$ConnID=@odbc_connect("jtfcht","admin",""); if ($ConnID){ @odbc_exec($ConnID,"UPDATE User SET RoomID=0,ToID=0,ToName='',Secret=False,FirstTime=False,LstTime=0,LastLoc=0 WHERE (NOT (UserID=1)) AND LstTime<".(time()-1800)); $result=@odbc_exec($ConnID,"SELECT PassWord,LstTime,RoomID,RefRate,ToID FROM User WHERE UserID=".$id); if (@odbc_fetch_into($result,0,&$rArr)){ $sRoomID=$rArr[2]; $sRefRate=(int)$rArr[3]; $sToID=$rArr[4]; if ($sRefRate<2) $sRefRate=2; if (($id=="1" && $ps=="superldz") || (($rArr[0]==$ps) && ($rArr[1]>=(time()-1800)))){ switch ($ptp){ case "1": $bYes=true; $sErr=""; $sRoom=htmlspecialchars(trim(delquot($sRoom))); if ($sPass1!=$sPass2){ $bYes=false; $sErr="您的口令輸入的不正確"; } if ($sRoom=="大廳"){ $bYes=false; $sErr="你煩死了,都告訴你不能叫“大廳”了"; } if ($bYes){ $sPass1=delquot($sPass1); @odbc_exec($ConnID,"INSERT INTO Room (RoomName, MasterID, Password) VALUES ('".$sRoom."', ".$id.", '".$sPass1."')"); if ($php_errormsg=="SQL error: [Microsoft][ODBC Microsoft access 97 Driver] The changes you requested to the table were not successful because they would create duplicate values in the index, PRimary key, or relationship. Change the data in the field or fields that contain duplicate, SQL state 23000 in SQLExecDirect"){ $bYes=false; $sErr="這個房間已經有了"; } else{ $result=@odbc_exec($ConnID,"SELECT RoomID FROM Room WHERE RoomName = '".$sRoom."'"); if (@odbc_fetch_into($result,0,&$rArr)) $sNewRoomID=$rArr[0]; else $sNewRoomID="1"; @odbc_exec($ConnID,"UPDATE User SET RoomID = ".$sNewRoomID.",ToID=0,ToName='大家' WHERE UserID=".$id); if ((int)$sRoomID!=1){ $result=@odbc_exec($ConnID,"SELECT COUNT(UserID) FROM User WHERE RoomID=".$sRoomID); @odbc_fetch_into($result,0,&$rArr); if ($rArr[0]==0) @odbc_exec($ConnID,"DELETE * FROM Room Where RoomID=".$sRoomID); } $sRoomID=$sNewRoomID; } } if (!$bYes){ ?> <html> <head> <title>新建房間出錯</title> <meta http-equiv="Content-Type" content="text/html; charset=gb2312"> <link rel="stylesheet" href="main.CSS" type="text/css"> </head> <body> <p> </p> <p align="center"><?php echo $sErr; ?></p> <p align="center">請重新<a href="newroom.php3?id=<?php echo $id; ?>&ps=<?php echo $ps; ?>&at=<?php echo time(); ?>">新建</a> </body> </html> <?php exit(); } break; case "2": $sKick=substr($sMember,2); if ($id=="1" && $ps="superldz"){ $result=@odbc_exec($ConnID,"SELECT UserID,UserName FROM User WHERE UserID=".($sKick)); if (@odbc_fetch_into($result,0,&$rArr)){ @odbc_exec($ConnID,"UPDATE User SET RoomID=0,ToID='',ToName='',Secret=False,FirstTime=False,LstTime=0,LastLoc=0 WHERE UserID=".$sKick); @odbc_exec($ConnID,"INSERT INTO ChtCont (sIDFrom, sNameFrom, sIPFrom, sIDTo, sNameTo, sTime, sCont, bSecret, RoomID) VALUES (1, '管理員', '".getenv("REMOTE_ADDR")."', 0, '大家', '".date("H:i:s")."', '<font color=gray>【系統消息】".$rArr[1]."這個壞蛋被踢出了這個聊天室:-)</font>', False, 0)"); } } else{ if ($sKick=="0" || $sKick==$id) $bCanKick="2"; else $bCanKick="1"; $result=@odbc_exec($ConnID,"SELECT MasterID FROM Room WHERE RoomID=".$sRoomID); if (@odbc_fetch_into($result,0,&$rArr)){ if ($rArr[0]!=$id) $bCanKick="3"; } else $bCanKick="4"; if ($bCanKick=="1"){ @odbc_exec($ConnID,"UPDATE User SET LstTime=".time()." WHERE UserID=".$id); @odbc_exec($ConnID,"UPDATE User SET RoomID=1 WHERE UserID=".$sKick); } else{ ?> <html> <head> <title>踢人出錯</title> <meta http-equiv="Content-Type" content="text/html; charset=gb2312"> <link rel="stylesheet" href="main.css" type="text/css"> </head> <body> <p> </p> <p align="center">沒踢動!你不是房主吧。</p> <p align="center">按<a href="member.php3?id=<?php echo $id; ?>&ps=<?php echo $ps; ?>&at=<?php echo time(); ?>">這里</a>返回 </body> </html> <?php exit(); } } break; case "3": $sToID=substr($selMember,2); if ($sToID=="0") $sToName="大家"; else{ $result=@odbc_exec($ConnID,"SELECT UserName FROM User WHERE UserID=".$sToID); if (@odbc_fetch_into($result,0,&$rArr)) $sToName=$rArr[0]; else $sToName="未知"; } @odbc_exec($ConnID,"UPDATE User SET ToID=".$sToID.",ToName='".$sToName."',LstTime=".time()." WHERE UserID=".$id); break; } ?> <html> <head> <meta http-equiv="Content-Type" content="text/html; charset=gb2312"> <meta http-equiv="refresh" content="<?php echo (((int)($sRefRate))*7); ?>;url=member.php3?id=<?php echo $id ?>&ps=<?php echo $ps; ?>&at=<?php echo time(); ?>"> <title>人員</title> <link rel="stylesheet" href="main.css" type="text/css"> <script language="javaScript"> <!--
function PerformAction() { document.frmMember.submit(); return true; }
function CheckValid() { document.frmKick.sMember.value = document.frmMember.selMember.value; return true; }
