public function __construct()
{
if (AWS_APP::session()->client_info and !$_COOKIE[G_COOKIE_PREFIX . '_user_login']) {
// Cookie 清除则 Session 也清除
unset(AWS_APP::session()->client_info);
}
if (!AWS_APP::session()->client_info and $_COOKIE[G_COOKIE_PREFIX . '_user_login']) {
$auth_hash_key = md5(G_COOKIE_HASH_KEY . $_SERVER['HTTP_USER_AGENT'] . $_SERVER['HTTP_ACCEPT_LANGUAGE']);
// 解码 Cookie
$sso_user_login = H::decode_hash($_COOKIE[G_COOKIE_PREFIX . '_user_login'], $auth_hash_key);
if ($sso_user_login['user_name'] and $sso_user_login['password'] and $sso_user_login['uid']) {
if (AWS_APP::model('account')->check_hash_login($sso_user_login['user_name'], $sso_user_login['password'])) {
AWS_APP::session()->client_info['__CLIENT_UID'] = $sso_user_login['uid'];
AWS_APP::session()->client_info['__CLIENT_USER_NAME'] = $sso_user_login['user_name'];
AWS_APP::session()->client_info['__CLIENT_PASSWORD'] = $sso_user_login['password'];
return true;
}
}
return false;
}
}
public function __construct()
{
if (AWS_APP::session()->client_info and !$_COOKIE[G_COOKIE_PREFIX . '_user_login']) {
// Cookie 清除则 Session 也清除
unset(AWS_APP::session()->client_info);
}
if (!AWS_APP::session()->client_info and $_COOKIE[G_COOKIE_PREFIX . '_user_login']) {
$auth_hash_key = md5(G_COOKIE_HASH_KEY . $_SERVER['HTTP_USER_AGENT'] . $_SERVER['HTTP_ACCEPT_LANGUAGE']);
// 解码 Cookie
$sso_user_login = H::decode_hash($_COOKIE[G_COOKIE_PREFIX . '_user_login'], $auth_hash_key);
$user_name = $sso_user_login['user_name'];
$host = 'localhost';
$username = '******';
$password = '******';
$database = 'baji';
$dbc = mysqli_connect($host, $username, $password, $database);
if (!$dbc) {
die('Could not connect: ' . mysql_error());
}
$query = "SELECT * FROM users WHERE user_name = '{$user_name}'";
$data = mysqli_query($dbc, $query) or die('error!!' . mysql_error());
mysqli_close($dbc);
$row = mysqli_fetch_array($data);
$sso_user_login['password'] = $row['password'];
$sso_user_login['uid'] = $row['uid'];
$name = H::encode_hash($sso_user_login);
HTTP::set_cookie($name);
if ($sso_user_login['user_name'] and $sso_user_login['password'] and $sso_user_login['uid']) {
if (AWS_APP::model('account')->check_hash_login($sso_user_login['user_name'], $sso_user_login['password'])) {
AWS_APP::session()->client_info['__CLIENT_UID'] = $sso_user_login['uid'];
AWS_APP::session()->client_info['__CLIENT_USER_NAME'] = $sso_user_login['user_name'];
AWS_APP::session()->client_info['__CLIENT_PASSWORD'] = $sso_user_login['password'];
return true;
}
}
return false;
}
}
public function __construct()
{
parent::__construct(false);
if ($_GET['app'] != 'admin') {
return false;
}
TPL::import_clean();
if (defined('SYSTEM_LANG')) {
TPL::import_js(base_url() . '/language/' . SYSTEM_LANG . '.js');
}
if (HTTP::is_browser('ie', 8)) {
TPL::import_js('js/jquery.js');
} else {
TPL::import_js('js/jquery.2.js');
}
TPL::import_js(array('admin/js/aws_admin.js', 'admin/js/aws_admin_template.js', 'js/jquery.form.js', 'admin/js/framework.js', 'admin/js/global.js'));
TPL::import_css(array('admin/css/common.css'));
if (in_array($_GET['act'], array('login', 'login_process'))) {
return true;
}
if ($admin_info = H::decode_hash(AWS_APP::session()->admin_login)) {
if ($admin_info['uid'] != $this->user_id or $admin_info['UA'] != $_SERVER['HTTP_USER_AGENT'] or !AWS_APP::session()->permission['is_administortar'] and !AWS_APP::session()->permission['is_moderator']) {
unset(AWS_APP::session()->admin_login);
if ($_POST['_post_type'] == 'ajax') {
H::ajax_json_output(AWS_APP::RSM(null, -1, AWS_APP::lang()->_t('会话超时, 请重新登录')));
} else {
H::redirect_msg(AWS_APP::lang()->_t('会话超时, 请重新登录'), '/admin/login/url-' . base64_encode($_SERVER['REQUEST_URI']));
}
}
} else {
if ($_POST['_post_type'] == 'ajax') {
H::ajax_json_output(AWS_APP::RSM(null, -1, AWS_APP::lang()->_t('会话超时, 请重新登录')));
} else {
HTTP::redirect('/admin/login/url-' . base64_encode($_SERVER['REQUEST_URI']));
}
}
$this->setup();
}
public function remove_attach_action()
{
if ($attach_info = H::decode_hash(base64_decode($_GET['attach_id']))) {
$this->model('publish')->remove_attach($attach_info['attach_id'], $attach_info['access_key']);
}
H::ajax_json_output(AWS_APP::RSM(null, 1, null));
}
