www.gusucode.com > 帝国网站管理系统(帝国CMS) 6 > 帝国网站管理系统(帝国CMS) 6.5繁体UTF-8/upload/e/admin/member/MemberGbook.php
<?php
define('EmpireCMSAdmin','1');
require("../../class/connect.php");
require("../../class/db_sql.php");
require("../../class/functions.php");
$link=db_connect();
$empire=new mysqlquery();
$editor=1;
//驗證用戶
$lur=is_login();
$logininid=$lur['userid'];
$loginin=$lur['username'];
$loginrnd=$lur['rnd'];
$loginlevel=$lur['groupid'];
$loginadminstyleid=$lur['adminstyleid'];
//驗證權限
CheckLevel($logininid,$loginin,$classid,"spacedata");
//刪除留言
function hDelMemberGbook($add,$userid,$username){
global $empire,$dbtbpre;
$gid=intval($add['gid']);
if(!$gid)
{
printerror("NotDelMemberGbookid","history.go(-1)");
}
$sql=$empire->query("delete from {$dbtbpre}enewsmembergbook where gid='$gid'");
if($sql)
{
//操作日誌
insert_dolog("gid=".$gid);
printerror("DelMemberGbookSuccess",$_SERVER['HTTP_REFERER']);
}
else
{
printerror("DbError","history.go(-1)");
}
}
//批量刪除留言
function hDelMemberGbook_All($add,$userid,$username){
global $empire,$dbtbpre;
$gid=$add['gid'];
$count=count($gid);
if(empty($count))
{
printerror("NotDelMemberGbookid","history.go(-1)");
}
for($i=0;$i<$count;$i++)
{
$addsql.="gid='".intval($gid[$i])."' or ";
}
$addsql=substr($addsql,0,strlen($addsql)-4);
$sql=$empire->query("delete from {$dbtbpre}enewsmembergbook where (".$addsql.")");
if($sql)
{
//操作日誌
insert_dolog("");
printerror("DelMemberGbookSuccess",$_SERVER['HTTP_REFERER']);
}
else
{
printerror("DbError","history.go(-1)");
}
}
$enews=$_GET['enews'];
if(empty($enews))
{$enews=$_POST['enews'];}
if($enews=="hDelMemberGbook")
{
hDelMemberGbook($_GET,$logininid,$loginin);
}
elseif($enews=="hDelMemberGbook_All")
{
hDelMemberGbook_All($_POST,$logininid,$loginin);
}
include("../../class/user.php");
include "../".LoadLang("pub/fun.php");
$page=(int)$_GET['page'];
$start=0;
$line=12;//每頁顯示條數
$page_line=12;//每頁顯示鏈接數
$offset=$page*$line;//總偏移量
//搜索
$search='';
$and='';
if($_GET['sear'])
{
$keyboard=RepPostVar2($_GET['keyboard']);
if($keyboard)
{
$show=$_GET['show'];
if($show==1)//留言內容
{
$and.=" where gbtext like '%$keyboard%'";
}
elseif($show==2)//回復內容
{
$and.=" where retext like '%$keyboard%'";
}
elseif($show==3)//留言者
{
$and.=" where uname like '%$keyboard%'";
}
elseif($show==4)//空間主人用戶ID
{
$and.=" where userid='$keyboard'";
}
elseif($show==5)//留言者IP
{
$and.=" where ip like '%$keyboard%'";
}
$search.="&sear=1&keyboard=$keyboard&show=$show";
}
}
$query="select gid,isprivate,uid,uname,ip,addtime,gbtext,retext,userid from {$dbtbpre}enewsmembergbook".$and;
$totalquery="select count(*) as total from {$dbtbpre}enewsmembergbook".$and;
$num=$empire->gettotal($totalquery);//取得總條數
$query=$query." order by gid desc limit $offset,$line";
$sql=$empire->query($query);
$returnpage=page2($num,$line,$page_line,$start,$page,$search);
$url="會員空間 > <a href=MemberGbook.php>管理留言</a>";
?>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<title>留言管理</title>
<link href="../adminstyle/<?=$loginadminstyleid?>/adminstyle.css" rel="stylesheet" type="text/css">
</head>
<body>
<table width="100%" border="0" align="center" cellpadding="3" cellspacing="1">
<tr>
<td width="50%">位置:
<?=$url?>
</td>
<td><div align="right"> </div></td>
</tr>
</table>
<table width="100%" border="0" align="center" cellpadding="3" cellspacing="1">
<form name="searchgb" method="get" action="MemberGbook.php">
<tr>
<td><div align="center">搜索:
<input name="keyboard" type="text" id="keyboard" value="<?=$keyboard?>">
<select name="show" id="show">
<option value="1"<?=$show==1?' selected':''?>>留言內容</option>
<option value="2"<?=$show==2?' selected':''?>>回復內容</option>
<option value="3"<?=$show==3?' selected':''?>>留言者</option>
<option value="4"<?=$show==4?' selected':''?>>空間主人用戶ID</option>
<option value="5"<?=$show==5?' selected':''?>>留言者IP</option>
</select>
<input type="submit" name="Submit" value="搜索">
<input name="sear" type="hidden" id="sear" value="1">
</div></td>
</tr>
</form>
</table>
<form name=thisform method=post action=MemberGbook.php onsubmit="return confirm('確認要執行操作?');">
<?
while($r=$empire->fetch($sql))
{
$ur=$empire->fetch1("select ".$user_username." from ".$user_tablename." where ".$user_userid."='$r[userid]'");
if($r['uid'])
{
$r['uname']="<b><a href='../../space/?userid=$r[uid]' target='_blank'>$r[uname]</a></b>";
}
$username=doUtfAndGbk($ur[$user_username],1);
$private='';
if($r['isprivate'])
{
$private='<b>[悄悄話]</b>';
}
?>
<table width="700" border="0" align="center" cellpadding="3" cellspacing="1" class=tableborder>
<tr class=header>
<td width="55%" height="23">發佈者:
<?=$r[uname]?>
</td>
<td width="45%">發佈時間:
<?=$r[addtime]?>
(IP: <?=$r[ip]?>) </td>
</tr>
<tr bgcolor="#FFFFFF">
<td height="23" colspan="2"> <table border=0 width='100%' cellspacing=1 cellpadding=10 bgcolor='#cccccc'>
<tr>
<td width='100%' bgcolor='#FFFFFF' style='word-break:break-all'>
<?=$private.nl2br($r[gbtext])?>
</td>
</tr>
</table>
<table width="100%" border="0" align="center" cellpadding="3" cellspacing="1" style='word-break:break-all'>
<tr>
<td><img src="../../data/images/regb.gif" width="18" height="18"><strong><font color="#FF0000">回復:</font></strong>
<?=nl2br($r[retext])?>
</td>
</tr>
</table>
</td>
</tr>
<tr bgcolor="#FFFFFF">
<td height="23" colspan="2"><div align="right">
<table width="100%" border="0" cellspacing="1" cellpadding="3">
<tr>
<td width="55%"><strong>空間主人: <a href="MemberGbook.php?sear=1&show=4&keyboard=<?=$r[userid]?>">
<?=$username?>
</a> </strong></td>
<td width="45%">
<div align="left"><strong>操作:</strong> [<a href="MemberGbook.php?enews=hDelMemberGbook&gid=<?=$r[gid]?>" onclick="return confirm('確認要刪除?');">刪除</a>]
<input name="gid[]" type="checkbox" value="<?=$r[gid]?>">
</div></td>
</tr>
</table>
</div></td>
</tr>
</table>
<br>
<?
}
?>
<table width="700" border="0" align="center" cellpadding="3" cellspacing="1">
<tr>
<td>分頁:
<?=$returnpage?>
<input type="submit" name="Submit2" value="批量刪除" onClick="document.thisform.enews.value='hDelMemberGbook_All';">
<input name="enews" type="hidden" id="enews" value="hDelMemberGbook_All">
</td>
</tr>
</table>
</form>
</body>
</html>
<?
db_close();
$empire=null;
?>