Example #1
0
 public static function authAdmin($login = false, $password = false)
 {
     if ($login) {
         $auth = true;
     } else {
         if (!session_id()) {
             session_start();
         }
         if (!empty($_SESSION["authadmin_login"]) && !empty($_SESSION["authadmin_password"])) {
             $login = $_SESSION["authadmin_login"];
             $password = $_SESSION["authadmin_password"];
         } else {
             return;
         }
         $auth = false;
     }
     $admin = new AdminDB();
     if ($auth) {
         $password = self::hash($password, Config::SECRET);
     }
     $select = new Select();
     $select->from(self::$table, array("COUNT(id)"))->where("`login` = " . self::$db->getSQ(), array($login))->where("`password` = " . self::$db->getSQ(), array($password));
     $count = self::$db->selectCell($select);
     if ($count) {
         $admin->loadOnLogin($login);
         //if ($admin->activation != "") throw new Exception("ERROR_ACTIVATE_USER");
         if ($auth) {
             $admin->login();
         }
         return $admin;
     }
     if ($auth) {
         throw new Exception("ERROR_AUTH_USER");
     }
 }
Example #2
0
 public function actionLogout()
 {
     AdminDB::logout();
     $this->redirect($_SERVER["HTTP_REFERER"]);
 }
 public function updateAction()
 {
     $this->view->disable();
     $oper = $this->request->getPost('oper', 'string');
     if ($oper == 'edit') {
         //edit
         //修改之前应该判断数据库中是否已经存在记录 -- 目前在前端进行判定2015-9-12
         $id = $this->request->getPost('id', 'int');
         $project = Project::findFirst($id);
         $project->name = $this->request->getPost('name', 'string');
         #项目开始时间不可变更
         $project->begintime = $this->request->getPost('begintime', 'string');
         $project->endtime = $this->request->getPost('endtime', 'string');
         $project->description = $this->request->getPost('description', 'string');
         $manager = Manager::findFirst(array('project_id=?0', 'bind' => array($id)));
         $manager->name = $this->request->getPost('manager_name', 'string');
         $manager->username = $this->request->getPost('manager_username', 'string');
         $manager->password = $this->request->getPost('manager_password', 'string');
         #时间检查
         if (strtotime($project->begintime) >= strtotime($project->endtime)) {
             $this->dataReturn(array('error' => '项目结束时间与开始时间冲突'));
             return;
         }
         try {
             AdminDB::updateManager($manager);
             AdminDB::updateProject($project);
         } catch (Exception $e) {
             $this->dataReturn(array('error' => '项目信息更新失败'));
             return;
         }
         $this->dataReturn(array('flag' => true));
         return;
     } else {
         if ($oper == 'del') {
             //del
             //需要添加判断是否能被删除 --目前还未添加相应的判定
             $id = $this->request->getPost('id', 'int');
             $project_info = Project::findFirst($id);
             if (!isset($project_info->id)) {
                 $this->dataReturn(array('error' => '项目编号不存在'));
                 return;
             } else {
                 #判断项目状态,如果不是项目的初始状态则禁止删除
                 if ($project_info->state != 0) {
                     $this->dataReturn(array('error' => '项目经理已配置了项目,不能被删除'));
                     return;
                 } else {
                     try {
                         AdminDB::delproject($id);
                     } catch (Exception $e) {
                         $this->dataReturn(array('error' => '项目删除失败'));
                         return;
                     }
                     $this->dataReturn(array('flag' => true));
                     return;
                 }
             }
         } else {
             //
         }
     }
 }
Example #4
0
<?php

//NOT TESTED. NEED TO TEST.
@define('BASE_DIR', dirname(__FILE__) . '/../..');
include_once 'AdminDB.class.php';
$db = new AdminDB();
//get users ids to delete
$date = date('Y-m-d', time() - 30 * 24 * 60 * 60);
$query = 'SELECT memberid FROM' . ' ' . $db->get_table('login') . ' ' . 'WHERE last_login <' . ' ' . $date . ' ' . 'OR last_login IS NULL';
$result = $db->db->query($query);
$db->check_for_error($result);
$memberids = array();
print $query;
while ($id = $result->fetchRow()) {
    $memberids[] = $id['memberid'];
    #print $id['memberid'];
}
//delet users
$db->del_users($memberids);
CmnFns::write_log('Users deleted based because of inactivity. ' . join(', ', 'memberids'), 'sessionID');
Example #5
0
<?php

require_once 'library/ConnDB.php';
require_once 'library/AdminDB.php';
$arrayIni = parse_ini_file('config/lzhConfig.ini');
$connDB = new ConnDB($arrayIni['dbType'], $arrayIni['host'], $arrayIni['userName'], $arrayIni['password'], $arrayIni['dbName'], $arrayIni['isDebug']);
$connID = $connDB->getConnID();
$adminDB = new AdminDB();
$bbsId = $_POST['bbsId'];
$id = date('YmdHis') . mt_rand(1000, 9999);
@unlink('pages/showbbs-' . $bbsId . '.html');
if ($adminDB->executeSQL("insert into tb_reply(id, content, addtime, bbs_id) values('{$id}', '" . $_POST['content'] . "', '" . date('Y-m-d H:i:s') . "', '{$bbsId}')", $connID)) {
    header('location:showbbs.php?id=' . $bbsId);
}