} */ if ($_FILES['imgfile']['error'] == UPLOAD_ERR_OK) { $filename = "module/lovestation/templates/default/images/carrelaxbargame/" . $_FILES['imgfile']['name']; $data['imgfile'] = $filename; //上传图片处理结束 } $data['href'] = $href; $data['introduce'] = $introduce; $data['dateline'] = time(); $whearr['id'] = $id; updatetable("cargames", $data, $whearr); MooMessageAdmin("更新成功", 'index.php?action=lovestation&h=carrelaxbargame'); exit; } if (!checkGroup('lovestation', $h)) { MooMessageAdmin('您没有此操作的权限', 'index.php'); } $h = MooGetGPC('h', 'string', 'G'); //日志变更类型 /* $matchmaker_msg_array=array(0=>'处罚',1=>'奖励','3'=>'PK胜利','4'=>'PK失败','5'=>'PK资本支付','6'=>'PK资本返还'); if(!checkGroup('matchmaker',$h)){ if(in_array($h,array('config_list','to_rewards','want_pk','my_pk','pk_me','pk_list','mylog','reward_log','isAuthRewards'))){ exit('您没有此操作的权限'); }else{ exit(json_encode(array('flag'=>0,'msg'=>'您没有此操作的权限'))); } } */ switch ($h) {
* * $Id: activate.php 10925 2011-09-02 14:12:02Z c_schmitz $ */ //Ensure script is not run directly, avoid path disclosure include_once "login_check.php"; //Login Check dies also if the script is started directly include_once "activate_functions.php"; $postsid = returnglobal('sid'); $activateoutput = ''; $qtypes = getqtypelist('', 'array'); if (!isset($_POST['ok']) || !$_POST['ok']) { if (isset($_GET['fixnumbering']) && $_GET['fixnumbering']) { fixNumbering($_GET['fixnumbering']); } // Check consistency for groups and questions $failedgroupcheck = checkGroup($postsid); $failedcheck = checkQuestions($postsid, $surveyid, $qtypes); //IF ANY OF THE CHECKS FAILED, PRESENT THIS SCREEN if (isset($failedcheck) && $failedcheck || isset($failedgroupcheck) && $failedgroupcheck) { $activateoutput .= "<br />\n<div class='messagebox ui-corner-all'>\n"; $activateoutput .= "<div class='header ui-widget-header'>" . $clang->gT("Activate Survey") . " ({$surveyid})</div>\n"; $activateoutput .= "<div class='warningheader'>\n" . $clang->gT("Error") . "<br />\n"; $activateoutput .= $clang->gT("Survey does not pass consistency check") . "</div>\n"; $activateoutput .= "<p>\n"; $activateoutput .= "<strong>" . $clang->gT("The following problems have been found:") . "</strong><br />\n"; $activateoutput .= "<ul>\n"; if (isset($failedcheck) && $failedcheck) { foreach ($failedcheck as $fc) { $activateoutput .= "<li> Question qid-{$fc[0]} (\"<a href='{$scriptname}?sid={$surveyid}&gid={$fc['3']}&qid={$fc['0']}'>{$fc[1]}</a>\"){$fc[2]}</li>\n"; } }
$data['province'] = MooGetGPC('province', 'integer', 'P'); $data['activity_img'] = 'module/activity/templates/default/images/activity_new/' . MooGetGPC('img', 'string', 'P'); $data['href'] = 'index.php?n=activity&h=' . MooGetGPC('href', 'string', 'P'); $data['city'] = MooGetGPC('city', 'integer', 'P'); $data['place'] = htmlspecialchars(trim(MooGetGPC('place', 'string', 'P'))); $data['profile'] = htmlspecialchars(trim(MooGetGPC('profile', 'string', 'P'))); $data['introduction'] = htmlspecialchars(trim(MooGetGPC('introduction', 'string', 'P'))); updatetable('activity', $data, $where); MooMessageAdmin('活动修改成功', 'index.php?action=active_activity&h=edit&id=' . $id); } $sql = 'SELECT `type`,`title`,`price`,`price_online`,`starttime`,`endtime`,`opentime`,`closetime`,`issex`,`province`,`city`,`place`,`profile`,`introduction` from `' . $GLOBALS['dbTablePre'] . 'activity` where `id`=' . $id; $data = $GLOBALS['_MooClass']['MooMySQL']->getOne($sql); require adminTemplate('active_activity_detail'); } $h = MooGetGPC('h', 'string', 'G'); $h_array = array('list', 'add', 'edit'); $h = in_array($h, $h_array) ? $h : 'list'; if (!checkGroup('active_activity', $h)) { MooMessageAdmin('您没有此操作的权限', 'index.php?action=active_activity'); } switch ($h) { case 'list': active_activity_list(); break; case 'add': active_activity_add(); break; case 'edit': active_activity_edit(); break; }
$currenturl = preg_replace("/(&page=\\d+)/", "", $currenturl); $currenturl = preg_replace("/(&type=undealed)/", "", $currenturl); $currenturl = preg_replace("/(&type=dealed)/", "", $currenturl); $currenturl = preg_replace("/(&type=all)/", "", $currenturl); $currenturl2 = $currenturl; $currenturl = $currenturl . "&type={$type}"; $pages = multipage($total['num'], $limit, $page, $currenturl); //note 跳转到某一页 $page_num = ceil($total['num'] / $limit); //note 插入日志 serverlog(1, $GLOBALS['dbTablePre'] . 'service_leer', "{$GLOBALS['username']}查看秋波列表", $GLOBALS['adminid']); require adminTemplate('active_leer_list'); } /***********************************************控制层(C)*****************************************/ $h = MooGetGPC('h', 'string', 'G') == '' ? 'list' : MooGetGPC('h', 'string', 'G'); //note 动作列表 $hlist = array('list'); //note 判断页面是否存在 if (!in_array($h, $hlist)) { MooMessageAdmin('您要打开的页面不存在'); } //note 判断是否有权限 if (!checkGroup('active_leer', $h)) { MooMessageAdmin('您没有此操作的权限'); } switch ($h) { //note 秋波列表 case 'list': active_leer_list(); break; }
} $total = $GLOBALS['_MooClass']['MooMySQL']->getOne($sql); $user_arr = $GLOBALS['_MooClass']['MooMySQL']->getAll($sql_detail); $currenturl = "index.php?action=active_uplink&h=list&choose={$choose}&keyword={$keyword}&startdate={$startdate}&enddate={$enddate}"; $currenturl = $currenturl . "&type={$type}"; $pages = multipage($total['num'], $limit, $page, $currenturl); //note 跳转到某一页 $page_num = ceil($total['num'] / $limit); //note 插入日志 serverlog(1, $GLOBALS['dbTablePre'] . 'servies', "{$GLOBALS['username']}查看会员上行列表", $GLOBALS['adminid']); //note 载入模块 require adminTemplate('active_uplink_list'); } /***********************************************控制层(C)*****************************************/ $h = MooGetGPC('h', 'string', 'G') == '' ? 'list' : MooGetGPC('h', 'string', 'G'); //note 动作列表 $hlist = array('list'); //note 判断页面是否存在 if (!in_array($h, $hlist)) { MooMessageAdmin('您要打开的页面不存在', 'index.php?action=site_media'); } //note 判断是否有权限 if (!checkGroup('active_uplink', $h)) { MooMessageAdmin('您没有此操作的权限', 'index.php?action=site&h=site_media'); } switch ($h) { //note 委托列表 case 'list': active_uplink_list(); break; }
$currenturl = preg_replace("/(&page=\\d+)/", "", $currenturl); $currenturl = preg_replace("/(&type=undealed)/", "", $currenturl); $currenturl = preg_replace("/(&type=dealed)/", "", $currenturl); $currenturl = preg_replace("/(&type=all)/", "", $currenturl); $currenturl2 = $currenturl; $currenturl = $currenturl . "&type={$type}"; $pages = multipage($total['num'], $limit, $page, $currenturl); //note 跳转到某一页 $page_num = ceil($total['num'] / $limit); //note 插入日志 serverlog(1, $GLOBALS['dbTablePre'] . 'members_search', "{$GLOBALS['username']}操作会员委托", $GLOBALS['adminid']); require adminTemplate('active_commission_list'); } /***********************************************控制层(C)*****************************************/ $h = MooGetGPC('h', 'string', 'G') == '' ? 'list' : MooGetGPC('h', 'string', 'G'); //note 动作列表 $hlist = array('list'); //note 判断页面是否存在 if (!in_array($h, $hlist)) { MooMessageAdmin('您要打开的页面不存在'); } //note 判断是否有权限 if (!checkGroup('active_commission', $h)) { MooMessageAdmin('您没有此操作的权限'); } switch ($h) { //note 委托列表 case 'list': active_commission_list(); break; }
$currenturl = preg_replace("/(&type=undealed)/", "", $currenturl); $currenturl = preg_replace("/(&type=dealed)/", "", $currenturl); $currenturl = preg_replace("/(&type=all)/", "", $currenturl); $currenturl2 = $currenturl; $currenturl = $currenturl . "&type={$type}"; $pages = multipage($total['num'], $limit, $page, $currenturl); //note 跳转到某一页 $page_num = ceil($total['num'] / $limit); //note 插入日志 serverlog(1, $GLOBALS['dbTablePre'] . 'service_chat', "{$GLOBALS['username']}查看聊天记录列表", $GLOBALS['adminid']); //note 调用模板 require adminTemplate('active_chat_list'); } /***********************************************控制层(C)*****************************************/ $h = MooGetGPC('h', 'string', 'G') == '' ? 'list' : MooGetGPC('h', 'string', 'G'); //note 动作列表 $hlist = array('list'); //note 判断页面是否存在 if (!in_array($h, $hlist)) { MooMessageAdmin('您要打开的页面不存在', 'index.php?n=main'); } //note 判断是否有权限 if (!checkGroup('active_chat', $h)) { MooMessageAdmin('您没有此操作的权限', 'index.php?n=main'); } switch ($h) { //note 委托列表 case 'list': active_chat_list(); break; }
$output .= "<h2>Groups</h2>"; /* * If the ?group=THING query is defined, we're going to save that variable. * If a user action is also defined, we'll do that. If it's just the group * name, we'll list check that the user is a member of that group, then get * all it's posts. */ //Join group dialogue $output .= file_get_contents("templates/join-group.html"); //New group dialogue. $output .= file_get_contents("templates/new-group.html"); if (isset($_POST['create-group'])) { $new_group = mysqli_real_escape_string($conn, $_POST['new-group']); //If the group doesn't exist yet... if (!checkGroup($new_group)) { $private = isset($_POST['private']); //If $private is 1 (true) leave it as 1, else set to 0 (false). $private = $private == 1 ? 1 : 0; //spit($private); $username = $_SESSION['username']; $sql = "INSERT INTO Groups (name, private, owner) VALUES ('{$new_group}', '{$private}', '{$username}')"; $result = mysqli_query($conn, $sql); if ($result) { //spit("A"); addtoGroup($new_group, $username); $output .= "<p>Group created successfully.</p>"; } else { //spit("B"); $output .= "<p>" . mysqli_error($conn) . "</p>"; }
$uid = MooGetGPC('uid', 'integer', 'R'); $data = $GLOBALS['_MooClass']['MooMySQL']->getAll('SELECT * FROM ' . $GLOBALS['dbTablePre'] . 'cooperation where uid = ' . $uid); $v = $data['0']; require adminTemplate('active_cooperation_remark'); exit; } $h = MooGetGPC('h', 'string', 'R') == '' ? 'list' : MooGetGPC('h', 'string', 'R'); $act = MooGetGPC('act', 'string', 'R') == '' ? 'list' : MooGetGPC('act', 'string', 'R'); //note 动作列表 $hlist = array('list', 'search', 'edit', 'remark', 'update'); //note 判断页面是否存在 if (!in_array($h, $hlist)) { MooMessageAdmin('您要打开的页面不存在', 'index.php?action=site_media'); } //note 判断是否有权限 if (!checkGroup('active_cooperation', $h)) { MooMessageAdmin('您没有此操作的权限', 'index.php?action=site&h=site_media'); } switch ($act) { case 'search': cooperation_search(); break; case 'edit': cooperation_edit(); break; case 'remark': cooperation_remark(); break; case 'remark_update': cooperation_remark_update(); break;
</h4> </a> </div> </div> <?php $query = $conn->prepare('SELECT * FROM departments ORDER BY name ASC'); $query->execute(); $row = $query->fetch(PDO::FETCH_ASSOC); $i = 0; while ($row = $query->fetch(PDO::FETCH_ASSOC)) { if ($row['name'] == 'FinanceandHR') { $dep = 'Finance'; } else { $dep = $row['humanName']; } if ($_SESSION['access'] == 10 || checkGroup($dep)) { echo ' <div class="panel panel-default"> <div class="panel-heading"> <a class="ajax-link" data-toggle="collapse" data-parent="#accordion" href="#collapse' . $i . '" data-href-url="admin/dashboard.php?department=' . $row['name'] . '"> <h4 class="panel-title">'; if ($row['name'] == "CommunicationsandSales") { echo 'Comms and Sales'; } elseif ($row['name'] == "FinanceandHR") { echo 'Finance'; } else { echo $row['humanName']; } echo '</h4> </a> </div>
$isedit = 1; $id = MooGetGPC('id', 'integer', 'G'); $sql = "SELECT * FROM {$GLOBALS['dbTablePre']}media WHERE id = {$id}"; $news = $GLOBALS['_MooClass']['MooMySQL']->getOne($sql); require adminTemplate('site_media_add'); } /***********************************************控制层(C)*****************************************/ $h = MooGetGPC('h', 'string', 'G') == '' ? 'list' : MooGetGPC('h', 'string', 'G'); //note 动作列表 $hlist = array('list', 'add', 'del', 'edit'); //note 判断页面是否存在 if (!in_array($h, $hlist)) { MooMessageAdmin('您要打开的页面不存在', 'index.php?action=site_media'); } //note 判断是否有权限 if (!checkGroup('site_media', $h)) { MooMessageAdmin('您没有此操作的权限', 'index.php?action=site&h=site_media'); } switch ($h) { //note 报道列表 case 'list': site_media_list(); break; //note 添加媒体报道 //note 添加媒体报道 case 'add': site_media_add(); break; //note 删除媒体报道 //note 删除媒体报道 case 'del':
/** * Function responsible to activate survey. * * @access public * @param int $iSurveyID * @return void */ public function activate($iSurveyID) { if (!Permission::model()->hasSurveyPermission($iSurveyID, 'surveyactivation', 'update')) { die; } $iSurveyID = (int) $iSurveyID; $aData = array(); $aData['sidemenu']['state'] = false; $aData['aSurveysettings'] = getSurveyInfo($iSurveyID); $aData['surveyid'] = $iSurveyID; $surveyinfo = Survey::model()->findByPk($iSurveyID)->surveyinfo; $aData['title_bar']['title'] = $surveyinfo['surveyls_title'] . "(" . gT("ID") . ":" . $iSurveyID . ")"; // Die if this is not possible if (!isset($aData['aSurveysettings']['active']) || $aData['aSurveysettings']['active'] == 'Y') { $this->getController()->error('Survey not active'); } $qtypes = getQuestionTypeList('', 'array'); Yii::app()->loadHelper("admin/activate"); if (empty($_POST['ok'])) { if (isset($_GET['fixnumbering']) && $_GET['fixnumbering']) { fixNumbering($_GET['fixnumbering'], $iSurveyID); } // Check consistency for groups and questions $failedgroupcheck = checkGroup($iSurveyID); $failedcheck = checkQuestions($iSurveyID, $iSurveyID, $qtypes); $aData['failedcheck'] = $failedcheck; $aData['failedgroupcheck'] = $failedgroupcheck; $aData['aSurveysettings'] = getSurveyInfo($iSurveyID); $this->_renderWrappedTemplate('survey', 'activateSurvey_view', $aData); } else { $survey = Survey::model()->findByAttributes(array('sid' => $iSurveyID)); if (!is_null($survey)) { $survey->anonymized = Yii::app()->request->getPost('anonymized'); $survey->datestamp = Yii::app()->request->getPost('datestamp'); $survey->ipaddr = Yii::app()->request->getPost('ipaddr'); $survey->refurl = Yii::app()->request->getPost('refurl'); $survey->savetimings = Yii::app()->request->getPost('savetimings'); $survey->save(); Survey::model()->resetCache(); // Make sure the saved values will be picked up } $aResult = activateSurvey($iSurveyID); if (isset($aResult['error'])) { $aViewUrls['output'] = "<br />\n<div class='messagebox ui-corner-all'>\n"; if ($aResult['error'] == 'surveytablecreation') { $aViewUrls['output'] .= "<div class='alert alert-warning' role='alert'>" . gT("Survey table could not be created.") . "</div>\n"; } else { $aViewUrls['output'] .= "<div class='alert alert-success' role='alert'>" . gT("Timings table could not be created.") . "</div>\n"; } $aViewUrls['output'] .= "<strong class='text-warning'>" . gT("Database error!!") . "\n " . "\n" . "<pre>" . var_export($aResult['error'], true) . "</pre>\n\n <a href='" . Yii::app()->getController()->createUrl("admin/survey/sa/view/surveyid/" . $iSurveyID) . "'>" . gT("Main Admin Screen") . "</a>\n</strong><br/>"; } else { $warning = isset($aResult['warning']) ? true : false; $allowregister = $survey->allowregister == 'Y' ? true : false; $onclickAction = convertGETtoPOST(Yii::app()->getController()->createUrl("admin/tokens/sa/index/surveyid/" . $iSurveyID)); $closedOnclickAction = convertGETtoPOST(Yii::app()->getController()->createUrl("admin/tokens/sa/index/surveyid/" . $iSurveyID)); $noOnclickAction = convertGETtoPOST(Yii::app()->getController()->createUrl("admin/survey/sa/view/surveyid/" . $iSurveyID)); $activationData = array('iSurveyID' => $iSurveyID, 'warning' => $warning, 'allowregister' => $allowregister, 'onclickAction' => $onclickAction, 'closedOnclickAction' => $closedOnclickAction, 'noOnclickAction' => $noOnclickAction); $aViewUrls['output'] = $this->getController()->renderPartial('/admin/survey/_activation_feedback', $activationData, true); } $this->_renderWrappedTemplate('survey', $aViewUrls, $aData); } }
} } $sql = "SELECT * FROM {$GLOBALS['dbTablePre']}admin_action WHERE id='{$actionid}'"; $adminaction = $GLOBALS['_MooClass']['MooMySQL']->getOne($sql); require_once adminTemplate('adminaction_edit'); } /***********************************************控制层(C)*****************************************/ $h = MooGetGPC('h', 'string') == '' ? 'list' : MooGetGPC('h', 'string'); //note 动作列表 $hlist = array('list', 'add', 'edit'); //note 判断页面是否存在 if (!in_array($h, $hlist)) { MooMessageAdmin('您要打开的页面不存在', 'index.php?action=system_adminaction&h=list'); } //note 判断是否有权限 if (!checkGroup('system_adminaction', $h)) { MooMessageAdmin('您没有此操作的权限', 'index.php?action=admin&h=index', 1); } switch ($h) { //note 所有操作列表 case 'list': system_adminaction_list(); break; //note 添加操作 //note 添加操作 case 'add': system_adminaction_add(); break; //note 修改操作 //note 修改操作 case 'edit':
echo '缓存重建成功,请重新刷新页面 <br>'; print_r($hntest_cache); } else { echo '缓存生成失败!'; } } /***********************************************控制层(C)*****************************************/ $h = MooGetGPC('h', 'string') == '' ? 'question_list' : MooGetGPC('h', 'string'); //note 判断是否有权限 //echo 'hntest_'.$h;exit; require 'include/hntest_function.php'; if (!file_exists('../data/cache/hntest_cache.php')) { hntest_cache(); } require '../data/cache/hntest_cache.php'; if (!checkGroup('hntest', $h)) { MooMessageAdmin('您没有此操作的权限', 'index.php?action=admin&h=index', 1); } if (isset($_GET['cache'])) { $h = 'cache'; } switch ($h) { case 'question_list': hntest_question_list(); break; case 'question_modify': hntest_question_modify(); break; case 'question_del': hntest_question_del(); break;
MooMessageAdmin('队红娘币限额设置成功', $referer, 1); } else { MooMessageAdmin('队红娘币限额设置失败<br/>USER_SQL=>' . $user_sql . '<br/>MANAGE_SQL=>' . $manage_sql, $referer, 1); } } /***********************************************控制层(C)*****************************************/ $h = MooGetGPC('h', 'string') == '' ? 'list' : MooGetGPC('h', 'string'); //note 动作列表 $hlist = array('teamlist', 'addteam', 'teammember', 'addteammember', 'delteam', 'editteam', 'del_teammember', 'set_leader', 'change'); //note 判断页面是否存在 if (!in_array($h, $hlist)) { salert('打开的页面不存在'); exit; } //note 判断是否有权限 $nav_list = checkGroup('system_adminteam', $h); if (!$nav_list) { salert('您没有此操作权限'); exit; } include './include/system_function.php'; switch ($h) { //组管理 case 'teamlist': system_adminteam_teamlist(); break; case 'addteam': system_adminteam_addteam(); break; case 'teammember': system_adminteam_teammember();
$kefe_inf_arr = $GLOBALS['_MooClass']['MooMySQL']->getAll($sql); foreach ($kefe_inf_arr as $key => $kefu_info) { $sql = "SELECT count(1) num FROM {$GLOBALS['dbTablePre']}admin_deluser b where sid='{$kefu_info['uid']}' and " . $time_between; $del_user_num_arr = $GLOBALS['_MooClass']['MooMySQL']->getOne($sql); $del_user_num[$key] = $del_user_num_arr['num']; } } } require_once adminTemplate("financial_deluser_count"); } /***********************************************控制层(C)*****************************************/ $h = MooGetGPC('h', 'string', 'G') == '' ? 'list' : MooGetGPC('h', 'string', 'G'); //note 动作列表 $hlist = array('list', 'delcount'); //note 判断页面是否存在 if (!in_array($h, $hlist)) { salert('您要打开的页面不存在'); } //note 判断是否有权限 if (!checkGroup('financial_tele_info', $h)) { salert('您没有此操作的权限'); } switch ($h) { //note 委托列表 case 'list': financial_tele_info_list(); break; case 'delcount': financial_deluser_count(); break; }
$sql = "DELETE FROM {$GLOBALS['dbTablePre']}love_type WHERE id = {$id}"; $GLOBALS['_MooClass']['MooMySQL']->query($sql); //note 插入日志 serverlog(4, $GLOBALS['dbTablePre'] . 'love_type', '删除测试评分结果', $GLOBALS['adminid']); salert("删除成功", 'index.php?action=site_lovetype&h=list'); } /***********************************************控制层(C)*****************************************/ $h = MooGetGPC('h', 'string', 'G') == '' ? 'list' : MooGetGPC('h', 'string', 'G'); //note 动作列表 $hlist = array('list', 'add', 'del'); //note 判断页面是否存在 if (!in_array($h, $hlist)) { MooMessageAdmin('您要打开的页面不存在', 'index.php?action=site_lovetype'); } //note 判断是否有权限 if (!checkGroup('site_lovetype', $h)) { MooMessageAdmin('您没有此操作的权限', 'index.php?action=site&h=site_lovetype'); } switch ($h) { //note 评分结果列表 case 'list': site_lovetype_list(); break; //note 添加评分结果 //note 添加评分结果 case 'add': site_lovetype_add(); break; //note 删除评分结果 //note 删除评分结果 case 'del':
$currenturl2 = preg_replace("/(&page=\\d+)/", "", $currenturl); $currenturl = preg_replace("/(&orderlogintime=(desc|asc))/", "", $currenturl2); $currenturl = preg_replace("/(&orderreal_lastvisit=(desc|asc))/", "", $currenturl); return $currenturl . '|' . $currenturl2; } /***********************************************控制层(C)*****************************************/ $h = MooGetGPC('h', 'string') == '' ? 'letter' : MooGetGPC('h', 'string'); //note 动作列表 $hlist = array('letter', 'photo', 'monolog', 'image', 'school', 'story', 'storyfirst', 'storyimage', 'paper', 'report', 'feedback', 'feedback_s', 'imagick_rotate', 'check_introduce', 'comment', 'check_content', 'video', 'member_video', 'voice', 'member_voice'); //note 判断页面是否存在 if (!in_array($h, $hlist)) { salert('您要打开的页面不存在'); exit; } //note 判断是否有权限 if (!checkGroup('check', $h)) { // salert('您没有此审核操作的权限');exit; } //note Control Case: switch ($h) { //note 站内信 case 'letter': check_letter(); break; //note 形象照 //note 形象照 case 'photo': check_photo(); break; //note 内心独白 //note 内心独白
exit; } $query = $conn->prepare('SELECT humanName FROM departments WHERE name = :department'); $query->bindValue(':department', $deptemp, PDO::PARAM_STR); $query->execute(); $row = $query->fetch(PDO::FETCH_ASSOC); $department = $row["humanName"]; ?> </head> <body> <?php include 'navbar.php'; ?> <?php if ($auth && checkGroup($department)) { ?> <!--main container--> <div class="container-fluid" id="main"><!--Private stuff in here--> <div class="row"> <div class="col-md-3 col-sm-6"><!-- Left hand col--> <?php include 'w_links_private.php'; ?> </div><!--/left hand col--> <div class="col-md-6 col-sm-6"> <!--middle col--> <?php
} if ($type == 'update') { serverlog(3, $GLOBALS['dbTablePre'] . 'financial_orderok', "{$GLOBALS['username']}修改财务报表提成记录ID为:{$id}的备注", $GLOBALS['adminid']); MooMessageAdmin('备注修改成功', 'index.php?action=financial_totalwage&h=list'); } } } //note 调用模板 require adminTemplate('financial_totalwage_add'); } /***********************************************控制层(C)*****************************************/ $h = MooGetGPC('h', 'string', 'G') == '' ? 'list' : MooGetGPC('h', 'string', 'G'); //note 动作列表 $hlist = array('list', 'remark'); //note 判断页面是否存在 if (!in_array($h, $hlist)) { MooMessageAdmin('您要打开的页面不存在', 'index.php?n=main'); } //note 判断是否有权限 if (!checkGroup('financial_totalwage', $h)) { MooMessageAdmin('您没有此操作的权限', 'index.php?n=main'); } switch ($h) { //note 委托列表 case 'list': financial_totalwage_list(); break; case 'remark': financial_totalwage_remark(); break; }
$currenturl = preg_replace("/(&page=\\d+)/", "", $currenturl); $currenturl = preg_replace("/(&type=undealed)/", "", $currenturl); $currenturl = preg_replace("/(&type=dealed)/", "", $currenturl); $currenturl = preg_replace("/(&type=all)/", "", $currenturl); $currenturl2 = $currenturl; $currenturl = $currenturl . "&type={$type}"; $pages = multipage($total, $limit, $page, $currenturl); //note 跳转到某一页 $page_num = ceil($total / $limit); //note 插入日志 serverlog(1, $GLOBALS['dbTablePre'] . 'servies', "{$GLOBALS['username']}查看站内短信列表", $GLOBALS['adminid']); require adminTemplate('active_websms_list'); } /***********************************************控制层(C)*****************************************/ $h = MooGetGPC('h', 'string', 'G') == '' ? 'list' : MooGetGPC('h', 'string', 'G'); //note 动作列表 $hlist = array('list'); //note 判断页面是否存在 if (!in_array($h, $hlist)) { MooMessageAdmin('您要打开的页面不存在', 'index.php?action=site_media'); } //note 判断是否有权限 if (!checkGroup('active_websms', $h)) { MooMessageAdmin('您没有此操作的权限', 'index.php?action=site&h=site_media'); } switch ($h) { //note 委托列表 case 'list': active_websms_list(); break; }
} else { MooMessageAdmin('数据传递失败', $_SERVER['HTTP_REFERER']); } } /** * *********************************************控制层(C)**************************************** */ $h = MooGetGPC('h', 'string', 'G') == '' ? 'list' : MooGetGPC('h', 'string', 'G'); // note 动作列表 $hlist = array('list', 'edit', 'add', 'password', 'kefucache', 'change'); // note 判断页面是否存在 if (!in_array($h, $hlist)) { MooMessageAdmin('您要打开的页面不存在', 'index.php?action=system_adminuser&h=list'); } // note 判断是否有权限 if (!checkGroup('system_adminuser', $h)) { MooMessageAdmin('您没有此操作的权限', 'index.php?action=system_admin&h=index', 1); } switch ($h) { // note 管理员列表 case 'list': system_adminuser_list(); break; // note 添加管理员 // note 添加管理员 case 'add': system_adminuser_add(); break; // note 修改管理员信息 // note 修改管理员信息 case 'edit':
$page_links = multipage($total, $page_per, $page, $currenturl); // $page_links=str_replace('7651','7652',$page_links); $sql = "SELECT uid,username FROM {$GLOBALS['dbTablePre']}admin_user"; $user_list = $GLOBALS['_MooClass']['MooMySQL']->getAll($sql); require_once adminTemplate('adminlog_list'); } /***********************************************控制层(C)*****************************************/ $h = MooGetGPC('h', 'string') == '' ? 'list' : MooGetGPC('h', 'string'); //note 动作列表 $hlist = array('list', 'del', 'search'); //note 判断页面是否存在 if (!in_array($h, $hlist)) { MooMessageAdmin('您要打开的页面不存在', 'index.php?action=system_adminlog&h=list'); } //note 判断是否有权限 if (!checkGroup('system_adminlog', $h)) { MooMessageAdmin('您没有此操作的权限', 'index.php?action=system_admin&h=index', 1); } switch ($h) { //note 管理员日志列表 case 'list': system_adminlog_list(); break; //note 删除管理员日志 //note 删除管理员日志 case 'del': system_adminlog_del(); break; //note 查询特定管理员日志 //note 查询特定管理员日志 case 'search':
} //foreach($_POST as $key => $value ){$post .=$key.' => '.$value; }; //проверка введённых данных, используем модуль $v = new Valitron\Validator($_POST); $v->rule('required', ['name', 'url', 'description']); if (!$v->validate()) { exit(createMessageJson(false, 'Неполные данные ' . $post)); } //cделаем проверку, что выполнена регистрация //смотрим , есть ли в сессии логи и пароль, и проверяем session_start(); // if (!isset($_SESSION) or !isset($_SESSION['password_hash'])) { exit(createMessageJson(false, 'Не выполнена регистрация в системе')); } $res = checkGroup($_SESSION['password_hash'], admins); if ($res) { exit(createMessageJson($res)); } $name = $_POST['name']; $url = $_POST['url']; $image = $_POST['image']; $description = $_POST['description']; $file = $_FILES['image']; //проверяем размер файла if ($file['size'] == 0 or $file['size'] > 2097152) { exit(createMessageJson(false, 'Загрузите файл разрешённого размера')); } //провряем формат файла $imageinfo = getimagesize($file['tmp_name']); if ($imageinfo['mime'] != 'image/gif' and $imageinfo['mime'] != 'image/jpeg' and $imageinfo['mime'] != 'image/png') {
$currenturl = "index.php?action=financial&h=classStatistics"; // echo $currenturl; $pages = multipage($total, $page_per, $page, $currenturl); //加载模板 require adminTemplate('financial_classStatistics'); } /***********************************************控制层(C)*****************************************/ $h = MooGetGPC('h', 'string'); //note 动作列表 $hlist = array('msm_grade_count', 'feedback_fraction', 'member_grade_count', 'delstatistics', 'showreason', 'classStatistics', 'NewClassStat'); //note 判断页面是否存在 if (!in_array($h, $hlist)) { salert('您要打开的页面不存在'); } //note 判断是否有权限 if (!checkGroup('financial', $h)) { salert('您没有修改此操作的权限'); } switch ($h) { //note 来自网站对红娘的评分 case 'feedback_fraction': financial_feedback_fraction(); break; //note 短信评分统计 //note 短信评分统计 case 'msm_grade_count': financial_msm_grade_count(); break; //会员跟进步骤统计 //会员跟进步骤统计 case 'member_grade_count':
$currenturl = 'http://' . $_SERVER['SERVER_NAME'] . ':' . $_SERVER["SERVER_PORT"] . $_SERVER["REQUEST_URI"] . $url; $url2 = "apply_time1={$apply_time1}&apply_time2={$apply_time2}&sid={$apply_sid}&uid={$uid}"; $currenturl = "index.php?action=vipuser&h=pay_query&" . $url2; $page_links = multipage($total, $page_per, $page, $currenturl); require adminTemplate('vipuser_pay_query'); } /***********************************************控制层(C)*****************************************/ $h = MooGetGPC('h', 'string', 'G') == '' ? 'pay' : MooGetGPC('h', 'string', 'G'); //note 动作列表 $hlist = array('pay', 'nopay', 'downline', 'upgrade_apply', 'pay_other', 'apply_list', 'high', 'diamond', 'city_star', 'vip_summary', 'viped', 'hurryhigh', 'hurrydiamond', 'getvip_group', 'pay_query'); //note 判断页面是否存在 if (!in_array($h, $hlist)) { MooMessageAdmin('您要打开的页面不存在', 'index.php?action=vipuser'); } //note 判断是否有权限 if (!checkGroup('vipuser', $h)) { MooMessageAdmin('您没有此操作的权限', 'index.php?action=vipuser'); } switch ($h) { case 'pay': //note 已支付列表 vipuser_pay(); break; case 'nopay': //note 未支付列表 vipuser_nopay(); break; case 'downline': //note 线下支付 vipuser_downline(); break;
MooMessageAdmin('群组红娘币规则设置成功', $referer, 1); } else { MooMessageAdmin('群组红娘币规则设置失败<br/>GROUP_SQL=>' . $group_sql . '<br/>USER_SQL=>' . $user_sql, $referer, 1); } } /***********************************************控制层(C)*****************************************/ $h = MooGetGPC('h', 'string') == '' ? 'list' : MooGetGPC('h', 'string'); //note 动作列表 $hlist = array('grouplist', 'addgroup', 'groupmember', 'addgroupmember', 'delgroup', 'editgroup', 'del_groupmember', 'set_leader', 'change'); //note 判断页面是否存在 if (!in_array($h, $hlist)) { salert('打开的页面不存在'); exit; } //note 判断是否有权限 $nav_list = checkGroup('system_adminmanage', $h); if (!$nav_list) { salert('您没有此操作权限'); exit; } include './include/system_function.php'; switch ($h) { //组管理 case 'grouplist': system_adminmanage_grouplist(); break; case 'addgroup': system_adminmanage_addgroup(); break; case 'groupmember': system_adminmanage_groupmember();
echo iconv('utf-8', 'gbk', $v['name']) . "\t"; echo iconv('utf-8', 'gbk', date("Y-m-d", $v['dateline'])) . "\t\n"; } exit; } //note 数据库查询 $sql = "SELECT COUNT(*) num FROM {$GLOBALS['dbTablePre']}financial_orderok {$where}"; $total = $GLOBALS['_MooClass']['MooMySQL']->getOne($sql); //note 插入日志 serverlog(1, $GLOBALS['dbTablePre'] . 'financial_orderok', "{$GLOBALS['username']}查看成功订单总数记录列表", $GLOBALS['adminid']); //note 调用模板 require adminTemplate('financial_ordertotal_list'); } /***********************************************控制层(C)*****************************************/ $h = MooGetGPC('h', 'string', 'G') == '' ? 'list' : MooGetGPC('h', 'string', 'G'); //note 动作列表 $hlist = array('list'); //note 判断页面是否存在 if (!in_array($h, $hlist)) { MooMessageAdmin('您要打开的页面不存在', 'index.php?n=main'); } //note 判断是否有权限 if (!checkGroup('financial_orderok', $h)) { MooMessageAdmin('您没有此操作的权限', 'index.php?n=main'); } switch ($h) { //note 成功订单列表 case 'list': financial_ordertotal_list(); break; }
/** * Function responsible to activate survey. * * @access public * @param int $iSurveyID * @return void */ public function activate($iSurveyID) { if (!Permission::model()->hasSurveyPermission($iSurveyID, 'surveyactivation', 'update')) { die; } $iSurveyID = (int) $iSurveyID; $aData = array(); $aData['aSurveysettings'] = getSurveyInfo($iSurveyID); $aData['surveyid'] = $iSurveyID; // Die if this is not possible if (!isset($aData['aSurveysettings']['active']) || $aData['aSurveysettings']['active'] == 'Y') { $this->getController()->error('Survey not active'); } $qtypes = getQuestionTypeList('', 'array'); Yii::app()->loadHelper("admin/activate"); if (empty($_POST['ok'])) { if (isset($_GET['fixnumbering']) && $_GET['fixnumbering']) { fixNumbering($_GET['fixnumbering'], $iSurveyID); } // Check consistency for groups and questions $failedgroupcheck = checkGroup($iSurveyID); $failedcheck = checkQuestions($iSurveyID, $iSurveyID, $qtypes); $aData['failedcheck'] = $failedcheck; $aData['failedgroupcheck'] = $failedgroupcheck; $aData['aSurveysettings'] = getSurveyInfo($iSurveyID); $this->_renderWrappedTemplate('survey', 'activateSurvey_view', $aData); } else { $survey = Survey::model()->findByAttributes(array('sid' => $iSurveyID)); if (!is_null($survey)) { $survey->anonymized = Yii::app()->request->getPost('anonymized'); $survey->datestamp = Yii::app()->request->getPost('datestamp'); $survey->ipaddr = Yii::app()->request->getPost('ipaddr'); $survey->refurl = Yii::app()->request->getPost('refurl'); $survey->savetimings = Yii::app()->request->getPost('savetimings'); $survey->save(); Survey::model()->resetCache(); // Make sure the saved values will be picked up } $aResult = activateSurvey($iSurveyID); if (isset($aResult['error'])) { $aViewUrls['output'] = "<br />\n<div class='messagebox ui-corner-all'>\n" . "<div class='header ui-widget-header'>" . gT("Activate Survey") . " ({$iSurveyID})</div>\n"; if ($aResult['error'] == 'surveytablecreation') { $aViewUrls['output'] .= "<div class='warningheader'>" . gT("Survey table could not be created.") . "</div>\n"; } else { $aViewUrls['output'] .= "<div class='warningheader'>" . gT("Timings table could not be created.") . "</div>\n"; } $aViewUrls['output'] .= "<p>" . gT("Database error!!") . "\n <font color='red'>" . "</font>\n" . "<pre>" . var_export($aResult['error'], true) . "</pre>\n\n <a href='" . Yii::app()->getController()->createUrl("admin/survey/sa/view/surveyid/" . $iSurveyID) . "'>" . gT("Main Admin Screen") . "</a>\n</div>"; } else { $aViewUrls['output'] = "<br />\n<div class='messagebox ui-corner-all'>\n" . "<div class='header ui-widget-header'>" . gT("Activate Survey") . " ({$iSurveyID})</div>\n" . "<div class='successheader'>" . gT("Survey has been activated. Results table has been successfully created.") . "</div><br /><br />\n"; if (isset($aResult['warning'])) { $aViewUrls['output'] .= "<div class='warningheader'>" . gT("The required directory for saving the uploaded files couldn't be created. Please check file premissions on the /upload/surveys directory.") . "</div>"; } if ($survey->allowregister == 'Y') { $aViewUrls['output'] .= gT("This survey allows public registration. A token table must also be created.") . "<br /><br />\n" . "<input type='submit' value='" . gT("Initialise tokens") . "' onclick=\"" . convertGETtoPOST(Yii::app()->getController()->createUrl("admin/tokens/sa/index/surveyid/" . $iSurveyID)) . "\" />\n"; } else { $aViewUrls['output'] .= gT("This survey is now active, and responses can be recorded.") . "<br /><br />\n" . "<strong>" . gT("Open-access mode") . ":</strong> " . gT("No invitation code is needed to complete the survey.") . "<br />" . gT("You can switch to the closed-access mode by initialising a token table with the button below.") . "<br /><br />\n" . "<input type='submit' value='" . gT("Switch to closed-access mode") . "' onclick=\"" . convertGETtoPOST(Yii::app()->getController()->createUrl("admin/tokens/sa/index/surveyid/" . $iSurveyID)) . "\" />\n" . "<input type='submit' value='" . gT("No, thanks.") . "' onclick=\"" . convertGETtoPOST(Yii::app()->getController()->createUrl("admin/survey/sa/view/surveyid/" . $iSurveyID)) . "\" />\n"; } $aViewUrls['output'] .= "</div><br /> \n"; } $this->_renderWrappedTemplate('survey', $aViewUrls, $aData); } }
$data['time'] = date('Y-m-d H:i:s', $data['time']); $data['type_str'] = $GLOBALS['matchmaker_msg_array'][$data['type']]; $data['msg'] = (empty($data2['title']) ? '' : $data2['title'] . '<br/>') . (empty($data2['msg']) ? '' : $data2['msg'] . '<br/>') . $data['msg']; exit(json_encode(array('flag' => 1, 'msg' => $data))); } /** * 创建红娘币变更信息 */ function bulidmsg() { $msg_array = array(0 => '处罚', 1 => '奖励', '3' => 'PK胜利', '4' => 'PK失败', '5' => 'PK资本支付', '6' => 'PK资本返还'); } $h = MooGetGPC('h', 'string', 'G'); //日志变更类型 $matchmaker_msg_array = array(0 => '处罚', 1 => '奖励', '3' => 'PK胜利', '4' => 'PK失败', '5' => 'PK资本支付', '6' => 'PK资本返还'); if (!checkGroup('matchmaker', $h)) { if (in_array($h, array('config_list', 'to_rewards', 'want_pk', 'my_pk', 'pk_me', 'pk_list', 'mylog', 'reward_log', 'isAuthRewards'))) { exit('您没有此操作的权限'); } else { exit(json_encode(array('flag' => 0, 'msg' => '您没有此操作的权限'))); } } if (in_array($h, array('put_rewards', 'add_pk', 'respond', 'judge'))) { $now = intval(date('Hi')); if ($now > '2330' || $now < '130') { exit(json_encode(array('flag' => 0, 'msg' => '朋友天色不早了,还是洗洗睡吧。'))); } } switch ($h) { case 'config_list': reward_config_list();