privilege.php,adminprivilege.php

最新推荐文章于 2021-03-26 03:58:12 发布
最新推荐文章于 2021-03-26 03:58:12 发布
阅读量494 收藏
点赞数
文章标签: privilege.php

/**

* ECSHOP 管理员信息以及权限管理程序

* ============================================================================

* * 版权所有 2005-2012 商派网络,并保留所有权利。

* ecshop.com

* ----------------------------------------------------------------------------

* 这不是一个自由软件!您只能在不用于商业目的的前提下对程序代码进行修改和

* 使用;不允许对程序代码以任何形式任何目的的再发布。

* ============================================================================

* $Author: liubo $

* $Id: privilege.php 17217 2011-01-19 06:29:08Z liubo $

*/

define('IN_ECS', true);

require (dirname(__FILE__) . '/includes/init.php');

/* act操作项的初始化 */

$action = ! empty($_REQUEST['act']) ? trim($_REQUEST['act']) : 'login';

/* 初始化 $exc 对象 */

$exc = new exchange($ecs->table("supplier_admin_user"), $db, 'user_id', 'user_name');

// 定义条件中的大范围

$where_big = 'supplier_id=' . $_SESSION['supplier_id'];

/* 路由 */

if($action == 'update' || $action == 'update_self')

{

$function_name = 'action_update';

}

else

{

$function_name = 'action_' . $action;

}

if(! function_exists($function_name))

{

$function_name = "action_default";

}

call_user_func($function_name);

/* 路由 */

/* ------------------------------------------------------ */

// -- 退出登录

/* ------------------------------------------------------ */

function action_logout ()

{

// 全局变量

// $user = $GLOBALS['user'];

$_CFG = $GLOBALS['_CFG'];

$_LANG = $GLOBALS['_LANG'];

$smarty = $GLOBALS['smarty'];

$db = $GLOBALS['db'];

$ecs = $GLOBALS['ecs'];

$sess = $GLOBALS['sess'];

/* 清除cookie */

setcookie('ECSCP[supplier_id]', '', 1);

setcookie('ECSCP[supplier_user_id]', '', 1);

setcookie('ECSCP[supplier_pass]', '', 1);

$sess->destroy_session();

call_user_func('action_login');

}

/* ------------------------------------------------------ */

// -- 登陆界面

/* ------------------------------------------------------ */

function action_login ()

{

// 全局变量

// $user = $GLOBALS['user'];

$_CFG = $GLOBALS['_CFG'];

$_LANG = $GLOBALS['_LANG'];

$smarty = $GLOBALS['smarty'];

$db = $GLOBALS['db'];

$ecs = $GLOBALS['ecs'];

header("Expires: Mon, 26 Jul 1997 05:00:00 GMT");

header("Cache-Control: no-cache, must-revalidate");

header("Pragma: no-cache");

if((intval($_CFG['captcha']) & CAPTCHA_ADMIN) && gd_version() > 0)

{

$smarty->assign('gd_version', gd_version());

$smarty->assign('random', mt_rand());

}

$smarty->display('login.htm');

}

/* ------------------------------------------------------ */

// -- 验证登陆信息

/* ------------------------------------------------------ */

function action_signin ()

{

// 全局变量

// $user = $GLOBALS['user'];

$_CFG = $GLOBALS['_CFG'];

$_LANG = $GLOBALS['_LANG'];

$smarty = $GLOBALS['smarty'];

$db = $GLOBALS['db'];

$ecs = $GLOBALS['ecs'];

if(! empty($_SESSION['captcha_word']) && (intval($_CFG['captcha']) & CAPTCHA_ADMIN))

{

include_once (ROOT_PATH . 'includes/cls_captcha.php');

/* 检查验证码是否正确 */

$validator = new captcha();

if(! empty($_POST['captcha']) && ! $validator->check_word($_POST['captcha']))

{

sys_msg($_LANG['captcha_error'], 1);

}

}

$_POST['username'] = isset($_POST['username']) ? trim($_POST['username']) : '';

$_POST['password'] = isset($_POST['password']) ? trim($_POST['password']) : '';

$user_name = $_POST['username'];

if(is_email($user_name))

{

$sql = "select user_name from " . $ecs->table('supplier_admin_user') . " where email='" . $user_name . "'";

$username_email = $db->getOne($sql);

if($username_email)

{

$user_name = $username_email;

}

}

else if(is_mobile_phone($user_name))

{

$sql = "select user_name from " . $ecs->table('supplier_admin_user') . " where mobile_phone='" . $user_name . "'";

$rows = $db->query($sql);

$i = 0;

while($row = $db->fetchRow($rows))

{

$username_mobile = $row['user_name'];

$i = $i + 1;

}

if($i > 1)

{

show_message('本网站有多个会员ID绑定了和您相同的手机号,请使用其他登录方式,如:邮箱或用户名。', $_LANG['relogin_lnk'], 'user.php', 'error');

}

if(isset($username_mobile))

{

$user_name = $username_mobile;

}

}

$sql = "SELECT `ec_salt` FROM " . $ecs->table('supplier_admin_user') . " WHERE user_name = '" . $user_name . "'";

$ec_salt = $db->getOne($sql);

if(! empty($ec_salt))

{

/* 检查密码是否正确 */

$sql = "SELECT user_id, user_name, password, last_login, action_list, last_login,supplier_id,ec_salt" . " FROM " . $ecs->table('supplier_admin_user') . " WHERE user_name = '" . $user_name . "' AND password = '" . md5(md5($_POST['password']) . $ec_salt) . "' AND checked=1";

}

else

{

/* 检查密码是否正确 */

$sql = "SELECT user_id, user_name, password, last_login, action_list, last_login,supplier_id,ec_salt" . " FROM " . $ecs->table('supplier_admin_user') . " WHERE user_name = '" . $user_name . "' AND password = '" . md5($_POST['password']) . "' AND checked=1";

}

$row = $db->getRow($sql);

if($row)

{

// 登录成功

// set_admin_session($row['user_id'], $row['user_name'],

// $row['action_list'], $row['last_login']);

$_SESSION['supplier_id'] = $row['supplier_id']; // 店铺的id

$_SESSION['supplier_user_id'] = $row['user_id']; // 管理员id

$_SESSION['supplier_name'] = $row['user_name']; // 管理员名称

$_SESSION['supplier_action_list'] = $row['action_list']; // 管理员权限

$_SESSION['supplier_last_check'] = $row['last_login']; // 用于保存最后一次检查订单的时间

$new_possword = $row['password'];

if(empty($row['ec_salt']))

{

$ec_salt = rand(1, 9999);

$new_possword = md5(md5($_POST['password']) . $ec_salt);

$db->query("UPDATE " . $ecs->table('supplier_admin_user') . " SET ec_salt='" . $ec_salt . "', password='" . $new_possword . "'" . " WHERE user_id='$_SESSION[admin_id]'");

}

if($row['action_list'] == 'all')

{

$_SESSION['supplier_admin_id'] = $row['user_id']; // 超级管理员的标识管理员id

$_SESSION['supplier_shop_guide'] = true; // 超级管理员标识

}

// 更新最后登录时间和IP

$db->query("UPDATE " . $ecs->table('supplier_admin_user') . " SET last_login='" . gmtime() . "', last_ip='" . real_ip() . "'" . " WHERE user_id='$_SESSION[supplier_user_id]'");

if(isset($_POST['remember']))

{

$time = gmtime() + 3600 * 24 * 365;

setcookie('ECSCP[supplier_id]', $row['supplier_id'], $time);

setcookie('ECSCP[supplier_user_id]', $row['user_id'], $time);

setcookie('ECSCP[supplier_pass]', md5($new_possword . $_CFG['hash_code']), $time);

}

// 清除购物车中过期的数据

clear_cart();

ecs_header("Location: ./index.php\n");

exit();

}

else

{

sys_msg($_LANG['login_faild'], 1);

}

/*

*

* $sql="SELECT `ec_salt` FROM ". $ecs->table('users') ."WHERE user_name =

* '" . $_POST['username']."'";

* $ec_salt =$db->getOne($sql);

* if(!empty($ec_salt))

* {

* // 检查密码是否正确

* $sql = "SELECT user_id, user_name, password, last_login, ec_salt".

* " FROM " . $ecs->table('users') .

* " WHERE user_name = '" . $_POST['username']. "' AND password = '" .

* md5(md5($_POST['password']).$ec_salt) . "'";

* }

* else

* {

* // 检查密码是否正确

* $sql = "SELECT user_id, user_name, password, last_login, ec_salt".

* " FROM " . $ecs->table('users') .

* " WHERE user_name = '" . $_POST['username']. "' AND password = '" .

* md5($_POST['password']) . "'";

* }

* $row = $db->getRow($sql);

* if ($row)

* {

* // 检查是否为供货商的管理员

* if (!empty($row['user_id']))

* {

* $supplier_id = $db->getOne( "select supplier_id from ".

* $ecs->table("supplier") ." where status='1' and user_id=" .

* $row['user_id']);

* if (empty($supplier_id))

* {

* sys_msg("对不起,无效的供货商用户!", 1);

* }

* }

*

* // 登录成功

* $_SESSION['supplier_id'] = $supplier_id;

* $_SESSION['supplier_user_id'] = $row['user_id'];

* $_SESSION['supplier_name'] = $row['user_name'];

*

*

* if (isset($_POST['remember']))

* {

* $time = gmtime() + 3600 * 24 * 365;

* setcookie('ECSCP[supplier_id]', $supplier_id, $time);

* setcookie('ECSCP[supplier_user_id]', $row['user_id'], $time);

* setcookie('ECSCP[supplier_pass]', md5($row['password'] .

* $_CFG['hash_code']), $time);

* }

*

* // 清除购物车中过期的数据

* clear_cart();

*

* ecs_header("Location: ./index.php\n");

*

* exit;

* }

* else

* {

* sys_msg($_LANG['login_faild'], 1);

* }

*/

}

/* ------------------------------------------------------ */

// -- 管理员列表页面

/* ------------------------------------------------------ */

function action_list ()

{

// 全局变量

// $user = $GLOBALS['user'];

$_CFG = $GLOBALS['_CFG'];

$_LANG = $GLOBALS['_LANG'];

$smarty = $GLOBALS['smarty'];

$db = $GLOBALS['db'];

$ecs = $GLOBALS['ecs'];

admin_priv('admin_list');

/* 模板赋值 */

$smarty->assign('ur_here', $_LANG['admin_list']);

$smarty->assign('action_link', array(

'href' => 'privilege.php?act=add', 'text' => $_LANG['admin_add']

));

$smarty->assign('full_page', 1);

$smarty->assign('admin_list', get_admin_userlist());

/* 显示页面 */

assign_query_info();

$smarty->display('privilege_list.htm');

}

/* ------------------------------------------------------ */

// -- 查询

/* ------------------------------------------------------ */

function action_query ()

{

// 全局变量

// $user = $GLOBALS['user'];

$_CFG = $GLOBALS['_CFG'];

$_LANG = $GLOBALS['_LANG'];

$smarty = $GLOBALS['smarty'];

$db = $GLOBALS['db'];

$ecs = $GLOBALS['ecs'];

$smarty->assign('admin_list', get_admin_userlist());

make_json_result($smarty->fetch('privilege_list.htm'));

}

/* ------------------------------------------------------ */

// -- 添加管理员页面

/* ------------------------------------------------------ */

function action_add ()

{

// 全局变量

// $user = $GLOBALS['user'];

$_CFG = $GLOBALS['_CFG'];

$_LANG = $GLOBALS['_LANG'];

$smarty = $GLOBALS['smarty'];

$db = $GLOBALS['db'];

$ecs = $GLOBALS['ecs'];

/* 检查权限 */

admin_priv('admin_manage');

/* 模板赋值 */

$smarty->assign('ur_here', $_LANG['admin_add']);

$smarty->assign('action_link', array(

'href' => 'privilege.php?act=list', 'text' => $_LANG['admin_list']

));

$smarty->assign('form_act', 'insert');

$smarty->assign('action', 'add');

$smarty->assign('select_role', get_role_list());

/* 显示页面 */

assign_query_info();

$smarty->display('privilege_info.htm');

}

/* ------------------------------------------------------ */

// -- 添加管理员的处理

/* ------------------------------------------------------ */

function action_insert ()

{

// 全局变量

// $user = $GLOBALS['user'];

$_CFG = $GLOBALS['_CFG'];

$_LANG = $GLOBALS['_LANG'];

$smarty = $GLOBALS['smarty'];

$db = $GLOBALS['db'];

$ecs = $GLOBALS['ecs'];

$where_big = $GLOBALS['where_big'];

$exc = $GLOBALS['exc'];

admin_priv('admin_manage');

if($_POST['token'] != $_CFG['token'])

{

sys_msg('add_error', 1);

}

/* 判断管理员是否已经存在 */

if(! empty($_POST['user_name']))

{

// $is_only = $exc->is_only('user_name',

// stripslashes($_POST['user_name']), 0, $where_big);

$is_only = $exc->is_only('user_name', stripslashes($_POST['user_name']));

if(! $is_only)

{

sys_msg(sprintf($_LANG['user_name_exist'] . "
或此管理员帐号已经被其它入驻商占用!", stripslashes($_POST['user_name'])), 1);

}

}

/* Email地址是否有重复 */

if(! empty($_POST['email']))

{

// $is_only = $exc->is_only('email', stripslashes($_POST['email']), 0,

// $where_big);

$is_only = $exc->is_only('email', stripslashes($_POST['email']));

if(! $is_only)

{

sys_msg(sprintf($_LANG['email_exist'] . "
或此邮箱已经被其它入驻商占用!", stripslashes($_POST['email'])), 1);

}

}

/* 获取添加日期及密码 */

$add_time = gmtime();

$password = md5($_POST['password']);

$role_id = '';

$action_list = '';

if(! empty($_POST['select_role']))

{

$sql = "SELECT action_list FROM " . $ecs->table('role') . " WHERE role_id = '" . $_POST['select_role'] . "'";

$row = $db->getRow($sql);

$action_list = $row['action_list'];

$role_id = $_POST['select_role'];

}

$sql = "SELECT nav_list FROM " . $ecs->table('supplier_admin_user') . " WHERE action_list = 'all' AND supplier_id=" . $_SESSION['supplier_id'];

$row = $db->getRow($sql);

$sql = "INSERT INTO " . $ecs->table('supplier_admin_user') . " (user_name, email, password, add_time, nav_list, action_list, role_id, supplier_id, checked) " . "VALUES ('" . trim($_POST['user_name']) . "', '" . trim($_POST['email']) . "', '$password', '$add_time', '$row[nav_list]', '$action_list', '$role_id', '$_SESSION[supplier_id]', 1)";

$db->query($sql);

/* 转入权限分配列表 */

$new_id = $db->Insert_ID();

/* 添加链接 */

$link[0]['text'] = $_LANG['go_allot_priv'];

$link[0]['href'] = 'privilege.php?act=allot&id=' . $new_id . '&user=' . $_POST['user_name'] . '';

$link[1]['text'] = $_LANG['continue_add'];

$link[1]['href'] = 'privilege.php?act=add';

sys_msg($_LANG['add'] . " " . $_POST['user_name'] . " " . $_LANG['action_succeed'], 0, $link);

/* 记录管理员操作 */

admin_log($_POST['user_name'], 'add', 'privilege');

}

/* ------------------------------------------------------ */

// -- 编辑管理员信息

/* ------------------------------------------------------ */

function action_edit ()

{

// 全局变量

// $user = $GLOBALS['user'];

$_CFG = $GLOBALS['_CFG'];

$_LANG = $GLOBALS['_LANG'];

$smarty = $GLOBALS['smarty'];

$db = $GLOBALS['db'];

$ecs = $GLOBALS['ecs'];

/* 不能编辑demo这个管理员 */

if($_SESSION['admin_name'] == 'demo')

{

$link[] = array(

'text' => $_LANG['back_list'], 'href' => 'privilege.php?act=list'

);

sys_msg($_LANG['edit_admininfo_cannot'], 0, $link);

}

$_REQUEST['id'] = ! empty($_REQUEST['id']) ? intval($_REQUEST['id']) : 0;

/* 查看是否有权限编辑其他管理员的信息 */

if($_SESSION['supplier_user_id'] != $_REQUEST['id'])

{

admin_priv('admin_manage');

}

/* 获取管理员信息 */

$sql = "SELECT user_id, user_name, email, password, agency_id, role_id, supplier_id FROM " . $ecs->table('supplier_admin_user') . " WHERE user_id = '" . $_REQUEST['id'] . "' AND supplier_id=" . $_SESSION['supplier_id'];

$user_info = $db->getRow($sql);

/* 取得该管理员负责的办事处名称 */

if($user_info['agency_id'] > 0)

{

$sql = "SELECT agency_name FROM " . $ecs->table('agency') . " WHERE agency_id = '$user_info[agency_id]'";

$user_info['agency_name'] = $db->getOne($sql);

}

/* 模板赋值 */

$smarty->assign('ur_here', $_LANG['admin_edit']);

$smarty->assign('action_link', array(

'text' => $_LANG['admin_list'], 'href' => 'privilege.php?act=list'

));

$smarty->assign('user', $user_info);

/* 获得该管理员的权限 */

$priv_str = $db->getOne("SELECT action_list FROM " . $ecs->table('supplier_admin_user') . " WHERE user_id = '$_GET[id]' AND supplier_id = '$_SESSION[supplier_id]'");

/* 如果被编辑的管理员拥有了all这个权限,将不能编辑 */

if($priv_str != 'all')

{

$smarty->assign('select_role', get_role_list());

}

$smarty->assign('form_act', 'update');

$smarty->assign('action', 'edit');

assign_query_info();

$smarty->display('privilege_info.htm');

}

/* ------------------------------------------------------ */

// -- 更新管理员信息

/* ------------------------------------------------------ */

function action_update ()

{

// 全局变量

// $user = $GLOBALS['user'];

$_CFG = $GLOBALS['_CFG'];

$_LANG = $GLOBALS['_LANG'];

$smarty = $GLOBALS['smarty'];

$db = $GLOBALS['db'];

$ecs = $GLOBALS['ecs'];

$exc = $GLOBALS['exc'];

/* 变量初始化 */

$admin_id = ! empty($_REQUEST['id']) ? intval($_REQUEST['id']) : 0;

$admin_name = ! empty($_REQUEST['user_name']) ? trim($_REQUEST['user_name']) : '';

$admin_email = ! empty($_REQUEST['email']) ? trim($_REQUEST['email']) : '';

$ec_salt = rand(1, 9999);

$password = ! empty($_POST['new_password']) ? ", password = '" . md5(md5($_POST['new_password']) . $ec_salt) . "'" : '';

if($_POST['token'] != $_CFG['token'])

{

sys_msg('update_error', 1);

}

if($action == 'update')

{

/* 查看是否有权限编辑其他管理员的信息 */

if($_SESSION['supplier_user_id'] != $_REQUEST['id'])

{

admin_priv('admin_manage');

}

$g_link = 'privilege.php?act=list';

$nav_list = '';

}

else

{

$nav_list = ! empty($_POST['nav_list']) ? ", nav_list = '" . @join(",", $_POST['nav_list']) . "'" : '';

$admin_id = $_SESSION['supplier_user_id'];

$g_link = 'privilege.php?act=modif';

}

/* 判断管理员是否已经存在 */

if(! empty($admin_name))

{

$is_only = $exc->num('user_name', $admin_name, $admin_id);

if($is_only == 1)

{

sys_msg(sprintf($_LANG['user_name_exist'], stripslashes($admin_name)), 1);

}

}

/* Email地址是否有重复 */

if(! empty($admin_email))

{

$is_only = $exc->num('email', $admin_email, $admin_id);

if($is_only == 1)

{

sys_msg(sprintf($_LANG['email_exist'], stripslashes($admin_email)), 1);

}

}

// 如果要修改密码

$pwd_modified = false;

if(! empty($_POST['new_password']))

{

/* 查询旧密码并与输入的旧密码比较是否相同 */

$sql = "SELECT password FROM " . $ecs->table('supplier_admin_user') . " WHERE user_id = '$admin_id' AND supplier_id=" . $_SESSION['supplier_id'];

$old_password = $db->getOne($sql);

$sql = "SELECT ec_salt FROM " . $ecs->table('supplier_admin_user') . " WHERE user_id = '$admin_id' AND supplier_id=" . $_SESSION['supplier_id'];

$old_ec_salt = $db->getOne($sql);

if(empty($old_ec_salt))

{

$old_ec_password = md5($_POST['old_password']);

}

else

{

$old_ec_password = md5(md5($_POST['old_password']) . $old_ec_salt);

}

if($old_password != $old_ec_password)

{

$link[] = array(

'text' => $_LANG['go_back'], 'href' => 'javascript:history.back(-1)'

);

sys_msg($_LANG['pwd_error'], 0, $link);

}

/* 比较新密码和确认密码是否相同 */

if($_POST['new_password'] != $_POST['pwd_confirm'])

{

$link[] = array(

'text' => $_LANG['go_back'], 'href' => 'javascript:history.back(-1)'

);

sys_msg($_LANG['js_languages']['password_error'], 0, $link);

}

else

{

$pwd_modified = true;

}

}

$role_id = '';

$action_list = '';

if(! empty($_POST['select_role']))

{

$sql = "SELECT action_list FROM " . $ecs->table('role') . " WHERE role_id = '" . $_POST['select_role'] . "'";

$row = $db->getRow($sql);

$action_list = ', action_list = \'' . $row['action_list'] . '\'';

$role_id = ', role_id = ' . $_POST['select_role'] . ' ';

}

// 更新管理员信息

if($pwd_modified)

{

$sql = "UPDATE " . $ecs->table('supplier_admin_user') . " SET " . "user_name = '$admin_name', " . "email = '$admin_email', " . "ec_salt = '$ec_salt' " . $action_list . $role_id . $password . $nav_list . "WHERE user_id = '$admin_id' AND supplier_id=" . $_SESSION['supplier_id'];

}

else

{

$sql = "UPDATE " . $ecs->table('supplier_admin_user') . " SET " . "user_name = '$admin_name', " . "email = '$admin_email' " . $action_list . $role_id . $nav_list . "WHERE user_id = '$admin_id' AND supplier_id=" . $_SESSION['supplier_id'];

}

$db->query($sql);

/* 记录管理员操作 */

// admin_log($_POST['user_name'], 'edit', 'privilege');

/* 如果修改了密码,则需要将session中该管理员的数据清空 */

if($pwd_modified && $action == 'update_self')

{

// $sess->delete_spec_admin_session($_SESSION['admin_id']);

$msg = $_LANG['edit_password_succeed'];

}

else

{

$msg = $_LANG['edit_profile_succeed'];

}

/* 提示信息 */

$link[] = array(

'text' => strpos($g_link, 'list') ? $_LANG['back_admin_list'] : $_LANG['modif_info'], 'href' => $g_link

);

sys_msg("$msg", 0, $link);

}

/* ------------------------------------------------------ */

// -- 编辑个人资料

/* ------------------------------------------------------ */

function action_modif ()

{

// 全局变量

// $user = $GLOBALS['user'];

$_CFG = $GLOBALS['_CFG'];

$_LANG = $GLOBALS['_LANG'];

$smarty = $GLOBALS['smarty'];

$db = $GLOBALS['db'];

$ecs = $GLOBALS['ecs'];

include_once ('includes/inc_menu.php');

/* 包含插件菜单语言项 */

$sql = "SELECT code FROM " . $ecs->table('plugins');

$rs = $db->query($sql);

while($row = $db->FetchRow($rs))

{

/* 取得语言项 */

if(file_exists(ROOT_PATH . 'plugins/' . $row['code'] . '/languages/common_' . $_CFG['lang'] . '.php'))

{

include_once (ROOT_PATH . 'plugins/' . $row['code'] . '/languages/common_' . $_CFG['lang'] . '.php');

}

/* 插件的菜单项 */

if(file_exists(ROOT_PATH . 'plugins/' . $row['code'] . '/languages/inc_menu.php'))

{

include_once (ROOT_PATH . 'plugins/' . $row['code'] . '/languages/inc_menu.php');

}

}

foreach($modules as $key => $value)

{

ksort($modules[$key]);

}

ksort($modules);

/* 获得当前管理员数据信息 */

$sql = "SELECT u.user_id, u.user_name, u.email, s.nav_list " . "FROM " . $ecs->table('users') . " AS u, " . $ecs->table('supplier') . "AS s WHERE u.user_id=s.user_id AND u.user_id = '" . $_SESSION['supplier_user_id'] . "'";

$user_info = $db->getRow($sql);

/* 获取导航条 */

$nav_arr = (trim($user_info['nav_list']) == '') ? array() : explode(",", $user_info['nav_list']);

$nav_lst = array();

foreach($nav_arr as $val)

{

$arr = explode('|', $val);

$nav_lst[$arr[1]] = $arr[0];

}

/* 模板赋值 */

$smarty->assign('lang', $_LANG);

$smarty->assign('ur_here', $_LANG['modif_info']);

$smarty->assign('user', $user_info);

$smarty->assign('menus', $modules);

$smarty->assign('nav_arr', $nav_lst);

$smarty->assign('form_act', 'update_self');

$smarty->assign('action', 'modif');

/* 显示页面 */

assign_query_info();

$smarty->display('privilege_info.htm');

}

/* ------------------------------------------------------ */

// -- 为管理员分配权限

/* ------------------------------------------------------ */

function action_allot ()

{

// 全局变量

// $user = $GLOBALS['user'];

$_CFG = $GLOBALS['_CFG'];

$_LANG = $GLOBALS['_LANG'];

$smarty = $GLOBALS['smarty'];

$db = $GLOBALS['db'];

$ecs = $GLOBALS['ecs'];

include_once (ROOT_PATH . 'languages/' . $_CFG['lang'] . '/admin/supplier_priv_action.php');

admin_priv('allot_priv');

if($_SESSION['supplier_user_id'] == $_GET['id'])

{

admin_priv('all');

}

/* 获得该管理员的权限 */

$priv_str = $db->getOne("SELECT action_list FROM " . $ecs->table('supplier_admin_user') . " WHERE user_id = '$_GET[id]' AND supplier_id = '$_SESSION[supplier_id]'");

/* 如果被编辑的管理员拥有了all这个权限,将不能编辑 */

if($priv_str == 'all')

{

$link[] = array(

'text' => $_LANG['back_admin_list'], 'href' => 'privilege.php?act=list'

);

sys_msg($_LANG['edit_admininfo_cannot'], 0, $link);

}

/* 获取权限的分组数据 */

$sql_query = "SELECT action_id, parent_id, action_code,relevance FROM " . $ecs->table('supplier_admin_action') . " WHERE parent_id = 0";

$res = $db->query($sql_query);

while($rows = $db->FetchRow($res))

{

$priv_arr[$rows['action_id']] = $rows;

}

/* 按权限组查询底级的权限名称 */

$sql = "SELECT action_id, parent_id, action_code,relevance FROM " . $ecs->table('supplier_admin_action') . " WHERE parent_id " . db_create_in(array_keys($priv_arr));

$result = $db->query($sql);

while($priv = $db->FetchRow($result))

{

$priv_arr[$priv["parent_id"]]["priv"][$priv["action_code"]] = $priv;

}

// 将同一组的权限使用 "," 连接起来,供JS全选

foreach($priv_arr as $action_id => $action_group)

{

$priv_arr[$action_id]['priv_list'] = join(',', @array_keys($action_group['priv']));

foreach($action_group['priv'] as $key => $val)

{

$priv_arr[$action_id]['priv'][$key]['cando'] = (strpos($priv_str, $val['action_code']) !== false || $priv_str == 'all') ? 1 : 0;

}

}

/* 赋值 */

$smarty->assign('lang', $_LANG);

$smarty->assign('ur_here', $_LANG['allot_priv'] . ' [ ' . $_GET['user'] . ' ] ');

$smarty->assign('action_link', array(

'href' => 'privilege.php?act=list', 'text' => $_LANG['admin_list']

));

$smarty->assign('priv_arr', $priv_arr);

$smarty->assign('form_act', 'update_allot');

$smarty->assign('user_id', $_GET['id']);

/* 显示页面 */

assign_query_info();

$smarty->display('privilege_allot.htm');

}

/* ------------------------------------------------------ */

// -- 更新管理员的权限

/* ------------------------------------------------------ */

function action_update_allot ()

{

// 全局变量

// $user = $GLOBALS['user'];

$_CFG = $GLOBALS['_CFG'];

$_LANG = $GLOBALS['_LANG'];

$smarty = $GLOBALS['smarty'];

$db = $GLOBALS['db'];

$ecs = $GLOBALS['ecs'];

admin_priv('admin_manage');

if($_POST['token'] != $_CFG['token'])

{

sys_msg('update_allot_error', 1);

}

/* 取得当前管理员用户名 */

$admin_name = $db->getOne("SELECT user_name FROM " . $ecs->table('supplier_admin_user') . " WHERE user_id = '$_POST[id]' AND supplier_id = '$_SESSION[supplier_id]'");

/* 更新管理员的权限 */

$act_list = @join(",", $_POST['action_code']);

$sql = "UPDATE " . $ecs->table('supplier_admin_user') . " SET action_list = '$act_list', role_id = '' " . "WHERE user_id = '$_POST[id]' AND supplier_id = '$_SESSION[supplier_id]'";

$db->query($sql);

/* 动态更新管理员的SESSION */

if($_SESSION["admin_id"] == $_POST['id'])

{

$_SESSION["action_list"] = $act_list;

}

/* 记录管理员操作 */

// admin_log(addslashes($admin_name), 'edit', 'privilege');

/* 提示信息 */

$link[] = array(

'text' => $_LANG['back_admin_list'], 'href' => 'privilege.php?act=list'

);

sys_msg($_LANG['edit'] . " " . $admin_name . " " . $_LANG['action_succeed'], 0, $link);

}

/* ------------------------------------------------------ */

// -- 删除一个管理员

/* ------------------------------------------------------ */

function action_remove ()

{

// 全局变量

// $user = $GLOBALS['user'];

$_CFG = $GLOBALS['_CFG'];

$_LANG = $GLOBALS['_LANG'];

$smarty = $GLOBALS['smarty'];

$db = $GLOBALS['db'];

$ecs = $GLOBALS['ecs'];

$exc = $GLOBALS['exc'];

check_authz_json('admin_drop');

$id = intval($_GET['id']);

/* 获得管理员用户名 */

$action_list = $db->getOne('SELECT action_list FROM ' . $ecs->table('supplier_admin_user') . " WHERE user_id='$id' AND supplier_id='$_SESSION[supplier_id]'");

/* 总管理员这个管理员不允许删除 */

if($action_list == 'all')

{

// make_json_error($_LANG['edit_remove_cannot']);

make_json_error($_LANG['remove_cannot']);

}

/* ID为1的不允许删除 */

// if ($id == 1)

// {

// make_json_error($_LANG['remove_cannot']);

// }

/* 管理员不能删除自己 */

if($id == $_SESSION['supplier_user_id'])

{

make_json_error($_LANG['remove_self_cannot']);

}

if($exc->drop($id))

{

// $sess->delete_spec_admin_session($id); // 删除session中该管理员的记录

// admin_log(addslashes($admin_name), 'remove', 'privilege');

clear_cache_files();

}

$url = 'privilege.php?act=query&' . str_replace('act=remove', '', $_SERVER['QUERY_STRING']);

ecs_header("Location: $url\n");

exit();

}

/* 获取管理员列表 */

function get_admin_userlist ()

{

$list = array();

$sql = 'SELECT user_id, user_name, email, add_time, last_login, supplier_id ' . 'FROM ' . $GLOBALS['ecs']->table('supplier_admin_user') . ' where user_name != "admin123" and checked=1 and supplier_id = ' . $_SESSION['supplier_id'] . ' ORDER BY user_id DESC';

$list = $GLOBALS['db']->getAll($sql);

foreach($list as $key => $val)

{

$list[$key]['add_time'] = local_date($GLOBALS['_CFG']['time_format'], $val['add_time']);

$list[$key]['last_login'] = local_date($GLOBALS['_CFG']['time_format'], $val['last_login']);

}

return $list;

}

/* 清除购物车中过期的数据 */

function clear_cart ()

{

/* 取得有效的session */

$sql = "SELECT DISTINCT session_id " . "FROM " . $GLOBALS['ecs']->table('cart') . " AS c, " . $GLOBALS['ecs']->table('sessions') . " AS s " . "WHERE c.session_id = s.sesskey ";

$valid_sess = $GLOBALS['db']->getCol($sql);

// 删除cart中无效的数据

$sql = "DELETE FROM " . $GLOBALS['ecs']->table('cart') . " WHERE session_id NOT " . db_create_in($valid_sess);

$GLOBALS['db']->query($sql);

}

/* 获取角色列表 */

function get_role_list ()

{

return '';

$list = array();

$sql = 'SELECT role_id, role_name, action_list ' . 'FROM ' . $GLOBALS['ecs']->table('role');

$list = $GLOBALS['db']->getAll($sql);

return $list;

}

?>

一键复制

编辑

Web IDE

原始数据

按行查看

历史

weixin_39694264
关注
  • 0
    点赞
  • 0
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
藏经阁-White Hat Privilege.pdf
08-26
藏经阁-White Hat Privilege.pdf
acts_as_privilege.rb:Rails 的简单权限解决方案
06-30
rails plugin install git://github.com/cyril/acts_as_privilege.git 然后,生成文件并应用迁移: rails generate privileges model rake db:migrate 此时, Privilege模型可以填充: rest_actions = %w
privilege.php act login,python模拟登录ecshop并发布商品
weixin_33331021的博客
03-26 293
用到的模块import requestsimport loggingimport base64import time流程会用到requests.session()1. 打开登录页2. 模拟post登录3. 获取登录后页面4. 准备图片5. 准备商品数据6. 模拟post发布商品代码#coding:utf-8import requestsimport loggingimport base64impo...
privilege.php act login,【重庆达内】登录 privilege.php
weixin_39638014的博客
03-26 83
该楼层疑似违规已被系统折叠隐藏此楼查看此楼phpsession_start(); //开启sessionsession_unregister("userName"); //删除sessionsession_register("userName"); //重新定义session 并赋值include_once("../config.inc.php");include_once("../includ...
echsop privilege.php?act=login,ecshop教程:后台登陆自动退出的一种可能情况
weixin_28987547的博客
03-16 555
问题描述:某客户的ecshop后台登陆后,显示成功,但是自动退出到登陆界面。问题解决:因为 windows 系统不区分目录大小写,而php是区分大小写的那么 http://你的域名/admin/ 和 http://你的域名/Admin/ 就不一样如果你用后者登陆系统,就会出现自动退出的情况具体原因在 admin/includes/init.php 里面代码决定,要求是 data/config.ph...
重庆达内php,【重庆达内】登录 privilege.php
weixin_35656458的博客
03-18 312
该楼层疑似违规已被系统折叠隐藏此楼查看此楼phpsession_start(); //开启sessionsession_unregister("userName"); //删除sessionsession_register("userName"); //重新定义session 并赋值include_once("../config.inc.php");include_once("../includ...
php授权验证系统 c,Clink和Cbottom权限验证
weixin_39857153的博客
03-13 236
通过Clink和Cbottom可以在模块内容界面中显示对应的操作链接,本教程用于权限验证,决定哪个模块是否显示这些链接如果不进行权限验证,那么所以模块都会显示这些链接1、在插件modles目录创建Auth.php模型文件例如插件目录是Demo,dayrui/App/Demo/Models/Auth.php...
privilege.rar_Java编程_Java_
08-12
综上所述,"privilege.rar"中提供的通用权限管理模块是一个综合运用了Struts2、Hibernate3.2和Spring2的Java Web应用实例,展示了如何利用这些框架构建安全、高效的权限控制系统。这个模块对于理解和实践企业级Java...
php程序提权代码,仅供参考,代码加密正常使用
最新发布
07-05
PHP提权代码涉及提升用户权限,通常与安全研究或渗透测试有关。执行此类操作需要合法授权。以下是一个基本的PHP代码示例,用于尝试提升用户权限: ```php ... echo "Privilege escalation successful.\n
Linux Privilege Escalation – Overview.pdf
10-06
网络安全渗透测试
Access denied; you need the SUPER privilege for...
weixin_33957648的博客
11-12 706
2019独角兽企业重金招聘Python工程师标准>>> ...
南邮CTF平台WEB题writeup
ghtwf01的博客
12-01 1458
平台地址:https://cgctf.nuptsast.com/login 1.签到题 F12查看网页源代码就有flag 2.md5 collision 附上题目给的源代码 md51 = md5('QNKCDZO'); $a = @$_GET['a']; $md52 = @md5($a); if(isset($a)){ if ($a != 'QNKCDZO' && $md51 == $md52) { echo "nctf{*****************}"; } else {
网站安全检测服务之PHP代码的后台绕过登录漏洞
网站安全专家
06-06 7795
针对于PHP代码的开发的网站,最近在给客户做网站安全检测的同时,大大小小的都会存在网站的后台管理页面被绕过并直接登录后台的漏洞,而且每个网站的后台被绕过的方式都不一样,根据SINE安全渗透测试多年来经验,来总结一下网站后台绕过的一些详情,以及该如何去防范后台被绕过,做好网站的安全部署。  后台验证码缺乏安全验证  比如在axublog程序中,网站后台存在一个验证管理员登录的一个函数chkadcoo...
php核心知识点
郝云博客
05-26 9935
Php:脚本语言,网站建设,服务器端运行PHP定义:一种服务器端的 HTML 脚本/编程语言,是一种简单的、面向对象的、解释型的、健壮的、安全的、性能非常之高的、独立于架构的、可移植的、动态的脚本语言。是一种广泛用于 Open Source(开放源代码)的尤其适合 Web 开发并可以嵌入 HTML 的多用途脚本语言。它的语法接近 C,Java 和 Perl,而且容易学习。该语言让 Web 开发人员
20150115--SHOP项目架构+后台权限管理-02
weixin_30693183的博客
04-21 68
20150115--SHOP项目架构+后台权限管理-02 后台权限管理 获取登录界面 后台权限管理php文件成为权限管理模块。处理多个跟权限相关的功能。 1. 在后台新增一个叫做权限的php文件:/admin/privilege.php 2. 用户请求该文件的第一...
update注入的一个小trick
vspiders的博客
06-18 339
0x01 Mysql特性Mysql中update语句的定义如下:UPDATE table_name SET field1 = new-value1, field2 = new-value2 [WHERE Clause]但是偶然发现,field1与field2两字段可以同名,并且UPDATE之后的字段内容会以field2的赋值为准。如上图中,Link字段被赋值了两次,最终的该Link字段的内容以最后...
商家联盟会员管理系统 后台密码忘了的解决方法
chenhao0568的专栏
05-03 5615
因为拿到的是半开源的代码,登录部分被封装了。所以只能修改代码,先登录,再修改管理员密码。再用原代码。  C:\Program Files\Tencent\QQLite\Users\345139427\FileRecv\MobileFile\大型会员管理系统源码带微信功能\商家联盟连锁店会员系统源码\商家联盟连锁店会员系统源码-\商家联盟会员消费系统源码\00828\主系统源码\Cha
ecshop限制管理员登录
weixin_34032621的博客
09-11 114
2019独角兽企业重金招聘Python工程师标准>>> ...
[教程]不用破解管理员Hash,K8飞刀使用Cookie直接进入Ecshop后台
07-20 4650
[教程]不用破解管理员Hash,K8飞刀使用Cookie直接进入Ecshop后台   2013-08-11 14:32:35|  分类: Web_0day |举报 |字号 订阅           下载LOFTER 我的照片书  | 方法是网上公开的,在这里我只是做个演示教程,没什么
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值