function checkrole($url) { $checkadmin = $_SESSION['admininfo']; $user_id = $checkadmin['id']; $sql = "select * from m_block a,m_role b where b.role_id=a.id and b.user_id='" . $user_id . "' and a.url='" . $url . "' limit 1"; $result = m_fetch(m_query($sql)); if ($result['role_id'] != "") { return true; } else { return false; } }
<?php session_start(); include_once './inc/init.php'; $sql = "select * from item where takeorder_itemname='' order by id desc"; $res = m_query($sql); $num = mysql_num_rows($res); $p = new show_page(); $p->pvar = "p"; //$p->setvar(array("id" => $_GET['id'])); $p->set(4, $num); $sql .= " limit " . $p->limit(); $itemsort_result = m_query($sql); $sortlist = array(); $i = 0; while ($row = m_fetch($itemsort_result)) { $sortlist[] = $row; } $pages = $p->output(1); $smarty->assign('sortlist', $sortlist); $smarty->assign('itemselflist', $itemselflist); $smarty->assign('pages', $pages); $smarty->display("item.htm");
$id = $_GET['id']; $no = $_GET['no']; $customize = $_GET['customize']; $sql = "select sortname from takeorder_item where id='{$id}'"; $res = s_fetch($sql); $sortname = $res[0]['sortname']; $sql_itemself = "select * from takeorder_item where sortname='{$sortname}' and itemname!=''"; $query_itemself = m_query($sql_itemself); $num = mysql_num_rows($query_itemself); $p = new show_page(); $p->pvar = "p"; $p->setvar(array("id" => $_GET['id'], "no" => $no, "customize" => $customize)); $p->set(3, $num, "", "itemself"); $sql_itemself .= " limit " . $p->limit(); $itemsort_result = m_query($sql_itemself); while ($row_itemself = m_fetch($itemsort_result)) { $itemselflist[] = $row_itemself; } //print_rr($itemselflist); /* $i =0; while($row=m_fetch($itemsort_result)){ $sortlist[]=$row; if($i==0){ $sql_itemself = "select sortname from item where id='$id'"; $query_itemself = m_query($sql_itemself); while($row_itemself=m_fetch($query_itemself)){ $itemselflist[]=$row_itemself; } } $i++;