DedeBIZ
/
DedeV6
Watch 2
Star 0
Fork 0
Code Pull Requests 0 Releases 25 Activity
国内流行的内容管理系统(CMS)多端全媒体解决方案 https://www.dedebiz.com
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
196 Commits
3 Branches
110MB
Tree: 469d080dba
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '469d080dba'
${ noResults }
DedeV6/src/dede/member_do.php

278 lines
11KB
Raw Blame History 

  1. <?php

  2. /**

  3.  * 会员管理操作

  4.  *

  5.  * @version        $Id: member_do.php 1 13:47 2010年7月19日Z tianya $

  6.  * @package        DedeCMS.Administrator

  7.  * @copyright      Copyright (c) 2020, DedeBIZ.COM

  8.  * @license        https://www.dedebiz.com/license

  9.  * @link           https://www.dedebiz.com

  10.  */

  11. require_once(dirname(__FILE__)."/config.php");

  12. require_once(DEDEINC."/oxwindow.class.php");

  13. if(empty($dopost)) $dopost = '';

  14. if(empty($fmdo)) $fmdo = '';

  15. $ENV_GOBACK_URL = isset($_COOKIE['ENV_GOBACK_URL']) ? 'member_main.php' : '';

  16. 

  17. /*----------------

  18. function __DelMember()

  19. 删除会员

  20. ----------------*/

  21. if($dopost=="delmember")

  22. {

  23.     CheckPurview('member_Del');

  24.     if($fmdo=='yes')

  25.     {

  26.         $id = preg_replace("#[^0-9]#", '', $id);

  27.         $safecodeok = substr(md5($cfg_cookie_encode.$randcode),0,24);

  28.         if($safecodeok!=$safecode)

  29.         {

  30.             ShowMsg("请填写正确的安全验证串!","member_do.php?id={$id}&dopost=delmember");

  31.             exit();

  32.         }

  33.         if(!empty($id))

  34.         {

  35.             //删除用户信息

  36.             $row = $dsql->GetOne("SELECT * FROM `#@__member` WHERE mid='$id' LIMIT 1 ");

  37.             $rs = 0;

  38.             if($row['matt'] == 10)

  39.             {

  40.                 $nrow = $dsql->GetOne("SELECT * FROM `#@__admin` WHERE id='$id' LIMIT 1 ");

  41.                 //已经删除关连的管理员帐号

  42.                 if(!is_array($nrow)) $rs = $dsql->ExecuteNoneQuery2("DELETE FROM `#@__member` WHERE mid='$id' LIMIT 1");

  43.             }

  44.             else

  45.             {

  46.                 $rs = $dsql->ExecuteNoneQuery2("DELETE FROM `#@__member` WHERE mid='$id' LIMIT 1");

  47.             }

  48.             if($rs > 0)

  49.             {

  50.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_tj` WHERE mid='$id' LIMIT 1");

  51.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_space` WHERE mid='$id' LIMIT 1");

  52.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_company` WHERE mid='$id' LIMIT 1");

  53.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_person` WHERE mid='$id' LIMIT 1");

  54. 

  55.                 //删除用户相关数据

  56.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_stow` WHERE mid='$id' ");

  57.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_flink` WHERE mid='$id' ");

  58.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_operation` WHERE mid='$id' ");

  59.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_pms` WHERE toid='$id' Or fromid='$id' ");

  60.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_friends` WHERE mid='$id' Or fid='$id' ");

  61.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__feedback` WHERE mid='$id' ");

  62.                 $dsql->ExecuteNoneQuery("UPDATE `#@__archives` SET mid='0' WHERE mid='$id'");

  63.             }

  64.             else

  65.             {

  66.                 ShowMsg("无法删除此会员,如果这个会员是<b>[管理员]</b>,<br />必须先删除这个<b>[管理员]</b>才能删除此帐号!", $ENV_GOBACK_URL, 0, 5000);

  67.                 exit();

  68.             }

  69.         }

  70.         ShowMsg("成功删除一个会员!",$ENV_GOBACK_URL);

  71.         exit();

  72.     }

  73.     $randcode = mt_rand(10000,99999);

  74.     $safecode = substr(md5($cfg_cookie_encode.$randcode),0,24);

  75.     $wintitle = "会员管理-删除会员";

  76.     $wecome_info = "<a href='".$ENV_GOBACK_URL."'>会员管理</a>::删除会员";

  77.     $win = new OxWindow();

  78.     $win->Init("member_do.php","js/blank.js","POST");

  79.     $win->AddHidden("fmdo","yes");

  80.     $win->AddHidden("dopost",$dopost);

  81.     $win->AddHidden("id",$id);

  82.     $win->AddHidden("randcode",$randcode);

  83.     $win->AddHidden("safecode",$safecode);

  84.     $win->AddTitle("你确实要删除(ID:".$id.")这个会员?");

  85.     $win->AddMsgItem("安全验证串:<input name='safecode' type='text' id='safecode' size='16' style='width:200px' />&nbsp;(复制本代码: <font color='red'>$safecode</font> )","30");

  86.     $winform = $win->GetWindow("ok");

  87.     $win->Display();

  88. }else if($dopost=="delmembers"){

  89.     CheckPurview('member_Del');

  90.     if($fmdo=='yes')

  91.     {

  92.         $safecodeok = substr(md5($cfg_cookie_encode.$randcode),0,24);

  93.         if($safecodeok!=$safecode)

  94.         {

  95.             ShowMsg("请填写正确的安全验证串!","member_do.php?id={$id}&dopost=delmembers");

  96.             exit();

  97.         }

  98.         if(!empty($id))

  99.         {

  100.             //删除用户信息

  101.             

  102.             $rs = $dsql->ExecuteNoneQuery2("DELETE FROM `#@__member` WHERE mid IN (".str_replace("`",",",$id).") And matt<>10 ");    

  103.             if($rs > 0)

  104.             {

  105.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_tj` WHERE mid IN (".str_replace("`",",",$id).") ");

  106.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_space` WHERE mid IN (".str_replace("`",",",$id).") ");

  107.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_company` WHERE mid IN (".str_replace("`",",",$id).") ");

  108.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_person` WHERE mid IN (".str_replace("`",",",$id).") ");

  109. 

  110.                 //删除用户相关数据

  111.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_stow` WHERE mid IN (".str_replace("`",",",$id).") ");

  112.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_flink` WHERE mid IN (".str_replace("`",",",$id).") ");

  113.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_operation` WHERE mid IN (".str_replace("`",",",$id).") ");

  114.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_pms` WHERE toid IN (".str_replace("`",",",$id).") Or fromid IN (".str_replace("`",",",$id).") ");

  115.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_friends` WHERE mid IN (".str_replace("`",",",$id).") Or fid IN (".str_replace("`",",",$id).") ");

  116.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__feedback` WHERE mid IN (".str_replace("`",",",$id).") ");

  117.                 $dsql->ExecuteNoneQuery("UPDATE `#@__archives` SET mid='0' WHERE mid IN (".str_replace("`",",",$id).")");

  118.             }

  119.             else

  120.             {

  121.                 ShowMsg("无法删除此会员,如果这个会员是管理员关连的ID,<br />必须先删除这个管理员才能删除此帐号!",$ENV_GOBACK_URL,0,3000);

  122.                 exit();

  123.             }

  124.         }

  125.         ShowMsg("成功删除这些会员!",$ENV_GOBACK_URL);

  126.         exit();

  127.     }

  128.     $randcode = mt_rand(10000, 99999);

  129.     $safecode = substr(md5($cfg_cookie_encode.$randcode), 0, 24);

  130.     $wintitle = "会员管理-删除会员";

  131.     $wecome_info = "<a href='".$ENV_GOBACK_URL."'>会员管理</a>::删除会员";

  132.     $win = new OxWindow();

  133.     $win->Init("member_do.php", "js/blank.js", "POST");

  134.     $win->AddHidden("fmdo", "yes");

  135.     $win->AddHidden("dopost", $dopost);

  136.     $win->AddHidden("id",$id);

  137.     $win->AddHidden("randcode", $randcode);

  138.     $win->AddHidden("safecode", $safecode);

  139.     $win->AddTitle("你确实要删除(ID:".$id.")这个会员?");

  140.     $win->AddMsgItem(" 安全验证串:<input name='safecode' type='text' id='safecode' size='16' style='width:200px' /> (复制本代码: <font color='red'>$safecode</font>)","30");

  141.     $winform = $win->GetWindow("ok");

  142.     $win->Display();

  143. }

  144. /*----------------

  145. function __Recommend()

  146. 推荐会员

  147. ----------------*/

  148. else if ($dopost=="recommend")

  149. {

  150.     CheckPurview('member_Edit');

  151.     $id = preg_replace("#[^0-9]#", "", $id);

  152.     if($matt==0)

  153.     {

  154.         $dsql->ExecuteNoneQuery("UPDATE `#@__member` SET matt=1 WHERE mid='$id' AND matt<>10 LIMIT 1");

  155.         ShowMsg("成功设置一个会员推荐!",$ENV_GOBACK_URL);

  156.         exit();

  157.     }

  158.     else

  159.     {

  160.         $dsql->ExecuteNoneQuery("UPDATE `#@__member` SET matt=0 WHERE mid='$id' AND matt<>10 LIMIT 1");

  161.         ShowMsg("成功取消一个会员推荐!",$ENV_GOBACK_URL);

  162.         exit();

  163.     }

  164. }

  165. /*----------------

  166. function __EditUser()

  167. 更改会员

  168. ----------------*/

  169. else if ($dopost=='edituser')

  170. {

  171.     CheckPurview('member_Edit');

  172.     if(!isset($_POST['id'])) exit('Request Error!');

  173.     $pwdsql = empty($pwd) ? '' : ",pwd='".md5($pwd)."'";

  174.     if(empty($sex)) $sex = '男';

  175.     $uptime=GetMkTime($uptime);

  176.     

  177.     if($matt==10 && $oldmatt!=10)

  178.     {

  179.         ShowMsg("对不起,为安全起见,不支持直接把前台会员转为管理的操作!", "-1");

  180.         exit();

  181.     }    

  182.     $query = "UPDATE `#@__member` SET

  183.             email = '$email',

  184.             uname = '$uname',

  185.             sex = '$sex',

  186.             matt = '$matt',

  187.             money = '$money',

  188.             scores = '$scores',

  189.             rank = '$rank',

  190.             spacesta='$spacesta',

  191.             uptime='$uptime',

  192.             exptime='$exptime'

  193.             $pwdsql

  194.             WHERE mid='$id' AND matt<>10 ";

  195.     $rs = $dsql->ExecuteNoneQuery2($query);

  196.     if($rs==0)

  197.     {

  198.         $query = "UPDATE `#@__member` SET

  199.             email = '$email',

  200.             uname = '$uname',

  201.             sex = '$sex',

  202.             money = '$money',

  203.             scores = '$scores',

  204.             rank = '$rank',

  205.             spacesta='$spacesta',

  206.             uptime='$uptime',

  207.             exptime='$exptime'

  208.             $pwdsql

  209.             WHERE mid='$id' ";

  210.             $rs = $dsql->ExecuteNoneQuery2($query);

  211.     }

  212.     

  213.     #api{{

  214.     if(defined('UC_API') && @include_once DEDEROOT.'/api/uc.func.php')

  215.     {

  216.         $row = $dsql->GetOne("SELECT `scores`,`userid` FROM `#@__member` WHERE `mid`='$id' AND `matt`<>10");

  217.         $amount = $scores-$row['scores'];

  218.         uc_credit_note($row['userid'],$amount);

  219.     }

  220.     #/aip}}

  221.     

  222.     ShowMsg('成功更改会员资料!', 'member_view.php?id='.$id);

  223.     exit();

  224. }

  225. /*--------------

  226. function __LoginCP()

  227. 登录会员的控制面板

  228. ----------*/

  229. else if ($dopost=="memberlogin")

  230. {

  231.     CheckPurview('member_Edit');

  232.     PutCookie('DedeUserID',$id,1800);

  233.     PutCookie('DedeLoginTime',time(),1800);

  234.     if(empty($jumpurl)) header("location:../member/index.php");

  235.     else header("location:$jumpurl");

  236. } else if ($dopost == "deoperations")

  237. {

  238.     $nid = preg_replace('#[^0-9,]#', '', preg_replace('#`#', ',', $nid));

  239.     $nid = explode(',', $nid);

  240.     if(is_array($nid))

  241.     {

  242.         foreach ($nid as $var)

  243.         {

  244.             $query = "DELETE FROM `#@__member_operation` WHERE aid = '$var'";

  245.             $dsql->ExecuteNoneQuery($query);

  246.         }

  247.         ShowMsg("删除成功!","member_operations.php");

  248.         exit();

  249.     }

  250. } else if ($dopost == "upoperations")

  251. {

  252.     $nid = preg_replace('#[^0-9,]#', '', preg_replace('#`#', ',', $nid));

  253.     $nid = explode(',', $nid);

  254.     if(is_array($nid))

  255.     {

  256.         foreach ($nid as $var)

  257.         {

  258.             $query = "UPDATE `#@__member_operation` SET sta = '1' WHERE aid = '$var'";

  259.             $dsql->ExecuteNoneQuery($query);

  260.             ShowMsg("设置成功!","member_operations.php");

  261.             exit();

  262.         }

  263.     }

  264. } else if($dopost == "okoperations")

  265. {

  266.     $nid = preg_replace('#[^0-9,]#', '', preg_replace('#`#', ',', $nid));

  267.     $nid = explode(',', $nid);

  268.     if(is_array($nid))

  269.     {

  270.         foreach ($nid as $var)

  271.         {

  272.             $query = "UPDATE `#@__member_operation` SET sta = '2' WHERE aid = '$var'";

  273.             $dsql->ExecuteNoneQuery($query);

  274.             ShowMsg("设置成功!","member_operations.php");

  275.             exit();

  276.         }

  277.     }

  278. }