protected function isLogin()
{
if (empty($this->userInfo)) {
$this->alert(sweetAlert("未登录", "请登陆后操作!", "warning"));
}
}
<?php
if (@router(2) == false) {
exit;
}
if (router(2) == "salvar-texto") {
extract($_POST);
if (!$_POST) {
exit;
}
// Salva cada campo por vez
foreach ($_POST as $campo => $valor) {
// O "cond" para referência no "while" será sempre o "name" do campo
update("texto", $valor, "site_static", "WHERE cond = '{$campo}'");
}
echo sweetAlert("Sucesso!", "As informações foram atualizadas.", "success");
}
if (router(2) == "deletar-foto") {
extract($_POST);
// Captura o nome da foto
$foto = select("site_static_fotos", "foto", "WHERE ID = '" . $fotoID . "'");
// Deleta a foto
unlink("../uploads/static/thumb-" . $foto);
unlink("../uploads/static/" . $foto);
// echo "../uploads/static/thumb-".$foto;
// Deleta no banco
deleteSql("site_static_fotos", "WHERE ID = '" . $fotoID . "'");
}
}
if (router(2) == "newPass") {
extract($_POST);
if ($nosp != "") {
exit;
}
$consulta = mysql_query("SELECT * FROM sys_admin WHERE token = '" . $token . "'");
$result = mysql_num_rows($consulta);
if ($result == false) {
echo sweetAlert("Erro!", "Link inválido ou fora do prazo de validade.", "error");
exit;
}
$ln = mysql_fetch_object($consulta);
if ($ln->tokenExp < date("Y-m-d H:i:s")) {
echo sweetAlert("Erro!", "Link inválido ou fora do prazo de validade.", "error");
exit;
}
requiredField("password", "senha", "formNewPass");
if (strlen($password) < 5) {
echo sweetAlert("Atenção!", "Sua deve deve conter no mínimo 5 caracteres.", "warning");
exit;
}
requiredField("passwordRep", "(Repita a senha)", "formNewPass");
if ($password != $passwordRep) {
echo sweetAlert("Atenção!", "As senhas digitadas não conferem.", "warning");
exit;
}
update(array("token", "tokenExp", "password"), array("", "", md5($password)), "sys_admin", "WHERE ID = '" . $ln->ID . "'");
$_SESSION["adminID"] = $ln->ID;
echo sweetRedir("Sucesso!", "Sua senha foi atualizada.", "success", CP . "/view/home");
}
function passwordComparer($pass, $pass2, $formName)
{
if (@$_POST["{$pass}"] != @$_POST["{$pass2}"]) {
echo sweetAlert("Atenção!", "As senhas digitadas não conferem.", "warning");
exit;
}
}
public function index()
{
$action = I("post.action");
if ($action == "login") {
$user = I("post.user");
$pwd = I("post.pwd");
if (strlen($user) < 3 || strlen($pwd) < 5) {
$this->assign("alert", sweetAlert("温馨提示", "用户名或者密码格式不正确!", "warning"));
} else {
$pwd = md5Pwd($pwd);
if ($user = $this->pdo->find("select uid from pre_users where (user=:user or email=:user) and pwd=:pwd limit 1", array(":user" => $user, ":pwd" => $pwd))) {
$sid = getSid();
$this->pdo->execute("update pre_users set sid=:sid where uid=:uid limit 1", array(":uid" => $user['uid'], ":sid" => $sid));
Cookie::set("userSid", $sid, array("path" => "/", "expire" => 3600 * 24));
$this->assign("alert", sweetAlert("登录成功!", "欢迎回来,进入控制面板!", "success", U("/index/Panel/index")));
return $this->fetch("common/sweetAlert");
} else {
$this->assign("alert", sweetAlert("温馨提示", "用户名或者密码不正确!", "warning"));
}
}
} elseif ($action == "reg") {
$this->assign("isReg", true);
$user = I("post.user");
$pwd = I("post.pwd");
$email = strtolower(I("post.email"));
$code = I("post.code");
if (strlen($user) < 3) {
$this->assign("alert", sweetAlert("温馨提示", "用户名太短!", "warning"));
} elseif (strlen($pwd) < 5) {
$this->assign("alert", sweetAlert("温馨提示", "密码太简单!", "warning"));
} elseif (strlen($code) != 4 || !isset($_COOKIE['verification']) || md5(strtolower($code)) !== $_COOKIE['verification']) {
$this->assign("alert", sweetAlert("温馨提示", "验证码错误!", "warning"));
} elseif (!preg_match('/^[a-zA-Z0-9\\-\\_]+@[a-zA-Z0-9\\-]+\\.[a-zA-Z]+$/', $email)) {
$this->assign("alert", sweetAlert("温馨提示", "邮箱格式不正确!", "warning"));
} elseif ($this->pdo->find("select uid from pre_users where user=:user limit 1", array(":user" => $user))) {
$this->assign("alert", sweetAlert("温馨提示", "用户名已存在!", "warning"));
} elseif ($this->pdo->find("select uid from pre_users where email=:email limit 1", array(":email" => $email))) {
$this->assign("alert", sweetAlert("温馨提示", "邮箱账号已存在!", "warning"));
} else {
setCookie('verification', null, -1, '/');
//销毁验证码
$insert = array();
$insert[':user'] = $user;
$insert[':pwd'] = md5Pwd($pwd);
$insert[':email'] = $email;
$insert['sid'] = getSid();
if ($this->pdo->execute("INSERT INTO `pre_users` (`user`, `email`, `pwd`, `sid`, `regtime`) VALUES (:user, :email, :pwd, :sid, NOW())", $insert)) {
$this->assign("alert", sweetAlert("注册成功!", "马上登录!", "success", U("index")));
return $this->fetch("common/sweetAlert");
} else {
$this->assign("alert", sweetAlert("温馨提示", "注册失败,请稍候再试!", "warning"));
}
}
}
$this->assign("webTitle", C("webTitle") ? C("webTitle") : "网站首页");
return $this->fetch();
}
if (@router(2) == false) {
exit;
}
if (router(2) == "insert") {
extract($_POST);
if (!$_POST) {
exit;
}
$formName = @router(3);
requiredField("nome", "Nome", $formName);
requiredEmail("email", $formName);
requiredField("password", "Senha", $formName);
requiredField("passwordRep", "Repita a senha", $formName);
passwordComparer("password", "passwordRep", $formName);
$consulta = mysql_num_rows(mysql_query("SELECT * FROM sys_admin WHERE email = '" . $email . "'"));
if ($consulta == true) {
echo jsScript('$(".' . $formName . ' .input-email input").focus();');
echo sweetAlert("Atenção!", "Este e-mail já está cadastrado.", "warning");
}
insert(array("nome", "email", "password"), array($nome, $email, md5($password)), "sys_admin");
exit;
// Salva cada campo por vez
foreach ($_POST as $campo => $valor) {
}
}
if (router(2) == "update") {
extract($_POST);
if (!$_POST) {
exit;
}
}
<button type="button" id = "button_proceed_delete" class="btn btn-primary">Proceed</button>
</div>
</div>
</div>
</div>
<?php
if (isset($_SESSION['item_edit']) && $_SESSION['item_edit'] == 1) {
?>
<script>
swal({ title: "Product Updated Succesfully!", text: "", timer: 1000, showConfirmButton: false });
</script>
<?php
} else {
if (isset($_SESSION['item_edit']) && $_SESSION['item_edit'] == 0) {
sweetAlert("Oops...", "Something went wrong! Some entried were not proper", "error");
}
}
unset($_SESSION['item_edit']);
?>
<script>
$("#addproducts").addClass('active');
$(document).ready(function(){
var j= jQuery.noConflict();
j(".btn_delete").click(function(){
id = j(this).attr('id');
j("#deleteConfirmation").modal('show');
private function checkLogin()
{
if (empty($this->userInfo)) {
$this->assign("alert", sweetAlert("未登录", "请登录后操作!", "warning", U("index/Index")));
exit($this->fetch("common/sweetAlert"));
}
}
public function webSet()
{
if (I("post.action" == "set")) {
unset($_POST['action']);
if ($_POST['webAdmin']) {
$_POST['webAdmin'] = md5Pwd($_POST['webAdmin']);
} else {
unset($_POST['webAdmin']);
}
$sql = "insert into pre_configs set `vkey`=:k,`value`=:v on duplicate key update `value`=:v";
foreach ($_POST as $k => $v) {
$this->pdo->execute($sql, array(":k" => $k, ":v" => $v));
}
$this->assign("alert", sweetAlert("保存成功", "网站配置保存成功!", "warning", U("webSet")));
}
$this->assign("webTitle", "网站配置");
return $this->fetch("webSet");
}