www.gusucode.com > DouPHP轻量PHP企业网站管理系统 v1.3 Release 源码程序 > DouPHP_v1.3.0502/upload/admin/page.php
<?php /** * DouPHP * -------------------------------------------------------------------------------------------------- * 版权所有 2013-2015 漳州豆壳网络科技有限公司,并保留所有权利。 * 网站地址: http://www.douco.com * -------------------------------------------------------------------------------------------------- * 这不是一个自由软件!您只能在遵守授权协议前提下对程序代码进行修改和使用;不允许对程序代码以任何形式任何目的的再发布。 * 授权协议:http://www.douco.com/license.html * -------------------------------------------------------------------------------------------------- * Author: DouCo * Release Date: 2015-10-16 */ define('IN_DOUCO', true); require (dirname(__FILE__) . '/include/init.php'); // rec操作项的初始化 $rec = $check->is_rec($_REQUEST['rec']) ? $_REQUEST['rec'] : 'default'; $smarty->assign('rec', $rec); $smarty->assign('cur', 'page'); /** * +---------------------------------------------------------- * 单页面列表 * +---------------------------------------------------------- */ if ($rec == 'default') { $smarty->assign('ur_here', $_LANG['page_list']); $smarty->assign('action_link', array ( 'text' => $_LANG['page_add'], 'href' => 'page.php?rec=add' )); // 赋值给模板 $smarty->assign('page_list', $dou->get_page_nolevel()); $smarty->display('page.htm'); } /** * +---------------------------------------------------------- * 单页面添加 * +---------------------------------------------------------- */ elseif ($rec == 'add') { $smarty->assign('ur_here', $_LANG['page_add']); $smarty->assign('action_link', array ( 'text' => $_LANG['page_list'], 'href' => 'page.php' )); // CSRF防御令牌生成 $smarty->assign('token', $firewall->set_token('page_add')); // 赋值给模板 $smarty->assign('form_action', 'insert'); $smarty->assign('page_list', $dou->get_page_nolevel()); $smarty->display('page.htm'); } elseif ($rec == 'insert') { if (empty($_POST['page_name'])) $dou->dou_msg($_LANG['page_name'] . $_LANG['is_empty']); if (!$check->is_unique_id($_POST['unique_id'])) $dou->dou_msg($_LANG['unique_id_wrong']); if ($dou->value_exist('page', 'unique_id', $_POST['unique_id'])) $dou->dou_msg($_LANG['unique_id_existed']); // CSRF防御令牌验证 $firewall->check_token($_POST['token'], 'page_add'); $sql = "INSERT INTO " . $dou->table('page') . " (id, unique_id, parent_id, page_name, content ,keywords, description)" . " VALUES (NULL, '$_POST[unique_id]', '$_POST[parent_id]', '$_POST[page_name]', '$_POST[content]', '$_POST[keywords]', '$_POST[description]')"; $dou->query($sql); $dou->create_admin_log($_LANG['page_add'] . ': ' . $_POST[page_name]); $dou->dou_msg($_LANG['page_add_succes'], 'page.php'); } /** * +---------------------------------------------------------- * 单页面编辑 * +---------------------------------------------------------- */ elseif ($rec == 'edit') { $smarty->assign('ur_here', $_LANG['page_edit']); $smarty->assign('action_link', array ( 'text' => $_LANG['page_list'], 'href' => 'page.php' )); // 验证并获取合法的ID $id = $check->is_number($_REQUEST['id']) ? $_REQUEST['id'] : ''; $query = $dou->select($dou->table('page'), '*', '`id` = \'' . $id . '\''); $page = $dou->fetch_array($query); // CSRF防御令牌生成 $smarty->assign('token', $firewall->set_token('page_edit')); // 赋值给模板 $smarty->assign('form_action', 'update'); $smarty->assign('page_list', $dou->get_page_nolevel(0, 0, $id)); $smarty->assign('page', $page); $smarty->display('page.htm'); } elseif ($rec == 'update') { if (empty($_POST['page_name'])) $dou->dou_msg($_LANG['page_name'] . $_LANG['is_empty']); if (!$check->is_unique_id($_POST['unique_id'])) $dou->dou_msg($_LANG['unique_id_wrong']); if ($dou->value_exist('page', 'unique_id', $_POST['unique_id'], "AND id != '$_POST[id]'")) $dou->dou_msg($_LANG['unique_id_existed']); // CSRF防御令牌验证 $firewall->check_token($_POST['token'], 'page_edit'); $sql = "UPDATE " . $dou->table('page') . " SET unique_id = '$_POST[unique_id]', parent_id = '$_POST[parent_id]', page_name = '$_POST[page_name]', content = '$_POST[content]', keywords = '$_POST[keywords]', description = '$_POST[description]' WHERE id = '$_POST[id]'"; $dou->query($sql); $dou->create_admin_log($_LANG['page_edit'] . ': ' . $_POST['page_name']); $dou->dou_msg($_LANG['page_edit_succes'], 'page.php', '', '3'); } /** * +---------------------------------------------------------- * 单页面删除 * +---------------------------------------------------------- */ elseif ($rec == 'del') { // 验证并获取合法的ID $id = $check->is_number($_REQUEST['id']) ? $_REQUEST['id'] : $dou->dou_msg($_LANG['illegal'], 'page.php'); $page_name = $dou->get_one("SELECT page_name FROM " . $dou->table('page') . " WHERE id = '$id'"); $is_parent = $dou->get_one("SELECT id FROM " . $dou->table('page') . " WHERE parent_id = '$id'"); if ($id == '1') { $dou->dou_msg($_LANG['page_del_wrong'], 'page.php', '', '3'); } elseif ($is_parent) { $_LANG['page_del_is_parent'] = preg_replace('/d%/Ums', $page_name, $_LANG['page_del_is_parent']); $dou->dou_msg($_LANG['page_del_is_parent'], 'page.php', '', '3'); } else { if (isset($_POST['confirm']) ? $_POST['confirm'] : '') { $dou->create_admin_log($_LANG['page_del'] . ': ' . $page_name); $dou->delete($dou->table('page'), "id = $id", 'page.php'); } else { $_LANG['del_check'] = preg_replace('/d%/Ums', $page_name, $_LANG['del_check']); $dou->dou_msg($_LANG['del_check'], 'page.php', '', '30', "page.php?rec=del&id=$id"); } } } ?>