set_update.php

极限网络智能办公系统 - Office Automation 2008 官方100％ 源码

<?php
 

include_once( "inc/auth.php" );
include_once( "inc/utility_all.php" );
echo "\r\n<html>\r\n<head>\r\n<title>批量设置</title>\r\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=gb2312\">\r\n</head>\r\n\r\n<body class=\"bodycolor\" topmargin=\"5\">\r\n<br>\r\n";
if ( $LOGIN_USER_PRIV != "1" )
{
	exit( );
}
if ( $THEME != "" )
{
	$SET_STR .= "THEME='".$THEME."',";
}
if ( $MENU_TYPE != "" )
{
	$SET_STR .= "MENU_TYPE='".$MENU_TYPE."',";
}
if ( $MENU_HIDE != "" )
{
	$SET_STR .= "MENU_HIDE='".$MENU_HIDE."',";
}
if ( $SMS_ON != "" )
{
	$SET_STR .= "SMS_ON='".$SMS_ON."',";
}
if ( $CALL_SOUND != "" )
{
	$SET_STR .= "CALL_SOUND='".$CALL_SOUND."',";
}
if ( $PANEL != "" )
{
	$SET_STR .= "PANEL='".$PANEL."',";
}
if ( $PASS1 != "" )
{
	$query = "SELECT * from SYS_PARA where PARA_NAME='SEC_PASS_MIN' or PARA_NAME='SEC_PASS_MAX' or PARA_NAME='SEC_PASS_SAFE'";
	$cursor = exequery( $connection, $query );
	while ( $ROW = mysql_fetch_array( $cursor ) )
	{
		$PARA_NAME = $ROW['PARA_NAME'];
		$PARA_VALUE = $ROW['PARA_VALUE'];
		if ( $PARA_NAME == "SEC_PASS_MIN" )
		{
			$SEC_PASS_MIN = $PARA_VALUE;
		}
		else if ( $PARA_NAME == "SEC_PASS_MAX" )
		{
			$SEC_PASS_MAX = $PARA_VALUE;
		}
		else if ( $PARA_NAME == "SEC_PASS_SAFE" )
		{
			$SEC_PASS_SAFE = $PARA_VALUE;
		}
	}
	if ( strlen( $PASS1 ) < $SEC_PASS_MIN || strlen( $PASS2 ) < $SEC_PASS_MIN || $SEC_PASS_MAX < strlen( $PASS1 ) || $SEC_PASS_MAX < strlen( $PASS2 ) )
	{
		message( "错误", "密码长度应".$SEC_PASS_MIN."-".$SEC_PASS_MAX."位!" );
		button_back( );
		exit( );
	}
	if ( $PASS1 != $PASS2 )
	{
		message( "错误", "输入的密码不一致！" );
		button_back( );
		exit( );
	}
	if ( strstr( $PASS1, "\\'" ) != false )
	{
		message( "错误", "密码中含有非法字符" );
		button_back( );
		exit( );
	}
	if ( $SEC_PASS_SAFE == "1" && ( !eregi( "[a-z]", $PASS1 ) && !eregi( "[0-9]", $PASS1 ) ) )
	{
		message( "错误", "密码必须同时包含字母和数字!" );
		button_back( );
		exit( );
	}
	$SET_STR .= "PASSWORD='".crypt( $PASS1 )."',";
}
$SET_STR = substr( $SET_STR, 0, -1 );
$query = "update USER set ".$SET_STR;
if ( $TO_ID != "ALL_DEPT" )
{
	if ( $TO_ID != "" )
	{
		$where_str .= "find_in_set(DEPT_ID,'".$TO_ID."') or ";
	}
	if ( $PRIV_ID != "" )
	{
		$where_str .= "find_in_set(USER_PRIV,'".$PRIV_ID."') or ";
	}
	if ( $COPY_TO_ID != "" )
	{
		$where_str .= "find_in_set(USER_ID,'".$COPY_TO_ID."') or ";
	}
}
$where_str = substr( $where_str, 0, -4 );
if ( $where_str != "" )
{
	$query .= " where ".$where_str;
}
exequery( $connection, $query );
if ( $TO_NAME != "" )
{
	$REMARK .= "部门：".$TO_NAME."<br>";
}
if ( $PRIV_NAME != "" )
{
	$REMARK .= "角色：".$PRIV_NAME."<br>";
}
if ( $COPY_TO_NAME != "" )
{
	$REMARK .= "人员：".$COPY_TO_NAME."<br>";
}
add_log( 14, "批量个性设置：<br>".$REMARK, $LOGIN_USER_ID );
message( "提示", "设置已保存" );
button_back( );
echo "</body>\r\n</html>\r\n";
?>