/source/gl/dy/index.php

http://prosporous.googlecode.com/ · PHP · 762 lines · 674 code · 20 blank · 68 comment · 161 complexity · a8ff3fb0fd45447182ee7daeac5d4471 MD5 · raw file

  1. <?php
  2. /* * ??????UTF-8???.
  3. * Created on 2010-10-2
  4. *
  5. * @author EXT <isrn@qq.com>
  6. *
  7. */
  8. include ('../../includes/global.php');
  9. include ('../global.php');
  10. include ("../power.php");
  11. include ("../clas/ext.php");
  12. $plugurl = array();
  13. $plugjs = array();
  14. $fckplugin = '';
  15. function grv($type, $blm, $dvalue=false) {
  16. //print_r($type);
  17. if ($dvalue) {
  18. return $dvalue;
  19. } else {
  20. switch ($type) {
  21. case 'function': {
  22. $a = explode('#', $blm);
  23. return $a[0]($a[1]);
  24. break;
  25. }
  26. case '$_GET': {
  27. return $_GET[$blm];
  28. break;
  29. }
  30. case '$_SESSION': {
  31. return $_SESSION[$blm];
  32. break;
  33. }
  34. case '$_POST': {
  35. return $_POST[$blm];
  36. break;
  37. }
  38. case '$_COOKIE': {
  39. return $_COOKIE[$blm];
  40. break;
  41. }
  42. case '$_SERVER': {
  43. return $_SERVER[$blm];
  44. break;
  45. }
  46. case '$_ENV': {
  47. return $_ENV[$blm];
  48. break;
  49. }
  50. case '$_FILES': {
  51. return $_FILES[$blm];
  52. break;
  53. }
  54. case '0': {
  55. return $blm;
  56. break;
  57. }
  58. case '1': {
  59. break;
  60. }
  61. default: {
  62. return $blm;
  63. break;
  64. }
  65. }
  66. }
  67. }
  68. Tr('index.php', 'thisurl');
  69. Tr('??', 'thistitle');
  70. $tmpml = 'dy/';
  71. Tr($_GET['tid'], 'tid');
  72. Tr('5', 'pagenum');
  73. $paixu = array('zd' => 'id', 'order' => 'DESC');
  74. Tr($paixu, 'paixu');
  75. Tr($_GET['tid'], 'rightid');
  76. Tr($_REQUEST['lg'], 'lg');
  77. Tr($_REQUEST['bdid'], 'bdid');
  78. Tr($_REQUEST['bdtid'], 'bdtid');
  79. //$_SESSION['rcg']!='A'&&$_SESSION['rcg']['zdgxkey'][$_GET['tid']]=1;$_GET['tid']='105';$_POST['tid']='105';
  80. /* $showcf=array(
  81. 0=>array('title'=>'????','zd'=>array('tt','ct','pic1','input1','input2','ubb1'))Tr('106','rightid');
  82. );
  83. $listcf=array('show'=>array('tt','ct','pic1','input1','input2'),
  84. 'xnlist'=>array(
  85. array('id'=>451,'fname'=>'num','type'=>'input','name'=>'??','wd'=>100,'url'=>""),
  86. array('id'=>450,'fname'=>'yuding','type'=>'button','name'=>'??','wd'=>100,'url'=>"")
  87. ),
  88. 'gj'=>array('user','ct','usertype'),
  89. //'ss'=>'ct',//olny one
  90. //'pt'=>" and user like '".$_SESSION['userinfo']['user']."' ",//sql
  91. 'editdisble'=>array('tt','ct','pic1','input1','input2','ubb1'),
  92. //'zdgx'=>array('ct'),
  93. //'zdgxkey'=>array('ct'),
  94. 'save'=>array('user','ct'),
  95. 'zd'=>array('user','ct')
  96. );
  97. */
  98. switch ($_REQUEST['op']) {
  99. case 'list': {
  100. $_REQUEST['lg'] != '' && $condition = " and lg like '" . $_REQUEST['lg'] . "' ";
  101. $fldata = Dgd(array(
  102. 'db' => 'd_sevenel',
  103. 'cd' => "del!=1 and tid = '" . $_GET['tid'] . "' " . $condition . " order by px asc ",
  104. 'tn' => "fld"
  105. ));
  106. Tr($_GET['bdtid'], 'bdtid');
  107. Tr($_GET['bdid'], 'bdid');
  108. if (count($listcf['show']) > 0) {
  109. foreach ($fldata as $key => $v) {
  110. if (in_array($v['fname'], $listcf['show'])) {
  111. $xr[] = $v;
  112. }
  113. }
  114. } else {
  115. foreach ($fldata as $key => $v) {
  116. if ($v['xr'] == 0) {
  117. $xr[] = $v;
  118. }
  119. }
  120. }
  121. if (count($listcf['xnlist']) > 0) {
  122. foreach ($listcf['xnlist'] as $v) {
  123. $xr[] = $v;
  124. }
  125. }
  126. Tr($xr, 'xr');
  127. if (count($listcf['gj']) > 0) {
  128. foreach ($fldata as $key => $v) {
  129. if (in_array($v['fname'], $listcf['gj'])) {
  130. $gj[] = $v;
  131. }
  132. }
  133. } else {
  134. foreach ($fldata as $key => $v) {
  135. if ($v['gj'] == 1) {
  136. $gj[] = $v;
  137. }
  138. }
  139. }
  140. if ($gj != '') {
  141. foreach ($gj as $key => $value) { $js[] = EXT::GG($value['id']); }
  142. }
  143. Tr($ckbox, 'ckbox');
  144. Tr($js, 'js');
  145. $gj && Tr('1', 'gjright');
  146. if ($listcf['ss']) { Tr($listcf['ss'], 'titlesearch'); } else { Tr('title', 'titlesearch'); }
  147. $tree = Dgd(array(
  148. 'db' => 'd_sevenel',
  149. 'cd' => "del!=1 and id = '" . $_GET['tid'] . "' ",
  150. 'tn' => "tree",
  151. 'limit' => 1
  152. ));
  153. Tr($tree, 'tree');
  154. if ($tree['expand']) {
  155. $fstree = Dgd(array(
  156. 'db' => 'd_sevenel',
  157. 'cd' => "del!=1 and id in (0," . $tree['expand'] . ") ",
  158. 'tn' => "tree"
  159. )); }
  160. $fsstr = '';
  161. if ($fstree) {
  162. foreach ($fstree as $fsvalue) {
  163. $ttree = Dgd(array(
  164. 'db' => 'd_sevenel',
  165. 'cd' => "del!=1 and id = " . $fsvalue['id'] . "",
  166. 'tn' => "tree",
  167. 'limit' => '1'
  168. ));
  169. if ($ttree['config'] != '' && $ttree['config'] != '{"lg":""}') { $fsstr.=",{xtype:\"button\",text:\"??" . $fsvalue['title'] . "\",iconCls:\"fsadd\",pressed:true,handler:function(){
  170. var record = grid.getStore().getAt(rowIndex);
  171. fsadd('" . $fsvalue['id'] . "','" . $fsvalue['title'] . "',\"./dy/index.php?op=loaddata&tid=" . $fsvalue['id'] . "&bdtid=" . $_GET['tid'] . "&bdid=\",record.data.id); }}
  172. ,{xtype:\"button\",text:\"??" . $fsvalue['title'] . "\",iconCls:\"fslist\",pressed:true,handler:function(){
  173. var record = grid.getStore().getAt(rowIndex);
  174. fslist('" . $fsvalue['id'] . "','" . $fsvalue['title'] . "',\"./dy/index.php?tid=" . $fsvalue['id'] . "&bdtid=" . $_GET['tid'] . "&bdid=\",record.data.id);
  175. }}";
  176. } else {
  177. $fsstr.=",{xtype:\"button\",text:\"??" . $fsvalue['title'] . "\",iconCls:\"fsadd\",pressed:true,handler:function(){
  178. var record = grid.getStore().getAt(rowIndex);
  179. fsadd('" . $fsvalue['id'] . "','" . $fsvalue['title'] . "',\"./show1/i.php?op=add&tid=" . $fsvalue['id'] . "&bdtid=" . $_GET['tid'] . "&bdid=\",record.data.id); }}
  180. ,{xtype:\"button\",text:\"??" . $fsvalue['title'] . "\",iconCls:\"fslist\",pressed:true,handler:function(){
  181. var record = grid.getStore().getAt(rowIndex);
  182. fslist('" . $fsvalue['id'] . "','" . $fsvalue['title'] . "',\"./show1/l.php?op=list&tid=" . $fsvalue['id'] . "&bdtid=" . $_GET['tid'] . "&bdid=\",record.data.id);
  183. }}";
  184. }
  185. } }
  186. /**
  187. * ???????
  188. */
  189. $config_tmp = json_decode($tree['config'],true);
  190. if (1 == $config_tmp['realtime_price'] || 1 == $config_tmp['realtime_room']){
  191. $realtime_title = '??';
  192. //????
  193. $realtime_url = "/gl/price/real_time.php?bdb={$fsvalue['id']}";
  194. $realtime_title_tmp = array();
  195. //??????:?????
  196. $realtime_type = '';
  197. if (1 == $config_tmp['realtime_price']){
  198. $realtime_title_tmp[] = '??';
  199. $realtime_type .= '&realtime_show_price=1';
  200. }
  201. if (1 == $config_tmp['realtime_room']){
  202. $realtime_title_tmp[] = '??';
  203. $realtime_type .= '&realtime_show_room=1';
  204. }
  205. $realtime_title .= implode('/', $realtime_title_tmp);
  206. $realtime_url .= $realtime_type;
  207. $fsstr .= <<<EQT
  208. ,{
  209. xtype:"button",
  210. text:"{$realtime_title}",
  211. iconCls:"real_time",
  212. pressed:true,
  213. handler:function(){
  214. var record = grid.getStore().getAt(rowIndex);
  215. //createTab('tab_'+record.data.id,record.data.title+'-{$realtime_title}','{$realtime_url}&bdid='+record.data.id);
  216. fsadd('tab_{$fsvalue['id']}',record.data.title+'-{$fsvalue['title']}','{$realtime_url}&&bdid=',record.data.id);
  217. //fslist('{$fsvalue['id']}','{$realtime_title}',"./dy/index.php?tid={$fsvalue['id']}&bdtid={$_GET['tid']}&bdid=",record.data.id);
  218. }
  219. }
  220. EQT;
  221. }
  222. Tr($fsstr, 'fstree');
  223. $table = Dgd(array(
  224. 'db' => 'd_sevenel',
  225. 'cd' => "del!=1 and id = '" . $tree['table'] . "' ",
  226. 'tn' => "datamod",
  227. 'limit' => 1
  228. ));
  229. Tr($table, 'table');
  230. Ts('dy/list.html');
  231. break;
  232. }
  233. case 'fy': {
  234. if ($_SESSION['rcg'] != 'A' && !$_SESSION['rcg']['c'][$_POST['tid']]) {
  235. $pt = $listcf['pt'];
  236. }
  237. $_REQUEST['lg'] != '' && $lgcondition = " and lg like '" . $_REQUEST['lg'] . "' ";
  238. $fldata = Dgd(array(
  239. 'db' => 'd_sevenel',
  240. 'cd' => "del!=1 and tid = '" . $_POST['tid'] . "' " . $lgcondition . " order by px asc ",
  241. 'tn' => "fld"
  242. ));
  243. $zhuanyi = array();
  244. $btsc = array();
  245. $gjsc = array();
  246. foreach ($fldata as $key => $value) {
  247. if ($value['zy'] == 1) {
  248. $zhuanyi[] = $value;
  249. }
  250. if ($value['bt'] == 1) {
  251. $btsc[$value['fname']] = $value['type'];
  252. }
  253. /*
  254. * ??????????????
  255. */
  256. if (($value['type'] == 'textfield' || $value['type'] == 'fckeditor') && $_POST['title']!=''){
  257. $_search_array_tmp [] = " {$value['fname']} like '%{$_POST['title']}%'";
  258. }
  259. }
  260. //?? ???????
  261. if($_search_array_tmp!='') {
  262. $_search_array_tmp = ' and ('.join(' or ',$_search_array_tmp).') ';
  263. }
  264. $condition = $_search_array_tmp;
  265. //$_POST['user']&&$condition.="and user like '%".$_POST['user']."%' ";
  266. $_POST['bdtid'] && $condition.="and bdtid = '" . $_POST['bdtid'] . "' ";
  267. $_POST['bdid'] && $condition.="and bdid = '" . $_POST['bdid'] . "' ";
  268. //$_POST['title'] && $condition.="and title = '%" . $_POST['title'] . "%' ";
  269. if (count($listcf['gj']) > 0) {
  270. foreach ($fldata as $key => $v) {
  271. if (in_array($v['fname'], $listcf['gj'])) {
  272. $gj[] = $v;
  273. }
  274. }
  275. } else {
  276. foreach ($fldata as $key => $v) {
  277. if ($v['gj'] == 1) {
  278. $gj[] = $v;
  279. }
  280. }
  281. }
  282. if ($gj != '') {
  283. $xzt = array('combo', 'recommend', 'radiogroup', 'combo1');
  284. foreach ($gj as $value) {
  285. if (in_array($value['type'], $xzt)) {
  286. $_POST[$value['fname']] != '' && $condition.="and " . $value['fname'] . " = '" . $_POST[$value['fname']] . "' ";
  287. } else {
  288. if ($value['type'] == 'checkboxgroup') {
  289. if ($_POST[$value['fname']]) {
  290. foreach ($_POST[$value['fname']] as $cv) {
  291. $cv != '' && $condition.="and " . $value['fname'] . " like '%" . $cv . "%' ";
  292. }
  293. }
  294. } else {
  295. $_POST[$value['fname']] != '' && $condition.="and " . $value['fname'] . " like '%" . $_POST[$value['fname']] . "%' ";
  296. }
  297. }
  298. }
  299. }
  300. $dbinfo = Dgd(array(
  301. 'db' => 'd_sevenel',
  302. 'tn' => $_POST['dbname'],
  303. 'start' => $_POST['start'],
  304. 'limit' => $_POST['limit'],
  305. 'total' => true,
  306. // 'ce'=>1,
  307. 'cd' => "tid = '" . $_POST['tid'] . "' " . $condition . " and del != '1' " . $pt . " " . $lgcondition . " order by " . $paixu['zd'] . " " . $paixu['order'] . " "
  308. ));
  309. //??
  310. //??
  311. $tempb = 0;
  312. foreach ($dbinfo['data'] as $key => $value) {
  313. // $tempb+=$value['ct'];
  314. foreach ($zhuanyi as $zyv) {
  315. switch ($zyv['type']) {
  316. case 'fileup': {
  317. //echo $dbinfo['data'][$key][$zyv['fname']];
  318. $config = json_decode($zyv['cfg'], true);
  319. $config['sclj'] || $config['sclj'] = 'pic';
  320. $dvalue = array(0 => array('rar', 'zip', 'tar', '.tz'),
  321. 1 => array('jpg', 'gif', 'png', 'bmp'),
  322. 2 => array('mp3', 'mp4', 'avi', 'wmv', 'mid', '.rm', 'mvb', 'mov', 'wma', 'wav'),
  323. 3 => array('doc', 'xls', 'txt', 'ocx', 'lsx', 'ppt', 'pdf', 'chm'),
  324. 4 => array('doc', 'xls', 'txt', 'ocx', 'lsx', 'ppt', 'pdf', 'chm', 'mp3', 'mp4', 'avi', 'wmv', 'mid', '.rm', 'mvb', 'mov', 'wma', 'wav', 'jpg', 'gif', 'png', 'bmp', 'rar', 'zip', 'tar', '.tz')
  325. );
  326. $otype = substr(strtolower($dbinfo['data'][$key][$zyv['fname']]), -3);
  327. if (in_array($otype, $dvalue[0])) {
  328. $dbinfo['data'][$key][$zyv['fname']] = "<a href=\"/uplods/{$config['sclj']}/" . $dbinfo['data'][$key][$zyv['fname']] . "\" target='_blank'><img src=\"../img/archive.png\">??[Download]</a>";
  329. }
  330. if (in_array($otype, $dvalue[1])) {
  331. if ($config['sl1'] == 1) {
  332. $dbinfo['data'][$key][$zyv['fname']] = "<img src=\"/uplods/thumb1/" . $dbinfo['data'][$key][$zyv['fname']] . "\" >";
  333. } elseif ($config['sl2'] == 1) {
  334. $dbinfo['data'][$key][$zyv['fname']] = "<img src=\"/uplods/thumb2/" . $dbinfo['data'][$key][$zyv['fname']] . "\" >";
  335. } elseif ($config['sypic'] == 1 || $config['sytxt'] == 1) {
  336. $dbinfo['data'][$key][$zyv['fname']] = "<img src=\"/uplods/sytp/" . $dbinfo['data'][$key][$zyv['fname']] . "\" width=\"100px\">";
  337. } else {
  338. $dbinfo['data'][$key][$zyv['fname']] = "<img src=\"/uplods/pic/" . $dbinfo['data'][$key][$zyv['fname']] . "\" width=\"100px\">";
  339. }
  340. }
  341. if (in_array($otype, $dvalue[2])) {
  342. $dbinfo['data'][$key][$zyv['fname']] = "<a href=\"/uplods/pic/" . $dbinfo['data'][$key][$zyv['fname']] . "\" target='_blank'><img src=\"../img/film_link.png\">??[Download]</a>";
  343. }
  344. if (in_array($otype, $dvalue[3])) {
  345. $dbinfo['data'][$key][$zyv['fname']] = "<a href=\"/uplods/pic/" . $dbinfo['data'][$key][$zyv['fname']] . "\" target='_blank'><img src=\"../img/report_word.png\">??[Download]</a>";
  346. }
  347. break;
  348. }
  349. case 'radiogroup': {
  350. $tempxx = json_decode($zyv['zyz'], true);
  351. foreach ($tempxx as $value) {
  352. if ($value['yv'] == $dbinfo['data'][$key][$zyv['fname']]) {
  353. $dbinfo['data'][$key][$zyv['fname']] = $value['xv'];
  354. }
  355. }
  356. break;
  357. }
  358. case 'checkboxgroup': {
  359. $tempxx = json_decode($zyv['zyz'], true);
  360. $nowv = explode('#_#', $dbinfo['data'][$key][$zyv['fname']]);
  361. $dbinfo['data'][$key][$zyv['fname']] = '';
  362. foreach ($tempxx as $value) {
  363. if (in_array($value['yv'], $nowv)) {
  364. $dbinfo['data'][$key][$zyv['fname']].=$value['xv'] . "<BR>";
  365. }
  366. }
  367. break;
  368. }
  369. case 'combo': {
  370. $tempxx = json_decode($zyv['zyz'], true);
  371. foreach ($tempxx as $value) {
  372. if ($value['yv'] == $dbinfo['data'][$key][$zyv['fname']]) {
  373. $dbinfo['data'][$key][$zyv['fname']] = $value['xv'];
  374. }
  375. }
  376. break;
  377. }
  378. case 'combo1': {
  379. $config = json_decode($zyv['cfg'], true);
  380. $tq = Dgd(array(
  381. 'db' => 'd_sevenel',
  382. 'tn' => $config['table'],
  383. 'cd' => "del!=1 and " . $config['y'] . " = '" . $dbinfo['data'][$key][$zyv['fname']] . "' and " . $config['conditon'],
  384. 'limit' => 1
  385. ));
  386. $dbinfo['data'][$key][$zyv['fname']] = $tq[$config['x']];
  387. break;
  388. }
  389. case 'recommend': {
  390. $config = json_decode($zyv['cfg'], true);
  391. if ($dbinfo['data'][$key][$zyv['fname']] != 0) {
  392. $dbinfo['data'][$key][$zyv['fname']] = "<a href=\"#\" onclick='gxzd(\"" . $dbinfo['data'][$key]['id'] . "\",\"" . $zyv['fname'] . "\",\"0\")' title=\"??????????\" > <img src=\"../img/" . $config['paixu'] . "\"></a> " . (($config['px']) ? ("<a href=\"#\" title=\"??[order]\" onclick='tjpx(\"" . $_POST['tid'] . "@" . $_POST['dbname'] . "\",\"" . $zyv['fname'] . "\")' > <img src=\"../img/sucaiwcom8170000bzc.gif\" ait=\"??[order]\"></a>") : ("")) . " ";
  393. } else {
  394. $dbinfo['data'][$key][$zyv['fname']] = "<a href=\"#\" onclick='gxzd(\"" . $dbinfo['data'][$key]['id'] . "\",\"" . $zyv['fname'] . "\",\"1\")' title=\"????????\" ><img src=\"../img/flag.png\"></a> " . (($config['px']) ? ("<a href=\"#\" title=\"??[order]\" onclick='tjpx(\"" . $_POST['tid'] . "@" . $_POST['dbname'] . "\",\"" . $zyv['fname'] . "\")' > <img src=\"../img/sucaiwcom8170000bzc.gif\" ait=\"??[order]\"></a>") : ("")) . "";
  395. }
  396. break;
  397. }
  398. }
  399. }
  400. /* $dbinfo['data'][$key]['yuding']="<input type='button' value='???' onclick='yuding(".$dbinfo['data'][$key]['id'].")'/>";
  401. $dbinfo['data'][$key]['num']="<input type='text' value='1' name='num".$dbinfo['data'][$key]['id']."' id='num".$dbinfo['data'][$key]['id']."' />";
  402. */ }
  403. /*
  404. $tempz=$d_sevenel->Dqsql("select sum(ct) as total from `se_user` where tid = '".$_POST['tid']."' and del != '1' ");
  405. $dbinfo['dq']=$tempb;
  406. $dbinfo['zong']=$tempz[0]['total'];
  407. */ echo json_encode($dbinfo);
  408. break;
  409. }
  410. case 'width_change': {
  411. $id = $_POST['id'];
  412. Du('sevenel', 'fld', array('wd' => $_POST['width']), 'id', $id, 1);
  413. echo 'ok';
  414. break;
  415. }
  416. case 'del': {
  417. $_POST['del'] = 1;
  418. $_POST['ids'] = json_decode(stripslashes($_POST['ids']));
  419. if (is_array($_POST['ids'])) {
  420. foreach ($_POST['ids'] as $id) {
  421. Du('sevenel', $_POST['dbname'], $_POST, 'id', $id, 0);
  422. }
  423. } else {
  424. Du('sevenel', $_POST['dbname'], $_POST, 'id', $id, 0);
  425. }
  426. echo '{success:true,msg:\'ok\'}';
  427. break;
  428. }
  429. case 'add': {
  430. $tree_id = $_GET['tid'];
  431. Tr($_GET['tid'], 'tid');
  432. Tr($_GET['bdtid'], 'bdtid');
  433. Tr($_GET['bdid'], 'bdid');
  434. Tr($_GET['gid'], 'gid');
  435. $tree = Dgd(array(
  436. 'db' => 'd_sevenel',
  437. 'cd' => "del!=1 and id = $tree_id",
  438. 'tn' => "tree",
  439. 'limit' => 1
  440. ));
  441. $tname = gettabname($tree['table'], $dbcfg['prefix'], true);
  442. Tr($tname, 'tname');
  443. if ($_GET['id']) {
  444. Tr($_GET['id'], 'id');
  445. $fdada = Dgd(array(
  446. 'db' => 'd_sevenel',
  447. 'cd' => "id = '" . $_GET['id'] . "' and del != '1' ",
  448. 'tn' => "$tname",
  449. 'limit' => 1
  450. ));
  451. Tr(preg_replace("/[\s]{2,}/", "", $fdada['lg']), 'lg');
  452. }
  453. if ($_GET['id'] == 0) {
  454. Tr('??', 'action');
  455. } else {
  456. Tr('??', 'action');
  457. }
  458. $_REQUEST['lg'] != '' && $condition = " and lg like '" . $_REQUEST['lg'] . "' ";
  459. $fldata = Dgd(array(
  460. 'db' => 'd_sevenel',
  461. 'cd' => "del!=1 and tid = '" . $_GET['tid'] . "' " . $condition . " order by px asc ",
  462. 'tn' => "fld"
  463. ));
  464. $fcf = '';
  465. $fcf.="{
  466. xtype:'fieldset',
  467. title: '????',
  468. autoHeight: true,
  469. items: [";
  470. foreach ($fldata as $value) {
  471. $fcf.=EXT::GB($value['fname']) . ",";
  472. }
  473. $fcf = substr($fcf, 0, -1);
  474. $fcf.="]},";
  475. $fcf = substr($fcf, 0, -1);
  476. Tr($fcf, 'fcf');
  477. Tr($plugurl, 'plugurl');
  478. Tr($plugjs, 'plugjs');
  479. Tr($fckplugin, 'fckplugin');
  480. Ts($tmpml . 'add.html');
  481. break; }
  482. case 'save': {
  483. $condition = " and lg like 'zh' ";
  484. $id = $_POST['id'];
  485. $tree_id = $_POST['tid'];
  486. $tree = Dgd(array(
  487. 'db' => 'd_sevenel',
  488. 'cd' => "del!=1 and id = $tree_id ",
  489. 'tn' => "tree",
  490. 'limit' => '1'
  491. ));
  492. $tabname = gettabname($tree['table'], '', true);
  493. $fld = Dgd(array(
  494. 'db' => 'd_sevenel',
  495. 'cd' => "del!=1 and tid = $tree_id {$condition}",
  496. 'tn' => "fld"
  497. ));
  498. /* if(!$id){
  499. $wyyz='user';
  500. $wztemp=Dgd(array(
  501. 'db'=>'d_sevenel',
  502. 'cd'=>"$wyyz like '".$_POST[$wyyz]."'",
  503. 'tn'=>$tabname,
  504. 'limit'=>'1'
  505. ));
  506. if($wztemp!=''){
  507. ext_request_failure('??????');
  508. exit();
  509. }
  510. }
  511. */ foreach ($fld as $key => $value) {
  512. switch ($value['type']) {
  513. case 'datefield':
  514. case 'my97': {
  515. if ($value['zy'] != 1) {
  516. if (strtotime($_POST[$value['fname']])) {
  517. $save[$value['fname']] = strtotime($_POST[$value['fname']]);
  518. } else {
  519. $save[$value['fname']] = $_POST[$value['fname']];
  520. }
  521. } else {
  522. $save[$value['fname']] = $_POST[$value['fname']];
  523. }
  524. break; }
  525. case 'checkboxgroup': {
  526. $save[$value['fname']] = implode("#_#", $_POST[$value['fname']]);
  527. break; }
  528. case 'password';
  529. {
  530. if ($value['yxwk'] == '1') {
  531. if ($_POST[$value['fname']] == $_POST[$value['fname'] . '-cfrm']) {
  532. $save [$value['fname']] = md5($_POST[$value['fname']]);
  533. } else {
  534. ext_request_failure('???????');
  535. exit();
  536. }
  537. } else {
  538. $save [$value['fname']] = md5($_POST[$value['fname']]);
  539. }
  540. break; }
  541. case 'fileup': {
  542. //print_r($_FILES);exit;
  543. if ($_FILES[$value['fname']]['name'] != '') {
  544. $cp = 1;
  545. //????
  546. $config = json_decode($value['cfg'], true);
  547. $dvalue = array(0 => array('rar', 'zip', 'tar', '.tz'),
  548. 1 => array('jpg', 'gif', 'png', 'bmp'),
  549. 2 => array('mp3', 'mp4', 'avi', 'wmv', 'mid', '.rm', 'mvb', 'mov', 'wma', 'wav'),
  550. 3 => array('doc', 'xls', 'txt', 'ocx', 'lsx', 'ppt', 'pdf', 'chm'),
  551. 4 => array('doc', 'xls', 'txt', 'ocx', 'lsx', 'ppt', 'pdf', 'chm', 'mp3', 'mp4', 'avi', 'wmv', 'mid', '.rm', 'mvb', 'mov', 'wma', 'wav', 'jpg', 'gif', 'png', 'bmp', 'rar', 'zip', 'tar', '.tz')
  552. );
  553. if (!$_FILES[$value['fname']]['name']) {
  554. $cp = 0;
  555. }
  556. $otype = substr(strtolower($_FILES[$value['fname']]['name']), -3);
  557. if (!in_array($otype, $dvalue[$config['type']])) {
  558. $cp = 0;
  559. header("Content-type: text/html; charset: UTF-8");
  560. echo "{success:true,msg:'%u4E0A%u4F20%u683C%u5F0F%u4E0D%u5141%u8BB8%21%u8BF7%u8054%u7CFB%u7BA1%u5458%21<BR> Upload format is not allowed! Please contact the administrator!'}";
  561. exit;
  562. }
  563. if ($_FILES[$value['fname']]['size'] / 1000 > $config['size']) {
  564. $cp = 0;
  565. header("Content-type: text/html; charset: UTF-8");
  566. echo "{success:true,msg:'%u6587%u4EF6%u5927%u5C0F%u8D85%u8FC7%u9650%u5236%21<br> The file size limit expired!'}";
  567. exit;
  568. }
  569. if ($cp) {
  570. $bsname = floor(Bic());
  571. $bcname = $bsname . "." . $otype;
  572. $filename = "../../uplods/pic/" . $bcname;
  573. $copymes = copy($_FILES[$value['fname']]['tmp_name'], $filename);
  574. $save[$value['fname']] = $bcname;
  575. }
  576. if (in_array($otype, $dvalue[1])) {
  577. if ($config['sl1'] == 1) {
  578. @createthumb($_FILES[$value['fname']]['tmp_name'], "." . $otype, $bsname, $config['sl1x'], $config['sl1y'], '1');
  579. }
  580. if ($config['sl2'] == 1) {
  581. @createthumb($_FILES[$value['fname']]['tmp_name'], "." . $otype, $bsname, $config['sl2x'], $config['sl2y'], '2');
  582. }
  583. if ($config['sypic'] == 1) {
  584. $sypicname = "../../uplods/sypic/" . $bcname;
  585. $sypicwz = "../../uplods/" . $config['sytp'] . "";
  586. //echo $sypicwz ,$config['sytp'],$config['sywz'];
  587. @imageWaterMark($filename, $sypicname, $config['sypicwz'], $sypicwz, "", 20, 'wqy-microhei-lite.ttc', "#00FF00");
  588. }
  589. if ($config['sytxt'] == 1) {
  590. $sypicname = "../../uplods/sytxt/" . $bcname;
  591. $sypicwz = "";
  592. @imageWaterMark($filename, $sypicname, $config['sytxtwz'], "", $config['sywz'], $config['sywzdx'], $config['syzt'], "#" . $config['syys']);
  593. }
  594. if ($config['sytxt'] == 1 && $config['sypic'] == 1) {
  595. $filename = "../../uplods/sypic/" . $bcname;
  596. $sypicname = "../../uplods/sytp/" . $bcname;
  597. $sypicwz = "";
  598. @imageWaterMark($filename, $sypicname, $config['sytxtwz'], "", $config['sywz'], $config['sywzdx'], $config['syzt'], "#" . $config['syys']);
  599. }
  600. }
  601. }
  602. break; }
  603. default: {
  604. $save[$value['fname']] = $_POST[$value['fname']];
  605. }
  606. }
  607. }
  608. $save['tid'] = $tree_id;
  609. $save['lg'] = $_POST['lg'];
  610. !$save['lg'] && $save['lg'] = 'zh';
  611. $_POST['bdid'] && $save['bdid'] = $_POST['bdid'];
  612. $_POST['bdtid'] && $save['bdtid'] = $_POST['bdtid'];
  613. $save['gid'] = $_POST['gid'];
  614. !$save['gid'] && $save['gid'] = Mct();
  615. $save['at'] = time();
  616. //???
  617. if ($id != 0) {
  618. if ($listcf['editdisble'] != '') {
  619. foreach ($listcf['editdisble'] as $tv) {
  620. unset($save[$tv]);
  621. }
  622. }
  623. if (Du('sevenel', $tabname, $save, 'id', $id, 1)) ext_request('ok');
  624. }else {
  625. if (Di('sevenel', $tabname, $save)) ;
  626. ext_request('ok');
  627. }
  628. break; }
  629. case 'yuding': {
  630. $id = $_POST['id'];
  631. $prodinfo = Dgd(array(
  632. 'db' => 'd_sevenel',
  633. 'cd' => "del!=1 and id = $id",
  634. 'tn' => "info",
  635. 'limit' => '1'
  636. ));
  637. if ($prodinfo) {
  638. $insert['tid'] = '108';
  639. $insert['tt'] = $prodinfo['tt'];
  640. $insert['pic1'] = $prodinfo['pic1'];
  641. $insert['ct'] = $prodinfo['ct'];
  642. $insert['input2'] = $prodinfo['input2'];
  643. $insert['input1'] = $prodinfo['input1'];
  644. $insert['ubb1'] = $prodinfo['ubb1'];
  645. $insert['input4'] = $_SESSION['userinfo']['user'];
  646. $insert['input5'] = $_POST['num'];
  647. $insert['input6'] = $_POST['num'] * $prodinfo['ct'];
  648. $insert['tj1'] = 2;
  649. $insert['lg'] = 'zh';
  650. $insert['bdid'] = $prodinfo['id'];
  651. $insert['bdtid'] = $prodinfo['tid'];
  652. $insert['gid'] = Mct();
  653. $insert['at'] = time();
  654. Di('sevenel', 'info', $insert);
  655. echo "????????????";
  656. exit;
  657. } else {
  658. echo "????,??????";
  659. exit;
  660. }
  661. break; }
  662. case 'qkzd': {
  663. $save[$_POST['zd']] = '';
  664. if (Du('sevenel', $_POST['tname'], $save, 'id', $_POST['id'], 1)) ext_request('ok'); break;
  665. }
  666. case 'gxzd': {
  667. $save[$_POST['zd']] = $_POST['xz'];
  668. if (Du('sevenel', $_POST['tname'], $save, 'id', $_POST['id'], 1)) ext_request('ok'); break;
  669. }
  670. case 'loaddata': {
  671. $tid = $_GET['tid'];
  672. Tr($tid, 'tid');
  673. $tree = Dgd(array(
  674. 'db' => 'd_sevenel',
  675. 'cd' => "del!=1 and id = $tid",
  676. 'tn' => "tree",
  677. 'limit' => '1'
  678. ));
  679. Tr($_GET['tid'], 'tid');
  680. Tr($_GET['bdtid'], 'bdtid');
  681. Tr($_GET['bdid'], 'bdid');
  682. $tname = gettabname($tree['table'], $dbcfg['prefix'], true);
  683. Tr($tname, 'tname');
  684. if ($_GET['id']) {
  685. Tr($_GET['id'], 'id');
  686. $fdada = Dgd(array(
  687. 'db' => 'd_sevenel',
  688. 'cd' => "del!=1 and id = '" . $_GET['id'] . "' and del != '1' ",
  689. 'tn' => "$tname",
  690. 'limit' => 1
  691. ));
  692. Tr($fdada['gid'], 'gid');
  693. $gid = $fdada['gid'];
  694. $fdada = Dgd(array(
  695. 'db' => 'd_sevenel',
  696. 'cd' => " gid = '" . $fdada['gid'] . "' and del != '1' ",
  697. 'tn' => "$tname"
  698. ));
  699. foreach ($fdada as $value) {
  700. $templg[$value['lg']] = $value['id'];
  701. }
  702. }
  703. !$gid && $gid = Mct();
  704. if ($tree['config'] != '') {
  705. $tconfig = json_decode($tree['config'], true);
  706. $nowlg = explode('|', $tconfig['lg']);
  707. foreach ($nowlg as $tv) {
  708. $standlang[$tv] && $xhlg[] = array('lg' => $tv, 'value' => $standlang[$tv], 'id' => $templg[$tv], 'gid' => $gid);
  709. }
  710. if ($xhlg) {
  711. Tr($xhlg, 'dy');
  712. }
  713. Tr($_GET['lg'], 'slg');
  714. Ts($tmpml . 'info.html');
  715. }
  716. break;
  717. }
  718. default: {
  719. $tid = $_GET['tid'];
  720. Tr($tid, 'tid');
  721. $tree = Dgd(array(
  722. 'db' => 'd_sevenel',
  723. 'cd' => "del!=1 and id = $tid",
  724. 'tn' => "tree",
  725. 'limit' => '1'
  726. ));
  727. if ($tree['config'] != '') {
  728. $tconfig = json_decode($tree['config'], true);
  729. $nowlg = explode('|', $tconfig['lg']);
  730. foreach ($nowlg as $tv) {
  731. $standlang[$tv] && $xhlg[] = array('lg' => $tv, 'value' => $standlang[$tv], 'bdid' => $_GET['bdid'], 'bdtid' => $_GET['bdtid']);
  732. }
  733. if ($xhlg) {
  734. Tr($xhlg, 'dy');
  735. }
  736. Ts($tmpml . 'index.html');
  737. }
  738. break;
  739. }
  740. }
  741. ?>