www.gusucode.com > seacms 海洋PHP影视视频网站建站系统 v6.61PHP源码程序 > seacms 海洋PHP影视视频网站建站系统 v6.61/海洋cms V6.61/海洋cms V6.61/upload/include/check.admin.php
<?php if(!defined('sea_INC')) { exit("Request Error!"); } session_start(); function CheckPurview() { if($GLOBALS['cuserLogin']->getUserRank()<>1) { ShowMsg("对不起,你没有权限执行此操作!<br/><br/><a href='javascript:history.go(-1);'>点击此返回上一页>></a>",'javascript:;'); exit(); } } $admincachefile = sea_DATA.'/admin_'.cn_substr(md5($cfg_cookie_encode),24).'.php'; if(!file_exists($admincachefile)) { $fp = fopen($admincachefile,'w'); fwrite($fp,'<'.'?php $admin_path ='." ''; ?".'>'); fclose($fp); } require_once($admincachefile); class userLogin { var $userName = ''; var $userPwd = ''; var $userID = ''; var $adminDir = ''; var $groupid = ''; var $keepUserIDTag = "sea_admin_id"; var $keepgroupidTag = "sea_group_id"; var $keepUserNameTag = "sea_admin_name"; //php5构造函数 function __construct($admindir='') { global $admin_path; if(isset($_SESSION[$this->keepUserIDTag])) { $this->userID = $_SESSION[$this->keepUserIDTag]; $this->groupid = $_SESSION[$this->keepgroupidTag]; $this->userName = $_SESSION[$this->keepUserNameTag]; } if($admindir!='') { $this->adminDir = $admindir; } else { $this->adminDir = $admin_path; } } function userLogin($admindir='') { $this->__construct($admindir); } //检验用户是否正确 function checkUser($username,$userpwd) { global $dsql; //只允许用户名和密码用0-9,a-z,A-Z,'@','_','.','-'这些字符 $this->userName = m_ereg_replace("[^0-9a-zA-Z_@!\.-]",'',$username); $this->userPwd = m_ereg_replace("[^0-9a-zA-Z_@!\.-]",'',$userpwd); $pwd = substr(md5($this->userPwd),5,20); $dsql->SetQuery("Select * From `sea_admin` where name like '".$this->userName."' and state='1' limit 0,1"); $dsql->Execute(); $row = $dsql->GetObject(); if(!isset($row->password)) { return -1; } else if($pwd!=$row->password) { return -2; } else { $loginip = GetIP(); $this->userID = $row->id; $this->groupid = $row->groupid; $this->userName = $row->name; $inquery = "update `sea_admin` set loginip='$loginip',logintime='".time()."' where id='".$row->id."'"; $dsql->ExecuteNoneQuery($inquery); return 1; } } //保持用户的会话状态 //成功返回 1 ,失败返回 -1 function keepUser() { if($this->userID!=""&&$this->groupid!="") { global $admincachefile; $_SESSION[$this->keepUserIDTag] = $this->userID; $_SESSION[$this->keepgroupidTag] = $this->groupid; $_SESSION[$this->keepUserNameTag] = $this->userName; $fp = fopen($admincachefile,'w'); fwrite($fp,'<'.'?php $admin_path ='." '{$this->adminDir}'; ?".'>'); fclose($fp); return 1; } else { return -1; } } //结束用户的会话状态 function exitUser() { $_SESSION[$this->keepUserIDTag] = ''; $_SESSION[$this->keepgroupidTag] = ''; $_SESSION[$this->keepUserNameTag] = ''; } //获得用户的权限值 function getgroupid() { if($this->groupid!='') { return $this->groupid; } else { return -1; } } function getUserRank() { return $this->getgroupid(); } //获得用户的ID function getUserID() { if($this->userID!='') { return $this->userID; } else { return -1; } } //获得用户名 function getUserName() { if($this->userName!='') { return $this->userName; } else { return -1; } } } ?>