DedeBIZ
/
DedeV6
Watch 2
Star 0
Fork 0
Code Pull Requests 0 Releases 25 Activity
国内流行的内容管理系统(CMS)多端全媒体解决方案 https://www.dedebiz.com
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
111 Commits
3 Branches
110MB
Tree: f7662f416c
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'f7662f416c'
${ noResults }
DedeV6/src/member/inc/archives_check.php

100 lines
3.2KB
Raw Blame History 

  1. <?php

  2. 

  3. /**

  4.  * 文档验证

  5.  * 

  6.  * @version        $Id: archives_check.php 1 13:52 2010年7月9日Z tianya $

  7.  * @package        DedeCMS.Member

  8.  * @copyright      Copyright (c) 2007 - 2020, DesDev, Inc.

  9.  * @license        http://help.dedecms.com/usersguide/license.html

  10.  * @link           http://www.dedecms.com

  11.  */

  12. if (!defined('DEDEMEMBER'))    exit('dedecms');

  13. 

  14. include_once(DEDEINC . '/image.func.php');

  15. include_once(DEDEINC . '/oxwindow.class.php');

  16. 

  17. $svali = GetCkVdValue();

  18. if (preg_match("/3/", $safe_gdopen)) {

  19.     if (strtolower($vdcode) != $svali || $svali == '') {

  20.         ResetVdValue();

  21.         ShowMsg('验证码错误!', '-1');

  22.         exit();

  23.     }

  24. }

  25. 

  26. // 校验CSRF

  27. CheckCSRF();

  28. 

  29. $faqkey = isset($faqkey) && is_numeric($faqkey) ? $faqkey : 0;

  30. $safe_faq_send = isset($safe_faq_send) && is_numeric($safe_faq_send) ? $safe_faq_send : 0;

  31. if ($safe_faq_send == '1') {

  32.     if ($safefaqs[$faqkey]['answer'] != $safeanswer || $safeanswer == '') {

  33.         ShowMsg('验证问题答案错误', '-1');

  34.         exit();

  35.     }

  36. }

  37. 

  38. $flag = '';

  39. $autokey = $remote = $dellink = $autolitpic = 0;

  40. $userip = GetIP();

  41. 

  42. if ($typeid == 0) {

  43.     ShowMsg('请指定文档隶属的栏目!', '-1');

  44.     exit();

  45. }

  46. 

  47. $query = "Select tp.ispart,tp.channeltype,tp.issend,ch.issend as cissend,ch.sendrank,ch.arcsta,ch.addtable,ch.fieldset,ch.usertype

  48.           From `#@__arctype` tp left join `#@__channeltype` ch on ch.id=tp.channeltype where tp.id='$typeid' ";

  49. $cInfos = $dsql->GetOne($query);

  50. 

  51. //检测栏目是否有投稿权限

  52. if ($cInfos['issend'] != 1 || $cInfos['ispart'] != 0  || $cInfos['channeltype'] != $channelid || $cInfos['cissend'] != 1) {

  53.     ShowMsg("你所选择的栏目不支持投稿!", "-1");

  54.     exit();

  55. }

  56. 

  57. //检查频道设定的投稿许可权限

  58. if ($cInfos['sendrank'] > $cfg_ml->M_Rank) {

  59.     $row = $dsql->GetOne("Select membername From #@__arcrank where rank='" . $cInfos['sendrank'] . "' ");

  60.     ShowMsg("对不起,需要[" . $row['membername'] . "]才能在这个频道发布文档!", "-1", "0", 5000);

  61.     exit();

  62. }

  63. 

  64. if ($cInfos['usertype'] != '' && $cInfos['usertype'] != $cfg_ml->M_MbType) {

  65.     ShowMsg("对不起,需要[" . $cInfos['usertype'] . "]才能在这个频道发布文档!", "-1", "0", 5000);

  66.     exit();

  67. }

  68. 

  69. //文档的默认状态

  70. if ($cInfos['arcsta'] == 0) {

  71.     $ismake = 0;

  72.     $arcrank = 0;

  73. } else if ($cInfos['arcsta'] == 1) {

  74.     $ismake = -1;

  75.     $arcrank = 0;

  76. } else {

  77.     $ismake = 0;

  78.     $arcrank = -1;

  79. }

  80. 

  81. //对保存的内容进行处理

  82. $money = 0;

  83. $flag = $shorttitle = $color = $source = '';

  84. $sortrank = $senddate = $pubdate = time();

  85. $title = cn_substrR(HtmlReplace($title, 1), $cfg_title_maxlen);

  86. $writer =  cn_substrR(HtmlReplace($writer, 1), 20);

  87. if (empty($description)) $description = '';

  88. $description = cn_substrR(HtmlReplace($description, 1), 250);

  89. $keywords = cn_substrR(HtmlReplace($tags, 1), 30);

  90. $mid = $cfg_ml->M_ID;

  91. 

  92. //检测文档是否重复

  93. if ($cfg_mb_cktitle == 'Y') {

  94.     $row = $dsql->GetOne("SELECT * FROM `#@__archives` WHERE title LIKE '$title' ");

  95.     if (is_array($row)) {

  96.         ShowMsg("对不起,请不要发布重复文档!", "-1", "0", 5000);

  97.         exit();

  98.     }

  99. }