action_show.php

后台默认帐号和密码 admin 简介:建一个网站

<?
session_start();
require "db.config.php";
$db = new db;
$connect = $db->connect();
//基本参数设计
@$page = $_REQUEST['page'];//相当于$page = $http_post_vars['page']
$page==''?$page=1:'';//如果page为空则为1，否则为空
$pagelistnum = 4;  //每页显示的留言数目
$pagelist = ($page-1)*$pagelistnum;
@$err = 'yes';

//登陆
if(@$_REQUEST['action']=='login')
{
	$login_sql="select * from admin";
	$result = $db->query($login_sql);
	$admin_info = $db->fetch_array($result);
	if(@$_REQUEST['user']==$admin_info['user'] && md5($_REQUEST['pass'])==$admin_info['pass']){
		@$_SESSION['admin'] = 'xiejin';
	}else{
		@$err = 'login';
	}
}


//添加
if(@$_REQUEST['action']=='add'){
	@$name = trim($_REQUEST['name']);
	@$email = trim($_REQUEST['email']);
	@$qq = trim($_REQUEST['qq']);
	@$address = trim($_REQUEST['address']);
	@$addtime = time();
	@$name2 = trim($_REQUEST['name2']);
	@$content = trim($_REQUEST['content']);
	@$ip = getenv("REMOTE_ADDR");

	$insert_sql = "Insert Into wish (`name2`,`content`,`addtime`,`name`,`qq`,`email`,`address`,`ip`) values ('$name2','$content','$addtime','$name','$qq','$email','$address','$ip')";
	$db->query($insert_sql);
}

//删除
if(@$_REQUEST['action']=='del' && @$_SESSION['admin'] == 'xiejin'){
	@$id = $_REQUEST['id'];
	$delete_sql = "Delete From wish Where id = '$id'";
	$db->query($delete_sql);	
}

//分页
$select_num_sql = "Select name2 From wish";
$total = $db->num_rows($select_num_sql);
$total % $pagelistnum==0?$totalpage = $total / $pagelistnum:$totalpage = floor($total / $pagelistnum)+1;//总页floor返回一个不大于参数的最小整数，ceil返回不小于参数的一个最小整数
$page>1?$uppage = $page-1:$uppage = 1;
$page>=$totalpage?$nextpage = $totalpage:$nextpage = $page+1;
//查询留言
@$_SESSION['admin']=='xiejin'?$admin = 'xiejin':$admin = 'no';
$select_sql = "Select id,name2,content,addtime,name,ip,address,email,qq From wish Order By id Desc limit $pagelist,$pagelistnum";
$query = $db->query($select_sql);
header("Content-Type: text/xml");
$txt = '';
$txt .= "<?xml version=\"1.0\" encoding=\"gb2312\"?>\n";
$txt .= "<book>\n";
$txt .= "<admin>".$admin."</admin>";
$txt .= "<pages>".$page."</pages>";
$txt .= "<uppage>".$uppage."</uppage>";
$txt .= "<nextpage>".$nextpage."</nextpage>";
$txt .= "<totalpage>".$totalpage."</totalpage>";
$txt .= "<err>".$err."</err>";
while($arr = $db->fetch_array($query)){
	$txt .= "<count>\n";
	$txt .= "<id>".$arr['id']."</id>\n";
	$txt .= "<name2>".$arr['name2']."</name2>\n";
	$txt .= "<content>".$arr['content']."</content>\n";
	$txt .= "<addtime>".strftime("%Y-%m-%d",$arr['addtime'])."</addtime>\n";
	$txt .= "<name>".$arr['name']."</name>\n";
	$txt .= "<qq>".$arr['qq']."</qq>\n";
	$txt .= "<email>".$arr['email']."</email>\n";
	$txt .= "<address>".$arr['address']."</address>\n";
	$txt .= "<ip>".$arr['ip']."</ip>\n";
	$txt .= "</count>\n";	
}
$txt .= "</book>";

echo $txt;
?>