📄 member.inc.php
字号:
<?php
function securemember( )
{
if ( $_SERVER['QUERY_STRING'] != "" )
{
$FMTO = $_SERVER['PHP_SELF']."?".$_SERVER['QUERY_STRING'];
}
else
{
$FMTO = $_SERVER['PHP_SELF'];
}
setcookie( "FMTO", $FMTO );
if ( !isset( $_COOKIE['MUSER'] ) || !isset( $_COOKIE['ZC'] ) || $_COOKIE['MUSER'] == "" || $_COOKIE['ZC'] == "" || $_COOKIE['MEMBERTYPEID'] == "" )
{
echo "<script>window.location='login.php?fm=yes'</script>";
exit( );
}
else
{
$md5 = md5( $_COOKIE['MUSER']."76|01|14".$_COOKIE['MEMBERID'].$_COOKIE['MEMBERTYPE'].$_COOKIE['SE'].$_COOKIE['SM'] );
if ( $_COOKIE['ZC'] != $md5 )
{
echo "<script>window.location='login.php?fm=yes'</script>";
exit( );
}
}
}
function readmember( )
{
global $msql;
global $tbl_member;
$msql->query( "select * from {$tbl_member} where memberid='".$_COOKIE['MEMBERID']."'" );
if ( $msql->next_record( ) )
{
$MEMBERINFO['user'] = $msql->f( "user" );
$MEMBERINFO['membertypeid'] = $msql->f( "membertypeid" );
$MEMBERINFO['company'] = $msql->f( "company" );
$MEMBERINFO['name'] = $msql->f( "name" );
$MEMBERINFO['sex'] = $msql->f( "sex" );
$MEMBERINFO['birthday'] = $msql->f( "birthday" );
$MEMBERINFO['zoneid'] = $msql->f( "zoneid" );
$MEMBERINFO['catid'] = $msql->f( "catid" );
$MEMBERINFO['addr'] = $msql->f( "addr" );
$MEMBERINFO['tel'] = $msql->f( "tel" );
$MEMBERINFO['mov'] = $msql->f( "mov" );
$MEMBERINFO['fax'] = $msql->f( "fax" );
$MEMBERINFO['postcode'] = $msql->f( "postcode" );
$MEMBERINFO['email'] = $msql->f( "email" );
$MEMBERINFO['url'] = $msql->f( "url" );
$MEMBERINFO['passtype'] = $msql->f( "passtype" );
$MEMBERINFO['passcode'] = $msql->f( "passcode" );
$MEMBERINFO['qq'] = $msql->f( "qq" );
$MEMBERINFO['msn'] = $msql->f( "msn" );
$MEMBERINFO['maillist'] = $msql->f( "maillist" );
$MEMBERINFO['bz'] = $msql->f( "bz" );
$MEMBERINFO['regtime'] = date( "Y-m-d H:i:s", $msql->f( "regtime" ) );
$MEMBERINFO['exptime'] = date( "Y-m-d H:i:s", $msql->f( "exptime" ) );
$MEMBERINFO['account'] = $msql->f( "account" );
$MEMBERINFO['paytotal'] = $msql->f( "paytotal" );
$MEMBERINFO['buytotal'] = $msql->f( "buytotal" );
$MEMBERINFO['cent'] = $msql->f( "cent" );
$MEMBERINFO['ip'] = $msql->f( "ip" );
$MEMBERINFO['logincount'] = $msql->f( "logincount" );
$MEMBERINFO['logintime'] = date( "Y-m-d H:i:s", $msql->f( "logintime" ) );
$MEMBERINFO['loginip'] = $msql->f( "loginip" );
}
return $MEMBERINFO;
}
function membermodifyform( )
{
global $msql;
global $tbl_member_regform;
global $FM;
global $FU;
global $FF;
global $IN;
$membertypeid = $_COOKIE['MEMBERTYPEID'];
$tbl_member_regform_now = $tbl_member_regform."_".$membertypeid;
$msql->query( "select * from {$tbl_member_regform_now}" );
while ( $msql->next_record( ) )
{
$formcolname = $msql->f( "formcolname" );
$FM[$formcolname] = $msql->f( "formname" );
$used = $msql->f( "used" );
$mustfill = $msql->f( "mustfill" );
$intro = $msql->f( "intro" );
if ( $mustfill == "1" )
{
$m = "<font class=mustfill> * </font>";
}
else
{
$m = "";
}
$IN[$formcolname] = $m." ".$intro;
if ( $used == "1" )
{
$FU[$formcolname] = "style='display:block'";
}
else
{
$FU[$formcolname] = "style='display:none'";
}
}
}
function birthyear( )
{
global $yy;
$FormString = "";
if ( !isset( $yy ) )
{
$yy = 1960;
}
$t = 1902;
for ( ; $t <= 2004; $t++ )
{
if ( $yy == $t )
{
$FormString .= "<option value='{$t}' selected>{$t}</option>";
}
else
{
$FormString .= "<option value='{$t}' >{$t}</option>";
}
}
return $FormString;
}
function birthmonth( )
{
global $mm;
$FormString = "";
$t = 1;
for ( ; $t <= 12; $t++ )
{
if ( $mm == $t )
{
$FormString .= "<option value='{$t}' selected>{$t}</option>";
}
else
{
$FormString .= "<option value='{$t}' >{$t}</option>";
}
}
return $FormString;
}
function birthday( )
{
global $dd;
$FormString = "";
$t = 1;
for ( ; $t <= 31; $t++ )
{
if ( $dd == $t )
{
$FormString .= "<option value='{$t}' selected>{$t}</option>";
}
else
{
$FormString .= "<option value='{$t}' >{$t}</option>";
}
}
return $FormString;
}
function passlist( )
{
global $strPass1;
global $strPass2;
global $strPass3;
global $strPass4;
global $passtype;
$str = "<option value=".$strPass1." ".seld( $strPass1, $passtype ).">".$strPass1."</option>\r\n\t\t\t <option value=".$strPass2." ".seld( $strPass2, $passtype ).">".$strPass2."</option>\r\n\t\t\t <option value=".$strPass3." ".seld( $strPass3, $passtype ).">".$strPass3."</option>\r\n\t\t\t <option value=".$strPass4." ".seld( $strPass4, $passtype ).">".$strPass4."</option>";
return $str;
}
function zonelist( )
{
global $fsql;
global $tsql;
global $tbl_member_zone;
global $zoneid;
global $ZONE;
$FormString .= "<SCRIPT language=javascript src='js/zone.js'></SCRIPT>";
$FormString .= "<script language=javascript>";
$fsql->query( "select * from {$tbl_member_zone} where pid = '0' order by xuhao" );
$i = 0;
while ( $fsql->next_record( ) )
{
$zone_id = $fsql->f( "catid" );
$zone = $fsql->f( "cat" );
$FormString .= "pList.add(new province(\"{$zone}\",\"{$zone_id}\"));";
$tsql->query( "select * from {$tbl_member_zone} where pid = '{$zone_id}' order by xuhao " );
$e = 0;
while ( $tsql->next_record( ) )
{
$szoneid = $tsql->f( "catid" );
$szone = $tsql->f( "cat" );
$FormString .= "pList.addAt('{$i}',new area(\"{$szone}\",\"{$szoneid}\"));";
if ( $szoneid == $zoneid )
{
$Province = $i;
}
$e++;
}
if ( $e < 1 )
{
$FormString .= "pList.addAt('{$i}',new area(\"ALL\",\"{$zone_id}\"));";
if ( $zone_id == $zoneid )
{
$Province = $i;
}
}
$i++;
}
$FormString .= "</script>";
$ZONE['str'] = $FormString;
$ZONE['pr'] = $Province;
return $ZONE;
}
function industrylist( )
{
global $fsql;
global $tsql;
global $tbl_member_cat;
global $catid;
$str = "";
$fsql->query( "select * from {$tbl_member_cat} order by catpath" );
while ( $fsql->next_record( ) )
{
$lpid = $fsql->f( "pid" );
$lcatid = $fsql->f( "catid" );
$cat = $fsql->f( "cat" );
$catpath = $fsql->f( "catpath" );
$lcatpath = explode( ":", $catpath );
$tsql->query( "select catid from {$tbl_member_cat} where pid='{$lcatid}'" );
if ( $tsql->next_record( ) )
{
$ifson = "yes";
}
else
{
$ifson = "no";
}
if ( $ifson == "no" )
{
$i = 0;
for ( ; $i < sizeof( $lcatpath ) - 2; $i++ )
{
$tsql->query( "select catid,cat from {$tbl_member_cat} where catid='{$lcatpath[$i]}'" );
if ( $tsql->next_record( ) )
{
$ncatid = $tsql->f( "cat" );
$ncat = $tsql->f( "cat" );
$ppcat .= $ncat."/";
}
}
if ( $catid == $lcatid )
{
$str .= "<option value='".$lcatid."' selected>".$ppcat.$cat."</option>";
}
else
{
$str .= "<option value='".$lcatid."'>".$ppcat.$cat."</option>";
}
$ppcat = "";
}
}
return $str;
}
function membertypeid2membertype( )
{
global $fsql;
global $tbl_member_type;
global $strMemberAll;
$membertypeid = $_COOKIE['MEMBERTYPEID'];
$fsql->query( "select membertype from {$tbl_member_type} where membertypeid='{$membertypeid}'" );
if ( $fsql->next_record( ) )
{
$membertype = $fsql->f( "membertype" );
}
else
{
$membertype = $strMemberAll;
}
return $membertype;
}
function membermodifycheck( )
{
global $msql;
global $fsql;
global $tbl_member_regform;
global $tbl_member;
global $tbl_member_type;
global $strRegNotice1;
global $strRegNotice2;
global $strRegNotice3;
global $strRegNotice4;
global $strRegNotice5;
global $strMemberModiOk;
global $strMemberModiNorights;
global $strRegNotice6;
global $strRegNotice7;
global $strRegNotice8;
global $strRegNotice9;
global $strRegNotice10;
global $strRegNotice11;
$step = $_POST['step'];
if ( $step == "modify" )
{
if ( securefunc( "2" ) == false )
{
$PageMain = err( $strMemberModiNorights, "", "" );
return $PageMain;
}
$company = $_POST['company'];
$name = $_POST['name'];
$sex = $_POST['sex'];
$yy = $_POST['yy'];
$mm = $_POST['mm'];
$dd = $_POST['dd'];
$addr = $_POST['addr'];
$tel = $_POST['tel'];
$mov = $_POST['mov'];
$fax = $_POST['fax'];
$postcode = $_POST['postcode'];
$email = $_POST['email'];
$url = $_POST['url'];
$zoneid = $_POST['zoneid'];
$Province = $_POST['Province'];
$catid = $_POST['catid'];
$passtype = $_POST['passtype'];
$passcode = $_POST['passcode'];
$qq = $_POST['qq'];
$msn = $_POST['msn'];
$maillist = $_POST['maillist'];
$bz = $_POST['bz'];
$resetpass = $_POST['resetpass'];
$password = $_POST['password'];
$mdpass = md5( $password );
$ip = $_SERVER['REMOTE_ADDR'];
$tbl_member_regform_now = $tbl_member_regform."_".$_COOKIE['MEMBERTYPEID'];
if ( strlen( $mm ) < 2 )
{
$mmm = "0".$mm;
}
else
{
$mmm = $mm;
}
if ( strlen( $dd ) < 2 )
{
$ddd = "0".$dd;
}
else
{
$ddd = $dd;
}
$birthday = $yy.$mmm.$ddd;
$msql->query( "select * from {$tbl_member_regform_now} where used='1' and formcolname!='user' and formcolname!='repass' and formcolname!='password'" );
while ( $msql->next_record( ) )
{
$formname = $msql->f( "formname" );
$formcolname = $msql->f( "formcolname" );
$mustfill = $msql->f( "mustfill" );
$canrepeat = $msql->f( "canrepeat" );
$intro = $msql->f( "intro" );
$UpdateStr .= $formcolname."='".$$formcolname."',";
if ( $mustfill == "1" && ( !isset( $formcolname ) || $$formcolname == "" ) )
{
$PageMain = err( $formname.$strRegNotice3, "", "" );
return $PageMain;
}
if ( $canrepeat != "1" && $$formcolname != "" )
{
$fsql->query( "select * from {$tbl_member} where ".$formcolname."='".$$formcolname."' and memberid!='".$_COOKIE['MEMBERID']."'" );
if ( $fsql->next_record( ) )
{
$PageMain = err( $formname.":".$$formcolname.$strRegNotice2, "", "" );
return $PageMain;
}
}
}
if ( !eregi( "^[_.0-9a-z-]+@([0-9a-z][0-9a-z-]+.)+[a-z]{2,3}\$", $email ) )
{
$PageMain = err( $strRegNotice9, "", "" );
return $PageMain;
}
if ( $resetpass == "yes" )
{
if ( !eregi( "^[0-9a-z]{1,20}\$", $password ) )
{
$PageMain = err( $strRegNotice6, "", "" );
return $PageMain;
}
if ( strlen( $password ) < 5 || 20 < strlen( $password ) )
{
$PageMain = err( $strRegNotice7, "", "" );
return $PageMain;
}
$UpdateStr .= " password='{$mdpass}', ";
}
$uptime = time( );
$UpdateStr .= " logintime='{$uptime}', ";
$UpdateStr .= " loginip='{$ip}' ";
$msql->query( "update {$tbl_member} set ".$UpdateStr." where memberid='".$_COOKIE['MEMBERID']."'" );
$PageMain = sayok( $strMemberModiOk, "member_modify.php", "" );
}
else
{
$PageMain = err( $strMemberModiNo, "", "" );
return $PageMain;
}
return $PageMain;
}
function securefunc( $secureid )
{
global $fsql;
global $tbl_member_rights;
$memberid = $_COOKIE['MEMBERID'];
$fsql->query( "select id from {$tbl_member_rights} where memberid='{$memberid}' and secureid='{$secureid}'" );
if ( $fsql->next_record( ) )
{
return true;
}
else
{
return false;
}
}
function noticedetail( )
{
global $fsql;
global $tbl_member_notice;
$id = $_GET['id'];
$fsql->query( "select * from {$tbl_member_notice} where id='{$id}'" );
if ( $fsql->next_record( ) )
{
$id = $fsql->f( "id" );
$title = $fsql->f( "title" );
$dtime = $fsql->f( "dtime" );
$body = $fsql->f( "body" );
$cl = $fsql->f( "cl" );
}
$dtime = date( "Y-m-d H:i:s", $dtime );
$fsql->query( "update {$tbl_member_notice} set cl=cl+1 where id='{$id}'" );
$ArrayNotice = array(
"body" => $body,
"dtime" => $dtime,
"title" => $title,
"cl" => $cl
);
return $ArrayNotice;
}
function uploadimage( $jpg, $jpg_type, $jpg_size, $path )
{
global $strUploadNotice1;
global $strUploadNotice2;
global $strUploadNotice3;
global $PicSizeLimit;
if ( $jpg_size == 0 )
{
$UploadImage[0] = "err";
$UploadImage[1] = $strUploadNotice1;
return $UploadImage;
}
if ( $PicSizeLimit < $jpg_size )
{
$UploadImage[0] = "err";
$UploadImage[1] = $strUploadNotice2;
return $UploadImage;
}
if ( $jpg_type != "image/pjpeg" && $jpg_type != "image/gif" && $jpg_type != "image/x-png" )
{
$UploadImage[0] = "err";
$UploadImage[1] = $strUploadNotice3;
return $UploadImage;
}
switch ( $jpg_type )
{
case "image/pjpeg" :
$extention = ".jpg";
$UploadImage[2] = "gif";
break;
case "image/gif" :
$extention = ".gif";
$UploadImage[2] = "gif";
break;
case "image/x-png" :
$extention = ".png";
$UploadImage[2] = "gif";
break;
}
$fname = time( );
$fname = $fname.$extention;
$file_path = $path."/".$fname;
$UploadImage[3] = $path."/".$fname;
copy( $jpg, $file_path );
chmod( $file_path, 438 );
$size = getimagesize( $file_path );
if ( 0 < $size[0] && 0 < $size[1] )
{
$UploadImage[0] = $size[0];
$UploadImage[1] = $size[1];
}
else
{
$UploadImage[0] = 50;
$UploadImage[1] = 50;
}
return $UploadImage;
}
?>
⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -