<?php
/**********************
DedeCMS 管理员帐号重设工具.
qq:346882795
***********************/
//error_reporting(E_ALL || ~E_NOTICE);
require_once(dirname(__FILE__)."/include/common.inc.php");
if(empty($step))
{
$step = 1;
}
?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf8" />
<title>密码重设工具</title>
<style type="text/css">
<!--
body {
font-family: "MS Serif", "New York", serif;
font-size: 12px;
color: #000;
}
table {
border-top-width: 1px;
border-right-width: 1px;
border-left-width: 1px;
border-top-style: dotted;
border-right-style: dotted;
border-left-style: dotted;
border-top-color: #CCC;
border-right-color: #CCC;
border-left-color: #CCC;
}
td {
border-bottom-width: 1px;
border-bottom-style: dotted;
border-bottom-color: #CCC;
}
-->
</style>
</head>
<body>
<?php
if($step==1)
{
$dsql->SetQuery("Select * From `#@__admin` ");
$dsql->Execute("ut");
?>
<table width="98%" border="0" align="center" cellpadding="3" cellspacing="1">
<tr>
<td height="19" bgcolor="#E7E7E7"><table width="96%" border="0" cellspacing="1" cellpadding="1">
<tr>
<td width="24%"><b><strong>第一步:选择管理员账号</strong></b></td>
<td width="76%" align="right"><a href="?step=4">添加管理员</a></td>
</tr>
</table></td>
</tr>
<tr>
<td height="215" align="center" valign="top" bgcolor="#FFFFFF"><form action="radminpass.php" method="post" name="form1" id="form1">
<input type="hidden" name="step" value="2" />
<table width="98%" border="0" cellspacing="1" cellpadding="1">
<tr>
<td height="60" colspan="2" align="left">本工具是用于新人忘记管理员密码重设所制作,只需要将radminpass.php文件拷贝到根目录,运行“http://yousite/radminpass.php(yousite为网站域名)”,按照操作执行就可以。<font color="#FF0000">恢复完成后请及时删除这个文件!</font></td>
</tr>
<tr>
<td width="16%" height="30" align="left">选择超级管理员ID:</td>
<td width="84%" align="left">
<select name='id' style='width:150px'>
<?php
while($myrow = $dsql->GetObject("ut"))
{
echo "<option value='".$myrow->id."'>".$myrow->userid."</option>\r\n";
}
?>
</select>
</td>
</tr>
<tr>
<td height="60" align="left"> </td>
<td align="left"><input type="submit" name="Submit" value="下一步>" class="coolbg np" /></td>
</tr>
</table>
</form></td>
</tr>
</table>
<?php
}elseif($step==2){
$row = $dsql->GetOne("Select * From `#@__admin` where id='$id'");
?>
<table width="98%" border="0" align="center" cellpadding="3" cellspacing="1">
<tr>
<td height="19" bgcolor="#E7E7E7"><table width="96%" border="0" cellspacing="1" cellpadding="1">
<tr>
<td width="24%"><b><strong>第二步:修改管理员密码</strong></b></td>
<td width="76%" align="right"> </td>
</tr>
</table></td>
</tr>
<tr>
<td height="215" align="center" valign="top" bgcolor="#FFFFFF"><form action="radminpass.php" method="post" name="form1" id="form1">
<input name="step" type="hidden" id="step" value="3" />
<input type="hidden" name="id" value="<?php echo $row['id']?>" />
<table width="98%" border="0" cellspacing="1" cellpadding="1">
<tr>
<td width="16%" height="30" align="left">用户登录ID:</td>
<td width="84%" align="left"><?php echo $row['userid']?></td>
</tr>
<tr>
<td height="30" align="left">用户笔名:</td>
<td align="left"><input name="uname" type="text" id="uname" size="16" value="<?php echo $row['uname']?>" style="width:200px" />
(发布文章后显示责任编辑的名字) </td>
</tr>
<tr>
<td height="30" align="left">用户密码:</td>
<td align="left"><input name="pwd" type="text" id="pwd" size="16" style="width:200px" />
(留空则不修改,只能用'0-9a-zA-Z.@_-!'以内范围的字符) </td>
</tr>
<tr>
<td height="60" align="left"> </td>
<td align="left"><input type="submit" name="Submit" value="确定修改 " class="coolbg np" /></td>
</tr>
</table>
</form></td>
</tr>
</table>
<?php
}elseif($step==3){
$pwdm = '';
if($pwd!=''){
$pwdm = ",pwd='".md5($pwd)."'";
$pwd = ",pwd='".substr(md5($pwd),5,20)."'";
}
$query = "Update `#@__admin` set uname='$uname' $pwd where id='$id'";
$dsql->ExecuteNoneQuery($query);
$query = "Update `#@__member` set uname='$uname' $pwdm where mid='$id'";
$dsql->ExecuteNoneQuery($query);
ShowMsg("成功更改一个帐户!","radminpass.php");
}
elseif ($step==4)
{
?>
<table width="98%" border="0" align="center" cellpadding="3" cellspacing="1">
<tr>
<td height="19" bgcolor="#E7E7E7"><table width="96%" border="0" cellspacing="1" cellpadding="1">
<tr>
<td width="24%"><b><strong>添加管理员密码</strong></b></td>
<td width="76%" align="right"> </td>
</tr>
</table></td>
</tr>
<tr>
<td height="215" align="center" valign="top" bgcolor="#FFFFFF"><form action="radminpass.php" method="post" name="form1" id="form1">
<input name="step" type="hidden" id="step" value="3" />
<input type="hidden" name="id" value="<?php echo $row['id']?>" />
<table width="98%" border="0" cellspacing="1" cellpadding="1">
<tr>
<td width="16%" height="30" align="left">账号名</td>
<td width="84%" align="left"><input type="text" name="userid" ></td>
</tr>
<tr>
<td height="30" align="left">用户密码:</td>
<td align="left"><input name="password" type="text" size="16" style="width:200px" />
(留空则不修改,只能用'0-9a-zA-Z.@_-!'以内范围的字符) </td>
</tr>
<tr>
<td height="30" align="left">重复密码:</td>
<td align="left"><input name="password2" type="text" size="16" style="width:200px" />
(留空则不修改,只能用'0-9a-zA-Z.@_-!'以内范围的字符) </td>
</tr>
<tr>
<td height="30" align="left">用户笔名:</td>
<td align="left"><input name="uname" type="text" id="uname" size="16" style="width:200px" />
(发布文章后显示责任编辑的名字) </td>
</tr>
<tr>
<td height="30" align="left">用户类型:</td>
<td align="left">
<select name="usertype" style="width:200px">
<option value="1">信息发布员</option>
<option value="5">频道管理员</option>
<option value="10" selected="1">超级管理员</option>
</select>
</td>
</tr>
<tr>
<td height="60" align="left"> </td>
<td align="left">
<input type="hidden" value="5" name="step" />
<input type="submit" name="Submit" value="确定修改 " class="coolbg np" />
</td>
</tr>
</table>
</form></td>
</tr>
</table>
<?php
}
if( $step == 5 )
{
if( $password != $password2 )
ShowMsg('密码不相同', -1);
if( $password != '' )
$pass = substr(md5($password),5,20);
$id = rand(10,10000);
$inserSql = " INSERT INTO `#@__admin` (`id`,`usertype`, `userid`, `pwd`, `uname`, `logintime`) VALUES ({$id}, '{$usertype}', '{$userid}', '{$pass}', '{$uname}', '1487921471')";
$dsql->ExecuteNoneQuery($inserSql);
ShowMsg("成功创建一个新的用户组!", "radminpass.php");
}
?>
</body>
</html>
