function main() { global $auth; if ($_REQUEST['action'] == 'delete' && $auth){ delete(); } elseif ($_REQUEST['action'] == 'list' && $auth){ view_list(); } elseif ($_REQUEST['action'] == 'banip' && $auth){ banip(); } elseif ($_REQUEST['action'] == 'search' && $auth){ search(); } elseif ($_REQUEST['action'] == 'bannedlist' && $auth){ bannedlist(); } elseif ($_REQUEST['action'] == 'unbanip' && $auth){ unbanip(); } elseif ($_REQUEST['action'] == 'logout'){ logout(); } elseif (1) { login_screen(); } }
function _initialize() { //过滤所有的GET POST请求 //判断是否允许ip访问 $banip = getBanip(); if ($banip) { foreach ($banip as $key => $value) { banip($value[0], $value[1]); } } include ROOT_PATH . '/includes/lib_common.php'; $this->mod_init(); $this->site_root = "http://" . $_SERVER['SERVER_NAME'] . ($_SERVER['SERVER_PORT'] == 80 ? '' : ':' . $_SERVER['SERVER_PORT']) . __ROOT__ . "/"; $this->assign('site_root', $this->site_root); // 用户权限检查 $this->check_priv(); //需要登陆 $admin_info = $_SESSION['admin_info']; $this->role_mod = D("role"); //获取用户角色 $admin_level = $this->role_mod->field('id', 'name')->where('id=' . $_SESSION['admin_info']['role_id'] . '')->find(); $this->assign('admin_level', $admin_level); $this->assign('my_info', $admin_info); // 顶部菜单 $model = M("group"); $top_menu = $model->field('id,title')->where('status=1')->order('sort ASC')->select(); $this->assign('top_menu', $top_menu); //获取网站配置信息 $setting_mod = M('setting'); $setting = $setting_mod->select(); foreach ($setting as $val) { $set[$val['name']] = $val['data']; } $this->setting = $set; //返现形式 $this->assign('cashback_type', $this->setting['cashback_type']); //tb_fanxian_name 淘宝返现名称 $this->assign('tb_fanxian_name', $this->setting['tb_fanxian_name']); //tb_fanxian_unit 淘宝返现单位 $this->assign('tb_fanxian_unit', $this->setting['tb_fanxian_unit']); //tb_fanxian_bili 淘宝返现比例 $this->assign('tb_fanxian_bili', $this->setting['tb_fanxian_bili']); $this->assign('show_header', true); $this->assign('const', get_defined_constants()); $this->assign('iframe', $_REQUEST['iframe']); $def = array('request' => $_REQUEST); $this->assign('def', json_encode($def)); }
if ($_POST) { $_POST = strip_sql($_POST); strip_key($_POST); } if ($_GET) { $_GET = strip_sql($_GET); strip_key($_GET); } if ($_COOKIE) { $_COOKIE = strip_sql($_COOKIE); strip_key($_COOKIE); } if (!IN_ADMIN) { $BANIP = cache_read('banip.php'); if ($BANIP) { banip($BANIP); } $destoon_task = ''; } if ($_POST) { extract($_POST, EXTR_SKIP); } if ($_GET) { extract($_GET, EXTR_SKIP); } $db_class = 'db_' . $CFG['database']; $db = new $db_class(); $db->halt = DT_DEBUG || IN_ADMIN ? 1 : 0; $db->pre = $CFG['tb_pre']; $db->connect($CFG['db_host'], $CFG['db_user'], $CFG['db_pass'], $CFG['db_name'], $CFG['db_expires'], $CFG['db_charset'], $CFG['pconnect']); $dc = new dcache();