Home Explore Help
Register Sign In
chenhao
/
leyu_admin
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: cf02c58cc1
Branches Tags
leyu_admin
/
admin
/
member_do.php

member_do.php 12 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288 
  1. <?php
    2. 

  2. /**
    3. 

  3.  * 会员管理操作
    4. 

  4.  *
    5. 

  5.  * @version        $Id: member_do.php 1 13:47 2010年7月19日Z tianya $
    6. 

  6.  * @package        DedeCMS.Administrator
    7. 

  7.  * @copyright      Copyright (c) 2007 - 2010, DesDev, Inc.
    8. 

  8.  * @license        http://help.dedecms.com/usersguide/license.html
    9. 

  9.  * @link           http://www.dedecms.com
    10. 

  10.  */
    11. 

  11. require_once(dirname(__FILE__)."/config.php");
    12. 

  12. require_once(DEDEINC."/oxwindow.class.php");
    13. 

  13. if(empty($dopost)) $dopost = '';
    14. 

  14. if(empty($fmdo)) $fmdo = '';
    15. 

  15. $ENV_GOBACK_URL = isset($_COOKIE['ENV_GOBACK_URL']) ? 'member_main.php' : '';
    16. 

  16. 

  17. /*----------------
    18. 

  18. function __DelMember()
    19. 

  19. 删除会员
    20. 

  20. ----------------*/
    21. 

  21. if($dopost=="delmember")
    22. 

  22. {
    23. 

  23.     CheckPurview('member_Del');
    24. 

  24.     if($fmdo=='yes')
    25. 

  25.     {
    26. 

  26.         $id = preg_replace("#[^0-9]#", '', $id);
    27. 

  27.         $safecodeok = substr(md5($cfg_cookie_encode.$randcode),0,24);
    28. 

  28.         if($safecodeok!=$safecode)
    29. 

  29.         {
    30. 

  30.             ShowMsg("请填写正确的安全验证串!","member_do.php?id={$id}&dopost=delmember");
    31. 

  31.             exit();
    32. 

  32.         }
    33. 

  33.         if(!empty($id))
    34. 

  34.         {
    35. 

  35.             //删除用户信息
    36. 

  36.             $row = $dsql->GetOne("SELECT * FROM `#@__member` WHERE mid='$id' LIMIT 1 ");
    37. 

  37.             $rs = 0;
    38. 

  38.             if($row['matt'] == 10)
    39. 

  39.             {
    40. 

  40.                 $nrow = $dsql->GetOne("SELECT * FROM `#@__admin` WHERE id='$id' LIMIT 1 ");
    41. 

  41.                 //已经删除关连的管理员帐号
    42. 

  42.                 if(!is_array($nrow)) $rs = $dsql->ExecuteNoneQuery2("DELETE FROM `#@__member` WHERE mid='$id' LIMIT 1");
    43. 

  43.             }
    44. 

  44.             else
    45. 

  45.             {
    46. 

  46.                 $rs = $dsql->ExecuteNoneQuery2("DELETE FROM `#@__member` WHERE mid='$id' LIMIT 1");
    47. 

  47.             }
    48. 

  48.             if($rs > 0)
    49. 

  49.             {
    50. 

  50.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_tj` WHERE mid='$id' LIMIT 1");
    51. 

  51.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_space` WHERE mid='$id' LIMIT 1");
    52. 

  52.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_company` WHERE mid='$id' LIMIT 1");
    53. 

  53.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_person` WHERE mid='$id' LIMIT 1");
    54. 

  54. 

  55.                 //删除用户相关数据
    56. 

  56.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_stow` WHERE mid='$id' ");
    57. 

  57.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_flink` WHERE mid='$id' ");
    58. 

  58.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_guestbook` WHERE mid='$id' ");
    59. 

  59.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_operation` WHERE mid='$id' ");
    60. 

  60.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_pms` WHERE toid='$id' Or fromid='$id' ");
    61. 

  61.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_friends` WHERE mid='$id' Or fid='$id' ");
    62. 

  62.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_vhistory` WHERE mid='$id' Or vid='$id' ");
    63. 

  63.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__feedback` WHERE mid='$id' ");
    64. 

  64.                 $dsql->ExecuteNoneQuery("UPDATE `#@__archives` SET mid='0' WHERE mid='$id'");
    65. 

  65.                 #api{{
    66. 

  66.                 if(defined('UC_API') && @include_once DEDEROOT.'/uc_client/client.php')    {
    67. 

  67.             $infofromuc=uc_get_user($row['userid']);
    68. 

  68.           uc_user_delete($infofromuc[0]);
    69. 

  69.         }
    70. 

  70.                 #/aip}}
    71. 

  71.             }
    72. 

  72.             else
    73. 

  73.             {
    74. 

  74.                 ShowMsg("无法删除此会员,如果这个会员是<b>[管理员]</b>,<br />必须先删除这个<b>[管理员]</b>才能删除此帐号!", $ENV_GOBACK_URL, 0, 5000);
    75. 

  75.                 exit();
    76. 

  76.             }
    77. 

  77.         }
    78. 

  78.         ShowMsg("成功删除一个会员!",$ENV_GOBACK_URL);
    79. 

  79.         exit();
    80. 

  80.     }
    81. 

  81.     $randcode = mt_rand(10000,99999);
    82. 

  82.     $safecode = substr(md5($cfg_cookie_encode.$randcode),0,24);
    83. 

  83.     $wintitle = "会员管理-删除会员";
    84. 

  84.     $wecome_info = "<a href='".$ENV_GOBACK_URL."'>会员管理</a>::删除会员";
    85. 

  85.     $win = new OxWindow();
    86. 

  86.     $win->Init("member_do.php","js/blank.js","POST");
    87. 

  87.     $win->AddHidden("fmdo","yes");
    88. 

  88.     $win->AddHidden("dopost",$dopost);
    89. 

  89.     $win->AddHidden("id",$id);
    90. 

  90.     $win->AddHidden("randcode",$randcode);
    91. 

  91.     $win->AddHidden("safecode",$safecode);
    92. 

  92.     $win->AddTitle("你确实要删除(ID:".$id.")这个会员?");
    93. 

  93.     $win->AddMsgItem("安全验证串:<input name='safecode' type='text' id='safecode' size='16' style='width:200px' />&nbsp;(复制本代码: <font color='red'>$safecode</font> )","30");
    94. 

  94.     $winform = $win->GetWindow("ok");
    95. 

  95.     $win->Display();
    96. 

  96. }else if($dopost=="delmembers"){
    97. 

  97.     CheckPurview('member_Del');
    98. 

  98.     if($fmdo=='yes')
    99. 

  99.     {
    100. 

  100.         $safecodeok = substr(md5($cfg_cookie_encode.$randcode),0,24);
    101. 

  101.         if($safecodeok!=$safecode)
    102. 

  102.         {
    103. 

  103.             ShowMsg("请填写正确的安全验证串!","member_do.php?id={$id}&dopost=delmembers");
    104. 

  104.             exit();
    105. 

  105.         }
    106. 

  106.         if(!empty($id))
    107. 

  107.         {
    108. 

  108.             //删除用户信息
    109. 

  109.             
    110. 

  110.             $rs = $dsql->ExecuteNoneQuery2("DELETE FROM `#@__member` WHERE mid IN (".str_replace("`",",",$id).") And matt<>10 ");    
    111. 

  111.             if($rs > 0)
    112. 

  112.             {
    113. 

  113.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_tj` WHERE mid IN (".str_replace("`",",",$id).") ");
    114. 

  114.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_space` WHERE mid IN (".str_replace("`",",",$id).") ");
    115. 

  115.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_company` WHERE mid IN (".str_replace("`",",",$id).") ");
    116. 

  116.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_person` WHERE mid IN (".str_replace("`",",",$id).") ");
    117. 

  117. 

  118.                 //删除用户相关数据
    119. 

  119.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_stow` WHERE mid IN (".str_replace("`",",",$id).") ");
    120. 

  120.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_flink` WHERE mid IN (".str_replace("`",",",$id).") ");
    121. 

  121.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_guestbook` WHERE mid IN (".str_replace("`",",",$id).") ");
    122. 

  122.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_operation` WHERE mid IN (".str_replace("`",",",$id).") ");
    123. 

  123.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_pms` WHERE toid IN (".str_replace("`",",",$id).") Or fromid IN (".str_replace("`",",",$id).") ");
    124. 

  124.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_friends` WHERE mid IN (".str_replace("`",",",$id).") Or fid IN (".str_replace("`",",",$id).") ");
    125. 

  125.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_vhistory` WHERE mid IN (".str_replace("`",",",$id).") Or vid IN (".str_replace("`",",",$id).") ");
    126. 

  126.                 $dsql->ExecuteNoneQuery("DELETE FROM `#@__feedback` WHERE mid IN (".str_replace("`",",",$id).") ");
    127. 

  127.                 $dsql->ExecuteNoneQuery("UPDATE `#@__archives` SET mid='0' WHERE mid IN (".str_replace("`",",",$id).")");
    128. 

  128.             }
    129. 

  129.             else
    130. 

  130.             {
    131. 

  131.                 ShowMsg("无法删除此会员,如果这个会员是管理员关连的ID,<br />必须先删除这个管理员才能删除此帐号!",$ENV_GOBACK_URL,0,3000);
    132. 

  132.                 exit();
    133. 

  133.             }
    134. 

  134.         }
    135. 

  135.         ShowMsg("成功删除这些会员!",$ENV_GOBACK_URL);
    136. 

  136.         exit();
    137. 

  137.     }
    138. 

  138.     $randcode = mt_rand(10000, 99999);
    139. 

  139.     $safecode = substr(md5($cfg_cookie_encode.$randcode), 0, 24);
    140. 

  140.     $wintitle = "会员管理-删除会员";
    141. 

  141.     $wecome_info = "<a href='".$ENV_GOBACK_URL."'>会员管理</a>::删除会员";
    142. 

  142.     $win = new OxWindow();
    143. 

  143.     $win->Init("member_do.php", "js/blank.js", "POST");
    144. 

  144.     $win->AddHidden("fmdo", "yes");
    145. 

  145.     $win->AddHidden("dopost", $dopost);
    146. 

  146.     $win->AddHidden("id",$id);
    147. 

  147.     $win->AddHidden("randcode", $randcode);
    148. 

  148.     $win->AddHidden("safecode", $safecode);
    149. 

  149.     $win->AddTitle("你确实要删除(ID:".$id.")这个会员?");
    150. 

  150.     $win->AddMsgItem(" 安全验证串:<input name='safecode' type='text' id='safecode' size='16' style='width:200px' /> (复制本代码: <font color='red'>$safecode</font>)","30");
    151. 

  151.     $winform = $win->GetWindow("ok");
    152. 

  152.     $win->Display();
    153. 

  153. }
    154. 

  154. /*----------------
    155. 

  155. function __Recommend()
    156. 

  156. 推荐会员
    157. 

  157. ----------------*/
    158. 

  158. else if ($dopost=="recommend")
    159. 

  159. {
    160. 

  160.     CheckPurview('member_Edit');
    161. 

  161.     $id = preg_replace("#[^0-9]#", "", $id);
    162. 

  162.     if($matt==0)
    163. 

  163.     {
    164. 

  164.         $dsql->ExecuteNoneQuery("UPDATE `#@__member` SET matt=1 WHERE mid='$id' AND matt<>10 LIMIT 1");
    165. 

  165.         ShowMsg("成功设置一个会员推荐!",$ENV_GOBACK_URL);
    166. 

  166.         exit();
    167. 

  167.     }
    168. 

  168.     else
    169. 

  169.     {
    170. 

  170.         $dsql->ExecuteNoneQuery("UPDATE `#@__member` SET matt=0 WHERE mid='$id' AND matt<>10 LIMIT 1");
    171. 

  171.         ShowMsg("成功取消一个会员推荐!",$ENV_GOBACK_URL);
    172. 

  172.         exit();
    173. 

  173.     }
    174. 

  174. }
    175. 

  175. /*----------------
    176. 

  176. function __EditUser()
    177. 

  177. 更改会员
    178. 

  178. ----------------*/
    179. 

  179. else if ($dopost=='edituser')
    180. 

  180. {
    181. 

  181.     CheckPurview('member_Edit');
    182. 

  182.     if(!isset($_POST['id'])) exit('Request Error!');
    183. 

  183.     $pwdsql = empty($pwd) ? '' : ",pwd='".md5($pwd)."'";
    184. 

  184.     if(empty($sex)) $sex = '男';
    185. 

  185.     $uptime=GetMkTime($uptime);
    186. 

  186.     
    187. 

  187.     if($matt==10 && $oldmatt!=10)
    188. 

  188.     {
    189. 

  189.         ShowMsg("对不起,为安全起见,不支持直接把前台会员转为管理的操作!", "-1");
    190. 

  190.         exit();
    191. 

  191.     }    
    192. 

  192.     $query = "UPDATE `#@__member` SET
    193. 

  193.             email = '$email',
    194. 

  194.             uname = '$uname',
    195. 

  195.             sex = '$sex',
    196. 

  196.             matt = '$matt',
    197. 

  197.             money = '$money',
    198. 

  198.             scores = '$scores',
    199. 

  199.             rank = '$rank',
    200. 

  200.             spacesta='$spacesta',
    201. 

  201.             uptime='$uptime',
    202. 

  202.             exptime='$exptime'
    203. 

  203.             $pwdsql
    204. 

  204.             WHERE mid='$id' AND matt<>10 ";
    205. 

  205.     $rs = $dsql->ExecuteNoneQuery2($query);
    206. 

  206.     if($rs==0)
    207. 

  207.     {
    208. 

  208.         $query = "UPDATE `#@__member` SET
    209. 

  209.             email = '$email',
    210. 

  210.             uname = '$uname',
    211. 

  211.             sex = '$sex',
    212. 

  212.             money = '$money',
    213. 

  213.             scores = '$scores',
    214. 

  214.             rank = '$rank',
    215. 

  215.             spacesta='$spacesta',
    216. 

  216.             uptime='$uptime',
    217. 

  217.             exptime='$exptime'
    218. 

  218.             $pwdsql
    219. 

  219.             WHERE mid='$id' ";
    220. 

  220.             $rs = $dsql->ExecuteNoneQuery2($query);
    221. 

  221.     }
    222. 

  222.     
    223. 

  223.     #api{{
    224. 

  224.     if(defined('UC_API') && @include_once DEDEROOT.'/api/uc.func.php')
    225. 

  225.     {
    226. 

  226.         $row = $dsql->GetOne("SELECT `scores`,`userid` FROM `#@__member` WHERE `mid`='$id' AND `matt`<>10");
    227. 

  227.         $amount = $scores-$row['scores'];
    228. 

  228.         uc_credit_note($row['userid'],$amount);
    229. 

  229.     }
    230. 

  230.     #/aip}}
    231. 

  231.     
    232. 

  232.     ShowMsg('成功更改会员资料!', 'member_view.php?id='.$id);
    233. 

  233.     exit();
    234. 

  234. }
    235. 

  235. /*--------------
    236. 

  236. function __LoginCP()
    237. 

  237. 登录会员的控制面板
    238. 

  238. ----------*/
    239. 

  239. else if ($dopost=="memberlogin")
    240. 

  240. {
    241. 

  241.     CheckPurview('member_Edit');
    242. 

  242.     PutCookie('DedeUserID',$id,1800);
    243. 

  243.     PutCookie('DedeLoginTime',time(),1800);
    244. 

  244.     if(empty($jumpurl)) header("location:../member/index.php");
    245. 

  245.     else header("location:$jumpurl");
    246. 

  246. } else if ($dopost == "deoperations")
    247. 

  247. {
    248. 

  248.     $nid = preg_replace('#[^0-9,]#', '', preg_replace('#`#', ',', $nid));
    249. 

  249.     $nid = explode(',', $nid);
    250. 

  250.     if(is_array($nid))
    251. 

  251.     {
    252. 

  252.         foreach ($nid as $var)
    253. 

  253.         {
    254. 

  254.             $query = "DELETE FROM `#@__member_operation` WHERE aid = '$var'";
    255. 

  255.             $dsql->ExecuteNoneQuery($query);
    256. 

  256.         }
    257. 

  257.         ShowMsg("删除成功!","member_operations.php");
    258. 

  258.         exit();
    259. 

  259.     }
    260. 

  260. } else if ($dopost == "upoperations")
    261. 

  261. {
    262. 

  262.     $nid = preg_replace('#[^0-9,]#', '', preg_replace('#`#', ',', $nid));
    263. 

  263.     $nid = explode(',', $nid);
    264. 

  264.     if(is_array($nid))
    265. 

  265.     {
    266. 

  266.         foreach ($nid as $var)
    267. 

  267.         {
    268. 

  268.             $query = "UPDATE `#@__member_operation` SET sta = '1' WHERE aid = '$var'";
    269. 

  269.             $dsql->ExecuteNoneQuery($query);
    270. 

  270.             ShowMsg("设置成功!","member_operations.php");
    271. 

  271.             exit();
    272. 

  272.         }
    273. 

  273.     }
    274. 

  274. } else if($dopost == "okoperations")
    275. 

  275. {
    276. 

  276.     $nid = preg_replace('#[^0-9,]#', '', preg_replace('#`#', ',', $nid));
    277. 

  277.     $nid = explode(',', $nid);
    278. 

  278.     if(is_array($nid))
    279. 

  279.     {
    280. 

  280.         foreach ($nid as $var)
    281. 

  281.         {
    282. 

  282.             $query = "UPDATE `#@__member_operation` SET sta = '2' WHERE aid = '$var'";
    283. 

  283.             $dsql->ExecuteNoneQuery($query);
    284. 

  284.             ShowMsg("设置成功!","member_operations.php");
    285. 

  285.             exit();
    286. 

  286.         }
    287. 

  287.     }
    288. 

  288. }
    289.