<?php
|
/**
|
* [WeEngine System] Copyright (c) 20181025112640 WE7.CC
|
* WeEngine is NOT a free software, it under the license terms, visited http://www.we7.cc/ for more details.
|
*/
|
define('IN_SYS', true);
|
require '../framework/bootstrap.inc.php';
|
require IA_ROOT . '/web/common/bootstrap.sys.inc.php';
|
|
if (!empty($_GPC['state'])) {
|
$login_callback_params = OAuth2Client::supportParams($_GPC['state']);
|
if (!empty($login_callback_params)) {
|
$controller = 'user';
|
$action = 'login';
|
$_GPC['login_type'] = $login_callback_params['from'];
|
$_GPC['handle_type'] = $login_callback_params['mode'];
|
}
|
}
|
|
if (empty($_W['isfounder']) && !empty($_W['user']) && ($_W['user']['status'] == USER_STATUS_CHECK || $_W['user']['status'] == USER_STATUS_BAN)) {
|
message('您的账号正在审核或是已经被系统禁止,请联系网站管理员解决!', url('user/login'), 'info');
|
}
|
$acl = require IA_ROOT . '/web/common/permission.inc.php';
|
|
$_W['page'] = array();
|
$_W['page']['copyright'] = $_W['setting']['copyright'];
|
|
if (($_W['setting']['copyright']['status'] == 1) && empty($_W['isfounder']) && $controller != 'cloud' && $controller != 'utility' && $controller != 'account') {
|
$_W['siteclose'] = true;
|
if ($controller == 'account' && $action == 'welcome') {
|
template('account/welcome');
|
exit();
|
}
|
if ($controller == 'user' && $action == 'login') {
|
if (checksubmit()) {
|
require _forward($controller, $action);
|
}
|
template('user/login');
|
exit();
|
}
|
isetcookie('__session', '', - 10000);
|
|
message('站点已关闭,关闭原因:' . $_W['setting']['copyright']['reason'], url('user/login'), 'info');
|
|
|
}
|
|
$controllers = array();
|
$handle = opendir(IA_ROOT . '/web/source/');
|
if (!empty($handle)) {
|
while ($dir = readdir($handle)) {
|
if ($dir != '.' && $dir != '..') {
|
$controllers[] = $dir;
|
}
|
}
|
}
|
if (!in_array($controller, $controllers)) {
|
$controller = 'home';
|
}
|
|
$init = IA_ROOT . "/web/source/{$controller}/__init.php";
|
if (is_file($init)) {
|
require $init;
|
}
|
|
if (!(defined('FRAME') && in_array(FRAME, array('site', 'system')))) {
|
if (!empty($_W['uniacid'])) {
|
$_W['uniaccount'] = $_W['account'] = uni_fetch($_W['uniacid']);
|
if (empty($_W['account'])) {
|
unset($_W['uniacid']);
|
}
|
$_W['acid'] = $_W['account']['acid'];
|
$_W['weid'] = $_W['uniacid'];
|
}
|
}
|
|
$actions = array();
|
$actions_path = file_tree(IA_ROOT . '/web/source/' . $controller);
|
foreach ($actions_path as $action_path) {
|
$action_name = str_replace('.ctrl.php', '', basename($action_path));
|
|
$section = basename(dirname($action_path));
|
if ($section !== $controller) {
|
$action_name = $section . '-' .$action_name;
|
}
|
$actions[] = $action_name;
|
}
|
|
if (empty($actions)) {
|
header('location: ?refresh');
|
}
|
|
if (!in_array($action, $actions)) {
|
$action = $action . '-' . $action;
|
}
|
if (!in_array($action, $actions)) {
|
$action = $acl[$controller]['default'] ? $acl[$controller]['default'] : $actions[0];
|
}
|
|
if (is_array($acl[$controller]['direct']) && in_array($action, $acl[$controller]['direct'])) {
|
require _forward($controller, $action);
|
exit();
|
}
|
checklogin();
|
if ($_W['role'] != ACCOUNT_MANAGE_NAME_FOUNDER) {
|
if ($_W['role'] == ACCOUNT_MANAGE_NAME_UNBIND_USER) {
|
itoast('', url('user/third-bind'));
|
}
|
if (empty($_W['uniacid'])) {
|
if (defined('FRAME') && FRAME == 'account') {
|
itoast('', url('account/display', array('type' => ACCOUNT_TYPE_SIGN)), 'info');
|
}
|
if (defined('FRAME') && FRAME == 'wxapp') {
|
itoast('', url('account/display', array('type' => WXAPP_TYPE_SIGN)), 'info');
|
}
|
}
|
$acl = permission_build();
|
if (empty($acl[$controller][$_W['role']]) || (!in_array($controller.'*', $acl[$controller][$_W['role']]) && !in_array($action, $acl[$controller][$_W['role']]))) {
|
message('不能访问, 需要相应的权限才能访问!');
|
}
|
}
|
require _forward($controller, $action);
|
|
define('ENDTIME', microtime());
|
if (empty($_W['config']['setting']['maxtimeurl'])) {
|
$_W['config']['setting']['maxtimeurl'] = 10;
|
}
|
if ((ENDTIME - STARTTIME) > $_W['config']['setting']['maxtimeurl']) {
|
$data = array(
|
'type' => '1',
|
'runtime' => ENDTIME - STARTTIME,
|
'runurl' => $_W['sitescheme'] . $_SERVER['HTTP_HOST'] . $_SERVER['REQUEST_URI'],
|
'createtime' => TIMESTAMP
|
);
|
pdo_insert('core_performance', $data);
|
}
|
function _forward($c, $a) {
|
$file = IA_ROOT . '/web/source/' . $c . '/' . $a . '.ctrl.php';
|
if (!file_exists($file)) {
|
list($section, $a) = explode('-', $a);
|
$file = IA_ROOT . '/web/source/' . $c . '/' . $section . '/' . $a . '.ctrl.php';
|
}
|
return $file;
|
}
|
function _calc_current_frames(&$frames) {
|
global $controller, $action;
|
if (!empty($frames['section']) && is_array($frames['section'])) {
|
foreach ($frames['section'] as &$frame) {
|
if (empty($frame['menu'])) {
|
continue;
|
}
|
foreach ($frame['menu'] as $key => &$menu) {
|
$query = parse_url($menu['url'], PHP_URL_QUERY);
|
parse_str($query, $urls);
|
if (empty($urls)) {
|
continue;
|
}
|
if (defined('ACTIVE_FRAME_URL')) {
|
$query = parse_url(ACTIVE_FRAME_URL, PHP_URL_QUERY);
|
parse_str($query, $get);
|
} else {
|
$get = $_GET;
|
$get['c'] = $controller;
|
$get['a'] = $action;
|
}
|
if (!empty($do)) {
|
$get['do'] = $do;
|
}
|
$diff = array_diff_assoc($urls, $get);
|
if (empty($diff) ||
|
$key == 'platform_site' && in_array($get['a'], array('style', 'article', 'category')) ||
|
$key == 'mc_member' && in_array($get['a'], array('editor', 'group', 'fields')) ||
|
$key == 'profile_setting' && in_array($get['a'], array('passport', 'tplnotice', 'notify', 'common')) ||
|
$key == 'profile_payment' && in_array($get['a'], array('refund')) ||
|
$key == 'statistics_visit' && in_array($get['a'], array('site', 'setting')) ||
|
$key == 'wxapp_payment' && in_array($get['a'], array('refund'))) {
|
$menu['active'] = ' active';
|
}
|
}
|
}
|
}
|
}
|
