protected function pretreatment()
{
switch ($this->_method) {
case "post":
$_POST["password"] = getPwd($_POST["password"]);
// $_POST["status"] = 1;
break;
case "put":
if ($_POST["password"]) {
$_POST["password"] = getPwd($_POST["password"]);
} else {
unset($_POST["password"]);
}
break;
}
}
private function doLogin()
{
if (IS_POST) {
$user = D("UserRelation");
$theUser = $user->getFullUserInfo($_REQUEST["username"], "username");
if (!$theUser or $theUser["status"] < 1) {
$this->response(array("error" => 1, "msg" => L("user_not_exists")));
return;
//@todo 禁用用户
}
if ($theUser["password"] !== getPwd($_REQUEST["password"])) {
$this->response(array("error" => 1, "msg" => L("password_not_verified")));
return;
}
unset($theUser["password"]);
$_SESSION["user"] = $theUser;
$this->response(array("error" => 0, "sessionHash" => session_id()));
} else {
$this->response(array("error" => 1, "msg" => L("invlid")));
}
}
function getUrlFull($file)
{
global $CFG;
$path = getPwd($file);
return $CFG->wwwroot . "/" . $path;
}
$checkEmail = $db->prepare($sql);
$checkEmail->execute(array(':email' => $email));
if (strlen($user) < 3 || strlen($pwd) < 6) {
$regMsg = '用户名或密码格式不正确';
} elseif (!preg_match('/^[a-zA-Z0-9\\-\\_]+@[a-zA-Z0-9\\-]+\\.[a-zA-Z]+$/', $email)) {
$regMsg = '邮箱格式不正确';
} elseif (strlen($code) != 4 || !isset($_COOKIE['verification']) || md5(strtolower($code)) !== $_COOKIE['verification']) {
$regMsg = '验证码错误';
} elseif ($checkUser->fetch()) {
$regMsg = '此用户名已存在';
} elseif ($checkEmail->fetch()) {
$regMsg = '该邮箱已经注册过';
} else {
setCookie('verification', null, -1, '/');
//销毁验证码,以防利用这个验证码重复注册
$pwd = getPwd($pwd);
$sid = getSid();
$sql = "INSERT INTO `kldns_users` (`user`, `email`, `pwd`, `sid`, `regtime`, `lasttime`, `lastip`, `logintime`, `loginip`) VALUES (:user,:email, :pwd, :sid, NOW(), NOW(), :ip, NOW(), :ip)";
$stmt = $db->prepare($sql);
if ($stmt->execute(array(':user' => $user, ':email' => $email, ':pwd' => $pwd, ':sid' => $sid, ':ip' => getIp()))) {
setCookie('kldns_sid', $sid, time() + 3600 * 24 * 7, '/');
exit("<script language='javascript'>alert('注册成功!马上进入控制面板!');window.location.href='/control.php';</script>");
} else {
$dberror = $db->errorInfo();
$regMsg = '注册失败:保存数据库出错' . $dberror[2];
}
}
}
$title = '域名控制台';
//本页标题
require_once 'head.php';
$allowNum = getRequest('allowNum', 'post');
if (!is_numeric($allowNum)) {
$allowNum = 0;
}
if (strlen($webName) < 2) {
$errorMsg = '网站名称长度不能小于2';
} elseif ($webAdmin && strlen($webAdmin) < 5) {
$errorMsg = '新密码太简单';
} else {
$webFoot = base64_encode($webFoot);
$stmt = $db->prepare("insert into kldns_configs set `vkey`=:vkey,`value`=:value on duplicate key update `value`=:value");
$stmt->execute(array(':vkey' => 'webName', ':value' => $webName));
$stmt->execute(array(':vkey' => 'webFoot', ':value' => $webFoot));
$stmt->execute(array(':vkey' => 'allowNum', ':value' => $allowNum));
if ($webAdmin) {
$stmt->execute(array(':vkey' => 'webAdmin', ':value' => getPwd($webAdmin)));
}
config('webName', $webName);
config('webFoot', $webFoot);
config('allowNum', $allowNum);
}
}
$title = '网站设置-管理后台';
//本页标题
require_once '../head.php';
?>
<div class="row">
<div class="col-xs-12">
<pre><h4>网站基本信息设置<a href="index.php" class="dns-btn btn-info" style="float: right;">返回</a></h4></pre>
</div>
<div class="col-xs-12">
private function initApp($config)
{
$model = D("User");
$data = $config["admin"];
$data["status"] = 1;
$data["password"] = getPwd($data["password"]);
$data["department_id"] = 0;
$uid = $model->add($data);
$m = M();
$sql = "INSERT INTO `%sauth_group_access`(uid, group_id)VALUES(%d, 1)";
$sql = sprintf($sql, $config["db"]["dbpre"], $uid);
$m->execute($sql);
$authNodesModel = D("AuthRule");
$nodeIds = $authNodesModel->field("id")->select();
$nodeIds = getArrayField($nodeIds, "id");
$authedRule = D("AuthGroupRule");
foreach ($nodeIds as $node) {
$authedRule->add(array("group_id" => 1, "rule_id" => $node, "flag" => 0));
}
}
