DedeBIZ
/
DedeV6
Watch 2
Star 0
Fork 0
Code Pull Requests 0 Releases 25 Activity
国内流行的内容管理系统(CMS)多端全媒体解决方案 https://www.dedebiz.com
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
911 Commits
3 Branches
110MB
Tree: 9213b03687
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '9213b03687'
${ noResults }
DedeV6/src/admin/sys_admin_user_add.php

81 lines
4.0KB
Raw Blame History 

  1. <?php

  2. /**

  3.  * 添加系统管理员

  4.  *

  5.  * @version        $Id: sys_admin_user_add.php 1 16:22 2010年7月20日Z tianya $

  6.  * @package        DedeBIZ.Administrator

  7.  * @copyright      Copyright (c) 2022, DedeBIZ.COM

  8.  * @license        https://www.dedebiz.com/license

  9.  * @link           https://www.dedebiz.com

  10.  */

  11. require_once(dirname(__FILE__)."/config.php");

  12. CheckPurview('sys_User');

  13. require_once(DEDEINC."/typelink/typelink.class.php");

  14. if (empty($dopost)) $dopost = '';

  15. if ($dopost == 'add') {

  16.     CheckCSRF();

  17.     if (preg_match("#[^0-9a-zA-Z_@!\.-]#", $pwd) || preg_match("#[^0-9a-zA-Z_@!\.-]#", $userid)) {

  18.         ShowMsg('密码或或用户名不合法,<br>请使用[0-9a-zA-Z_@!.-]内的字符', '-1', 0, 3000);

  19.         exit();

  20.     }

  21.     $safecodeok = substr(md5($cfg_cookie_encode.$randcode), 0, 24);

  22.     if ($safecode != $safecodeok) {

  23.         ShowMsg('请填写安全验证串', '-1', 0, 3000);

  24.         exit();

  25.     }

  26.     $row = $dsql->GetOne("SELECT COUNT(*) AS dd FROM `#@__member` WHERE userid LIKE '$userid' ");

  27.     if ($row['dd'] > 0) {

  28.         ShowMsg('用户名已存在', '-1');

  29.         exit();

  30.     }

  31.     $pfd = "pwd";

  32.     $mpwd = md5($pwd);

  33.     $pwd = substr(md5($pwd), 5, 20);

  34.     if (function_exists('password_hash')) {

  35.         $pfd = "pwd_new";

  36.         $mpwd = password_hash($pwd, PASSWORD_BCRYPT);

  37.         $pwd = password_hash($pwd, PASSWORD_BCRYPT);

  38.     }

  39. 

  40.     $typeid = join(',', $typeids);

  41.     if ($typeid == '0') $typeid = '';

  42.     //关连前台会员帐号

  43.     $adminquery = "INSERT INTO `#@__member` (`mtype`,`userid`,`$pfd`,`uname`,`sex`,`rank`,`money`,`email`, `scores` ,`matt` ,`face`,`safequestion`,`safeanswer` ,`jointime` ,`joinip` ,`logintime` ,`loginip` )

  44.         VALUES ('个人','$userid','$mpwd','$uname','男','100','0','$email','1000','10','','0','','0','','0',''); ";

  45.     $dsql->ExecuteNoneQuery($adminquery);

  46.     $mid = $dsql->GetLastID();

  47.     if ($mid <= 0) {

  48.         die($dsql->GetError().' 数据库出错');

  49.     }

  50.     //后台管理员

  51.     $inquery = "INSERT INTO `#@__admin`(id,usertype,userid,$pfd,uname,typeid,tname,email)

  52.         VALUES('$mid','$usertype','$userid','$pwd','$uname','$typeid','$tname','$email'); ";

  53.     $rs = $dsql->ExecuteNoneQuery($inquery);

  54.     $adminquery = "INSERT INTO `#@__member_person` (`mid`,`onlynet`,`sex`,`uname`,`qq`,`msn`,`tel`,`mobile`,`place`,`oldplace`,`birthday`,`star`, `income` , `education` , `height` , `bodytype` , `blood` , `vocation` , `smoke` , `marital` , `house` ,`drink` , `datingtype` , `language` , `nature` , `lovemsg` , `address`,`uptime`)

  55.         VALUES ('$mid', '1', '男', '{$userid}', '', '', '', '', '0', '0','1980-01-01', '1', '0', '0', '160', '0', '0', '0', '0', '0', '0','0', '0', '', '', '', '','0'); ";

  56.     $dsql->ExecuteNoneQuery($adminquery);

  57.     $adminquery = "INSERT INTO `#@__member_tj` (`mid`,`article`,`album`,`archives`,`homecount`,`pagecount`,`feedback`,`friend`,`stow`)

  58.         VALUES ('$mid','0','0','0','0','0','0','0','0'); ";

  59.     $dsql->ExecuteNoneQuery($adminquery);

  60.     $adminquery = "Insert Into `#@__member_space`(`mid` ,`pagesize` ,`matt` ,`spacename` ,`spacelogo` ,`spacestyle`, `sign` ,`spacenews`)

  61.         Values('$mid','10','0','{$uname}的空间','','person','',''); ";

  62.     $dsql->ExecuteNoneQuery($adminquery);

  63.     ShowMsg('成功增加一个用户', 'sys_admin_user.php');

  64.     exit();

  65. }

  66. $randcode = mt_rand(10000, 99999);

  67. $safecode = substr(md5($cfg_cookie_encode.$randcode), 0, 24);

  68. $typeOptions = '';

  69. $dsql->SetQuery(" SELECT id,typename FROM `#@__arctype` WHERE reid=0 AND (ispart=0 OR ispart=1) ");

  70. $dsql->Execute('op');

  71. while ($row = $dsql->GetObject('op')) {

  72.     $topc = $row->id;

  73.     $typeOptions .= "<option value='{$row->id}' class='btype'>{$row->typename}</option>\r\n";

  74.     $dsql->SetQuery(" SELECT id,typename FROM `#@__arctype` WHERE reid={$row->id} AND (ispart=0 OR ispart=1) ");

  75.     $dsql->Execute('s');

  76.     while ($row = $dsql->GetObject('s')) {

  77.         $typeOptions .= "<option value='{$row->id}' class='stype'>—{$row->typename}</option>\r\n";

  78.     }

  79. }

  80. make_hash();

  81. include DedeInclude('templets/sys_admin_user_add.htm');