DedeBIZ
/
DedeV6
Watch 2
Star 0
Fork 0
Code Pull Requests 0 Releases 25 Activity
国内流行的内容管理系统(CMS)多端全媒体解决方案 https://www.dedebiz.com
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
127 Commits
3 Branches
110MB
Tree: 417fee8e5b
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '417fee8e5b'
${ noResults }
DedeV6/src/dede/sys_info.php

203 lines
6.2KB
Raw Blame History 

  1. <?php

  2. /**

  3.  * 系统配置

  4.  *

  5.  * @version        $Id: sys_info.php 1 22:28 2010年7月20日Z tianya $

  6.  * @package        DedeCMS.Administrator

  7.  * @copyright      Copyright (c) 2007 - 2020, DesDev, Inc.

  8.  * @license        http://help.dedecms.com/usersguide/license.html

  9.  * @link           http://www.dedecms.com

  10.  */

  11. require_once(dirname(__FILE__)."/config.php");

  12. CheckPurview('sys_Edit');

  13. if(empty($dopost)) $dopost = "";

  14. 

  15. $configfile = DEDEDATA.'/config.cache.inc.php';

  16. 

  17. //更新配置函数

  18. function ReWriteConfig()

  19. {

  20.     global $dsql,$configfile;

  21.     if(!is_writeable($configfile))

  22.     {

  23.         echo "配置文件'{$configfile}'不支持写入,无法修改系统配置参数!";

  24.         exit();

  25.     }

  26.     $fp = fopen($configfile,'w');

  27.     flock($fp,3);

  28.     fwrite($fp,"<"."?php\r\n");

  29.     $dsql->SetQuery("SELECT `varname`,`type`,`value`,`groupid` FROM `#@__sysconfig` ORDER BY aid ASC ");

  30.     $dsql->Execute();

  31.     while($row = $dsql->GetArray())

  32.     {

  33.         if($row['type']=='number')

  34.         {

  35.             if($row['value']=='') $row['value'] = 0;

  36.             fwrite($fp,"\${$row['varname']} = ".$row['value'].";\r\n");

  37.         }

  38.         else

  39.         {

  40.             fwrite($fp,"\${$row['varname']} = '".str_replace("'",'',$row['value'])."';\r\n");

  41.         }

  42.     }

  43.     fwrite($fp,"?".">");

  44.     fclose($fp);

  45. }

  46. 

  47. //保存配置的改动

  48. if($dopost=="save")

  49. {

  50.     if(!isset($token)){

  51.         echo 'No token found!';

  52.         exit;

  53.     }

  54. 

  55.     if(strcasecmp($token, $_SESSION['token']) != 0){

  56.         echo 'Token mismatch!';

  57.         exit;

  58.     }

  59.     foreach($_POST as $k=>$v)

  60.     {

  61.         if(preg_match("#^edit___#", $k))

  62.         {

  63.             $v = cn_substrR(${$k}, 1024);

  64.         }

  65.         else

  66.         {

  67.             continue;

  68.         }

  69.         $k = preg_replace("#^edit___#", "", $k);

  70.         $dsql->ExecuteNoneQuery("UPDATE `#@__sysconfig` SET `value`='$v' WHERE varname='$k' ");

  71.     }

  72.     ReWriteConfig();

  73.     ShowMsg("成功更改站点配置!", "sys_info.php");

  74.     exit();

  75. }

  76. //增加新变量

  77. else if($dopost=='add')

  78. {

  79.     if(!isset($token)){

  80.         echo 'No token found!';

  81.         exit;

  82.     }

  83. 

  84.     if(strcasecmp($token, $_SESSION['token']) != 0){

  85.         echo 'Token mismatch!';

  86.         exit;

  87.     }

  88.     if($vartype=='bool' && ($nvarvalue!='Y' && $nvarvalue!='N'))

  89.     {

  90.         ShowMsg("布尔变量值必须为'Y'或'N'!","-1");

  91.         exit();

  92.     }

  93.     if(trim($nvarname)=='' || preg_match("#[^a-z_]#i", $nvarname) )

  94.     {

  95.         ShowMsg("变量名不能为空并且必须为[a-z_]组成!","-1");

  96.         exit();

  97.     }

  98.     $row = $dsql->GetOne("SELECT varname FROM `#@__sysconfig` WHERE varname LIKE '$nvarname' ");

  99.     if(is_array($row))

  100.     {

  101.         ShowMsg("该变量名称已经存在!","-1");

  102.         exit();

  103.     }

  104.     $row = $dsql->GetOne("SELECT aid FROM `#@__sysconfig` ORDER BY aid DESC ");

  105.     $aid = $row['aid'] + 1;

  106.     $inquery = "INSERT INTO `#@__sysconfig`(`aid`,`varname`,`info`,`value`,`type`,`groupid`)

  107.     VALUES ('$aid','$nvarname','$varmsg','$nvarvalue','$vartype','$vargroup')";

  108.     $rs = $dsql->ExecuteNoneQuery($inquery);

  109.     if(!$rs)

  110.     {

  111.         ShowMsg("新增变量失败,可能有非法字符!", "sys_info.php?gp=$vargroup");

  112.         exit();

  113.     }

  114.     if(!is_writeable($configfile))

  115.     {

  116.         ShowMsg("成功保存变量,但由于 $configfile 无法写入,因此不能更新配置文件!","sys_info.php?gp=$vargroup");

  117.         exit();

  118.     }else

  119.     {

  120.         ReWriteConfig();

  121.         ShowMsg("成功保存变量并更新配置文件!","sys_info.php?gp=$vargroup");

  122.         exit();

  123.     }

  124. }

  125. // 搜索配置

  126. else if ($dopost=='search')

  127. {

  128.     $keywords = isset($keywords)? strip_tags($keywords) : '';

  129.     $i = 1;

  130.     $configstr = <<<EOT

  131.  <table width="100%" cellspacing="1" cellpadding="1" border="0" bgcolor="#cfcfcf" id="tdSearch" style="">

  132.   <tbody>

  133.    <tr height="25" bgcolor="#fbfce2" align="center">

  134.     <td width="300">参数说明</td>

  135.     <td>参数值</td>

  136.     <td width="220">变量名</td>

  137.    </tr>

  138. EOT;

  139.     echo $configstr;

  140.     if ($keywords)

  141.     {

  142. 

  143.         $dsql->SetQuery("SELECT * FROM `#@__sysconfig` WHERE info LIKE '%$keywords%' OR varname LIKE '%$keywords%' order by aid asc");

  144.         $dsql->Execute();

  145.        

  146.         while ($row = $dsql->GetArray()) {

  147.             $bgcolor = ($i++%2==0)? "#F9FCEF" : "#ffffff";

  148.             $row['info'] = preg_replace("#{$keywords}#", '<font color="red">'.$keywords.'</font>', $row['info']);

  149.             $row['varname'] = preg_replace("#{$keywords}#", '<font color="red">'.$keywords.'</font>', $row['varname']);

  150. ?>

  151.       <tr align="center" height="25" bgcolor="<?php echo $bgcolor?>">

  152.        <td width="300"><?php echo $row['info']; ?>: </td>

  153.        <td align="left" style="padding:3px;">

  154. <?php

  155.     if($row['type']=='bool')

  156.     {

  157.         $c1='';

  158.         $c2 = '';

  159.         $row['value']=='Y' ? $c1=" checked" : $c2=" checked";

  160.         echo "<input type='radio' class='np' name='edit___{$row['varname']}' value='Y'$c1>是 ";

  161.         echo "<input type='radio' class='np' name='edit___{$row['varname']}' value='N'$c2>否 ";

  162.     }else if($row['type']=='bstring')

  163.     {

  164.         echo "<textarea name='edit___{$row['varname']}' row='4' id='edit___{$row['varname']}' class='textarea_info' style='width:98%;height:50px'>".dede_htmlspecialchars($row['value'])."</textarea>";

  165.     }else if($row['type']=='number')

  166.     {

  167.         echo "<input type='text' name='edit___{$row['varname']}' id='edit___{$row['varname']}' value='{$row['value']}' style='width:30%'>";

  168.     }else

  169.     {

  170.         echo "<input type='text' name='edit___{$row['varname']}' id='edit___{$row['varname']}' value=\"".dede_htmlspecialchars($row['value'])."\" style='width:80%'>";

  171.     }

  172.     ?>

  173. </td>

  174.        <td><?php echo $row['varname']?></td>

  175.       </tr>

  176.       <?php

  177. }

  178. ?>

  179.      </table>

  180.       <?php

  181.         exit;

  182.     }

  183.     if ($i == 1)

  184.     {

  185.         echo '      <tr align="center" bgcolor="#F9FCEF" height="25">

  186.            <td colspan="3">没有找到搜索的内容</td>

  187.           </tr></table>';

  188.     }

  189.     exit;

  190. } else if ($dopost=='make_encode')

  191. {

  192.     $chars='abcdefghigklmnopqrstuvwxwyABCDEFGHIGKLMNOPQRSTUVWXWY0123456789';

  193.     $hash='';

  194.     $length = rand(28,32);

  195.     $max = strlen($chars) - 1;

  196.     for($i = 0; $i < $length; $i++) {

  197.         $hash .= $chars[mt_rand(0, $max)];

  198.     }

  199.     echo $hash;

  200.     exit();

  201. }

  202. make_hash();

  203. include DedeInclude('templets/sys_info.htm');