<?php
/**
* Created by JetBrains PhpStorm.
* User: Administrator
* Date: 13-9-16
* Time: 上午11:37
* To change this template use File | Settings | File Templates.
*/
include '../inc/common.inc.php';
include '../inc/upload.class.php';
$img = array();
$up = _upload('Filedata');
$file = $up->insertid;
if ($file['file_id'] > 0) {
$img = array('dbQuery' => $file['$dbQuery'], 'file_id' => $file['file_id'], 'key_path' => $file['key_path'], 'key' => $file['key'], 'width' => $file['width'], 'height' => $file['height'], 'type' => $file['type']);
$img['farm'] = "farm1";
$img['bucket'] = "hbimg";
$img['success'] = true;
$img['ret'] = 0;
$img['msg'] = "上传成功";
$img['errorcode'] = 0;
$img['file_path'] = $GLOBALS['app']['scheme'] . "://" . $GLOBALS['app']['host'] . "/" . $file['key_path'] . $file['key'];
} else {
$img = $up->error;
$img['ret'] = 1;
$img['msg'] = "上传失败";
}
echo json_encode($img);
/**
* 文件上传处理。单个文件上传,多个分多次请求
* 调用demo
* upload('file','D:/www/');
*/
function upload($fileInput, $path = './')
{
global $config, $L;
$file = $_FILES[$fileInput];
if (!isset($file)) {
show_json($L['upload_error_null'], false);
}
$file_name = iconv_system($file['name']);
$info = _upload($file['tmp_name'], $file['size'], $path . $file_name);
show_json($info['data'], $info['code'], $info['path']);
}
function addgroup_action()
{
if (!$GLOBALS['session']->get('uid')) {
sheader(url('user', 'login'));
}
$updateid = intval($_REQUEST['updateid']);
$group = array();
if ($updateid) {
$group = $this->group->GetOne('and id=' . $updateid);
}
if (submitcheck('commit')) {
$userinfo = $this->user->GetOne('and uid=' . $GLOBALS['session']->get('uid'));
$data['subject'] = strip_tags(trim($_POST['title']));
$data['groupsite'] = $userinfo['sitename'];
$data['oldprice'] = floatval($_POST['yuan_money']) ? floatval($_POST['yuan_money']) : 100;
$data['nowprice'] = floatval($_POST['now_money']);
$data['url'] = strip_tags(trim($_POST['url']));
$data['discount'] = intval($data['nowprice'] * 100 / $data['oldprice']) / 10;
$data['lasttime'] = strtotime($_POST['over_date']);
$data['grouptype'] = intval($_POST['class_id']);
$cityinfo = explode('-', $_POST['city']);
$data['cityid'] = $cityinfo[0];
$data['cityname'] = $cityinfo[1];
$data['keyword'] = strip_tags(trim($_POST['key_word']));
$data['userid'] = $userinfo['uid'];
if ($_FILES['file_img']['error'] == 0) {
$data['thumb'] = _upload('file_img', $GLOBALS['uploaddir'] . '/' . date('Y/m'));
if ($group && $group['thumb']) {
unlink($group['thumb']);
}
}
if ($updateid) {
if ($group['userid'] == $GLOBALS['session']->get('uid')) {
if ($group['ispassed']) {
sheader(url('user', 'grouplist'), 3, '已审核通过了,不能再修改', 'member_redirect');
} else {
if ($this->group->UpdateData($data, 'and id=' . $updateid)) {
sheader(url('user', 'grouplist'), 3, '数据更新成功,请等待管理员审核', 'member_redirect');
} else {
sheader(url('user', 'grouplist'), 3, '数据未做任何改变', 'member_redirect');
}
}
} else {
sheader(url('user', 'grouplist'), 3, '您无此权限', 'member_redirect');
}
} else {
$data['updatetime'] = $GLOBALS['timestamp'];
if ($this->group->InsertData($data)) {
sheader(url('user', 'grouplist'), 3, '数据添加成功,请等待管理员审核', 'member_redirect');
} else {
sheader(url('user', 'grouplist'), 3, '数据添加失败', 'member_redirect');
}
}
} else {
if ($group && $group['ispassed']) {
sheader(url('user', 'grouplist'), 3, '已审核通过了,不能再修改', 'member_redirect');
}
if ($group && $group['userid'] != $GLOBALS['session']->get('uid')) {
sheader(url('user', 'grouplist'), 3, '您无此权限', 'member_redirect');
}
include template('member_tuan');
}
}
die('no updir');
}
if (!is_numeric($page_id)) {
die('wrong updir');
}
mso_checkreferer();
$ext = substr(strrchr($fn, '.'), 1);
$allowed_ext = explode('|', mso_get_option('allowed_types', 'general', 'mp3|gif|jpg|jpeg|png|zip|txt|rar|doc|rtf|pdf|html|htm|css|xml|odt|avi|wmv|flv|swf|wav|xls|7z|gz|bz2|tgz'));
if (!in_array(strtolower($ext), $allowed_ext)) {
die('not allowed');
}
// Закончили проверки.
// Полный путь к каталогу.
$up_dir = getinfo('uploads_dir') . '_pages/' . $page_id . '/';
// Сама загрузка файла и создание миниатюр.
_upload($up_dir, $fn);
function _upload($up_dir, $fn, $r = array())
{
$fn = _slug($fn);
$ext = substr(strrchr($fn, '.'), 1);
$name = substr($fn, 0, strlen($fn) - strlen($ext) - 1);
// Если имя файла пустое, только расширение.
if ($fn == '.' . $ext) {
$fn = '1' . $fn;
}
// Если файл уже существует.
if (file_exists($up_dir . $fn)) {
for ($i = 1; $i < 100; $i++) {
$fn = $name . '-' . $i . '.' . $ext;
if (!file_exists($up_dir . $fn)) {
break;
function settingdata_action()
{
if (submitcheck('commit')) {
unset($_POST['con']);
unset($_POST['act']);
$type = $_POST['dotype'];
unset($_POST['commit'], $_POST['dotype']);
$setting_mod = new common('setting');
if ($_FILES['site_logo']['name']) {
$filename = explode('.', $_FILES['site_logo']['name']);
$container = 'and variable="site_logo"';
$data['content'] = _upload('site_logo', 'data/logo', 'logo.' . $filename[1]);
$datalist = $setting_mod->GetOne($container);
if ($datalist) {
$setting_mod->UpdateData($data, $container);
} else {
$data['variable'] = 'site_logo';
$setting_mod->InsertData($data);
}
}
$changeadmin = '';
foreach ($_POST as $k => $v) {
if ($k == 'adminpath' && $v != $GLOBALS['setting']['adminpath']) {
$changeadmin = $v;
}
$container = 'and variable="' . $k . '"';
$data['content'] = strip_tags($v);
$datalist = $setting_mod->GetOne($container);
if ($datalist) {
$updatesql[$k] = $v;
} else {
$insertsql[$k] = $v;
}
}
if ($insertsql) {
foreach ($insertsql as $key => $val) {
$setting_mod->InsertData(array('variable' => $key, 'content' => $val));
}
}
if ($updatesql) {
foreach ($updatesql as $key => $val) {
$setting_mod->UpdateData(array('content' => $val), 'and variable="' . $key . '"');
}
}
if ($type == 'template') {
$dofile = cleancache('', 'data/compile');
if (!$dofile) {
echo '<SCRIPT LANGUAGE="JavaScript">
<!--
alert("模板更新成功,清空系统编译失败,请手动清除");
//-->
</SCRIPT>';
} else {
echo '<SCRIPT LANGUAGE="JavaScript">
<!--
alert("模板更新成功");
//-->
</SCRIPT>';
}
}
deletef('setting');
if (!empty($changeadmin)) {
echo '后台路径参数已修改,为了系统安全,请您继续做以下工作:<ul><li>1、连接ftp,将controls/' . $GLOBALS['setting']['adminpath'] . '.class.php文件名修改为:' . $changeadmin . '.class.php</li><li>2、打开' . $changeadmin . '.class.php,将文件中' . $GLOBALS['setting']['adminpath'] . '_controller替换为:' . $changeadmin . '_controller</li><li>3、修改完毕后,<a href="' . SITE_ROOT . '/?con=' . $changeadmin . '" target="_top">重新进入后台</a></li></ul>';
} else {
if ($_REQUEST['custom_url']) {
sheader($_REQUEST['custom_url'], 3, '修改成功', 'redirect', true);
} else {
sheader('index.php?con=' . $GLOBALS['setting']['adminpath'] . '&act=setting&type=' . $type, 3, '修改成功', 'redirect', true);
}
}
}
}
function linkmodify_action()
{
$updateid = $_REQUEST['updateid'];
$link_mod = new common('link');
if (submitcheck('commit')) {
$data['title'] = trim(strip_tags($_POST['title']));
$data['url'] = substr($_POST['url'], 0, 4) == 'http' ? trim($_POST['url']) : 'http://' . $_POST['url'];
$data['dec'] = trim(strip_tags($_POST['dec']));
$data['type'] = intval($_POST['type']);
if ($_FILES['thumb']['name']) {
$data['thumb'] = _upload('thumb', 'data/upload/tempimg');
}
if ($updateid > 0) {
if ($link_mod->UpdateData($data, 'and id=' . $updateid)) {
deletef('link');
sheader('index.php?con=admin&act=link', 3, '修改成功', 'redirect', true);
}
} else {
if ($link_mod->InsertData($data)) {
deletef('link');
sheader('index.php?con=admin&act=link', 3, '添加成功', 'redirect', true);
}
}
} else {
if ($updateid) {
$link = $link_mod->GetOne('and id=' . $updateid);
}
include ROOT_PATH . '/views/admin/link_form.php';
}
}
