users.inc.php

创建虚拟磁盘。用户可以创建磁盘

<?php 
##
#	Project: PHPDisk
#	This is NOT a freeware, use is subject to license terms.
#
#	Site: http://www.phpdisk.com
#
#	$Id: users.inc.php 228 2009-03-07 11:15:24Z along $
#
#	Copyright (C) 2008-2009 PHPDisk Team. All Rights Reserved.
#
##

if(!defined('IN_PHPDISK') || !defined('IN_ADMINCP')) {
	exit('[PHPDisk] Access Denied');
}
phpdisk_admin();
define('SCRIPT_NAME',$item);

require_once lang('adm_'.SCRIPT_NAME);

$lang = array_merge($pub_lang,$lang);

switch($action){

	case 'index':
		if($task =='move'){
			if($p_formhash != formhash()){
				exit($lang['system_error']);
			}
			$userids = gpc('userids','P',array(''));
			$dest_gid = (int)gpc('dest_gid','P','');
			
			if(count($userids) <1){
				$error = true;
				$sysmsg[] = $lang['please_select_move_users'];
			}
			if(!$dest_gid){
				$error = true;
				$sysmsg[] = $lang['please_select_dest_gid'];
			}
			for($i=0;$i<count($userids);$i++){
				$user_str .= $userids[$i].',';
			}
			$user_str = substr($user_str,0,-1);
			
			if(!$error){
				$db->query_unbuffered("update pd_users set gid='$dest_gid' where userid in ($user_str)");
				$sysmsg[] = $lang['move_user_success'];
				redirect(urr("admincp","item=users&action=index"),$sysmsg);
			}else{
				redirect("javascript:history.back();",$sysmsg);
			}
				}else{
			$perpage = 50;
			$gid = (int)gpc('gid','G',0);
			$orderby = gpc('orderby','G','');
			$sql_str = "";
			switch($orderby){
				case 'time_desc':
					$sql_orderby = " order by reg_time desc";
				break;
				case 'time_asc':
					$sql_orderby = " order by reg_time asc";
				break;
				case 'is_locked':
					$sql_orderby = $sql_str = " and u.is_locked=1";
				break;
				default:
					$sql_orderby = "";
			}
			$sql_ext = $gid ? " and u.gid='$gid'" : "";
			$sql_do = " pd_users u,pd_groups g where u.gid=g.gid {$sql_ext}";
			
			$rs = $db->fetch_one_array("select count(*) as total_num from {$sql_do} {$sql_str}");
			$total_num = $rs['total_num'];
			$start_num = ($pg-1) * $perpage;
				
			$q = $db->query("select userid,username,email,reg_time,is_locked,group_name,g.gid from {$sql_do} {$sql_orderby} limit $start_num ,$perpage");
			$users = array();
			while($rs = $db->fetch_array($q)){
				$rs['is_admin'] = ($rs['gid']==1) ? 1 : 0; 
				$rs['reg_time'] = date("Y-m-d H:i:s",$rs['reg_time']);
				$rs['status_text'] = $rs['is_locked'] ? '<span class="txtred">'.$lang['user_open'].'</span>' : $lang['user_locked'];
				$users[] = $rs;
			}
			$db->free($q);
			unset($rs);
						$q = $db->query("select gid,group_name,group_type from pd_groups order by gid asc");
			$groups = array();
			while($rs = $db->fetch_array($q)){
				$rs['txtcolor'] = $rs['group_type'] ? 'txtblue' : '';
				$groups[] = $rs;
			}
			$db->free($q);
			unset($rs);
						$q = $db->query("select gid,group_name,group_type from pd_groups where gid<>1 order by gid asc");
			$mini_groups = array();
			while($rs = $db->fetch_array($q)){
				$rs['txtcolor'] = $rs['group_type'] ? 'txtblue' : '';
				$mini_groups[] = $rs;
			}
			$db->free($q);
			unset($rs);
			
			$page_nav = multi($total_num, $perpage, $pg, urr("admincp","item=users&action=index&gid=$gid"));
	
			require_once template(SCRIPT_NAME,ADMIN_TPL_NAME);
		}
	break;
	
	case 'search':
		$perpage = 50;
		$word = trim(gpc('word','G',''));
		$word_str = $db->escape(str_replace('銆