getForm(true); include DEDEROOT."/templets/plus/{$diy->postTemplate}"; exit(); } elseif($do == 2) { $dede_fields = empty($dede_fields) ? '' : trim($dede_fields); $dede_fieldshash = empty($dede_fieldshash) ? '' : trim($dede_fieldshash); if(!empty($dede_fields)) { if($dede_fieldshash != md5($dede_fields.$cfg_cookie_encode)) { showMsg('数据校验不对，程序返回', '-1'); exit(); } } $diyform = $dsql->getOne("select * from #@__diyforms where diyid='$diyid' "); if(!is_array($diyform)) { showmsg('自定义表单不存在', '-1'); exit(); } $addvar = $addvalue = ''; if(!empty($dede_fields)) { $fieldarr = explode(';', $dede_fields); if(is_array($fieldarr)) { foreach($fieldarr as $field) { if($field == '') continue; $fieldinfo = explode(',', $field); if($fieldinfo[1] == 'textdata') { ${$fieldinfo[0]} = FilterSearch(stripslashes(${$fieldinfo[0]})); ${$fieldinfo[0]} = addslashes(${$fieldinfo[0]}); } else { ${$fieldinfo[0]} = GetFieldValue(${$fieldinfo[0]}, $fieldinfo[1],0,'add','','diy', $fieldinfo[0]); } $addvar .= ', `'.$fieldinfo[0].'`'; $addvalue .= ", '".${$fieldinfo[0]}."'"; } } } $query = "INSERT INTO `{$diy->table}` (`id`, `ifcheck` $addvar) VALUES (NULL, 0 $addvalue); "; if($dsql->ExecuteNoneQuery($query)) { $id = $dsql->GetLastID(); if($diy->public == 2) { //diy.php?action=view&diyid={$diy->diyid}&id=$id $goto = "diy.php?action=list&diyid={$diy->diyid}"; $bkmsg = '发布成功，现在转向表单列表页...'; } else { $goto = $url; $bkmsg = '提交成功！客服人员稍后会和您确认订单，请保持手机畅通。'; } //发邮件 $to = $cfg_mail.",".$mail2; $Subject = "【预定-".$title."】".$name; $Body = "产品名称：".$title."
姓名：".$name."
手机：".$tel."
E-mail：".$mail."
备注：".$beizhu."
点击查看"; sendmail($name,$to,$Subject,$Body); echo ""; //showmsg($bkmsg, $goto); } } } /*---------------------------- function list(){ } ---------------------------*/ else if($action == 'list') { if(empty($diy->public)) { showMsg('后台关闭前台浏览', 'javascript:;'); exit(); } include_once DEDEINC.'/datalistcp.class.php'; if($diy->public == 2) $query = "SELECT * FROM `{$diy->table}` ORDER BY id DESC"; else $query = "SELECT * FROM `{$diy->table}` WHERE ifcheck=1 ORDER BY id DESC"; $datalist = new DataListCP(); $datalist->pageSize = 10; $datalist->SetParameter('action', 'list'); $datalist->SetParameter('diyid', $diyid); $datalist->SetTemplate(DEDEINC."/../templets/plus/{$diy->listTemplate}"); $datalist->SetSource($query); $fieldlist = $diy->getFieldList(); $datalist->Display(); } else if($action == 'view') { if(empty($diy->public)) { showMsg('后台关闭前台浏览' , 'javascript:;'); exit(); } if(empty($id)) { showMsg('非法操作！未指定id', 'javascript:;'); exit(); } if($diy->public == 2) { $query = "SELECT * FROM {$diy->table} WHERE id='$id' "; } else { $query = "SELECT * FROM {$diy->table} WHERE id='$id' AND ifcheck=1"; } $row = $dsql->GetOne($query); if(!is_array($row)) { showmsg('你访问的记录不存在或未经审核', '-1'); exit(); } $fieldlist = $diy->getFieldList(); include DEDEROOT."/templets/plus/{$diy->viewTemplate}"; }