function change_key($key, $name)
{
$dbObj = new DBClass();
$sql = "update cs_user set password='******' where name='{$name}';";
if ($result = $dbObj->query($sql)) {
return $result;
}
}
public function findAllParams()
{
// Проверяем какой запрос к базе запускать в зависимости от полученных пареметров
if (empty($this->data)) {
$sql = 'SELECT * FROM ' . static::$table;
} else {
// Если параметры заданы то определяем какие и какой запрос запустить
foreach ($this->data as $val) {
$arr_dat = $val;
}
$arr_keys = array_keys($arr_dat);
switch ($arr_keys) {
case array('name', 'value'):
$sql = 'SELECT * FROM ' . static::$table . ' WHERE ' . $arr_dat['name'] . '=?';
$sql_params = array($arr_dat['value']);
break;
case array('name', 'value', 'sname', 'svalue'):
$sql = 'SELECT * FROM ' . static::$table . ' WHERE ' . $arr_dat['name'] . '=?
AND ' . $arr_dat['sname'] . '=?';
$sql_params = array($arr_dat['value'], $arr_dat['svalue']);
break;
case array('table', 'name', 'value'):
$sql = 'SELECT * FROM ' . $arr_dat['table'] . ' WHERE ' . $arr_dat['name'] . '=?';
$sql_params = array($arr_dat['value']);
break;
case array('table', 'name', 'value', 'sname', 'svalue'):
$sql = 'SELECT * FROM ' . $arr_dat['table'] . ' WHERE ' . $arr_dat['name'] . '=?
AND ' . $arr_dat['sname'] . '=?';
$sql_params = array($arr_dat['value'], $arr_dat['svalue']);
break;
case array('value1', 'value2', 'sql'):
$sql = $arr_dat['sql'];
$sql_params = array($arr_dat['value1'], $arr_dat['value2']);
break;
case array('value1', 'sql'):
// print_r($arr_dat['sql']);
// echo "<br><br>";
// die();
$sql = $arr_dat['sql'];
$sql_params = array($arr_dat['value1']);
break;
case array('value1', 'value2', 'value3', 'sql'):
$sql = $arr_dat['sql'];
$sql_params = array($arr_dat['value1'], $arr_dat['value2'], $arr_dat['value3']);
break;
case array('value1', 'value2', 'value3', 'value4', 'sql'):
$sql = $arr_dat['sql'];
$sql_params = array($arr_dat['value1'], $arr_dat['value2'], $arr_dat['value3'], $arr_dat['value4']);
break;
default:
$sql = 'SELECT * FROM ' . static::$table;
break;
}
}
$db = new DBClass();
return $db->query($sql, $sql_params);
}
public static function getService()
{
$service_new = array();
$db_services = DBClass::query('SELECT * FROM Cloud_Services');
foreach ($db_services as $db_service) {
$new = new Service($db_service->service_name, $db_service->service_description, $db_service->provider_name, $db_service->cloud_id);
array_push($service_new, $new);
}
return $service_new;
}
function check_online($uid)
{
$dbObj = new DBClass();
$time = time() - 600;
$sql = "select * from cs_online where uid={$uid} and time>{$time};";
$result = $dbObj->query($sql);
if ($result->num_rows) {
return true;
} else {
return false;
}
}
public static function checkWidgetsFor($field, $fval)
{
$db_field_name = '';
$widget_match = 0;
switch ($field) {
case 'uf-title':
$db_field_name = 'title';
break;
default:
$db_field_name = 'title';
}
$db_widgets = DBClass::query('SELECT COUNT(*) as count FROM `uf_widgets` WHERE `' . $db_field_name . '` = ?', array($fval));
if (count($db_widgets)) {
$widget_match = $db_widgets[0]->count;
} else {
return 0;
}
/*foreach ( $db_widgets as $db_widget ) {
$widget_match = $db_widget->count;
}*/
return $widget_match;
}
$userObj = new UserClass();
$json = $userObj->get_userinfo($info_uid);
$result = json_decode($json, true);
$user_info = $result[0];
$user_info["issame"] = $info_uid == $login_uid;
$user_info['uid'] = $info_uid;
$user_info['avatar'] = $userObj->get_avatar($info_uid);
$activityObj = new ActivityClass();
for ($i = 0; $i < 10; ++$i) {
$tmp = $activityObj->get_activity('uid', $info_uid, $i);
if ($tmp == false) {
break;
}
$activity_list[] = $tmp;
}
$sql = "SELECT uid, password FROM cs_user WHERE uid=" . $info_uid . ";";
$dbObj = new DBClass();
$result = $dbObj->query($sql);
$result_info = $result->fetch_assoc();
$temp_time = (string) (time() + 24 * 3600);
$temp_str = $result_info['uid'] . $result_info['password'] . $temp_time;
$token = md5($temp_str);
$reset_pass_url = SITE_DOMAIN . "/resetpd.php?uid=" . $result_info['uid'] . "&token=" . $token . "&time=" . $temp_time;
$smarty->assign("activity_list", $activity_list);
$smarty->assign('user_info', $user_info);
$smarty->assign('reset_pass_url', $reset_pass_url);
$smarty->display('profile.tpl');
?>
public function update_userinfo($uid, $phone, $mail, $qq, $wechat, $blog, $github, $native, $major, $workplace, $job)
{
if ($this->check_user($uid)) {
return false;
}
$checkArr = array("{$uid}" => 'digit', "{$phone}" => 'phone', "{$mail}" => 'mail', "{$qq}" => 'qq', "{$wechat}" => 'weixin', "{$blog}" => 'site', "{$github}" => 'site', "{$native}" => 'chinese', "{$major}" => 'chinese', "{$workplace}" => 'chinese', "{$job}" => 'chinese');
if (!checkArr($checkArr)) {
return false;
}
if (empty($mail) && $this->check_data($mail, 'mail', $uid)) {
return false;
}
if (!isset($phone) && $this->check_data($phone, 'phone', $uid)) {
return false;
}
$sql = "UPDATE `cs_user` SET phone='{$phone}',mail='{$mail}',qq='{$qq}',wechat='{$wechat}', blog='{$blog}',github='{$github}',native='{$native}',major='{$major}',workplace='{$workplace}',job='{$job}' WHERE uid='{$uid}'";
$link = new DBClass();
$result = $link->query($sql);
if ($result) {
return true;
}
return false;
}
//setcookie('uid', '', time());
}
}
if ($action == 'login') {
if ($_SESSION['wrong_times'] >= 3) {
print 'false1';
}
$name = $_POST['name'];
$password = $_POST['password'];
if (empty($name) || empty($password)) {
print 'false2';
exit;
}
$dbObj = new DBClass();
$query = "SELECT `uid`,`password` FROM `cs_user` WHERE `name`='{$name}';";
$result = $dbObj->query($query);
if ($result->num_rows <= 0) {
print 'false3';
exit;
}
if ($_SESSION['wrong_times'] >= 3) {
$checknum = $_POST['checknum'];
if ($_SESSION['checknum'] != $checknum) {
print 'false4';
exit;
}
}
$row = $result->fetch_assoc();
$password = md5($password);
if ($password == $row['password']) {
$_SESSION['wrong_times'] = 0;
function update()
{
if ($_POST['lid'] == "" || $_POST['title'] == "" || $_POST['time'] == "" || $_POST['location'] == "") {
return "-1";
}
$db = new DBClass();
$sql = "SELECT uid FROM `app_lecture_info` WHERE lid = " . $_POST['lid'];
$result = $db->query($sql);
if ($result->num_rows <= 0) {
return "-2";
} else {
$row = $result->fetch_assoc();
$userObj = new UserClass();
$permisson = $userObj->get_privilege($_SESSION['uid']);
if ($_SESSION['uid'] != $row["uid"] && $permisson != '1') {
return "-3";
}
}
$lecture_inc = new LectureClass();
$result = $lecture_inc->update_lecture($_POST['lid'], $_POST['title'], $_POST['time'], $_POST['location'], $_POST['tag'], $_POST['description'], $_POST['slide']);
return $result;
}
