public static function authAdmin($login = false, $password = false) { if ($login) { $auth = true; } else { if (!session_id()) { session_start(); } if (!empty($_SESSION["authadmin_login"]) && !empty($_SESSION["authadmin_password"])) { $login = $_SESSION["authadmin_login"]; $password = $_SESSION["authadmin_password"]; } else { return; } $auth = false; } $admin = new AdminDB(); if ($auth) { $password = self::hash($password, Config::SECRET); } $select = new Select(); $select->from(self::$table, array("COUNT(id)"))->where("`login` = " . self::$db->getSQ(), array($login))->where("`password` = " . self::$db->getSQ(), array($password)); $count = self::$db->selectCell($select); if ($count) { $admin->loadOnLogin($login); //if ($admin->activation != "") throw new Exception("ERROR_ACTIVATE_USER"); if ($auth) { $admin->login(); } return $admin; } if ($auth) { throw new Exception("ERROR_AUTH_USER"); } }
public function actionLogout() { AdminDB::logout(); $this->redirect($_SERVER["HTTP_REFERER"]); }
public function updateAction() { $this->view->disable(); $oper = $this->request->getPost('oper', 'string'); if ($oper == 'edit') { //edit //修改之前应该判断数据库中是否已经存在记录 -- 目前在前端进行判定2015-9-12 $id = $this->request->getPost('id', 'int'); $project = Project::findFirst($id); $project->name = $this->request->getPost('name', 'string'); #项目开始时间不可变更 $project->begintime = $this->request->getPost('begintime', 'string'); $project->endtime = $this->request->getPost('endtime', 'string'); $project->description = $this->request->getPost('description', 'string'); $manager = Manager::findFirst(array('project_id=?0', 'bind' => array($id))); $manager->name = $this->request->getPost('manager_name', 'string'); $manager->username = $this->request->getPost('manager_username', 'string'); $manager->password = $this->request->getPost('manager_password', 'string'); #时间检查 if (strtotime($project->begintime) >= strtotime($project->endtime)) { $this->dataReturn(array('error' => '项目结束时间与开始时间冲突')); return; } try { AdminDB::updateManager($manager); AdminDB::updateProject($project); } catch (Exception $e) { $this->dataReturn(array('error' => '项目信息更新失败')); return; } $this->dataReturn(array('flag' => true)); return; } else { if ($oper == 'del') { //del //需要添加判断是否能被删除 --目前还未添加相应的判定 $id = $this->request->getPost('id', 'int'); $project_info = Project::findFirst($id); if (!isset($project_info->id)) { $this->dataReturn(array('error' => '项目编号不存在')); return; } else { #判断项目状态,如果不是项目的初始状态则禁止删除 if ($project_info->state != 0) { $this->dataReturn(array('error' => '项目经理已配置了项目,不能被删除')); return; } else { try { AdminDB::delproject($id); } catch (Exception $e) { $this->dataReturn(array('error' => '项目删除失败')); return; } $this->dataReturn(array('flag' => true)); return; } } } else { // } } }
<?php //NOT TESTED. NEED TO TEST. @define('BASE_DIR', dirname(__FILE__) . '/../..'); include_once 'AdminDB.class.php'; $db = new AdminDB(); //get users ids to delete $date = date('Y-m-d', time() - 30 * 24 * 60 * 60); $query = 'SELECT memberid FROM' . ' ' . $db->get_table('login') . ' ' . 'WHERE last_login <' . ' ' . $date . ' ' . 'OR last_login IS NULL'; $result = $db->db->query($query); $db->check_for_error($result); $memberids = array(); print $query; while ($id = $result->fetchRow()) { $memberids[] = $id['memberid']; #print $id['memberid']; } //delet users $db->del_users($memberids); CmnFns::write_log('Users deleted based because of inactivity. ' . join(', ', 'memberids'), 'sessionID');
<?php require_once 'library/ConnDB.php'; require_once 'library/AdminDB.php'; $arrayIni = parse_ini_file('config/lzhConfig.ini'); $connDB = new ConnDB($arrayIni['dbType'], $arrayIni['host'], $arrayIni['userName'], $arrayIni['password'], $arrayIni['dbName'], $arrayIni['isDebug']); $connID = $connDB->getConnID(); $adminDB = new AdminDB(); $bbsId = $_POST['bbsId']; $id = date('YmdHis') . mt_rand(1000, 9999); @unlink('pages/showbbs-' . $bbsId . '.html'); if ($adminDB->executeSQL("insert into tb_reply(id, content, addtime, bbs_id) values('{$id}', '" . $_POST['content'] . "', '" . date('Y-m-d H:i:s') . "', '{$bbsId}')", $connID)) { header('location:showbbs.php?id=' . $bbsId); }