$msglink = $msglink2; break; case "signup_required": $msgstr = $_SLANG['printmsg.details.required']; $msglink = $msglink1; break; case "signup_required_1": $msgstr = $_SLANG['printmsg.details.required']; $msglink = $msglink2; break; case "signup_succeed_0": global $membername; global $memberpass; $msgstr = $_SLANG['printmsg.signup.succeed1'] . "<form id='autologinform' action='login.php?action=login' method='POST' style='display:none;'><input name='membername' value='{$membername}' /><input name='memberpass' value='{$memberpass}' />"; if ($cache_settings['loginsecuritycode'] == '1') { wSESSION('validationcode', 'sc6k'); $msgstr .= "<input name='securitycode' value='sc6k' />"; } $msgstr .= "</form><script>setTimeout(function(){document.getElementById(\"autologinform\").submit();},2000);</script>"; $msglink = "<a href='javascript:void(0)' onclick='document.getElementById(\"autologinform\").submit()'><u>{$_SLANG['printmsg.login.now']}</u> <img src=\"images/ico_go.gif\" border=\"0\" align=\"absmiddle\" alt=\"\" /></a>"; break; case "signup_succeed_1": $msgstr = $_SLANG['printmsg.signup.succeed2'] . "<script>setTimeout(function(){window.location.href=\"login.php\";},5000);</script>"; $msglink = $msglink2; break; case "signup_succeed_2": $msgstr = $_SLANG['printmsg.signup.succeed3'] . "<script>setTimeout(function(){window.location.href=\"login.php\";},8000);</script>"; $msglink = $msglink2; break; case "signup_succeed_3": $msgstr = $_SLANG['printmsg.signup.succeed4'] . "<script>setTimeout(function(){window.location.href=\"login.php\";},8000);</script>";
if ($_GET['action'] == "checklogin") { $username = strFilter($_POST['membername']); $userpass = strFilter($_POST['memberpass']); $userpass = encrypt($username, $userpass); if (empty($username) || empty($userpass)) { printMsg('signup_required_1'); } $row = $db->row_select_one("members", "membername='{$username}' and memberpass='******'"); if ($row == false) { printMsg('login_namepasserr'); } else { $uobj['logintime'] = time(); $db->row_update("members", $uobj, "id={$row['id']}"); $t = -86400 * 365 * 2; wSESSION('memberid', $row['id']); wSESSION('groupid', $row['groupid']); wSESSION('membername', $row['membername'], $t); wSESSION('memberpass', $row['memberpass'], $t); setCookies("cartid", $row['id'], 3600 * 24 * 7); //session_destroy(); setCookies('membername', $username, $t); setCookies('userpass', $userpass, $t); setCookies('expire', '', $t); wSESSION('memberauth', md5($row['membername'] . $row['memberpass'] . $cache_global['salt']), $t); printMsg('login_succeed'); } } else { require_once './header.php'; require_once getTemplatePath('login.htm'); footer(); }
if (!empty($lg['membername']) && !empty($lg['memberpass'])) { $lgrow = $db->row_select_one("members", "membername='{$lg[membername]}' and memberpass='******'", "id,groupid"); if (empty($lgrow)) { $lg['groupid'] = GROUP_GUESS; } else { if ($lgrow['groupid'] == GROUP_NOVERIFY || $lgrow['groupid'] == GROUP_NOVISIT || $lgrow['groupid'] == GROUP_VERIFYFAILED) { //待验证 //禁止访问 //验证不通过 $cleart = -86400 * 365 * 2; setCookies('membername', '', $cleart); setCookies('memberpass', '', $cleart); setCookies('expire', '', $cleart); _header_("location:index.php"); } else { setCookies('memberauth', md5($lg['membername'] . $lg['memberpass'] . $cache_settings['salt']), $lg['expire']); wSESSION('memberid', $lgrow['id']); wSESSION('groupid', $lgrow['groupid']); $lg['memberid'] = intval(rSESSION('memberid')); $lg['groupid'] = intval(rSESSION('groupid')); } } } } //模板相关 $_SYS['styleid'] = $cache_settings['template']; if (isset($_GET['preview'])) { $_SYS['styleid'] = $_GET['styleid']; $_SYS['styleid'] = str_replace(array("'", "/", "\\", "\"", "."), array('', '', '', '', ''), $_SYS['styleid']); } //模板路径 $_SYS['TP'] = 'template/' . $_SYS['styleid']; $_SYS['indexurl'] = $webcore->genUrl('index.php');
$filename = "./{$backdir}/" . rSESSION('data_file'); if (import($filename)) { $msgs[] = _LANG($_AL['database.r2.t2'], array(rSESSION('data_file'))); } else { $msgs[] = _LANG($_AL['database.r2.t3'], array(rSESSION('data_file'))); show_msg($msgs); pageend(); } $voltmp = explode("_v", rSESSION('data_file')); $volname = $voltmp[0]; $volnum = explode(".sq", $voltmp[1]); $volnum = intval($volnum[0]) + 1; $tmpfile = $volname . "_v" . $volnum . ".sql"; if (file_exists("./{$backdir}/" . $tmpfile)) { $msgs[] = _LANG($_AL['database.r2.t4'], array($tmpfile)); wSESSION('data_file', $tmpfile); show_msg($msgs); sleep(3); echo "<script language='javascript'>"; echo "location='restore.php';"; echo "</script>"; } else { $msgs[] = "{$_AL['database.r2.t5']}"; uSESSION('data_file'); show_msg($msgs); } break; /************************************** restore END ************************************************/ } function import($fname) {
} if ($username == '' || $userpass == '' || $userpass == '') { $errtips = 'login_detailsrequired'; } elseif (strtolower(rSESSION('validationcode')) != strtolower($securitycode)) { $errtips = 'login_validationcodeerr'; } else { $userpass = encrypt($username, $userpass); $row = $db->row_select_one("users", "username='******' and userpass='******'"); if ($row == null) { $errtips = 'login_namepasserr'; } else { $uobj['lastip'] = getIP(); $uobj['lasttime'] = time(); $db->row_update("users", $uobj, "id={$row['id']}"); wSESSION('isadmin', 1); wSESSION('userid', $row['id']); _header_("location:{$ref}"); $errtips = 'login_succeed'; } } } else { //$ref = $_GET["ref"]; if ($ref == "") { $ref = "index.php"; } } $errtipsstr = array('login_detailsrequired' => $_AL['login.required'], 'login_validationcodeerr' => $_AL['login.codeerr'], 'login_namepasserr' => $_AL['login.usererr']); print <<<EOT <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml">