include_once DEDEINC . '/datalistcp.class.php';
$bid = isset($bid) && is_numeric($bid) ? $bid : 0;
$do = isset($do) ? trim($do) : '';
if ($id < 1) {
ShowMsg("错误,未定义的操作!", "-1");
exit;
}
if ($do == "del" && $ismaster) {
$row = $db->GetOne("SELECT bid FROM #@__group_guestbook WHERE bid='{$bid}'");
if (!is_array($row)) {
ShowMsg("记录不存在!", "-1");
exit;
}
$db->ExecuteNoneQuery("DELETE FROM #@__group_guestbook WHERE bid='{$bid}'");
}
$pagesize = 5;
$nowpage = isset($pageno) && is_numeric($pageno) ? max($pageno, 1) : 1;
$topic = ($nowpage - 1) * $pagesize;
$sql = "SELECT G.stime,G.bid,G.message,G.title,M.uname,M.userid,M.face FROM #@__group_guestbook G LEFT JOIN #@__member M ON G.userid=M.mid WHERE G.gid='{$id}' ORDER BY G.stime ASC";
$dl = new DataListCP();
$dl->pageSize = $pagesize;
//设定每页显示记录数(默认5条)
$dl->SetParameter('id', $id);
//设定get字符串的变量
//这两句的顺序不能更换
$dl->SetTemplate(GROUP_TPL . '/guestbook.html');
//载入模板
$dl->SetSource($sql);
//设定查询SQL
$dl->Display();
//显示
$row['stime'] = $rs['stime'];
$row['cartcount'] = $rs['cartcount'];
$row['price'] = $rs['price'];
$row['uprice'] = $rs['price'] / $rs['cartcount'];
$row['dprice'] = $rs['dprice'];
$row['priceCount'] = $rs['priceCount'];
$rs = $dsql->GetOne("SELECT `dname` FROM #@__shops_delivery WHERE pid='{$rs['pid']}' LIMIT 0,1");
$row['dname'] = $rs['dname'];
unset($rs);
$addsql = " AND oid='" . $oid . "'";
}
$sql = "SELECT * FROM #@__shops_products WHERE userid='" . $cfg_ml->M_ID . "' {$addsql} ORDER BY aid ASC";
$dl = new DataListCP();
$dl->pageSize = 20;
if (!empty($oid)) {
$dl->SetParameter('oid', $oid);
}
//这两句的顺序不能更换
$dl->SetTemplate(dirname(__FILE__) . "/templets/shops_products.htm");
//载入模板
$dl->SetSource($sql);
//设定查询SQL
$dl->Display();
} else {
if ($dopost == 'del') {
$ids = explode(',', $ids);
if (isset($ids) && is_array($ids)) {
foreach ($ids as $id) {
$id = preg_replace("/^[a-z][0-9]\$/", "", $id);
$query = "DELETE FROM `#@__shops_products` WHERE oid='{$id}' AND userid='{$cfg_ml->M_ID}'";
$query2 = "DELETE FROM `#@__shops_orders` WHERE oid='{$id}' AND userid='{$cfg_ml->M_ID}'";
$row3 = "INSERT INTO\r\n `#@__member_pms` (`floginid`,`fromid`,`toid`,`tologinid`,`folder`,`subject`,`sendtime`,`writetime`,`hasview`,`isadmin`,`message`)\r\n VALUES ('admin','{$row['id']}','{$cfg_ml->M_ID}','{$cfg_ml->M_LoginID}','inbox','{$row['subject']}','{$row['sendtime']}','{$row['writetime']}','{$row['hasview']}','{$row['isadmin']}','{$row['message']}')";
$dsql->ExecuteNoneQuery($row3);
}
}
if ($state == "1") {
$wsql = " toid='{$cfg_ml->M_ID}' AND folder='inbox' AND writetime!='' and hasview=1";
$tname = "收件箱";
} else {
if ($state == "-1") {
$wsql = "toid='{$cfg_ml->M_ID}' AND folder='inbox' AND writetime!='' and hasview=0";
$tname = "收件箱";
} else {
$wsql = " toid='{$cfg_ml->M_ID}' AND folder='inbox' AND writetime!=''";
$tname = "收件箱";
}
}
} else {
$wsql = " `fromid` ='{$cfg_ml->M_ID}' AND folder LIKE 'outbox'";
$tname = "已发信息";
}
$query = "SELECT * FROM `#@__member_pms` WHERE {$wsql} ORDER BY sendtime DESC";
$dlist = new DataListCP();
$dlist->pageSize = 20;
$dlist->SetParameter("dopost", $dopost);
$dlist->SetTemplate(DEDEMEMBER . '/templets/pm-main.htm');
$dlist->SetSource($query);
$dlist->Display();
}
}
}
}
$title = $row['title'];
}
if (empty($notice)) {
$notice = $row['notice'];
}
$db->ExecuteNoneQuery("UPDATE #@__group_notice SET notice='" . $notice . "',title='" . $title . "' WHERE id='{$id}'");
}
}
}
unset($row);
//列表加载模板
$wheresql = "WHERE gid='{$gid}'";
if (!empty($keyword)) {
$wheresql .= " AND (title like '%" . $keyword . "%' OR notice like '%" . $keyword . "%')";
}
if (!empty($username)) {
$wheresql .= " AND uname like '%" . $username . "%'";
}
$sql = "SELECT * FROM #@__group_notice {$wheresql} ORDER BY stime DESC";
$dl = new DataListCP();
$dl->pageSize = 20;
$dl->SetParameter("keyword", $keyword);
$dl->SetParameter("username", $username);
$dl->SetParameter("gid", $gid);
//这两句的顺序不能更换
$dl->SetTemplate(DEDEADMIN . "/templets/group_notice.htm");
//载入模板
$dl->SetSource($sql);
//设定查询SQL
$dl->Display();
//显示
if (is_array($row)) {
ShowMsg("关键字已存在库中!", "-1");
exit;
}
$inquery = "INSERT INTO `#@__keywords`(keyword,rank,sta,rpurl) VALUES ('{$keyword}','{$rank}','1','{$rpurl}');";
$dsql->ExecuteNoneQuery($inquery);
ShowMsg("成功增加一个关键字!", $ENV_GOBACK_URL);
exit;
}
}
if (empty($keyword)) {
$keyword = '';
$addquery = '';
} else {
$addquery = " WHERE keyword LIKE '%{$keyword}%' ";
}
$sql = "SELECT * FROM `#@__keywords` {$addquery} ORDER BY rank DESC";
$dlist = new DataListCP();
$dlist->pageSize = 20;
$dlist->SetParameter("keyword", $keyword);
$dlist->SetTemplate(DEDEADMIN . "/templets/article_keywords_main.htm");
$dlist->SetSource($sql);
$dlist->Display();
function GetSta($sta)
{
if ($sta == 1) {
return '';
} else {
return ' checked="1" ';
}
}
*/
require_once dirname(__FILE__) . "/config.php";
require_once DEDEINC . "/datalistcp.class.php";
CheckPurview('shops_Operations');
if (!isset($oid)) {
exit("<a href='javascript:window.close()'>无效操作!</a>");
}
$oid = preg_replace("#[^-0-9A-Z]#", "", $oid);
if (empty($oid)) {
exit("<a href='javascript:window.close()'>无效订单号!</a>");
}
$row = $dsql->GetOne("SELECT * FROM #@__shops_userinfo WHERE oid='{$oid}'");
$sql = "SELECT o.*,p.title,p.price as uprice,d.dname FROM #@__shops_orders as o left join #@__shops_products as p on o.oid=p.oid left join #@__shops_delivery as d on d.pid=o.pid WHERE o.oid='{$oid}'";
$dlist = new DataListCP();
$dlist->pageSize = 20;
$dlist->SetParameter("oid", $oid);
$dlist->SetTemplate(DEDEADMIN . "/templets/shops_operations_cart.htm");
$dlist->SetSource($sql);
$dlist->Display();
$dlist->Close();
function GetSta($sta, $oid)
{
global $dsql;
$row = $dsql->GetOne("SELECT paytype FROM #@__shops_orders WHERE oid='{$oid}'");
$payname = $dsql->GetOne("SELECT name,fee FROM #@__payment WHERE id='{$row['paytype']}'");
if ($sta == 0) {
return $payname['name'] . " 手续费:" . $payname['fee'] . "元";
} else {
if ($sta == 1) {
return '<font color="red">已付款,等发货</font>';
} else {
$tname = "所有好友";
} else {
if ($ftype == 1) {
$wsql = " F.mid='{$cfg_ml->M_ID}' AND F.ftype = '1' ";
$tname = "特别关注";
} else {
if ($ftype == -1) {
$wsql = " F.mid='{$cfg_ml->M_ID}' AND F.ftype = '-1' ";
$tname = "黑名单";
}
}
}
$query = "SELECT F.*,G.groupname FROM `#@__member_group` AS G LEFT JOIN #@__member_friends AS F ON F.groupid=G.id WHERE {$wsql} ORDER BY F.id DESC";
$dlist = new DataListCP();
$dlist->pageSize = 20;
$dlist->SetParameter("ftype", $ftype);
$dlist->SetTemplate(dirname(__FILE__) . '/templets/myfriend.htm');
$dlist->SetSource($query);
$dlist->Display();
}
}
/**
* 获取用户信息
*
* @param int $uid 用户UID
* @param string $_field 用户字段
* @return string
*/
function getUserInfo($uid, $_field = 'uname')
{
global $dsql;
}
$arcsta = $cInfos['arcsta'];
//禁止访问无权限的模型
if ($cInfos['usertype'] != '' && $cInfos['usertype'] != $cfg_ml->M_MbType) {
ShowMsg('你无权限访问该部分', '-1');
exit;
}
if ($cid == 0) {
$positionname = $cInfos['typename'] . " >> ";
} else {
$positionname = str_replace($cfg_list_symbol, " >> ", $tl->GetPositionName()) . " >> ";
}
$whereSql = " where arc.channel = '{$channelid}' And arc.mid='{$mid}' ";
if ($keyword != '') {
$keyword = cn_substr(trim(ereg_replace("[><\\|\"\r\n\t%\\*\\.\\?\\(\\)\$ ;,'%-]", "", stripslashes($keyword))), 30);
$keyword = addslashes($keyword);
$whereSql .= " And (arc.title like '%{$keyword}%') ";
}
if ($cid != 0) {
$whereSql .= " And arc.typeid in (" . GetSonIds($cid) . ")";
}
$query = "select arc.aid,arc.aid as id,arc.typeid,arc.senddate,arc.channel,arc.click,arc.title,arc.mid,tp.typename\r\n from `{$cInfos['addtable']}` arc\r\n left join `#@__arctype` tp on tp.id=arc.typeid\r\n {$whereSql}\r\n order by arc.aid desc ";
$dlist = new DataListCP();
$dlist->pageSize = 20;
$dlist->SetParameter("dopost", "listArchives");
$dlist->SetParameter("keyword", $keyword);
$dlist->SetParameter("cid", $cid);
$dlist->SetParameter("channelid", $channelid);
$dlist->SetTemplate(DEDEMEMBER . "/templets/content_sg_list.htm");
$dlist->SetSource($query);
$dlist->Display();
}
$addsql = '';
if (empty($oid)) {
$oid = 0;
}
setcookie("ENV_GOBACK_URL", $dedeNowurl, time() + 3600, "/");
if (isset($buyid)) {
$buyid = preg_replace("#[^-0-9A-Z]#", "", $buyid);
$addsql = "WHERE s.oid='" . $buyid . "'";
}
if (isset($sta)) {
$addsql = "WHERE s.`state`='{$sta}'";
}
$sql = "SELECT s.`oid`,s.`cartcount`,s.`price`,s.`state`,s.`stime`,s.priceCount,s.dprice,s.paytype,u.`consignee`,u.`tel`,s.`userid` FROM #@__shops_orders AS s LEFT JOIN #@__shops_userinfo AS u ON s.oid=u.oid {$addsql} ORDER BY `stime` DESC";
$dlist = new DataListCP();
$dlist->SetParameter("oid", $oid);
if (isset($sta)) {
$dlist->SetParameter("sta", $sta);
}
$tplfile = DEDEADMIN . "/templets/shops_operations.htm";
//这两句的顺序不能更换
$dlist->SetTemplate($tplfile);
//载入模板
$dlist->SetSource($sql);
//设定查询SQLexit('dd');
$dlist->Display();
function GetSta($sta)
{
if ($sta == 0) {
return '未付款';
} else {
require_once dirname(__FILE__) . "/config.php";
CheckPurview('member_Operations');
setcookie("ENV_GOBACK_URL", $dedeNowurl, time() + 3600, "/");
require_once DEDEINC . '/datalistcp.class.php';
if (empty($buyid)) {
$buyid = '';
}
$addsql = " WHERE buyid LIKE '%{$buyid}%' ";
if (isset($sta)) {
$addsql .= " AND sta='{$sta}' ";
}
$sql = "SELECT * FROM `#@__member_operation` {$addsql} ORDER BY aid DESC";
$dlist = new DataListCP();
//设定每页显示记录数(默认25条)
$dlist->pageSize = 25;
$dlist->SetParameter("buyid", $buyid);
if (isset($sta)) {
$dlist->SetParameter("sta", $sta);
}
$dlist->dsql->SetQuery("SELECT * FROM #@__moneycard_type ");
$dlist->dsql->Execute('ts');
while ($rw = $dlist->dsql->GetArray('ts')) {
$TypeNames[$rw['tid']] = $rw['pname'];
}
$tplfile = DEDEADMIN . "/templets/member_operations.htm";
//这两句的顺序不能更换
$dlist->SetTemplate($tplfile);
//载入模板
$dlist->SetSource($sql);
//设定查询SQL
$dlist->Display();
$query = "SELECT addon.*, arctype.* FROM {$addontable} addon \n LEFT JOIN #@__arctype arctype ON arctype.id = addon.typeid\n {$where} {$orderby}";
} else {
$query = "SELECT main.id AS aid,main.*,main.description AS description1, type.* \n FROM {$maintable} main \n LEFT JOIN #@__arctype type ON type.id = main.typeid \n LEFT JOIN {$addontable} addon ON addon.aid = main.id \n {$where} {$orderby}";
}
$sql = $query;
} else {
$sql = urldecode($sql);
$query = $sql;
}
$sql = urlencode($sql);
//生成sql的唯一序列化字符串,并将sql语句记录到session中去
$sqlhash = md5($sql);
$_SESSION[$sqlhash] = $sql;
$dlist = new DataListCP();
$dlist->pageSize = 20;
$dlist->SetParameter("hash", $sqlhash);
$dlist->SetParameter("mid", $mid);
if (file_exists(DEDEROOT . "/templets/default/{$template}")) {
$templatefile = DEDEROOT . "/templets/default/{$template}";
} else {
$templatefile = DEDEROOT . "/templets/default/advancedsearch.htm";
}
$dlist->SetTemplate($templatefile);
$dlist->SetSource($query);
require_once DEDEINC . "/channelunit.class.php";
//获得一个指定档案的链接
function GetArcUrl($aid, $typeid, $timetag, $title, $ismake = 0, $rank = 0, $namerule = '', $artdir = '', $money = 0)
{
return GetFileUrl($aid, $typeid, $timetag, $title, $ismake, $rank, $namerule, $artdir, $money);
}
$dlist->Display();
if (empty($tag)) {
$tag = '';
}
if (empty($action)) {
$orderby = empty($orderby) ? 'id' : preg_replace("#[^a-z]#i", '', $orderby);
$orderway = isset($orderway) && $orderway == 'asc' ? 'asc' : 'desc';
if (!empty($tag)) {
$where = " where tag like '%{$tag}%'";
} else {
$where = '';
}
$neworderway = $orderway == 'desc' ? 'asc' : 'desc';
$query = "SELECT * FROM `#@__tagindex` {$where} ORDER BY {$orderby} {$orderway}";
$dlist = new DataListCP();
$tag = stripslashes($tag);
$dlist->SetParameter("tag", $tag);
$dlist->SetParameter("orderway", $orderway);
$dlist->SetParameter("orderby", $orderby);
$dlist->pageSize = 20;
$dlist->SetTemplet(DEDEADMIN . "/templets/tags_main.htm");
$dlist->SetSource($query);
$dlist->Display();
exit;
} else {
if ($action == 'update') {
$tid = empty($tid) ? 0 : intval($tid);
if (empty($tid)) {
ShowMsg('没有选择要删除的tag!', '-1');
exit;
}
$query = "UPDATE `#@__tagindex` SET `count`='{$count}' WHERE id='{$tid}' ";
}
}
ShowMsg("成功添加用户:{$uname}", "-1");
exit;
}
}
}
//列表加载模板
$wheresql = "WHERE gid='{$gid}'";
if (!empty($username)) {
$wheresql .= " AND username like '%" . $username . "%'";
}
$sql = "SELECT * FROM #@__group_user {$wheresql} ORDER BY jointime DESC";
$dl = new DataListCP();
$dl->pageSize = 20;
$dl->SetParameter("username", $username);
$dl->SetParameter("id", $id);
$dl->SetParameter("gid", $gid);
//这两句的顺序不能更换
$dl->SetTemplate(DEDEADMIN . "/templets/group_user.htm");
//载入模板
$dl->SetSource($sql);
//设定查询SQL
$dl->Display();
//显示
function filter($var)
{
return $var == '' ? false : true;
}
function GetMaster($user)
{
$cip = "";
}
if (empty($dtime)) {
$dtime = 0;
}
if ($adminid > 0) {
$where .= " AND #@__log.adminid='{$adminid}' ";
}
if ($cip != "") {
$where .= " AND #@__log.cip LIKE '%{$cip}%' ";
}
if ($dtime > 0) {
$nowtime = time();
$starttime = $nowtime - $dtime * 24 * 3600;
$where .= " AND #@__log.dtime>'{$starttime}' ";
}
$sql = "SELECT #@__log.*,#@__admin.userid FROM #@__log\n LEFT JOIN #@__admin ON #@__admin.id=#@__log.adminid\n WHERE 1=1 {$where} ORDER BY #@__log.lid DESC";
$adminlist = "";
$dsql->SetQuery("SELECT id,uname FROM #@__admin");
$dsql->Execute('admin');
while ($myrow = $dsql->GetObject('admin')) {
$adminlist .= "<option value='{$myrow->id}'>{$myrow->uname}</option>\r\n";
}
$dlist = new DataListCP();
$dlist->pageSize = 20;
$dlist->SetParameter("adminid", $adminid);
$dlist->SetParameter("cip", $cip);
$dlist->SetParameter("dtime", $dtime);
$dlist->SetTemplate(DEDEADMIN . "/templets/log_list.htm");
$dlist->SetSource($sql);
$dlist->Display();
exit;
} else {
if ($job == 'check') {
$query = "Update `#@__feedback` set ischeck=1 where id in({$ids}) ";
$dsql->ExecuteNoneQuery($query);
ShowMsg("成功审核指定评论!", $_COOKIE['ENV_GOBACK_URL'], 0, 500);
exit;
} else {
$bgcolor = '';
$typeid = isset($typeid) && is_numeric($typeid) ? $typeid : 0;
$aid = isset($aid) && is_numeric($aid) ? $aid : 0;
$keyword = !isset($keyword) ? '' : $keyword;
$ip = !isset($ip) ? '' : $ip;
$tl = new TypeLink($typeid);
$openarray = $tl->GetOptionArray($typeid, $admin_catalogs, 0);
$addsql = $typeid != 0 ? " And typeid in (" . GetSonIds($typeid) . ")" : '';
$addsql .= $aid != 0 ? " And aid={$aid} " : '';
$addsql .= $ip != '' ? " And ip like '{$ip}' " : '';
$querystring = "select * from `#@__feedback` where msg like '%{$keyword}%' {$addsql} order by dtime desc";
$dlist = new DataListCP();
$dlist->pageSize = 15;
$dlist->SetParameter('aid', $aid);
$dlist->SetParameter('ip', $ip);
$dlist->SetParameter('typeid', $typeid);
$dlist->SetParameter('keyword', $keyword);
$dlist->SetTemplate(DEDEADMIN . '/templets/feedback_main.htm');
$dlist->SetSource($querystring);
$dlist->Display();
}
}
}
$dsql->SetQuery("SELECT id,classname,pid,rank FROM #@__story_catalog ORDER BY rank asc");
$dsql->Execute();
$ranks = array();
$btypes = array();
$stypes = array();
while ($row = $dsql->GetArray()) {
if ($row['pid'] == 0) {
$btypes[$row['id']] = $row['classname'];
} else {
$stypes[$row['pid']][$row['id']] = $row['classname'];
}
$ranks[$row['id']] = $row['rank'];
}
$addquery = "";
$orderby = " order by b.bid desc ";
if ($catid != 0) {
$addquery .= " And (b.bcatid='{$catid}' Or b.catid='{$catid}') ";
}
if ($keyword != "") {
$addquery .= " And (b.bookname like '%{$keyword}%' Or b.author like '%{$keyword}%') ";
}
$query = "\r\n SELECT b.bid,b.catid,b.bookname,b.booktype,b.litpic,b.postnum,b.senddate,b.ischeck, c.id AS cid,c.classname FROM #@__story_books b\r\n LEFT JOIN #@__story_catalog c on c.id = b.catid WHERE mid={$cfg_ml->M_ID} AND b.bid>0 {$addquery} {$orderby}\r\n";
$dlist = new DataListCP();
$dlist->pageSize = 20;
$dlist->SetParameter("keyword", $keyword);
$dlist->SetParameter("catid", $cid);
$dlist->SetParameter("orderby", $orderby);
$dlist->SetTemplate(dirname(__FILE__) . "/templets/book/story_books.htm");
$dlist->SetSource($query);
$dlist->Display();
$dlist->Close();
}
$typename = ConvertStr($row['typename']);
//当前栏目下级分类
$dsql->SetQuery("Select id,typename From `#@__arctype` where reid='{$id}' And channeltype=1 And ishidden=0 And ispart<>2 order by sortrank");
$dsql->Execute();
while ($row = $dsql->GetObject()) {
$channellistnext .= "<a href='wap.php?action=list&id={$row->id}'>" . ConvertStr($row->typename) . "</a> ";
}
//栏目内容(分页输出)
$sids = GetSonIds($id, 1, true);
$varlist = "cfg_webname,typename,channellist,channellistnext,cfg_templeturl";
ConvertCharset($varlist);
$dlist = new DataListCP();
$dlist->SetTemplet($cfg_templets_dir . "/wap/list.wml");
$dlist->pageSize = 10;
$dlist->SetParameter("action", "list");
$dlist->SetParameter("id", $id);
$dlist->SetSource("Select id,title,pubdate,click From `#@__archives` where typeid in({$sids}) And arcrank=0 order by id desc");
$dlist->Display();
exit;
} else {
if ($action == 'article') {
//文档信息
$query = "\r\n\t Select tp.typename,tp.ishidden,arc.typeid,arc.title,arc.arcrank,arc.pubdate,arc.writer,arc.click,addon.body From `#@__archives` arc \r\n\t left join `#@__arctype` tp on tp.id=arc.typeid\r\n\t left join `#@__addonarticle` addon on addon.aid=arc.id\r\n\t where arc.id='{$id}'\r\n\t";
$row = $dsql->GetOne($query, MYSQL_ASSOC);
foreach ($row as $k => $v) {
${$k} = $v;
}
unset($row);
$pubdate = strftime("%y-%m-%d %H:%M:%S", $pubdate);
if ($arcrank != 0) {
require_once DEDEINC . "/datalistcp.class.php";
setcookie("ENV_GOBACK_URL", $dedeNowurl, time() + 3600, "/");
$menutype = 'content';
$keyword = empty($keyword) ? '' : FilterSearch($keyword);
$addsql = " where mid='" . $cfg_ml->M_ID . "' AND title LIKE '%{$keyword}%' ";
if (empty($mediatype)) {
$mediatype = 0;
}
$mediatype = intval($mediatype);
if ($mediatype > 0) {
$addsql .= " AND mediatype='{$mediatype}' ";
}
$sql = "SELECT * FROM `#@__uploads` {$addsql} ORDER BY aid DESC";
$dlist = new DataListCP();
$dlist->pageSize = 5;
$dlist->SetParameter("mediatype", $mediatype);
$dlist->SetParameter("keyword", $keyword);
$dlist->SetTemplate(DEDEMEMBER . "/templets/uploads.htm");
$dlist->SetSource($sql);
$dlist->Display();
function MediaType($tid, $nurl)
{
if ($tid == 1) {
return "图片";
} else {
if ($tid == 2) {
return "FLASH";
} else {
if ($tid == 3) {
return "视频/音频";
} else {
$dquery = " WHERE " . $dquery;
}
$dsql->ExecuteNoneQuery("DELETE FROM #@__moneycard_record {$dquery}");
ShowMsg("成功删除指定的记录!", "cards_manage.php");
exit;
} else {
$addsql = '';
if (isset($isexp)) {
$addsql = " WHERE isexp='{$isexp}' ";
}
$sql = "SELECT * FROM #@__moneycard_record {$addsql} ORDER BY aid DESC";
$dlist = new DataListCP();
$dlist->pageSize = 25;
//设定每页显示记录数(默认25条)
if (isset($isexp)) {
$dlist->SetParameter("isexp", $isexp);
}
$dlist->dsql->SetQuery("SELECT * FROM #@__moneycard_type ");
$dlist->dsql->Execute('ts');
while ($rw = $dlist->dsql->GetArray('ts')) {
$TypeNames[$rw['tid']] = $rw['pname'];
}
$tplfile = DEDEADMIN . "/templets/cards_manmage.htm";
//这两句的顺序不能更换
$dlist->SetTemplate($tplfile);
//载入模板
$dlist->SetSource($sql);
//设定查询SQL
$dlist->Display();
//显示
}
* @package DedeCMS.Administrator
* @copyright Copyright (c) 2007 - 2010, DesDev, Inc.
* @license http://help.dedecms.com/usersguide/license.html
* @link http://www.dedecms.com
*/
require_once dirname(__FILE__) . "/config.php";
require_once DEDEINC . "/datalistcp.class.php";
setcookie("ENV_GOBACK_URL", $dedeNowurl, time() + 3600, "/");
if (empty($keywords)) {
$keywords = "";
}
$sql = "SELECT * FROM #@__keywords ORDER BY rank DESC";
$dlist = new DataListCP();
$dlist->SetTemplate(DEDEADMIN . "/templets/article_keywords_select.htm");
$dlist->pageSize = 300;
$dlist->SetParameter("f", $f);
$dlist->SetSource($sql);
$dlist->Display();
function GetSta($sta)
{
if ($sta == 1) {
return "正常";
} else {
return "<font color='red'>禁用</font>";
}
}
function GetMan($sta)
{
if ($sta == 1) {
return "<u>禁用</u>";
} else {
$keywords = preg_replace("#[\"\r\n\t\\*\\?\\(\\)\$%']#", " ", trim($keywords));
$keywords = addslashes($keywords);
$addsql = "WHERE gid='{$id}' AND closed='0' ";
if ($typeid > 0) {
$addsql .= "AND smalltype='{$typeid}' ";
}
if (!empty($keywords)) {
$addsql .= "AND subject like '%" . $keywords . "%' ";
}
function _get_smalltype($id, $_field = 'name')
{
global $db;
$row = $db->GetOne("SELECT `id`,`name` FROM `#@__group_smalltypes` WHERE id='{$id}'");
if (isset($row[$_field])) {
return '[' . $row[$_field] . ']';
}
}
static $row_fields = false;
$sql = "SELECT tid,subject,digest,displayorder,replies,lastpost,lastposter,smalltype,author,views FROM #@__group_threads {$addsql} ORDER BY displayorder DESC, lastpost DESC";
$dl = new DataListCP();
$dl->pageSize = 20;
$dl->SetParameter('id', $id);
$dl->SetParameter("keywords", $keywords);
$dl->SetParameter("typeid", $typeid);
//这两句的顺序不能更换
$dl->SetTemplate(GROUP_TPL . '/groupdisplay.html');
//载入模板
$dl->SetSource($sql);
//设定查询SQL
$dl->Display();
//显示
$wheresql .= " AND closed=1";
}
if (!empty($keyword)) {
$wheresql .= " AND subject like '%" . $keyword . "%'";
}
if (!empty($username)) {
$wheresql .= " AND (author like '%" . $username . "%' OR lastposter like '%" . $username . "%')";
}
if ($orders == "rep") {
$sqlorders = "ORDER BY replies DESC,";
}
$sqlorders .= " dateline DESC";
$sql = "SELECT * FROM #@__group_threads {$wheresql} {$sqlorders}";
$dl = new DataListCP();
$dl->pageSize = 20;
$dl->SetParameter("username", $username);
$dl->SetParameter("orders", $orders);
$dl->SetParameter("keyword", $keyword);
//这两句的顺序不能更换
$dl->SetTemplate(DEDEADMIN . "/templets/group_threads.htm");
//载入模板
$dl->SetSource($sql);
//设定查询SQL
$dl->Display();
//显示
function GetGroupname($id)
{
global $db;
$rs = $db->GetOne("SELECT groupname FROM #@__groups WHERE groupid='" . $id . "'");
if (is_array($rs)) {
return $rs['groupname'];
//获得是否审核的表述
function IsChecklog($ischeck)
{
$s = '';
$s = $ischeck == '1' ? "<font color=blue>已审核</font>" : "<font color=red>未审核</font>";
return $s;
}
function JstrimJajxLog($str, $len)
{
$str = cn_substr($str, $len);
$str = str_replace(''', '"', $str);
$str = str_replace('<', '<', $str);
$str = str_replace('>', '>', $str);
return $str;
}
$row = $dsql->GetOne("SELECT COUNT({$id}) AS dd FROM {$table}");
$totalnum = $row['dd'];
$rows = $dsql->GetOne("SELECT COUNT({$id}) AS dd FROM {$table} WHERE ischeck=1");
$checknum = $rows['dd'];
$rowss = $dsql->GetOne("SELECT COUNT({$id}) AS dd FROM {$table} WHERE ischeck=0");
$ischecknum = $rowss['dd'];
$sql = "SELECT * FROM {$table} WHERE 1=1 {$where} ORDER BY dtime DESC";
$dlist = new DataListCP();
$dlist->pageSize = 20;
$dlist->SetParameter("type", $type);
$dlist->SetParameter("totalnum", $totalnum);
$dlist->SetParameter("checknum", $checknum);
$dlist->SetParameter("ischecknum", $ischecknum);
$dlist->SetTemplate($tpl);
$dlist->SetSource($sql);
$dlist->Display();
if (!isset($username)) {
$username = '';
}
if (!empty($username)) {
$wheresql .= " AND creater like '%" . $username . "%'";
}
if (!isset($store)) {
$store = -1;
}
if ($store > 0) {
$wheresql .= " AND (storeid='" . $store . "' OR rootstoreid='" . $store . "')";
}
$sql = "SELECT * FROM #@__groups {$wheresql} ORDER BY stime DESC";
$dl = new DataListCP();
$dl->pageSize = 20;
$dl->SetParameter("username", $username);
$dl->SetParameter("store", $store);
$dl->SetParameter("keyword", $keyword);
//这两句的顺序不能更换
$dl->SetTemplate(DEDEADMIN . "/templets/group_main.htm");
//载入模板
$dl->SetSource($sql);
//设定查询SQL
$dl->Display();
//显示
function GetGroupstore($id)
{
global $db;
$row = $db->GetOne("SELECT storename,tops FROM #@__store_groups WHERE storeid='{$id}'");
if (is_array($row)) {
$store = $row['storename'];
$dlist->SetParameter("uid", $_vars['userid']);
$dlist->SetParameter("action", $action);
$dlist->SetTemplate(DEDEMEMBER . "/space/{$_vars['spacestyle']}/listalbum.htm");
$dlist->SetSource($query);
$dlist->Display();
exit;
} else {
if ($action == 'guestbook') {
if (empty($mtype)) {
$mtype = 0;
}
include_once DEDEINC . '/datalistcp.class.php';
$query = "SELECT mg.*,mb.face,mb.userid,mb.sex From `#@__member_guestbook` mg \n left join `#@__member` mb on mb.userid=mg.gid \n where mg.mid='{$_vars['mid']}' order by mg.aid desc";
$dlist = new DataListCP();
$dlist->pageSize = 10;
$dlist->SetParameter("uid", $_vars['userid']);
$dlist->SetParameter("action", $action);
$dlist->SetTemplate(DEDEMEMBER . "/space/{$_vars['spacestyle']}/guestbook.htm");
$dlist->SetSource($query);
$dlist->Display();
exit;
} else {
if ($action == 'friend') {
if (empty($mtype)) {
$mtype = 0;
}
include_once DEDEINC . '/arc.memberlistview.class.php';
include_once DEDEINC . '/channelunit.func.php';
$query = "SELECT arc.*,tp.typedir,tp.typename,tp.isdefault,tp.defaultname,tp.namerule,tp.namerule2,tp.ispart,tp.moresite,tp.siteurl,tp.sitepath\n from `#@__archives` arc\n left join `#@__arctype` tp on arc.typeid=tp.id\n where arc.mid='{$_vars['mid']}' {$addqSql} order by arc.id desc";
$dlist = new MemberListview();
$dlist->pageSize = 8;
$whereSql = "WHERE folder='{$folder}'";
}
$postuser = "******";
if ($folder == "inbox" || $folder == '') {
$postuser = "******";
}
if (!empty($keyword)) {
$whereSql .= " AND (subject like '%" . $keyword . "%' OR message like '%" . $keyword . "%')";
}
if (!empty($username)) {
$whereSql .= " AND floginid like '%" . $username . "%'";
}
$sql = "SELECT * FROM #@__member_pms {$whereSql} ORDER BY sendtime desc";
$dlist = new DataListCP();
$dlist->pagesize = 25;
$dlist->SetParameter("folder", $folder);
$dlist->SetParameter("username", $username);
$dlist->SetParameter("keyword", $keyword);
$dlist->SetTemplate(DEDEADMIN . "/templets/member_pm.htm");
$dlist->SetSource($sql);
$dlist->Display();
$dlist->Close();
function GetFolders($me)
{
if ($me == "outbox") {
return '发件箱';
} else {
if ($me == "inbox") {
return '收件箱';
}
}
$query = "INSERT INTO `{$diy->table}` (`id`, `ifcheck` {$addvar}) VALUES (NULL, 0 {$addvalue})";
if ($dsql->ExecuteNoneQuery($query)) {
$goto = "diy_list.php?action=list&diyid={$diy->diyid}";
showmsg('发布成功', $goto);
} else {
showmsg('对不起,发布不成功', '-1');
}
}
}
} else {
if ($action == 'list') {
include_once DEDEINC . '/datalistcp.class.php';
$query = "SELECT * FROM {$diy->table} ORDER BY id DESC";
$datalist = new DataListCP();
$datalist->pageSize = 10;
$datalist->SetParameter('action', 'list');
$datalist->SetParameter('diyid', $diyid);
$datalist->SetTemplate(DEDEADMIN . '/templets/diy_list.htm');
$datalist->SetSource($query);
$fieldlist = $diy->getFieldList();
$datalist->Display();
} else {
if ($action == 'edit') {
if (empty($do)) {
$id = isset($id) && is_numeric($id) ? $id : 0;
if (empty($id)) {
showMsg('非法操作!未指定id', 'javascript:;');
exit;
}
$query = "SELECT * FROM {$diy->table} WHERE id={$id}";
$row = $dsql->GetOne($query);
}
ShowMsg("{$msg}", "-1");
exit;
} else {
if ($action = "join") {
$row = $db->GetOne("SELECT isjoin FROM #@__group_user WHERE uid='{$uid}' AND gid='{$id}' AND isjoin='0'");
if (is_array($row)) {
$db->ExecuteNoneQuery("UPDATE #@__group_user SET isjoin='1' WHERE uid='{$uid}' AND gid='{$id}'");
}
}
}
}
$sql = "SELECT * FROM #@__group_user WHERE gid='{$id}' ORDER BY jointime DESC";
$dl = new DataListCP();
$dl->pageSize = 20;
$dl->SetParameter("id", $id);
$dl->SetParameter("gid", $gid);
//这两句的顺序不能更换
$dl->SetTemplate(_SYSTEM_ . "/mygroup_member.htm");
//载入模板
$dl->SetSource($sql);
//设定查询SQL
$dl->Display();
//显示
function filter($var)
{
return $var == '' ? false : true;
}
function GetMaster($user)
{
global $ismaster;
}
if ($matt != 10) {
$wheres[] = " matt= '{$matt}' ";
}
$whereSql = join(' AND ', $wheres);
if ($whereSql != '') {
$whereSql = ' WHERE ' . $whereSql;
}
$dsql->SetQuery("SELECT name FROM `#@__member_model`");
$dsql->Execute();
while ($row = $dsql->GetArray()) {
$MemberModels[] = $row;
}
$sql = "SELECT * FROM `#@__member` {$whereSql} ORDER BY {$sortkey} DESC ";
$dlist = new DataListCP();
$dlist->SetParameter('sex', $sex);
$dlist->SetParameter('spacesta', $spacesta);
$dlist->SetParameter('matt', $matt);
$dlist->SetParameter('mtype', $mtype);
$dlist->SetParameter('sortkey', $sortkey);
$dlist->SetParameter('keyword', $keyword);
$dlist->SetTemplet(DEDEADMIN . "/templets/member_main.htm");
$dlist->SetSource($sql);
$dlist->display();
function GetMemberName($rank, $mt)
{
global $MemberTypes;
if (isset($MemberTypes[$rank])) {
if ($mt == 'ut') {
return " <font color='red'>待升级:" . $MemberTypes[$rank] . "</font>";
} else {
$minp = $place - 1;
$maxp = $place + 500;
$addsqls[] = " mp.place>'{$minp}' And mp.place<'{$maxp}' ";
}
}
if ($sex != '') {
$addsqls[] = " mp.sex = '{$sex}' ";
}
if ($minage != 0) {
$addsqls[] = " YEAR(CURDATE())-YEAR(mp.birthday)>='{$minage}' ";
}
if ($maxage != 0) {
$addsqls[] = " YEAR(CURDATE())-YEAR(mp.birthday)<='{$maxage}' ";
}
$addsqls_str = join(' And ', $addsqls);
if ($addsqls_str != '') {
$addsqls_str = ' And ' . $addsqls_str;
}
$addsql = " WHERE mb.spacesta > -1 " . $addsqls_str;
$query = "SELECT mb.*,mp.place,YEAR(CURDATE())-YEAR(mp.birthday) AS age,mp.lovemsg,mp.birthday FROM `#@__member` mb\r\nLEFT JOIN `#@__member_person` mp ON mp.mid = mb.mid\r\n{$addsql} ORDER BY mb.logintime DESC";
$dlist = new DataListCP();
$dlist->pageSize = 8;
$dlist->SetParameter('keyword', $keyword);
$dlist->SetParameter('province', $province);
$dlist->SetParameter('city', $city);
$dlist->SetParameter('minage', $minage);
$dlist->SetParameter('maxage', $maxage);
$dlist->SetParameter('sex', $sex);
$dlist->SetTemplate(DEDEMEMBER . '/templets/search.htm');
$dlist->SetSource($query);
$dlist->Display();
