DedeBIZ
/
DedeV6
Segui 2
Vota 0
Forka 0
Codice Pull Requests 0 Rilasci 25 Attività
国内流行的内容管理系统(CMS)多端全媒体解决方案 https://www.dedebiz.com
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
126 Commit
3 Rami (Branch)
3.8GB
Albero (Tree): 1d4f01c069
Rami (Branch) Tag
${ item.name }
Crea branch ${ searchTerm }
da '1d4f01c069'
${ noResults }
DedeV6/src/dede/member_do.php

288 lines
12KB
Originale Blame Cronologia 

  1. <?php

  2. /**

  3.  * 会员管理操作

  4.  *

  5.  * @version        $Id: member_do.php 1 13:47 2010年7月19日Z tianya $

  6.  * @package        DedeCMS.Administrator

  7.  * @copyright      Copyright (c) 2007 - 2020, DesDev, Inc.

  8.  * @license        http://help.dedecms.com/usersguide/license.html

  9.  * @link           http://www.dedecms.com

  10.  */

  11. require_once(dirname(__FILE__)."/config.php");

  12. require_once(DEDEINC."/oxwindow.class.php");

  13. if(empty($dopost)) $dopost = '';

  14. if(empty($fmdo)) $fmdo = '';

  15. $ENV_GOBACK_URL = isset($_COOKIE['ENV_GOBACK_URL']) ? 'member_main.php' : '';

  16. 

  17. /*----------------

  18. function __DelMember()

  19. 删除会员

  20. ----------------*/

  21. if($dopost=="delmember")

  22. {

  23.     CheckPurview('member_Del');

  24.     if($fmdo=='yes')

  25.     {

  26.         $id = preg_replace("#[^0-9]#", '', $id);

  27.         $safecodeok = substr(md5($cfg_cookie_encode.$randcode),0,24);

  28.         if($safecodeok!=$safecode)

  29.         {

  30.             ShowMsg("请填写正确的安全验证串!","member_do.php?id={$id}&dopost=delmember");

  31.             exit();

  32.         }

  33.         if(!empty($id))

  34.         {

  35.             //删除用户信息

  36.             $row = $dsql->GetOne("SELECT * FROM `#@__member` WHERE mid='$id' LIMIT 1 ");

  37.             $rs = 0;

  38.             if($row['matt'] == 10)

  39.             {

  40.                 $nrow = $dsql->GetOne("SELECT * FROM `#@__admin` WHERE id='$id' LIMIT 1 ");

  41.                 //已经删除关连的管理员帐号

  42.                 if(!is_array($nrow)) $rs = $dsql->ExecuteNoneQuery2("DELETE FROM `#@__member` WHERE mid='$id' LIMIT 1");

  43.             }

  44.             else

  45.             {

  46.                 $rs = $dsql->ExecuteNoneQuery2("DELETE FROM `#@__member` WHERE mid='$id' LIMIT 1");

  47.             }

  48.             if($rs > 0)

  49.             {

  50.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_tj` WHERE mid='$id' LIMIT 1");

  51.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_space` WHERE mid='$id' LIMIT 1");

  52.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_company` WHERE mid='$id' LIMIT 1");

  53.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_person` WHERE mid='$id' LIMIT 1");

  54. 

  55.                 //删除用户相关数据

  56.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_stow` WHERE mid='$id' ");

  57.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_flink` WHERE mid='$id' ");

  58.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_guestbook` WHERE mid='$id' ");

  59.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_operation` WHERE mid='$id' ");

  60.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_pms` WHERE toid='$id' Or fromid='$id' ");

  61.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_friends` WHERE mid='$id' Or fid='$id' ");

  62.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_vhistory` WHERE mid='$id' Or vid='$id' ");

  63.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__feedback` WHERE mid='$id' ");

  64.                 $dsql->ExecuteNoneQuery("UPDATE `#@__archives` SET mid='0' WHERE mid='$id'");

  65.                 #api{{

  66.                 if(defined('UC_API') && @include_once DEDEROOT.'/uc_client/client.php')    {

  67.             $infofromuc=uc_get_user($row['userid']);

  68.           uc_user_delete($infofromuc[0]);

  69.         }

  70.                 #/aip}}

  71.             }

  72.             else

  73.             {

  74.                 ShowMsg("无法删除此会员,如果这个会员是<b>[管理员]</b>,<br />必须先删除这个<b>[管理员]</b>才能删除此帐号!", $ENV_GOBACK_URL, 0, 5000);

  75.                 exit();

  76.             }

  77.         }

  78.         ShowMsg("成功删除一个会员!",$ENV_GOBACK_URL);

  79.         exit();

  80.     }

  81.     $randcode = mt_rand(10000,99999);

  82.     $safecode = substr(md5($cfg_cookie_encode.$randcode),0,24);

  83.     $wintitle = "会员管理-删除会员";

  84.     $wecome_info = "<a href='".$ENV_GOBACK_URL."'>会员管理</a>::删除会员";

  85.     $win = new OxWindow();

  86.     $win->Init("member_do.php","js/blank.js","POST");

  87.     $win->AddHidden("fmdo","yes");

  88.     $win->AddHidden("dopost",$dopost);

  89.     $win->AddHidden("id",$id);

  90.     $win->AddHidden("randcode",$randcode);

  91.     $win->AddHidden("safecode",$safecode);

  92.     $win->AddTitle("你确实要删除(ID:".$id.")这个会员?");

  93.     $win->AddMsgItem("安全验证串:<input name='safecode' type='text' id='safecode' size='16' style='width:200px' />&nbsp;(复制本代码: <font color='red'>$safecode</font> )","30");

  94.     $winform = $win->GetWindow("ok");

  95.     $win->Display();

  96. }else if($dopost=="delmembers"){

  97.     CheckPurview('member_Del');

  98.     if($fmdo=='yes')

  99.     {

  100.         $safecodeok = substr(md5($cfg_cookie_encode.$randcode),0,24);

  101.         if($safecodeok!=$safecode)

  102.         {

  103.             ShowMsg("请填写正确的安全验证串!","member_do.php?id={$id}&dopost=delmembers");

  104.             exit();

  105.         }

  106.         if(!empty($id))

  107.         {

  108.             //删除用户信息

  109.             

  110.             $rs = $dsql->ExecuteNoneQuery2("DELETE FROM `#@__member` WHERE mid IN (".str_replace("`",",",$id).") And matt<>10 ");    

  111.             if($rs > 0)

  112.             {

  113.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_tj` WHERE mid IN (".str_replace("`",",",$id).") ");

  114.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_space` WHERE mid IN (".str_replace("`",",",$id).") ");

  115.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_company` WHERE mid IN (".str_replace("`",",",$id).") ");

  116.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_person` WHERE mid IN (".str_replace("`",",",$id).") ");

  117. 

  118.                 //删除用户相关数据

  119.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_stow` WHERE mid IN (".str_replace("`",",",$id).") ");

  120.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_flink` WHERE mid IN (".str_replace("`",",",$id).") ");

  121.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_guestbook` WHERE mid IN (".str_replace("`",",",$id).") ");

  122.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_operation` WHERE mid IN (".str_replace("`",",",$id).") ");

  123.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_pms` WHERE toid IN (".str_replace("`",",",$id).") Or fromid IN (".str_replace("`",",",$id).") ");

  124.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_friends` WHERE mid IN (".str_replace("`",",",$id).") Or fid IN (".str_replace("`",",",$id).") ");

  125.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_vhistory` WHERE mid IN (".str_replace("`",",",$id).") Or vid IN (".str_replace("`",",",$id).") ");

  126.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__feedback` WHERE mid IN (".str_replace("`",",",$id).") ");

  127.                 $dsql->ExecuteNoneQuery("UPDATE `#@__archives` SET mid='0' WHERE mid IN (".str_replace("`",",",$id).")");

  128.             }

  129.             else

  130.             {

  131.                 ShowMsg("无法删除此会员,如果这个会员是管理员关连的ID,<br />必须先删除这个管理员才能删除此帐号!",$ENV_GOBACK_URL,0,3000);

  132.                 exit();

  133.             }

  134.         }

  135.         ShowMsg("成功删除这些会员!",$ENV_GOBACK_URL);

  136.         exit();

  137.     }

  138.     $randcode = mt_rand(10000, 99999);

  139.     $safecode = substr(md5($cfg_cookie_encode.$randcode), 0, 24);

  140.     $wintitle = "会员管理-删除会员";

  141.     $wecome_info = "<a href='".$ENV_GOBACK_URL."'>会员管理</a>::删除会员";

  142.     $win = new OxWindow();

  143.     $win->Init("member_do.php", "js/blank.js", "POST");

  144.     $win->AddHidden("fmdo", "yes");

  145.     $win->AddHidden("dopost", $dopost);

  146.     $win->AddHidden("id",$id);

  147.     $win->AddHidden("randcode", $randcode);

  148.     $win->AddHidden("safecode", $safecode);

  149.     $win->AddTitle("你确实要删除(ID:".$id.")这个会员?");

  150.     $win->AddMsgItem(" 安全验证串:<input name='safecode' type='text' id='safecode' size='16' style='width:200px' /> (复制本代码: <font color='red'>$safecode</font>)","30");

  151.     $winform = $win->GetWindow("ok");

  152.     $win->Display();

  153. }

  154. /*----------------

  155. function __Recommend()

  156. 推荐会员

  157. ----------------*/

  158. else if ($dopost=="recommend")

  159. {

  160.     CheckPurview('member_Edit');

  161.     $id = preg_replace("#[^0-9]#", "", $id);

  162.     if($matt==0)

  163.     {

  164.         $dsql->ExecuteNoneQuery("UPDATE `#@__member` SET matt=1 WHERE mid='$id' AND matt<>10 LIMIT 1");

  165.         ShowMsg("成功设置一个会员推荐!",$ENV_GOBACK_URL);

  166.         exit();

  167.     }

  168.     else

  169.     {

  170.         $dsql->ExecuteNoneQuery("UPDATE `#@__member` SET matt=0 WHERE mid='$id' AND matt<>10 LIMIT 1");

  171.         ShowMsg("成功取消一个会员推荐!",$ENV_GOBACK_URL);

  172.         exit();

  173.     }

  174. }

  175. /*----------------

  176. function __EditUser()

  177. 更改会员

  178. ----------------*/

  179. else if ($dopost=='edituser')

  180. {

  181.     CheckPurview('member_Edit');

  182.     if(!isset($_POST['id'])) exit('Request Error!');

  183.     $pwdsql = empty($pwd) ? '' : ",pwd='".md5($pwd)."'";

  184.     if(empty($sex)) $sex = '男';

  185.     $uptime=GetMkTime($uptime);

  186.     

  187.     if($matt==10 && $oldmatt!=10)

  188.     {

  189.         ShowMsg("对不起,为安全起见,不支持直接把前台会员转为管理的操作!", "-1");

  190.         exit();

  191.     }    

  192.     $query = "UPDATE `#@__member` SET

  193.             email = '$email',

  194.             uname = '$uname',

  195.             sex = '$sex',

  196.             matt = '$matt',

  197.             money = '$money',

  198.             scores = '$scores',

  199.             rank = '$rank',

  200.             spacesta='$spacesta',

  201.             uptime='$uptime',

  202.             exptime='$exptime'

  203.             $pwdsql

  204.             WHERE mid='$id' AND matt<>10 ";

  205.     $rs = $dsql->ExecuteNoneQuery2($query);

  206.     if($rs==0)

  207.     {

  208.         $query = "UPDATE `#@__member` SET

  209.             email = '$email',

  210.             uname = '$uname',

  211.             sex = '$sex',

  212.             money = '$money',

  213.             scores = '$scores',

  214.             rank = '$rank',

  215.             spacesta='$spacesta',

  216.             uptime='$uptime',

  217.             exptime='$exptime'

  218.             $pwdsql

  219.             WHERE mid='$id' ";

  220.             $rs = $dsql->ExecuteNoneQuery2($query);

  221.     }

  222.     

  223.     #api{{

  224.     if(defined('UC_API') && @include_once DEDEROOT.'/api/uc.func.php')

  225.     {

  226.         $row = $dsql->GetOne("SELECT `scores`,`userid` FROM `#@__member` WHERE `mid`='$id' AND `matt`<>10");

  227.         $amount = $scores-$row['scores'];

  228.         uc_credit_note($row['userid'],$amount);

  229.     }

  230.     #/aip}}

  231.     

  232.     ShowMsg('成功更改会员资料!', 'member_view.php?id='.$id);

  233.     exit();

  234. }

  235. /*--------------

  236. function __LoginCP()

  237. 登录会员的控制面板

  238. ----------*/

  239. else if ($dopost=="memberlogin")

  240. {

  241.     CheckPurview('member_Edit');

  242.     PutCookie('DedeUserID',$id,1800);

  243.     PutCookie('DedeLoginTime',time(),1800);

  244.     if(empty($jumpurl)) header("location:../member/index.php");

  245.     else header("location:$jumpurl");

  246. } else if ($dopost == "deoperations")

  247. {

  248.     $nid = preg_replace('#[^0-9,]#', '', preg_replace('#`#', ',', $nid));

  249.     $nid = explode(',', $nid);

  250.     if(is_array($nid))

  251.     {

  252.         foreach ($nid as $var)

  253.         {

  254.             $query = "DELETE FROM `#@__member_operation` WHERE aid = '$var'";

  255.             $dsql->ExecuteNoneQuery($query);

  256.         }

  257.         ShowMsg("删除成功!","member_operations.php");

  258.         exit();

  259.     }

  260. } else if ($dopost == "upoperations")

  261. {

  262.     $nid = preg_replace('#[^0-9,]#', '', preg_replace('#`#', ',', $nid));

  263.     $nid = explode(',', $nid);

  264.     if(is_array($nid))

  265.     {

  266.         foreach ($nid as $var)

  267.         {

  268.             $query = "UPDATE `#@__member_operation` SET sta = '1' WHERE aid = '$var'";

  269.             $dsql->ExecuteNoneQuery($query);

  270.             ShowMsg("设置成功!","member_operations.php");

  271.             exit();

  272.         }

  273.     }

  274. } else if($dopost == "okoperations")

  275. {

  276.     $nid = preg_replace('#[^0-9,]#', '', preg_replace('#`#', ',', $nid));

  277.     $nid = explode(',', $nid);

  278.     if(is_array($nid))

  279.     {

  280.         foreach ($nid as $var)

  281.         {

  282.             $query = "UPDATE `#@__member_operation` SET sta = '2' WHERE aid = '$var'";

  283.             $dsql->ExecuteNoneQuery($query);

  284.             ShowMsg("设置成功!","member_operations.php");

  285.             exit();

  286.         }

  287.     }

  288. }