sqliteauth.class.php
来自「架設ROSE私服必備之物 ROSE數據庫」· PHP 代码 · 共 435 行 · 第 1/2 页
PHP
435 行
' del='.$_POST['del']. ' WHERE groupe_id='.$_REQUEST['groupe']; } else { $query = 'INSERT INTO groupes (groupe_name, properties, execSQL, data, export, empty, del) '. 'VALUES ('.quotes($_POST['groupe_name']).', '.quotes($_POST['properties']).', '.quotes($_POST['execSQL']).', '.quotes($_POST['data']).', '.quotes($_POST['export']).', '.quotes($_POST['empty']).', '.quotes($_POST['del']).')'; } if(!empty($query)) { $GLOBALS['db']->query($query); } } $this->viewPrivileges(); break; } } /** * View all privileges information * * @access public */ function viewPrivileges($withFormUser=false, $withFormGroupe=false){ $query = ' SELECT user_id, user_name AS '.quotes($GLOBALS['traduct']->get(163)).', user_login AS '.quotes($GLOBALS['traduct']->get(164)).', groupe_name AS '.quotes($GLOBALS['traduct']->get(165)).' FROM users, groupes WHERE user_groupe_id=groupe_id;'; include_once INCLUDE_LIB.'SQLiteToGrid.class.php'; $tabUser =& new SQLiteToGrid($GLOBALS['db'], $query, 'PrivUser', true, 10, '95%'); $tabUser->enableSortStyle(false); $tabUser->hideColumn(0); $tabUser->setGetVars('?action=auth'); if($tabUser->getNbRecord()<=10) $tabUser->disableNavBarre(); $tabUser->addCalcColumn($GLOBALS['traduct']->get(33), ' <a href="?action=auth&auth_action=modifyUser&user=#%0%#" class="Browse">'.displayPics('edit.png', $GLOBALS['traduct']->get(14)).'</a> <a href="?action=auth&auth_action=deleteUser&user=#%0%#" class="Browse">'.displayPics('edittrash.png', $GLOBALS['traduct']->get(15)).'</a> <a href="?action=auth&auth_action=passwdUser&user=#%0%#" class="Browse">'.displayPics('encrypted.png', $GLOBALS['traduct']->get(157)).'</a> ', 'center', 999); $tabUser->addCaption('bottom', '<a href="?action=auth&auth_action=addUser" class="Browse">'.$GLOBALS['traduct']->get(159).'</a>'); $tabUser->disableOnClick(); $tabUser->build(); // ------------------------------------------------------------------------ $query = 'SELECT groupe_id, groupe_name AS '.quotes($GLOBALS['traduct']->get(163)).', CASE properties WHEN 1 THEN '.quotes($GLOBALS['traduct']->get(191)).' ELSE '.quotes($GLOBALS['traduct']->get(192)).' END AS '.quotes($GLOBALS['traduct']->get(61)).', CASE execSQL WHEN 1 THEN '.quotes($GLOBALS['traduct']->get(191)).' ELSE '.quotes($GLOBALS['traduct']->get(192)).' END AS '.quotes($GLOBALS['traduct']->get(166)).', CASE data WHEN 1 THEN '.quotes($GLOBALS['traduct']->get(191)).' ELSE '.quotes($GLOBALS['traduct']->get(192)).' END AS '.quotes($GLOBALS['traduct']->get(167)).', CASE export WHEN 1 THEN '.quotes($GLOBALS['traduct']->get(191)).' ELSE '.quotes($GLOBALS['traduct']->get(192)).' END AS '.quotes($GLOBALS['traduct']->get(168)).', CASE empty WHEN 1 THEN '.quotes($GLOBALS['traduct']->get(191)).' ELSE '.quotes($GLOBALS['traduct']->get(192)).' END AS '.quotes($GLOBALS['traduct']->get(169)).', CASE del WHEN 1 THEN '.quotes($GLOBALS['traduct']->get(191)).' ELSE '.quotes($GLOBALS['traduct']->get(192)).' END AS '.quotes($GLOBALS['traduct']->get(170)).' FROM groupes;'; include_once INCLUDE_LIB.'SQLiteToGrid.class.php'; $tabGroupe =& new SQLiteToGrid($GLOBALS['db'], $query, 'PrivGroupe', true, 10, '95%'); $tabGroupe->enableSortStyle(false); $tabGroupe->hideColumn(0); $tabGroupe->setGetVars('?action=auth'); if($tabGroupe->getNbRecord()<=10) $tabGroupe->disableNavBarre(); $tabGroupe->addCalcColumn($GLOBALS['traduct']->get(33), ' <a href="?action=auth&auth_action=modifyGroupe&groupe=#%0%#" class="Browse">'.displayPics('edit.png', $GLOBALS['traduct']->get(14)).'</a> <a href="?action=auth&auth_action=deleteGroupe&groupe=#%0%#" class="Browse">'.displayPics('edittrash.png', $GLOBALS['traduct']->get(15)).'</a> ', 'center', 999); $tabGroupe->addCaption('bottom', '<a href="?action=auth&auth_action=addGroupe" class="Browse">'.$GLOBALS['traduct']->get(160).'</a>'); $tabGroupe->disableOnClick(); $tabGroupe->build(); echo '<table align="center" class="Browse"><tr><td align="center" valign="top">'; echo '<div class="Rights"><div style="text-align: center;">'.$GLOBALS['traduct']->get(161).'</div>'; $tabUser->show(); if($withFormUser) { echo '<hr style="border: 1px dashed black; width: 90%;">'; $this->formUser(); } if(isset($_REQUEST['auth_action']) && ($_REQUEST['auth_action'] == 'passwdUser')) { echo '<hr style="border: 1px dashed black; width: 90%;">'; $this->changePasswd(); } echo '</div></td>'; echo '<td align="center" valign="top">'; echo '<div class="Rights"><div align="center">'.$GLOBALS['traduct']->get(162).'</div>'; $tabGroupe->show(); if($withFormGroupe){ echo '<hr style="border: 1px dashed black; width: 90%;">'; $this->formGroupe(); } echo '</div></td></tr></table>'; } /** * Get user's information * * @access public * @param int $user user ID * @return array */ function getUserInfo($user){ if(isset($_POST) && isset($_POST["user"])){ $out[0]["user_name"] = $_POST["user_name"]; $out[0]["user_login"] = $_POST["user_login"]; $out[0]["user_groupe_id"] = $_POST["user_groupe_id"]; return $out; } else { $query = "SELECT user_name, user_login, user_groupe_id FROM users WHERE user_id=".$user; $out = $GLOBALS["db"]->array_query($query); return $out[0]; } } /** * Get groupe's information * * @access public * @param int $group groupe_id * @return array */ function getGroupeInfo($group){ $query = "SELECT * FROM groupes WHERE groupe_id=".$group; $out = $GLOBALS["db"]->array_query($query); return $out[0]; } /** * Display user form * * @access private */ function formUser(){ if(isset($_REQUEST["user"])) $dataUser = $this->getUserInfo($_REQUEST["user"]); $groupeList = $GLOBALS["db"]->array_query("SELECT groupe_id, groupe_name FROM groupes"); foreach($groupeList as $groupe) $dataGroupe[$groupe["groupe_id"]] = $groupe["groupe_name"]; echo "<form name='user' method='POST' action='main.php' target='main'> <table style='font-size: 10px'> <tr><td>".$GLOBALS["traduct"]->get(163)."</td><td><input type='text' class='text' name='name' value='".((!empty($dataUser))? $dataUser["user_name"] : "" )."'></td></tr> <tr><td>".$GLOBALS["traduct"]->get(164)."</td><td><input type='text' class='text' name='login' value='".((!empty($dataUser))? $dataUser["user_login"] : "" )."'></td></tr> <tr><td>".$GLOBALS["traduct"]->get(165)."</td><td>".createSelect($dataGroupe, "groupe_id", ((!empty($dataUser))? $dataUser["user_groupe_id"] : "" ))."</td></tr> <tr><td colspan=2 align='center'><input class='button' type='submit' value='".$GLOBALS["traduct"]->get(51)."'></td> </table> <input type='hidden' name='action' value='".$GLOBALS["action"]."'> <input type='hidden' name='user' value='".((isset($GLOBALS["user"]))? $GLOBALS["user"] : "" )."'> <input type='hidden' name='auth_action' value='saveUser'> </form>"; } /** * Display Groupe formGroupe * * @access public */ function formGroupe(){ if(isset($_REQUEST["groupe"])) $dataGroupe = $this->getGroupeInfo($_REQUEST["groupe"]); else $dataGroupe = array(); if(isset($dataGroupe["groupe_name"])) $groupeName = $dataGroupe["groupe_name"]; else $groupeName = ""; if(!isset($dataGroupe["properties"])){ $dataGroupe["properties"] = $dataGroupe["execSQL"] = $dataGroupe["data"] = $dataGroupe["export"] = $dataGroupe["empty"] = $dataGroupe["del"] = 0; } echo "<form name='groupe' method='POST' action='main.php' target='main'> <table style='font-size: 10px'> <tr><td>".$GLOBALS["traduct"]->get(163)."</td><td><input type='text' class='text' name='groupe_name' value='".$groupeName."'></td></tr> <tr><td>".$GLOBALS["traduct"]->get(61)."</td><td><input type='radio' name='properties' value=1".(($dataGroupe["properties"])? " checked" : "" )."> Oui".str_repeat(" ", 5)."<input type='radio' name='properties' value=0".((!$dataGroupe["properties"])? " checked" : "" )."> Non</td></tr> <tr><td>".$GLOBALS["traduct"]->get(166)."</td><td><input type='radio' name='execSQL' value=1".(($dataGroupe["execSQL"])? " checked" : "" )."> Oui".str_repeat(" ", 5)."<input type='radio' name='execSQL' value=0".((!$dataGroupe["execSQL"])? " checked" : "" )."> Non</td></tr> <tr><td>".$GLOBALS["traduct"]->get(167)."</td><td><input type='radio' name='data' value=1".(($dataGroupe["data"])? " checked" : "" )."> Oui".str_repeat(" ", 5)."<input type='radio' name='data' value=0".((!$dataGroupe["data"])? " checked" : "" )."> Non</td></tr> <tr><td>".$GLOBALS["traduct"]->get(168)."</td><td><input type='radio' name='export' value=1".(($dataGroupe["export"])? " checked" : "" )."> Oui".str_repeat(" ", 5)."<input type='radio' name='export' value=0".((!$dataGroupe["export"])? " checked" : "" )."> Non</td></tr> <tr><td>".$GLOBALS["traduct"]->get(169)."</td><td><input type='radio' name='empty' value=1".(($dataGroupe["empty"])? " checked" : "" )."> Oui".str_repeat(" ", 5)."<input type='radio' name='empty' value=0".((!$dataGroupe["empty"])? " checked" : "" )."> Non</td></tr> <tr><td>".$GLOBALS["traduct"]->get(170)."</td><td><input type='radio' name='del' value=1".(($dataGroupe["del"])? " checked" : "" )."> Oui".str_repeat(" ", 5)."<input type='radio' name='del' value=0".((!$dataGroupe["del"])? " checked" : "" )."> Non</td></tr> <tr><td colspan=2 align='center'><input class='button' type='submit' value='".$GLOBALS["traduct"]->get(51)."'></td> </table> <input type='hidden' name='action' value='".$GLOBALS["action"]."'> <input type='hidden' name='groupe_id' value='".((isset($GLOBALS["groupe"]))? $GLOBALS["groupe"] : "" )."'> <input type='hidden' name='auth_action' value='saveGroupe'> </form>"; } /** * change password form */ function changePasswd(){ $error = false; $err_message = ""; if(isset($GLOBALS["passwd_action"]) && ($GLOBALS["passwd_action"] == "save")){ $query = "SELECT user_passwd FROM users WHERE user_id=".$_REQUEST["user"].";"; $GLOBALS['db']->query($query); $passCurrent = $GLOBALS['db']->fetch_single(); if($passCurrent != md5($_POST["old"])){ $error = true; $err_message = $GLOBALS["traduct"]->get(171); } else if($_POST["pass"] != $_POST["confirm"]){ $error = true; $err_message = $GLOBALS["traduct"]->get(172); } if(!$error){ $query = "UPDATE users SET user_passwd='".md5($_POST["pass"])."' WHERE user_id=".$_REQUEST["user"].";"; $GLOBALS['db']->query($query); echo '<div class="Rights" style="margin: 5px; text-align: center">'.$GLOBALS["traduct"]->get(173); if(!isset($_REQUEST["auth_action"])) echo "<br><a href=\"index.php?action=logout\" target='_parent' class='Browse'>".$GLOBALS["traduct"]->get(174)."</a>"; echo "</div>"; } } if($error || !isset($GLOBALS["passwd_action"]) || ($GLOBALS["passwd_action"]=="")){ echo "<form name='passwd' method=POST action='main.php' target='main'>"; echo "<table class='tabProp' style='border: 1px solid blue; margin: 2px'>"; echo "<tr><td colspan=2 align='center'>".$GLOBALS["traduct"]->get(157)."</td></tr>"; if($error){ echo "<tr><td colspan=2 align='center'><div width=80% style='border: 1px solid red'>".$err_message."</div></td></tr>"; } echo "<tr><td align='right' style='white-space: nowrap'>".$GLOBALS["traduct"]->get(175)."</td><td> <input type='password' class='text' name='old' size=10></td></tr>"; echo "<tr><td align='right' style='white-space: nowrap'>".$GLOBALS["traduct"]->get(176)."</td><td> <input type='password' class='text' name='pass' size=10></td></tr>"; echo "<tr><td align='right' style='white-space: nowrap'>".$GLOBALS["traduct"]->get(177)."</td><td> <input type='password' class='text' name='confirm' size=10></td></tr>"; echo "<tr><td colspan=2 align='center'><input class='button' type='submit' value='".$GLOBALS["traduct"]->get(51)."'></td></tr>"; echo "</table>"; echo "<input type='hidden' name='action' value='".$GLOBALS["action"]."'>"; echo "<input type='hidden' name='user' value='".((isset($_REQUEST["user"]))? $_REQUEST["user"] : $_SESSION["SQLiteManagerUserId"] )."'>"; echo "<input type='hidden' name='passwd_action' value='save'>"; if(isset($GLOBALS["auth_action"])) echo "<input type='hidden' name='auth_action' value='".$GLOBALS["auth_action"]."'>"; echo "</form>"; } }}?>⌨️ 快捷键说明
复制代码Ctrl + C
搜索代码Ctrl + F
全屏模式F11
增大字号Ctrl + =
减小字号Ctrl + -
显示快捷键?