
ShowMsg('对不起,请选择裁剪图片的尺寸', '-1');
exit();
}
$imginfo = getimagesize($cfg_basedir.$file);
@@ -54,7 +54,7 @@ if (empty($action)) {
$source = imagecreatefrompng($srcFile);
break;
default:
ShowMsg('对不起,裁剪图片类型不支持请选择其他类型图片', '-1');
ShowMsg('对不起,裁剪图片类型不支持请选择其他类型图片', '-1');
break;
}
@@ -87,7 +87,7 @@ if (empty($action)) {
imagepng($thumba, $ddpicokurl);
break;
default:
ShowMsg("对不起,裁剪图片类型不支持请选择其他类型图片", "-1");
ShowMsg("对不起,裁剪图片类型不支持请选择其他类型图片", "-1");
break;
}


+ 1
- 1
src/dede/inc/inc_action_info.php View File

@@ -425,7 +425,7 @@ $actionSearch[10] = array(
),
9 => array(
'title' => '随机模板设置',
'description' => '本设置仅适用于系统默认的文章模型,设置后发布文章时会自动按指定的模板随机获取一个,如果不想使用此功能,把它设置为空即可',
'description' => '本设置仅适用于系统默认的文章模型,设置后发布文章时会自动按指定的模板随机获取一个,如果不想使用此功能,把它设置为空即可',
'purview' => 'sys_StringMix',
'linkurl' => 'article_template_rand.php'
),


+ 2
- 2
src/dede/inc/inc_archives_functions.php View File

@@ -380,7 +380,7 @@ function GetDDImage($litpic, $picname, $isremote)
$sparr = array("image/pjpeg", "image/jpeg", "image/gif", "image/png");
$_FILES[$litpic]['type'] = strtolower(trim($_FILES[$litpic]['type']));
if (!in_array($_FILES[$litpic]['type'], $sparr)) {
ShowMsg("上传的图片格式错误,请使用JPEG、GIF、PNG格式的其中一种", "-1");
ShowMsg("上传的图片格式错误,请使用JPEG、GIF、PNG格式的其中一种", "-1");
exit();
}
$savepath = $ddcfg_image_dir.'/'.MyDate($cfg_addon_savetype, $ntime);
@@ -695,7 +695,7 @@ function UploadOneImage($upname, $handurl = '', $isremote = 1, $ntitle = '')
$sparr = array("image/pjpeg", "image/jpeg", "image/gif", "image/png");
$_FILES[$upname]['type'] = strtolower(trim($_FILES[$upname]['type']));
if (!in_array($_FILES[$upname]['type'], $sparr)) {
ShowMsg("上传的图片格式错误,请使用JPEG、GIF、PNG格式的其中一种", "-1");
ShowMsg("上传的图片格式错误,请使用JPEG、GIF、PNG格式的其中一种", "-1");
exit();
}
if (!empty($handurl) && !preg_match("#^http:\/\/#i", $handurl) && file_exists($cfg_basedir.$handurl)) {


+ 1
- 1
src/dede/index_body.php View File

@@ -92,7 +92,7 @@ else if ($dopost == 'editshow') {
<input type='hidden' name='dopost' value='editsave'>
<table width="100%" border="0" cellspacing="0" cellpadding="0">
<tr>
<td height='28' background="images/tbg.gif">
<td height='26' background="images/tbg.gif">
<div style='float:left'><b>修改快捷操作项</b></div>
<div style='float:right;padding:3px 10px 0 0;'>
<a href="javascript:CloseTab('editTab')"><img src="images/close.gif" width="12" height="12" border="0"></a>


+ 2
- 2
src/dede/index_testenv.php View File

@@ -140,10 +140,10 @@ if ($rs < 0) {
$linkurl = "<a href='sys_admin_user.php' class='btn btn-success btn-sm'>马上修改</a>";
switch ($rs) {
case -1:
$msg = "没有更改默认管理员名称admin,建议您修改为其他管理账号{$linkurl}";
$msg = "没有更改默认管理员名称admin,建议您修改为其他管理账号{$linkurl}";
break;
case -2:
$msg = "没有更改默认的管理员名称和密码,强烈建议您进行更改{$linkurl}";
$msg = "没有更改默认的管理员名称和密码,强烈建议您进行更改{$linkurl}";
break;
}
$safeMsg[] = $msg;


+ 3
- 3
src/dede/js/album.js View File

@@ -11,11 +11,11 @@
function checkSubmitAlb() {
if (document.form1.title.value == '') {
ShowMsg("档案标题不能为空");
ShowMsg("档案标题不能为空");
return false;
}
if (document.form1.typeid.value == 0) {
ShowMsg("请选择档案的主类别");
ShowMsg("请选择档案的主类别");
return false;
}
document.form1.imagebody.value = $Obj('copyhtml').innerHTML;
@@ -69,7 +69,7 @@ function showZipField(formitem, zipid, upid) {
//图集,显示与隐藏Html编辑框
function showHtmlField(formitem, htmlid, upid) {
if ($Nav() != "IE") {
alert("该方法不适用于非IE浏览器");
alert("该方法不适用于非IE浏览器");
return;
}
if (formitem.checked) {


+ 2
- 2
src/dede/js/handlers.js View File

@@ -13,7 +13,7 @@ function fileQueueError(file, errorCode, message) {
var imageName = "error.gif";
var errorName = "";
if (errorCode === SWFUpload.errorCode_QUEUE_LIMIT_EXCEEDED) {
errorName = "您添加的文件超过了限制";
errorName = "您添加的文件超过了限制";
}
if (errorName !== "") {
@@ -79,7 +79,7 @@ function uploadSuccess(file, serverData) {
progress.toggleCancel(false);
} else {
addImage("images/error.gif", 0);
progress.setStatus("有错误");
progress.setStatus("有错误");
progress.toggleCancel(false);
alert(serverData);


+ 4
- 4
src/dede/js/list.js View File

@@ -12,7 +12,7 @@ function kwArc(aid){
if(aid==0) aid = getOneItem();
if(qstr=='')
{
ShowMsg('必须选择一个或多个文档');
ShowMsg('必须选择一个或多个文档');
return;
}
location="archives_do.php?aid="+aid+"&dopost=makekw&qstr="+qstr;
@@ -35,7 +35,7 @@ function moveArc(e, obj, cid){
var qstr=getCheckboxItem();
if(qstr=='')
{
ShowMsg('必须选择一个或多个文档');
ShowMsg('必须选择一个或多个文档');
return;
}
LoadQuickDiv(e, 'archives_do.php?dopost=moveArchives&qstr='+qstr+'&channelid='+cid+'&rnd='+Math.random(), 'moveArchives', '450px', '180px');
@@ -53,7 +53,7 @@ function cAtts(jname, e, obj)
var screeheight = document.body.clientHeight + 20;
if(qstr=='')
{
ShowMsg('必须选择一个或多个文档');
ShowMsg('必须选择一个或多个文档');
return;
}
LoadQuickDiv(e, 'archives_do.php?dopost=attsDlg&qstr='+qstr+'&dojob='+jname+'&rnd='+Math.random(), 'attsDlg', '450px', '160px');
@@ -85,7 +85,7 @@ function ShowMenu(evt,obj,aid,atitle)
new ContextItem("推荐文档",function(){ adArc(aid); }),
new ContextItem("删除文档",function(){ delArc(aid); }),
new ContextSeperator(),
new ContextItem("复制(<u>C</u>)",function(){ copyToClipboard(atitle); }),
new ContextItem("复制(C)",function(){ copyToClipboard(atitle); }),
new ContextItem("重载页面",function(){ location.reload(); }),
new ContextSeperator(),
new ContextItem("全部选择",function(){ selAll(); }),


+ 2
- 2
src/dede/js/main.js View File

@@ -496,7 +496,7 @@ function copyToClipboard(txt) {
try {
netscape.security.PrivilegeManager.enablePrivilege("UniversalXPConnect");
} catch (e) {
alert("被浏览器拒绝\n请在浏览器地址栏输入'about:config'并回车\n然后将'signed.applets.codebase_principal_support'设置为'true'");
alert("被浏览器拒绝\n请在浏览器地址栏输入'about:config'并回车\n然后将'signed.applets.codebase_principal_support'设置为'true'");
}
var clip = Components.classes['@mozilla.org/widget/clipboard;1'].createInstance(Components.interfaces.nsIClipboard);
if (!clip) return;
@@ -558,7 +558,7 @@ function getSelCat(targetId) {
}
}
if (selvalue == '') {
alert('你没有选中任何项目!');
alert('您没有选中任何项目');
return;
}
if (targetObj) {


+ 4
- 4
src/dede/log_edit.php View File

@@ -12,14 +12,14 @@
require_once(dirname(__FILE__)."/config.php");
CheckPurview('sys_Log');
if (empty($dopost)) {
ShowMsg("您没指定任何参数", "javascript:;");
ShowMsg("您没指定任何参数", "javascript:;");
exit();
}
//清空所有日志
if ($dopost == "clear") {
$dsql->ExecuteNoneQuery("DELETE FROM #@__log");
ShowMsg("成功清空所有日志", "log_list.php");
ShowMsg("成功清空所有日志", "log_list.php");
exit();
} else if ($dopost == "del") {
$bkurl = isset($_COOKIE['ENV_GOBACK_URL']) ? $_COOKIE['ENV_GOBACK_URL'] : "log_list.php";
@@ -34,9 +34,9 @@ if ($dopost == "clear") {
}
if ($dquery != "") $dquery = " where ".$dquery;
$dsql->ExecuteNoneQuery("DELETE FROM #@__log $dquery");
ShowMsg("成功删除指定的日志", $bkurl);
ShowMsg("成功删除指定的日志", $bkurl);
exit();
} else {
ShowMsg("无法识别您的请求", "javascript:;");
ShowMsg("无法识别您的请求", "javascript:;");
exit();
}

+ 2
- 2
src/dede/login.php View File

@@ -16,7 +16,7 @@ $gotopage = RemoveXSS($gotopage);
//检测安装目录安全性
if (is_dir(dirname(__FILE__).'/../install')) {
if (!file_exists(dirname(__FILE__).'/../install/install_lock.txt')) {
$fp = fopen(dirname(__FILE__).'/../install/install_lock.txt', 'w') or die('安装目录无写入权限,无法进行写入锁定文件,请安装完毕删除安装目录');
$fp = fopen(dirname(__FILE__).'/../install/install_lock.txt', 'w') or die('安装目录无写入权限,无法进行写入锁定文件,请安装完毕删除安装目录');
fwrite($fp, 'ok');
fclose($fp);
}
@@ -39,7 +39,7 @@ require_once(DEDEDATA.'/admin/config_update.php');
//检测后台目录是否更名
$cururl = GetCurUrl();
if (preg_match('/dede\/login/i', $cururl)) {
$redmsg = '<div class="alert alert-warning" role="alert"><div class=\"safe-tips\">您的管理目录的名称中包含默认名称dede,建议在FTP里把它修改为其它名称,那样会更安全</div></div>';
$redmsg = '<div class="alert alert-warning" role="alert"><div class=\"safe-tips\">您的管理目录的名称中包含默认名称dede,建议在FTP里把它修改为其它名称,那样会更安全</div></div>';
} else {
$redmsg = '';
}


+ 1
- 1
src/dede/mail_file_manage.php View File

@@ -8,7 +8,7 @@ if($fmdo=="del")
$filename = $cfg_basedir.$activepath."/$filename";
@unlink($filename);
$t="文件";
ShowMsg("成功删除一个".$t."","mail_file_manage.php");
ShowMsg("成功删除一个".$t."","mail_file_manage.php");
}else{
if(!isset($activepath)){
$activepath=$cfg_cmspath;


+ 5
- 5
src/dede/mail_title.php View File

@@ -48,10 +48,10 @@ if($dopost=="add"){
$mid=$cuserLogin->getUserID();
$query = "INSERT INTO #@__mail_title (period,typeid,title,content,addtime,sendtime,writer,mid,state,count) VALUES ('$period','$typeid','$title','$message','$addtime',0,'$writer','$mid',0,0)";
if(!$dsql->ExecuteNoneQuery($query)){
ShowMsg("更新数据库#@__mail_title表时出错,请检查","javascript:;");
ShowMsg("更新数据库#@__mail_title表时出错,请检查","javascript:;");
exit();
}else{
ShowMsg("发表期刊成功","mail_title.php");
ShowMsg("发表期刊成功","mail_title.php");
exit();
}
}elseif($dopost=="editsave"){
@@ -76,15 +76,15 @@ if($dopost=="add"){
$query = "UPDATE #@__mail_title SET period='$period',typeid='$typeid',title='$title',content='$message',writer='$writer',mid='$mid' WHERE id=$id";
if(!$dsql->ExecuteNoneQuery($query)){
ShowMsg("更新数据库#@__mail_title表时出错,请检查","javascript:;");
ShowMsg("更新数据库#@__mail_title表时出错,请检查","javascript:;");
exit();
}else{
ShowMsg("编辑期刊成功","mail_title.php");
ShowMsg("编辑期刊成功","mail_title.php");
exit();
}
}elseif($dopost=="delete"){
$dsql->ExecuteNoneQuery("Delete From `#@__mail_title` where id='$id'");
ShowMsg("删除期刊成功","mail_title.php");
ShowMsg("删除期刊成功","mail_title.php");
exit();
}else{


+ 5
- 5
src/dede/mail_type.php View File

@@ -19,10 +19,10 @@ if($dopost=="add"){
$query = "INSERT INTO #@__mail_type (typename,description) VALUES ('$typename','$description')";
if(!$dsql->ExecuteNoneQuery($query)){
ShowMsg("更新数据库#@__mail_type表时出错,请检查","javascript:;");
ShowMsg("更新数据库#@__mail_type表时出错,请检查","javascript:;");
exit();
}else{
ShowMsg("添加分类成功","mail_type.php");
ShowMsg("添加分类成功","mail_type.php");
exit();
}
}elseif($dopost=="editsave"){
@@ -35,15 +35,15 @@ if($dopost=="add"){
$query = "UPDATE #@__mail_type SET typename='$typename',description='$description' WHERE id=$id";
if(!$dsql->ExecuteNoneQuery($query)){
ShowMsg("更新数据库#@__mail_type表时出错,请检查","javascript:;");
ShowMsg("更新数据库#@__mail_type表时出错,请检查","javascript:;");
exit();
}else{
ShowMsg("更改分类成功","mail_type.php");
ShowMsg("更改分类成功","mail_type.php");
exit();
}
}elseif($dopost=="delete"){
$dsql->ExecuteNoneQuery("Delete From `#@__mail_type` where id='$id'");
ShowMsg("删除分类成功","mail_type.php");
ShowMsg("删除分类成功","mail_type.php");
exit();
}else{
$sql = "SELECT * FROM `#@__mail_type` ORDER BY id ";


+ 7
- 7
src/dede/makehtml_all.php View File

@@ -28,7 +28,7 @@ if ($action == '') {
$starttime = GetMkTime($starttime);
$mkvalue = ($uptype == 'time' ? $starttime : $startid);
OptimizeData($dsql);
ShowMsg("完成数据优化,现在开始更新文档", "makehtml_all.php?action=make&step=2&uptype=$uptype&mkvalue=$mkvalue");
ShowMsg("完成数据优化,现在开始更新文档", "makehtml_all.php?action=make&step=2&uptype=$uptype&mkvalue=$mkvalue");
exit();
}
//更新文档
@@ -57,7 +57,7 @@ if ($action == '') {
} else {
if (file_exists($homeFile)) echo "启用静态生成,建议删除"+$homeFile;
}
ShowMsg("完成更新所有文档,现在开始更新栏目页", "makehtml_all.php?action=make&step=4&uptype=$uptype&mkvalue=$mkvalue");
ShowMsg("完成更新所有文档,现在开始更新栏目页", "makehtml_all.php?action=make&step=4&uptype=$uptype&mkvalue=$mkvalue");
exit();
}
//更新栏目
@@ -69,7 +69,7 @@ if ($action == '') {
$adminID = $cuserLogin->getUserID();
$mkcachefile = DEDEDATA."/mkall_cache_{$adminID}.php";
if ($uptype == 'all' || empty($mkvalue)) {
ShowMsg("不需要进行初处理,现更新所有栏目", "makehtml_list_action.php?gotype=mkallct");
ShowMsg("不需要进行初处理,现更新所有栏目", "makehtml_list_action.php?gotype=mkallct");
exit();
} else {
if ($uptype == 'time') {
@@ -96,7 +96,7 @@ if ($action == '') {
}
}
}
$fp = fopen($mkcachefile, 'w') or die("无法写入缓存文件:{$mkcachefile} 所以无法更新栏目");
$fp = fopen($mkcachefile, 'w') or die("无法写入缓存文件:{$mkcachefile} 所以无法更新栏目");
if (count($typeidsok) > 0) {
fwrite($fp, "<"."?php\r\n");
$i = -1;
@@ -108,11 +108,11 @@ if ($action == '') {
}
fwrite($fp, "?".">");
fclose($fp);
ShowMsg("完成栏目缓存处理,现转向更新栏目", "makehtml_list_action.php?gotype=mkall");
ShowMsg("完成栏目缓存处理,现转向更新栏目", "makehtml_list_action.php?gotype=mkall");
exit();
} else {
fclose($fp);
ShowMsg("没有可更新的栏目,现在作最后数据优化", "makehtml_all.php?action=make&step=10");
ShowMsg("没有可更新的栏目,现在作最后数据优化", "makehtml_all.php?action=make&step=10");
exit();
}
}
@@ -124,7 +124,7 @@ if ($action == '') {
$mkcachefile = DEDEDATA."/mkall_cache_{$adminID}.php";
@unlink($mkcachefile);
OptimizeData($dsql);
ShowMsg("完成所有文件的更新", "javascript:;");
ShowMsg("完成所有文件的更新", "javascript:;");
exit();
} //make step


+ 1
- 1
src/dede/makehtml_archives_action.php View File

@@ -118,7 +118,7 @@ if ($tjnum < $totalnum) {
ShowMsg("生成文件:$totalnum 总用时:{$ttime} 分钟,现转向当前栏目更新&gt;&gt;", "makehtml_list_action.php?typeid=$typeid&uptype=all&maxpagesize=50&upnext=1");
} else {
if ($uptype == '') {
ShowMsg("完成所有创建任务,生成文件:$totalnum 总用时:{$ttime} 分钟。", "javascript:;");
ShowMsg("完成所有创建任务,生成文件:$totalnum 总用时:{$ttime} 分钟。", "javascript:;");
} else {
ShowMsg("完成文档HTML更新任务,现在开始进行主页更新...", "makehtml_all.php?action=make&step=3&uptype=$uptype&mkvalue=$mkvalue");
}


+ 3
- 3
src/dede/makehtml_freelist_action.php View File

@@ -29,7 +29,7 @@ $totalpage = count($idArray);
if (isset($idArray[$pageno])) {
$lid = $idArray[$pageno];
} else {
ShowMsg("完成所有文件创建", 'javascript:;');
ShowMsg("完成所有文件创建", 'javascript:;');
exit();
}
$lv = new FreeList($lid);
@@ -52,11 +52,11 @@ if ($ntotalpage <= $maxpagesize) {
$lv->Close();
$nextpage = $pageno + 1;
if ($nextpage == $totalpage) {
ShowMsg("完成所有文件创建", 'javascript:;');
ShowMsg("完成所有文件创建", 'javascript:;');
} else {
if ($finishType) {
$gourl = "makehtml_freelist_action.php?maxpagesize=$maxpagesize&startid=$startid&endid=$endid&pageno=$nextpage";
ShowMsg("成功创建列表:".$tid.",继续进行操作", $gourl, 0, 100);
ShowMsg("成功创建列表:".$tid.",继续进行操作", $gourl, 0, 100);
} else {
$gourl = "makehtml_freelist_action.php?mkpage=$mkpage&maxpagesize=$maxpagesize&startid=$startid&endid=$endid&pageno=$pageno";
ShowMsg("列表:".$tid.",继续进行操作...", $gourl, 0, 100);


+ 3
- 3
src/dede/makehtml_js_action.php View File

@@ -21,14 +21,14 @@ if ($uptype == "all") {
$row = $dsql->GetOne("SELECT id FROM `#@__arctype` WHERE id>'$typeid' AND ispart<>2 ORDER BY id ASC LIMIT 0,1;");
if (!is_array($row)) {
echo "<link rel=\"stylesheet\" href=\"{$cfg_cmsurl}/static/css/bootstrap.min.css\"><style>.modal {position: static;}</style>";
echo "<div class=\"alert alert-success\" role=\"alert\">完成所有文件更新</div>";
echo "<div class=\"alert alert-success\" role=\"alert\">完成所有文件更新</div>";
exit();
} else {
$pv = new PartView($row['id']);
$pv->SetTemplet($cfg_basedir.$cfg_templets_dir."/".$templet);
$pv->SaveToHtml($cfg_basedir.$cfg_cmspath."/data/js/".$row['id'].".js", 0);
$typeid = $row['id'];;
ShowMsg("成功更新".$cfg_cmspath."/data/js/".$row['id'].".js,继续进行操作", "makehtml_js_action.php?typeid=$typeid", 0, 100);
ShowMsg("成功更新".$cfg_cmspath."/data/js/".$row['id'].".js,继续进行操作", "makehtml_js_action.php?typeid=$typeid", 0, 100);
exit();
}
} else {
@@ -36,7 +36,7 @@ if ($uptype == "all") {
$pv->SetTemplet($cfg_basedir.$cfg_templets_dir."/".$templet);
$pv->SaveToHtml($cfg_basedir.$cfg_cmspath."/data/js/".$typeid.".js", 0);
echo "<link rel=\"stylesheet\" href=\"{$cfg_cmsurl}/static/css/bootstrap.min.css\"><style>.modal {position: static;}</style>";
echo "<div class=\"alert alert-success\" role=\"alert\">成功更新".$cfg_cmspath."/data/js/".$typeid.".js";
echo "<div class=\"alert alert-success\" role=\"alert\">成功更新".$cfg_cmspath."/data/js/".$typeid.".js";
echo "预览:</div>";
echo "<hr>";
echo "<script src='".$cfg_cmspath."/data/js/".$typeid.".js'></script>";


+ 5
- 5
src/dede/makehtml_list_action.php View File

@@ -52,10 +52,10 @@ if (isset($idArray[$pageno])) {
$tid = $idArray[$pageno];
} else {
if ($gotype == '') {
ShowMsg("完成所有列表更新", "javascript:;");
ShowMsg("完成所有列表更新", "javascript:;");
exit();
} else if ($gotype == 'mkall' || $gotype == 'mkallct') {
ShowMsg("完成所有栏目列表更新,现在作最后数据优化", "makehtml_all.php?action=make&step=10");
ShowMsg("完成所有栏目列表更新,现在作最后数据优化", "makehtml_all.php?action=make&step=10");
exit();
}
}
@@ -103,16 +103,16 @@ if ($nextpage >= $totalpage && $finishType) {
if (empty($reurl)) {
$reurl = '../plus/list.php?tid='.$tid;
}
ShowMsg("完成所有栏目列表更新<a href='$reurl' target='_blank'>浏览栏目</a>", "javascript:;");
ShowMsg("完成所有栏目列表更新<a href='$reurl' target='_blank'>浏览栏目</a>", "javascript:;");
exit();
} else if ($gotype == 'mkall' || $gotype == 'mkallct') {
ShowMsg("完成所有栏目列表更新,现在作最后数据优化", "makehtml_all.php?action=make&step=10");
ShowMsg("完成所有栏目列表更新,现在作最后数据优化", "makehtml_all.php?action=make&step=10");
exit();
}
} else {
if ($finishType) {
$gourl = "makehtml_list_action.php?gotype={$gotype}&uppage=$uppage&maxpagesize=$maxpagesize&typeid=$typeid&pageno=$nextpage";
ShowMsg("成功创建栏目:".$tid.",继续进行操作", $gourl, 0, 100);
ShowMsg("成功创建栏目:".$tid.",继续进行操作", $gourl, 0, 100);
exit();
} else {
$gourl = "makehtml_list_action.php?gotype={$gotype}&uppage=$uppage&mkpage=$mkpage&maxpagesize=$maxpagesize&typeid=$typeid&pageno=$pageno";


+ 2
- 2
src/dede/makehtml_rss_action.php View File

@@ -19,10 +19,10 @@ if (empty($maxrecord)) $maxrecord = 50;
$row = $dsql->GetOne("SELECT id FROM `#@__arctype` WHERE id>'$tid' AND ispart<>2 ORDER BY id ASC LIMIT 0,1;");
if (!is_array($row)) {
echo "<link rel=\"stylesheet\" href=\"{$cfg_cmsurl}/static/css/bootstrap.min.css\"><style>.modal {position: static;}</style>";
echo "<div class=\"alert alert-success\" role=\"alert\">完成所有文件更新</div>";
echo "<div class=\"alert alert-success\" role=\"alert\">完成所有文件更新</div>";
} else {
$rv = new RssView($row['id'], $maxrecord);
$rssurl = $rv->MakeRss(0);
$tid = $row['id'];
ShowMsg("成功更新".$rssurl.",继续进行操作", "makehtml_rss_action.php?tid=$tid&maxrecord=$maxrecord", 0, 100);
ShowMsg("成功更新".$rssurl.",继续进行操作", "makehtml_rss_action.php?tid=$tid&maxrecord=$maxrecord", 0, 100);
}

+ 1
- 1
src/dede/makehtml_spec.php View File

@@ -18,7 +18,7 @@ if ($dopost == "ok") {
$sp = new SpecView();
$rurl = $sp->MakeHtml(0);
echo "<link rel=\"stylesheet\" href=\"{$cfg_cmsurl}/static/css/bootstrap.min.css\"><style>.modal {position: static;}</style>";
echo "<div class=\"alert alert-success\" role=\"alert\">成功生成所有专题HTML列表<a href='$rurl' target='_blank' class='btn btn-success'>预览</a></div>";
echo "<div class=\"alert alert-success\" role=\"alert\">成功生成所有专题HTML列表<a href='$rurl' target='_blank' class='btn btn-success'>预览</a></div>";
exit();
}
include DedeInclude('templets/makehtml_spec.htm');

+ 4
- 4
src/dede/makehtml_taglist_action.php View File

@@ -41,7 +41,7 @@ if ($upall == 1 && $ctagid == 0) {

if ($ctagid == 0 && $allfinish) {
$reurl = '../a/tags/';
ShowMsg("完成TAG更新<a href='$reurl' target='_blank'>浏览TAG首页</a>", "javascript:;");
ShowMsg("完成TAG更新<a href='$reurl' target='_blank'>浏览TAG首页</a>", "javascript:;");
exit;
}

@@ -72,7 +72,7 @@ if (is_array($tag) && count($tag) > 0) {
$dlist->MakeHtml(1, 10);
$reurl = '../a/tags/';
if ($upall == 1) {
ShowMsg("完成TAG更新<a href='$reurl' target='_blank'>浏览TAG首页</a>", "javascript:;");
ShowMsg("完成TAG更新<a href='$reurl' target='_blank'>浏览TAG首页</a>", "javascript:;");
} else {
$query = "UPDATE `#@__tagindex` SET mktime=uptime WHERE id='$ctagid' ";
$dsql->ExecuteNoneQuery($query);
@@ -82,7 +82,7 @@ if (is_array($tag) && count($tag) > 0) {
}

$reurl .= $tag['tag_pinyin'];
ShowMsg("完成TAG更新:[".$tag['tag']."]<a href='$reurl' target='_blank'>浏览TAG首页</a>", "javascript:;");
ShowMsg("完成TAG更新:[".$tag['tag']."]<a href='$reurl' target='_blank'>浏览TAG首页</a>", "javascript:;");
}
exit();
} else {
@@ -95,7 +95,7 @@ if (is_array($tag) && count($tag) > 0) {
$nextpage = 0;
}
$gourl = "makehtml_taglist_action.php?maxpagesize=$maxpagesize&tagid=$tagid&pageno=$nextpage&upall=$upall&ctagid=$ctagid";
ShowMsg("成功生成TAG:[".$tag['tag']."],继续进行操作", $gourl, 0, 100);
ShowMsg("成功生成TAG:[".$tag['tag']."],继续进行操作", $gourl, 0, 100);
exit();
} else {
// 继续当前这个


+ 7
- 7
src/dede/mda_main.php View File

@@ -83,7 +83,7 @@ function __link(){ }
-------------------------------*/
if ($dopost == 'place' or $dopost == 'report' or $dopost == 'account' or $dopost == 'setting') {
if (!mda_islogin()) {
ShowMsg("您尚未登录德得广告,请先登录后继续使用……", '?dopost=login');
ShowMsg("您尚未登录德得广告,请先登录后继续使用……", '?dopost=login');
exit();
}
mda_check_islogin();
@@ -161,7 +161,7 @@ function __bind_user(){ }
$domain = isset($domain) ? $domain : '';
$channel_name = isset($channel_name) ? $channel_name : '';
if (!$email or !$pwd or !$domain or !$channel_name) {
ShowMsg("填写正确的账号信息", -1);
ShowMsg("填写正确的账号信息", -1);
exit();
}
if ($cfg_soft_lang == 'gb2312') $channel_name = gb2utf8($channel_name);
@@ -173,7 +173,7 @@ function __bind_user(){ }
);
$rs = json_decode(mda_http_send(MDA_API_BIND_USER, 0, $paramsArr), TRUE);
if (!$rs) {
ShowMsg("请求API错误,请重试", -1);
ShowMsg("请求API错误,请重试", -1);
exit();
}
if ($rs['code'] != 0) {
@@ -272,7 +272,7 @@ function __main(){ }
</td>
</tr>
<tr>
<td height="30" colspan="2">您已成功登录德得广告您可以进行以下操作:</td>
<td height="30" colspan="2">您已成功登录德得广告您可以进行以下操作:</td>
</tr>
<tr>
<td height="30" colspan="2">
@@ -328,7 +328,7 @@ EOT;
);
$rs = json_decode(mda_http_send(MDA_API_LOGIN, 0, $paramsArr), TRUE);
if (!$rs) {
ShowMsg("请求API错误,请重试", -1);
ShowMsg("请求API错误,请重试", -1);
exit();
}
if ($rs['code'] != 0) {
@@ -336,7 +336,7 @@ EOT;
exit();
}
if ($rs['code'] == 0) {
ShowMsg("Channel Secret 修改成功……", '?dopost=main');
ShowMsg("Channel Secret 修改成功……", '?dopost=main');
mda_set_setting('channel_secret', $channel_secret);
}
}
@@ -417,7 +417,7 @@ function __index(){ }
</tr>
<tr>
<td colspan='2' bgcolor='#F9FCEF'><table width='270' border='0' cellpadding='0' cellspacing='0'>
<tr align='center' height='28'>
<tr align='center' height='26'>
<td width='90'><input name='imageField1' type='image' class='np' src='{$cfg_plus_dir}/img/button_ok.gif' width='60' height='22' border='0' /></td>
<td width='90'></td>
<td></td>


+ 2
- 2
src/dede/media_add.php View File

@@ -62,7 +62,7 @@ if ($dopost == "upload") {
漏洞描述:dedecms早期版本后台存在大量的富文本编辑器,该控件提供了一些文件上传接口,同时dedecms对上传文件的后缀类型未进行严格的限制,这导致了黑客可以上传WEBSHELL,获取网站后台权限。
*/
if (preg_match('#\.(php|pl|cgi|asp|aspx|jsp|php5|php4|php3|shtm|shtml)[^a-zA-Z0-9]+$#i', trim($filename))) {
ShowMsg("您指定的文件名被系统禁止", "javascript:;");
ShowMsg("您指定的文件名被系统禁止", "javascript:;");
exit();
}
$fullfilename = $cfg_basedir.$filename;
@@ -87,7 +87,7 @@ if ($dopost == "upload") {
$dsql->ExecuteNoneQuery($inquery);
}
}
ShowMsg("成功上传 {$okdd} 个文件", "media_main.php");
ShowMsg("成功上传 {$okdd} 个文件", "media_main.php");
exit();
}
include DedeInclude('templets/media_add.htm');

+ 9
- 9
src/dede/media_edit.php View File

@@ -34,7 +34,7 @@ if ($dopost == 'del') {
$rs = @unlink($truefile);
}
if ($rs == 1) {
$msg = "成功删除一个附件";
$msg = "成功删除一个附件";
$dsql->ExecuteNoneQuery("DELETE FROM `#@__uploads` WHERE aid='".$aid."'");
}
ShowMsg($msg, $backurl);
@@ -64,7 +64,7 @@ if ($dopost == 'del') {
$dsql->ExecuteNoneQuery("DELETE FROM `#@__uploads` WHERE aid='".$myrow['aid']."'");
}
}
ShowMsg('成功删除选定的文件', $backurl);
ShowMsg('成功删除选定的文件', $backurl);
exit();
}
}
@@ -85,27 +85,27 @@ function __save_edit() //保存更改
if ($mediatype == 1) {
$sparr = array("image/pjpeg", "image/jpeg", "image/gif", "image/png", "image/xpng", "image/wbmp");
if (!in_array($upfile_type, $sparr)) {
ShowMsg("您上传的不是图片类型的文件", "javascript:history.go(-1);");
ShowMsg("您上传的不是图片类型的文件", "javascript:history.go(-1);");
exit();
}
} else if ($mediatype == 2) {
$sparr = array("application/x-shockwave-flash");
if (!in_array($upfile_type, $sparr)) {
ShowMsg("您上传的不是Flash类型的文件", "javascript:history.go(-1);");
ShowMsg("您上传的不是Flash类型的文件", "javascript:history.go(-1);");
exit();
}
} else if ($mediatype == 3) {
if (!preg_match('#audio|media|video#i', $upfile_type)) {
ShowMsg("您上传的为不正确类型的影音文件", "javascript:history.go(-1);");
ShowMsg("您上传的为不正确类型的影音文件", "javascript:history.go(-1);");
exit();
}
if (!preg_match("#\.".$cfg_mediatype."#", $upfile_name)) {
ShowMsg("您上传的影音文件扩展名无法被识别,请更改系统配置的参数", "javascript:history.go(-1);");
ShowMsg("您上传的影音文件扩展名无法被识别,请更改系统配置的参数", "javascript:history.go(-1);");
exit();
}
} else {
if (!preg_match("#\.".$cfg_softtype."#", $upfile_name)) {
ShowMsg("您上传的附件扩展名无法被识别,请更改系统配置的参数", "javascript:history.go(-1);");
ShowMsg("您上传的附件扩展名无法被识别,请更改系统配置的参数", "javascript:history.go(-1);");
exit();
}
}
@@ -151,14 +151,14 @@ function __save_edit() //保存更改
$query = " UPDATE #@__uploads SET title='$title',mediatype='$mediatype',playtime='$playtime'";
$query .= "$addquery WHERE aid='$aid' ";
$dsql->ExecuteNoneQuery($query);
ShowMsg('成功更改一则附件数据', 'media_edit.php?aid='.$aid);
ShowMsg('成功更改一则附件数据', 'media_edit.php?aid='.$aid);
exit();
}

//读取档案信息
$myrow = $dsql->GetOne("SELECT * FROM #@__uploads WHERE aid='".$aid."'");
if (!is_array($myrow)) {
ShowMsg('错误,找不到此编号的档案', 'javascript:;');
ShowMsg('错误,找不到此编号的档案', 'javascript:;');
exit();
}
include DedeInclude('templets/media_edit.htm');

+ 13
- 13
src/dede/member_do.php View File

@@ -25,7 +25,7 @@ if ($dopost == "delmember") {
$id = preg_replace("#[^0-9]#", '', $id);
$safecodeok = substr(md5($cfg_cookie_encode.$randcode), 0, 24);
if ($safecodeok != $safecode) {
ShowMsg("请填写正确的安全验证串", "member_do.php?id={$id}&dopost=delmember");
ShowMsg("请填写正确的安全验证串", "member_do.php?id={$id}&dopost=delmember");
exit();
}
if (!empty($id)) {
@@ -54,11 +54,11 @@ if ($dopost == "delmember") {
$dsql->ExecuteNoneQuery("DELETE FROM `#@__feedback` WHERE mid='$id' ");
$dsql->ExecuteNoneQuery("UPDATE `#@__archives` SET mid='0' WHERE mid='$id'");
} else {
ShowMsg("无法删除此会员,如果这个会员是<b>[管理员]</b>,<br />必须先删除这个<b>[管理员]</b>才能删除此帐号", $ENV_GOBACK_URL, 0, 5000);
ShowMsg("无法删除此会员,如果这个会员是<b>[管理员]</b>,<br />必须先删除这个<b>[管理员]</b>才能删除此帐号", $ENV_GOBACK_URL, 0, 5000);
exit();
}
}
ShowMsg("成功删除一个会员", $ENV_GOBACK_URL);
ShowMsg("成功删除一个会员", $ENV_GOBACK_URL);
exit();
}
$randcode = mt_rand(10000, 99999);
@@ -81,7 +81,7 @@ if ($dopost == "delmember") {
if ($fmdo == 'yes') {
$safecodeok = substr(md5($cfg_cookie_encode.$randcode), 0, 24);
if ($safecodeok != $safecode) {
ShowMsg("请填写正确的安全验证串", "member_do.php?id={$id}&dopost=delmembers");
ShowMsg("请填写正确的安全验证串", "member_do.php?id={$id}&dopost=delmembers");
exit();
}
if (!empty($id)) {
@@ -103,11 +103,11 @@ if ($dopost == "delmember") {
$dsql->ExecuteNoneQuery("DELETE FROM `#@__feedback` WHERE mid IN (".str_replace("`", ",", $id).") ");
$dsql->ExecuteNoneQuery("UPDATE `#@__archives` SET mid='0' WHERE mid IN (".str_replace("`", ",", $id).")");
} else {
ShowMsg("无法删除此会员,如果这个会员是管理员关连的ID,<br />必须先删除这个管理员才能删除此帐号", $ENV_GOBACK_URL, 0, 3000);
ShowMsg("无法删除此会员,如果这个会员是管理员关连的ID,<br />必须先删除这个管理员才能删除此帐号", $ENV_GOBACK_URL, 0, 3000);
exit();
}
}
ShowMsg("成功删除这些会员", $ENV_GOBACK_URL);
ShowMsg("成功删除这些会员", $ENV_GOBACK_URL);
exit();
}
$randcode = mt_rand(10000, 99999);
@@ -134,11 +134,11 @@ function __Recommend()
$id = preg_replace("#[^0-9]#", "", $id);
if ($matt == 0) {
$dsql->ExecuteNoneQuery("UPDATE `#@__member` SET matt=1 WHERE mid='$id' AND matt<>10 LIMIT 1");
ShowMsg("成功设置一个会员推荐", $ENV_GOBACK_URL);
ShowMsg("成功设置一个会员推荐", $ENV_GOBACK_URL);
exit();
} else {
$dsql->ExecuteNoneQuery("UPDATE `#@__member` SET matt=0 WHERE mid='$id' AND matt<>10 LIMIT 1");
ShowMsg("成功取消一个会员推荐", $ENV_GOBACK_URL);
ShowMsg("成功取消一个会员推荐", $ENV_GOBACK_URL);
exit();
}
}
@@ -153,7 +153,7 @@ function __EditUser()
$uptime = GetMkTime($uptime);
if ($matt == 10 && $oldmatt != 10) {
ShowMsg("对不起,为安全起见,不支持直接把前台会员转为管理的操作", "-1");
ShowMsg("对不起,为安全起见,不支持直接把前台会员转为管理的操作", "-1");
exit();
}
$query = "UPDATE `#@__member` SET
@@ -186,7 +186,7 @@ function __EditUser()
$rs = $dsql->ExecuteNoneQuery2($query);
}
ShowMsg('成功更改会员资料', 'member_view.php?id='.$id);
ShowMsg('成功更改会员资料', 'member_view.php?id='.$id);
exit();
}
/*--------------
@@ -206,7 +206,7 @@ function __LoginCP()
$query = "DELETE FROM `#@__member_operation` WHERE aid = '$var'";
$dsql->ExecuteNoneQuery($query);
}
ShowMsg("删除成功", "member_operations.php");
ShowMsg("删除成功", "member_operations.php");
exit();
}
} else if ($dopost == "upoperations") {
@@ -216,7 +216,7 @@ function __LoginCP()
foreach ($nid as $var) {
$query = "UPDATE `#@__member_operation` SET sta = '1' WHERE aid = '$var'";
$dsql->ExecuteNoneQuery($query);
ShowMsg("设置成功", "member_operations.php");
ShowMsg("设置成功", "member_operations.php");
exit();
}
}
@@ -227,7 +227,7 @@ function __LoginCP()
foreach ($nid as $var) {
$query = "UPDATE `#@__member_operation` SET sta = '2' WHERE aid = '$var'";
$dsql->ExecuteNoneQuery($query);
ShowMsg("设置成功", "member_operations.php");
ShowMsg("设置成功", "member_operations.php");
exit();
}
}


+ 5
- 5
src/dede/member_pmone.php View File

@@ -18,11 +18,11 @@ function CheckUserID($uid, $msgtitle = '用户名', $ckhas = true)
if ($cfg_mb_notallow != '') {
$nas = explode(',', $cfg_mb_notallow);
if (in_array($uid, $nas)) {
return $msgtitle.'为系统禁止的标识';
return $msgtitle.'为系统禁止的标识';
}
}
if ($cfg_md_idurl == 'Y' && preg_match("#[^a-z0-9]#i", $uid)) {
return $msgtitle.'必须由英文字母或数字组成';
return $msgtitle.'必须由英文字母或数字组成';
}
if ($cfg_soft_lang == 'utf-8') $ck_uid = utf82gb($uid);
@@ -33,17 +33,17 @@ function CheckUserID($uid, $msgtitle = '用户名', $ckhas = true)
if (isset($ck_uid[$i + 1]) && ord($ck_uid[$i + 1]) > 0x40) {
$i++;
} else {
return $msgtitle.'可能含有乱码,建议您改用英文字母和数字组合';
return $msgtitle.'可能含有乱码,建议您改用英文字母和数字组合';
}
} else {
if (preg_match("#[^0-9a-z@\.-]i#", $ck_uid[$i])) {
return $msgtitle.'不能含有 [@]、[.]、[-]以外的特殊符号';
return $msgtitle.'不能含有 [@]、[.]、[-]以外的特殊符号';
}
}
}
if ($ckhas) {
$row = $dsql->GetOne("SELECT * FROM `#@__member` WHERE userid LIKE '$uid' ");
if (is_array($row)) return $msgtitle."已经存在";
if (is_array($row)) return $msgtitle."已经存在";
}
return 'ok';
}


+ 2
- 2
src/dede/member_rank.php View File

@@ -39,11 +39,11 @@ if ($dopost == 'save') {
$dsql->ExecuteNoneQuery($inquery);
}
}
echo "<script> alert('成功更新会员等级表'); </script>";
echo "<script> alert('成功更新会员等级表'); </script>";
}
if ($dopost == 'del') {
$dsql->ExecuteNoneQuery("DELETE FROM `#@__arcrank` WHERE id='$id' AND rank<>10");
ShowMsg("删除成功", "member_rank.php");
ShowMsg("删除成功", "member_rank.php");
exit();
}


+ 4
- 4
src/dede/member_toadmin.php View File

@@ -23,12 +23,12 @@ function __Toadmin()
if ($dopost == "toadmin") {
$pwd = trim($pwd);
if ($pwd != '' && preg_match("#[^0-9a-zA-Z_@!\.-]#", $pwd)) {
ShowMsg('密码不合法,请使用[0-9a-zA-Z_@!.-]内的字符', '-1', 0, 3000);
ShowMsg('密码不合法,请使用[0-9a-zA-Z_@!.-]内的字符', '-1', 0, 3000);
exit();
}
$safecodeok = substr(md5($cfg_cookie_encode.$randcode), 0, 24);
if ($safecodeok != $safecode) {
ShowMsg("请填写正确的安全验证串", "member_toadmin.php?id={$id}");
ShowMsg("请填写正确的安全验证串", "member_toadmin.php?id={$id}");
exit();
}
$pwdm = '';
@@ -46,7 +46,7 @@ if ($dopost == "toadmin") {
}
$typeids = (empty($typeids)) ? "" : $typeids;
if ($typeids == '') {
ShowMsg("请为该管理员指定管理栏目", "member_toadmin.php?id={$id}");
ShowMsg("请为该管理员指定管理栏目", "member_toadmin.php?id={$id}");
exit();
}
$typeid = join(',', $typeids);
@@ -70,7 +70,7 @@ if ($dopost == "toadmin") {
$inquery = "INSERT INTO `#@__member_pms` (`floginid`,`fromid`,`toid`,`tologinid`,`folder`,`subject`,`sendtime`,`writetime`,`hasview`,`isadmin`,`message`)
VALUES ('$floginid','$fromid','$id','$userid','inbox','$subject','$sendtime','$writetime','0','0','$message'); ";
$dsql->ExecuteNoneQuery($inquery);
ShowMsg("成功升级一个帐户", "member_main.php");
ShowMsg("成功升级一个帐户", "member_main.php");
exit();
}
$id = preg_replace("#[^0-9]#", "", $id);


+ 92
- 138
src/dede/module_main.php View File

@@ -1,5 +1,4 @@
<?php
/**
* 模块管理
*
@@ -17,7 +16,6 @@ if (empty($action)) $action = '';
require_once(DEDEDATA."/admin/config_update.php");
$mdir = DEDEDATA.'/module';
$mdurl = "";
function TestWriteAble($d)
{
$tfile = '_dedet.txt';
@@ -31,13 +29,12 @@ function TestWriteAble($d)
else return FALSE;
}
}
function ReWriteConfigAuto()
{
global $dsql;
$configfile = DEDEDATA.'/config.cache.inc.php';
if (!is_writeable($configfile)) {
echo "配置文件'{$configfile}'不支持写入,无法修改系统配置参数";
echo "配置文件'{$configfile}'不支持写入,无法修改系统配置参数";
//ClearAllLink();
exit();
}
@@ -53,7 +50,6 @@ function ReWriteConfigAuto()
fwrite($fp, "?".">");
fclose($fp);
}
/*--------------
function ShowAll();
--------------*/
@@ -61,7 +57,6 @@ if ($action == '') {
$types = array('soft' => '模块', 'templets' => '模板', 'plus' => '小插件', 'patch' => '补丁');
$dm = new DedeModule($mdir);
if (empty($moduletype)) $moduletype = '';
$modules_remote = $dm->GetModuleUrlList($moduletype, $mdurl);
$modules = array();
$modules = $dm->GetModuleList($moduletype);
@@ -75,16 +70,15 @@ if ($action == '') {
}
/*--------------
function ViewDevelopoer();
--------------*/ else if ($action == 'view_developoer') {
// 检验开发者信息
--------------*/
else if ($action == 'view_developoer') {
//检验开发者信息
$dm = new DedeModule($mdir);
$info = $dm->GetModuleInfo($hash);
if ($info == null) {
ShowMsg("获取模块信息错误,模块文件可能被篡改", -1);
exit;
}
$dev_id = $info['dev_id'];
$devURL = DEDECDNURL."/developers/$dev_id.json";
$dhd = new DedeHttpDown();
@@ -98,25 +92,23 @@ function ViewDevelopoer();
$authAt = date("Y-m-d", $devInfo['auth_at']);
if (!isset($info['dev_id'])) {
$devInfo['realname'] = $devInfo['dev_name'] = $info['team']." <font color=red>未认证</font>";
$devInfo['realname'] = $devInfo['dev_name'] = $info['team']." <font color='red'>未认证</font>";
$authAt = "0000-00-00";
}
ShowMsg("<div class='text-left'><p>开发者名称:{$devInfo['dev_name']}</p><p>开发者全称:{$devInfo['realname']}</p><p>开发者ID:{$devInfo['dev_id']} <a class='btn btn-success btn-sm' target='_blank' href='{$cfg_biz_dedebizUrl}/developer?dev_id={$devInfo['dev_id']}'>查看详情</a></p>$offUrl<p>认证于:{$authAt}</p></a>", "javascript:;");
ShowMsg("<div class='text-left'><p>开发者名称:{$devInfo['dev_name']}</p><p>开发者全称:{$devInfo['realname']}</p><p>开发者ID:{$devInfo['dev_id']} <a target='_blank' href='{$cfg_biz_dedebizUrl}/developer?dev_id={$devInfo['dev_id']}' class='btn btn-success btn-sm'>未认证</a></p>$offUrl<p>认证于:{$authAt}</p></a>", "javascript:;");
exit;
}
/*--------------
function Setup();
--------------*/ else if ($action == 'setup') {
--------------*/
else if ($action == 'setup') {
$dm = new DedeModule($mdir);
$infos = $dm->GetModuleInfo($hash);
if ($infos == null) {
ShowMsg("获取模块信息错误,模块文件可能被篡改", -1);
exit;
}
$alertMsg = ($infos['lang'] == $cfg_soft_lang ? '' : '<br /><font color="red">(这个模块的语言编码与您系统的编码不一致,请向开发者确认它的兼容性)</font>');
$alertMsg = ($infos['lang'] == $cfg_soft_lang ? '' : '<br />(这个模块的语言编码与您系统的编码不一致,请向开发者确认它的兼容性)');
$filelists = $dm->GetFileLists($hash);
$filelist = '';
$prvdirs = array();
@@ -147,85 +139,74 @@ function Setup();
$prvdirs[$prvdir][1] = TestWriteAble($prvdir);
}
}
$prvdir = "<table cellpadding='1' cellspacing='1' width='350' bgcolor='#cfcfcf' style='margin-top:5px;'>\r\n";
$prvdir = "<table cellpadding='1' cellspacing='1' width='350' bgcolor='#cfcfcf' style='margin-top:10px'>\r\n";
$prvdir .= "<tr style='background:#FBFCE2'><th width='270'>目录</td><th align='center'>可写</td></tr>\r\n";
foreach ($prvdirs as $k => $v) {
if ($v) $cw = '√';
else $cw = '<font color="red">×</font>';
$prvdir .= "<tr bgcolor='#ffffff'><td >$k</td>";
$prvdir .= "<td align='center' >$cw</td></tr>\r\n";
$prvdir .= "<tr bgcolor='#ffffff'><td>$k</td>";
$prvdir .= "<td align='center'>$cw</td></tr>\r\n";
}
$prvdir .= "</table>";
$win = new OxWindow();
$win->Init("module_main.php", "js/blank.js", "post");
$wecome_info = "模块管理";
$win->AddTitle("&nbsp;<a href='module_main.php'>模块管理</a> &gt;&gt; 安装模块: {$infos['name']}");
$win->AddHidden("hash", $hash);
$win->AddHidden("action", 'setupstart');
$msg = "<style>.dtb{border-bottom:1px dotted #cccccc}</style>
$msg = "<style>.dtb{border-bottom:1px dotted #ccc}</style>
<table width='98%' border='0' cellspacing='0' cellpadding='0' class='table'>
<tr>
<td width='20%' height='28' class='dtb'>模块名称:</td>
<td width='20%' height='26' class='dtb'>模块名称:</td>
<td width='80%' class='dtb'>{$infos['name']}</td>
</tr>
<tr>
<td height='28' class='dtb'>语言:</td>
<td height='26' class='dtb'>语言:</td>
<td class='dtb'>{$infos['lang']} {$alertMsg}</td>
</tr>
<tr>
<td height='28' class='dtb'>文件大小:</td>
<td height='26' class='dtb'>文件大小:</td>
<td class='dtb'>{$infos['filesize']}</td>
</tr>
<tr>
<td height='28' class='dtb'>开发者ID:</td>
<td class='dtb'>{$infos['dev_id']} <a class='btn btn-success btn-sm' target='_blank' href='{$cfg_biz_dedebizUrl}/developer?dev_id={$infos['dev_id']}'>查看详情</a></td>
<td height='26' class='dtb'>开发者ID:</td>
<td class='dtb'>{$infos['dev_id']} <a href='{$cfg_biz_dedebizUrl}/developer?dev_id={$infos['dev_id']}' target='_blank' class='btn btn-success btn-sm'>未认证</a></td>
</tr>
<tr>
<td height='28' class='dtb'>发布时间:</td>
<td height='26' class='dtb'>发布时间:</td>
<td class='dtb'>{$infos['time']}</td>
</tr>
<tr>
<td height='28' class='dtb'>使用协议:</td>
<td class='dtb'><a href='module_main.php?action=showreadme&hash={$hash}' target='_blank'>点击浏览...</a></td>
<td height='26' class='dtb'>使用协议:</td>
<td class='dtb'><a href='module_main.php?action=showreadme&hash={$hash}' target='_blank' class='btn btn-success btn-sm'>浏览</a></td>
</tr>
<tr>
<td height='30' class='dtb' colspan='2'>
<div class='alert alert-danger'>
<b>注意事项:</b>
安装时请确保文件列表中涉及的目录前可写入权限,此外“后台管理目录”、“后台管理目录/templets”目录也必须暂时设置可写入权限。
</div>
<div class='alert alert-danger'><b>注意事项:</b>安装时请确保文件列表中涉及的目录前可写入权限,此外“后台管理目录”、“后台管理目录/templets”目录也必须暂时设置可写入权限。</div>
</td>
</tr>
<tr>
<td height='30'><b>目录权限检测:</b><br /> ../ 为根目录 <br /> ./ 表示当前目录</td>
<td>
$prvdir
</td>
<td>$prvdir</td>
</tr>
<tr>
<td height='30'>模块包含的所有文件列表:</td>
<td></td>
</tr>
<tr>
<td height='164' colspan='2'>
<td height='160' colspan='2'>
<textarea name='filelists' id='filelists' style='width:90%;height:200px'>{$filelist}</textarea>
</td>
</tr>
<tr>
<td height='28'>对于已存在文件处理方法:</td>
<td height='26'>对于已存在文件处理方法:</td>
<td>
<label><input name='isreplace' type='radio' value='1' checked='checked' />
覆盖</label>
<label><input name='isreplace' type='radio' value='3' />
覆盖,保留副本</label>
<label><input type='radio' name='isreplace' value='0' />
保留旧文件</label>
<label><input name='isreplace' type='radio' value='1' checked='checked'>覆盖</label>
<label><input name='isreplace' type='radio' value='3'>覆盖,保留副本</label>
<label><input type='radio' name='isreplace' value='0'>保留旧文件</label>
</td>
</tr>
</table>
";
</table>";
$win->AddMsgItem("<div style='padding-left:10px;line-height:150%'>$msg</div>");
$winform = $win->GetWindow("ok", "");
$win->Display();
@@ -234,36 +215,31 @@ function Setup();
}
/*---------------
function SetupRun()
--------------*/ else if ($action == 'setupstart') {
--------------*/
else if ($action == 'setupstart') {
if (!is_writeable($mdir)) {
ShowMsg("目录 {$mdir} 不支持写入,这将导致安装程序没法正常创建", "-1");
ShowMsg("目录 {$mdir} 不支持写入,这将导致安装程序没法正常创建", "-1");
exit();
}
$dm = new DedeModule($mdir);
$minfos = $dm->GetModuleInfo($hash);
extract($minfos, EXTR_SKIP);
$menustring = addslashes($dm->GetSystemFile($hash, 'menustring'));
$indexurl = str_replace('**', '=', $indexurl);
$query = "INSERT INTO `#@__sys_module`(`hashcode` , `modname` , `indexname` , `indexurl` , `ismember` , `menustring` )
VALUES ('$hash' , '$name' , '$indexname' , '$indexurl' , '$ismember' , '$menustring' ) ";
VALUES ('$hash' , '$name' , '$indexname' , '$indexurl' , '$ismember' , '$menustring' ) ";
$rs = $dsql->ExecuteNoneQuery("DELETE FROM `#@__sys_module` WHERE hashcode LIKE '$hash' ");
$rs = $dsql->ExecuteNoneQuery($query);
if (!$rs) {
ShowMsg('保存数据库信息失败,无法完成安装'.$dsql->GetError(), 'javascript:;');
ShowMsg('保存数据库信息失败,无法完成安装'.$dsql->GetError(), 'javascript:;');
exit();
}
$dm->WriteFiles($hash, $isreplace);
$filename = '';
if (!isset($autosetup) || $autosetup == 0) $filename = $dm->WriteSystemFile($hash, 'setup');
if (!isset($autodel) || $autodel == 0) $dm->WriteSystemFile($hash, 'uninstall');
$dm->WriteSystemFile($hash, 'readme');
$dm->Clear();
//用模块的安装程序安装
if (!isset($autosetup) || $autosetup == 0) {
include(DEDEDATA.'/module/'.$filename);
@@ -274,35 +250,26 @@ function SetupRun()
$mysql_version = $dsql->GetVersion(TRUE);
//默认使用MySQL 4.1 以下版本的SQL语句,对大于4.1版本采用替换处理 TYPE=MyISAM ==> ENGINE=MyISAM DEFAULT CHARSET=#~lang~#
$setupsql = $dm->GetSystemFile($hash, 'setupsql40');
$setupsql = preg_replace("#ENGINE=MyISAM#i", 'TYPE=MyISAM', $setupsql);
$sql41tmp = 'ENGINE=MyISAM DEFAULT CHARSET='.$cfg_db_language;
if ($mysql_version >= 4.1) {
$setupsql = preg_replace("#TYPE=MyISAM#i", $sql41tmp, $setupsql);
}
//_ROOTURL_
if ($cfg_cmspath == '/') $cfg_cmspath = '';
$rooturl = $cfg_basehost.$cfg_cmspath;
$setupsql = preg_replace("#_ROOTURL_#i", $rooturl, $setupsql);
$setupsql = preg_replace("#[\r\n]{1,}#", "\n", $setupsql);
$sqls = @split(";[ \t]{0,}\n", $setupsql);
foreach ($sqls as $sql) {
if (trim($sql) != '') $dsql->ExecuteNoneQuery($sql);
}
ReWriteConfigAuto();
$rflwft = "<script language='javascript' type='text/javascript'>\r\n";
$rflwft .= "if(window.navigator.userAgent.indexOf('MSIE')>=1) top.document.frames.menu.location = 'index_menu_module.php';\r\n";
$rflwft .= "else top.document.getElementById('menufra').src = 'index_menu_module.php';\r\n";
$rflwft .= "</script>";
echo $rflwft;
UpDateCatCache();
ShowMsg('模块安装完成...', 'module_main.php');
exit();
@@ -310,51 +277,48 @@ function SetupRun()
}
/*--------------
function DelModule();
--------------*/ else if ($action == 'del') {
--------------*/
else if ($action == 'del') {
$dm = new DedeModule($mdir);
$infos = $dm->GetModuleInfo($hash);
$alertMsg = ($infos['lang'] == $cfg_soft_lang ? '' : '<br /><font color="red">(这个模块的语言编码与您系统的编码不一致,请向开发者确认它的兼容性)</font>');
$dev_id = empty($infos['dev_id'])? "未认证 <a style='color:red' target='_blank' href='{$cfg_biz_dedebizUrl}/developer'>前去认证</a>" : "{$infos['dev_id']} <a class='btn btn-success btn-sm' target='_blank' href='{$cfg_biz_dedebizUrl}/developer?dev_id={$infos['dev_id']}'>查看详情</a>";
$alertMsg = ($infos['lang'] == $cfg_soft_lang ? '' : '<br />(这个模块的语言编码与您系统的编码不一致,请向开发者确认它的兼容性)');
$dev_id = empty($infos['dev_id'])? "<a href='{$cfg_biz_dedebizUrl}/developer' target='_blank' class='btn btn-success btn-sm'>未认证</a>" : "{$infos['dev_id']} <a href='{$cfg_biz_dedebizUrl}/developer?dev_id={$infos['dev_id']}' target='_blank' class='btn btn-success btn-sm'>未认证</a>";
$win = new OxWindow();
$win->Init("module_main.php", "js/blank.js", "post");
$wecome_info = "模块管理";
$win->AddTitle("<a href='module_main.php'>模块管理</a> &gt;&gt; 删除模块: {$infos['name']}");
$win->AddHidden('hash', $hash);
$win->AddHidden('action', 'delok');
$msg = "<style>.dtb{border-bottom:1px dotted #cccccc}</style>
$msg = "<style>.dtb{border-bottom:1px dotted #ccc}</style>
<table width='750' border='0' cellspacing='0' cellpadding='0'>
<tr>
<td width='20%' height='28' class='dtb'>模块名称:</td>
<td width='20%' height='26' class='dtb'>模块名称:</td>
<td width='80%' class='dtb'>{$infos['name']}</td>
</tr>
<tr>
<td height='28' class='dtb'>语言:</td>
<td height='26' class='dtb'>语言:</td>
<td class='dtb'>{$infos['lang']} {$alertMsg}</td>
</tr>
<tr>
<td height='28' class='dtb'>文件大小:</td>
<td height='26' class='dtb'>文件大小:</td>
<td class='dtb'>{$infos['filesize']}</td>
</tr>
<tr>
<td height='28' class='dtb'>开发者ID:</td>
<td height='26' class='dtb'>开发者ID:</td>
<td class='dtb'>{$dev_id}</td>
</tr>
<tr>
<td height='28' class='dtb'>发布时间:</td>
<td height='26' class='dtb'>发布时间:</td>
<td class='dtb'>{$infos['time']}</td>
</tr>
<tr>
<td height='28' class='dtb'>使用协议:</td>
<td class='dtb'><a href='module_main.php?action=showreadme&hash={$hash}' target='_blank'>点击浏览...</a></td>
<td height='26' class='dtb'>使用协议:</td>
<td class='dtb'><a href='module_main.php?action=showreadme&hash={$hash}' target='_blank' class='btn btn-success btn-sm'>浏览</a></td>
</tr>
<tr>
<td height='28' colspan='2'>
删除模块仅删除这个模块的安装包文件,如果您已经安装,请执行<a href='module_main.php?hash={$hash}&action=uninstall'><u>卸载程序</u></a>来删除!
</td>
<td height='26' colspan='2'>删除模块仅删除这个模块的安装包文件,如果您已经安装,请执行<a href='module_main.php?hash={$hash}&action=uninstall'>卸载程序</a>来删除</td>
</tr>
</table>
";
</table>";
$win->AddMsgItem("<div style='padding-left:10px;line-height:150%'>$msg</div>");
$winform = $win->GetWindow("ok", "");
$win->Display();
@@ -363,19 +327,18 @@ function DelModule();
} else if ($action == 'delok') {
$dm = new DedeModule($mdir);
$modfile = $mdir."/".$dm->GetHashFile($hash);
unlink($modfile) or die("删除文件 {$modfile} 失败");
ShowMsg("成功删除一个模块文件", "module_main.php");
unlink($modfile) or die("删除文件 {$modfile} 失败");
ShowMsg("成功删除一个模块文件", "module_main.php");
exit();
}
/*--------------
function UnInstall();
--------------*/ else if ($action == 'uninstall') {
--------------*/
else if ($action == 'uninstall') {
$dm = new DedeModule($mdir);
$infos = $dm->GetModuleInfo($hash);
if ($infos['url'] == '') $infos['url'] = '&nbsp;';
$alertMsg = ($infos['lang'] == $cfg_soft_lang ? '' : '<br /><font color="red">(这个模块的语言编码与您系统的编码不一致,请向开发者确认它的兼容性)</font>');
$alertMsg = ($infos['lang'] == $cfg_soft_lang ? '' : '<br />(这个模块的语言编码与您系统的编码不一致,请向开发者确认它的兼容性)');
$filelists = $dm->GetFileLists($hash);
$filelist = '';
foreach ($filelists as $v) {
@@ -384,58 +347,55 @@ function UnInstall();
else $v['type'] = '文件';
$filelist .= "{$v['type']}|{$v['name']}\r\n";
}
$dev_id = empty($infos['dev_id'])? "未认证 <a style='color:red' target='_blank' href='{$cfg_biz_dedebizUrl}/developer'>前去认证</a>" : "{$infos['dev_id']} <a class='btn btn-success btn-sm' target='_blank' href='{$cfg_biz_dedebizUrl}/developer?dev_id={$infos['dev_id']}'>查看详情</a>";
$dev_id = empty($infos['dev_id'])? "<a href='{$cfg_biz_dedebizUrl}/developer' target='_blank' class='btn btn-success btn-sm'>未认证</a>" : "{$infos['dev_id']} <a href='{$cfg_biz_dedebizUrl}/developer?dev_id={$infos['dev_id']}' target='_blank' class='btn btn-success btn-sm'>未认证</a>";
$win = new OxWindow();
$win->Init("module_main.php", "js/blank.js", "post");
$wecome_info = "模块管理";
$win->AddTitle("<a href='module_main.php'>模块管理</a> &gt;&gt; 卸载模块: {$infos['name']}");
$win->AddHidden("hash", $hash);
$win->AddHidden("action", 'uninstallok');
$msg = "<style>.dtb{border-bottom:1px dotted #cccccc}</style>
$msg = "<style>.dtb{border-bottom:1px dotted #ccc}</style>
<table width='750' border='0' cellspacing='0' cellpadding='0'>
<tr>
<td width='200' height='28' class='dtb'>模块名称:</td>
<td width='200' height='26' class='dtb'>模块名称:</td>
<td width='550' class='dtb'>{$infos['name']}</td>
</tr>
<tr>
<td height='28' class='dtb'>语言:</td>
<td height='26' class='dtb'>语言:</td>
<td class='dtb'>{$infos['lang']} {$alertMsg}</td>
</tr>
<tr>
<td height='28' class='dtb'>文件大小:</td>
<td height='26' class='dtb'>文件大小:</td>
<td class='dtb'>{$infos['filesize']}</td>
</tr>
<tr>
<td height='28' class='dtb'>开发者ID:</td>
<td height='26' class='dtb'>开发者ID:</td>
<td class='dtb'>{$dev_id}</td>
</tr>
<tr>
<td height='28' class='dtb'>发布时间:</td>
<td height='26' class='dtb'>发布时间:</td>
<td class='dtb'>{$infos['time']}</td>
</tr>
<tr>
<td height='28' class='dtb'>使用协议:</td>
<td class='dtb'><a href='module_main.php?action=showreadme&hash={$hash}' target='_blank'>点击浏览...</a></td>
<td height='26' class='dtb'>使用协议:</td>
<td class='dtb'><a href='module_main.php?action=showreadme&hash={$hash}' target='_blank' class='btn btn-success btn-sm'>浏览</a></td>
</tr>
<tr>
<td height='28'>模块包含的文件:<br />(文件路径相对于当前目录)</td><td>&nbsp;</td>
<td height='26'>模块包含的文件:<br />(文件路径相对于当前目录)</td><td>&nbsp;</td>
</tr>
<tr>
<td height='164' colspan='2'>
<td height='160' colspan='2'>
<textarea name='filelists' id='filelists' style='width:90%;height:200px'>{$filelist}</textarea>
</td>
</tr>
<tr>
<td height='28'>对于模块的文件处理方法:</td>
<td height='26'>对于模块的文件处理方法:</td>
<td>
<label><input type='radio' name='isreplace' value='0' checked='checked' />
手工删除文件,仅运行卸载程序</label>
<label><input name='isreplace' type='radio' value='2' />
删除模块的所有文件</label>
<label><input type='radio' name='isreplace' value='0' checked='checked'>手工删除文件,仅运行卸载程序</label>
<label><input name='isreplace' type='radio' value='2'>删除模块的所有文件</label>
</td>
</tr>
</table>
";
</table>";
$win->AddMsgItem("<div style='padding-left:10px;line-height:150%'>$msg</div>");
$winform = $win->GetWindow("ok", "");
$win->Display();
@@ -444,13 +404,12 @@ function UnInstall();
}
/*--------------
function UnInstallRun();
--------------*/ else if ($action == 'uninstallok') {
--------------*/
else if ($action == 'uninstallok') {
$dsql->ExecuteNoneQuery("DELETE FROM `#@__sys_module` WHERE hashcode LIKE '$hash' ");
$dm = new DedeModule($mdir);
$minfos = $dm->GetModuleInfo($hash);
extract($minfos, EXTR_SKIP);
if (!isset($moduletype) || $moduletype != 'patch') {
$dm->DeleteFiles($hash, $isreplace);
}
@@ -470,9 +429,7 @@ function UnInstallRun();
if (trim($sql) != '') $dsql->ExecuteNoneQuery($sql);
}
}
ReWriteConfigAuto();
$rflwft = "<script language='javascript' type='text/javascript'>\r\n";
$rflwft .= "if(window.navigator.userAgent.indexOf('MSIE')>=1) top.document.frames.menu.location = 'index_menu_module.php';\r\n";
$rflwft .= "else top.document.getElementById('menufra').src = 'index_menu_module.php';\r\n";
@@ -484,7 +441,8 @@ function UnInstallRun();
}
/*--------------
function ShowReadme();
--------------*/ else if ($action == 'showreadme') {
--------------*/
else if ($action == 'showreadme') {
$dm = new DedeModule($mdir);
$msg = $dm->GetSystemFile($hash, 'readme');
$msg = preg_replace("/(.*)<body/isU", "", $msg);
@@ -501,13 +459,12 @@ function ShowReadme();
}
/*--------------
function ViewOne();
--------------*/ else if ($action == 'view') {
--------------*/
else if ($action == 'view') {
$dm = new DedeModule($mdir);
$infos = $dm->GetModuleInfo($hash);
if ($infos['url'] == '') $infos['url'] = '&nbsp;';
$alertMsg = ($infos['lang'] == $cfg_soft_lang ? '' : '<br /><font color="red">(这个模块的语言编码与您系统的编码不一致,请向开发者确认它的兼容性)</font>');
$alertMsg = ($infos['lang'] == $cfg_soft_lang ? '' : '<br />(这个模块的语言编码与您系统的编码不一致,请向开发者确认它的兼容性)');
$filelists = $dm->GetFileLists($hash);
$filelist = '';
$setupinfo = '';
@@ -522,47 +479,46 @@ function ViewOne();
} else {
$setupinfo = "未安装 <a href='module_main.php?action=setup&hash={$hash}'>安装</a>";
}
$dev_id = empty($infos['dev_id'])? "未认证 <a style='color:red' target='_blank' href='{$cfg_biz_dedebizUrl}/developer'>前去认证</a>" : "{$infos['dev_id']} <a class='btn btn-success btn-sm' target='_blank' href='{$cfg_biz_dedebizUrl}/developer?dev_id={$infos['dev_id']}'>查看详情</a>";
$dev_id = empty($infos['dev_id'])? "<a href='module_main.php?action=setup&hash={$hash}' class='btn btn-success btn-sm'>安装</a> <a href='{$cfg_biz_dedebizUrl}/developer' target='_blank' class='btn btn-success btn-sm'>未认证</a>" : "{$infos['dev_id']} <a href='{$cfg_biz_dedebizUrl}/developer?dev_id={$infos['dev_id']}' target='_blank' class='btn btn-success btn-sm'>未认证</a>";
$win = new OxWindow();
$win->Init("", "js/blank.js", "");
$wecome_info = "模块管理";
$win->AddTitle("<a href='module_main.php'>模块管理</a> &gt;&gt; 模块详情: {$infos['name']}");
$msg = "<style>.dtb{border-bottom:1px dotted #cccccc}</style>
$msg = "<style>.dtb{border-bottom:1px dotted #ccc}</style>
<table width='98%' border='0' cellspacing='0' cellpadding='0'>
<tr>
<td width='20%' height='28' class='dtb'>模块名称:</td>
<td width='20%' height='26' class='dtb'>模块名称:</td>
<td width='80%' class='dtb'>{$infos['name']}</td>
</tr>
<tr>
<td height='28' class='dtb'>语言:</td>
<td height='26' class='dtb'>语言:</td>
<td class='dtb'>{$infos['lang']} {$alertMsg}</td>
</tr>
<tr>
<td height='28' class='dtb'>文件大小:</td>
<td height='26' class='dtb'>文件大小:</td>
<td class='dtb'>{$infos['filesize']}</td>
</tr>
<tr>
<td height='28' class='dtb'>开发者ID:</td>
<td height='26' class='dtb'>开发者ID:</td>
<td class='dtb'>{$dev_id}</td>
</tr>
<tr>
<td height='28' class='dtb'>发布时间:</td>
<td height='26' class='dtb'>发布时间:</td>
<td class='dtb'>{$infos['time']}</td>
</tr>
<tr>
<td height='28' class='dtb'>使用协议:</td>
<td class='dtb'><a href='module_main.php?action=showreadme&hash={$hash}' target='_blank'>点击浏览...</a></td>
<td height='26' class='dtb'>使用协议:</td>
<td class='dtb'><a href='module_main.php?action=showreadme&hash={$hash}' target='_blank' class='btn btn-success btn-sm'>浏览</a></td>
</tr>
<tr>
<td height='28'>模块包含的文件:<br />(文件路径相对于当前目录)</td><td>&nbsp;</td>
<td height='26'>模块包含的文件:<br />(文件路径相对于当前目录)</td><td>&nbsp;</td>
</tr>
<tr>
<td height='164' colspan='2'>
<td height='160' colspan='2'>
<textarea name='filelists' id='filelists' style='width:90%;height:200px'>{$filelist}</textarea>
</td>
</tr>
</table>
";
</table>";
$win->AddMsgItem("<div style='padding-left:10px;line-height:150%'>$msg</div>");
$winform = $win->GetWindow('hand', '');
$win->Display();
@@ -571,15 +527,13 @@ function ViewOne();
}
/*--------------
function Edit();
--------------*/ else if ($action == 'edit') {
--------------*/
else if ($action == 'edit') {
$dm = new DedeModule($mdir);
$minfos = $dm->GetModuleInfo($hash);
extract($minfos, EXTR_SKIP);
if (!isset($lang)) $lang = 'gb2312';
if (!isset($moduletype)) $moduletype = 'soft';
$menustring = $dm->GetSystemFile($hash, 'menustring');
$setupsql40 = dede_htmlspecialchars($dm->GetSystemFile($hash, 'setupsql40'));
$readmetxt = $dm->GetSystemFile($hash, 'readme');
@@ -587,12 +541,12 @@ function Edit();
$filelist = $dm->GetSystemFile($hash, 'oldfilelist', false);
$indexurl = str_replace('**', '=', $indexurl);
$dm->Clear();
require_once(dirname(__FILE__).'/templets/module_edit.htm');
exit();
}
/*--------------
function Download();
--------------*/ else if ($action == 'download') {
--------------*/
else if ($action == 'download') {
ShowMsg("暂不支持模块下载功能", "javascript:;");
}
}

+ 12
- 12
src/dede/module_make.php View File

@@ -40,11 +40,11 @@ function Makemodule()
$filelist = str_replace("\r", "\n", trim($filelist));
$filelist = trim(preg_replace("#[\n]{1,}#", "\n", $filelist));
if ($filelist == '') {
ShowMsg("对不起,您没有指定模块的文件列表,因此不能创建项目", "-1");
ShowMsg("对不起,您没有指定模块的文件列表,因此不能创建项目", "-1");
exit();
}
if (empty($dev_id)) {
ShowMsg("开发者ID不能为空", "-1");
ShowMsg("开发者ID不能为空", "-1");
exit();
}
if (empty($priv)) {
@@ -89,14 +89,14 @@ function Makemodule()
if ($dm->HasModule($hashcode)) {
$dm->Clear();
ShowMsg("对不起,您指定同名模块已经存在,因此不能创建项目<br>如果您要更新这个模块,请先删除:module/{$hashcode}.xml", "-1");
ShowMsg("对不起,您指定同名模块已经存在,因此不能创建项目<br>如果您要更新这个模块,请先删除:module/{$hashcode}.xml", "-1");
exit();
}
$readmef = $setupf = $uninstallf = '';
if (empty($readmetxt)) {
move_uploaded_file($readme, $mdir."/{$hashcode}-r.html") or die("您没填写说明或上传说明文件");
move_uploaded_file($readme, $mdir."/{$hashcode}-r.html") or die("您没填写说明或上传说明文件");
$readmef = $dm->GetEncodeFile($mdir."/{$hashcode}-r.html", TRUE);
} else {
$readmetxt = "<p style='line-height:150%'>".$readmetxt;
@@ -106,12 +106,12 @@ function Makemodule()
}
if ($autosetup == 0) {
move_uploaded_file($setup, $mdir."/{$hashcode}-s.php") or die("您没上传,或系统无法把setup文件移动到 module 目录");
move_uploaded_file($setup, $mdir."/{$hashcode}-s.php") or die("您没上传,或系统无法把setup文件移动到 module 目录");
$setupf = $dm->GetEncodeFile($mdir."/{$hashcode}-s.php", TRUE);
}
if ($autodel == 0) {
move_uploaded_file($uninstall, $mdir."/{$hashcode}-u.php") or die("您没上传,或系统无法把uninstall文件移动到 module 目录");
move_uploaded_file($uninstall, $mdir."/{$hashcode}-u.php") or die("您没上传,或系统无法把uninstall文件移动到 module 目录");
$uninstallf = $dm->GetEncodeFile($mdir."/{$hashcode}-u.php", TRUE);
}
@@ -182,7 +182,7 @@ $filelist
fwrite($fp, "</modulefiles>\r\n");
fwrite($fp, "</module>\r\n");
fclose($fp);
ShowMsg("成功对一个新模块进行编译", "module_main.php");
ShowMsg("成功对一个新模块进行编译", "module_main.php");
exit();
}
/*-------------
@@ -192,11 +192,11 @@ function editModule()
$filelist = str_replace("\r", "\n", trim($filelist));
$filelist = trim(preg_replace("#[\n]{1,}#", "\n", $filelist));
if ($filelist == "") {
ShowMsg("对不起,您没有指定模块的文件列表,因此不能创建项目", "-1");
ShowMsg("对不起,您没有指定模块的文件列表,因此不能创建项目", "-1");
exit();
}
if (empty($dev_id)) {
ShowMsg("开发者ID不能为空", "-1");
ShowMsg("开发者ID不能为空", "-1");
exit();
}
if (empty($priv)) {
@@ -254,7 +254,7 @@ function editModule()
//编译setup文件
if (is_uploaded_file($setup)) {
move_uploaded_file($setup, $mdir."/{$hashcode}-s.php") or die("您没上传,或系统无法把setup文件移动到 module 目录");
move_uploaded_file($setup, $mdir."/{$hashcode}-s.php") or die("您没上传,或系统无法把setup文件移动到 module 目录");
$setupf = $dm->GetEncodeFile($mdir."/{$hashcode}-s.php", TRUE);
} else {
if ($autosetup == 0) $setupf = base64_encode($dm->GetSystemFile($hashcode, 'setup'));
@@ -262,7 +262,7 @@ function editModule()
//编译uninstall文件
if (is_uploaded_file($uninstall)) {
move_uploaded_file($uninstall, $mdir."/{$hashcode}-u.php") or die("您没上传,或系统无法把uninstall文件移动到 module 目录");
move_uploaded_file($uninstall, $mdir."/{$hashcode}-u.php") or die("您没上传,或系统无法把uninstall文件移动到 module 目录");
$uninstallf = $dm->GetEncodeFile($mdir."/{$hashcode}-u.php", true);
} else {
if ($autodel == 0) $uninstallf = base64_encode($dm->GetSystemFile($hashcode, 'uninstall'));
@@ -341,7 +341,7 @@ $filelist
fwrite($fp, $fxml);
fclose($fp);
}
ShowMsg("成功对模块重新编译", "module_main.php");
ShowMsg("成功对模块重新编译", "module_main.php");
exit();
}
//ClearAllLink();

+ 6
- 6
src/dede/module_upload.php View File

@@ -18,12 +18,12 @@ $mdir = DEDEDATA.'/module';
if ($action == 'upload') {
if (!is_uploaded_file($upfile)) {
ShowMsg("貌似您什么都没有上传哦", "javascript:;");
ShowMsg("貌似您什么都没有上传哦", "javascript:;");
exit();
} else {
include_once(dirname(__FILE__)."/../include/zip.class.php");
$tmpfilename = $mdir.'/'.ExecTime().mt_rand(10000, 50000).'.tmp';
move_uploaded_file($upfile, $tmpfilename) or die("把上传的文件移动到{$tmpfilename}时失败,请检查{$mdir}目录是否有写入权限");
move_uploaded_file($upfile, $tmpfilename) or die("把上传的文件移动到{$tmpfilename}时失败,请检查{$mdir}目录是否有写入权限");
//ZIP格式的文件
if ($filetype == 1) {
@@ -42,7 +42,7 @@ if ($action == 'upload') {
}
if ($dedefileindex == -1) {
unlink($tmpfilename);
ShowMsg("对不起,您上传的压缩包中不存在dede模块文件<br /><br /><a href='javascript:history.go(-1);'>&gt;&gt;返回重新上传&gt;&gt;</a>", "javascript:;");
ShowMsg("对不起,您上传的压缩包中不存在dede模块文件<br /><br /><a href='javascript:history.go(-1);'>&gt;&gt;返回重新上传&gt;&gt;</a>", "javascript:;");
exit();
}
$ziptmp = $mdir.'/ziptmp';
@@ -56,7 +56,7 @@ if ($action == 'upload') {
if (empty($infos['hash'])) {
unlink($tmpfilename);
$dm->Clear();
ShowMsg("对不起,您上传的文件可能不是织梦模块的标准格式文件<br /><br /><a href='javascript:history.go(-1);'>&gt;&gt;返回重新上传&gt;&gt;</a>", "javascript:;");
ShowMsg("对不起,您上传的文件可能不是织梦模块的标准格式文件<br /><br /><a href='javascript:history.go(-1);'>&gt;&gt;返回重新上传&gt;&gt;</a>", "javascript:;");
exit();
}
if (preg_match("#[^0-9a-zA-Z]#", $infos['hash'])) {
@@ -67,14 +67,14 @@ if ($action == 'upload') {
if ($dm->HasModule($infos['hash']) && empty($delhas)) {
unlink($tmpfilename);
$dm->Clear();
ShowMsg("对不起,您上传的模块已经存在,<br />如果要覆盖请先删除原来版本或选择强制删除的选项<br /><br /><a href='javascript:history.go(-1);'>&gt;&gt;返回重新上传&gt;&gt;</a>", "javascript:;");
ShowMsg("对不起,您上传的模块已经存在,<br />如果要覆盖请先删除原来版本或选择强制删除的选项<br /><br /><a href='javascript:history.go(-1);'>&gt;&gt;返回重新上传&gt;&gt;</a>", "javascript:;");
exit();
}
@unlink($okfile);
copy($tmpfilename, $okfile);
@unlink($tmpfilename);
$dm->Clear();
ShowMsg("成功上传一个新的模块", "module_main.php?action=view&hash={$infos['hash']}");
ShowMsg("成功上传一个新的模块", "module_main.php?action=view&hash={$infos['hash']}");
exit();
}
} else {


+ 5
- 5
src/dede/mychannel_add.php View File

@@ -19,15 +19,15 @@ if (empty($action)) $action = '';
if ($action == 'add') {
//检查输入
if (empty($id) || preg_match("#[^0-9-]#", $id)) {
ShowMsg("<font color=red>'频道id'</font>必须为数字", "-1");
ShowMsg("<font color=red>'频道id'</font>必须为数字", "-1");
exit();
}
if (preg_match("#[^a-z0-9]#i", $nid) || $nid == "") {
ShowMsg("<font color=red>'频道名字标识'</font>必须为英文字母或与数字混合字符串", "-1");
ShowMsg("<font color=red>'频道名字标识'</font>必须为英文字母或与数字混合字符串", "-1");
exit();
}
if ($addtable == "") {
ShowMsg("附加表不能为空", "-1");
ShowMsg("附加表不能为空", "-1");
exit();
}
$trueTable2 = str_replace("#@__", $cfg_dbprefix, $addtable);
@@ -37,7 +37,7 @@ if ($action == 'add') {
//检查id是否重复
$row = $dsql->GetOne("SELECT * FROM #@__channeltype WHERE id='$id' OR nid LIKE '$nid' OR addtable LIKE '$addtable'");
if (is_array($row)) {
ShowMsg("可能‘频道id’、‘频道名称标识’、‘附加表名称’在数据库已存在,不能重复使用", "-1");
ShowMsg("可能‘频道id’、‘频道名称标识’、‘附加表名称’在数据库已存在,不能重复使用", "-1");
exit();
}
$mysql_version = $dsql->GetVersion();
@@ -109,7 +109,7 @@ if ($action == 'add') {
$inQuery = "INSERT INTO `#@__channeltype`(id,nid,typename,addtable,addcon,mancon,editcon,useraddcon,usermancon,usereditcon,fieldset,listfields,issystem,issend,arcsta,usertype,sendrank,needdes,needpic,titlename,onlyone,dfcid)
VALUES ('$id','$nid','$typename','$addtable','$addcon','$mancon','$editcon','$useraddcon','$usermancon','$usereditcon','$fieldset','$listfields','$issystem','$issend','$arcsta','$usertype','$sendrank','$needdes','$needpic','$titlename','$onlyone','$dfcid');";
$dsql->ExecuteNoneQuery($inQuery);
ShowMsg("成功增加一个频道模型", "mychannel_edit.php?id=".$id);
ShowMsg("成功增加一个频道模型", "mychannel_edit.php?id=".$id);
exit();
}
$row = $dsql->GetOne("SELECT id FROM `#@__channeltype` ORDER BY id DESC LIMIT 0,1 ");


+ 17
- 17
src/dede/mychannel_edit.php View File

@@ -22,18 +22,18 @@ function __ShowHide()
-----------------*/
if ($dopost == "show") {
$dsql->ExecuteNoneQuery("UPDATE `#@__channeltype` SET isshow=1 WHERE id='$id' ");
ShowMsg("操作成功", "mychannel_main.php");
ShowMsg("操作成功", "mychannel_main.php");
exit();
} else if ($dopost == "hide") {
$dsql->ExecuteNoneQuery("UPDATE `#@__channeltype` SET isshow=0 WHERE id='$id'");
ShowMsg("操作成功", "mychannel_main.php");
ShowMsg("操作成功", "mychannel_main.php");
exit();
}
/*----------------
function __CopyStart()
-----------------*/ else if ($dopost == "copystart") {
if ($id == -1) {
ShowMsg("专题模型不支持复制", "-1");
ShowMsg("专题模型不支持复制", "-1");
exit();
}
$row = $dsql->GetOne("SELECT * FROM `#@__channeltype` WHERE id='$id'");
@@ -98,7 +98,7 @@ function __CopyStart()
function __Export()
-----------------*/ else if ($dopost == "export") {
if ($id == -1) {
ShowMsg("专题模型不支持导出", "-1");
ShowMsg("专题模型不支持导出", "-1");
exit();
}
$row = $dsql->GetOne("SELECT * FROM `#@__channeltype` WHERE id='$id' ");
@@ -110,7 +110,7 @@ function __Export()
$channelconfig .= "<channel:{$k}>$v</channel:{$k}>\r\n";
}
$wintitle = "导出内容模型规则";
$wecome_info = "<a href='mychannel_main.php'><u>内容模型管理</u></a>::导出内容模型规则";
$wecome_info = "<a href='mychannel_main.php'>内容模型管理</a>::导出内容模型规则";
$win = new OxWindow();
$win->Init();
$win->AddTitle("以下为规则 [{$row['typename']}] 的模型规则,您可以共享给您的朋友:");
@@ -157,7 +157,7 @@ function __ExportInOk()
$dtp->SetNameSpace('channel', '<', '>');
$dtp->LoadSource($exconfig);
if (!is_array($dtp->CTags)) GotoStaMsg("模型规则不是合法的Dede模型规则");
if (!is_array($dtp->CTags)) GotoStaMsg("模型规则不是合法的Dede模型规则");
$fields = array();
foreach ($dtp->CTags as $ctag) {
@@ -166,7 +166,7 @@ function __ExportInOk()
}
if (!isset($fields['nid']) || !isset($fields['fieldset'])) {
GotoStaMsg("模型规则不是合法的Dede模型规则");
GotoStaMsg("模型规则不是合法的Dede模型规则");
}
//正常的导入过程
@@ -174,7 +174,7 @@ function __ExportInOk()
$row = $dsql->GetOne("SELECT * FROM `#@__channeltype` WHERE nid='{$fields['nid']}' ");
if (is_array($row)) {
GotoStaMsg("系统中已经存在相同标识 {$fields['nid']} 的规则");
GotoStaMsg("系统中已经存在相同标识 {$fields['nid']} 的规则");
}
//创建表
@@ -231,7 +231,7 @@ function __ExportInOk()
$rs = $dsql->ExecuteNoneQuery($inquery);
if (!$rs) GotoStaMsg("导入模型时发生错误".$dsql->GetError());
if (!$rs) GotoStaMsg("导入模型时发生错误".$dsql->GetError());
$dtp = new DedeTagParse();
$dtp->SetNameSpace("field", "<", ">");
$dtp->LoadSource($fieldset);
@@ -257,7 +257,7 @@ function __ExportInOk()
if ($allfields != '') {
$dsql->ExecuteNoneQuery("UPDATE `#@__channeltype` SET listfields='$allfields' WHERE id='{$fields['newid']}' ");
}
GotoStaMsg("成功导入一个模型");
GotoStaMsg("成功导入一个模型");
}
/*----------------
function __SaveCopy()
@@ -295,7 +295,7 @@ function __SaveCopy()
exit();
} else {
$errv = $dsql->GetError();
ShowMsg("系统出错,请把错误代码发送到官方论坛,以检查原因<br /> 错误代码:mychannel_edit.php?dopost=savecopy $errv", "javascript:;");
ShowMsg("系统出错,请把错误代码发送到官方论坛,以检查原因<br /> 错误代码:mychannel_edit.php?dopost=savecopy $errv", "javascript:;");
exit();
}
}
@@ -331,17 +331,17 @@ function __SaveEdit()
$dtp->SetNameSpace("field", "<", ">");
$dtp->LoadSource(stripslashes($fieldset));
if (!is_array($dtp->CTags)) {
ShowMsg("文本配置参数无效,无法进行解析", "-1");
ShowMsg("文本配置参数无效,无法进行解析", "-1");
exit();
}
}
$trueTable = str_replace("#@__", $cfg_dbprefix, $addtable);
if (!$dsql->IsTable($trueTable)) {
ShowMsg("系统找不到您所指定的表 $trueTable ,请手工创建这个表", "-1");
ShowMsg("系统找不到您所指定的表 $trueTable ,请手工创建这个表", "-1");
exit();
}
$dsql->ExecuteNoneQuery($query);
ShowMsg("成功更改一个模型", "mychannel_main.php");
ShowMsg("成功更改一个模型", "mychannel_main.php");
exit();
}
/*--------------------
@@ -375,7 +375,7 @@ function __Delete()
CheckPurview('c_Del');
$row = $dsql->GetOne("SELECT * FROM `#@__channeltype` WHERE id='$id'");
if ($row['issystem'] == 1) {
ShowMsg("系统模型不允许删除", "mychannel_main.php");
ShowMsg("系统模型不允许删除", "mychannel_main.php");
exit();
}
if (empty($job)) $job = "";
@@ -438,7 +438,7 @@ function __Delete()
//更新栏目缓存
UpDateCatCache($dsql);
ShowMsg("成功删除一个模型", "mychannel_main.php");
ShowMsg("成功删除一个模型", "mychannel_main.php");
exit();
}
} //del
@@ -655,7 +655,7 @@ function __modifysearch()
else if ($dopost == 'del') {
$mid = intval($mid);
$dsql->ExecuteNoneQuery("DELETE FROM `#@__advancedsearch` WHERE mid = '$mid'; ");
ShowMsg("成功删除一个自定义搜索", "mychannel_main.php");
ShowMsg("成功删除一个自定义搜索", "mychannel_main.php");
exit();
}
$row = $dsql->GetOne("SELECT * FROM `#@__channeltype` WHERE id='$id' ");


+ 2
- 2
src/dede/mychannel_field_add.php View File

@@ -83,11 +83,11 @@ if ($action == 'save') {
$rs = $dsql->ExecuteNoneQuery("UPDATE `#@__channeltype` SET fieldset='$oksetting',listfields='$addlist' WHERE id='$id' ");
if (!$rs) {
$grr = $dsql->GetError();
ShowMsg("保存节点配置出错".$grr, "javascript:;");
ShowMsg("保存节点配置出错".$grr, "javascript:;");
exit();
}
ShowMsg("成功增加一个字段", "mychannel_edit.php?id={$id}&dopost=edit&openfield=1");
ShowMsg("成功增加一个字段", "mychannel_edit.php?id={$id}&dopost=edit&openfield=1");
exit();
}


+ 4
- 4
src/dede/mychannel_field_edit.php View File

@@ -51,7 +51,7 @@ function _SAVE()
----------------------*/
if ($action == 'save') {
if (!isset($fieldtypes[$dtype])) {
ShowMsg("您修改的是系统专用类型的数据,禁止操作", "-1");
ShowMsg("您修改的是系统专用类型的数据,禁止操作", "-1");
exit();
}
@@ -121,7 +121,7 @@ if ($action == 'save') {
$oksetting = addslashes($oksetting);
$dsql->ExecuteNoneQuery("UPDATE `#@__channeltype` SET fieldset='$oksetting',listfields='$addlist' WHERE id='$id' ");
ShowMsg("成功更改一个字段的配置", "mychannel_edit.php?id={$id}&dopost=edit&openfield=1");
ShowMsg("成功更改一个字段的配置", "mychannel_edit.php?id={$id}&dopost=edit&openfield=1");
exit();
}
/*------------------
@@ -129,7 +129,7 @@ if ($action == 'save') {
function _DELETE()
-------------------*/ else if ($action == "delete") {
if ($row['issystem'] == 1) {
ShowMsg("对不起,系统模型的字段不允许删除", "-1");
ShowMsg("对不起,系统模型的字段不允许删除", "-1");
exit();
}
@@ -143,7 +143,7 @@ function _DELETE()
$oksetting = addslashes($dtp->GetResultNP());
$dsql->ExecuteNoneQuery("UPDATE `#@__channeltype` SET fieldset='$oksetting' WHERE id='$id' ");
$dsql->ExecuteNoneQuery("ALTER TABLE `$trueTable` DROP `$fname` ");
ShowMsg("成功删除一个字段", "mychannel_edit.php?id={$id}&dopost=edit&openfield=1");
ShowMsg("成功删除一个字段", "mychannel_edit.php?id={$id}&dopost=edit&openfield=1");
exit();
}


+ 2
- 2
src/dede/mychannel_main.php View File

@@ -23,9 +23,9 @@ $dlist->display();
function GetSta($sta, $id)
{
if ($sta == 1) {
return ($id != -1 ? "启用 &gt; <a href='mychannel_edit.php?dopost=hide&id=$id'><u>禁用</u></a>" : "固定项目");
return ($id != -1 ? "启用 &gt; <a href='mychannel_edit.php?dopost=hide&id=$id'>禁用</a>" : "固定项目");
} else {
return "禁用 &gt; <a href='mychannel_edit.php?dopost=show&id=$id'><u>启用</u></a>";
return "禁用 &gt; <a href='mychannel_edit.php?dopost=show&id=$id'>启用</a>";
}
}


+ 1
- 1
src/dede/mynews_add.php View File

@@ -18,7 +18,7 @@ if ($dopost == "save") {
$query = "INSERT INTO `#@__mynews`(title,writer,senddate,body)
VALUES('$title','$writer','$dtime','$body')";
$dsql->ExecuteNoneQuery($query);
ShowMsg("成功发布一条站内新闻", "mynews_main.php");
ShowMsg("成功发布一条站内新闻", "mynews_main.php");
exit();
}
include DedeInclude('templets/mynews_add.htm');

+ 2
- 2
src/dede/mynews_edit.php View File

@@ -16,12 +16,12 @@ if (empty($dopost)) $dopost = "";
$aid = preg_replace("#[^0-9]#", "", $aid);
if ($dopost == "del") {
$dsql->ExecuteNoneQuery("DELETE FROM #@__mynews WHERE aid='$aid';");
ShowMsg("成功删除一条站内新闻", "mynews_main.php");
ShowMsg("成功删除一条站内新闻", "mynews_main.php");
exit();
} else if ($dopost == "editsave") {
$inquery = "UPDATE #@__mynews SET title='$title',typeid='$typeid',writer='$writer',senddate='".GetMKTime($sdate)."',body='$body' WHERE aid='$aid';";
$dsql->ExecuteNoneQuery($inquery);
ShowMsg("成功更改一条站内新闻", "mynews_main.php");
ShowMsg("成功更改一条站内新闻", "mynews_main.php");
exit();
}
$myNews = $dsql->GetOne("SELECT #@__mynews.*,#@__arctype.typename FROM #@__mynews LEFT JOIN #@__arctype ON #@__arctype.id=#@__mynews.typeid WHERE #@__mynews.aid='$aid';");


+ 2
- 2
src/dede/mytag_add.php View File

@@ -19,7 +19,7 @@ if ($dopost == "save") {
$tagname = trim($tagname);
$row = $dsql->GetOne("SELECT typeid FROM `#@__mytag` WHERE typeid='$typeid' AND tagname LIKE '$tagname'");
if (is_array($row)) {
ShowMsg("在相同栏目下已经存在同名的标记", "-1");
ShowMsg("在相同栏目下已经存在同名的标记", "-1");
exit();
}
$starttime = GetMkTime($starttime);
@@ -27,7 +27,7 @@ if ($dopost == "save") {
$inQuery = "INSERT INTO `#@__mytag`(typeid,tagname,timeset,starttime,endtime,normbody,expbody)
VALUES('$typeid','$tagname','$timeset','$starttime','$endtime','$normbody','$expbody'); ";
$dsql->ExecuteNoneQuery($inQuery);
ShowMsg("成功增加一个自定义标记", "mytag_main.php");
ShowMsg("成功增加一个自定义标记", "mytag_main.php");
exit();
}
$startDay = time();


+ 3
- 3
src/dede/mytag_edit.php View File

@@ -19,7 +19,7 @@ $ENV_GOBACK_URL = empty($_COOKIE['ENV_GOBACK_URL']) ? 'mytag_main.php' : $_COOKI

if ($dopost == 'delete') {
$dsql->ExecuteNoneQuery("DELETE FROM `#@__mytag` WHERE aid='$aid'");
ShowMsg("成功删除一个自定义标记", $ENV_GOBACK_URL);
ShowMsg("成功删除一个自定义标记", $ENV_GOBACK_URL);
exit();
} else if ($dopost == "saveedit") {
CheckCSRF();
@@ -35,7 +35,7 @@ if ($dopost == 'delete') {
expbody='$expbody'
WHERE aid='$aid' ";
$dsql->ExecuteNoneQuery($query);
ShowMsg("成功更改一个自定义标记", $ENV_GOBACK_URL);
ShowMsg("成功更改一个自定义标记", $ENV_GOBACK_URL);
exit();
} else if ($dopost == "getjs") {
require_once(DEDEINC."/oxwindow.class.php");
@@ -43,7 +43,7 @@ if ($dopost == 'delete') {
$showhtml = "<xmp style='color:#333333;background-color:#ffffff'>\r\n\r\n$jscode\r\n\r\n</xmp>";
$showhtml .= "<b>预览:</b><iframe name='testfrm' frameborder='0' src='mytag_edit.php?aid={$aid}&dopost=testjs' id='testfrm' width='100%' height='250'></iframe>";
$wintitle = "宏标记定义-获取JS";
$wecome_info = "<a href='mytag_main.php'><u>宏标记定义</u></a>::获取JS";
$wecome_info = "<a href='mytag_main.php'>宏标记定义</a>::获取JS";
$win = new OxWindow();
$win->Init();
$win->AddTitle('以下为选定宏标记的JS调用代码:');


+ 1
- 1
src/dede/plus_edit.php View File

@@ -33,7 +33,7 @@ if ($dopost == "show") {
$win->AddHidden("dopost", $dopost);
$win->AddHidden("aid", $aid);
$win->AddTitle("您确实要删除'".$title."'这个插件?");
$win->AddMsgItem("<font color='red'>警告:在这里删除仅仅删除菜单项,要干净删除请在模块管理处删除<br /><br /> <a href='module_main.php?moduletype=plus'>模块管理&gt;&gt;</a> </font>");
$win->AddMsgItem("<font color='red'>警告:在这里删除仅仅删除菜单项,要干净删除请在模块管理处删除<br /><br /> <a href='module_main.php?moduletype=plus'>模块管理&gt;&gt;</a> </font>");
$winform = $win->GetWindow("ok");
$win->Display();
exit();


+ 2
- 2
src/dede/plus_main.php View File

@@ -23,8 +23,8 @@ $dlist->display();
function GetSta($sta, $id, $title)
{
if ($sta == 1) {
return " &nbsp; <a href='plus_edit.php?dopost=edit&aid=$id'><u>修改</u></a> &nbsp; 启用 &gt; <a href='plus_edit.php?dopost=hide&aid=$id'><u>禁用</u></a> &nbsp; <a href='plus_edit.php?dopost=delete&aid=$id&title=".urlencode($title)."'><u>删除</u></a>";
return " &nbsp; <a href='plus_edit.php?dopost=edit&aid=$id'>修改</a> &nbsp; 启用 &gt; <a href='plus_edit.php?dopost=hide&aid=$id'>禁用</a> &nbsp; <a href='plus_edit.php?dopost=delete&aid=$id&title=".urlencode($title)."'>删除</a>";
} else {
return " &nbsp; <a href='plus_edit.php?aid=$id'><u>修改</u></a> &nbsp; 禁用 &gt; <a href='plus_edit.php?dopost=show&aid=$id'><u>启用</u></a> &nbsp; <a href='plus_edit.php?dopost=delete&aid=$id&title=".urlencode($title)."'><u>册除</u></a>";
return " &nbsp; <a href='plus_edit.php?aid=$id'>修改</a> &nbsp; 禁用 &gt; <a href='plus_edit.php?dopost=show&aid=$id'>启用</a> &nbsp; <a href='plus_edit.php?dopost=delete&aid=$id&title=".urlencode($title)."'>册除</a>";
}
}

+ 2
- 2
src/dede/public_guide.php View File

@@ -29,13 +29,13 @@ if ($action == 'setdefault') {
$win->AddTitle("<a href='public_guide.php?action=edit'>内容发布向导</a> &gt;&gt; 设置默认发布表单");
if ($cid == 0) {
$msg = "
成功取消默认发布表单
成功取消默认发布表单
<hr style='width:90%' size='1' />
您目前想要进行的操作: <a href='public_guide.php?action=edit'>返回发布向导页</a>
";
} else {
$msg = "
成功保存默认发布表单,以后点击“内容发布”面板将直接跳转到您选择的内容发布页
成功保存默认发布表单,以后点击“内容发布”面板将直接跳转到您选择的内容发布页
<hr style='width:90%' size='1' />
您目前想要进行的操作: <a href='public_guide.php'>转到默认发布表单</a> &nbsp; <a href='public_guide.php?action=edit'>返回发布向导页</a>
";


+ 6
- 6
src/dede/search_keywords_main.php View File

@@ -47,7 +47,7 @@ else if ($dopost == 'delall') {
foreach ($aids as $aid) {
$dsql->ExecuteNoneQuery("DELETE FROM `#@__search_keywords` WHERE aid='$aid';");
}
ShowMsg("删除成功", $ENV_GOBACK_URL);
ShowMsg("删除成功", $ENV_GOBACK_URL);
exit();
}
//第一次进入这个页面
@@ -67,12 +67,12 @@ function GetKeywordList($dsql, $pageno, $pagesize, $orderby = 'aid')
<table width='98%' border='0' cellpadding='1' cellspacing='1' bgcolor='#cfcfcf' style='margin-bottom:3px' align='center'>
<tr align='center' bgcolor='#FBFCE2' height='24'>
<td width='5%'>选择</td>
<td width='6%' height='23'><a href='#' onclick=\"ReloadPage('aid')\"><u>ID</u></a></td>
<td width='6%' height='23'><a href='#' onclick=\"ReloadPage('aid')\">ID</a></td>
<td width='20%'>关键字</td>
<td width='30%'>分词结果</td>
<td width='6%'><a href='#' onclick=\"ReloadPage('count')\"><u>频率</u></a></td>
<td width='6%'><a href='#' onclick=\"ReloadPage('result')\"><u>结果</u></a></td>
<td width='15%'><a href='#' onclick=\"ReloadPage('lasttime')\"><u>最后搜索时间</u></a></td>
<td width='6%'><a href='#' onclick=\"ReloadPage('count')\">频率</a></td>
<td width='6%'><a href='#' onclick=\"ReloadPage('result')\">结果</a></td>
<td width='15%'><a href='#' onclick=\"ReloadPage('lasttime')\">最后搜索时间</a></td>
<td>管理</td>
</tr>\r\n
";
@@ -89,7 +89,7 @@ function GetKeywordList($dsql, $pageno, $pagesize, $orderby = 'aid')
<td style='padding:5px;'><input name='keyword' type='text' id='keyword{$row['aid']}' value='{$row['keyword']}' style='width:93%;'></td>
<td style='padding:5px;'><input name='spwords' type='text' id='spwords{$row['aid']}' value='{$row['spwords']}' style='width:95%;'></td>
<td style='padding:5px;'><input name='count' type='text' id='count{$row['aid']}' value='{$row['count']}' size='5'></td>
<td><a href='{$cfg_phpurl}/search.php?kwtype=0&keyword=".urlencode($row['keyword'])."&searchtype=titlekeyword' target='_blank'><u>{$row['result']}</u></a></td>
<td><a href='{$cfg_phpurl}/search.php?kwtype=0&keyword=".urlencode($row['keyword'])."&searchtype=titlekeyword' target='_blank'>{$row['result']}</a></td>
<td>".MyDate("Y-m-d H:i:s", $row['lasttime'])."</td>
<td>
<a href='#' onclick='UpdateNote({$row['aid']})' class='btn btn-success btn-sm'>更新</a> |


+ 3
- 3
src/dede/shops_operations.php View File

@@ -52,13 +52,13 @@ if (isset($dopost)) {
$dsql->ExecuteNoneQuery($query2);
$dsql->ExecuteNoneQuery($query3);
}
ShowMsg("成功删除指定的订单记录", $ENV_GOBACK_URL);
ShowMsg("成功删除指定的订单记录", $ENV_GOBACK_URL);
exit();
} else {
ShowMsg("不充许的操作范围", $ENV_GOBACK_URL);
ShowMsg("不充许的操作范围", $ENV_GOBACK_URL);
exit();
}
ShowMsg("成功更改指定的订单记录", $ENV_GOBACK_URL);
ShowMsg("成功更改指定的订单记录", $ENV_GOBACK_URL);
exit();
}


+ 1
- 1
src/dede/soft_config.php View File

@@ -28,7 +28,7 @@ if ($dopost == "save") {
`argrange` = '$argrange',
downmsg = '$downmsg' ";
$dsql->ExecuteNoneQuery($query);
ShowMsg('成功保存参数', 'soft_config.php');
ShowMsg('成功保存参数', 'soft_config.php');
exit();
}
//读取参数


+ 18
- 18
src/dede/stepselect_main.php View File

@@ -66,16 +66,16 @@ function __del() { }
------------------*/ else if ($action == 'del') {
$arr = $dsql->GetOne("SELECT * FROM `#@__stepselect` WHERE id='$id' ");
if (!is_array($arr)) {
ShowMsg("无法获取分类信息,不允许后续操作", "stepselect_main.php?".ExecTime());
ShowMsg("无法获取分类信息,不允许后续操作", "stepselect_main.php?".ExecTime());
exit();
}
if ($arr['issystem'] == 1) {
ShowMsg("系统内置的枚举分类不能删除", "stepselect_main.php?".ExecTime());
ShowMsg("系统内置的枚举分类不能删除", "stepselect_main.php?".ExecTime());
exit();
}
$dsql->ExecuteNoneQuery("DELETE FROM `#@__stepselect` WHERE id='$id'; ");
$dsql->ExecuteNoneQuery("DELETE FROM `#@__sys_enum` WHERE egroup='{$arr['egroup']}'; ");
ShowMsg("成功删除一个分类", "stepselect_main.php?".ExecTime());
ShowMsg("成功删除一个分类", "stepselect_main.php?".ExecTime());
exit();
} else if ($action == 'delenumAllSel') {
if (isset($ids) && is_array($ids)) {
@@ -94,16 +94,16 @@ function __del() { }
WriteEnumsCache($egroup);
}
ShowMsg("成功删除选中的枚举分类", $ENV_GOBACK_URL);
ShowMsg("成功删除选中的枚举分类", $ENV_GOBACK_URL);
} else {
ShowMsg("您没选择任何分类", "-1");
ShowMsg("您没选择任何分类", "-1");
}
exit();
} else if ($action == 'delenum') {
$row = $dsql->GetOne("SELECT egroup FROM `#@__sys_enum` WHERE id = '$id' ");
$dsql->ExecuteNoneQuery("DELETE FROM `#@__sys_enum` WHERE id='{$id}'; ");
WriteEnumsCache($row['egroup']);
ShowMsg("成功删除一个枚举", $ENV_GOBACK_URL);
ShowMsg("成功删除一个枚举", $ENV_GOBACK_URL);
exit();
}
/*-----------------
@@ -111,11 +111,11 @@ function __del() { }
function __edit_save() { }
------------------*/ else if ($action == 'edit_save') {
if (preg_match("#[^0-9a-z_-]#i", $egroup)) {
ShowMsg("组名称不能有全角字符或特殊符号", "-1");
ShowMsg("组名称不能有全角字符或特殊符号", "-1");
exit();
}
$dsql->ExecuteNoneQuery("UPDATE `#@__stepselect` SET `itemname`='$itemname',`egroup`='$egroup' WHERE id='$id'; ");
ShowMsg("成功修改一个分类", "stepselect_main.php?".ExecTime());
ShowMsg("成功修改一个分类", "stepselect_main.php?".ExecTime());
exit();
}
/*-----------------
@@ -123,17 +123,17 @@ function __edit_save() { }
function __addnew_save() { }
------------------*/ else if ($action == 'addnew_save') {
if (preg_match("#[^0-9a-z_-]#i", $egroup)) {
ShowMsg("组名称不能有全角字符或特殊符号", "-1");
ShowMsg("组名称不能有全角字符或特殊符号", "-1");
exit();
}
$arr = $dsql->GetOne("SELECT * FROM `#@__stepselect` WHERE itemname LIKE '$itemname' OR egroup LIKE '$egroup' ");
if (is_array($arr)) {
ShowMsg("您指定的类别名称或组名称已经存在,不能使用", "stepselect_main.php");
ShowMsg("您指定的类别名称或组名称已经存在,不能使用", "stepselect_main.php");
exit();
}
$dsql->ExecuteNoneQuery("INSERT INTO `#@__stepselect`(`itemname`,`egroup`,`issign`,`issystem`) VALUES('$itemname','$egroup','0','0'); ");
WriteEnumsCache($egroup);
ShowMsg("成功添加一个分类", "stepselect_main.php?egroup=$egroup");
ShowMsg("成功添加一个分类", "stepselect_main.php?egroup=$egroup");
exit();
}
/*---------
@@ -164,7 +164,7 @@ function __exarea() { }
}
}
WriteEnumsCache('nativeplace');
ShowMsg("成功导入所有旧的地区数据", "stepselect_main.php?egroup=nativeplace");
ShowMsg("成功导入所有旧的地区数据", "stepselect_main.php?egroup=nativeplace");
exit();
}
/*--------------------
@@ -180,7 +180,7 @@ function __addenum_save() { }
这时候需要issign=2
---------------------*/ else if ($action == 'addenum_save') {
if (empty($ename) || empty($egroup)) {
Showmsg("类别名称或组名称不能为空", "-1");
Showmsg("类别名称或组名称不能为空", "-1");
exit();
}
if ($issign == 1 || $topvalue == 0) {
@@ -194,7 +194,7 @@ function __addenum_save() { }
VALUES('$ename','$evalue','$egroup','$disorder','$issign'); ");
}
WriteEnumsCache($egroup);
ShowMsg("成功添加枚举分类".$dsql->GetError(), $ENV_GOBACK_URL);
ShowMsg("成功添加枚举分类".$dsql->GetError(), $ENV_GOBACK_URL);
exit();
} else if ($issign == 2 && $topvalue != 0) {
$minid = $topvalue;
@@ -219,7 +219,7 @@ function __addenum_save() { }
}
// echo $minid;
WriteEnumsCache($egroup);
ShowMsg("成功添加枚举分类", $ENV_GOBACK_URL);
ShowMsg("成功添加枚举分类", $ENV_GOBACK_URL);
exit();
} else {
$minid = $topvalue;
@@ -237,7 +237,7 @@ function __addenum_save() { }
VALUES('$ename','$evalue','$egroup','$disorder','$issign'); ");
}
WriteEnumsCache($egroup);
ShowMsg("成功添加枚举分类", $ENV_GOBACK_URL);
ShowMsg("成功添加枚举分类", $ENV_GOBACK_URL);
exit();
}
}
@@ -249,7 +249,7 @@ function __upenum() { }
$row = $dsql->GetOne("SELECT egroup FROM `#@__sys_enum` WHERE id = '$aid' ");
WriteEnumsCache($row['egroup']);
$dsql->ExecuteNoneQuery("UPDATE `#@__sys_enum` SET `ename`='$ename',`disorder`='$disorder' WHERE id='$aid'; ");
ShowMsg("成功修改一个枚举", $ENV_GOBACK_URL);
ShowMsg("成功修改一个枚举", $ENV_GOBACK_URL);
exit();
}
/*-----------------
@@ -258,6 +258,6 @@ function __upallcache() { }
------------------*/ else if ($action == 'upallcache') {
if (!isset($egroup)) $egroup = '';
WriteEnumsCache($egroup);
ShowMsg("成更新枚举缓存", $ENV_GOBACK_URL);
ShowMsg("成更新枚举缓存", $ENV_GOBACK_URL);
exit();
}

+ 2
- 2
src/dede/swfupload.php View File

@@ -154,7 +154,7 @@ else if ($dopost == 'del') {
@unlink($cfg_basedir.$_SESSION['bigfile_info'][$id]);
$_SESSION['file_info'][$id] = '';
$_SESSION['bigfile_info'][$id] = '';
echo "<b>已删除</b>";
echo "<b>已删除</b>";
exit();
}
/************************
@@ -193,6 +193,6 @@ else if ($dopost == 'delold') {
@unlink($imgfile);
}
$dsql->ExecuteNoneQuery("DELETE FROM `#@__uploads` WHERE url LIKE '{$picfile}'; ");
echo "<b>已删除</b>";
echo "<b>已删除</b>";
exit();
}

+ 5
- 5
src/dede/sys_admin_user_add.php View File

@@ -17,17 +17,17 @@ if (empty($dopost)) $dopost = '';
if ($dopost == 'add') {
CheckCSRF();
if (preg_match("#[^0-9a-zA-Z_@!\.-]#", $pwd) || preg_match("#[^0-9a-zA-Z_@!\.-]#", $userid)) {
ShowMsg('密码或或用户名不合法,<br />请使用[0-9a-zA-Z_@!.-]内的字符', '-1', 0, 3000);
ShowMsg('密码或或用户名不合法,<br />请使用[0-9a-zA-Z_@!.-]内的字符', '-1', 0, 3000);
exit();
}
$safecodeok = substr(md5($cfg_cookie_encode.$randcode), 0, 24);
if ($safecode != $safecodeok) {
ShowMsg('请填写安全验证串', '-1', 0, 3000);
ShowMsg('请填写安全验证串', '-1', 0, 3000);
exit();
}
$row = $dsql->GetOne("SELECT COUNT(*) AS dd FROM `#@__member` WHERE userid LIKE '$userid' ");
if ($row['dd'] > 0) {
ShowMsg('用户名已存在', '-1');
ShowMsg('用户名已存在', '-1');
exit();
}
$mpwd = md5($pwd);
@@ -44,7 +44,7 @@ if ($dopost == 'add') {

$mid = $dsql->GetLastID();
if ($mid <= 0) {
die($dsql->GetError().' 数据库出错');
die($dsql->GetError().' 数据库出错');
}

//后台管理员
@@ -65,7 +65,7 @@ if ($dopost == 'add') {
Values('$mid','10','0','{$uname}的空间','','person','',''); ";
$dsql->ExecuteNoneQuery($adminquery);

ShowMsg('成功增加一个用户', 'sys_admin_user.php');
ShowMsg('成功增加一个用户', 'sys_admin_user.php');
exit();
}
$randcode = mt_rand(10000, 99999);


+ 7
- 7
src/dede/sys_admin_user_edit.php View File

@@ -19,12 +19,12 @@ if ($dopost == 'saveedit') {
CheckCSRF();
$pwd = trim($pwd);
if ($pwd != '' && preg_match("#[^0-9a-zA-Z_@!\.-]#", $pwd)) {
ShowMsg('密码不合法,请使用[0-9a-zA-Z_@!.-]内的字符', '-1', 0, 3000);
ShowMsg('密码不合法,请使用[0-9a-zA-Z_@!.-]内的字符', '-1', 0, 3000);
exit();
}
$safecodeok = substr(md5($cfg_cookie_encode.$randcode), 0, 24);
if ($safecodeok != $safecode) {
ShowMsg("请填写正确的安全验证串", "sys_admin_user_edit.php?id={$id}&dopost=edit");
ShowMsg("请填写正确的安全验证串", "sys_admin_user_edit.php?id={$id}&dopost=edit");
exit();
}
$pwdm = '';
@@ -46,7 +46,7 @@ if ($dopost == 'saveedit') {
$dsql->ExecuteNoneQuery($query);
$query = "UPDATE `#@__member` SET uname='$uname',email='$email'$pwdm WHERE mid='$id'";
$dsql->ExecuteNoneQuery($query);
ShowMsg("成功更改一个帐户", "sys_admin_user.php");
ShowMsg("成功更改一个帐户", "sys_admin_user.php");
exit();
} else if ($dopost == 'delete') {
if (empty($userok)) $userok = "";
@@ -63,7 +63,7 @@ if ($dopost == 'saveedit') {
$win->AddHidden("randcode", $randcode);
$win->AddHidden("safecode", $safecode);
$win->AddHidden("id", $id);
$win->AddTitle("系统警告");
$win->AddTitle("系统警告");
$win->AddMsgItem("您确信要删除用户:$userid 吗?", "50");
$win->AddMsgItem("安全验证串:<input name='safecode' type='text' id='safecode' size='16' style='width:200px' />&nbsp;(复制本代码: <font color='red'>$safecode</font> )", "30");
$winform = $win->GetWindow("ok");
@@ -72,7 +72,7 @@ if ($dopost == 'saveedit') {
}
$safecodeok = substr(md5($cfg_cookie_encode.$randcode), 0, 24);
if ($safecodeok != $safecode) {
ShowMsg("请填写正确的安全验证串", "sys_admin_user.php");
ShowMsg("请填写正确的安全验证串", "sys_admin_user.php");
exit();
}

@@ -81,9 +81,9 @@ if ($dopost == 'saveedit') {
if ($rs > 0) {
//更新前台用户信息
$dsql->ExecuteNoneQuery("UPDATE `#@__member` SET matt='0' WHERE mid='$id' LIMIT 1");
ShowMsg("成功删除一个帐户", "sys_admin_user.php");
ShowMsg("成功删除一个帐户", "sys_admin_user.php");
} else {
ShowMsg("不能删除id为1的创建人帐号,不能删除自己", "sys_admin_user.php", 0, 3000);
ShowMsg("不能删除id为1的创建人帐号,不能删除自己", "sys_admin_user.php", 0, 3000);
}
exit();
}


+ 1
- 1
src/dede/sys_cache_up.php View File

@@ -18,7 +18,7 @@ if ($dopost == "ok") {
if (empty($uparc)) $uparc = 0;
if ($step == -1) {
if ($uparc == 0) sleep(1);
ShowMsg("成功更新所有缓存", "javascript:;");
ShowMsg("成功更新所有缓存", "javascript:;");
exit();
}


+ 8
- 8
src/dede/sys_data.php View File

@@ -20,9 +20,9 @@ if ($cfg_dbtype == 'sqlite') {
if ($dopost == "viewinfo") //查看表结构
{
echo "[<a href='#' onclick='javascript:HideObj(\"_mydatainfo\")'><u>关闭</u></a>]\r\n<xmp>";
echo "[<a href='#' onclick='javascript:HideObj(\"_mydatainfo\")'>关闭</a>]\r\n<xmp>";
if (empty($tablename)) {
echo "没有指定表名";
echo "没有指定表名";
} else {
$dsql->SetQuery("SHOW CREATE TABLE ".$dsql->dbName.".".$tablename);
$dsql->Execute('me');
@@ -34,13 +34,13 @@ if ($dopost == "viewinfo") //查看表结构
exit();
} else if ($dopost == "opimize") //优化表
{
echo "[<a href='#' onclick='javascript:HideObj(\"_mydatainfo\")'><u>关闭</u></a>]\r\n<xmp>";
echo "[<a href='#' onclick='javascript:HideObj(\"_mydatainfo\")'>关闭</a>]\r\n<xmp>";
if (empty($tablename)) {
echo "没有指定表名";
echo "没有指定表名";
} else {
$rs = $dsql->ExecuteNoneQuery("OPTIMIZE TABLE `$tablename` ");
if ($rs) {
echo "执行优化表: $tablename OK";
echo "执行优化表: $tablename OK";
} else {
echo "执行优化表: $tablename 失败,原因是:".$dsql->GetError();
}
@@ -49,13 +49,13 @@ if ($dopost == "viewinfo") //查看表结构
exit();
} else if ($dopost == "repair") //修复表
{
echo "[<a href='#' onclick='javascript:HideObj(\"_mydatainfo\")'><u>关闭</u></a>]\r\n<xmp>";
echo "[<a href='#' onclick='javascript:HideObj(\"_mydatainfo\")'>关闭</a>]\r\n<xmp>";
if (empty($tablename)) {
echo "没有指定表名";
echo "没有指定表名";
} else {
$rs = $dsql->ExecuteNoneQuery("REPAIR TABLE `$tablename` ");
if ($rs) {
echo "修复表: $tablename OK";
echo "修复表: $tablename OK";
} else {
echo "修复表: $tablename 失败,原因是:".$dsql->GetError();
}


+ 3
- 3
src/dede/sys_data_done.php View File

@@ -31,7 +31,7 @@ function __bak_data();
--------------------*/
if ($dopost == 'bak') {
if (empty($tablearr)) {
ShowMsg('您没选中任何表', 'javascript:;');
ShowMsg('您没选中任何表', 'javascript:;');
exit();
}
if (!is_dir($bkdir)) {
@@ -179,7 +179,7 @@ if ($dopost == 'bak') {
$startpos = 0;
break;
} else {
PutInfo("完成所有数据备份", "");
PutInfo("完成所有数据备份", "");
exit();
}
}
@@ -279,7 +279,7 @@ function PutInfo($msg1, $msg2)
<meta name='viewport' content='width=device-width, initial-scale=1, shrink-to-fit=no'>
<link rel='stylesheet' href='../static/css/bootstrap.min.css'>
<title>DedeBIZ 提示信息</title>
<base target='_self'/>\n</head>\n<body leftmargin='0' topmargin='0'>\n<main class='container'><div class='modal' tabindex='-1' role='dialog' style='display:block'><div class='modal-dialog'><div class='modal-content'><div class='modal-header'><h6 class='modal-title'>DedeBIZ 提示信息</h6></div><div class='modal-body'>{$msg1}</div></div></div></div></main>{$msg2}";
<base target='_self'/>\n</head>\n<body leftmargin='0' topmargin='0'>\n<main class='container'><div class='modal' tabindex='-1' role='dialog' style='display:block'><div class='modal-dialog'><div class='modal-content'><div class='modal-header'><h6 class='modal-title'>DedeBIZ 提示信息</h6></div><div class='modal-body'>{$msg1}</div></div></div></div></main>{$msg2}";
echo $msginfo."\n</body>\n</html>";
}


+ 7
- 7
src/dede/sys_data_replace.php View File

@@ -26,7 +26,7 @@ function __getfields()
echo "<div style='border:1px solid #ababab;background-color:#FEFFF0;margin-top:6px;padding:3px;line-height:160%'>";
echo "表(".$exptable.")含有的字段:<br>";
while ($row = $dsql->GetFieldObject()) {
echo "<a href=\"javascript:pf('{$row->name}')\"><u>".$row->name."</u></a>\r\n";
echo "<a href=\"javascript:pf('{$row->name}')\">".$row->name."</a>\r\n";
}
echo "</div>";
exit();
@@ -42,11 +42,11 @@ function __Apply()
exit();
}
if ($exptable == '' || $rpfield == '') {
ShowMsg("请指定数据表和字段", "javascript:;");
ShowMsg("请指定数据表和字段", "javascript:;");
exit();
}
if ($rpstring == '') {
ShowMsg("请指定被替换内容", "javascript:;");
ShowMsg("请指定被替换内容", "javascript:;");
exit();
}
if ($rptype == 'replace') {
@@ -54,10 +54,10 @@ function __Apply()
$rs = $dsql->ExecuteNoneQuery("UPDATE $exptable SET $rpfield=REPLACE($rpfield,'$rpstring','$tostring') $condition ");
$dsql->ExecuteNoneQuery("OPTIMIZE TABLE `$exptable`");
if ($rs) {
ShowMsg("成功完成数据替换", "javascript:;");
ShowMsg("成功完成数据替换", "javascript:;");
exit();
} else {
ShowMsg("数据替换失败", "javascript:;");
ShowMsg("数据替换失败", "javascript:;");
exit();
}
} else {
@@ -69,7 +69,7 @@ function __Apply()
$dsql->Execute();
$tt = $dsql->GetTotalRow();
if ($tt == 0) {
ShowMsg("根据您指定的正则,找不到任何东西", "javascript:;");
ShowMsg("根据您指定的正则,找不到任何东西", "javascript:;");
exit();
}
$oo = 0;
@@ -82,7 +82,7 @@ function __Apply()
}
}
$dsql->ExecuteNoneQuery("OPTIMIZE TABLE `$exptable`");
ShowMsg("共找到 $tt 条记录,成功替换了 $oo 条", "javascript:;");
ShowMsg("共找到 $tt 条记录,成功替换了 $oo 条", "javascript:;");
exit();
}
}

+ 5
- 5
src/dede/sys_info.php View File

@@ -20,7 +20,7 @@ function ReWriteConfig()
{
global $dsql, $configfile;
if (!is_writeable($configfile)) {
echo "配置文件'{$configfile}'不支持写入,无法修改系统配置参数";
echo "配置文件'{$configfile}'不支持写入,无法修改系统配置参数";
exit();
}
$fp = fopen($configfile, 'w');
@@ -53,7 +53,7 @@ if ($dopost == "save") {
$dsql->ExecuteNoneQuery("UPDATE `#@__sysconfig` SET `value`='$v' WHERE varname='$k' ");
}
ReWriteConfig();
ShowMsg("成功更改站点配置", "sys_info.php");
ShowMsg("成功更改站点配置", "sys_info.php");
exit();
}
//增加新变量
@@ -78,15 +78,15 @@ else if ($dopost == 'add') {
VALUES ('$aid','$nvarname','$varmsg','$nvarvalue','$vartype','$vargroup')";
$rs = $dsql->ExecuteNoneQuery($inquery);
if (!$rs) {
ShowMsg("新增变量失败,可能有非法字符", "sys_info.php?gp=$vargroup");
ShowMsg("新增变量失败,可能有非法字符", "sys_info.php?gp=$vargroup");
exit();
}
if (!is_writeable($configfile)) {
ShowMsg("成功保存变量,但由于 $configfile 无法写入,因此不能更新配置文件", "sys_info.php?gp=$vargroup");
ShowMsg("成功保存变量,但由于 $configfile 无法写入,因此不能更新配置文件", "sys_info.php?gp=$vargroup");
exit();
} else {
ReWriteConfig();
ShowMsg("成功保存变量并更新配置文件", "sys_info.php?gp=$vargroup");
ShowMsg("成功保存变量并更新配置文件", "sys_info.php?gp=$vargroup");
exit();
}
}


+ 5
- 5
src/dede/sys_info_mark.php View File

@@ -13,7 +13,7 @@ require_once(dirname(__FILE__)."/config.php");
CheckPurview('sys_Edit');
require_once(DEDEINC."/image.func.php");
if ($cfg_photo_support == '') {
echo "您的系统没安装GD库,不允许使用本功能";
echo "您的系统没安装GD库,不允许使用本功能";
exit();
}
$ImageWaterConfigFile = DEDEDATA."/mark/inc_photowatermark_config.php";
@@ -34,7 +34,7 @@ if ($action == "save") {
$imgfile_type = strtolower(trim($newimg_type));
if (!in_array($imgfile_type, $allow_mark_types)) {
ShowMsg("上传的图片格式错误,请使用 gif、png格式的其中一种", "-1");
ShowMsg("上传的图片格式错误,请使用 gif、png格式的其中一种", "-1");
exit();
}
if ($imgfile_type == 'image/xpng' || $imgfile_type == 'image/png') {
@@ -42,7 +42,7 @@ if ($action == "save") {
} else if ($imgfile_type == 'image/gif') {
$shortname = ".gif";
} else {
ShowMsg("水印图片仅支持gif、png格式的其中一种", "-1");
ShowMsg("水印图片仅支持gif、png格式的其中一种", "-1");
exit;
}
$photo_markimg = 'mark'.$shortname;
@@ -50,10 +50,10 @@ if ($action == "save") {
}
$configstr .= "\$photo_markimg = '{$photo_markimg}';\r\n";
$configstr = "<"."?php\r\n".$configstr."?".">\r\n";
$fp = fopen($ImageWaterConfigFile, "w") or die("写入文件 $ImageWaterConfigFile 失败,请检查权限");
$fp = fopen($ImageWaterConfigFile, "w") or die("写入文件 $ImageWaterConfigFile 失败,请检查权限");
fwrite($fp, $configstr);
fclose($fp);
echo "<script>alert('修改配置成功');</script>\r\n";
echo "<script>alert('修改配置成功');</script>\r\n";
}
require_once($ImageWaterConfigFile);
include DedeInclude('templets/sys_info_mark.htm');

+ 2
- 2
src/dede/sys_passport.php View File

@@ -21,9 +21,9 @@ if ($dopost == 'save') {
$configstr .= "\${$v} = '".str_replace("'", "", stripslashes(${'edit___'.$v}))."';\r\n";
}
$configstr = '<'.'?'."\r\n".$configstr.'?'.'>';
$fp = fopen($ConfigFile, "w") or die("写入文件 $ConfigFile 失败,请检查权限");
$fp = fopen($ConfigFile, "w") or die("写入文件 $ConfigFile 失败,请检查权限");
fwrite($fp, $configstr);
fclose($fp);
echo "<script>alert('修改通行证配置成功');window.location='sys_passport.php?".time()."';</script>\r\n";
echo "<script>alert('修改通行证配置成功');window.location='sys_passport.php?".time()."';</script>\r\n";
}
include DedeInclude('templets/sys_passport.htm');

+ 6
- 6
src/dede/sys_repair.php View File

@@ -12,7 +12,7 @@
require_once(dirname(__FILE__).'/config.php');
CheckPurview('sys_ArcBatch');
require_once(dirname(__FILE__).'/../include/oxwindow.class.php');
//ShowMsg("目前暂不需要此工具,以后有需要系统会进行自动升级这个程序<br /><a href='index_body.php'>&lt;&lt;点击此返回&gt;&gt;</a>", "javascript:;");
//ShowMsg("目前暂不需要此工具,以后有需要系统会进行自动升级这个程序<br /><a href='index_body.php'>&lt;&lt;点击此返回&gt;&gt;</a>", "javascript:;");
//exit();
if (empty($dopost)) {
$win = new OxWindow();
@@ -57,7 +57,7 @@ function 1_test_db() { }
<table width='98%' border='0' cellspacing='0' cellpadding='0' align='center'>
<tr>
<td height='250' valign='top'>
<b><font color='green'>已完成数据结构完整性检测</font></b>
<b><font color='green'>已完成数据结构完整性检测</font></b>
<hr size='1'/>
<br />
<b>如果您系统有下面几种问题之一,请检测微表正确性:</b><br />
@@ -107,7 +107,7 @@ function 2_test_arctiny() { }
$row = $dsql->GetOne("SELECT COUNT(*) AS dd FROM `#@__arctiny` ");
$msg .= "※微统计表记录数: {$row['dd']}<br />";
if ($row['dd'] == $allarcnum) {
$msg .= "<p style='color:green;font-size:16px'><b>两者记录一致,无需修正</b></p><br />";
$msg .= "<p style='color:green;font-size:16px'><b>两者记录一致,无需修正</b></p><br />";
} else {
$sql = " TRUNCATE TABLE `#@__arctiny`";
$dsql->ExecuteNoneQuery($sql);
@@ -125,9 +125,9 @@ function 2_test_arctiny() { }
}
$row = $dsql->GetOne("SELECT COUNT(*) AS dd FROM `#@__arctiny` ");
if ($row['dd'] == $allarcnum) {
$msg .= "<p style='color:green;font-size:16px'><b>修正记录成功</b></p><br />";
$msg .= "<p style='color:green;font-size:16px'><b>修正记录成功</b></p><br />";
} else {
$msg .= "<p style='color:red;font-size:16px'><b>修正记录失败,建议进行高级综合检测</b></p><br />";
$msg .= "<p style='color:red;font-size:16px'><b>修正记录失败,建议进行高级综合检测</b></p><br />";
$errall = " <a href='sys_repair.php?dopost=3' class='btn btn-danger'><b>进行高级结合性检测&gt;&gt;</b></a> ";
}
}
@@ -201,7 +201,7 @@ function 3_re_arctiny() { }
<table width='98%' border='0' cellspacing='0' cellpadding='0' align='center'>
<tr>
<td height='250' valign='top'>
完成所有修复操作,移除错误记录 {$errnum} 条
完成所有修复操作,移除错误记录 {$errnum} 条
<hr />
<br />
<a href='index_body.php' class='btn btn-success'><b>完成修正或无错误返回&gt;&gt;</b></a>


+ 2
- 2
src/dede/sys_safetest.php View File

@@ -91,7 +91,7 @@ if ($action == 'test') {
AjaxHead();
TestSafe(DEDEROOT);
if ($message == '') $message = "<font color='green' style='font-size:14px'>没发现可疑文件</font>";
if ($message == '') $message = "<font color='green' style='font-size:14px'>没发现可疑文件</font>";
echo $message;
exit();
} else if ($action == 'viewdiff') {
@@ -132,7 +132,7 @@ else if ($action == 'clear') {
@unlink($d.'/'.$filename);
}
}
$message = "<font color='green' style='font-size:14px'>成功清空模板缓存</font>";
$message = "<font color='green' style='font-size:14px'>成功清空模板缓存</font>";
echo $message;
exit();
}


+ 9
- 9
src/dede/sys_sql_query.php View File

@@ -17,7 +17,7 @@ if (empty($dopost)) $dopost = "";
if ($dopost == "viewinfo") {
CheckCSRF();
if (empty($tablename)) {
echo "没有指定表名";
echo "没有指定表名";
} else {
$dsql->SetQuery("SHOW CREATE TABLE ".$dsql->dbName.".".$tablename);
$dsql->Execute('me');
@@ -31,10 +31,10 @@ if ($dopost == "viewinfo") {
else if ($dopost == "opimize") {
CheckCSRF();
if (empty($tablename)) {
echo "没有指定表名";
echo "没有指定表名";
} else {
$rs = $dsql->ExecuteNoneQuery("OPTIMIZE TABLE `$tablename` ");
if ($rs) echo "执行优化表: $tablename OK";
if ($rs) echo "执行优化表: $tablename OK";
else echo "执行优化表: $tablename 失败,原因是:".$dsql->GetError();
}
exit();
@@ -58,10 +58,10 @@ else if ($dopost == "opimizeAll") {
else if ($dopost == "repair") {
CheckCSRF();
if (empty($tablename)) {
echo "没有指定表名";
echo "没有指定表名";
} else {
$rs = $dsql->ExecuteNoneQuery("REPAIR TABLE `$tablename` ");
if ($rs) echo "修复表: $tablename OK";
if ($rs) echo "修复表: $tablename OK";
else echo "修复表: $tablename 失败,原因是:".$dsql->GetError();
}
exit();
@@ -94,9 +94,9 @@ else if ($dopost == "query") {
$dsql->SetQuery($sqlquery);
$dsql->Execute();
if ($dsql->GetTotalRow() <= 0) {
echo "运行SQL:{$sqlquery},无返回记录";
echo "运行SQL:{$sqlquery},无返回记录";
} else {
echo "运行SQL:{$sqlquery},共有".$dsql->GetTotalRow()."条记录,最大返回100条";
echo "运行SQL:{$sqlquery},共有".$dsql->GetTotalRow()."条记录,最大返回100条";
}
$j = 0;
while ($row = $dsql->GetArray()) {
@@ -132,12 +132,12 @@ else if ($dopost == "query") {
$nerrCode .= "执行: <font color='blue'>$q</font> 出错,错误提示:<font color='red'>".$errCode."</font><br>";
}
}
echo "成功执行{$i}个SQL语句<br><br>";
echo "成功执行{$i}个SQL语句<br><br>";
echo $nerrCode;
} else {
$dsql->ExecuteNoneQuery($sqlquery);
$nerrCode = trim($dsql->GetError());
echo "成功执行1个SQL语句<br><br>";
echo "成功执行1个SQL语句<br><br>";
echo $nerrCode;
}
exit();


+ 7
- 7
src/dede/task_do.php View File

@@ -68,11 +68,11 @@ if ($dopost == 'makeprenext') {
$arc->MakeHtml();
}
if (empty($nextdo)) {
ShowMsg("<b>完成上下篇文档更新任务完成所有更新任务</b>", "close::tgtable");
ShowMsg("<b>完成上下篇文档更新任务完成所有更新任务</b>", "close::tgtable");
exit();
} else {
$jumpurl = GetNextUrl();
ShowMsg("完成下篇文档更新任务 继续执行其它任务...", $jumpurl, 0, 500);
ShowMsg("完成下篇文档更新任务 继续执行其它任务...", $jumpurl, 0, 500);
exit();
}
}
@@ -101,11 +101,11 @@ if ($dopost == 'makeindex') {
$pv->SaveToHtml($homeFile);
$pv->Close();
if (empty($nextdo)) {
ShowMsg("<b>完成主页更新任务完成所有更新任务</b>", "close::tgtable");
ShowMsg("<b>完成主页更新任务完成所有更新任务</b>", "close::tgtable");
exit();
} else {
$jumpurl = GetNextUrl();
ShowMsg("完成主页更新 现在跳转到其它更新任务...", $jumpurl, 0, 500);
ShowMsg("完成主页更新 现在跳转到其它更新任务...", $jumpurl, 0, 500);
exit();
}
}
@@ -121,7 +121,7 @@ else if ($dopost == 'makeparenttype') {
$jumpurl = GetNextUrl($notallowArr);
if (empty($typeid)) {
ShowMsg("<b>完成栏目更新任务完成所有更新任务</b>", "close::tgtable");
ShowMsg("<b>完成栏目更新任务完成所有更新任务</b>", "close::tgtable");
exit();
}
$topids = explode(',', GetTopids($typeid));
@@ -146,10 +146,10 @@ else if ($dopost == 'makeparenttype') {
if (!empty($doposttmp)) {
$jumpurl = preg_replace("#doposttmp|nextdotmp#", 'del', $jumpurl);
$jumpurl .= "&dopost={$doposttmp}&nextdo={$nextdotmp}";
ShowMsg("完成栏目:{$tid} 更新<br /><b>完成栏目更新任务,继续执行后续任务...</b>", $jumpurl, 0, 500);
ShowMsg("完成栏目:{$tid} 更新<br /><b>完成栏目更新任务,继续执行后续任务...</b>", $jumpurl, 0, 500);
exit();
} else {
ShowMsg("完成栏目:{$tid} 更新<br /><b>完成栏目更新任务,完成所有更新任务</b>", "close::tgtable");
ShowMsg("完成栏目:{$tid} 更新<br /><b>完成栏目更新任务,完成所有更新任务</b>", "close::tgtable");
exit();
}
} else {


Some files were not shown because too many files changed in this diff

Loading…
Cancel
Save