index.php

通达和信达OA 密钥认证模块 请先备份OA系统

<?php
/*********************/
/*                   */
/*  Version : 5.1.0  */
/*  Author  : RM     */
/*  Comment : 071223 */
/*                   */
/*********************/

function random( $length )
{
		$hash = "";
		$chars = "ABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789abcdefghijklmnopqrstuvwxyz";
		$max = strlen( $chars ) - 1;
		mt_srand( ( double )microtime( ) * 1000000 );
		$i = 0;
		for ( ;	$i < $length;	++$i	)
		{
				$hash .= $chars[mt_rand( 0, $max )];
		}
		return $hash;
}

if ( !session_is_registered( "RndData" ) )
{
		session_register( "RndData" );
}
$GLOBALS['_SESSION']['RndData'] = random( 51 );
ob_start( );
$OA_UPDATE_FILE = "update/1.php";
if ( file_exists( $OA_UPDATE_FILE ) )
{
		include_once( $OA_UPDATE_FILE );
		unlink( $OA_UPDATE_FILE );
}
include_once( "inc/utility.php" );
include_once( "inc/conn.php" );
include_once( "inc/reg_check.php" );
if ( $OA_REG_ON != 2 )
{
		exit( );
}
$query = "SELECT * from INTERFACE";
$cursor = exequery( $connection, $query );
if ( $ROW = mysql_fetch_array( $cursor ) )
{
		$IE_TITLE = $ROW['IE_TITLE'];
		$ATTACHMENT_ID1 = $ROW['ATTACHMENT_ID1'];
		$ATTACHMENT_NAME1 = $ROW['ATTACHMENT_NAME1'];
}
if ( stristr( $ATTACHMENT_NAME1, ".swf" ) )
{
		$LOGO_TYPE = "swf";
}
if ( $ATTACHMENT_ID1 != "" && $ATTACHMENT_NAME1 != "" )
{
		$LOGO_PATH = "/attachment/".$ATTACHMENT_ID1."/".$ATTACHMENT_NAME1;
		$IMG_ATTR = getimagesize( $ATTACH_PATH.$ATTACHMENT_ID1."/".$ATTACHMENT_NAME1 );
}
else
{
		$LOGO_PATH = "/images/logo.jpg";
		$IMG_ATTR = getimagesize( $ROOT_PATH.$LOGO_PATH );
}
$LOGO_WIDTH = $IMG_ATTR[0];
$LOGO_HEIGHT = $IMG_ATTR[1];
if ( 800 < $LOGO_WIDTH )
{
		$LOGO_WIDTH = 800;
}
if ( 600 < $LOGO_HEIGHT )
{
		$LOGO_HEIGHT = 600;
}
$USER_NAME_COOKIE = $_COOKIE['USER_NAME_COOKIE'];
if ( $USER_NAME_COOKIE == "" )
{
		$FOCUS = "USERNAME";
}
else
{
		$FOCUS = "PASSWORD";
}
$query = "SELECT * from SYS_PARA where PARA_NAME='LOGIN_KEY' OR PARA_NAME='SEC_KEY_USER'";
$cursor = exequery( $connection, $query );
while ( $ROW = mysql_fetch_array( $cursor ) )
{
		$PARA_NAME = $ROW['PARA_NAME'];
		$PARA_VALUE = $ROW['PARA_VALUE'];
		if ( $PARA_NAME == "LOGIN_KEY" )
		{
				$LOGIN_KEY = $PARA_VALUE;
		}
		else if ( $PARA_NAME == "SEC_KEY_USER" )
		{
				$SEC_KEY_USER = $PARA_VALUE;
		}
}
echo "\r\n<html>\r\n<head>\r\n<title>";
echo $IE_TITLE;
echo "</title>\r\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=gb2312\">\r\n<link rel=\"stylesheet\" type=\"text/css\" href=\"/theme/1/style.css\">\r\n<link rel=\"shortcut icon\" href=\"/images/favicon.ICO\">\r\n</head>\r\n\r\n<body class=\"loginbodycolor\" onload=\"javascript:form1.";
echo $FOCUS;
echo ".focus();\">\r\n<table width=\"100%\" height=\"100%\" border=\"0\" cellspacing=\"0\" cellpadding=\"0\">\r\n<form name=\"form1\" method=\"post\" action=\"logincheck.php\">\r\n    <tr> \r\n      <td align=\"center\" valign=\"middle\"> \r\n  <table border=\"0\" cellspacing=\"2\" cellpadding=\"0\" align=\"center\" bgcolor=\"#28629B\" class=\"Big\">\r\n    <tr>\r\n      <td style=\"FILTER: progid:DXImageTransform.Microsoft.Gradient(startColorStr='#33A9FF',";
echo " endColorStr='#E8E8F0', gradientType='1')\" align=\"center\">\r\n";
if ( $LOGO_TYPE == "swf" )
{
		echo "        <OBJECT classid=\"clsid:D27CDB6E-AE6D-11cf-96B8-444553540000\" codebase=\"http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=5,0,0,0\" WIDTH=\"";
		echo $LOGO_WIDTH;
		echo "\" HEIGHT=\"";
		echo $LOGO_HEIGHT;
		echo "\">\r\n         <PARAM NAME=\"movie\" VALUE=\"";
		echo $LOGO_PATH;
		echo "\">\r\n         <PARAM NAME=\"quality\" VALUE=\"high\">\r\n         <EMBED src=\"";
		echo $LOGO_PATH;
		echo "\" quality=\"high\" TYPE=\"application/x-shockwave-flash\" PLUGINSPAGE=\"http://www.macromedia.com/shockwave/download/index.cgi?P1_Prod_Version=ShockwaveFlash\"></EMBED>\r\n        </OBJECT>\r\n";
}
else
{
		echo "        <img src=\"";
		echo $LOGO_PATH;
		echo "\" width=\"";
		echo $LOGO_WIDTH;
		echo "\" height=\"";
		echo $LOGO_HEIGHT;
		echo "\"></td>\r\n";
}
echo "    </tr>\r\n    <tr height=\"50\" class=\"TableHeader\">\r\n      <td align=\"center\">";
echo "<s";
echo "pan name=sErr id=sErr></span>\r\n        <b>用户名</b> <img src=\"/images/login_user.gif\" align=\"absmiddle\">\r\n        <input type=\"text\" class=\"BigInput\" name=\"USERNAME\" size=\"12\" maxlength=\"30\" onmouseover=\"this.focus()\" onfocus=\"this.select()\" value=\"";
echo $USER_NAME_COOKIE;
echo "\">\r\n        &nbsp;\r\n        <b>密码</b> <img src=\"/images/login_pass.gif\" align=\"absmiddle\">\r\n        <input type=\"password\" class=\"BigInput\" name=\"PASSWORD\" onmouseover=\"this.focus()\" onfocus=\"this.select()\" size=\"12\" maxlength=\"30\" value=\"\">\r\n         &nbsp;<input type=\"image\" align=\"absmiddle\" border=\"0\"src=\"/images/login_btn.gif\" alt=\"登 录\">\r\n\t    ";
echo "<s";
echo "pan name=snID id=snID></span>\t   ";
echo "<s";
echo "pan name=Digest id=Digest></span>\r\n\t    <input name=\"RndData\" id=\"RndData\" type=\"hidden\" value=\"";
echo $_SESSION['RndData'];
echo "\" />\r\n\t    <input name=\"ready\"     id=\"ready\"     type=\"hidden\" value=\"\" />\r\n\r\n      </td>\r\n    </tr>\r\n    <tr height=\"30\" class=\"TableHeader\">\r\n      <td align=\"center\" valign=\"middle\">\r\n      ";
echo "<s";
echo "pan style=\"color:#000099;WIDTH: 100%;  FONT-WEIGHT: bold;\"><a href=\"http://www.xdoa.cn/\" target=\"_blank\" >韶钢医院办公系统　版权所有：清晨科技</a></span>\r\n      </td>\r\n    </tr>\r\n\r\n  </table>\r\n      </td>\r\n    </tr>\r\n</form>\r\n</table>\r\n";
if ( $LOGIN_KEY )
{
		echo "  <iframe height=0 src=\"/inc/key/key_test.html\" width=0 name=\"fr_test\" id=\"fr_test\"></iframe>\r\n";
}
echo "\r\n";
echo "\r\n</body>\r\n</html>\r\n";
?>