DedeBIZ
/
DedeV6
Watch 2
Star 0
Fork 0
Code Pull Requests 0 Releases 25 Activity
国内流行的内容管理系统(CMS)多端全媒体解决方案 https://www.dedebiz.com
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
127 Commits
3 Branches
110MB
Tree: 417fee8e5b
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '417fee8e5b'
${ noResults }
DedeV6/src/dede/member_do.php

286 lines
12KB
Raw Blame History 

  1. <?php

  2. /**

  3.  * 会员管理操作

  4.  *

  5.  * @version        $Id: member_do.php 1 13:47 2010年7月19日Z tianya $

  6.  * @package        DedeCMS.Administrator

  7.  * @copyright      Copyright (c) 2007 - 2020, DesDev, Inc.

  8.  * @license        http://help.dedecms.com/usersguide/license.html

  9.  * @link           http://www.dedecms.com

  10.  */

  11. require_once(dirname(__FILE__)."/config.php");

  12. require_once(DEDEINC."/oxwindow.class.php");

  13. if(empty($dopost)) $dopost = '';

  14. if(empty($fmdo)) $fmdo = '';

  15. $ENV_GOBACK_URL = isset($_COOKIE['ENV_GOBACK_URL']) ? 'member_main.php' : '';

  16. 

  17. /*----------------

  18. function __DelMember()

  19. 删除会员

  20. ----------------*/

  21. if($dopost=="delmember")

  22. {

  23.     CheckPurview('member_Del');

  24.     if($fmdo=='yes')

  25.     {

  26.         $id = preg_replace("#[^0-9]#", '', $id);

  27.         $safecodeok = substr(md5($cfg_cookie_encode.$randcode),0,24);

  28.         if($safecodeok!=$safecode)

  29.         {

  30.             ShowMsg("请填写正确的安全验证串!","member_do.php?id={$id}&dopost=delmember");

  31.             exit();

  32.         }

  33.         if(!empty($id))

  34.         {

  35.             //删除用户信息

  36.             $row = $dsql->GetOne("SELECT * FROM `#@__member` WHERE mid='$id' LIMIT 1 ");

  37.             $rs = 0;

  38.             if($row['matt'] == 10)

  39.             {

  40.                 $nrow = $dsql->GetOne("SELECT * FROM `#@__admin` WHERE id='$id' LIMIT 1 ");

  41.                 //已经删除关连的管理员帐号

  42.                 if(!is_array($nrow)) $rs = $dsql->ExecuteNoneQuery2("DELETE FROM `#@__member` WHERE mid='$id' LIMIT 1");

  43.             }

  44.             else

  45.             {

  46.                 $rs = $dsql->ExecuteNoneQuery2("DELETE FROM `#@__member` WHERE mid='$id' LIMIT 1");

  47.             }

  48.             if($rs > 0)

  49.             {

  50.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_tj` WHERE mid='$id' LIMIT 1");

  51.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_space` WHERE mid='$id' LIMIT 1");

  52.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_company` WHERE mid='$id' LIMIT 1");

  53.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_person` WHERE mid='$id' LIMIT 1");

  54. 

  55.                 //删除用户相关数据

  56.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_stow` WHERE mid='$id' ");

  57.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_flink` WHERE mid='$id' ");

  58.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_guestbook` WHERE mid='$id' ");

  59.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_operation` WHERE mid='$id' ");

  60.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_pms` WHERE toid='$id' Or fromid='$id' ");

  61.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_friends` WHERE mid='$id' Or fid='$id' ");

  62.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__feedback` WHERE mid='$id' ");

  63.                 $dsql->ExecuteNoneQuery("UPDATE `#@__archives` SET mid='0' WHERE mid='$id'");

  64.                 #api{{

  65.                 if(defined('UC_API') && @include_once DEDEROOT.'/uc_client/client.php')    {

  66.             $infofromuc=uc_get_user($row['userid']);

  67.           uc_user_delete($infofromuc[0]);

  68.         }

  69.                 #/aip}}

  70.             }

  71.             else

  72.             {

  73.                 ShowMsg("无法删除此会员,如果这个会员是<b>[管理员]</b>,<br />必须先删除这个<b>[管理员]</b>才能删除此帐号!", $ENV_GOBACK_URL, 0, 5000);

  74.                 exit();

  75.             }

  76.         }

  77.         ShowMsg("成功删除一个会员!",$ENV_GOBACK_URL);

  78.         exit();

  79.     }

  80.     $randcode = mt_rand(10000,99999);

  81.     $safecode = substr(md5($cfg_cookie_encode.$randcode),0,24);

  82.     $wintitle = "会员管理-删除会员";

  83.     $wecome_info = "<a href='".$ENV_GOBACK_URL."'>会员管理</a>::删除会员";

  84.     $win = new OxWindow();

  85.     $win->Init("member_do.php","js/blank.js","POST");

  86.     $win->AddHidden("fmdo","yes");

  87.     $win->AddHidden("dopost",$dopost);

  88.     $win->AddHidden("id",$id);

  89.     $win->AddHidden("randcode",$randcode);

  90.     $win->AddHidden("safecode",$safecode);

  91.     $win->AddTitle("你确实要删除(ID:".$id.")这个会员?");

  92.     $win->AddMsgItem("安全验证串:<input name='safecode' type='text' id='safecode' size='16' style='width:200px' />&nbsp;(复制本代码: <font color='red'>$safecode</font> )","30");

  93.     $winform = $win->GetWindow("ok");

  94.     $win->Display();

  95. }else if($dopost=="delmembers"){

  96.     CheckPurview('member_Del');

  97.     if($fmdo=='yes')

  98.     {

  99.         $safecodeok = substr(md5($cfg_cookie_encode.$randcode),0,24);

  100.         if($safecodeok!=$safecode)

  101.         {

  102.             ShowMsg("请填写正确的安全验证串!","member_do.php?id={$id}&dopost=delmembers");

  103.             exit();

  104.         }

  105.         if(!empty($id))

  106.         {

  107.             //删除用户信息

  108.             

  109.             $rs = $dsql->ExecuteNoneQuery2("DELETE FROM `#@__member` WHERE mid IN (".str_replace("`",",",$id).") And matt<>10 ");    

  110.             if($rs > 0)

  111.             {

  112.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_tj` WHERE mid IN (".str_replace("`",",",$id).") ");

  113.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_space` WHERE mid IN (".str_replace("`",",",$id).") ");

  114.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_company` WHERE mid IN (".str_replace("`",",",$id).") ");

  115.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_person` WHERE mid IN (".str_replace("`",",",$id).") ");

  116. 

  117.                 //删除用户相关数据

  118.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_stow` WHERE mid IN (".str_replace("`",",",$id).") ");

  119.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_flink` WHERE mid IN (".str_replace("`",",",$id).") ");

  120.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_guestbook` WHERE mid IN (".str_replace("`",",",$id).") ");

  121.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_operation` WHERE mid IN (".str_replace("`",",",$id).") ");

  122.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_pms` WHERE toid IN (".str_replace("`",",",$id).") Or fromid IN (".str_replace("`",",",$id).") ");

  123.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_friends` WHERE mid IN (".str_replace("`",",",$id).") Or fid IN (".str_replace("`",",",$id).") ");

  124.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__feedback` WHERE mid IN (".str_replace("`",",",$id).") ");

  125.                 $dsql->ExecuteNoneQuery("UPDATE `#@__archives` SET mid='0' WHERE mid IN (".str_replace("`",",",$id).")");

  126.             }

  127.             else

  128.             {

  129.                 ShowMsg("无法删除此会员,如果这个会员是管理员关连的ID,<br />必须先删除这个管理员才能删除此帐号!",$ENV_GOBACK_URL,0,3000);

  130.                 exit();

  131.             }

  132.         }

  133.         ShowMsg("成功删除这些会员!",$ENV_GOBACK_URL);

  134.         exit();

  135.     }

  136.     $randcode = mt_rand(10000, 99999);

  137.     $safecode = substr(md5($cfg_cookie_encode.$randcode), 0, 24);

  138.     $wintitle = "会员管理-删除会员";

  139.     $wecome_info = "<a href='".$ENV_GOBACK_URL."'>会员管理</a>::删除会员";

  140.     $win = new OxWindow();

  141.     $win->Init("member_do.php", "js/blank.js", "POST");

  142.     $win->AddHidden("fmdo", "yes");

  143.     $win->AddHidden("dopost", $dopost);

  144.     $win->AddHidden("id",$id);

  145.     $win->AddHidden("randcode", $randcode);

  146.     $win->AddHidden("safecode", $safecode);

  147.     $win->AddTitle("你确实要删除(ID:".$id.")这个会员?");

  148.     $win->AddMsgItem(" 安全验证串:<input name='safecode' type='text' id='safecode' size='16' style='width:200px' /> (复制本代码: <font color='red'>$safecode</font>)","30");

  149.     $winform = $win->GetWindow("ok");

  150.     $win->Display();

  151. }

  152. /*----------------

  153. function __Recommend()

  154. 推荐会员

  155. ----------------*/

  156. else if ($dopost=="recommend")

  157. {

  158.     CheckPurview('member_Edit');

  159.     $id = preg_replace("#[^0-9]#", "", $id);

  160.     if($matt==0)

  161.     {

  162.         $dsql->ExecuteNoneQuery("UPDATE `#@__member` SET matt=1 WHERE mid='$id' AND matt<>10 LIMIT 1");

  163.         ShowMsg("成功设置一个会员推荐!",$ENV_GOBACK_URL);

  164.         exit();

  165.     }

  166.     else

  167.     {

  168.         $dsql->ExecuteNoneQuery("UPDATE `#@__member` SET matt=0 WHERE mid='$id' AND matt<>10 LIMIT 1");

  169.         ShowMsg("成功取消一个会员推荐!",$ENV_GOBACK_URL);

  170.         exit();

  171.     }

  172. }

  173. /*----------------

  174. function __EditUser()

  175. 更改会员

  176. ----------------*/

  177. else if ($dopost=='edituser')

  178. {

  179.     CheckPurview('member_Edit');

  180.     if(!isset($_POST['id'])) exit('Request Error!');

  181.     $pwdsql = empty($pwd) ? '' : ",pwd='".md5($pwd)."'";

  182.     if(empty($sex)) $sex = '男';

  183.     $uptime=GetMkTime($uptime);

  184.     

  185.     if($matt==10 && $oldmatt!=10)

  186.     {

  187.         ShowMsg("对不起,为安全起见,不支持直接把前台会员转为管理的操作!", "-1");

  188.         exit();

  189.     }    

  190.     $query = "UPDATE `#@__member` SET

  191.             email = '$email',

  192.             uname = '$uname',

  193.             sex = '$sex',

  194.             matt = '$matt',

  195.             money = '$money',

  196.             scores = '$scores',

  197.             rank = '$rank',

  198.             spacesta='$spacesta',

  199.             uptime='$uptime',

  200.             exptime='$exptime'

  201.             $pwdsql

  202.             WHERE mid='$id' AND matt<>10 ";

  203.     $rs = $dsql->ExecuteNoneQuery2($query);

  204.     if($rs==0)

  205.     {

  206.         $query = "UPDATE `#@__member` SET

  207.             email = '$email',

  208.             uname = '$uname',

  209.             sex = '$sex',

  210.             money = '$money',

  211.             scores = '$scores',

  212.             rank = '$rank',

  213.             spacesta='$spacesta',

  214.             uptime='$uptime',

  215.             exptime='$exptime'

  216.             $pwdsql

  217.             WHERE mid='$id' ";

  218.             $rs = $dsql->ExecuteNoneQuery2($query);

  219.     }

  220.     

  221.     #api{{

  222.     if(defined('UC_API') && @include_once DEDEROOT.'/api/uc.func.php')

  223.     {

  224.         $row = $dsql->GetOne("SELECT `scores`,`userid` FROM `#@__member` WHERE `mid`='$id' AND `matt`<>10");

  225.         $amount = $scores-$row['scores'];

  226.         uc_credit_note($row['userid'],$amount);

  227.     }

  228.     #/aip}}

  229.     

  230.     ShowMsg('成功更改会员资料!', 'member_view.php?id='.$id);

  231.     exit();

  232. }

  233. /*--------------

  234. function __LoginCP()

  235. 登录会员的控制面板

  236. ----------*/

  237. else if ($dopost=="memberlogin")

  238. {

  239.     CheckPurview('member_Edit');

  240.     PutCookie('DedeUserID',$id,1800);

  241.     PutCookie('DedeLoginTime',time(),1800);

  242.     if(empty($jumpurl)) header("location:../member/index.php");

  243.     else header("location:$jumpurl");

  244. } else if ($dopost == "deoperations")

  245. {

  246.     $nid = preg_replace('#[^0-9,]#', '', preg_replace('#`#', ',', $nid));

  247.     $nid = explode(',', $nid);

  248.     if(is_array($nid))

  249.     {

  250.         foreach ($nid as $var)

  251.         {

  252.             $query = "DELETE FROM `#@__member_operation` WHERE aid = '$var'";

  253.             $dsql->ExecuteNoneQuery($query);

  254.         }

  255.         ShowMsg("删除成功!","member_operations.php");

  256.         exit();

  257.     }

  258. } else if ($dopost == "upoperations")

  259. {

  260.     $nid = preg_replace('#[^0-9,]#', '', preg_replace('#`#', ',', $nid));

  261.     $nid = explode(',', $nid);

  262.     if(is_array($nid))

  263.     {

  264.         foreach ($nid as $var)

  265.         {

  266.             $query = "UPDATE `#@__member_operation` SET sta = '1' WHERE aid = '$var'";

  267.             $dsql->ExecuteNoneQuery($query);

  268.             ShowMsg("设置成功!","member_operations.php");

  269.             exit();

  270.         }

  271.     }

  272. } else if($dopost == "okoperations")

  273. {

  274.     $nid = preg_replace('#[^0-9,]#', '', preg_replace('#`#', ',', $nid));

  275.     $nid = explode(',', $nid);

  276.     if(is_array($nid))

  277.     {

  278.         foreach ($nid as $var)

  279.         {

  280.             $query = "UPDATE `#@__member_operation` SET sta = '2' WHERE aid = '$var'";

  281.             $dsql->ExecuteNoneQuery($query);

  282.             ShowMsg("设置成功!","member_operations.php");

  283.             exit();

  284.         }

  285.     }

  286. }