function EditInfo($post) { global $empire, $dbtbpre, $public_r; $user_r = islogin(); //是否登陆 $userid = $user_r[userid]; $username = $user_r[username]; $dousername = $username; $rnd = $user_r[rnd]; $groupid = $user_r[groupid]; if (!$userid || !$username) { printerror("NotEmpty", "history.go(-1)", 1); } //验证附加表必填项 $addr = $empire->fetch1("select * from {$dbtbpre}enewsmemberadd where userid='{$userid}'"); $user_r = $empire->fetch1("select " . eReturnSelectMemberF('groupid') . " from " . eReturnMemberTable() . " where " . egetmf('userid') . "='{$userid}'"); $fid = GetMemberFormId($user_r['groupid']); if (empty($addr[userid])) { $mr['add_filepass'] = $userid; $member_r = ReturnDoMemberF($fid, $post, $mr, 0, $dousername); } else { $addr['add_filepass'] = $userid; $member_r = ReturnDoMemberF($fid, $post, $addr, 1, $dousername); } //附加表 if (empty($addr[userid])) { //IP $regip = egetip(); $regipport = egetipport(); $lasttime = time(); $sql = $empire->query("insert into {$dbtbpre}enewsmemberadd(userid,regip,lasttime,lastip,loginnum,regipport,lastipport" . $member_r[0] . ") values('{$userid}','{$regip}','{$lasttime}','{$regip}',1,'{$regipport}','{$regipport}'" . $member_r[1] . ");"); } else { $sql = $empire->query("update {$dbtbpre}enewsmemberadd set userid='{$userid}'" . $member_r[0] . " where userid='{$userid}'"); } //更新附件 UpdateTheFileEditOther(6, $userid, 'member'); if ($sql) { printerror("EditInfoSuccess", "../member/EditInfo/", 1); } else { printerror("DbError", "history.go(-1)", 1); } }
function EditInfo($post) { global $empire, $user_tablename, $public_r, $user_userid, $user_username, $user_password, $user_dopass, $user_email, $user_salt, $user_saltnum, $dbtbpre, $user_group; $user_r = islogin(); //是否登陆 $userid = $user_r[userid]; $username = $user_r[username]; $dousername = $username; $rnd = $user_r[rnd]; $groupid = $user_r[groupid]; if (!$userid || !$username) { printerror("NotEmpty", "history.go(-1)", 1); } //验证附加表必填项 $addr = $empire->fetch1("select * from {$dbtbpre}enewsmemberadd where userid='{$userid}'"); $user_r = $empire->fetch1("select " . $user_group . " from " . $user_tablename . " where " . $user_userid . "='{$userid}'"); $fid = GetMemberFormId($user_r[$user_group]); if (empty($addr[userid])) { $member_r = ReturnDoMemberF($fid, $post, $mr, 0, $dousername); } else { $member_r = ReturnDoMemberF($fid, $post, $addr, 1, $dousername); } //附加表 if (empty($addr[userid])) { $sql = $empire->query("insert into {$dbtbpre}enewsmemberadd(userid" . $member_r[0] . ") values('{$userid}'" . $member_r[1] . ");"); } else { $sql = $empire->query("update {$dbtbpre}enewsmemberadd set userid='{$userid}'" . $member_r[0] . " where userid='{$userid}'"); } if ($sql) { printerror("EditInfoSuccess", "../member/EditInfo", 1); } else { printerror("DbError", "history.go(-1)", 1); } }
<?php require "../../class/connect.php"; require "../../class/q_functions.php"; require "../../class/db_sql.php"; require "../../class/user.php"; $link = db_connect(); $empire = new mysqlquery(); $editor = 1; $user = islogin(); $r = ReturnUserInfo($user[userid]); $addr = $empire->fetch1("select * from {$dbtbpre}enewsmemberadd where userid='{$user['userid']}' limit 1"); $formid = GetMemberFormId($user[groupid]); $formfile = '../../data/html/memberform' . $formid . '.php'; //µ¼ÈëÄ£°å require ECMS_PATH . 'e/template/member/EditInfo.php'; db_close(); $empire = null;
function register($add) { global $empire, $dbtbpre, $public_r, $ecms_config; //关闭注册 if ($public_r['register_ok']) { printerror('CloseRegister', '', 1); } //验证时间段允许操作 eCheckTimeCloseDo('reg'); //验证IP eCheckAccessDoIp('register'); if (!empty($ecms_config['member']['registerurl'])) { Header("Location:" . $ecms_config['member']['registerurl']); exit; } //已经登陆不能注册 if (getcvar('mluserid')) { printerror('LoginToRegister', '', 1); } CheckCanPostUrl(); //验证来源 $username = trim($add['username']); $password = trim($add['password']); $username = RepPostVar($username); $password = RepPostVar($password); $email = RepPostStr($add['email']); if (!$username || !$password || !$email) { printerror("EmptyMember", "history.go(-1)", 1); } $tobind = (int) $add['tobind']; //验证码 $keyvname = 'checkregkey'; if ($public_r['regkey_ok']) { ecmsCheckShowKey($keyvname, $add['key'], 1); } $user_groupid = eReturnMemberDefGroupid(); $groupid = (int) $add['groupid']; $groupid = empty($groupid) ? $user_groupid : $groupid; CheckMemberGroupCanReg($groupid); //IP $regip = egetip(); $regipport = egetipport(); //用户字数 $pr = $empire->fetch1("select min_userlen,max_userlen,min_passlen,max_passlen,regretime,regclosewords,regemailonly from {$dbtbpre}enewspublic limit 1"); $userlen = strlen($username); if ($userlen < $pr[min_userlen] || $userlen > $pr[max_userlen]) { printerror('FaiUserlen', '', 1); } //密码字数 $passlen = strlen($password); if ($passlen < $pr[min_passlen] || $passlen > $pr[max_passlen]) { printerror('FailPasslen', '', 1); } if ($add['repassword'] !== $password) { printerror('NotRepassword', '', 1); } if (!chemail($email)) { printerror('EmailFail', '', 1); } if (strstr($username, '|') || strstr($username, '*')) { printerror('NotSpeWord', '', 1); } //同一IP注册 eCheckIpRegTime($regip, $pr['regretime']); //保留用户 toCheckCloseWord($username, $pr['regclosewords'], 'RegHaveCloseword'); $username = RepPostStr($username); //重复用户 $num = $empire->gettotal("select count(*) as total from " . eReturnMemberTable() . " where " . egetmf('username') . "='{$username}' limit 1"); if ($num) { printerror('ReUsername', '', 1); } //重复邮箱 if ($pr['regemailonly']) { $num = $empire->gettotal("select count(*) as total from " . eReturnMemberTable() . " where " . egetmf('email') . "='{$email}' limit 1"); if ($num) { printerror('ReEmailFail', '', 1); } } //注册时间 $lasttime = time(); $registertime = eReturnAddMemberRegtime(); $rnd = make_password(20); //产生随机密码 $userkey = eReturnMemberUserKey(); //密码 $truepassword = $password; $salt = eReturnMemberSalt(); $password = eDoMemberPw($password, $salt); //审核 $checked = ReturnGroupChecked($groupid); if ($checked && $public_r['regacttype'] == 1) { $checked = 0; } //验证附加表必填项 $mr['add_filepass'] = ReturnTranFilepass(); $fid = GetMemberFormId($groupid); $member_r = ReturnDoMemberF($fid, $add, $mr, 0, $username); $sql = $empire->query("insert into " . eReturnMemberTable() . "(" . eReturnInsertMemberF('username,password,rnd,email,registertime,groupid,userfen,userdate,money,zgroupid,havemsg,checked,salt,userkey') . ") values('{$username}','{$password}','{$rnd}','{$email}','{$registertime}','{$groupid}','{$public_r['reggetfen']}','0','0','0','0','{$checked}','{$salt}','{$userkey}');"); //取得userid $userid = $empire->lastid(); //附加表 $addr = $empire->fetch1("select * from {$dbtbpre}enewsmemberadd where userid='{$userid}'"); if (!$addr[userid]) { $spacestyleid = ReturnGroupSpaceStyleid($groupid); $sql1 = $empire->query("insert into {$dbtbpre}enewsmemberadd(userid,spacestyleid,regip,lasttime,lastip,loginnum,regipport,lastipport" . $member_r[0] . ") values('{$userid}','{$spacestyleid}','{$regip}','{$lasttime}','{$regip}','1','{$regipport}','{$regipport}'" . $member_r[1] . ");"); } //更新附件 UpdateTheFileOther(6, $userid, $mr['add_filepass'], 'member'); ecmsEmptyShowKey($keyvname); //清空验证码 //绑定帐号 if ($tobind) { MemberConnect_BindUser($userid); } if ($sql) { //邮箱激活 if ($checked == 0 && $public_r['regacttype'] == 1) { include 'class/member_actfun.php'; SendActUserEmail($userid, $username, $email); } //审核 if ($checked == 0) { $location = DoingReturnUrl("../../", $_POST['ecmsfrom']); printerror("RegisterSuccessCheck", $location, 1); } $logincookie = 0; if ($ecms_config['member']['regcookietime']) { $logincookie = time() + $ecms_config['member']['regcookietime']; } $r = $empire->fetch1("select " . eReturnSelectMemberF('*') . " from " . eReturnMemberTable() . " where " . egetmf('userid') . "='{$userid}' limit 1"); $set1 = esetcookie("mlusername", $username, $logincookie); $set2 = esetcookie("mluserid", $userid, $logincookie); $set3 = esetcookie("mlgroupid", $groupid, $logincookie); $set4 = esetcookie("mlrnd", $rnd, $logincookie); //验证符 qGetLoginAuthstr($userid, $username, $rnd, $groupid, $logincookie); //登录附加cookie AddLoginCookie($r); $location = "../member/cp/"; $returnurl = getcvar('returnurl'); if ($returnurl && !strstr($returnurl, "e/member/iframe") && !strstr($returnurl, "e/member/register") && !strstr($returnurl, "enews=exit")) { $location = $returnurl; } $set5 = esetcookie("returnurl", ""); //易通行系统 DoEpassport('reg', $userid, $username, $truepassword, $salt, $email, $groupid, $registertime); $location = DoingReturnUrl($location, $_POST['ecmsfrom']); printerror("RegisterSuccess", $location, 1); } else { printerror("DbError", "history.go(-1)", 1); } }
if ($public_r[register_ok]) { printerror("CloseRegister", "history.go(-1)", 1); } //验证IP eCheckAccessDoIp('register'); //转向注册 if (!empty($registerurl)) { Header("Location:{$registerurl}"); exit; } //已经登陆不能注册 if (getcvar('mluserid')) { printerror("LoginToRegister", "history.go(-1)", 1); } if (!empty($changeregisterurl) && !$_GET['groupid']) { Header("Location:{$changeregisterurl}"); exit; } $groupid = (int) $_GET['groupid']; $groupid = $groupid ? $groupid : $user_groupid; CheckMemberGroupCanReg($groupid); $formid = GetMemberFormId($groupid); if (empty($formid)) { printerror('ErrorUrl', '', 1); } $ecmsfirstpost = 1; $formfile = '../../data/html/memberform' . $formid . '.php'; //导入模板 require ECMS_PATH . 'e/template/member/register.php'; db_close(); $empire = null;
} $add .= ' where u.' . $user_group . ' in (' . $gids . ')'; } else { $groupid = (int) $groupid; $truegroupid = $groupid; $add .= " where u." . $user_group . "='{$groupid}'"; } $where = ' and '; $search .= '&groupid=' . $groupid; } //搜索 $sear = $_GET['sear']; if ($sear) { $search .= '&sear=1'; if ($truegroupid) { $formid = GetMemberFormId($truegroupid); } $searchf = ''; $show = $_GET['show']; $hh = $_GET['hh']; $keyboard = $_GET['keyboard']; if ($formid) { $uswhere = ''; $andor = $_GET['andor']; $andor = $andor == 'and' ? 'and' : 'or'; $formr = $empire->fetch1("select searchvar from {$dbtbpre}enewsmemberform where fid='{$formid}'"); if (empty($formr[searchvar])) { $formr[searchvar] = ','; } $formr[searchvar] .= 'username,'; $count = count($show);
} } $userid = (int) $_GET['userid']; if ($userid) { $where = egetmf('userid') . "='{$userid}'"; $username = ''; } else { $username = RepPostVar($_GET['username']); if (empty($username)) { printerror("NotUsername", "", 1); } $utfusername = $username; $where = egetmf('username') . "='{$username}'"; } $r = $empire->fetch1("select " . eReturnSelectMemberF('userid,username,email,groupid,userfen,userdate,registertime') . " from " . eReturnMemberTable() . " where " . $where . " limit 1"); if (empty($r['userid'])) { printerror("NotUsername", "", 1); } if (empty($username)) { $username = $r['username']; } $registertime = eReturnMemberRegtime($r['registertime'], 'Y-m-d H:i:s'); $email = $r['email']; $addr = $empire->fetch1("select * from {$dbtbpre}enewsmemberadd where userid='" . $r['userid'] . "' limit 1"); //取得表单 $formid = GetMemberFormId($r['groupid']); $formr = $empire->fetch1("select filef,imgf,tobrf,viewenter from {$dbtbpre}enewsmemberform where fid='{$formid}'"); //导入模板 require ECMS_PATH . DASHBOARD . '/template/member/ShowInfo.php'; db_close(); $empire = null;
function admin_ClearMember($add, $logininid, $loginin) { global $empire, $user_tablename, $user_username, $user_userid, $dbtbpre, $level_r, $user_group, $user_email, $user_checked, $user_registertime, $user_register, $user_group, $user_userfen, $user_money; CheckLevel($logininid, $loginin, $classid, "member"); //验证权限 //变量处理 $username = RepPostVar($add['username']); $email = RepPostStr($add['email']); $startuserid = (int) $add['startuserid']; $enduserid = (int) $add['enduserid']; $groupid = (int) $add['groupid']; $startregtime = RepPostVar($add['startregtime']); $endregtime = RepPostVar($add['endregtime']); $startuserfen = (int) $add['startuserfen']; $enduserfen = (int) $add['enduserfen']; $startmoney = (int) $add['startmoney']; $endmoney = (int) $add['endmoney']; $checked = (int) $add['checked']; $where = ''; if ($username) { $where .= " and " . $user_username . " like '%{$username}%'"; } if ($email) { $where .= " and " . $user_email . " like '%{$email}%'"; } if ($enduserid) { $where .= ' and ' . $user_userid . ' BETWEEN ' . $startuserid . ' and ' . $enduserid; } if ($groupid) { $where .= " and " . $user_group . "='{$groupid}'"; } if ($startregtime && $endregtime) { if ($user_register) { $startregtime = to_time($startregtime); $endregtime = to_time($endregtime); } $where .= " and " . $user_registertime . ">='{$startregtime}' and " . $user_registertime . "<='{$endregtime}'"; } if ($enduserfen) { $where .= ' and ' . $user_userfen . ' BETWEEN ' . $startuserfen . ' and ' . $enduserfen; } if ($endmoney) { $where .= ' and ' . $user_money . ' BETWEEN ' . $startmoney . ' and ' . $endmoney; } if ($checked) { $checkval = $checked == 1 ? 1 : 0; $where .= " and " . $user_checked . "='{$checkval}'"; } if (!$where) { printerror("EmptyClearMember", "history.go(-1)"); } $where = substr($where, 5); $sql = $empire->query("select " . $user_userid . "," . $user_username . "," . $user_group . " from " . $user_tablename . " where " . $where); $dh = ''; $inid = ''; while ($r = $empire->fetch($sql)) { $euid = $r[$user_userid]; //删除短信息 $dousername = doUtfAndGbk($r[$user_username], 1); //删除附加表 $fid = GetMemberFormId($r[$user_group]); DoDelMemberF($fid, $euid, $dousername); $empire->query("delete from {$dbtbpre}enewsqmsg where to_username='******'"); //集合 $inid .= $dh . $euid; $dh = ','; } if ($inid) { $addw = $user_userid . " in (" . $inid . ")"; $addaw = "userid in (" . $inid . ")"; $sql = $empire->query("delete from " . $user_tablename . " where " . $addw); //删除收藏 $del = $empire->query("delete from {$dbtbpre}enewsfava where " . $addaw); $del = $empire->query("delete from {$dbtbpre}enewsfavaclass where " . $addaw); //删除购买记录 $del = $empire->query("delete from {$dbtbpre}enewsbuybak where " . $addaw); //删除下载记录 $del = $empire->query("delete from {$dbtbpre}enewsdownrecord where " . $addaw); //删除好友记录 $del = $empire->query("delete from {$dbtbpre}enewshy where " . $addaw); $del = $empire->query("delete from {$dbtbpre}enewshyclass where " . $addaw); //删除留言 $del = $empire->query("delete from {$dbtbpre}enewsmembergbook where " . $addaw); //删除反馈 $del = $empire->query("delete from {$dbtbpre}enewsmemberfeedback where " . $addaw); } insert_dolog(""); //操作日志 printerror("DelMemberSuccess", "ClearMember.php"); }
$where = $user_userid . "='{$userid}'"; $username = ''; } else { $username = RepPostVar($_GET['username']); if (empty($username)) { printerror("NotUsername", "", 1); } $utfusername = doUtfAndGbk($username, 0); $where = $user_username . "='{$utfusername}'"; } $r = $empire->fetch1("select " . $user_userid . "," . $user_username . "," . $user_email . "," . $user_group . "," . $user_userfen . "," . $user_userdate . "," . $user_registertime . " from " . $user_tablename . " where " . $where . " limit 1"); if (empty($r[$user_userid])) { printerror("NotUsername", "", 1); } if (empty($username)) { $username = doUtfAndGbk($r[$user_username], 1); } if ($user_register) { $registertime = date("Y-m-d H:i:s", $r[$user_registertime]); } else { $registertime = $r[$user_registertime]; } $email = doUtfAndGbk($r[$user_email], 1); $addr = $empire->fetch1("select * from {$dbtbpre}enewsmemberadd where userid='" . $r[$user_userid] . "' limit 1"); //取得表单 $formid = GetMemberFormId($r[$user_group]); $formr = $empire->fetch1("select filef,imgf,tobrf,viewenter from {$dbtbpre}enewsmemberform where fid='{$formid}'"); //导入模板 require ECMS_PATH . 'e/template/member/ShowInfo.php'; db_close(); $empire = null;