if ($num) { $error = true; $sysmsg[] = __('admins_exists'); } } if (checklength($new_pwd, 6, 20)) { $error = true; $sysmsg[] = __('password_max_min'); } elseif ($new_pwd != $cfm_pwd) { $error = true; $sysmsg[] = __('confirm_password_invalid'); } else { $md5_pwd = md5($new_pwd); } if (!$error) { if (!(super_admin() && !admin_no_pwd())) { $db->query_unbuffered("update {$tpf}admins set password='******' where userid='{$pd_uid}'"); $sysmsg[] = __('password_modify_success'); } else { $ins = array('userid' => $pd_uid, 'password' => $md5_pwd, 'intime' => $timestamp); $db->query_unbuffered("insert into {$tpf}admins set " . $db->sql_array($ins) . ""); $sysmsg[] = __('password_submit_success'); } redirect(urr("account", "action=adminlogin"), $sysmsg, 2000, 'top'); } else { redirect('back', $sysmsg); } } else { require_once template_echo($item, $admin_tpl_dir, '', 1); } break;
if (super_admin()) { echo __('super_admin'); } else { echo __('common_admin'); } ?> ] <a href="javascript:;" onclick="open_box('<?php echo remote_server_url(); ?> ',400,200);"><?php echo __('update_remote_config'); ?> </a> <?php if (super_admin()) { ?> <a href="<?php echo urr(ADMINCP, "item=sitemap"); ?> " title="<?php echo __('sitemap_tips'); ?> ">【SiteMap】</a> <?php } ?> </div> </div> </div> <script type="text/javascript">
</div> <br/> <!--#}#--> <div class="menu_box"> <div class="title"><img align="absmiddle" src="{$admin_tpl_dir}images/menu_open.gif" border=0><a href="{#urr(ADMINCP,"item=users&action=adminlogout")#}" onClick="return confirm('<?php echo __('system_logout_confirm'); ?> ');"><?php echo __('menu_logout'); ?> </a></div> </div> <br/> </div> <?php if (!super_admin()) { $menu_ids = array('base' => array(1, 2, 40), 'user' => array(3, 4, 5, 6, 7, 8, 11, 12, 13), 'file' => array(14, 15, 41, 16, 17, 18, 19, 20, 21, 22, 23), 'lang_tpl' => array(26, 27), 'extend' => array(28, 29, 30, 31, 32, 33)); $script = '<script>'; foreach (get_admins_power(2) as $k => $v) { foreach ($menu_ids as $k2 => $v2) { if (in_array($k, $menu_ids[$k2])) { if ($v > 0) { $script .= '$("#am_' . $k . '").show();'; } else { $script .= '$("#am_' . $k . '").hide();'; } } } } $script .= '</script>'; echo $script;
function admin_no_power($task, $menuid, $uid) { $error = false; if (!super_admin()) { $arr = get_admins_power($uid); if ($task) { if ($arr[$menuid] != 2) { $error = true; $sysmsg[] = __('admin_no_write'); } } else { if (!in_array($arr[$menuid], array(1, 2))) { $error = true; $sysmsg[] = __('admin_no_visit'); } } if ($error) { redirect(urr(ADMINCP, ""), $sysmsg, 60000); exit; } } }