/** * fn_ssin_begin function. * * @access public * @return void */ function fn_ssin_begin() { $_mdl_admin = new MODEL_ADMIN(); //设置管理员对象 $_mdl_group = new MODEL_GROUP(); //设置管理员对象 $_num_adminTimeDiff = fn_session("admin_ssin_time") + BG_DEFAULT_SESSION; //session有效期 if (!fn_session("admin_id") || !fn_session("admin_ssin_time") || !fn_session("admin_hash") || $_num_adminTimeDiff < time()) { fn_ssin_end(); $_arr_adminRow["alert"] = "x020402"; return $_arr_adminRow; exit; } $_arr_adminRow = $_mdl_admin->mdl_read(fn_session("admin_id")); if (fn_baigoEncrypt($_arr_adminRow["admin_time"], $_arr_adminRow["admin_rand"]) != fn_session("admin_hash")) { fn_ssin_end(); $_arr_adminRow["alert"] = "x020403"; return $_arr_adminRow; exit; } $_arr_groupRow = $_mdl_group->mdl_read($_arr_adminRow["admin_group_id"]); if (isset($_arr_groupRow["group_status"]) && $_arr_groupRow["group_status"] == "disable") { fn_ssin_end(); $_arr_adminRow["alert"] = "x040401"; return $_arr_adminRow; exit; } $_arr_adminRow["groupRow"] = $_arr_groupRow; fn_session("admin_ssin_time", "mk", time()); return $_arr_adminRow; }
function ajax_auth() { $this->check_db(); include_once BG_PATH_MODEL . "admin.class.php"; //载入管理帐号模型 include_once BG_PATH_MODEL . "group.class.php"; //载入管理帐号模型 $_mdl_admin = new MODEL_ADMIN(); //设置管理组模型 $_mdl_group = new MODEL_GROUP(); //设置管理组模型 $_arr_adminSubmit = $_mdl_admin->input_submit(); if ($_arr_adminSubmit["alert"] != "ok") { $this->obj_ajax->halt_alert($_arr_adminSubmit["alert"]); } $_arr_adminAuth = $this->input_auth(); if ($_arr_adminAuth["alert"] != "ok") { $this->obj_ajax->halt_alert($_arr_adminAuth["alert"]); } $this->obj_sso = new CLASS_SSO(); $_arr_ssoLogin = $this->obj_sso->sso_login($_arr_adminSubmit["admin_name"], $this->adminAuth["admin_pass"]); if ($_arr_ssoLogin["alert"] != "y010401") { $this->obj_ajax->halt_alert($_arr_ssoLogin["alert"]); } $_mdl_admin->mdl_submit($_arr_ssoLogin["user_id"]); $_arr_groupRow = $_mdl_group->mdl_read(1); $_str_grouAllow = json_encode($_arr_adminSubmit["group_allow"]); $_arr_groupData = array("group_name" => "超级管理组", "group_note" => "拥有所有权限", "group_allow" => $_str_grouAllow, "group_type" => "admin", "group_status" => "enable"); if ($_arr_groupRow["alert"] == "y040102") { $_num_mysql = $this->obj_db->update(BG_DB_TABLE . "group", $_arr_groupData, "group_id=1"); } else { $_num_groupId = $this->obj_db->insert(BG_DB_TABLE . "group", $_arr_groupData); if ($_num_groupId <= 0 || !$_num_groupId) { $this->obj_ajax->halt_alert("x040101"); } } $_mdl_admin->mdl_toGroup($_arr_ssoLogin["user_id"], 1); $this->obj_ajax->halt_alert("y030409"); }