DedeBIZ
/
DedeV6
Watch 2
Star 0
Fork 0
Code Pull Requests 0 Releases 25 Activity
国内流行的内容管理系统(CMS)多端全媒体解决方案 https://www.dedebiz.com
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2007 Commits
3 Branches
110MB
Tree: 1111c40e79
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '1111c40e79'
${ noResults }
DedeV6/src/user/inc/archives_check_edit.php

64 lines
2.2KB
Raw Blame History 

  1. <?php

  2. if (!defined('DEDEMEMBER')) exit ('dedebiz');

  3. /**

  4.  * 文档修改验证

  5.  * 

  6.  * @version        $id:archives_check_edit.php 13:52 2010年7月9日 tianya $

  7.  * @package        DedeBIZ.User

  8.  * @copyright      Copyright (c) 2022 DedeBIZ.COM

  9.  * @license        https://www.dedebiz.com/license

  10.  * @link           https://www.dedebiz.com

  11.  */

  12. require_once(DEDEINC."/image.func.php");

  13. require_once(DEDEINC."/libraries/oxwindow.class.php");

  14. $flag = '';

  15. $typeid = isset($typeid) && is_numeric($typeid) ? $typeid : 0;

  16. $userip = GetIP();

  17. if (trim($title) == '') {

  18.     ShowMsg("文档标题不能为空", "-1");

  19.     exit();

  20. }

  21. if (empty($typeid)) {

  22.     ShowMsg("请选择文档栏目", "-1");

  23.     exit();

  24. }

  25. //校验CSRF

  26. CheckCSRF();

  27. $query = "SELECT tp.ispart,tp.channeltype,tp.issend,ch.issend as cissend,ch.sendrank,ch.arcsta,ch.addtable,ch.fieldset,ch.usertype FROM `#@__arctype` tp LEFT JOIN `#@__channeltype` ch ON ch.id=tp.channeltype WHERE tp.id='$typeid' ";

  28. $cInfos = $dsql->GetOne($query);

  29. $addtable = $cInfos['addtable'];

  30. //检测栏目是否有投稿权限

  31. if ($cInfos['issend'] != 1 || $cInfos['ispart'] != 0 || $cInfos['channeltype'] != $channelid || $cInfos['cissend'] != 1) {

  32.     ShowMsg("您所选择的栏目不支持投稿", "-1");

  33.     exit();

  34. }

  35. //文档的默认状态

  36. if ($cInfos['arcsta'] == 0) {

  37.     $ismake = 0;

  38.     $arcrank = 0;

  39. } else if ($cInfos['arcsta'] == 1) {

  40.     $ismake = -1;

  41.     $arcrank = 0;

  42. } else {

  43.     $ismake = 0;

  44.     $arcrank = -1;

  45. }

  46. //对保存的文档进行处理

  47. $title = cn_substrR(HtmlReplace($title, 1), $cfg_title_maxlen);

  48. $writer =  cn_substrR(HtmlReplace($writer, 1), 20);

  49. if (empty($description)) $description = '';

  50. $description = cn_substrR(HtmlReplace($description, 1), 250);

  51. $keywords = cn_substrR(HtmlReplace($tags, 1), 30);

  52. $source = isset($source)? HtmlReplace($source, 1) : '';

  53. $mid = $cfg_ml->M_ID;

  54. $midQuery = "SELECT mid FROM `#@__arctiny` WHERE id='$aid'";

  55. $midRow = $dsql->GetOne($midQuery);

  56. if ($midRow['mid'] != $mid) {

  57.     ShowMsg("您暂无权限修改文档", "javascript:;");

  58.     exit;

  59. }

  60. $isadmin = ($cfg_ml->fields['matt'] == 10 ? true : false);

  61. if (empty($oldlitpic)) {

  62.     $oldlitpic = '';

  63. }

  64. ?>