Kezdőlap Felfedezés Súgó
Regisztráció Bejelentkezés
samien
/
xinhu_gitee
tükrözi: https://gitee.com/rainrock/xinhu.git
1
0
Másolás 0
Fájlok Problémák 0 Wiki
Branch: master
Branch-ok Tag-ek
xinhu_gitee
/
webmain
/
system
/
cog
/
cogAction.php

cogAction.php 17 KB
Állandó hivatkozás Előzmények Nyers

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549 
  1. <?php
    2. 

  2. class cogClassAction extends Action
    3. 

  3. {
    4. 

  4. 	public function sysinfoAjax()
    5. 

  5. 	{
    6. 

  6. 		$fields = array(
    7. 

  7. 			'title'	=> '系统名称',
    8. 

  8. 			'url'	=> '系统URL地址',
    9. 

  9. 			'localurl'	=> '系统本地地址',
    10. 

  10. 			'outurl'	=> '外网地址',
    11. 

  11. 			'rootpath'		=> '系统根目录',
    12. 

  12. 			'db_drive'	=> '操作数据库驱动',
    13. 

  13. 			'db_host'	=> '数据库地址',
    14. 

  14. 			'db_name'	=> '数据库名称',
    15. 

  15. 			'version'	=> '版本',
    16. 

  16. 			'phpos'		=> '服务器',
    17. 

  17. 			'phpver'	=> 'PHP版本',
    18. 

  18. 			'mysqlver'	=> 'mysql版本',
    19. 

  19. 			'SERVER_SOFTWARE'	=> 'web服务器',
    20. 

  20. 			'upload_max_filesize'	=> '最大上传大小',
    21. 

  21. 			'post_max_size'	=> 'POST最大',
    22. 

  22. 			'memory_limit'	=> '使用最大内存',
    23. 

  23. 			'curl'			=> '是否支持CURL',
    24. 

  24. 			'max_execution_time'			=> 'PHP执行超时时间',
    25. 

  25. 		);
    26. 

  26. 	
    27. 

  27. 		$data = array(
    28. 

  28. 			'title'	=> getconfig('title'),
    29. 

  29. 			'url'	=> getconfig('url'),
    30. 

  30. 			'localurl'	=> getconfig('localurl'),
    31. 

  31. 			'taskurl'	=> getconfig('taskurl'),
    32. 

  32. 			'outurl'	=> getconfig('outurl'),
    33. 

  33. 			'xinhukey'	=> getconfig('xinhukey'),
    34. 

  34. 			'db_host'	=> DB_HOST,
    35. 

  35. 			'db_name'	=> DB_BASE,
    36. 

  36. 			'rootpath'	=> ROOT_PATH,
    37. 

  37. 			'db_drive'	=> getconfig('db_drive'),
    38. 

  38. 			'version'	=> '信呼V'.VERSION.'',
    39. 

  39. 			'phpos'	=> PHP_OS,
    40. 

  40. 			'phpver'	=> PHP_VERSION,
    41. 

  41. 			'mysqlver'	=> $this->db->getsyscount('version'),
    42. 

  42. 			'SERVER_SOFTWARE'	=> $_SERVER['SERVER_SOFTWARE'],
    43. 

  43. 			'upload_max_filesize'	=> ini_get('upload_max_filesize'),
    44. 

  44. 			'post_max_size'			=> ini_get('post_max_size'),
    45. 

  45. 			'memory_limit'			=> ini_get('memory_limit'),
    46. 

  46. 			'max_execution_time'			=> ini_get('max_execution_time').'秒',
    47. 

  47. 			
    48. 

  48. 		);
    49. 

  49. 		if(!function_exists('curl_init')){
    50. 

  50. 			$data['curl'] = '<font color=red>不支持</font>';
    51. 

  51. 		}else{
    52. 

  52. 			$data['curl'] = '<font color=green>支持</font>';
    53. 

  53. 		}
    54. 

  54. 		
    55. 

  55. 		$this->returnjson(array(
    56. 

  56. 			'fields' => $fields,
    57. 

  57. 			'data' 	=> $data,
    58. 

  58. 		));
    59. 

  59. 	}
    60. 

  60. 	
    61. 

  61. 	public function getinfoAjax()
    62. 

  62. 	{
    63. 

  63. 		$arr['title'] 		= getconfig('title');
    64. 

  64. 		$arr['outurl'] 		= getconfig('outurl');
    65. 

  65. 		$arr['url'] 		= arrvalue($GLOBALS['_tempconf'],'url');
    66. 

  66. 		$arr['localurl'] 	= getconfig('localurl');
    67. 

  67. 		$arr['apptitle'] 	= getconfig('apptitle');
    68. 

  68. 		$arr['platurl'] 	= getconfig('platurl');
    69. 

  69. 		$arr['reimtitle'] 	= getconfig('reimtitle');
    70. 

  70. 		$arr['asynkey'] 	= getconfig('asynkey');
    71. 

  71. 		$arr['openkey'] 	= getconfig('openkey');
    72. 

  72. 		$arr['db_drive'] 	= getconfig('db_drive');
    73. 

  73. 		$arr['xinhukey'] 	= getconfig('xinhukey');
    74. 

  74. 		$arr['bcolorxiang'] = getconfig('bcolorxiang');
    75. 

  75. 		$arr['qqmapkey'] 	= getconfig('qqmapkey');
    76. 

  76. 		$arr['asynsend'] 	= getconfig('asynsend');
    77. 

  77. 		$arr['defstype'] 	= getconfig('defstype','1');
    78. 

  78. 		$arr['officeyl'] 	= getconfig('officeyl'); //文档预览
    79. 

  79. 		$arr['officebj'] 	= getconfig('officebj');
    80. 

  80. 		$arr['apptheme'] 	= getconfig('apptheme');
    81. 

  81. 		$arr['officebj_key'] = getconfig('officebj_key');
    82. 

  82. 		$arr['useropt'] 	= getconfig('useropt');
    83. 

  83. 		$arr['sqllog'] 		= getconfig('sqllog') ? '1' : '0';
    84. 

  84. 		$arr['debug'] 		= getconfig('debug') ? '1' : '0';
    85. 

  85. 		$arr['reim_show'] 	= getconfig('reim_show') ? '1' : '0';
    86. 

  86. 		$arr['mobile_show'] = getconfig('mobile_show') ? '1' : '0';
    87. 

  87. 		$arr['companymode'] = getconfig('companymode') ? '1' : '0';
    88. 

  88. 		$arr['isshou'] 		= $this->isshouquan() ? '1' : '0';
    89. 

  89. 		$arr['editpass'] 	= getconfig('editpass','0');
    90. 

  90. 		
    91. 

  91. 		$arr['asyntest'] 	= $this->option->getval('asyntest');
    92. 

  92. 		
    93. 

  93. 		$loginyzm			= getconfig('loginyzm');
    94. 

  94. 		if(!$loginyzm)$loginyzm	= '0';
    95. 

  95. 		$arr['loginyzm'] 	= $loginyzm;
    96. 

  96. 		if(getconfig('systype')=='demo'){
    97. 

  97. 			$arr['xinhukey']='';
    98. 

  98. 			$arr['officebj_key']='';
    99. 

  99. 			$arr['openkey']='';
    100. 

  100. 			$arr['asynkey']='';
    101. 

  101. 		}
    102. 

  102. 		if(!isempt($arr['xinhukey']))$arr['xinhukey'] = substr($arr['xinhukey'],0,5).'*****'.substr($arr['xinhukey'],-5);
    103. 

  103. 		
    104. 

  104. 		$this->returnjson($arr);
    105. 

  105. 	}
    106. 

  106. 	
    107. 

  107. 	private function isshouquan()
    108. 

  108. 	{
    109. 

  109. 		$key = getconfig('authorkey');
    110. 

  110. 		if(!isempt($key) && $this->rock->isjm($key)){
    111. 

  111. 			return true;
    112. 

  112. 		}else{
    113. 

  113. 			return false;
    114. 

  114. 		}
    115. 

  115. 	}
    116. 

  116. 	
    117. 

  117. 	public function savecongAjax()
    118. 

  118. 	{
    119. 

  119. 		if(getconfig('systype')=='demo')exit('演示上禁止设置');
    120. 

  120. 		if($this->getsession('isadmin')!='1')exit('非管理员不能操作');
    121. 

  121. 		
    122. 

  122. 		$puurl 			= $this->option->getval('reimpushurlsystem',1);
    123. 

  123. 		
    124. 

  124. 		$_confpath		= $this->rock->strformat('?0/?1/?1Config.php', ROOT_PATH, PROJECT);
    125. 

  125. 		$arr 			= require($_confpath);
    126. 

  126. 		
    127. 

  127. 		$title 			= $this->post('title');
    128. 

  128. 		if(!isempt($title))$arr['title'] = $title;
    129. 

  129. 		
    130. 

  130. 		$arr['url'] 		= $this->post('url');
    131. 

  131. 		$arr['outurl'] 		= $this->post('outurl');
    132. 

  132. 		$arr['reimtitle'] 	= $this->post('reimtitle');
    133. 

  133. 		$arr['platurl'] 	= $this->post('platurl');
    134. 

  134. 		
    135. 

  135. 		$apptitle 			= $this->post('apptitle');
    136. 

  136. 		if(!isempt($apptitle))$arr['apptitle'] = $apptitle;
    137. 

  137. 		
    138. 

  138. 		$asynkey 			= $this->post('asynkey');
    139. 

  139. 		if(!isempt($asynkey))$arr['asynkey'] = $asynkey;
    140. 

  140. 		
    141. 

  141. 		$db_drive 			= $this->post('db_drive');
    142. 

  142. 		if(!isempt($db_drive)){
    143. 

  143. 			if($db_drive=='mysql' && !function_exists('mysql_connect'))exit('未开启mysql扩展模块');
    144. 

  144. 			if($db_drive=='mysqli' && !class_exists('mysqli'))exit('未开启mysqli扩展模块');
    145. 

  145. 			if($db_drive=='pdo' && !class_exists('PDO'))exit('未开启pdo扩展模块');
    146. 

  146. 			$arr['db_drive'] = $db_drive;
    147. 

  147. 		}
    148. 

  148. 		
    149. 

  149. 		$arr['localurl'] 	= $this->post('localurl');
    150. 

  150. 		$arr['openkey']  	= $this->post('openkey');
    151. 

  151. 		
    152. 

  152. 		$arr['xinhukey'] 	= $this->post('xinhukey');
    153. 

  153. 		if(contain($arr['xinhukey'],'**'))$arr['xinhukey'] = getconfig('xinhukey');
    154. 

  154. 		
    155. 

  155. 		$arr['bcolorxiang'] = $this->post('bcolorxiang');
    156. 

  156. 		
    157. 

  157. 		$arr['officeyl'] 	= $this->post('officeyl');
    158. 

  158. 		$arr['useropt'] 	= $this->post('useropt');
    159. 

  159. 		$arr['editpass'] 	= $this->post('editpass');
    160. 

  160. 		$arr['defstype'] 	= $this->post('defstype','1');
    161. 

  161. 		$arr['officebj'] 	= $this->post('officebj');
    162. 

  162. 		$arr['officebj_key']= $this->post('officebj_key');
    163. 

  163. 		
    164. 

  164. 		$asynsend 		 	= $this->post('asynsend');
    165. 

  165. 		$arr['asynsend'] 	= $asynsend;
    166. 

  166. 		
    167. 

  167. 		$arr['sqllog'] 	 	= $this->post('sqllog')=='1';
    168. 

  168. 		$arr['debug'] 	 	= $this->post('debug')=='1';
    169. 

  169. 		$arr['reim_show'] 	= $this->post('reim_show')=='1';
    170. 

  170. 		$arr['mobile_show'] = $this->post('mobile_show')=='1';
    171. 

  171. 		$arr['companymode'] = $this->post('companymode')=='1';
    172. 

  172. 		$arr['loginyzm']  	= $this->post('loginyzm');
    173. 

  173. 		$arr['apptheme']  	= $this->post('apptheme');
    174. 

  174. 		
    175. 

  175. 		if($asynsend == '1' && isempt($puurl))exit('未安装或开启服务端不能使用异步发送消息');
    176. 

  176. 		
    177. 

  177. 		$xpd = explode(',', "\\,', ,<,>,*,%,&");
    178. 

  178. 		$xpd[]= "\n";
    179. 

  179. 		foreach($arr as $k=>$v)if(!is_bool($v))$arr[$k] = str_replace($xpd,'',$v);
    180. 

  180. 		
    181. 

  181. 		$smarr['url']			= '系统URL';
    182. 

  182. 		$smarr['localurl']		= '本地系统URL,用于服务器上浏览地址';
    183. 

  183. 		$smarr['title']			= '系统默认标题';
    184. 

  184. 		$smarr['neturl']		= '系统外网地址,用于公网';
    185. 

  185. 		$smarr['apptitle']		= 'APP上和手机网页版上的标题';
    186. 

  186. 		$smarr['reimtitle']		= 'REIM即时通信上标题';
    187. 

  187. 		$smarr['weblogo']		= 'PC客户端上的logo图片';
    188. 

  188. 		$smarr['db_host']		= '数据库地址';
    189. 

  189. 		$smarr['db_user']		= '数据库用户名';
    190. 

  190. 		$smarr['db_pass']		= '数据库密码';
    191. 

  191. 		$smarr['db_base']		= '数据库名称';
    192. 

  192. 		$smarr['perfix']		= '数据库表名前缀';
    193. 

  193. 		$smarr['qom']			= 'session、cookie前缀';
    194. 

  194. 		$smarr['highpass']		= '超级管理员密码,可用于登录任何帐号';
    195. 

  195. 		$smarr['db_drive']		= '操作数据库驱动有mysql,mysqli,pdo三种';
    196. 

  196. 		$smarr['randkey']		= '系统随机字符串密钥';
    197. 

  197. 		$smarr['asynkey']		= '这是异步任务key';
    198. 

  198. 		$smarr['openkey']		= '对外接口openkey';
    199. 

  199. 		$smarr['sqllog']		= '是否记录sql日志保存'.UPDIR.'/sqllog下';
    200. 

  200. 		$smarr['asynsend']		= '是否异步发送提醒消息,0同步,1自己服务端异步,2官网VIP用户异步';
    201. 

  201. 		$smarr['install']		= '已安装,不要去掉啊';
    202. 

  202. 		$smarr['xinhukey']		= '信呼官网key,用于在线升级使用';
    203. 

  203. 		$smarr['bcolorxiang']	= '单据详情页面上默认展示线条的颜色';
    204. 

  204. 		$smarr['debug']			= '为true调试开发模式,false上线模式';
    205. 

  205. 		$smarr['reim_show']		= '首页是否显示REIM';
    206. 

  206. 		$smarr['mobile_show']	= '首页是否显示手机版';
    207. 

  207. 		$smarr['loginyzm']		= '登录方式:0仅使用帐号+密码,1帐号+密码/手机+验证码,2帐号+密码+验证码,3仅使用手机+验证码';
    208. 

  208. 		$smarr['officeyl']		= '文档Excel.Doc预览类型,0自己部署插件,1使用官网支持任何平台';
    209. 

  209. 		$smarr['officedk']		= '文件预览打开方式1新窗口打开';
    210. 

  210. 		$smarr['useropt']		= '1记录用户操作保存到日志里,空不记录';
    211. 

  211. 		$smarr['defstype']		= 'PC后台主题皮肤,可以设置1到34';
    212. 

  212. 		$smarr['editpass']		= '用户登录修改密码:0不用修改,1强制用户必须修改';
    213. 

  213. 		$smarr['companymode']	= '多单位模式,true就是开启';
    214. 

  214. 		$smarr['outurl']		= '这个地址当你内网地址访问时向手机推送消息的地址';
    215. 

  215. 		$smarr['officebj']		= '文档在线编辑,1官网提供或者自己部署';
    216. 

  216. 		$smarr['officebj_key']	= '文档在线编辑agentkey';
    217. 

  217. 		$smarr['apptheme']		= '系统或app的主题颜色';
    218. 

  218. 		
    219. 

  219. 		$str1 = '';
    220. 

  220. 		foreach($arr as $k=>$v){
    221. 

  221. 			$bz = '';
    222. 

  222. 			if(isset($smarr[$k]))$bz='	//'.$smarr[$k].'';
    223. 

  223. 			if(is_bool($v)){
    224. 

  224. 				$v = $v ? 'true' : 'false';
    225. 

  225. 			}else{
    226. 

  226. 				$v = "'$v'";
    227. 

  227. 			}
    228. 

  228. 			$str1.= "	'$k'	=> $v,$bz\n";
    229. 

  229. 		}
    230. 

  230. 		
    231. 

  231. 		$str = '<?php
    232. 

  232. if(!defined(\'HOST\'))die(\'not access\');
    233. 

  233. //[管理员]在'.$this->now.'通过[系统→系统工具→系统设置],保存修改了配置文件
    234. 

  234. return array(
    235. 

  235. '.$str1.'
    236. 

  236. );';
    237. 

  237. 		@$bo = file_put_contents($_confpath, $str);
    238. 

  238. 		if($bo){
    239. 

  239. 			echo 'ok';
    240. 

  240. 		}else{
    241. 

  241. 			echo '保存失败无法写入:'.$_confpath.'';
    242. 

  242. 		}
    243. 

  243. 	}
    244. 

  244. 	
    245. 

  245. 	public function logbefore($table)
    246. 

  246. 	{
    247. 

  247. 		$key = $this->post('key');
    248. 

  248. 		$s   = '';
    249. 

  249. 		m('log')->readPHPerr();
    250. 

  250. 		if($key != ''){
    251. 

  251. 			$s = "and (`type`='$key' or `optname` like '$key%' or `remark` like '$key%' or `web`='$key' or `ip`='$key')";
    252. 

  252. 		}
    253. 

  253. 		return $s;
    254. 

  254. 	}
    255. 

  255. 	
    256. 

  256. 	public function logintokenbefore($table)
    257. 

  257. 	{
    258. 

  258. 		$key = $this->post('key');
    259. 

  259. 		$s   = '';
    260. 

  260. 		if($key != ''){
    261. 

  261. 			$s = "and (`name` like '%$key%' or `cfrom` like '%$key%' or `web` like '%$key%')";
    262. 

  262. 		}
    263. 

  263. 		return $s;
    264. 

  264. 	}
    265. 

  265. 	
    266. 

  266. 	public function delloginAjax()
    267. 

  267. 	{
    268. 

  268. 		$id = c('check')->onlynumber($this->post('id'));
    269. 

  269. 		m('logintoken')->delete('id in('.$id.')');
    270. 

  270. 		backmsg();
    271. 

  271. 	}
    272. 

  272. 	
    273. 

  273. 	public function dellogAjax()
    274. 

  274. 	{
    275. 

  275. 		$id = c('check')->onlynumber($this->post('id'));
    276. 

  276. 		m('log')->delete('id in('.$id.')');
    277. 

  277. 		backmsg();
    278. 

  278. 	}
    279. 

  279. 	
    280. 

  280. 	public function clearlogAjax()
    281. 

  281. 	{
    282. 

  282. 		$lx = (int)$this->get('lx','0');
    283. 

  283. 		$where = "`type`='异步队列'";
    284. 

  284. 		if($lx==0)$where = '1=1';
    285. 

  285. 		m('log')->delete($where);
    286. 

  286. 		return returnsuccess();
    287. 

  287. 	}
    288. 

  288. 	
    289. 

  289. 	public function saveautherAjax()
    290. 

  290. 	{
    291. 

  291. 		if(getconfig('systype')=='demo')exit('演示上不要操作');
    292. 

  292. 		$autherkey 	= $this->post('key');
    293. 

  293. 		$ym 		= $this->post('ym');
    294. 

  294. 		$barr 		= c('xinhuapi')->authercheck($autherkey, $ym);
    295. 

  295. 		if($barr['success']){
    296. 

  296. 			echo 'ok';
    297. 

  297. 		}else{
    298. 

  298. 			echo $barr['msg'];
    299. 

  299. 		}
    300. 

  300. 	}
    301. 

  301. 	public function savelixianAjax()
    302. 

  302. 	{
    303. 

  303. 		if(getconfig('systype')=='demo')exit('演示上不要操作');
    304. 

  304. 		$aukey 	= $this->post('key');
    305. 

  305. 		$ym 	= $this->post('ym');
    306. 

  306. 		$path   = 'config/rockauther.php';
    307. 

  307. 		if(!file_exists($path))exit('没有下载签授文件到系统上');
    308. 

  308. 		$da 	= require($path);
    309. 

  309. 		$barr 	= c('xinhuapi')->autherfile($da, $aukey, $ym);
    310. 

  310. 		if($barr['success']){
    311. 

  311. 			@unlink($path);
    312. 

  312. 			echo 'ok';
    313. 

  313. 		}else{
    314. 

  314. 			echo $barr['msg'];
    315. 

  315. 		}
    316. 

  316. 	}
    317. 

  317. 	public function autherAjax()
    318. 

  318. 	{
    319. 

  319. 		$aukey = $this->option->getval('auther_aukey');
    320. 

  320. 		$use   = '1';
    321. 

  321. 		$barr  = array();
    322. 

  322. 		if(isempt($aukey)){
    323. 

  323. 			$use = '0';
    324. 

  324. 		}else{
    325. 

  325. 			$barr['enddt'] = $this->option->getval('auther_enddt');
    326. 

  326. 			$barr['yuming']= $this->option->getval('auther_yuming');
    327. 

  327. 			$barr['aukey'] = substr($aukey,0,5).'****'.substr($aukey,-5);
    328. 

  328. 		}
    329. 

  329. 		$barr['use'] = $use;
    330. 

  330. 		return returnsuccess($barr);
    331. 

  331. 	}
    332. 

  332. 	public function autherdelAjax()
    333. 

  333. 	{
    334. 

  334. 		if(getconfig('systype')=='demo')return returnerror('演示上不要操作');
    335. 

  335. 		return c('xinhuapi')->autherdel();
    336. 

  336. 	}
    337. 

  337. 	public function tongbudwAjax()
    338. 

  338. 	{
    339. 

  339. 		$rows = m('company')->getall('iscreate=1');
    340. 

  340. 		foreach($rows as $k=>$rs){
    341. 

  341. 			$base = ''.DB_BASE.'_company_'.$rs['num'].'';
    342. 

  342. 			$this->sevessee($base, 'auther_aukey');
    343. 

  343. 			$this->sevessee($base, 'auther_enddt');
    344. 

  344. 			$this->sevessee($base, 'auther_yuming');
    345. 

  345. 			$this->sevessee($base, 'auther_authkey');
    346. 

  346. 		}
    347. 

  347. 		return '同步成功';
    348. 

  348. 	}
    349. 

  349. 	private function sevessee($base, $key)
    350. 

  350. 	{
    351. 

  351. 		$val = $this->option->getval($key);
    352. 

  352. 		$sql = "update ".$base.".`[Q]option` set `value`='$val',`optdt`='{$this->now}' where `num`='$key'";
    353. 

  353. 		$this->db->query($sql, false);
    354. 

  354. 	}
    355. 

  355. 	
    356. 

  356. 	
    357. 

  357. 	
    358. 

  358. 	
    359. 

  359. 	
    360. 

  360. 	
    361. 

  361. 	
    362. 

  362. 	
    363. 

  363. 	
    364. 

  364. 	
    365. 

  365. 	
    366. 

  366. 	/**
    367. 

  367. 	*	更多保存设置
    368. 

  368. 	*/
    369. 

  369. 	public function savemoresetAjax()
    370. 

  370. 	{
    371. 

  371. 		if(getconfig('systype')=='demo')return '演示不要改';
    372. 

  372. 		$stype = (int)$this->post('stype','0');
    373. 

  373. 		$msg  = 'ok';
    374. 

  374. 		if($stype==0)$msg = $this->saveconfig('title,imgcompress,watertype,video_bool,flowchehuitime,saasmode,hoemtimeout,usercache,xiangrecord,beianhao,locallang,savefiletype',',video_bool,');
    375. 

  375. 	
    376. 

  376. 		return $msg;
    377. 

  377. 	}
    378. 

  378. 	private function saveconfig($cont, $bsto)
    379. 

  379. 	{
    380. 

  380. 		$path = ''.P.'/'.P.'Config.php';
    381. 

  381. 		
    382. 

  382. 		$neir = file_get_contents($path);
    383. 

  383. 		$zdar = explode(',', $cont);
    384. 

  384. 		$neira= explode("\n", $neir);
    385. 

  385. 		
    386. 

  386. 		$strs = '';
    387. 

  387. 		$szida= array();
    388. 

  388. 		foreach($neira as $line){
    389. 

  389. 			if($line==');')break;
    390. 

  390. 			$bo = false;
    391. 

  391. 			foreach($zdar as $fid){
    392. 

  392. 				if(contain($line,"'".$fid."'")){
    393. 

  393. 					$val = $this->post($fid);
    394. 

  394. 					if(contain($val,'*****')){
    395. 

  395. 						$strs.="".$line."\n";
    396. 

  396. 					}else{
    397. 

  397. 						$val  = $this->rock->xssrepstr($val);
    398. 

  398. 						$vals = "'".$val."'";
    399. 

  399. 						if(contain($bsto,','.$fid.','))$vals = ($val=='1') ? 'true' : 'false';
    400. 

  400. 						$strs.="	'".$fid."'	=> ".$vals.",\n";
    401. 

  401. 					}
    402. 

  402. 					$bo = true;
    403. 

  403. 					$szida[]=$fid;
    404. 

  404. 				}
    405. 

  405. 			}
    406. 

  406. 			if(!$bo)$strs.="".$line."\n";
    407. 

  407. 		}
    408. 

  408. 		
    409. 

  409. 		foreach($zdar as $fid){
    410. 

  410. 			if(!in_array($fid, $szida)){
    411. 

  411. 				$val = $this->post($fid);
    412. 

  412. 				$strs.="	'".$fid."'	=> '".$val."',\n";
    413. 

  413. 			}
    414. 

  414. 		}
    415. 

  415. 		
    416. 

  416. 		$strs.=');';
    417. 

  417. 		$bo = @file_put_contents($path,$strs);
    418. 

  418. 		if(!$bo)return '无权限写入:'.$path.'';
    419. 

  419. 		return 'ok';
    420. 

  420. 	}
    421. 

  421. 	
    422. 

  422. 	public function getmodeAjax()
    423. 

  423. 	{
    424. 

  424. 		$modearr = m('mode')->getmodearr('all');
    425. 

  425. 		return array(
    426. 

  426. 			'modearr' => $modearr
    427. 

  427. 		);
    428. 

  428. 	}
    429. 

  429. 	
    430. 

  430. 	public function savemodeAjax()
    431. 

  431. 	{
    432. 

  432. 		if(getconfig('systype')=='demo')return '演示不要改';
    433. 

  433. 		$dbs    = m('mode');
    434. 

  434. 		$allnum = $this->post('allnum');
    435. 

  435. 		$allarr = explode(',', $allnum);
    436. 

  436. 		$allstr = "'".str_replace(',',"','", $allnum)."'";
    437. 

  437. 		$dbs->update('status=0', "`type`<>'系统' and `num` not in($allstr)");
    438. 

  438. 		$dbs->update('status=1', "`num` in($allstr)");
    439. 

  439. 		
    440. 

  440. 		//菜单更新
    441. 

  441. 		$menuarr = $dbs->menulist();
    442. 

  442. 		$mdb 	 = m('menu');
    443. 

  443. 		$cdid	 = '';
    444. 

  444. 		foreach($menuarr as $bh=>$vs){
    445. 

  445. 			if($bh=='wxgzh' || $bh=='ding' || $bh=='weixinqy')continue;
    446. 

  446. 			$zt = 0;
    447. 

  447. 			if(contain($allstr,"'".$bh."'")){
    448. 

  448. 				$zt = 1;
    449. 

  449. 				$cdid.=','.$vs.'';
    450. 

  450. 			}
    451. 

  451. 			$mdb->update('`status`='.$zt.'', '`id` in('.$vs.')');
    452. 

  452. 		}
    453. 

  453. 		
    454. 

  454. 		$menuarr = $dbs->yinglist();
    455. 

  455. 		$mdb 	 = m('im_group');
    456. 

  456. 		foreach($menuarr as $bh=>$vs){
    457. 

  457. 			$zt = 1;
    458. 

  458. 			if(!contain($allstr,"'".$bh."'")){
    459. 

  459. 				$zt = 0;
    460. 

  460. 			}
    461. 

  461. 			$mdb->update('`valid`='.$zt.'', '`id` in('.$vs.')');
    462. 

  462. 		}
    463. 

  463. 		
    464. 

  464. 		$tdb= m('task');
    465. 

  465. 		$hdb= m('homeitems');
    466. 

  466. 		
    467. 

  467. 		$zt = contain($allstr,"'kqdkjl'") ? 1 : 0;
    468. 

  468. 		$tdb->update("`status`='$zt'", "`fenlei`='考勤'");
    469. 

  469. 		$hdb->update("`status`='$zt'", "`num` in('kqdk','kqtotal')");
    470. 

  470. 		
    471. 

  471. 		$zt = contain($allstr,"'userract'") ? 1 : 0;
    472. 

  472. 		$tdb->update("`status`='$zt'", "`fenlei`='人事'");
    473. 

  473. 		
    474. 

  474. 		$zt = contain($allstr,"'officic'") ? 1 : 0;
    475. 

  475. 		$hdb->update("`status`='$zt'", "`num` in('officic')");
    476. 

  476. 		
    477. 

  477. 		$zt = contain($allstr,"'meet'") ? 1 : 0;
    478. 

  478. 		$hdb->update("`status`='$zt'", "`num` in('meet')");
    479. 

  479. 		
    480. 

  480. 		$zt = contain($allstr,"'bianjian'") ? 1 : 0;
    481. 

  481. 		$hdb->update("`status`='$zt'", "`num` in('bianjian')");
    482. 

  482. 		
    483. 

  483. 		$zt = contain($allstr,"'gong'") ? 1 : 0;
    484. 

  484. 		$hdb->update("`status`='$zt'", "`num` in('gong')");
    485. 

  485. 		
    486. 

  486. 		
    487. 

  487. 		return '保存成功';
    488. 

  488. 	}
    489. 

  489. 	
    490. 

  490. 	/**
    491. 

  491. 	*	2026-05-10安全设置的
    492. 

  492. 	*/
    493. 

  493. 	public function safegetAjax()
    494. 

  494. 	{
    495. 

  495. 		$iplist = ''.ROOT_PATH.'/config/iplist.php';
    496. 

  496. 		$iparr 	= array();
    497. 

  497. 		if(file_exists($iplist)){
    498. 

  498. 			$iparr 	= require($iplist);
    499. 

  499. 		}
    500. 

  500. 		
    501. 

  501. 		$db = m('menu');
    502. 

  502. 		if($db->rows("`num`='safeset'")==0)$db->insert(array(
    503. 

  503. 			'name' => '安全设置',
    504. 

  504. 			'pid' 	=> '46',
    505. 

  505. 			'sort' 	=> '8',
    506. 

  506. 			'url'	=> 'system,cog,safeset',
    507. 

  507. 			'icons' => 'shield',
    508. 

  508. 			'optdt' => $this->now,
    509. 

  509. 			'num' 	=> 'safeset',
    510. 

  510. 			'ispir' => '1',
    511. 

  511. 			'type'	=> '1'
    512. 

  512. 		));
    513. 

  513. 		
    514. 

  514. 		return $iparr;
    515. 

  515. 	}
    516. 

  516. 	public function safesaveAjax()
    517. 

  517. 	{
    518. 

  518. 		if(getconfig('systype')=='demo')exit('演示上禁止设置');
    519. 

  519. 		$iplist  = ''.ROOT_PATH.'/config/iplist.php';
    520. 

  520. 		$blackip = str_replace(':','.', $this->post('blackip'));
    521. 

  521. 		$whiteip = str_replace(':','.', $this->post('whiteip'));
    522. 

  522. 		$whitecity  = $this->rock->xssrepstr($this->post('whitecity'));
    523. 

  523. 		$gaptime 	= (int)$this->post('gaptime','0');
    524. 

  524. 		$gapnums 	= (int)$this->post('gapnums','0');
    525. 

  525. 		if($zf = c('check')->onlynoen(str_replace(array('.',',','*'),'', $blackip)))return '无效字符:'.$zf.'';
    526. 

  526. 		if($zf = c('check')->onlynoen(str_replace(array('.',',','*'),'', $whiteip)))return '无效字符:'.$zf.'';
    527. 

  527. $str = "<?php
    528. 

  528. return array(
    529. 

  529. 

  530. 	//黑名单IP,多个,分开如:127.0.0.1,192.168.1.100,也可以写192.168.1这样就是限制192.168.1.*所有的
    531. 

  531. 	'blackip' 	=> '$blackip',
    532. 

  532. 	
    533. 

  533. 	//白名单
    534. 

  534. 	'whiteip'	=> '$whiteip',
    535. 

  535. 	
    536. 

  536. 	//可访问的区域
    537. 

  537. 	'whitecity'	=> '$whitecity',
    538. 

  538. 	
    539. 

  539. 	//几秒内
    540. 

  540. 	'gaptime'	=> $gaptime,
    541. 

  541. 	
    542. 

  542. 	//限制访问次数
    543. 

  543. 	'gapnums'	=> $gapnums
    544. 

  544. );";	
    545. 

  545. 		$bool = @file_put_contents($iplist, $str);
    546. 

  546. 		if(!$bool)return '保存失败无法写入:config/iplist.php';
    547. 

  547. 		return 'ok';
    548. 

  548. 	}
    549. 

  549. }
    550.
粤ICP备19079148号