-
Notifications
You must be signed in to change notification settings - Fork 0
/
photo_modify_dir.php
117 lines (113 loc) · 4.61 KB
/
photo_modify_dir.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
<?php
/**
* TestGuest Version1.0
* ==============================================
* Copy 2010-2012 yc60
* Web:http://www.yc60.com
* ==============================================
* Author:@author
* Date:2015年7月21日
*/
session_start();
define('IN_TG', true);
define('SCRIPT','photo_add_dir' );
//引入公共文件
require dirname(__FILE__).'/includes/common.inc.php';
//管理员登录
_manage_login();
//修改
if($_GET['action']=='modify'){
if(!!$_rows=_fetch_array("SELECT tg_uniqid FROM tg_user WHERE tg_username='{$_COOKIE['username']}'")){
//敏感操作,检查标识符
_uniqid($_rows['tg_uniqid'], $_COOKIE['uniqid']);
include ROOT_PATH.'includes/check.func.php';
//接收数据
$_clean = array();
$_clean['id']=$_POST['id'];
$_clean['name'] = _check_dir_name($_POST['name'], 2, 20);
$_clean['type'] = $_POST['type'];
if(!empty($_clean['type'])){
$_clean['password'] = _check_dir_password($_POST['password'], 6);
}
$_clean['face']=$_POST['face'];
$_clean['content'] = $_POST['content'];
$_clean = _mysql_string($_clean);
//修改目录
if(empty($_clean['type'])){
_query("UPDATE tg_dir SET tg_name='{$_clean['name']}',tg_type='{$_clean['type']}',tg_password=NULL,
tg_face='{$_clean['face']}',tg_content='{$_clean['content']}'
WHERE tg_id='{$_clean['id']}'
LIMIT 1
");
}else{
_query("UPDATE tg_dir SET tg_name='{$_clean['name']}',tg_type='{$_clean['type']}',tg_password='{$_clean['password']}',
tg_face='{$_clean['face']}',tg_content='{$_clean['content']}'
WHERE tg_id='{$_clean['id']}'
LIMIT 1
");
}
if (_affected_rows() == 1) {
_close();
_location('目录修改成功','photo.php');
} else {
_close();
_alert_back('目录修改失败!');
}
}else{
_alert_back('非法登录!');
}
}
//读取数据
if(isset($_GET['id'])){
if(!!$_rows=_fetch_array("SELECT tg_id,tg_name,tg_type,tg_face,tg_content
FROM tg_dir
WHERE tg_id='{$_GET['id']}'
LIMIT 1
")){
//接收数据
$_html=array();
$_html['id'] = $_rows['tg_id'];
$_html['name'] = $_rows['tg_name'];
$_html['type'] = $_rows['tg_type'];
$_html['face'] = $_rows['tg_face'];
$_html['content'] = $_rows['tg_content'];
$_html = _html($_html);
}else{
_alert_back('此相册不存在!');
}
}else{
_alert_back('非法操作!');
}
?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Frameset//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-frameset.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />
<?php
require 'includes/title.inc.php';
?>
<script type="text/javascript" src="js/photo_add_dir.js"></script>
</head>
<body>
<?php
require ROOT_PATH.'includes/header.inc.php';
?>
<div id='photo'>
<h2>修改相册目录</h2>
<form method="post" action="?action=modify">
<input type="hidden" value="<?php echo $_html['id']?>" name="id" />
<dl>
<dd>相册名称:<input type="text" name="name" class="text" value="<?php echo $_html['name'] ?>" /></dd>
<dd>相册类型:<input type="radio" name="type" value="0" <?php if($_html['type']==0){echo 'checked="checked"';} ?> />公开 <input type="radio" name="type" value="1" <?php if($_html['type']==1){echo 'checked="checked"';} ?>/>私密</dd>
<dd id="pass" <?php if($_html['type']==1){echo 'style="display:block;"';} ?>>相册密码:<input type="password" name="password" class="text" /></dd>
<dd>相册封面:<input type="text" name="face" class="text" value="<?php echo $_html['face'];?>"/></dd>
<dd>相册描述:<textarea name="content"><?php echo $_html['content'] ?></textarea></dd>
<dd><input type="submit" value="修改相册" class="submit"/></dd>
</dl>
</form>
</div>
<?php
require ROOT_PATH.'includes/footer.inc.php';
?>
</body>
</html>