do.php

泛微协同办公系统标准版E-office V5.5的源代码内含泛微办公系统V5.5自动注册文件。

<?php

include_once( "inc/auth.php" );
include_once( "inc/utility_all.php" );
$connection = openconnection( );
if ( $_REQUEST['cur_page'] == "" )
{
	$cur_page = 1;
}
else
{
	$cur_page = $_REQUEST['cur_page'];
}
switch ( $_REQUEST['f'] )
{
case "save" :
	if ( $_REQUEST['res_id'] == "" )
	{
		$res_title = strip_tags( $_REQUEST['RES_TITLE'] );
		$res_record_num = $_REQUEST['RES_RECORD_NUM'];
		$res_keyword = $_REQUEST['RES_KEYWORD'];
		$res_web = "baidu";
		$res_rss_url = $_REQUEST['RES_RSS_URL'];
		$res_index = $_REQUEST['RES_INDEX'] ? 1 : 0;
		$res_type = $_REQUEST['RES_TYPE'] ? 1 : 0;
		if ( $res_type == 0 )
		{
			$baidukeyword = urlencode( $res_keyword );
			$res_rss_url = "http://news.baidu.com/ns?word=".$baidukeyword."&tn=newsrss&sr=0&cl=2&rn=20&ct=0";
		}
		$user_id = $_SESSION['LOGIN_USER_ID'];
		$sql = " \r\n\t\t\t    SELECT MAX(RES_ORDER) AS cnt_o,MAX(RES_ORDER2) AS cnt_t \r\n\t\t\t\t\tFROM user_resource \r\n\t\t\t\t\tWHERE USER_ID='".$_SESSION['LOGIN_USER_ID']."'";
		$rs = exequery( $connection, $sql );
		$row = mysql_fetch_array( $rs );
		$cnt_o = $row['cnt_o'];
		$cnt_t = $row['cnt_t'];
		$cnt = 0 < $cnt_o - $cnt_t ? $row['cnt_o'] + 1 : $row['cnt_t'] + 1;
		$sql = " \r\n\t\t\t    SELECT RES_ORDER,RES_ORDER2 \r\n\t\t\t\t\tFROM user_resource \r\n\t\t\t\t\tWHERE USER_ID='".$_SESSION['LOGIN_USER_ID']."' ORDER BY RES_ID DESC LIMIT 0,1\r\n\t\t\t\t   ";
		$rs = exequery( $connection, $sql );
		$row = mysql_fetch_array( $rs );
		$cnt_1 = $row['RES_ORDER'];
		$cnt_2 = $row['RES_ORDER2'];
		if ( 0 < $cnt_1 )
		{
			$c_order = 0;
			$c_order2 = $cnt;
		}
		else
		{
			$c_order = $cnt;
			$c_order2 = 0;
		}
		$sql = "\r\n\t\t\t\t\tINSERT INTO user_resource \r\n\t\t\t\t\t\t(USER_ID,RES_TITLE,RES_RECORD_NUM,RES_KEYWORD,RES_WEB,RES_RSS_URL,RES_INDEX,RES_TYPE,RES_ORDER,RES_ORDER2)\r\n\t\t\t\t\t\t VALUES\r\n\t\t\t\t\t\t('{$user_id}','{$res_title}','{$res_record_num}','{$baidukeyword}','{$res_web}','{$res_rss_url}','{$res_index}','{$res_type}','{$c_order}','{$c_order2}')\r\n\t\t\t\t   ";
		exequery( $connection, $sql );
		if ( $_REQUEST['IS_PUBLIC'] == 1 )
		{
			$sql = "\r\n\t\t\t\t\tINSERT INTO rss \r\n\t\t\t\t\t\t(RSS_TITLE,RSS_URL,USER_ID)\r\n\t\t\t\t\t\t VALUES\r\n\t\t\t\t\t\t('{$res_title}','{$res_rss_url}','{$user_id}')\r\n\t\t\t\t   ";
			exequery( $connection, $sql );
		}
		header( "location:option.php?&order=".$_REQUEST['order']."&sens=".$_REQUEST['sens']."&cur_page=".$cur_page );
	}
	else
	{
		$res_title = strip_tags( $_REQUEST['RES_TITLE'] );
		$res_record_num = $_REQUEST['RES_RECORD_NUM'];
		$res_keyword = $_REQUEST['RES_KEYWORD'];
		$res_web = "baidu";
		$res_rss_url = $_REQUEST['RES_RSS_URL'];
		$res_index = $_REQUEST['RES_INDEX'] ? 1 : 0;
		$res_type = $_REQUEST['RES_TYPE'] ? 1 : 0;
		$user_id = $_SESSION['LOGIN_USER_ID'];
		if ( $res_keyword != "" && $res_type != 1 )
		{
			$baidukeyword = urlencode( $res_keyword );
			$res_rss_url = "http://news.baidu.com/ns?word=".$baidukeyword."&tn=newsrss&sr=0&cl=2&rn=20&ct=0";
		}
		$sql = "\r\n\t\t\t\t\tUPDATE user_resource \r\n\t\t\t\t\t\tSET  RES_TITLE='{$res_title}',RES_RECORD_NUM='{$res_record_num}',RES_KEYWORD='{$baidukeyword}',RES_WEB='{$res_web}',RES_RSS_URL='{$res_rss_url}',RES_INDEX='{$res_index}',RES_TYPE='{$res_type}' WHERE RES_ID=".$_REQUEST['res_id']."\r\n\t\t\t\t   ";
		exequery( $connection, $sql );
		if ( $_REQUEST['IS_PUBLIC'] == 1 )
		{
			$sql = "\r\n\t\t\t\t\tINSERT INTO rss \r\n\t\t\t\t\t\t(RSS_TITLE,RSS_URL,USER_ID)\r\n\t\t\t\t\t\t VALUES\r\n\t\t\t\t\t\t('{$res_title}','{$res_rss_url}','{$user_id}')\r\n\t\t\t\t   ";
			exequery( $connection, $sql );
		}
		header( "location:option.php?&order=".$_REQUEST['order']."&sens=".$_REQUEST['sens']."&cur_page=".$cur_page );
		break;
	}
	exit( );
case "delete" :
	if ( $_REQUEST['res_id'] != "" )
	{
		$query = "DELETE FROM user_resource WHERE RES_ID=".$_REQUEST['res_id'];
		exequery( $connection, $query );
	}
	if ( $_REQUEST['id_str'] != "" )
	{
		$id_str_array = explode( ",", $_REQUEST['id_str'] );
		while ( list( $key, $var ) = each( $id_str_array ) )
		{
			if ( $var == "" )
			{
			}
			else
			{
				$res_p_id = $var;
				$query = "DELETE FROM user_resource WHERE RES_ID=".$res_p_id;
				exequery( $connection, $query );
			}
		}
	}
	header( "location:option.php?&order=".$_REQUEST['order']."&sens=".$_REQUEST['sens']."&cur_page=".$cur_page );
	break;
	exit( );
case "order" :
	$orderstr = $_REQUEST['orderstr'];
	$order_ar = explode( ":", $orderstr );
	$order_o_ar = explode( ",", $order_ar['0'] );
	$order_t_ar = explode( ",", $order_ar['1'] );
	while ( list( $key, $var ) = each( $order_o_ar ) )
	{
		if ( 0 < $var )
		{
			$sql = ( " \r\n\t\t\t\t        UPDATE user_resource \r\n\t\t\t\t\t\t\tSET RES_ORDER='".( $key + 1 ) )."',RES_ORDER2=0 \r\n\t\t\t\t\t\t\tWHERE RES_ID='".$var."'";
			exequery( $connection, $sql );
		}
	}
	while ( list( $key, $var ) = each( $order_o_ar ) )
	{
		if ( 0 < $var )
		{
			$sql = ( " \r\n\t\t\t\t        UPDATE user_resource \r\n\t\t\t\t\t\t\tSET RES_ORDER2='".( $key + 1 ) )."',RES_ORDER=0 \r\n\t\t\t\t\t\t\tWHERE RES_ID='".$var."'";
			exequery( $connection, $sql );
		}
	}
	break;
	exit( );
default :
}
?>