diff --git a/README.md b/README.md index f2eb06e..829f3b7 100755 --- a/README.md +++ b/README.md @@ -18,6 +18,8 @@ OneNav是一款开源免费的书签(导航)管理程序,使用使用PHP + ![](https://i.bmp.ovh/imgs/2020/12/abba0af566f3c16a.png) +> **特别声明:未经作者允许,请勿将OneNav进行获利行为或进行商业行为,亦不得用于非法用途,否则自行承担相应法律责任!!!** + ## 功能特色 * 支持后台管理 @@ -31,6 +33,7 @@ OneNav是一款开源免费的书签(导航)管理程序,使用使用PHP + * 支持二级分类 * 支持Chromium内核的[浏览器扩展](https://dwz.ovh/4kxn2)(插件) * 支持在线更新 +* 手机版后台 ## 安装 @@ -46,11 +49,11 @@ OneNav是一款开源免费的书签(导航)管理程序,使用使用PHP + ```bash docker run -itd --name="onenav" -p 80:80 \ -v /data/onenav:/data/wwwroot/default/data \ - helloz/onenav:0.9.23 + helloz/onenav:0.9.25 ``` * 第一个`80`是自定义访问端口,可以自行修改,第二个`80`是容器端口,请勿修改 * `/data/onenav`:本机挂载目录,用于持久存储Onenav数据 -* `0.9.23`:改成OneNav最新版本号,可以通过[releases](https://github.com/helloxz/onenav/releases)查看最新版本号 +* `0.9.25`:改成OneNav最新版本号,可以通过[releases](https://github.com/helloxz/onenav/releases)查看最新版本号 > 更多说明,请参考帮助文档:https://dwz.ovh/onenav diff --git a/class/Api.php b/class/Api.php index 40396e7..885f1ae 100755 --- a/class/Api.php +++ b/class/Api.php @@ -172,6 +172,11 @@ class Api { //计算正确的token:用户名 + TOKEN $SecretKey = @$this->db->get('on_options','*',[ 'key' => 'SecretKey' ])['value']; $token_yes = md5(USER.$SecretKey); + //获取header中的X-token + $xtoken = $_SERVER['HTTP_X_TOKEN']; + if( $xtoken === $token_yes ) { + return TRUE; + } //如果token为空,则验证cookie if(empty($token)) { if( !$this->is_login() ) { @@ -191,7 +196,7 @@ class Api { $this->err_msg(-1002,'Authorization failure!'); } else{ - return true; + return TRUE; } } /** @@ -213,8 +218,8 @@ class Api { $data = [ 'fid' => $fid, 'title' => htmlspecialchars($title,ENT_QUOTES), - 'url' => htmlspecialchars($url,ENT_QUOTES), - 'url_standby' => htmlspecialchars($url_standby,ENT_QUOTES), + 'url' => $url, + 'url_standby' => $url_standby, 'description' => htmlspecialchars($description,ENT_QUOTES), 'add_time' => time(), 'weight' => $weight, @@ -569,8 +574,8 @@ class Api { $this->check_link([ 'fid' => $fid, 'title' => htmlspecialchars($title,ENT_QUOTES), - 'url' => htmlspecialchars($url,ENT_QUOTES), - 'url_standby' => htmlspecialchars($url_standby,ENT_QUOTES) + 'url' => $url, + 'url_standby' => $url_standby ]); //查询ID是否存在 $count = $this->db->count('on_links',[ 'id' => $id]); @@ -685,7 +690,7 @@ class Api { $token = @$_POST['token']; $offset = ($page - 1) * $limit; //如果成功登录,则查询所有 - if( $this->is_login() ){ + if( $this->is_login() || $this->auth('') ){ $sql = "SELECT *,(SELECT name FROM on_categorys WHERE id = a.fid LIMIT 1) AS fname FROM on_categorys as a ORDER BY weight DESC,id DESC LIMIT {$limit} OFFSET {$offset}"; //统计总数 $count = $this->db->count('on_categorys','*'); @@ -757,6 +762,10 @@ class Api { elseif( (!empty($token)) && ($this->auth($token)) ) { $sql = "SELECT *,(SELECT name FROM on_categorys WHERE id = on_links.fid) AS category_name FROM on_links ORDER BY weight DESC,id DESC LIMIT {$limit} OFFSET {$offset}"; } + + else if( $this->auth("") === TRUE ) { + $sql = "SELECT *,(SELECT name FROM on_categorys WHERE id = on_links.fid) AS category_name FROM on_links ORDER BY weight DESC,id DESC LIMIT {$limit} OFFSET {$offset}"; + } //如果即没有登录成功,又没有token,则默认为游客,游客查询链接属性为公有,分类为公有,不查询私有 else{ $c_sql = "SELECT COUNT(*) AS num FROM on_links WHERE property = 0 AND fid IN (SELECT id FROM on_categorys WHERE property = 0)"; @@ -806,6 +815,10 @@ class Api { if( ($this->is_login()) && (empty($token)) ){ $sql = "SELECT *,(SELECT name FROM on_categorys WHERE id = on_links.fid) AS category_name FROM on_links WHERE fid = $fid ORDER BY weight DESC,id DESC LIMIT {$limit} OFFSET {$offset}"; } + //通过header获取token成功 + else if( $this->auth("") ) { + $sql = "SELECT *,(SELECT name FROM on_categorys WHERE id = on_links.fid) AS category_name FROM on_links WHERE fid = $fid ORDER BY weight DESC,id DESC LIMIT {$limit} OFFSET {$offset}"; + } //如果token验证通过 elseif( (!empty($token)) && ($this->auth($token)) ) { @@ -817,7 +830,7 @@ class Api { $count = $this->db->query($c_sql)->fetchAll()[0]['num']; $count = intval($count); - $sql = "SELECT *,(SELECT name FROM on_categorys WHERE id = on_links.fid) AS category_name FROM on_links WHERE property = 0 AND fid IN (SELECT id FROM on_categorys WHERE property = 0) ORDER BY weight DESC,id DESC LIMIT {$limit} OFFSET {$offset}"; + $sql = "SELECT *,(SELECT name FROM on_categorys WHERE id = on_links.fid) AS category_name FROM on_links WHERE property = 0 AND fid = $fid ORDER BY weight DESC,id DESC LIMIT {$limit} OFFSET {$offset}"; } @@ -1906,6 +1919,72 @@ class Api { $this->return_json(-2000,'',"回滚失败,请检查目录权限!"); } } + + /** + * name:获取OneNav信息 + */ + public function app_info($token) { + //验证请求 + $this->auth($token); + //获取PHP版本 + $data['php_version'] = PHP_VERSION; + //获取OneNav版本 + $data['onenav_version'] = file_get_contents("version.txt"); + //获取分类数量 + $data['cat_num'] = $this->db->count("on_categorys"); + //获取链接数量 + $data['link_num'] = $this->db->count("on_links"); + //获取用户名 + $data['username'] = USER; + + //返回JSON数据 + $this->return_json(200,$data,"success"); + } + + /** + * name:下载数据库 + */ + public function down_db($name) { + //验证请求 + $this->auth($token); + + //使用正则表达式判断数据库名称是否合法 + $pattern = '/^onenav_[0-9\-]+_[0-9.]+(db3)$/'; + + if( !preg_match_all($pattern,$name) ) { + $this->return_json(-2000,'','数据库名称不合法!'); + } + + //数据库目录 + $backup_dir = 'data/backup/'; + + //拼接数据库路径 + $full_path = $backup_dir.$name; + + if( !file_exists($full_path) ) { + header('HTTP/1.1 404 NOT FOUND'); + } + else{ + // 以只读和二进制模式打开文件 + $file = fopen($full_path, "rb"); + + // 告诉浏览器这是一个文件流格式的文件 + Header("Content-type: application/octet-stream"); + // 请求范围的度量单位 + Header("Accept-Ranges: bytes"); + // Content-Length是指定包含于请求或响应中数据的字节长度 + Header("Accept-Length: " . filesize($full_path)); + // 用来告诉浏览器,文件是可以当做附件被下载,下载后的文件名称为$file_name该变量的值。 + Header("Content-Disposition: attachment; filename=" . $name); + + // 读取文件内容并直接输出到浏览器 + echo fread($file, filesize($full_path)); + fclose($file); + + exit(); + } + + } } diff --git a/controller/admin.php b/controller/admin.php index 1bd1ad7..4903b19 100755 --- a/controller/admin.php +++ b/controller/admin.php @@ -184,6 +184,7 @@ if( $page == 'setting/theme' ) { case '.': case '..': case 'admin': + case 'mobile': continue; break; default: diff --git a/controller/api.php b/controller/api.php index 54abbf8..7576dc8 100755 --- a/controller/api.php +++ b/controller/api.php @@ -8,6 +8,7 @@ //允许跨域访问 header("Access-Control-Allow-Origin: *"); +header("Access-Control-Allow-Headers: Content-Type, AccessToken, X-CSRF-Token, Authorization, Token,X-Token,X-Cid"); require('./class/Api.php'); $api = new Api($db); @@ -31,7 +32,7 @@ if ( function_exists($var_func) ) { */ function add_category($api){ //获取token - $token = $_POST['token']; + $token = empty( $_POST['token'] ) ? $_GET['token'] : $_POST['token']; //获取分类名称 $name = $_POST['name']; //获取私有属性 @@ -61,7 +62,7 @@ function edit_category($api){ //获取父级ID $fid = intval($_POST['fid']); //获取token - $token = $_POST['token']; + $token = empty( $_POST['token'] ) ? $_GET['token'] : $_POST['token']; //获取分类名称 $name = $_POST['name']; //获取私有属性 @@ -87,7 +88,7 @@ function del_category($api){ //获取ID $id = intval($_POST['id']); //获取token - $token = $_POST['token']; + $token = empty( $_POST['token'] ) ? $_GET['token'] : $_POST['token']; $api->del_category($token,$id); } /** @@ -96,7 +97,7 @@ function del_category($api){ function add_link($api){ //add_link($token,$fid,$title,$url,$description = '',$weight = 0,$property = 0) //获取token - $token = $_POST['token']; + $token = empty( $_POST['token'] ) ? $_GET['token'] : $_POST['token']; //获取fid $fid = intval(@$_POST['fid']); @@ -116,7 +117,7 @@ function add_link($api){ function edit_link($api){ //add_link($token,$fid,$title,$url,$description = '',$weight = 0,$property = 0) //获取token - $token = $_POST['token']; + $token = empty( $_POST['token'] ) ? $_GET['token'] : $_POST['token']; $id = intval(@$_POST['id']); //获取fid @@ -136,7 +137,7 @@ function edit_link($api){ * 删除链接 */ function del_link($api){ - $token = $_POST['token']; + $token = empty( $_POST['token'] ) ? $_GET['token'] : $_POST['token']; $id = intval(@$_POST['id']); $api->del_link($token,$id); } @@ -156,7 +157,7 @@ function link_list($api){ $page = empty(intval($_REQUEST['page'])) ? 1 : intval($_REQUEST['page']); $limit = empty(intval($_REQUEST['limit'])) ? 10 : intval($_REQUEST['limit']); //获取token - $token = $_POST['token']; + $token = empty( $_POST['token'] ) ? $_GET['token'] : $_POST['token']; //获取分类ID $category_id = empty($_POST['category_id']) ? null : intval($_POST['category_id']); $data = [ @@ -175,7 +176,7 @@ function q_category_link($api){ $page = empty(intval($_REQUEST['page'])) ? 1 : intval($_REQUEST['page']); $limit = empty(intval($_REQUEST['limit'])) ? 10 : intval($_REQUEST['limit']); //获取token - $token = $_POST['token']; + $token = empty( $_POST['token'] ) ? $_GET['token'] : $_POST['token']; //获取分类ID $category_id = empty($_REQUEST['category_id']) ? null : intval($_REQUEST['category_id']); $data = [ @@ -192,7 +193,7 @@ function q_category_link($api){ */ function get_link_info($api) { //获取token - $token = $_POST['token']; + $token = empty( $_POST['token'] ) ? $_GET['token'] : $_POST['token']; //获取URL $url = @$_POST['url']; $api->get_link_info($token,$url); @@ -203,7 +204,7 @@ function get_link_info($api) { */ function get_a_category($api) { //获取token - $data['token'] = @$_POST['token']; + $data['token'] = @empty( $_POST['token'] ) ? $_GET['token'] : $_POST['token']; //获取分类ID $data['id'] = intval(trim($_POST['id'])); //var_dump($data); @@ -215,7 +216,7 @@ function get_a_category($api) { */ function get_a_link($api) { //获取token - $data['token'] = htmlspecialchars($_POST['token']); + $data['token'] = htmlspecialchars(empty( $_POST['token'] ) ? $_GET['token'] : $_POST['token']); //获取链接的ID $data['id'] = intval(htmlspecialchars($_GET['id'])); $api->get_a_link($data); @@ -226,14 +227,14 @@ function get_a_link($api) { */ function add_js($api) { //获取token - $token = $_POST['token']; + $token = empty( $_POST['token'] ) ? $_GET['token'] : $_POST['token']; $content = @$_POST['content']; $api->add_js($token,$content); } // 上传书签 function upload($api){ //获取token - $token = $_POST['token']; + $token = empty( $_POST['token'] ) ? $_GET['token'] : $_POST['token']; //获取上传类型 $type = $_GET['type']; $api->upload($token,$type); @@ -241,7 +242,7 @@ function upload($api){ //书签导入 function imp_link($api) { //获取token - $token = $_POST['token']; + $token = empty( $_POST['token'] ) ? $_GET['token'] : $_POST['token']; //获取书签路径 $filename = trim($_POST['filename']); $fid = intval($_POST['fid']); @@ -251,7 +252,7 @@ function imp_link($api) { //新版书签批量导入并自动创建分类 function import_link($api) { //获取token - $token = $_POST['token']; + $token = empty( $_POST['token'] ) ? $_GET['token'] : $_POST['token']; //获取书签路径 $filename = trim($_POST['filename']); $fid = intval($_POST['fid']); @@ -261,7 +262,7 @@ function import_link($api) { //检查弱密码 function check_weak_password($api) { //获取token - $token = $_POST['token']; + $token = empty( $_POST['token'] ) ? $_GET['token'] : $_POST['token']; $api->check_weak_password($token); } @@ -343,11 +344,11 @@ function _deny_set($content,$err_msg) { //设置订阅信息 function set_subscribe($api) { //获取订单ID - $data['order_id'] = htmlspecialchars( trim($_REQUEST['order_id']) ); + $data['order_id'] = htmlspecialchars( trim($_POST['order_id']) ); //获取邮箱 - $data['email'] = htmlspecialchars( trim($_REQUEST['email']) ); + $data['email'] = htmlspecialchars( trim($_POST['email']) ); //到期时间 - $data['end_time'] = htmlspecialchars( trim($_REQUEST['end_time']) ); + $data['end_time'] = htmlspecialchars( trim($_POST['end_time']) ); //重置订阅状态 session_start(); $_SESSION['subscribe'] = NULL; @@ -525,10 +526,10 @@ function delete_theme($api) { //下载主题 function down_theme() { global $api; - $data['name'] = trim($_REQUEST['name']); - $data['key'] = trim( $_REQUEST['key'] ); - $data['value'] = trim( $_REQUEST['value'] ); - $data['type'] = trim( $_REQUEST['type'] ); + $data['name'] = trim($_GET['name']); + $data['key'] = trim( $_GET['key'] ); + $data['value'] = trim( $_GET['value'] ); + $data['type'] = trim( $_GET['type'] ); $api->down_theme($data); } @@ -548,7 +549,7 @@ function backup_db_list() { //删除单个数据库备份 function del_backup_db() { global $api; - $name = @$_REQUEST['name']; + $name = @$_GET['name']; $api->del_backup_db($name); } @@ -557,4 +558,19 @@ function restore_db() { global $api; $name = @$_REQUEST['name']; $api->restore_db($name); +} + +//获取APPINFO +function app_info() { + $token = empty( $_POST['token'] ) ? $_GET['token'] : $_POST['token']; + global $api; + + $api->app_info($token); +} + +//下载数据库 +function down_db() { + global $api; + $name = $_GET['name']; + $api->down_db($name); } \ No newline at end of file diff --git a/controller/mobile.php b/controller/mobile.php new file mode 100644 index 0000000..60e3944 --- /dev/null +++ b/controller/mobile.php @@ -0,0 +1,27 @@ +认证失败,请重新登录!"; + require('templates/admin/403.php'); + exit; + } +} + +// 载入前台首页模板 +require('templates/mobile/index.php'); \ No newline at end of file diff --git a/data/update.log b/data/update.log index ea27099..96993d4 100755 --- a/data/update.log +++ b/data/update.log @@ -156,4 +156,12 @@ CREATE INDEX on_options_key_IDX ON on_options ("key"); 3. 默认主题支持直链模式,其它主题陆续支持 4. 程序更新完毕后自动跳转到后台首页更新数据库 5. 主题更新检测 -6. 新增数据库备份功能 \ No newline at end of file +6. 新增数据库备份功能 + +20221107 +1. api.php down_theme方法里面的REQUEST改成GET +2. 添加链接去掉过滤,避免#符号影响 +3. 前端初始化密码不允许&符号 +4. 新增备份数据库下载 +5. 默认主题改用本地二维码 +6. 新增手机版简易后台 \ No newline at end of file diff --git a/static/images/avatar.jpg b/static/images/avatar.jpg new file mode 100644 index 0000000..83e19df Binary files /dev/null and b/static/images/avatar.jpg differ diff --git a/static/js/qrcode.min.js b/static/js/qrcode.min.js new file mode 100644 index 0000000..993e88f --- /dev/null +++ b/static/js/qrcode.min.js @@ -0,0 +1 @@ +var QRCode;!function(){function a(a){this.mode=c.MODE_8BIT_BYTE,this.data=a,this.parsedData=[];for(var b=[],d=0,e=this.data.length;e>d;d++){var f=this.data.charCodeAt(d);f>65536?(b[0]=240|(1835008&f)>>>18,b[1]=128|(258048&f)>>>12,b[2]=128|(4032&f)>>>6,b[3]=128|63&f):f>2048?(b[0]=224|(61440&f)>>>12,b[1]=128|(4032&f)>>>6,b[2]=128|63&f):f>128?(b[0]=192|(1984&f)>>>6,b[1]=128|63&f):b[0]=f,this.parsedData=this.parsedData.concat(b)}this.parsedData.length!=this.data.length&&(this.parsedData.unshift(191),this.parsedData.unshift(187),this.parsedData.unshift(239))}function b(a,b){this.typeNumber=a,this.errorCorrectLevel=b,this.modules=null,this.moduleCount=0,this.dataCache=null,this.dataList=[]}function i(a,b){if(void 0==a.length)throw new Error(a.length+"/"+b);for(var c=0;c=f;f++){var h=0;switch(b){case d.L:h=l[f][0];break;case d.M:h=l[f][1];break;case d.Q:h=l[f][2];break;case d.H:h=l[f][3]}if(h>=e)break;c++}if(c>l.length)throw new Error("Too long data");return c}function s(a){var b=encodeURI(a).toString().replace(/\%[0-9a-fA-F]{2}/g,"a");return b.length+(b.length!=a?3:0)}a.prototype={getLength:function(){return this.parsedData.length},write:function(a){for(var b=0,c=this.parsedData.length;c>b;b++)a.put(this.parsedData[b],8)}},b.prototype={addData:function(b){var c=new a(b);this.dataList.push(c),this.dataCache=null},isDark:function(a,b){if(0>a||this.moduleCount<=a||0>b||this.moduleCount<=b)throw new Error(a+","+b);return this.modules[a][b]},getModuleCount:function(){return this.moduleCount},make:function(){this.makeImpl(!1,this.getBestMaskPattern())},makeImpl:function(a,c){this.moduleCount=4*this.typeNumber+17,this.modules=new Array(this.moduleCount);for(var d=0;d=7&&this.setupTypeNumber(a),null==this.dataCache&&(this.dataCache=b.createData(this.typeNumber,this.errorCorrectLevel,this.dataList)),this.mapData(this.dataCache,c)},setupPositionProbePattern:function(a,b){for(var c=-1;7>=c;c++)if(!(-1>=a+c||this.moduleCount<=a+c))for(var d=-1;7>=d;d++)-1>=b+d||this.moduleCount<=b+d||(this.modules[a+c][b+d]=c>=0&&6>=c&&(0==d||6==d)||d>=0&&6>=d&&(0==c||6==c)||c>=2&&4>=c&&d>=2&&4>=d?!0:!1)},getBestMaskPattern:function(){for(var a=0,b=0,c=0;8>c;c++){this.makeImpl(!0,c);var d=f.getLostPoint(this);(0==c||a>d)&&(a=d,b=c)}return b},createMovieClip:function(a,b,c){var d=a.createEmptyMovieClip(b,c),e=1;this.make();for(var f=0;f=g;g++)for(var h=-2;2>=h;h++)this.modules[d+g][e+h]=-2==g||2==g||-2==h||2==h||0==g&&0==h?!0:!1}},setupTypeNumber:function(a){for(var b=f.getBCHTypeNumber(this.typeNumber),c=0;18>c;c++){var d=!a&&1==(1&b>>c);this.modules[Math.floor(c/3)][c%3+this.moduleCount-8-3]=d}for(var c=0;18>c;c++){var d=!a&&1==(1&b>>c);this.modules[c%3+this.moduleCount-8-3][Math.floor(c/3)]=d}},setupTypeInfo:function(a,b){for(var c=this.errorCorrectLevel<<3|b,d=f.getBCHTypeInfo(c),e=0;15>e;e++){var g=!a&&1==(1&d>>e);6>e?this.modules[e][8]=g:8>e?this.modules[e+1][8]=g:this.modules[this.moduleCount-15+e][8]=g}for(var e=0;15>e;e++){var g=!a&&1==(1&d>>e);8>e?this.modules[8][this.moduleCount-e-1]=g:9>e?this.modules[8][15-e-1+1]=g:this.modules[8][15-e-1]=g}this.modules[this.moduleCount-8][8]=!a},mapData:function(a,b){for(var c=-1,d=this.moduleCount-1,e=7,g=0,h=this.moduleCount-1;h>0;h-=2)for(6==h&&h--;;){for(var i=0;2>i;i++)if(null==this.modules[d][h-i]){var j=!1;g>>e));var k=f.getMask(b,d,h-i);k&&(j=!j),this.modules[d][h-i]=j,e--,-1==e&&(g++,e=7)}if(d+=c,0>d||this.moduleCount<=d){d-=c,c=-c;break}}}},b.PAD0=236,b.PAD1=17,b.createData=function(a,c,d){for(var e=j.getRSBlocks(a,c),g=new k,h=0;h8*l)throw new Error("code length overflow. ("+g.getLengthInBits()+">"+8*l+")");for(g.getLengthInBits()+4<=8*l&&g.put(0,4);0!=g.getLengthInBits()%8;)g.putBit(!1);for(;;){if(g.getLengthInBits()>=8*l)break;if(g.put(b.PAD0,8),g.getLengthInBits()>=8*l)break;g.put(b.PAD1,8)}return b.createBytes(g,e)},b.createBytes=function(a,b){for(var c=0,d=0,e=0,g=new Array(b.length),h=new Array(b.length),j=0;j=0?p.get(q):0}}for(var r=0,m=0;mm;m++)for(var j=0;jm;m++)for(var j=0;j=0;)b^=f.G15<=0;)b^=f.G18<>>=1;return b},getPatternPosition:function(a){return f.PATTERN_POSITION_TABLE[a-1]},getMask:function(a,b,c){switch(a){case e.PATTERN000:return 0==(b+c)%2;case e.PATTERN001:return 0==b%2;case e.PATTERN010:return 0==c%3;case e.PATTERN011:return 0==(b+c)%3;case e.PATTERN100:return 0==(Math.floor(b/2)+Math.floor(c/3))%2;case e.PATTERN101:return 0==b*c%2+b*c%3;case e.PATTERN110:return 0==(b*c%2+b*c%3)%2;case e.PATTERN111:return 0==(b*c%3+(b+c)%2)%2;default:throw new Error("bad maskPattern:"+a)}},getErrorCorrectPolynomial:function(a){for(var b=new i([1],0),c=0;a>c;c++)b=b.multiply(new i([1,g.gexp(c)],0));return b},getLengthInBits:function(a,b){if(b>=1&&10>b)switch(a){case c.MODE_NUMBER:return 10;case c.MODE_ALPHA_NUM:return 9;case c.MODE_8BIT_BYTE:return 8;case c.MODE_KANJI:return 8;default:throw new Error("mode:"+a)}else if(27>b)switch(a){case c.MODE_NUMBER:return 12;case c.MODE_ALPHA_NUM:return 11;case c.MODE_8BIT_BYTE:return 16;case c.MODE_KANJI:return 10;default:throw new Error("mode:"+a)}else{if(!(41>b))throw new Error("type:"+b);switch(a){case c.MODE_NUMBER:return 14;case c.MODE_ALPHA_NUM:return 13;case c.MODE_8BIT_BYTE:return 16;case c.MODE_KANJI:return 12;default:throw new Error("mode:"+a)}}},getLostPoint:function(a){for(var b=a.getModuleCount(),c=0,d=0;b>d;d++)for(var e=0;b>e;e++){for(var f=0,g=a.isDark(d,e),h=-1;1>=h;h++)if(!(0>d+h||d+h>=b))for(var i=-1;1>=i;i++)0>e+i||e+i>=b||(0!=h||0!=i)&&g==a.isDark(d+h,e+i)&&f++;f>5&&(c+=3+f-5)}for(var d=0;b-1>d;d++)for(var e=0;b-1>e;e++){var j=0;a.isDark(d,e)&&j++,a.isDark(d+1,e)&&j++,a.isDark(d,e+1)&&j++,a.isDark(d+1,e+1)&&j++,(0==j||4==j)&&(c+=3)}for(var d=0;b>d;d++)for(var e=0;b-6>e;e++)a.isDark(d,e)&&!a.isDark(d,e+1)&&a.isDark(d,e+2)&&a.isDark(d,e+3)&&a.isDark(d,e+4)&&!a.isDark(d,e+5)&&a.isDark(d,e+6)&&(c+=40);for(var e=0;b>e;e++)for(var d=0;b-6>d;d++)a.isDark(d,e)&&!a.isDark(d+1,e)&&a.isDark(d+2,e)&&a.isDark(d+3,e)&&a.isDark(d+4,e)&&!a.isDark(d+5,e)&&a.isDark(d+6,e)&&(c+=40);for(var k=0,e=0;b>e;e++)for(var d=0;b>d;d++)a.isDark(d,e)&&k++;var l=Math.abs(100*k/b/b-50)/5;return c+=10*l}},g={glog:function(a){if(1>a)throw new Error("glog("+a+")");return g.LOG_TABLE[a]},gexp:function(a){for(;0>a;)a+=255;for(;a>=256;)a-=255;return g.EXP_TABLE[a]},EXP_TABLE:new Array(256),LOG_TABLE:new Array(256)},h=0;8>h;h++)g.EXP_TABLE[h]=1<h;h++)g.EXP_TABLE[h]=g.EXP_TABLE[h-4]^g.EXP_TABLE[h-5]^g.EXP_TABLE[h-6]^g.EXP_TABLE[h-8];for(var h=0;255>h;h++)g.LOG_TABLE[g.EXP_TABLE[h]]=h;i.prototype={get:function(a){return this.num[a]},getLength:function(){return this.num.length},multiply:function(a){for(var b=new Array(this.getLength()+a.getLength()-1),c=0;cf;f++)for(var g=c[3*f+0],h=c[3*f+1],i=c[3*f+2],k=0;g>k;k++)e.push(new j(h,i));return e},j.getRsBlockTable=function(a,b){switch(b){case d.L:return j.RS_BLOCK_TABLE[4*(a-1)+0];case d.M:return j.RS_BLOCK_TABLE[4*(a-1)+1];case d.Q:return j.RS_BLOCK_TABLE[4*(a-1)+2];case d.H:return j.RS_BLOCK_TABLE[4*(a-1)+3];default:return void 0}},k.prototype={get:function(a){var b=Math.floor(a/8);return 1==(1&this.buffer[b]>>>7-a%8)},put:function(a,b){for(var c=0;b>c;c++)this.putBit(1==(1&a>>>b-c-1))},getLengthInBits:function(){return this.length},putBit:function(a){var b=Math.floor(this.length/8);this.buffer.length<=b&&this.buffer.push(0),a&&(this.buffer[b]|=128>>>this.length%8),this.length++}};var l=[[17,14,11,7],[32,26,20,14],[53,42,32,24],[78,62,46,34],[106,84,60,44],[134,106,74,58],[154,122,86,64],[192,152,108,84],[230,180,130,98],[271,213,151,119],[321,251,177,137],[367,287,203,155],[425,331,241,177],[458,362,258,194],[520,412,292,220],[586,450,322,250],[644,504,364,280],[718,560,394,310],[792,624,442,338],[858,666,482,382],[929,711,509,403],[1003,779,565,439],[1091,857,611,461],[1171,911,661,511],[1273,997,715,535],[1367,1059,751,593],[1465,1125,805,625],[1528,1190,868,658],[1628,1264,908,698],[1732,1370,982,742],[1840,1452,1030,790],[1952,1538,1112,842],[2068,1628,1168,898],[2188,1722,1228,958],[2303,1809,1283,983],[2431,1911,1351,1051],[2563,1989,1423,1093],[2699,2099,1499,1139],[2809,2213,1579,1219],[2953,2331,1663,1273]],o=function(){var a=function(a,b){this._el=a,this._htOption=b};return a.prototype.draw=function(a){function g(a,b){var c=document.createElementNS("http://www.w3.org/2000/svg",a);for(var d in b)b.hasOwnProperty(d)&&c.setAttribute(d,b[d]);return c}var b=this._htOption,c=this._el,d=a.getModuleCount();Math.floor(b.width/d),Math.floor(b.height/d),this.clear();var h=g("svg",{viewBox:"0 0 "+String(d)+" "+String(d),width:"100%",height:"100%",fill:b.colorLight});h.setAttributeNS("http://www.w3.org/2000/xmlns/","xmlns:xlink","http://www.w3.org/1999/xlink"),c.appendChild(h),h.appendChild(g("rect",{fill:b.colorDark,width:"1",height:"1",id:"template"}));for(var i=0;d>i;i++)for(var j=0;d>j;j++)if(a.isDark(i,j)){var k=g("use",{x:String(i),y:String(j)});k.setAttributeNS("http://www.w3.org/1999/xlink","href","#template"),h.appendChild(k)}},a.prototype.clear=function(){for(;this._el.hasChildNodes();)this._el.removeChild(this._el.lastChild)},a}(),p="svg"===document.documentElement.tagName.toLowerCase(),q=p?o:m()?function(){function a(){this._elImage.src=this._elCanvas.toDataURL("image/png"),this._elImage.style.display="block",this._elCanvas.style.display="none"}function d(a,b){var c=this;if(c._fFail=b,c._fSuccess=a,null===c._bSupportDataURI){var d=document.createElement("img"),e=function(){c._bSupportDataURI=!1,c._fFail&&_fFail.call(c)},f=function(){c._bSupportDataURI=!0,c._fSuccess&&c._fSuccess.call(c)};return d.onabort=e,d.onerror=e,d.onload=f,d.src="data:image/gif;base64,iVBORw0KGgoAAAANSUhEUgAAAAUAAAAFCAYAAACNbyblAAAAHElEQVQI12P4//8/w38GIAXDIBKE0DHxgljNBAAO9TXL0Y4OHwAAAABJRU5ErkJggg==",void 0}c._bSupportDataURI===!0&&c._fSuccess?c._fSuccess.call(c):c._bSupportDataURI===!1&&c._fFail&&c._fFail.call(c)}if(this._android&&this._android<=2.1){var b=1/window.devicePixelRatio,c=CanvasRenderingContext2D.prototype.drawImage;CanvasRenderingContext2D.prototype.drawImage=function(a,d,e,f,g,h,i,j){if("nodeName"in a&&/img/i.test(a.nodeName))for(var l=arguments.length-1;l>=1;l--)arguments[l]=arguments[l]*b;else"undefined"==typeof j&&(arguments[1]*=b,arguments[2]*=b,arguments[3]*=b,arguments[4]*=b);c.apply(this,arguments)}}var e=function(a,b){this._bIsPainted=!1,this._android=n(),this._htOption=b,this._elCanvas=document.createElement("canvas"),this._elCanvas.width=b.width,this._elCanvas.height=b.height,a.appendChild(this._elCanvas),this._el=a,this._oContext=this._elCanvas.getContext("2d"),this._bIsPainted=!1,this._elImage=document.createElement("img"),this._elImage.style.display="none",this._el.appendChild(this._elImage),this._bSupportDataURI=null};return e.prototype.draw=function(a){var b=this._elImage,c=this._oContext,d=this._htOption,e=a.getModuleCount(),f=d.width/e,g=d.height/e,h=Math.round(f),i=Math.round(g);b.style.display="none",this.clear();for(var j=0;e>j;j++)for(var k=0;e>k;k++){var l=a.isDark(j,k),m=k*f,n=j*g;c.strokeStyle=l?d.colorDark:d.colorLight,c.lineWidth=1,c.fillStyle=l?d.colorDark:d.colorLight,c.fillRect(m,n,f,g),c.strokeRect(Math.floor(m)+.5,Math.floor(n)+.5,h,i),c.strokeRect(Math.ceil(m)-.5,Math.ceil(n)-.5,h,i)}this._bIsPainted=!0},e.prototype.makeImage=function(){this._bIsPainted&&d.call(this,a)},e.prototype.isPainted=function(){return this._bIsPainted},e.prototype.clear=function(){this._oContext.clearRect(0,0,this._elCanvas.width,this._elCanvas.height),this._bIsPainted=!1},e.prototype.round=function(a){return a?Math.floor(1e3*a)/1e3:a},e}():function(){var a=function(a,b){this._el=a,this._htOption=b};return a.prototype.draw=function(a){for(var b=this._htOption,c=this._el,d=a.getModuleCount(),e=Math.floor(b.width/d),f=Math.floor(b.height/d),g=[''],h=0;d>h;h++){g.push("");for(var i=0;d>i;i++)g.push('');g.push("")}g.push("
"),c.innerHTML=g.join("");var j=c.childNodes[0],k=(b.width-j.offsetWidth)/2,l=(b.height-j.offsetHeight)/2;k>0&&l>0&&(j.style.margin=l+"px "+k+"px")},a.prototype.clear=function(){this._el.innerHTML=""},a}();QRCode=function(a,b){if(this._htOption={width:256,height:256,typeNumber:4,colorDark:"#000000",colorLight:"#ffffff",correctLevel:d.H},"string"==typeof b&&(b={text:b}),b)for(var c in b)this._htOption[c]=b[c];"string"==typeof a&&(a=document.getElementById(a)),this._android=n(),this._el=a,this._oQRCode=null,this._oDrawing=new q(this._el,this._htOption),this._htOption.text&&this.makeCode(this._htOption.text)},QRCode.prototype.makeCode=function(a){this._oQRCode=new b(r(a,this._htOption.correctLevel),this._htOption.correctLevel),this._oQRCode.addData(a),this._oQRCode.make(),this._el.title=a,this._oDrawing.draw(this._oQRCode),this.makeImage()},QRCode.prototype.makeImage=function(){"function"==typeof this._oDrawing.makeImage&&(!this._android||this._android>=3)&&this._oDrawing.makeImage()},QRCode.prototype.clear=function(){this._oDrawing.clear()},QRCode.CorrectLevel=d}(); \ No newline at end of file diff --git a/templates/admin/init.php b/templates/admin/init.php index 7db4e26..753aaa0 100755 --- a/templates/admin/init.php +++ b/templates/admin/init.php @@ -60,6 +60,6 @@ - + \ No newline at end of file diff --git a/templates/admin/login.php b/templates/admin/login.php index 626d3a7..b44c31f 100644 --- a/templates/admin/login.php +++ b/templates/admin/login.php @@ -1,5 +1,5 @@ - + diff --git a/templates/admin/setting/backup.php b/templates/admin/setting/backup.php index c894216..4ee9839 100644 --- a/templates/admin/setting/backup.php +++ b/templates/admin/setting/backup.php @@ -23,6 +23,7 @@ @@ -109,7 +110,12 @@ }); }); - } else if(layEvent === 'del'){ //删除 + } + else if( layEvent === 'download' ) { + var data = obj.data; //获得当前行数据 + window.location.href = "?c=api&method=down_db&name=" + data.name; + } + else if(layEvent === 'del'){ //删除 layer.confirm('确定删除吗?', {icon:3,title:'提示'},function(index){ $.get("/index.php?c=api&method=del_backup_db",{name:data.name},function(data,status){ diff --git a/templates/admin/setting/subscribe.php b/templates/admin/setting/subscribe.php index 08875dd..7bfb291 100644 --- a/templates/admin/setting/subscribe.php +++ b/templates/admin/setting/subscribe.php @@ -18,6 +18,10 @@
  • 6. 数据库备份
  • +
    +

    1. 系统检测到您的域名为,购买订阅时请填写此域名!

    +

    2. 若域名填写错误或更换域名,请前往https://www.onenav.top/msub.html修改订阅!

    +
    diff --git a/templates/admin/static/embed.js b/templates/admin/static/embed.js index abcb4e5..7c3ff74 100755 --- a/templates/admin/static/embed.js +++ b/templates/admin/static/embed.js @@ -306,7 +306,7 @@ layui.use(['element','table','layer','form','upload','iconHhysFa'], function(){ return false; } //正则验证密码 - let p_patt = /^[0-9a-zA-Z!@#$%^&*.()]{6,16}$/; + let p_patt = /^[0-9a-zA-Z!@#%^*.()]{6,16}$/; if ( !p_patt.test(password) ) { layer.msg("密码需要6-16字母、数字或特殊字符!", {icon: 5}); return false; @@ -359,7 +359,7 @@ layui.use(['element','table','layer','form','upload','iconHhysFa'], function(){ $.post('/index.php?c=login&check=login',{user:user,password:password},function(data,status){ //如果登录成功 if(data.code == 0) { - window.location.href = '/'; + window.location.href = '/index.php?c=mobile'; } else{ layer.msg(data.err_msg, {icon: 5}); diff --git a/templates/default/index.php b/templates/default/index.php index c7bd228..d6ff801 100755 --- a/templates/default/index.php +++ b/templates/default/index.php @@ -248,7 +248,7 @@ -
    +
    @@ -260,11 +260,13 @@ } ?> + + + + + +
    + + + diff --git a/version.txt b/version.txt index d90303b..8563377 100755 --- a/version.txt +++ b/version.txt @@ -1 +1 @@ -v0.9.24-20220801 \ No newline at end of file +v0.9.25-20221107 \ No newline at end of file