www.gusucode.com > Destoon B2B仿淘宝电子商务网站 UTF8 v6.0源码程序 > destoon/module/extend/form.inc.php
<?php
defined('IN_DESTOON') or exit('Access Denied');
require DT_ROOT.'/module/'.$module.'/common.inc.php';
$MOD['form_enable'] or dheader(DT_PATH);
require DT_ROOT.'/include/post.func.php';
$ext = 'form';
$url = $EXT[$ext.'_url'];
$TYPE = get_type($ext, 1);
$_TP = sort_type($TYPE);
require MD_ROOT.'/'.$ext.'.class.php';
$do = new $ext();
$typeid = isset($typeid) ? intval($typeid) : 0;
$destoon_task = rand_task();
if($itemid) {
$do->itemid = $itemid;
$f = $do->get_one();
$f or dheader($url);
unset($f['answer']);
extract($f);
(isset($item) && preg_match("/^[a-z0-9_\-]{1,}$/i", $item)) or $item = '';
if($submit) {
if($verify == 1) captcha($captcha, 1);
if($verify == 2) question($answer, 1);
$could_form = true;
$condition = $_username ? "AND username='$_username'" : "AND ip='$DT_IP'";
$r = $db->get_one("SELECT rid FROM {$DT_PRE}form_record WHERE fid=$itemid $condition");
if($r) message($L['form_repeat']);
if($fromtime && $DT_TIME < $fromtime) $could_form = false;
if($totime && $DT_TIME > $totime) $could_form = false;
if(!check_group($_groupid, $groupids)) $could_form = false;
if($could_form) {
$post = $other = array();
$result = $db->query("SELECT * FROM {$DT_PRE}form_question WHERE fid=$itemid ORDER BY listorder ASC,qid ASC LIMIT 100");
while($r = $db->fetch_array($result)) {
$qid = $r['qid'];
$t = explode('-', $r['required']);
$r['min'] = isset($t[0]) ? intval($t[0]) : 0;
$r['max'] = isset($t[1]) ? intval($t[1]) : 0;
if($r['min'] && $r['max'] <= $r['min']) $r['max'] = 0;
$r['option'] = array();
if($r['type'] == 0 || $r['type'] == 1) {
if(isset($a[$qid])) {
if($r['min'] && strlen($a[$qid]) < $r['min']) message(lang($L['form_min_word'], array($r['name'], $r['min'])));
if($r['max'] && strlen($a[$qid]) > $r['max']) message(lang($L['form_max_word'], array($r['name'], $r['max'])));
$post[$qid] = dhtmlspecialchars(trim($a[$qid]));
} else {
message();
}
} else if($r['type'] == 2) {
if(isset($a[$qid])) {
if($r['min'] && strlen($a[$qid]) == 0) message(lang($L['form_choose'], array($r['name'])));
$post[$qid] = dhtmlspecialchars(trim($a[$qid]));
} else {
message();
}
} else if($r['type'] == 3) {
if(isset($a[$qid])) {
if($r['min'] && count($a[$qid]) < $r['min']) message(lang($L['form_min_choose'], array($r['name'], $r['min'])));
if($r['max'] && count($a[$qid]) > $r['max']) message(lang($L['form_max_choose'], array($r['name'], $r['max'])));
$str = ',';
$val = str_replace('(*)', '', $r['value']).'|';
foreach($a[$qid] as $s) {
if(strpos($val, $s.'|') === false) message();
$str .= $s.',';
if($s == $L['form_other'] && isset($o[$qid])) $other[$qid] = dhtmlspecialchars(trim($o[$qid]));
}
$post[$qid] = dhtmlspecialchars(trim($str));
} else {
message();
}
} else if($r['type'] == 4) {
if(isset($a[$qid])) {
$val = str_replace('(*)', '', $r['value']).'|';
if(strpos($val, $a[$qid].'|') === false) message();
if($a[$qid] == $L['form_other'] && isset($o[$qid])) $other[$qid] = dhtmlspecialchars(trim($o[$qid]));
$post[$qid] = dhtmlspecialchars(trim($a[$qid]));
} else {
$post[$qid] = '';
}
}
}
$db->query("INSERT INTO {$DT_PRE}form_record (fid,username,ip,addtime,item) VALUES ('$itemid','$_username','$DT_IP','$DT_TIME','$item')");
$rid = $db->insert_id();
foreach($post as $k=>$v) {
$o = isset($other[$k]) ? $other[$k] : '';
$db->query("INSERT INTO {$DT_PRE}form_answer (fid,rid,qid,username,ip,addtime,content,other,item) VALUES ('$itemid','$rid','$k','$_username','$DT_IP','$DT_TIME','$v','$o','$item')");
}
$db->query("UPDATE {$DT_PRE}form SET answer=answer+1 WHERE itemid=$itemid");
dheader($url.'index.php?page=2&itemid='.$itemid);
} else {
dalert($L['form_failed'], $linkurl);
}
}
$adddate = timetodate($addtime, 3);
$fromdate = $fromtime ? timetodate($fromtime, 3) : $L['timeless'];
$todate = $totime ? timetodate($totime, 3) : $L['timeless'];
$lists = array();
$result = $db->query("SELECT * FROM {$DT_PRE}form_question WHERE fid=$itemid ORDER BY listorder ASC,qid ASC LIMIT 1000");
while($r = $db->fetch_array($result)) {
$t = explode('-', $r['required']);
$r['min'] = isset($t[0]) ? intval($t[0]) : 0;
$r['max'] = isset($t[1]) ? intval($t[1]) : 0;
if($r['min'] && $r['max'] <= $r['min']) $r['max'] = 0;
$r['option'] = array();
if($r['type'] == 0) {
if(strpos($r['extend'], 'size=') === false) $r['extend'] .= ' size="50"';
} else if($r['type'] == 1) {
if(strpos($r['extend'], 'rows=') === false) $r['extend'] .= ' rows="5"';
if(strpos($r['extend'], 'cols=') === false) $r['extend'] .= ' cols="80"';
} else {
$t = explode('|', $r['value']);
foreach($t as $k=>$v) {
$r['option'][$k]['name'] = str_replace('(*)', '', $v);
$r['option'][$k]['on'] = strpos($v, '(*)') !== false ? 1 : 0;
}
}
$lists[] = $r;
}
//$display = 0;
$db->query("UPDATE {$DT_PRE}form SET hits=hits+1 WHERE itemid=$itemid");
$head_title = $title.$DT['seo_delimiter'].$L['form_title'];
$template = $f['template'] ? $f['template'] : $ext;
include template($template, $module);
} else {
$head_title = $L['form_title'];
if($catid) $typeid = $catid;
$condition = '1';
if($typeid) {
isset($TYPE[$typeid]) or dheader($url);
$condition .= " AND typeid IN (".type_child($typeid, $TYPE).")";
$head_title = $TYPE[$typeid]['typename'].$DT['seo_delimiter'].$head_title;
}
if($cityid) $condition .= ($AREA[$cityid]['child']) ? " AND areaid IN (".$AREA[$cityid]['arrchildid'].")" : " AND areaid=$cityid";
$lists = $do->get_list($condition, 'addtime DESC');
include template($ext, $module);
}
?>