$row = $dsql->GetOne("Select * FROM `#@__member_friends` where fid='{$_vars['mid']}' And mid='{$cfg_ml->M_ID}' ");
if (is_array($row)) {
ShowMsg("该用户已经是你的好友!", "index.php?uid=" . $uid);
exit;
} else {
$inquery = "INSERT INTO `#@__member_friends` (`fid` , `floginid` , `funame` , `mid` , `addtime` , `ftype`)\n VALUES ('{$cfg_ml->M_ID}' , '{$cfg_ml->M_LoginID}' , '{$cfg_ml->M_UserName}' , '{$_vars['mid']}' , '{$addtime}' , '-1'); ";
$dsql->ExecuteNoneQuery($inquery);
ShowMsg("成功添加好友在黑名单!", "index.php?uid=" . $uid);
exit;
}
} elseif ($action == 'introduce') {
$dpl = new DedeTemplate();
$dpl->LoadTemplate(DEDEMEMBER . "/space/{$_vars['spacestyle']}/introduce.htm");
$dpl->display();
} elseif ($action == 'contact') {
$dpl = new DedeTemplate();
$dpl->LoadTemplate(DEDEMEMBER . "/space/{$_vars['spacestyle']}/contact.htm");
$dpl->display();
} elseif ($action == 'products') {
$mtype = isset($mtype) && is_numeric($mtype) ? $mtype : 0;
if ($action == 'products') {
$channel = 6;
}
include_once DEDEINC . '/arc.memberlistview.class.php';
include_once DEDEINC . '/channelunit.func.php';
$query = "Select arc.*,tp.typedir,tp.typename,tp.isdefault,tp.defaultname,tp.namerule,\n tp.namerule2,tp.ispart,tp.moresite,tp.siteurl,tp.sitepath FROM `#@__archives` arc\n left join `#@__arctype` tp on arc.typeid=tp.id\n where arc.mid='{$_vars['mid']}' and arc.channel='{$channel}' {$addqSql} order by arc.id desc";
$dlist = new MemberListview();
$dlist->pageSize = 12;
$dlist->SetParameter('mtype', $mtype);
$dlist->SetParameter('uid', $_vars['userid']);
$dlist->SetParameter('action', $action);
if (!file_exists(DEDEINC . '/payment/' . $rs['code'] . '.php')) {
ShowMsg("未发现支付接口文件,请到后台配置!", 'javascript:;');
exit;
}
require_once DEDEINC . '/payment/' . $rs['code'] . '.php';
$pay = new $rs['code']();
$payment = "";
if ($rs['code'] == "cod" || $rs['code'] == "bank") {
$order = $buyid;
$payment = "member";
} else {
$order = array('out_trade_no' => $buyid, 'price' => sprintf("%01.2f", $price));
require_once DEDEDATA . '/payment/' . $rs['code'] . '.php';
}
$button = $pay->GetCode($order, $payment);
$dtp = new DedeTemplate();
$carts = array('orders_id' => $buyid, 'cart_count' => '1', 'price_count' => sprintf("%01.2f", $price));
$row = $dsql->GetOne("SELECT pname,money FROM #@__member_operation WHERE buyid='{$buyid}'");
$dtp->SetVar('pay_name', $row['pname']);
$dtp->SetVar('price', $row['money']);
$dtp->SetVar('pay_way', $rs['name']);
$dtp->SetVar('description', $rs['description']);
$dtp->SetVar('button', $button);
$dtp->Assign('carts', $carts);
$dtp->LoadTemplate(DEDEMEMBER . '/templets/shops_action_payment.htm');
$dtp->Display();
exit;
}
/**
* 加密函数
*
$tids = "var class_level_1=new Array( \n";
$tid2s = "var class_level_2=new Array( \n";
while ($asktype = $dsql->getarray()) {
if ($asktype['reid'] == 0) {
$tids .= 'new Array("' . $asktype['id'] . '","' . $asktype['name'] . '"),' . "\n";
} else {
$tid2s .= 'new Array("' . $asktype['reid'] . '","' . $asktype['id'] . '","' . $asktype['name'] . '"),' . "\n";
}
}
$tids = substr($tids, 0, -2) . "\n";
$tid2s = substr($tid2s, 0, -2) . "\n";
$tids .= ');';
$tid2s .= ');';
$navtitle = $sitename . ' 提问';
$nav = '<a href="' . $indexname . '">' . $sitename . '</a> ' . $symbols . ' 提问';
$dtp = new DedeTemplate();
$dtp->LoadTemplate(DEDEASK . 'template/default/post.htm');
$dtp->Display();
} else {
if ($action == 'extra') {
$dsql->Execute('me', "SELECT id, uid, dateline, expiredtime, solvetime, extra FROM `#@__ask` WHERE id='{$id}' and status='0' ");
if ($question = $dsql->getarray()) {
if ($question['uid'] != $uid) {
showmsgs('unallowed_action');
} elseif ($question['expiredtime'] < $timestamp) {
showmsgs('question_expired');
}
} else {
showmsgs('question_nonexistence');
}
if (!empty($step)) {
<?php
//显示购物车的商品
require_once dirname(__FILE__) . "/../include/common.inc.php";
define('_PLUS_TPL_', DEDEROOT . '/templets/plus');
require_once DEDEINC . '/dedetemplate.class.php';
require_once DEDEINC . '/shopcar.class.php';
require_once DEDEINC . '/memberlogin.class.php';
$cart = new MemberShops();
if (isset($dopost) && $dopost == 'makeid') {
AjaxHead();
$cart->MakeOrders();
echo $cart->OrdersId;
exit;
}
$cfg_ml = new MemberLogin();
//获得购物车内商品,返回数组
$Items = $cart->getItems();
if ($cart->cartCount() < 1) {
ShowMsg("购物车中不存在任何商品!", "javascript:window.close();", false, 5000);
exit;
}
@sort($Items);
$carts = array('orders_id' => $cart->OrdersId, 'cart_count' => $cart->cartCount(), 'price_count' => $cart->priceCount());
$dtp = new DedeTemplate();
$dtp->Assign('carts', $carts);
$dtp->LoadTemplate(_PLUS_TPL_ . '/car.htm');
$dtp->Display();
exit;
} else {
if ($action == 'send') {
//读取文档信息
$arcRow = GetOnebook($aid);
if ((empty($arcRow['bid']) || $arcRow['notpost'] == '1') && empty($fid)) {
ShowMsg('无法对该文档发表评论!', '-1');
exit;
}
//是否加验证码重确认
if (empty($isconfirm)) {
$isconfirm = '';
}
if ($isconfirm != 'yes' && $cfg_feedback_ck == 'Y') {
extract($arcRow, EXTR_SKIP);
require_once DEDEINC . '/dedetemplate.class.php';
$dtp = new DedeTemplate();
$dtp->LoadTemplate($cfg_basedir . $cfg_templets_dir . '/plus/bookfeedback_confirm.htm');
$dtp->Display();
exit;
}
//检查验证码
if ($cfg_feedback_ck == 'Y') {
$validate = isset($validate) ? strtolower(trim($validate)) : '';
$svali = strtolower(trim(GetCkVdValue()));
if ($validate != $svali || $svali == '') {
ResetVdValue();
ShowMsg('验证码错误!', '-1');
exit;
}
}
//检查用户登录
$first = 1;
} else {
$commentnum++;
$comments[] = $row;
}
}
}
//快到期的问题
$query = "select id, tid, tidname, tid2, tid2name, title from `#@__ask` where status='0' order by expiredtime asc, dateline desc limit 10";
$dsql->Execute('me', $query);
$expiredasks = array();
while ($row = $dsql->getarray()) {
$row['title'] = cn_substr($row['title'], 24);
$expiredasks[] = $row;
}
//会员排行
$query = "select mid as ID, userid, scores from `#@__member` order by scores desc limit 10";
$dsql->Execute('me', $query);
$topmembers = array();
while ($row = $dsql->getarray()) {
$topmembers[] = $row;
}
$dtp = new DedeTemplate();
$dtp->LoadTemplate(DEDEASK . 'template/default/question.htm');
if ($cfg_ask_rewrite == 'Y') {
$dtp->Display();
myecho();
exit;
} else {
$dtp->Display();
}
if (!in_array($type, array('list', 'arc', 'index'))) {
$url = "http://2v.dedecms.com";
}
if ($action == 'get_qrcode') {
if ($type == 'arc') {
$url = $cfg_basehost . $cfg_plus_dir . '/view.php?aid=' . $id;
} elseif ($type == 'list') {
$url = $cfg_basehost . $cfg_plus_dir . '/list.php?tid=' . $id;
}
if ($id == 0) {
$url = "http://2v.dedecms.com";
}
if ($type == 'index') {
$url = $cfg_basehost . $cfg_plus_dir . '/index.php';
}
header("Content-Type: image/png");
$params = array();
$params['data'] = $url;
$params['size'] = 6;
$qrcode = new DedeQrcode();
$qrcode->generate($params);
} else {
header("Content-Type: text/html; charset={$cfg_soft_lang}");
$dtp = new DedeTemplate();
$tplfile = DEDETEMPLATE . '/plus/qrcode.htm';
$dtp->LoadTemplate($tplfile);
$dtp->SetVar('id', $id);
$dtp->SetVar('type', $type);
$dtp->Display();
exit;
}
$feeds[] = $row;
}
$dpl = new DedeTemplate();
$tpl = dirname(__FILE__) . "/templets/index.htm";
$dpl->LoadTemplate($tpl);
$dpl->display();
}
} else {
//暂时去掉会员空间-----------
header("location:" . $BOOK_URL);
exit;
//---------------------------
require_once DEDEMEMBER . '/inc/config_space.php';
if ($action == '') {
include_once DEDEINC . "/channelunit.func.php";
$dpl = new DedeTemplate();
$tplfile = DEDEMEMBER . "/space/{$_vars['spacestyle']}/index.htm";
//更新最近访客记录及站点统计记录
$vtime = time();
$last_vtime = GetCookie('last_vtime');
$last_vid = GetCookie('last_vid');
if (empty($last_vtime)) {
$last_vtime = 0;
}
if ($vtime - $last_vtime > 3600 || !preg_match('#,' . $uid . ',#i', ',' . $last_vid . ',')) {
if ($last_vid != '') {
$last_vids = explode(',', $last_vid);
$i = 0;
$last_vid = $uid;
foreach ($last_vids as $lsid) {
if ($i > 10) {
$cart->clearItem();
$cart->MakeOrders();
$dtp = new DedeTemplate();
$dtp->Assign('banks', $rs);
$dtp->LoadTemplate(_PLUS_TPL_ . '/shops_bank.htm');
$dtp->Display();
exit;
} elseif ($paytype == 4) {
/*
function Post-pay();
邮政汇款
*/
//清空购物车
$cart->clearItem();
$cart->MakeOrders();
$dtp = new DedeTemplate();
$dtp->Assign('banks', $rs);
$dtp->LoadTemplate(_PLUS_TPL_ . '/shops_bank.htm');
$dtp->Display();
exit;
} elseif ($paytype == 5) {
/*
function Point-pay();
点数购买
*/
$members = $dsql->GetOne("SELECT `money` FROM #@__member WHERE mid='" . $cfg_ml->M_ID . "'");
if ($members['money'] < $priceCount) {
ShowMsg("支付失败点数不够!", "-1");
exit;
}
if ($dsql->ExecuteNoneQuery("UPDATE `#@__shops_orders` SET `state`='1' WHERE `oid`='{$OrdersId}' AND `userid`='" . $cfg_ml->M_ID . "' AND `state`<1")) {
if (empty($channelid)) {
$channelid = 0;
}
$channelid = intval($channelid);
$mtypearr = array();
$addquery = '';
if (!empty($channelid)) {
$addquery = " AND channelid='{$channelid}' ";
}
$query = "SELECT * FROM `#@__mtypes` WHERE mid='{$cfg_ml->M_ID}' {$addquery} ";
$dsql->SetQuery($query);
$dsql->Execute();
while ($row = $dsql->GetArray()) {
$mtypearr[] = $row;
}
$tpl = new DedeTemplate();
$tpl->LoadTemplate(DEDEMEMBER . '/templets/fenlei.htm');
$tpl->Display();
exit;
} elseif ($dopost == 'add') {
$mtypename = HtmlReplace(trim($mtypename));
$channelid = intval($channelid);
if (empty($channelid)) {
$channelid = 1;
}
if (strlen($mtypename) > 40 || strlen($mtypename) < 2) {
ShowMsg('分类名称必须大于两个字节少于40个字节', '-1');
exit;
}
$query = "INSERT INTO `#@__mtypes`(mtypename, channelid, mid) VALUES ('{$mtypename}', '{$channelid}', '{$cfg_ml->M_ID}'); ";
if ($dsql->ExecuteNoneQuery($query)) {
}
$rs['code'] = isset($rs['code']) ? preg_replace("#[^0-9a-z_\\-]+#i", "", $rs['code']) : "";
if (empty($rs['code']) or !file_exists(DEDEINC . '/payment/' . $rs['code'] . '.php')) {
exit("Error:payment is not exsits!");
}
require_once DEDEINC . '/payment/' . $rs['code'] . '.php';
$pay = new $rs['code']();
$payment = "";
if ($rs['code'] == "cod" || $rs['code'] == "bank") {
$order = $OrdersId;
} else {
$order = array('out_trade_no' => $OrdersId, 'price' => $priceCount);
require_once DEDEDATA . '/payment/' . $rs['code'] . '.php';
}
$button = $pay->GetCode($order, $payment);
$dtp = new DedeTemplate();
$carts = array('orders_id' => $OrdersId, 'cart_count' => $CartCount, 'price_count' => $priceCount);
$row = $dsql->GetOne("SELECT dname,price FROM #@__shops_delivery WHERE pid='{$pid}'");
$dtp->SetVar('pay_name', $row['dname']);
$dtp->SetVar('price', $row['price']);
$dtp->SetVar('pay_way', $rs['name']);
$dtp->SetVar('description', $rs['description']);
$dtp->SetVar('button', $button);
$dtp->Assign('carts', $carts);
$dtp->LoadTemplate(_PLUS_TPL_ . '/shops_action_payment.htm');
$dtp->Display();
exit;
} else {
if ($dopost == 'return') {
$write_list = array('alipay', 'bank', 'cod', 'yeepay');
if (in_array($code, $write_list)) {
/**
* 引入文件 include 语法处理
*
* @access public
* @param string $filename 文件名
* @param string $isload 是否载入
* @return string
*/
function CompilerInclude($filename, $isload = TRUE)
{
$okfile = '';
if (@file_exists($filename)) {
$okfile = $filename;
} else {
if (@file_exists($this->refDir . $filename)) {
$okfile = $this->refDir . $filename;
} else {
if (@file_exists($this->refDir . "../" . $filename)) {
$okfile = $this->refDir . "../" . $filename;
}
}
}
if ($okfile == '') {
return 0;
}
if (!$isload) {
return 1;
}
$itpl = new DedeTemplate($this->templateDir);
$itpl->isCache = $this->isCache;
$itpl->SetObject($this->refObj);
$itpl->LoadTemplate($okfile);
return $itpl->CacheFile();
}
} else {
if ($action == 'send') {
//读取文档信息
$arcRow = GetOneArchive($aid);
if ((empty($arcRow['aid']) || $arcRow['notpost'] == '1') && empty($fid)) {
ShowMsg('无法对该文档发表评论!', '-1');
exit;
}
//是否加验证码重确认
if (empty($isconfirm)) {
$isconfirm = '';
}
if ($isconfirm != 'yes' && $cfg_feedback_ck == 'Y') {
extract($arcRow, EXTR_SKIP);
require_once DEDEINC . '/dedetemplate.class.php';
$dtp = new DedeTemplate();
$dtp->LoadTemplate(DEDETEMPLATE . '/plus/feedback_confirm.htm');
$dtp->Display();
exit;
}
//检查验证码
if (preg_match("/4/", $safe_gdopen)) {
$validate = isset($validate) ? strtolower(trim($validate)) : '';
$svali = GetCkVdValue();
if (strtolower($validate) != $svali || $svali == '') {
ResetVdValue();
ShowMsg('验证码错误!', '-1');
exit;
}
}
//检查用户登录
//正常
$row['status'] = 'qa_ico_1.gif';
}
$row['dateline'] = gmdate('m-d', $row['dateline'] + $timeoffset * 3600);
$row['title'] = cn_substr($row['title'], 40);
$asks[] = $row;
}
//快到期的问题
$query = "select id, tid, tidname, tid2, tid2name, title from `#@__ask` where status=0 order by expiredtime asc, dateline desc limit 10";
$dsql->Execute('me', $query);
$expiredasks = array();
while ($row = $dsql->getarray()) {
$row['title'] = cn_substr($row['title'], 24);
$expiredasks[] = $row;
}
//会员排行
$query = "select mid as ID, userid, scores from `#@__member` order by scores desc limit 10";
$dsql->Execute('me', $query);
$topmembers = array();
while ($row = $dsql->getarray()) {
$topmembers[] = $row;
}
$dtp = new DedeTemplate();
$dtp->LoadTemplate(DEDEASK . 'template/default/browser.htm');
if ($cfg_ask_rewrite == 'Y') {
$dtp->Display();
myecho();
exit;
} else {
$dtp->Display();
}
$tpl = new DedeTemplate();
$tpl->LoadTemplate(DEDEMEMBER . '/templets/mail_drop.htm');
$tpl->Display();
} else {
$typeid = explode(",", $typeid);
$dsql->SetQuery("SELECT * FROM `#@__mail_type` ORDER BY id asc");
$dsql->Execute();
$inputbox = "";
while ($row = $dsql->GetObject()) {
if (in_array($row->id, $typeid)) {
$inputbox .= "<li><input type='checkbox' name='mailtype[]' id='{$row->id}' value='{$row->id}' class='np' checked/> <label>{$row->typename}</label></li>\r\n";
} else {
$inputbox .= "<li><input type='checkbox' name='mailtype[]' id='{$row->id}' value='{$row->id}' class='np' /> <label>{$row->typename}</label></li>\r\n";
}
}
$tpl = new DedeTemplate();
$tpl->LoadTemplate(DEDEMEMBER . '/templets/mail.htm');
$tpl->Display();
}
} elseif ($dopost == 'save' || $dopost == 'drop') {
$mailtype = empty($mailtype) ? "" : $mailtype;
$dsql->ExecuteNoneQuery("DELETE FROM #@__mail_order WHERE mid={$mid}");
if ($dopost == 'save' && $mailtype == "") {
ShowMsg("请选择订阅类型!", 'mail.php');
exit;
}
if ($dopost == "save") {
$msg = "订阅成功!";
} elseif ($dopost == "drop") {
$msg = "退订成功!";
}
* @license http://help.dedecms.com/usersguide/license.html
* @link http://www.dedecms.com
*/
require_once dirname(__FILE__) . '/config.php';
CheckRank(0, 0);
$menutype = 'mydede';
$dopost = isset($dopost) ? trim($dopost) : '';
if ($dopost == '') {
$query = "SELECT * FROM `#@__member_group` WHERE mid='{$cfg_ml->M_ID}'";
$dsql->SetQuery($query);
$dsql->Execute();
while ($row = $dsql->GetArray()) {
$mtypearr[] = $row;
}
$GLOBALS['mtypearr'] = empty($GLOBALS['mtypearr']) ? '' : $GLOBALS['mtypearr'];
$tpl = new DedeTemplate();
$tpl->LoadTemplate(DEDEMEMBER . '/templets/myfriend_group.htm');
$tpl->Display();
exit;
} elseif ($dopost == 'add') {
$mtypename = HtmlReplace(trim($groupname));
$row = $dsql->GetOne("SELECT * FROM `#@__member_group` WHERE groupname LIKE '{$groupname}' AND mid='{$cfg_ml->M_ID}'");
if (is_array($row)) {
ShowMsg('分组名称已经存在', '-1');
exit;
} else {
if (strlen($groupname) == "") {
ShowMsg('分组名称不能为空', '-1');
exit;
}
}
<?php
/**
* @version $Id: buy.php 1 8:38 2010年7月9日Z tianya $
* @package DedeCMS.Member
* @copyright Copyright (c) 2007 - 2010, DesDev, Inc.
* @license http://help.dedecms.com/usersguide/license.html
* @link http://www.dedecms.com
*/
require_once dirname(__FILE__) . '/config.php';
CheckRank(0, 0);
$menutype = 'mydede';
$menutype_son = 'op';
$myurl = $cfg_basehost . $cfg_member_dir . '/index.php?uid=' . $cfg_ml->M_LoginID;
$moneycards = '';
$membertypes = '';
$dsql->SetQuery("SELECT * FROM #@__moneycard_type ");
$dsql->Execute();
while ($row = $dsql->GetObject()) {
$row->money = sprintf("%01.2f", $row->money);
$moneycards .= "<tr align='center'>\n <td><input type='radio' name='pid' value='{$row->tid}'></td>\n <td><strong>{$row->pname}</strong></td>\n <td>{$row->num}个</td>\n <td>{$row->money}元</td>\n </tr>\n ";
}
$dsql->SetQuery("SELECT #@__member_type.*,#@__arcrank.membername,#@__arcrank.money as cm From #@__member_type LEFT JOIN #@__arcrank on #@__arcrank.rank = #@__member_type.rank ");
$dsql->Execute();
while ($row = $dsql->GetObject()) {
$row->money = sprintf("%01.2f", $row->money);
$membertypes .= "<tr align='center'>\n <td><input type='radio' name='pid' value='{$row->aid}'></td>\n <td><strong>{$row->pname}</strong></td>\n <td>{$row->membername}</td>\n <td>{$row->exptime}</td>\n <td>{$row->money}元</td>\n </tr>\n ";
}
$tpl = new DedeTemplate();
$tpl->LoadTemplate(DEDEMEMBER . '/templets/chongzhi.htm');
$tpl->Display();
$row['postname'] = $rs['consignee'];
//更新用户商品统计
$countOrders = $dsql->GetOne("SELECT SUM(cartcount) AS nums FROM #@__shops_orders WHERE userid='" . $cfg_ml->M_ID . "'");
$dsql->ExecuteNoneQuery("UPDATE #@__member_tj SET `shop`='" . $countOrders['nums'] . "' WHERE mid='" . $cfg_ml->M_ID . "'");
$priceCount = sprintf("%01.2f", $row['priceCount']);
if (!isset($online_payment)) {
$payment_list = array();
foreach ($payment_select as $k => $val) {
$temp_arr['name'] = $cfg_pay_info['name'][$k];
$temp_arr['logo'] = $cfg_cmspath . '/member/images/pay/' . $cfg_pay_info['logo'][$k];
$temp_arr['des'] = $cfg_pay_info['des'][$k];
$temp_arr['value'] = $val;
$temp_arr['exp'] = sprintf("%01.2f", $priceCount * $payment_exp[$k]);
$payment_list[] = $temp_arr;
}
$dtp = new DedeTemplate();
$dtp->Assign('carts', $row);
$dtp->LoadTemplate(_PLUS_TPL_ . '/shops_buyaction.htm');
$dtp->Display();
exit;
} else {
if (!in_array($online_payment, $payment_select)) {
ShowMsg("支付接口无效,或没开启!", 'javascript:;');
exit;
}
$cart = new MemberShops();
//清空购物车
$cart->clearItem();
$cart->MakeOrders();
require_once DEDEROOT . '/plus/paycenter/' . $online_payment . '/config_pay_' . $online_payment . '.php';
exit;
