set_update.php

通达网络办公 - Office Anywhere 2008 增强版100％源码(3.4.081216) 内含 通达OA2008增強版接近完美破解补丁20081216集 及 最新通达OA2008ADV(

<?php

include_once( "inc/auth.php" );
include_once( "inc/utility_all.php" );
include_once( "inc/utility_org.php" );
echo "\r\n<html>\r\n<head>\r\n<title>批量设置</title>\r\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=gb2312\">\r\n</head>\r\n\r\n<body class=\"bodycolor\" topmargin=\"5\">\r\n<br>\r\n";
if ( $LOGIN_USER_PRIV != "1" )
{
	exit( );
}
if ( $TO_ID != "ALL_DEPT" )
{
	if ( $TO_ID != "" )
	{
		$where_str .= "find_in_set(DEPT_ID,'".$TO_ID."') or ";
	}
	if ( $PRIV_ID != "" )
	{
		$where_str .= "find_in_set(USER.USER_PRIV,'".$PRIV_ID."') or ";
	}
	if ( $COPY_TO_ID != "" )
	{
		$where_str .= "find_in_set(USER_ID,'".$COPY_TO_ID."') or ";
	}
}
$where_str = substr( $where_str, 0, -4 );
$query = "SELECT POST_PRIV from USER where USER_ID='".$LOGIN_USER_ID."'";
$cursor = exequery( $connection, $query );
if ( $ROW = mysql_fetch_array( $cursor ) )
{
	$POST_PRIV = $ROW['POST_PRIV'];
}
$query = "SELECT PRIV_NO from USER_PRIV where USER_PRIV=".$LOGIN_USER_PRIV;
$cursor = exequery( $connection, $query );
if ( $ROW = mysql_fetch_array( $cursor ) )
{
	$PRIV_NO = $ROW['PRIV_NO'];
}
if ( $LOGIN_USER_PRIV != "1" )
{
	$query = "SELECT USER_ID,DEPT_ID from USER,USER_PRIV where USER.USER_PRIV=USER_PRIV.USER_PRIV and USER_PRIV.PRIV_NO>".$PRIV_NO." and USER_PRIV.USER_PRIV!=1";
}
else
{
	$query = "SELECT USER_ID,DEPT_ID from USER,USER_PRIV where USER.USER_PRIV=USER_PRIV.USER_PRIV";
}
if ( $where_str != "" )
{
	$query .= " and (".$where_str.")";
}
$cursor = exequery( $connection, $query );
while ( $ROW = mysql_fetch_array( $cursor ) )
{
	$USER_ID = $ROW['USER_ID'];
	$DEPT_ID1 = $ROW['DEPT_ID'];
	if ( !is_dept_priv( $DEPT_ID1 ) || ( !( $DEPT_ID1 == 0 ) && !( $POST_PRIV == "1" ) ) )
	{
		$USER_ID_STR .= $USER_ID.",";
	}
}
if ( $MYTABLE_LEFT != "" )
{
	$SET_STR .= "MYTABLE_LEFT='".$MYTABLE_LEFT."',";
}
if ( $MYTABLE_RIGHT != "" )
{
	$SET_STR .= "MYTABLE_RIGHT='".$MYTABLE_RIGHT."',";
}
if ( $SHORTCUT != "" )
{
	$SET_STR .= "SHORTCUT='".$SHORTCUT."',";
}
if ( $USER_PRIV != "" )
{
	$SET_STR .= "USER_PRIV='".$USER_PRIV."',";
}
if ( $DEPT_ID != "" )
{
	$SET_STR .= "DEPT_ID='".$DEPT_ID."',";
}
if ( $THEME != "" )
{
	$SET_STR .= "THEME='".$THEME."',";
}
if ( $MENU_TYPE != "" )
{
	$SET_STR .= "MENU_TYPE='".$MENU_TYPE."',";
}
if ( $SMS_ON != "" )
{
	$SET_STR .= "SMS_ON='".$SMS_ON."',";
}
if ( $CALL_SOUND != "" )
{
	$SET_STR .= "CALL_SOUND='".$CALL_SOUND."',";
}
if ( $PANEL != "" )
{
	$SET_STR .= "PANEL='".$PANEL."',";
}
if ( $EMAIL_CAPACITY != "" )
{
	$SET_STR .= "EMAIL_CAPACITY='".intval( $EMAIL_CAPACITY )."',";
}
if ( $FOLDER_CAPACITY != "" )
{
	$SET_STR .= "FOLDER_CAPACITY='".intval( $FOLDER_CAPACITY )."',";
}
if ( $WEBMAIL_NUM != "" )
{
	$SET_STR .= "WEBMAIL_NUM='".intval( $WEBMAIL_NUM )."',";
}
if ( $WEBMAIL_CAPACITY != "" )
{
	$SET_STR .= "WEBMAIL_CAPACITY='".intval( $WEBMAIL_CAPACITY )."',";
}
if ( $PASS1 != "" )
{
	$query = "SELECT * from SYS_PARA where PARA_NAME='SEC_PASS_MIN' or PARA_NAME='SEC_PASS_MAX' or PARA_NAME='SEC_PASS_SAFE'";
	$cursor = exequery( $connection, $query );
	while ( $ROW = mysql_fetch_array( $cursor ) )
	{
		$PARA_NAME = $ROW['PARA_NAME'];
		$PARA_VALUE = $ROW['PARA_VALUE'];
		if ( $PARA_NAME == "SEC_PASS_MIN" )
		{
			$SEC_PASS_MIN = $PARA_VALUE;
		}
		else if ( $PARA_NAME == "SEC_PASS_MAX" )
		{
			$SEC_PASS_MAX = $PARA_VALUE;
		}
		else if ( $PARA_NAME == "SEC_PASS_SAFE" )
		{
			$SEC_PASS_SAFE = $PARA_VALUE;
		}
	}
	if ( strlen( $PASS1 ) < $SEC_PASS_MIN || strlen( $PASS2 ) < $SEC_PASS_MIN || $SEC_PASS_MAX < strlen( $PASS1 ) || $SEC_PASS_MAX < strlen( $PASS2 ) )
	{
		message( "错误", "密码长度应".$SEC_PASS_MIN."-".$SEC_PASS_MAX."位!" );
		button_back( );
		exit( );
	}
	if ( $PASS1 != $PASS2 )
	{
		message( "错误", "输入的密码不一致！" );
		button_back( );
		exit( );
	}
	if ( strstr( $PASS1, "\\'" ) )
	{
		message( "错误", "密码中含有非法字符" );
		button_back( );
		exit( );
	}
	if ( $SEC_PASS_SAFE == "1" && ( !eregi( "[a-z]", $PASS1 ) && !eregi( "[0-9]", $PASS1 ) ) )
	{
		message( "错误", "密码必须同时包含字母和数字!" );
		button_back( );
		exit( );
	}
	$SET_STR .= "PASSWORD='".crypt( $PASS1 )."',";
}
$SET_STR = substr( $SET_STR, 0, -1 );
$query = "update USER set ".$SET_STR.( " where USER_ID!='admin' and find_in_set(USER_ID,'".$USER_ID_STR."')" );
exequery( $connection, $query );
if ( $WEBMAIL_CAPACITY != "" )
{
	$query = "update WEBMAIL set QUOTA_LIMIT='".intval( $WEBMAIL_CAPACITY ).( "' where find_in_set(USER_ID,'".$USER_ID_STR."')" );
	exequery( $connection, $query );
}
if ( $TO_NAME != "" )
{
	$REMARK .= "部门：".$TO_NAME."<br>";
}
if ( $PRIV_NAME != "" )
{
	$REMARK .= "角色：".$PRIV_NAME."<br>";
}
if ( $COPY_TO_NAME != "" )
{
	$REMARK .= "人员：".$COPY_TO_NAME."<br>";
}
add_log( 19, $REMARK, $LOGIN_USER_ID );
message( "提示", "设置已保存" );
button_back( );
echo "</body>\r\n</html>\r\n";
?>