1. [代码]Destoon 核心
<?php
/*
[Destoon B2B System] Copyright (c) 2008-2011 Destoon.COM
This is NOT a freeware, use is subject to license.txt
*/
defined('IN_DESTOON') or exit('Access Denied');
function dhtmlspecialchars($string) {
return is_array($string) ? array_map('dhtmlspecialchars', $string) : str_replace('&', '&', htmlspecialchars($string, ENT_QUOTES));
}
function daddslashes($string) {
if(!is_array($string)) return addslashes($string);
foreach($string as $key => $val) $string[$key] = daddslashes($val);
return $string;
}
function dstripslashes($string) {
if(!is_array($string)) return stripslashes($string);
foreach($string as $key => $val) $string[$key] = dstripslashes($val);
return $string;
}
function dsafe($string) {
if(is_array($string)) {
return array_map('dsafe', $string);
} else {
if(strlen($string) < 20) return $string;
$match = array("/&#([a-z0-9]+)([;]*)/i", "/(j[\s\r\n\t]*a[\s\r\n\t]*v[\s\r\n\t]*a[\s\r\n\t]*s[\s\r\n\t]*c[\s\r\n\t]*r[\s\r\n\t]*i[\s\r\n\t]*p[\s\r\n\t]*t|jscript|js|vbscript|vbs|about|expression|script|frame|link|import)/i", "/on(mouse|exit|error|click|dblclick|key|load|unload|change|move|submit|reset|cut|copy|select|start|stop)/i");
$replace = array("", "<d>\\1</d>", "on\n\\1");
return preg_replace($match, $replace, $string);
}
}
function dtrim($string, $js = false) {
$string = str_replace(array(chr(10), chr(13)), array('', ''), $string);
return $js ? str_replace("'", "\'", $string) : $string;
}
function dheader($url) {
global $DT;
if(!defined('DT_ADMIN') && $DT['defend_reload']) sleep($DT['defend_reload']);
exit(header('location:'.$url));
}
function dmsg($dmsg = '', $dforward = '') {
if(!$dmsg && !$dforward) {
$dmsg = get_cookie('dmsg');
if($dmsg) {
echo '<script type="text/javascript">showmsg(\''.$dmsg.'\');</script>';
set_cookie('dmsg', '');
}
} else {
set_cookie('dmsg', $dmsg);
$dforward = preg_replace("/(.*)([&?]rand=[0-9]*)(.*)/i", "\\1\\3", $dforward);
$dforward = str_replace('.php&', '.php?', $dforward);
$dforward = strpos($dforward, '?') === false ? $dforward.'?rand='.mt_rand(10, 99) : str_replace('?', '?rand='.mt_rand(10, 99).'&', $dforward);
dheader($dforward);
}
}
function dalert($dmessage = errmsg, $dforward = '', $extend = '') {
global $CFG, $DT;
exit(include template('alert', 'message'));
}
function dsubstr($string, $length, $suffix = '', $start = 0) {
if($start) {
$tmp = dsubstr($string, $start);
$string = substr($string, strlen($tmp));
}
$strlen = strlen($string);
if($strlen <= $length) return $string;
$string = str_replace(array('"', '<', '>'), array('"', '<', '>'), $string);
$length = $length - strlen($suffix);
$str = '';
if(strtolower(DT_CHARSET) == 'utf-8') {
$n = $tn = $noc = 0;
while($n < $strlen) {
$t = ord($string{$n});
if($t == 9 || $t == 10 || (32 <= $t && $t <= 126)) {
$tn = 1; $n++; $noc++;
} elseif(194 <= $t && $t <= 223) {
$tn = 2; $n += 2; $noc += 2;
} elseif(224 <= $t && $t <= 239) {
$tn = 3; $n += 3; $noc += 2;
} elseif(240 <= $t && $t <= 247) {
$tn = 4; $n += 4; $noc += 2;
} elseif(248 <= $t && $t <= 251) {
$tn = 5; $n += 5; $noc += 2;
} elseif($t == 252 || $t == 253) {
$tn = 6; $n += 6; $noc += 2;
} else {
$n++;
}
if($noc >= $length) break;
}
if($noc > $length) $n -= $tn;
$str = substr($string, 0, $n);
} else {
for($i = 0; $i < $length; $i++) {
$str .= ord($string{$i}) > 127 ? $string{$i}.$string{++$i} : $string{$i};
}
}
$str = str_replace(array('"', '<', '>'), array('"', '<', '>'), $str);
return $str == $string ? $str : $str.$suffix;
}
function encrypt($txt, $key = '') {
$rnd = md5(microtime());
$len = strlen($txt);
$ren = strlen($rnd);
$ctr = 0;
$str = '';
for($i = 0; $i < $len; $i++) {
$ctr = $ctr == $ren ? 0 : $ctr;
$str .= $rnd[$ctr].($txt[$i] ^ $rnd[$ctr++]);
}
return str_replace('=', '', base64_encode(kecrypt($str, $key)));
}
function decrypt($txt, $key = '') {
$txt = kecrypt(base64_decode($txt), $key);
$len = strlen($txt);
$str = '';
for($i = 0; $i < $len; $i++) {
$tmp = $txt[$i];
$str .= $txt[++$i] ^ $tmp;
}
return $str;
}
function kecrypt($txt, $key) {
$key = md5($key);
$len = strlen($txt);
$ken = strlen($key);
$ctr = 0;
$str = '';
for($i = 0; $i < $len; $i++) {
$ctr = $ctr == $ken ? 0 : $ctr;
$str .= $txt[$i] ^ $key[$ctr++];
}
return $str;
}
function strtohex($str) {
$hex = '';
for($i = 0; $i < strlen($str); $i++) {
$hex .= dechex(ord($str[$i]));
}
return $hex;
}
function hextostr($hex) {
$str = '';
for($i = 0; $i < strlen($hex) - 1; $i += 2) {
$str .= chr(hexdec($hex[$i].$hex[$i+1]));
}
return $str;
}
function dround($var, $precision = 2, $sprinft = false) {
$var = round(floatval($var), $precision);
if($sprinft) $var = sprintf('%.'.$precision.'f', $var);
return $var;
}
function dalloc($i, $n = 5000) {
return ceil($i/$n);
}
function strip_sql($string) {
$search = array("/union[\s|\t]/i","/select[\s|\t]/i","/update[\s|\t]/i","/outfile[\s|\t]/i","/ascii/i","/[\s|\t]or[\s|\t]/i","/\/\*/i");
$replace = array('union ','select ','update ','outfile ','ascii ',' or ', '');
return is_array($string) ? array_map('strip_sql', $string) : preg_replace($search, $replace, $string);
}
function strip_nr($string, $js = false) {
$string = str_replace(array(chr(13), chr(10), "\n", "\r", "\t", ' '),array('', '', '', '', '', ''), $string);
if($js) $string = str_replace("'", "\'", $string);
return $string;
}
function template($template = 'index', $dir = '') {
global $CFG;
$to = $dir ? DT_CACHE.'/tpl/'.$dir.'-'.$template.'.php' : DT_CACHE.'/tpl/'.$template.'.php';
$isfileto = is_file($to);
if($CFG['template_refresh'] || !$isfileto) {
if($dir) $dir = $dir.'/';
$from = DT_ROOT.'/template/'.$CFG['template'].'/'.$dir.$template.'.htm';
if($CFG['template'] != 'default' && !is_file($from)) {
$from = DT_ROOT.'/template/default/'.$dir.$template.'.htm';
}
if(!$isfileto || filemtime($from) > filemtime($to) || (filesize($to) == 0 && filesize($from) > 0)) {
require_once DT_ROOT.'/include/template.func.php';
template_compile($from, $to);
}
}
return $to;
}
function ob_template($template, $dir = '') {
extract($GLOBALS, EXTR_SKIP);
ob_start();
include template($template, $dir);
$contents = ob_get_contents();
ob_clean();
return $contents;
}
function message($dmessage = errmsg, $dforward = 'goback', $dtime = 1) {
global $CFG, $DT;
if(!$dmessage && $dforward && $dforward != 'goback') dheader($dforward);
exit(include template('message', 'message'));
}
function login() {
global $_userid, $MODULE, $DT_URL, $DT;
$_userid or dheader($MODULE[2]['linkurl'].$DT['file_login'].'?forward='.rawurlencode($DT_URL));
}
function random($length, $chars = 'ABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789abcdefghijklmnopqrstuvwxyz') {
$hash = '';
$max = strlen($chars) - 1;
for($i = 0; $i < $length; $i++) {
$hash .= $chars[mt_rand(0, $max)];
}
return $hash;
}
function set_cookie($var, $value = '', $time = 0) {
global $CFG, $DT_TIME;
$time = $time > 0 ? $time : (empty($value) ? $DT_TIME - 3600 : 0);
$port = $_SERVER['SERVER_PORT'] == '443' ? 1 : 0;
$var = $CFG['cookie_pre'].$var;
return setcookie($var, $value, $time, $CFG['cookie_path'], $CFG['cookie_domain'], $port);
}
function get_cookie($var) {
global $CFG;
$var = $CFG['cookie_pre'].$var;
return isset($_COOKIE[$var]) ? $_COOKIE[$var] : '';
}
function get_table($moduleid, $data = 0) {
global $DT_PRE, $MODULE;
$module = $MODULE[$moduleid]['module'];
if($data) {
return in_array($module, array('article', 'info')) ? $DT_PRE.$module.'_data_'.$moduleid : $DT_PRE.$module.'_data';
} else {
return in_array($module, array('article', 'info')) ? $DT_PRE.$module.'_'.$moduleid : $DT_PRE.$module;
}
}
function get_process($fromtime, $totime) {
global $DT_TIME;
if($fromtime && $DT_TIME < $fromtime) return 1;
if($totime && $DT_TIME > $totime) return 3;
return 2;
}
function send_message($touser, $title, $content, $typeid = 4, $fromuser = '') {
global $db, $DT_TIME, $DT_IP;
if($touser == $fromuser) return false;
if(check_name($touser) && $title && $content) {
$title = addslashes($title);
$content = addslashes($content);
$r = $db->get_one("SELECT black FROM {$db->pre}member WHERE username='$touser'");
if($r) {
if($r['black'] && $typeid != 4) {
$blacks = explode(' ', $r['black']);
$_from = $fromuser ? $fromuser : 'Guest';
if(in_array($_from, $blacks)) return false;
}
$db->query("INSERT INTO {$db->pre}message (title,typeid,touser,fromuser,content,addtime,ip,status) VALUES ('$title', $typeid, '$touser','$fromuser','$content','$DT_TIME','$DT_IP',3)");
$db->query("UPDATE {$db->pre}member SET message=message+1 WHERE username='$touser'");
if($fromuser) {
$db->query("INSERT INTO {$db->pre}message (title,typeid,content,fromuser,touser,addtime,ip,status) VALUES ('$title','$typeid','$content','$fromuser','$touser','$DT_TIME','$DT_IP','2')");
}
return true;
}
}
return false;
}
function send_mail($mail_to, $mail_subject, $mail_body, $mail_from = '', $mail_sign = true) {
global $DT;
require_once DT_ROOT.'/include/mail.func.php';
$result = dmail(trim($mail_to), $mail_subject, $mail_body, $mail_from, $mail_sign);
$success = $result == 'SUCCESS' ? 1 : 0;
if($DT['mail_log']) {
global $DT_TIME, $db;
$status = $success ? 3 : 2;
$note = $success ? '' : addslashes($result);
$mail_subject = stripslashes($mail_subject);
$mail_body = stripslashes($mail_body);
$mail_subject = addslashes($mail_subject);
$mail_body = addslashes($mail_body);
$db->query("INSERT INTO {$db->pre}mail_log (email,title,content,addtime,status,note) VALUES ('$mail_to','$mail_subject','$mail_body','$DT_TIME','$status','$note')");
}
return $success;
}
function strip_sms($message) {
global $DT;
$message = strip_tags($message);
$message = preg_replace("/&([a-z]{1,});/", '', $message);
$message = str_replace(' ', '', $message);
if($DT['sms_sign']) $message .= $DT['sms_sign'];
return $message;
}
function send_sms($mobile, $message, $word = 0, $time = 0) {
global $db, $DT, $DT_TIME, $DT_IP, $_username;
if(!$DT['sms'] || !$DT['sms_uid'] || !$DT['sms_key']) return false;
$word or $word = word_count($message);
$sms_message = rawurlencode(convert($message, DT_CHARSET, 'UTF-8'));
$data = 'sms_uid='.$DT['sms_uid'].'&sms_key='.$DT['sms_key'].'&sms_charset='.DT_CHARSET.'&sms_mobile='.$mobile.'&sms_message='.$sms_message.'&sms_time='.$time;
$header = "POST /send.php HTTP/1.0\r\n";
$header .= "Accept: */*\r\n";
$header .= "Content-Type: application/x-www-form-urlencoded\r\n";
$header .= "Content-Length: ".strlen($data)."\r\n\r\n";
$DT['sms_host'] or $DT['sms_host'] = 'sms';
$fp = fsockopen($DT['sms_host'].'.destoon.com', 8820);
$code = '';
if($fp) {
fputs($fp, $header.$data);
while(!feof($fp)) {
$code .= fgets($fp, 1024);
}
fclose($fp);
if($code && strpos($code, 'destoon_sms_code=') !== false) {
$code = explode('destoon_sms_code=', $code);
$code = $code[1];
} else {
$code = 'Can Not Connect SMS Server';
}
} else {
$code = 'Can Not Connect SMS Server';
}
$db->query("INSERT INTO {$db->pre}sms (mobile,message,word,editor,sendtime,code) VALUES ('$mobile','$message','$word','$_username','$DT_TIME','$code')");
return $code;
}
function word_count($string) {
$string = convert($string, DT_CHARSET, 'gbk');
$length = strlen($string);
$count = 0;
for($i = 0; $i < $length; $i++) {
$t = ord($string[$i]);
if($t > 127) $i++;
$count++;
}
return $count;
}
function cache_read($file, $dir = '', $mode = '') {
$file = $dir ? DT_CACHE.'/'.$dir.'/'.$file : DT_CACHE.'/'.$file;
if(!is_file($file)) return array();
return $mode ? file_get($file) : include $file;
}
function cache_write($file, $string, $dir = '') {
if(is_array($string)) $string = "<?php defined('IN_DESTOON') or exit('Access Denied'); return ".strip_nr(var_export($string, true))."; ?>";
$file = $dir ? DT_CACHE.'/'.$dir.'/'.$file : DT_CACHE.'/'.$file;
$strlen = file_put($file, $string);
return $strlen;
}
function cache_delete($file, $dir = '') {
$file = $dir ? DT_CACHE.'/'.$dir.'/'.$file : DT_CACHE.'/'.$file;
return file_del($file);
}
function cache_clear($str, $type = '', $dir = '') {
$dir = $dir ? DT_CACHE.'/'.$dir.'/' : DT_CACHE.'/';
$files = glob($dir.'*');
if(is_array($files)) {
if($type == 'dir') {
foreach($files as $file) {
if(is_dir($file)) {dir_delete($file);} else {if(file_ext($file) == $str) file_del($file);}
}
} else {
foreach($files as $file) {
if(!is_dir($file) && strpos(basename($file), $str) !== false) file_del($file);
}
}
}
}
function content_table($moduleid, $itemid, $split, $table_data = '') {
if($split) {
return split_table($moduleid, $itemid);
} else {
$table_data or $table_data = get_table($moduleid, 1);
return $table_data;
}
}
function split_table($moduleid, $itemid) {
global $DT_PRE;
$part = split_id($itemid);
return $DT_PRE.$moduleid.'_'.$part;
}
function split_id($id) {
return $id > 0 ? ceil($id/500000) : 1;
}
function ip2area($ip) {
$area = '';
if(is_ip($ip)) {
$tmp = explode('.', $ip);
if($tmp[0] == 10 || $tmp[0] == 127 || ($tmp[0] == 192 && $tmp[1] == 168) || ($tmp[0] == 172 && ($tmp[1] >= 16 && $tmp[1] <= 31))) {
$area = 'LAN';
} elseif($tmp[0] > 255 || $tmp[1] > 255 || $tmp[2] > 255 || $tmp[3] > 255) {
$area = 'Unkonw';
} else {
require_once DT_ROOT.'/include/ip.func.php';
$area = convertip($ip);
}
}
$area = convert($area, 'gbk', DT_CHARSET);
return $area;
}
function banip($IP) {
global $DT_IP, $DT_TIME;
$ban = false;
foreach($IP as $v) {
if($v['totime'] && $v['totime'] < $DT_TIME) continue;
if($v['ip'] == $DT_IP) { $ban = true; break; }
if(preg_match("/^".str_replace('*', '[0-9]{1,3}', $v['ip'])."$/", $DT_IP)) { $ban = true; break; }
}
if($ban) message(lang('include->msg_ip_ban', array($DT_IP)));
}
function banword($WORD, $string, $extend = true) {
$string = stripslashes($string);
foreach($WORD as $v) {
$v[0] = preg_quote($v[0]);
$v[0] = str_replace('/', '\/', $v[0]);
$v[0] = str_replace("\*", ".*", $v[0]);
if($v[2] && $extend) {
if(preg_match("/".$v[0]."/i", $string)) dalert(lang('include->msg_word_ban'));
} else {
if($string == '') break;
if(preg_match("/".$v[0]."/i", $string)) $string = preg_replace("/".$v[0]."/i", $v[1], $string);
}
}
return addslashes($string);
}
function get_env($type) {
switch($type) {
case 'ip':
isset($_SERVER['HTTP_X_FORWARDED_FOR']) or $_SERVER['HTTP_X_FORWARDED_FOR'] = '';
isset($_SERVER['REMOTE_ADDR']) or $_SERVER['REMOTE_ADDR'] = '';
isset($_SERVER['HTTP_CLIENT_IP']) or $_SERVER['HTTP_CLIENT_IP'] = '';
if($_SERVER['HTTP_X_FORWARDED_FOR'] && $_SERVER['REMOTE_ADDR']) {
$ip = $_SERVER['HTTP_X_FORWARDED_FOR'];
if(strpos($ip, ',') !== false) {
$tmp = explode(',', $ip);
$ip = trim(end($tmp));
}
if(is_ip($ip)) return $ip;
}
if(is_ip($_SERVER['HTTP_CLIENT_IP'])) return $_SERVER['HTTP_CLIENT_IP'];
if(is_ip($_SERVER['REMOTE_ADDR'])) return $_SERVER['REMOTE_ADDR'];
return 'unknown';
break;
case 'self':
return isset($_SERVER['PHP_SELF']) ? $_SERVER['PHP_SELF'] : (isset($_SERVER['SCRIPT_NAME']) ? $_SERVER['SCRIPT_NAME'] : $_SERVER['ORIG_PATH_INFO']);
break;
case 'referer':
return isset($_SERVER['HTTP_REFERER']) ? $_SERVER['HTTP_REFERER'] : '';
break;
case 'domain':
return $_SERVER['SERVER_NAME'];
break;
case 'scheme':
return $_SERVER['SERVER_PORT'] == '443' ? 'https://' : 'http://';
break;
case 'port':
return $_SERVER['SERVER_PORT'] == '80' ? '' : ':'.$_SERVER['SERVER_PORT'];
break;
case 'url':
if(isset($_SERVER['REQUEST_URI'])) {
$uri = $_SERVER['REQUEST_URI'];
} else {
$uri = $_SERVER['PHP_SELF'];
if(isset($_SERVER['argv'])) {
if(isset($_SERVER['argv'][0])) $uri .= '?'.$_SERVER['argv'][0];
} else {
$uri .= '?'.$_SERVER['QUERY_STRING'];
}
}
$uri = dhtmlspecialchars($uri);
return get_env('scheme').$_SERVER['HTTP_HOST'].(strpos($_SERVER['HTTP_HOST'], ':') === false ? get_env('port') : '').$uri;
break;
}
}
function convert($str, $from = 'utf-8', $to = 'gb2312') {
if(!$str) return '';
$from = strtolower($from);
$to = strtolower($to);
if($from == $to) return $str;
$from = str_replace('gbk', 'gb2312', $from);
$to = str_replace('gbk', 'gb2312', $to);
$from = str_replace('utf8', 'utf-8', $from);
$to = str_replace('utf8', 'utf-8', $to);
if($from == $to) return $str;
$tmp = array();
if(function_exists('iconv')) {
if(is_array($str)) {
foreach($str as $key => $val) {
$tmp[$key] = iconv($from, $to."//IGNORE", $val);
}
return $tmp;
} else {
return iconv($from, $to."//IGNORE", $str);
}
} else if(function_exists('mb_convert_encoding')) {
if(is_array($str)) {
foreach($str as $key => $val) {
$tmp[$key] = mb_convert_encoding($val, $to, $from);
}
return $tmp;
} else {
return mb_convert_encoding($str, $to, $from);
}
} else {
require_once DT_ROOT.'/include/convert.func.php';
return dconvert($str, $to, $from);
}
}
function get_type($item, $cache = 0) {
$types = array();
if($cache) {
$types = cache_read('type-'.$item.'.php');
} else {
global $db;
$result = $db->query("SELECT * FROM {$db->pre}type WHERE item='$item' ORDER BY listorder ASC,typeid DESC ");
while($r = $db->fetch_array($result)) {
$types[$r['typeid']] = $r;
}
}
return $types;
}
function get_cat($catid) {
global $db;
$catid = intval($catid);
return $catid ? $db->get_one("SELECT * FROM {$db->pre}category WHERE catid=$catid") : array();
}
function cat_pos($CAT, $str = ' » ', $target = '') {
global $MODULE, $db;
if(!$CAT) return '';
$arrparentids = $CAT['arrparentid'].','.$CAT['catid'];
$arrparentid = explode(',', $arrparentids);
$pos = '';
$target = $target ? ' target="_blank"' : '';
$CATEGORY = array();
$result = $db->query("SELECT catid,moduleid,catname,linkurl FROM {$db->pre}category WHERE catid IN ($arrparentids)");
while($r = $db->fetch_array($result)) {
$CATEGORY[$r['catid']] = $r;
}
foreach($arrparentid as $catid) {
if(!$catid || !isset($CATEGORY[$catid])) continue;
$pos .= '<a href="'.$MODULE[$CATEGORY[$catid]['moduleid']]['linkurl'].$CATEGORY[$catid]['linkurl'].'"'.$target.'>'.$CATEGORY[$catid]['catname'].'</a>'.$str;
}
$_len = strlen($str);
if($str && substr($pos, -$_len, $_len) === $str) $pos = substr($pos, 0, strlen($pos)-$_len);
return $pos;
}
function cat_url($catid) {
global $MODULE, $db;
$r = $db->get_one("SELECT moduleid,linkurl FROM {$db->pre}category WHERE catid=$catid");
return $r ? $MODULE[$r['moduleid']]['linkurl'].$r['linkurl'] : '';
}
function get_area($areaid) {
global $db;
$areaid = intval($areaid);
return $db->get_one("SELECT * FROM {$db->pre}area WHERE areaid=$areaid");
}
function area_pos($areaid, $str = ' » ', $deep = 0) {
if($areaid) {
global $AREA;
} else {
global $L;
return $L['allcity'];
}
$AREA or $AREA = cache_read('area.php');
$arrparentid = $AREA[$areaid]['arrparentid'] ? explode(',', $AREA[$areaid]['arrparentid']) : array();
$arrparentid[] = $areaid;
$pos = '';
if($deep) $i = 1;
foreach($arrparentid as $areaid) {
if(!$areaid || !isset($AREA[$areaid])) continue;
if($deep) {
if($i > $deep) continue;
$i++;
}
$pos .= $AREA[$areaid]['areaname'].$str;
}
$_len = strlen($str);
if($str && substr($pos, -$_len, $_len) === $str) $pos = substr($pos, 0, strlen($pos)-$_len);
return $pos;
}
function get_maincat($catid, $moduleid, $level = -1) {
global $db;
$condition = $catid ? "parentid=$catid" : "moduleid=$moduleid AND parentid=0";
if($level >= 0) $condition .= " AND level=$level";
$cat = array();
$result = $db->query("SELECT catid,catname,child,style,linkurl,item FROM {$db->pre}category WHERE $condition ORDER BY listorder,catid ASC", 'CACHE');
while($r = $db->fetch_array($result)) {
$cat[] = $r;
}
return $cat;
}
function get_mainarea($areaid) {
global $db;
$areaid = intval($areaid);
$are = array();
$result = $db->query("SELECT areaid,areaname FROM {$db->pre}area WHERE parentid=$areaid ORDER BY listorder,areaid ASC", 'CACHE');
while($r = $db->fetch_array($result)) {
$are[] = $r;
}
return $are;
}
function get_user($value, $key = 'username', $from = 'userid') {
global $db;
$r = $db->get_one("SELECT `$from` FROM {$db->pre}member WHERE `$key`='$value'");
return $r[$from];
}
function check_group($groupid, $groupids) {
if(!$groupids || $groupid == 1) return true;
if($groupid == 4) $groupid = 3;
return in_array($groupid, explode(',', $groupids));
}
function tohtml($htmlfile, $module = '', $parameter = '') {
defined('TOHTML') or define('TOHTML', true);
extract($GLOBALS, EXTR_SKIP);
if($parameter) parse_str($parameter);
include $module ? DT_ROOT.'/module/'.$module.'/'.$htmlfile.'.htm.php' : DT_ROOT.'/include/'.$htmlfile.'.htm.php';
}
function set_style($string, $style = '', $tag = 'span') {
if(preg_match("/^#[0-9a-zA-Z]{6}$/", $style)) $style = 'color:'.$style;
return $style ? '<'.$tag.' style="'.$style.'">'.$string.'</'.$tag.'>' : $string;
}
function crypt_action($action) {
global $DT_IP;
return md5(md5($action.DT_KEY.$DT_IP));
}
function captcha($captcha, $enable = 1, $return = false) {
global $DT_IP, $DT, $session;
if($enable) {
if($DT['captcha_cn']) {
if(strlen($captcha) < 4) {
$msg = lang('include->captcha_missed');
return $return ? $msg : message($msg);
}
} else {
if(!preg_match("/^[0-9a-z]{4,}$/i", $captcha)) {
$msg = lang('include->captcha_missed');
return $return ? $msg : message($msg);
}
}
if(!is_object($session)) $session = new dsession();
if(!isset($_SESSION['captchastr'])) {
$msg = lang('include->captcha_expired');
return $return ? $msg : message($msg);
}
if($_SESSION['captchastr'] != md5(md5(strtoupper($captcha).DT_KEY.$DT_IP))) {
$msg = lang('include->captcha_error');
return $return ? $msg : message($msg);
}
unset($_SESSION['captchastr']);
} else {
return '';
}
}
function question($answer, $enable = 1, $return = false) {
global $DT_IP, $session;
if($enable) {
if(!$answer) {
$msg = lang('include->answer_missed');
return $return ? $msg : message($msg);
}
$answer = stripslashes($answer);
if(!is_object($session)) $session = new dsession();
if(!isset($_SESSION['answerstr'])) {
$msg = lang('include->question_expired');
return $return ? $msg : message($msg);
}
if($_SESSION['answerstr'] != md5(md5($answer.DT_KEY.$DT_IP))) {
$msg = lang('include->answer_error');
return $return ? $msg : message($msg);
}
unset($_SESSION['answerstr']);
} else {
return '';
}
}
function pages($total, $page = 1, $perpage = 20, $demo = '', $step = 2) {
global $DT_URL, $DT, $L;
if($total <= $perpage) return '';
$items = $total;
$total = ceil($total/$perpage);
if($page < 1 || $page > $total) $page = 1;
if($demo) {
$demo_url = $demo;
$home_url = str_replace('{destoon_page}', '1', $demo_url);
} else {
if(defined('DT_REWRITE') && $DT['rewrite'] && $_SERVER["SCRIPT_NAME"]) {
$demo_url = $_SERVER["SCRIPT_NAME"];
$demo_url = str_replace('//', '/', $demo_url);//Fix Nginx
$mark = false;
if(substr($demo_url, -4) == '.php') {
if(strpos($_SERVER['QUERY_STRING'], '.html') === false) {
$qstr = '';
if($_SERVER['QUERY_STRING']) {
if(substr($_SERVER['QUERY_STRING'], -5) == '.html') {
$qstr = '-'.substr($_SERVER['QUERY_STRING'], 0, -5);
} else {
parse_str($_SERVER['QUERY_STRING'], $qs);
foreach($qs as $k=>$v) {
$qstr .= '-'.$k.'-'.rawurlencode($v);
}
}
}
$demo_url = substr($demo_url, 0, -4).'-htm-page-{destoon_page}'.$qstr.'.html';
} else {
$demo_url = substr($demo_url, 0, -4).'-htm-'.$_SERVER['QUERY_STRING'];
$mark = true;
}
} else {
$mark = true;
}
if($mark) {
if(strpos($demo_url, '%') === false) $demo_url = rawurlencode($demo_url);
$demo_url = str_replace(array('%2F', '%3A'), array('/', ':'), $demo_url);
if(strpos($demo_url, '-page-') !== false) {
$demo_url = preg_replace("/page-([0-9]+)/", 'page-{destoon_page}', $demo_url);
} else {
$demo_url = str_replace('.html', '-page-{destoon_page}.html', $demo_url);
}
}
$home_url = str_replace('-page-{destoon_page}', '-page-1', $demo_url);
} else {
$DT_URL = str_replace('&', '&', $DT_URL);
$demo_url = $home_url = preg_replace("/(.*)([&?]page=[0-9]*)(.*)/i", "\\1\\3", $DT_URL);
$s = strpos($demo_url, '?') === false ? '?' : '&';
$demo_url = $demo_url.$s.'page={des'.'toon_page}';
}
}
$pages = '';
include DT_ROOT.'/api/pages.'.($DT['pages_mode'] ? 'sample' : 'default').'.php';
return $pages;
}
function listpages($CAT, $total, $page = 1, $perpage = 20, $step = 2) {
global $DT, $MOD, $L;
if($total <= $perpage) return '';
$items = $total;
$total = ceil($total/$perpage);
if($page < 1 || $page > $total) $page = 1;
$home_url = $MOD['linkurl'].$CAT['linkurl'];
$demo_url = $MOD['linkurl'].listurl($CAT, '{destoon_page}');
$pages = '';
include DT_ROOT.'/api/pages.'.($DT['pages_mode'] ? 'sample' : 'default').'.php';
return $pages;
}
function showpages($item, $total, $page = 1) {
global $MOD, $L;
$pages = '';
$home_url = $MOD['linkurl'].itemurl($item);
$demo_url = $MOD['linkurl'].itemurl($item, '{destoon_page}');
$_page = $page <= 1 ? $total : ($page - 1);
$url = $_page == 1 ? $home_url : str_replace('{destoon_page}', $_page, $demo_url);
$pages .= '<input type="hidden" id="des'.'toon_previous" value="'.$url.'"/><a href="'.$url.'" title="'.$L['prev_page'].'"> « </a> ';
for($_page = 1; $_page <= $total; $_page++) {
$url = $_page == 1 ? $home_url : str_replace('{destoon_page}', $_page, $demo_url);
$pages .= $page == $_page ? '<strong> '.$_page.' </strong> ' : ' <a href="'.$url.'"> '.$_page.' </a> ';
}
$_page = $page >= $total ? 1 : $page + 1;
$url = $_page == 1 ? $home_url : str_replace('{destoon_page}', $_page, $demo_url);
$pages .= '<a href="'.$url.'" title="'.$L['next_page'].'"> » </a> <input type="hidden" id="des'.'toon_next" value="'.$url.'"/>';
return $pages;
}
function linkurl($linkurl, $absurl = 1) {
global $CFG;
if($absurl) {
if(strpos($linkurl, '://') !== false) return $linkurl;
return strpos($linkurl, $CFG['path']) === 0 ? $CFG['url'].substr($linkurl, strlen($CFG['path'])) : $CFG['url'].$linkurl;
} else {
if(strpos($linkurl, '://') !== false) return strpos($linkurl, $CFG['url']) === 0 ? $CFG['path'].substr($linkurl, strlen($CFG['url'])) : $linkurl;
return strpos($linkurl, $CFG['path']) === 0 ? $linkurl : $CFG['path'].$linkurl;
}
}
function imgurl($imgurl = '', $absurl = 1) {
return $imgurl ? $imgurl : DT_SKIN.'image/nopic.gif';
}
function userurl($username, $qstring = '', $domain = '') {
global $CFG, $DT, $MODULE;
$URL = '';
$subdomain = 0;
if($CFG['com_domain']) $subdomain = substr($CFG['com_domain'], 0, 1) == '.' ? 1 : 2;
if($username) {
if($subdomain || $domain) {
$URL = $domain ? 'http://'.$domain.'/' : ($subdomain == 1 ? 'http://'.($DT['com_www'] ? 'www.' : '').$username.$CFG['com_domain'].'/' : 'http://'.$CFG['com_domain'].'/'.$username.'/');
if($qstring) {
parse_str($qstring, $q);
if(isset($q['file'])) {
$URL .= $CFG['com_dir'] ? $q['file'].'/' : 'company/'.$q['file'].'/';
unset($q['file']);
}
if($q) {
if($DT['rewrite']) {
foreach($q as $k=>$v) {
$v = rawurlencode($v);
$URL .= $k.'-'.$v.'-';
}
$URL = substr($URL, 0, -1).'.shtml';
} else {
$URL .= 'index.php?';
$i = 0;
foreach($q as $k=>$v) {
$v = rawurlencode($v);
$URL .= ($i++ == 0 ? '' : '&').$k.'='.$v;
}
}
}
}
} else if($DT['rewrite']) {
$URL = DT_PATH.'com/'.$username.'/';
if($qstring) {
parse_str($qstring, $q);
if(isset($q['file'])) {
$URL .= $CFG['com_dir'] ? $q['file'].'/' : 'company/'.$q['file'].'/';
unset($q['file']);
}
if($q) {
foreach($q as $k=>$v) {
$v = rawurlencode($v);
$URL .= $k.'-'.$v.'-';
}
$URL = substr($URL, 0, -1).'.html';
}
}
} else {
$URL = DT_PATH.'index.php?homepage='.$username;
if($qstring) $URL = $URL.'&'.$qstring;
}
} else {
$URL = linkurl($MODULE[4]['linkurl'], 1).'guest.php';
}
return $URL;
}
function userinfo($username, $cache = '', $fields = '*') {
global $db;
return $db->get_one("SELECT $fields FROM {$db->pre}member m, {$db->pre}company c WHERE m.userid=c.userid AND m.username='$username'", $cache);
}
function memberinfo($username, $cache = '', $fields = '*') {
global $db;
return $db->get_one("SELECT $fields FROM {$db->pre}member WHERE username='$username'", $cache);
}
function listurl($CAT, $page = 0) {
global $DT, $MOD, $L;
include DT_ROOT.'/api/url.inc.php';
$catid = $CAT['catid'];
$file_ext = $DT['file_ext'];
$index = $DT['index'];
$catdir = $CAT['catdir'];
$catname = file_vname($CAT['catname']);
$prefix = $MOD['htm_list_prefix'];
$urlid = $MOD['list_html'] ? $MOD['htm_list_urlid'] : $MOD['php_list_urlid'];
$ext = $MOD['list_html'] ? 'htm' : 'php';
isset($urls[$ext]['list'][$urlid]) or $urlid = 0;
$url = $urls[$ext]['list'][$urlid];
$url = $page ? $url['page'] : $url['index'];
eval("\$listurl = \"$url\";");
if(substr($listurl, 0, 1) == '/') $listurl = substr($listurl, 1);
return $listurl;
}
function itemurl($item, $page = 0) {
global $DT, $MOD, $L;
if($MOD['show_html'] && $item['filepath']) {
if($page === 0) return $item['filepath'];
$ext = file_ext($item['filepath']);
return str_replace('.'.$ext, '_'.$page.'.'.$ext, $item['filepath']);
}
include DT_ROOT.'/api/url.inc.php';
$file_ext = $DT['file_ext'];
$index = $DT['index'];
$itemid = $item['itemid'];
$title = file_vname($item['title']);
$addtime = $item['addtime'];
$catid = $item['catid'];
$year = date('Y', $addtime);
$month = date('m', $addtime);
$day = date('d', $addtime);
$prefix = $MOD['htm_item_prefix'];
$urlid = $MOD['show_html'] ? $MOD['htm_item_urlid'] : $MOD['php_item_urlid'];
$ext = $MOD['show_html'] ? 'htm' : 'php';
$alloc = dalloc($itemid);
$url = $urls[$ext]['item'][$urlid];
$url = $page ? $url['page'] : $url['index'];
if(strpos($url, 'cat') !== false && $catid) {
$cate = get_cat($catid);
$catdir = $cate['catdir'];
$catname = $cate['catname'];
}
eval("\$itemurl = \"$url\";");
if(substr($itemurl, 0, 1) == '/') $itemurl = substr($itemurl, 1);
return $itemurl;
}
function rewrite($url, $encode = 0) {
global $DT, $CFG;
if(!$DT['rewrite']) return $url;
if(strpos($url, '.php?') === false || strpos($url, '=') === false) return $url;
$url = str_replace(array('+', '-'), array('%20', '%20'), $url);
$url = str_replace(array('.php?', '&', '='), array('-htm-', '-', '-'), $url).'.html';
return $url;
}
function timetodate($time = 0, $type = 6) {
if(!$time) {global $DT_TIME; $time = $DT_TIME;}
$types = array('Y-m-d', 'Y', 'm-d', 'Y-m-d', 'm-d H:i', 'Y-m-d H:i', 'Y-m-d H:i:s');
if(isset($types[$type])) $type = $types[$type];
return date($type, $time);
}
function log_write($message, $type = 'php') {
global $DT_IP, $DT_TIME, $_username;
if(!DT_DEBUG) return;
$DT_IP or $DT_IP = get_env('ip');
$DT_TIME or $DT_TIME = time();
$user = $_username ? $_username : 'guest';
$log = "<$type>\n";
$log .= "\t<time>".date('Y-m-d H:i:s', $DT_TIME)."</time>\n";
$log .= "\t<ip>".$DT_IP."</ip>\n";
$log .= "\t<user>".$user."</user>\n";
$log .= "\t<file>".$_SERVER['SCRIPT_NAME']."</file>\n";
$log .= "\t<querystring>".str_replace('&', '&', $_SERVER['QUERY_STRING'])."</querystring>\n";
$log .= "\t<message>".$message."\t</message>\n";
$log .= "</$type>";
file_put(DT_ROOT.'/file/log/'.date('Ym', $DT_TIME).'/'.$type.'-'.date('Y.m.d H.i.s', $DT_TIME).'-'.strtolower(random(10)).'.xml', $log);
}
function load($file) {
$ext = file_ext($file);
if($ext == 'css') {
echo '<link rel="stylesheet" type="text/css" href="'.DT_SKIN.$file.'" />';
} else if($ext == 'js') {
echo '<script type="text/javascript" src="'.DT_PATH.'file/script/'.$file.'"></script>';
} else if($ext == 'htm') {
$file = str_replace('ad_m', 'ad_t6_m', $file);
if(is_file(DT_CACHE.'/htm/'.$file)) {
$content = file_get(DT_CACHE.'/htm/'.$file);
if(substr($content, 0, 4) == '<!--') $content = substr($content, 17);
echo $content;
} else {
echo '';
}
} else if($ext == 'lang') {
$file = str_replace('.lang', '.inc.php', $file);
return DT_ROOT.'/lang/'.DT_LANG.'/'.$file;
}
}
function ad($id, $cid = 0, $kw = '', $tid = 0) {
global $cityid;
if($tid) {
if($kw) {
$file = 'ad_t'.$tid.'_m'.$id.'_k'.urlencode($kw);
} else if($cid) {
$file = 'ad_t'.$tid.'_m'.$id.'_c'.$cid;
} else {
$file = 'ad_t'.$tid.'_m'.$id;
}
$a3 = 'ad_'.$id.'_d'.$tid.'.htm';
} else {
$file = 'ad_'.$id;
$a3 = 'ad_'.$id.'_d0.htm';
}
$a1 = $file.'_'.$cityid.'.htm';
if(is_file(DT_CACHE.'/htm/'.$a1)) return load($a1);
$a2 = $file.'_0.htm';
if(is_file(DT_CACHE.'/htm/'.$a2)) return load($a2);
if(is_file(DT_CACHE.'/htm/'.$a3)) return load($a3);
}
function lang($str, $arr = array()) {
if(strpos($str, '->') !== false) {
$t = explode('->', $str);
include load($t[0].'.lang');
$str = $L[$t[1]];
}
if($arr) {
foreach($arr as $k=>$v) {
$str = str_replace('{V'.$k.'}', $v, $str);
}
}
return $str;
}
function check_name($username) {
if(strpos($username, '__') !== false || strpos($username, '--') !== false) return false;
return preg_match("/^[a-z0-9]{1}[a-z0-9_\-]{0,}[a-z0-9]{1}$/", $username);
}
function check_post() {
if(strtoupper($_SERVER['REQUEST_METHOD']) != 'POST') return false;
return check_referer();
}
function check_referer() {
global $DT_REF, $CFG, $DT;
if($DT['check_referer']) {
if(!$DT_REF) return false;
$R = parse_url($DT_REF);
if($CFG['cookie_domain'] && strpos($R['host'], $CFG['cookie_domain']) !== false) return true;
if($CFG['com_domain'] && strpos($R['host'], $CFG['com_domain']) !== false) return true;
if($DT['safe_domain']) {
$tmp = explode('|', $DT['safe_domain']);
foreach($tmp as $v) {
if(strpos($R['host'], $v) !== false) return true;
}
}
$U = parse_url(DT_PATH);
if(strpos($R['host'], str_replace('www.', '.', $U['host'])) !== false) return true;
return false;
} else {
return true;
}
}
function is_robot() {
if(strpos($_SERVER['HTTP_USER_AGENT'], '://') === false && preg_match("/(MSIE|Netscape|Opera|Konqueror|Mozilla)/i", $_SERVER['HTTP_USER_AGENT'])) {
return false;
} else if(preg_match("/(Spider|Bot|Crawl|Slurp|lycos|robozilla)/i", $_SERVER['HTTP_USER_AGENT'])) {
return true;
} else {
return false;
}
}
function is_ip($ip) {
return preg_match("/^([0-9]{1,3}\.){3}[0-9]{1,3}$/", $ip);
}
function is_md5($password) {
return preg_match("/^[a-z0-9]{32}$/", $password);
}
function debug() {
global $db, $debug_starttime;
$mtime = explode(' ', microtime());
$s = number_format(($mtime[1] + $mtime[0] - $debug_starttime), 3);
echo 'Processed in '.$s.' second(s), '.$db->querynum.' queries';
if(function_exists('memory_get_usage')) echo ', Memory '.round(memory_get_usage()/1024/1024, 2).' M';
}
//For 3.x
function extendurl($func) {
global $MODULE, $EXT;
$key = $func.'_url';
return $EXT[$key] ? $EXT[$key] : $MODULE[1]['linkurl'].$func.'/';
}
function extend_setting($key = '') {
global $EXT;
return $key ? $EXT[$key] : $EXT;
}
?>
声明
この記事の内容はネチズンが自主的に寄稿したものであり、著作権は原著者に帰属します。このサイトは、それに相当する法的責任を負いません。盗作または侵害の疑いのあるコンテンツを見つけた場合は、admin@php.cn までご連絡ください。
ホットAIツール
Undresser.AI Undress
リアルなヌード写真を作成する AI 搭載アプリ
AI Clothes Remover
写真から衣服を削除するオンライン AI ツール。
Undress AI Tool
脱衣画像を無料で
Clothoff.io
AI衣類リムーバー
Video Face Swap
完全無料の AI 顔交換ツールを使用して、あらゆるビデオの顔を簡単に交換できます。
人気の記事
アサシンのクリードシャドウズ:シーシェルリドルソリューション
4週間前ByDDD
Atomfallのクレーンコントロールキーカードを見つける場所
4週間前ByDDD
<🎜>:Dead Rails-すべての課題を完了する方法
1 か月前ByDDD
Atomfall Guide:アイテムの場所、クエストガイド、およびヒント
1 か月前ByDDD
ホットツール
PhpStorm Mac バージョン
最新(2018.2.1)のプロフェッショナル向けPHP統合開発ツール
AtomエディタMac版ダウンロード
最も人気のあるオープンソースエディター
WebStorm Mac版
便利なJavaScript開発ツール
SecLists
SecLists は、セキュリティ テスターの究極の相棒です。これは、セキュリティ評価中に頻繁に使用されるさまざまな種類のリストを 1 か所にまとめたものです。 SecLists は、セキュリティ テスターが必要とする可能性のあるすべてのリストを便利に提供することで、セキュリティ テストをより効率的かつ生産的にするのに役立ちます。リストの種類には、ユーザー名、パスワード、URL、ファジング ペイロード、機密データ パターン、Web シェルなどが含まれます。テスターはこのリポジトリを新しいテスト マシンにプルするだけで、必要なあらゆる種類のリストにアクセスできるようになります。
EditPlus 中国語クラック版
サイズが小さく、構文の強調表示、コード プロンプト機能はサポートされていません
ホットトピック
Gmailメールのログイン入り口はどこですか?
770615
7706
15Java チュートリアル164014
164014CakePHP チュートリアル139452
139452Laravel チュートリアル128825
128825PHP チュートリアル123129
123129