changename.php

PHPWind7_RC_UTF8 开源php论坛很不错的

<?php
!function_exists('readover') && exit('Forbidden');

/****

@name:更改用户名道具
@type:会员类
@effect:可更改自已在论坛的用户名

****/

if($tooldb['type']!=2){
	Showmsg('tooluse_type_error');  // 判断道具类型是否设置错误
}
if(!$_POST['step']){
	require_once PrintHack('index');footer();
} else{
	include_once(D_P."data/bbscache/dbreg.php");
	if (isset($rg_namelen)) {
		list($rg_regminname,$rg_regmaxname) = explode("\t",$rg_namelen);
	} else {
		$rg_regminname = 3;
		$rg_regmaxname = 12;
	}
	InitGP(array('pwuser'),'P');
	!$pwuser && Showmsg('username_empty');
	if(strlen($pwuser)>$rg_regmaxname || strlen($pwuser)<$rg_regminname){
		Showmsg('reg_username_limit');
	}
	$S_key=array('&',' ',"'",'"','/','*',',','<','>',"\r","\t","\n",'#');
	foreach($S_key as $value){
		if (strpos($pwuser,$value)!==false){
			Showmsg('illegal_username');
		}
	}
	if(!$rg_rglower){
		for($asc=65;$asc<=90;$asc++){
			if(strpos($pwuser,chr($asc))!==false){
				Showmsg('username_limit');
			}
		}
	}
	$pwuser=='guest' && Showmsg('illegal_username');
	$rg_banname=explode(',',$rg_banname);
	foreach($rg_banname as $value){
		if(strpos($pwuser,$value)!==false){
			Showmsg('illegal_username');
		}
	}
	if($pwuser!==Sql_cv($pwuser)){
		Showmsg('illegal_username');
	}
	$rt = $db->get_one("SELECT uid FROM pw_members WHERE username=".pwEscape($pwuser));
	if($rt['uid']){
		Showmsg('username_same');
	}
	$db->update("UPDATE pw_members SET username=".pwEscape($pwuser)."WHERE uid=".pwEscape($winduid));
	$db->update("UPDATE pw_threads SET author=".pwEscape($pwuser)."WHERE authorid=".pwEscape($winduid));
	$ptable_a=array('pw_posts');
	if($db_plist){
		$p_list=explode(',',$db_plist);
		foreach($p_list as $val){
			$ptable_a[]='pw_posts'.(int)$val;
		}
	}
	foreach($ptable_a as $val){
		$db->update("UPDATE $val SET author=".pwEscape($pwuser)."WHERE authorid=".pwEscape($winduid));
	}
	$db->update("UPDATE pw_cmembers SET username=".pwEscape($pwuser)."WHERE uid=".pwEscape($winduid));
	$db->update("UPDATE pw_argument SET author=".pwEscape($pwuser)."WHERE authorid=".pwEscape($winduid));
	$db->update("UPDATE pw_colonys SET admin=".pwEscape($pwuser)."WHERE admin=".pwEscape($windid));
	$db->update("UPDATE pw_announce SET author=".pwEscape($pwuser)."WHERE author=".pwEscape($windid));
	$db->update("UPDATE pw_medalslogs SET awardee=".pwEscape($pwuser)."WHERE awardee=".pwEscape($windid));

	$query = $db->query("SELECT fid,forumadmin,fupadmin FROM pw_forums WHERE forumadmin LIKE ".pwEscape("%,$windid,%")."OR fupadmin LIKE".pwEscape( "%,$windid,%"));
	while($rt = $db->fetch_array($query)){
		$rt['forumadmin']	= str_replace(",$windid,",",$pwuser,",$rt['forumadmin']);
		$rt['fupadmin']		= str_replace(",$windid,",",$pwuser,",$rt['fupadmin']);
		$db->update("UPDATE pw_forums SET ".pwSqlSingle(array('forumadmin'=>$rt['forumadmin'],'fupadmin'=>$rt['fupadmin']),false)."WHERE fid=".pwEscape($rt['fid']));
	}

	$db->update("UPDATE pw_usertool SET nums=nums-1 WHERE uid=".pwEscape($winduid)."AND toolid=".pwEscape($toolid));
	$logdata=array(
		'type'		=>	'use',
		'nums'		=>	'',
		'money'		=>	'',
		'descrip'	=>	'tool_8_descrip',
		'uid'		=>	$winduid,
		'username'	=>	$windid,
		'ip'		=>	$onlineip,
		'time'		=>	$timestamp,
		'toolname'	=>	$tooldb['name'],
		'newname'	=>	$pwuser,
		'tid'		=>	$tid,
	);
	writetoollog($logdata);
	Showmsg('toolmsg_8_success');
}
?>