member_toadmin.php
4.12 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
<?php
/**
* 升级为管理员
*
* @version $Id: member_toadmin.php 1 14:09 2010年7月20日Z tianya $
* @package DedeCMS.Administrator
* @copyright Copyright (c) 2007 - 2010, DesDev, Inc.
* @license http://help.dedecms.com/usersguide/license.html
* @link http://www.dedecms.com
*/
require_once(dirname(__FILE__)."/config.php");
CheckPurview('member_Edit');
if(empty($dopost)) $dopost = '';
if(empty($fmdo)) $fmdo = '';
$ENV_GOBACK_URL = isset($_COOKIE['ENV_GOBACK_URL']) ? 'member_main.php' : '';
$row = array();
/*----------------
function __Toadmin()
升级为管理员
----------------*/
if($dopost == "toadmin")
{
$pwd = trim($pwd);
if($pwd!='' && preg_match("#[^0-9a-zA-Z_@!\.-]#", $pwd))
{
ShowMsg('密码不合法,请使用[0-9a-zA-Z_@!.-]内的字符!','-1', 0, 3000);
exit();
}
$safecodeok = substr(md5($cfg_cookie_encode.$randcode), 0, 24);
if($safecodeok != $safecode)
{
ShowMsg("请填写正确的安全验证串!", "member_toadmin.php?id={$id}");
exit();
}
$pwdm = '';
if($pwd!='')
{
$inputpwd = ",pwd";
$inputpwdv = ",'".substr(md5($pwd), 5, 20)."'";
$pwdm = ",pwd='".md5($pwd)."'";
}else{
$row = $dsql->GetOne("SELECT * FROM #@__member WHERE mid='$id'");
$password = $row['pwd'];
$inputpwd = ",pwd";
$pwd = substr($password, 5, 20);
$inputpwdv = ",'".$pwd."'";
$pwdm = ",pwd='".$password."'";
}
$typeids=(empty($typeids))? "" : $typeids;
if($typeids=='')
{
ShowMsg("请为该管理员指定管理栏目!","member_toadmin.php?id={$id}");
exit();
}
$typeid = join(',', $typeids);
if($typeid=='0') $typeid = '';
if($id!=1)
{
$query = "INSERT INTO `#@__admin`(id,usertype,userid$inputpwd,uname,typeid,tname,email)
VALUES('$id','$usertype','$userid'$inputpwdv,'$uname','$typeid','$tname','$email')";
}
else
{
$query = "INSERT INTO `#@__admin`(id,userid$inputpwd,uname,typeid,tname,email)
VALUES('$id','$userid'$inputpwdv,'$uname','$typeid','$tname','$email')";
}
$dsql->ExecuteNoneQuery($query);
$query = "UPDATE `#@__member` SET rank='100',uname='$uname',matt='10',email='$email'$pwdm WHERE mid='$id'";
$dsql->ExecuteNoneQuery($query);
$row = $dsql->GetOne("SELECT * FROM #@__admintype WHERE rank='$usertype'");
$floginid = $cuserLogin->getUserName();
$fromid = $cuserLogin->getUserID();
$subject = "恭喜您已经成功提升为管理员";
$message = "亲爱的会员{$userid},您已经成功提升为{$row['typename']},具体操作权限请同网站超级管理员联系。";
$sendtime = $writetime = time();
$inquery = "INSERT INTO `#@__member_pms` (`floginid`,`fromid`,`toid`,`tologinid`,`folder`,`subject`,`sendtime`,`writetime`,`hasview`,`isadmin`,`message`)
VALUES ('$floginid','$fromid','$id','$userid','inbox','$subject','$sendtime','$writetime','0','0','$message'); ";
$dsql->ExecuteNoneQuery($inquery);
ShowMsg("成功升级一个帐户!","member_main.php");
exit();
}
$id = preg_replace("#[^0-9]#", "", $id);
//显示用户信息
$randcode = mt_rand(10000, 99999);
$safecode = substr(md5($cfg_cookie_encode.$randcode), 0, 24);
$typeOptions = '';
$typeid=(empty($typeid))? '' : $typeid;
$typeids = explode(',', $typeid);
$dsql->SetQuery("SELECT id,typename FROM `#@__arctype` WHERE reid=0 AND (ispart=0 OR ispart=1)");
$dsql->Execute('op');
while($nrow = $dsql->GetObject('op'))
{
$typeOptions .= "<option value='{$nrow->id}' class='btype'".(in_array($nrow->id, $typeids) ? ' selected' : '').">{$nrow->typename}</option>\r\n";
$dsql->SetQuery("SELECT id,typename FROM #@__arctype WHERE reid={$nrow->id} AND (ispart=0 OR ispart=1)");
$dsql->Execute('s');
while($nrow = $dsql->GetObject('s'))
{
$typeOptions .= "<option value='{$nrow->id}' class='stype'".(in_array($nrow->id, $typeids) ? ' selected' : '').">—{$nrow->typename}</option>\r\n";
}
}
$row = $dsql->GetOne("SELECT * FROM #@__member WHERE mid='$id'");
include DedeInclude('templets/member_toadmin.htm');