2 years ago · 3569c52920
--- a/src/static/web/css/style.css
+++ b/src/static/web/css/style.css
@@ -387,11 +387,7 @@ input[type=file] {
 	position:relative
 }
 .file-absolute {
 	position:absolute;
 	top:0;
 	right:0;
 	opacity:0;
 	cursor:pointer
 	display: none;
 }
 #btnScrollTop {
 	display:none;
--- a/src/user/api.php
+++ b/src/user/api.php
@@ -58,7 +58,66 @@ if ($action === 'is_need_check_code') {
            "email" => $row['email'],
        ),
    ));
 }  else {
 } else if($action === 'upload_face'){
    if (!$cfg_ml->IsLogin()) {
        if ($format === 'json') {
            echo json_encode(array(
                "code" => -1,
                "msg" => "未登录",
                "data" => null,
            ));
        } else {
            echo "";
        }
        exit;
    }
    $target_dir = "uploads/"; //上传目录

    $allowedTypes = array('image/png', 'image/jpg', 'image/jpeg');
    $uploadedFile = $_FILES['file']['tmp_name'];
    $fileType = mime_content_type($uploadedFile);
    $imgSize = getimagesize($uploadedFile);
    if (!in_array($fileType, $allowedTypes) || !$imgSize) {
        echo json_encode(array(
            "code" => -1,
            "msg" => "仅支持图片格式文件",
            "data" => null,
        ));
        exit;
    }
    
    if (!is_dir($cfg_basedir.$cfg_user_dir."/{$cfg_ml->M_ID}")) {
        MkdirAll($cfg_basedir.$cfg_user_dir."/{$cfg_ml->M_ID}", $cfg_dir_purview);
        CloseFtp();
    }
    $target_file = $cfg_basedir.$cfg_user_dir."/{$cfg_ml->M_ID}/newface.png"; //上传文件名
    $target_url = $cfg_mediasurl.'/userup'."/{$cfg_ml->M_ID}/newface.png";
    if (move_uploaded_file($_FILES["file"]["tmp_name"], $target_file)) {
        require_once DEDEINC."/libraries/imageresize.class.php";
        try{
            $image = new ImageResize($target_file);
            $image->crop(150, 150);
            $image->save($target_file);
            echo json_encode(array(
                "code" => 0,
                "msg" => "上传成功",
                "data" => $target_url,
            ));
        } catch (ImageResizeException $e) {
            echo json_encode(array(
                "code" => -1,
                "msg" => "图片自动裁剪失败",
                "data" => null,
            ));
        }
    } else {
        echo json_encode(array(
            "code" => -1,
            "msg" => "上传失败",
            "data" => null,
        ));
    }
 } else {
    $format = isset($format) ? "json" : "";
    if (!$cfg_ml->IsLogin()) {
        if ($format === 'json') {
--- a/src/user/edit_baseinfo.php
+++ b/src/user/edit_baseinfo.php
@@ -13,6 +13,7 @@ if (!isset($dopost)) $dopost = '';
 $pwd2 = (empty($pwd2)) ? "" : $pwd2;
 $row = $dsql->GetOne("SELECT * FROM `#@__member` WHERE mid='".$cfg_ml->M_ID."'");
 $face = $row['face'];
 $newface = isset($newface)? $newface : '';
 if ($dopost == 'save') {
    //校验CSRF
    CheckCSRF();
@@ -31,6 +32,7 @@ if ($dopost == 'save') {
        ShowMsg('您两次输入的新密码不一致', '-1');
        exit();
    }

    $addupquery = '';
    $admaddupquery = '';
    $pp = "pwd";
@@ -56,6 +58,14 @@ if ($dopost == 'save') {
            $pwd2 = substr(md5($userpwd), 5, 20);
        }
    }
    //修改头像
    $target_file = $cfg_basedir.$cfg_user_dir."/{$cfg_ml->M_ID}/newface.png";
    if (!empty($newface) && file_exists($target_file)) {
        rename($target_file, $cfg_basedir.$cfg_user_dir."/{$cfg_ml->M_ID}/face.png");
        $target_url = $cfg_mediasurl.'/userup'."/{$cfg_ml->M_ID}/face.png";
        $addupquery = ",face='{$target_url}'";
        @unlink($target_file);
    }
    //修改安全问题或邮箱
    if ($email != $row['email'] || ($newsafequestion != 0 && $newsafeanswer != '')) {
        if ($row['safequestion'] != 0 && ($row['safequestion'] != $safequestion || $row['safeanswer'] != $safeanswer)) {
--- a/src/user/edit_email.php
+++ b/src/user/edit_email.php
@@ -1,37 +0,0 @@
 <?php
 /**
 * @version        $id:edit_email.php 2020/12/18 tianya $
 * @package        DedeBIZ.User
 * @copyright      Copyright (c) 2022 DedeBIZ.COM
 * @license        https://www.dedebiz.com/license
 * @link           https://www.dedebiz.com
 */
 require_once(dirname(__FILE__)."/config.php");
 $dopost = isset($dopost) ? $dopost : "";
 if (!isset($backurl)) {
    $backurl = 'edit_email.php';
 }
 if ($dopost == 'save') {
    if (!empty($cfg_ml->fields['email']) || $cfg_ml->fields['checkmail'] != -1) {
        ShowMsg('邮箱已经设置，无需重复提交', '-1');
        exit();
    }
    //校验CSRF
    CheckCSRF();
    if (!CheckEmail($email)) {
        ShowMsg('邮箱格式不正确', '-1');
        exit();
    }
    $email = HtmlReplace($email, -1);

    $query = "UPDATE `#@__member` SET `email` = '$email' WHERE mid='{$cfg_ml->M_ID}' ";
    $dsql->ExecuteNoneQuery($query);
    //清除缓存
    $cfg_ml->DelCache($cfg_ml->M_ID);
    ShowMsg('成功更新邮箱信息', $backurl);
    exit();
 }
 $email = $cfg_ml->fields['email'];
 include(DEDEMEMBER."/templets/edit_email.htm");
 exit();
 ?>
--- a/src/user/edit_face.php
+++ b/src/user/edit_face.php
@@ -1,33 +0,0 @@
 <?php
 /**
 * @version        $id:edit_face.php 8:38 2010年7月9日 tianya $
 * @package        DedeBIZ.User
 * @copyright      Copyright (c) 2022 DedeBIZ.COM
 * @license        https://www.dedebiz.com/license
 * @link           https://www.dedebiz.com
 */
 require_once(dirname(__FILE__)."/config.php");
 CheckRank(0, 0);
 $menutype = 'config';
 if (!isset($dopost)) {
    $dopost = '';
 }
 if (!isset($backurl)) {
    $backurl = 'edit_face.php';
 }
 if ($dopost == 'save') {
    //校验CSRF
    CheckCSRF();
    $face = HtmlReplace($faceurl, -1);

    $query = "UPDATE `#@__member` SET `face` = '$face' WHERE mid='{$cfg_ml->M_ID}' ";
    $dsql->ExecuteNoneQuery($query);
    //清除缓存
    $cfg_ml->DelCache($cfg_ml->M_ID);
    ShowMsg('成功更新头像信息', $backurl);
    exit();
 }
 $face = $cfg_ml->fields['face'];
 include(DEDEMEMBER."/templets/edit_face.htm");
 exit();
 ?>
--- a/src/user/templets/edit_baseinfo.htm
+++ b/src/user/templets/edit_baseinfo.htm
@@ -1,140 +1,195 @@
 <!DOCTYPE html>
 <html>
 	<head>
 		<meta charset="utf-8">
 		<meta name="viewport" content="width=device-width,initial-scale=1,shrink-to-fit=no">
 		<title>资料修改-会员中心-<?php echo $cfg_webname;?></title>
 		<script src="<?php echo $cfg_cmsurl;?>/static/web/js/jquery.min.js"></script>
 		<link rel="stylesheet" href="<?php echo $cfg_cmsurl;?>/static/web/css/bootstrap.min.css">
 		<link rel="stylesheet" href="<?php echo $cfg_cmsurl;?>/static/web/font/css/font-awesome.min.css">
 		<link rel="stylesheet" href="<?php echo $cfg_cmsurl;?>/static/web/css/style.css">
 		<script>
 			function checkSubmit() {
 				if (document.form2.oldpwd.value == '') {
 					document.form2.oldpwd.focus();
 					ShowMsg("请您填写旧密码");
 					return false;
 				}
 				if (document.form2.userpwdok.value != document.form2.userpwd.value) {
 					document.form2.userpwdok.focus();
 					ShowMsg("两次密码不一致");
 					return false;
 				}
 				if (document.form2.email.value == "") {
 					document.form2.email.focus();
 					ShowMsg("请您填写邮箱");
 					return false;
 				}
 				if (document.form2.uname.value == "") {
 					document.form2.uname.focus();
 					ShowMsg("请您填写昵称");
 					return false;
 				}

 <head>
 	<meta charset="utf-8">
 	<meta name="viewport" content="width=device-width,initial-scale=1,shrink-to-fit=no">
 	<title>资料修改-会员中心-
 		<?php echo $cfg_webname;?>
 	</title>
 	<script src="<?php echo $cfg_cmsurl;?>/static/web/js/jquery.min.js"></script>
 	<link rel="stylesheet" href="<?php echo $cfg_cmsurl;?>/static/web/css/bootstrap.min.css">
 	<link rel="stylesheet" href="<?php echo $cfg_cmsurl;?>/static/web/font/css/font-awesome.min.css">
 	<link rel="stylesheet" href="<?php echo $cfg_cmsurl;?>/static/web/css/style.css">
 	<script>
 		function checkSubmit() {
 			if (document.form2.oldpwd.value == '') {
 				document.form2.oldpwd.focus();
 				ShowMsg("请您填写旧密码");
 				return false;
 			}
 			if (document.form2.userpwdok.value != document.form2.userpwd.value) {
 				document.form2.userpwdok.focus();
 				ShowMsg("两次密码不一致");
 				return false;
 			}
 			if (document.form2.email.value == "") {
 				document.form2.email.focus();
 				ShowMsg("请您填写邮箱");
 				return false;
 			}
 		</script>
 	</head>
 	<body class="body-bg">
 		<?php pasterTempletDiy('top.htm');?>
 		<div class="container py-3">
 			<div class="row">
 				<?php
 			if (document.form2.uname.value == "") {
 				document.form2.uname.focus();
 				ShowMsg("请您填写昵称");
 				return false;
 			}
 		}
 	</script>
 </head>

 <body class="body-bg">
 	<?php pasterTempletDiy('top.htm');?>
 	<div class="container py-3">
 		<div class="row">
 			<?php
 				$_menu_edtex = true;
 				$_menu_edtitem = 'base';
 				?>
 				<?php include(DEDEMEMBER."/templets/menu.htm");?>
 				<div class="col-md-9">
 					<div class="pannel-main-container shadow-sm rounded">
 						<form action="edit_baseinfo.php" method="post" enctype="multipart/form-data" name="form2" onsubmit="return checkSubmit();">
 							<input type="hidden" name="_csrf_token" value="<?php echo $GLOBALS['csrf_token'];?>">
 							<input type="hidden" name="dopost" value="save">
 							<div class="form-group row">
 								<label class="col-sm-3 col-form-label">头像/用户名/类型</label>
 								<div class="col-sm-9">
 									<img src="/static/web/img/admin.png" class="user-img mr-1">
 									<span class="mr-1"><?php echo $cfg_ml->M_LoginID;?></span>
 									<span class="btn btn-outline-success btn-sm"><?php echo $row['mtype'];?></span>
 								</div>
 							</div>
 							<div class="form-group row">
 								<label for="iptUname" class="col-sm-3 col-form-label">公司名/昵称</label>
 								<div class="col-sm-9"><input type="text" name="uname" class="form-control d-inline-block w-75" id="iptUname" value="<?php echo $row['uname'];?>" placeholder="企业会员为公司名，个人会员为昵称"></div>
 							</div>
 							<div class="form-group row">
 								<label class="col-sm-3 col-form-label">修改头像</label>
 								<div class="col-sm-9">
 									<input type="text" name="faceurl" id="faceurl" class="form-control d-inline-block w-75" value="/static/web/img/admin.png">
 									<span class="btn btn-success btn-sm">修改头像<input type="file" name="" class="file-absolute"></span>
 								</div>
 							</div>
 							<div class="form-group row">
 								<label for="iptOldpwd" class="col-sm-3 col-form-label">原登录密码</label>
 								<div class="col-sm-9"><input type="password" name="oldpwd" id="iptOldpwd" class="form-control w-75"></div>
 							</div>
 							<div class="form-group row">
 								<label for="iptUserpwd" class="col-sm-3 col-form-label">新密码</label>
 								<div class="col-sm-9"><input type="password" name="userpwd" id="iptUserpwd" class="form-control w-75" placeholder="不修改密码请保留此项为空"></div>
 							</div>
 							<div class="form-group row">
 								<label for="iptUserpwdok" class="col-sm-3 col-form-label">确认新密码</label>
 								<div class="col-sm-9"><input type="password" name="userpwdok" id="iptUserpwdok" class="form-control w-75" placeholder="不修改密码请保留此项为空"></div>
 			<?php include(DEDEMEMBER."/templets/menu.htm");?>
 			<div class="col-md-9">
 				<div class="pannel-main-container shadow-sm rounded">
 					<input id="iptNewface" type="file" name="iptNewface" class="file-absolute">
 					<form action="edit_baseinfo.php" method="post" enctype="multipart/form-data" name="form2"
 						onsubmit="return checkSubmit();">
 						<input type="hidden" name="_csrf_token" value="<?php echo $GLOBALS['csrf_token'];?>">
 						<input type="hidden" name="dopost" value="save">
 						<input type="hidden" id="newface" name="newface" value="">
 						<div class="form-group row">
 							<label class="col-sm-3 col-form-label">修改头像</label>
 							<div class="col-sm-9">
 								<img id="face" src="<?php echo empty($row['face'])? $cfg_staticurl.'/web/img/admin.png' : $row['face'];?>" class="user-img mr-1">
 								<span class="btn btn-success btn-sm" id="btnChangeFace">修改头像</span>
 							</div>
 							<div class="form-group row">
 								<label class="col-sm-3 col-form-label">原安全问题</label>
 								<div class="col-sm-9"><?php echo GetSafequestion($row['safequestion'],'safequestion');?></div>
 						</div>
 						<div class="form-group row">
 							<label class="col-sm-3 col-form-label">用户名/类型</label>
 							<div class="col-sm-9">
 								<span class="mr-1">
 									<?php echo $cfg_ml->M_LoginID;?>
 								</span>
 								<span class="btn btn-outline-success btn-sm">
 									<?php echo $row['mtype'];?>
 								</span>
 							</div>
 							<div class="form-group row">
 								<label for="iptSafeanswer" class="col-sm-3 col-form-label">原问题答案</label>
 								<div class="col-sm-9"><input type="text" name="safeanswer" id="iptSafeanswer" class="form-control"></div>
 						</div>
 						<div class="form-group row">
 							<label for="iptUname" class="col-sm-3 col-form-label">公司名/昵称</label>
 							<div class="col-sm-9"><input type="text" name="uname"
 									class="form-control d-inline-block w-75" id="iptUname"
 									value="<?php echo $row['uname'];?>" placeholder="企业会员为公司名，个人会员为昵称"></div>
 						</div>
 						<div class="form-group row">
 							<label for="iptOldpwd" class="col-sm-3 col-form-label">原登录密码</label>
 							<div class="col-sm-9"><input type="password" name="oldpwd" id="iptOldpwd"
 									class="form-control w-75"></div>
 						</div>
 						<div class="form-group row">
 							<label for="iptUserpwd" class="col-sm-3 col-form-label">新密码</label>
 							<div class="col-sm-9"><input type="password" name="userpwd" id="iptUserpwd"
 									class="form-control w-75" placeholder="不修改密码请保留此项为空"></div>
 						</div>
 						<div class="form-group row">
 							<label for="iptUserpwdok" class="col-sm-3 col-form-label">确认新密码</label>
 							<div class="col-sm-9"><input type="password" name="userpwdok" id="iptUserpwdok"
 									class="form-control w-75" placeholder="不修改密码请保留此项为空"></div>
 						</div>
 						<div class="form-group row">
 							<label class="col-sm-3 col-form-label">原安全问题</label>
 							<div class="col-sm-9">
 								<?php echo GetSafequestion($row['safequestion'],'safequestion');?>
 							</div>
 							<div class="form-group row">
 								<label class="col-sm-3 col-form-label">新安全问题</label>
 								<div class="col-sm-9"><?php echo GetSafequestion(0,'newsafequestion');?></div>
 						</div>
 						<div class="form-group row">
 							<label for="iptSafeanswer" class="col-sm-3 col-form-label">原问题答案</label>
 							<div class="col-sm-9"><input type="text" name="safeanswer" id="iptSafeanswer"
 									class="form-control"></div>
 						</div>
 						<div class="form-group row">
 							<label class="col-sm-3 col-form-label">新安全问题</label>
 							<div class="col-sm-9">
 								<?php echo GetSafequestion(0,'newsafequestion');?>
 							</div>
 							<div class="form-group row">
 								<label for="iptNewsafeanswer" class="col-sm-3 col-form-label">新问题答案</label>
 								<div class="col-sm-9"><input type="text" name="newsafeanswer" id="iptNewsafeanswer" class="form-control"></div>
 						</div>
 						<div class="form-group row">
 							<label for="iptNewsafeanswer" class="col-sm-3 col-form-label">新问题答案</label>
 							<div class="col-sm-9"><input type="text" name="newsafeanswer" id="iptNewsafeanswer"
 									class="form-control"></div>
 						</div>
 						<div class="form-group row">
 							<label for="iptEmail" class="col-sm-3 col-form-label">邮箱</label>
 							<div class="col-sm-9">
 								<span id="spEmail">
 									<?php echo HideEmail($row['email']);?> <span class="btn btn-success btn-sm"
 										id="btnChangeEmail">修改邮箱</span>
 								</span>
 								<span id="iptEmail"></span>
 							</div>
 							<div class="form-group row">
 								<label for="iptEmail" class="col-sm-3 col-form-label">邮箱</label>
 								<div class="col-sm-9">
 									<span id="spEmail"><?php echo HideEmail($row['email']);?> <span class="btn btn-success btn-sm" id="btnChangeEmail">修改邮箱</span></span>
 									<span id="iptEmail"></span>
 								</div>
 						</div>
 						<div class="form-group row">
 							<label for="iptEmail" class="col-sm-3 col-form-label">性别</label>
 							<div class="col-sm-9">
 								<label><input type="radio" name="sex" value="男" <?php if ($row['sex']=='男' )
 										echo " checked='checked' " ;?>> 男</label>
 								<label><input type="radio" name="sex" value="女" <?php if ($row['sex']=='女' )
 										echo " checked='checked' " ;?>> 女</label>
 								<label><input type="radio" name="sex" value="保密" <?php if ($row['sex']=='保密' )
 										echo " checked='checked' " ;?>> 保密</label>
 							</div>
 							<div class="form-group row">
 								<label for="iptEmail" class="col-sm-3 col-form-label">性别</label>
 								<div class="col-sm-9">
 									<label><input type="radio" name="sex" value="男" <?php if ($row['sex']=='男') echo " checked='checked' ";?>> 男</label>
 									<label><input type="radio" name="sex" value="女" <?php if ($row['sex']=='女') echo " checked='checked' ";?>> 女</label>
 									<label><input type="radio" name="sex" value="保密" <?php if ($row['sex']=='保密') echo " checked='checked' ";?>> 保密</label>
 								</div>
 							</div>
 							<div class="text-center"><button type="submit" class="btn btn-success btn-sm">保存</button></div>
 						</form>
 					</div>
 						</div>
 						<div class="text-center"><button type="submit" class="btn btn-success btn-sm">保存</button></div>
 					</form>
 				</div>
 			</div>
 		</div>
 		<?php pasterTempletDiy('foot.htm');?>
 		<script>
 			$(document).ready(function () {
 				$("#btnChangeEmail").click(function(){
 					if ($("#iptOldpwd").val() === "") {
 						ShowMsg("请您填写旧密码");
 						return false;
 	</div>
 	<?php pasterTempletDiy('foot.htm');?>
 	<script>
 		$(document).ready(function () {
 			$("#btnChangeEmail").click(function () {
 				if ($("#iptOldpwd").val() === "") {
 					ShowMsg("请您填写旧密码");
 					return false;
 				}
 				$.post("<?php echo $cfg_cmsurl;?>/user/api.php?action=get_old_email", { oldpwd: $("#iptOldpwd").val() }, function (result) {
 					if (result.code === 0) {
 						console.log(result);
 						$("#spEmail").hide();
 						$("#iptEmail").html(`<input value="${result.data.email}" type="email" name="email" id="iptEmail" class="form-control">`);
 						$("#iptEmail").show();
 					} else {
 						ShowMsg(result.msg);
 					}
 					$.post("<?php echo $cfg_cmsurl;?>/user/api.php?action=get_old_email",{oldpwd:$("#iptOldpwd").val()},function(result) {
 				});
 			})

 			$("#btnChangeFace").click(function(){
 				$("#iptNewface").click();
 			})

 			$("#iptNewface").change(function (val) {
 				var formData = new FormData();
 				var fileData = $('#iptNewface')[0].files[0];
 				formData.append('file', fileData);
 				$.ajax({
 					url: '<?php echo $cfg_cmsurl;?>/user/api.php?action=upload_face',
 					type: 'POST',
 					data: formData,
 					processData: false,
 					contentType: false,
 					success: function (result) {
 						if (result.code === 0) {
 							console.log(result);
 							$("#spEmail").hide();
 							$("#iptEmail").html(`<input value="${result.data.email}" type="email" name="email" id="iptEmail" class="form-control">`);
 							$("#iptEmail").show();
 						} else {
 							ShowMsg(result.msg);
 							$("#face").attr('src', result.data);
 							$("#newface").val(result.data);
 						}
 					});
 				})
 					},
 					error: function (xhr, status, error) {
 						alert(error); //处理上传失败后的回调
 					}
 				});
 			});
 		</script>
 	</body>
 		});

 	</script>
 </body>

 </html>
--- a/src/user/templets/edit_email.htm
+++ b/src/user/templets/edit_email.htm
@@ -1,43 +0,0 @@
 <!DOCTYPE html>
 <html>
 	<head>
 		<meta charset="utf-8">
 		<meta name="viewport" content="width=device-width,initial-scale=1,shrink-to-fit=no">
 		<title>验证邮箱-会员中心-<?php echo $cfg_webname;?></title>
 		<script src="<?php echo $cfg_cmsurl;?>/static/web/js/jquery.min.js"></script>
 		<link rel="stylesheet" href="<?php echo $cfg_cmsurl;?>/static/web/css/bootstrap.min.css">
 		<link rel="stylesheet" href="<?php echo $cfg_cmsurl;?>/static/web/font/css/font-awesome.min.css">
 		<link rel="stylesheet" href="<?php echo $cfg_cmsurl;?>/static/web/css/style.css">
 	</head>
 	<body class="body-bg">
 		<?php pasterTempletDiy('top.htm');?>
 		<div class="container py-3">
 			<div class="row">
 				<?php
 				$_menu_edtex = true;
 				$_menu_edtitem = 'email';
 				?>
 				<?php include(DEDEMEMBER."/templets/menu.htm");?>
 				<div class="col-md-9">
 					<div class="pannel-main-container shadow-sm rounded">
 						<ul class="nav nav-tabs">
 							<li class="nav-item"><a class="nav-link" href="edit_baseinfo.php">账号安全</a></li>
 							<li class="nav-item"><a class="nav-link" href="edit_face.php">头像设置</a></li>
 							<li class="nav-item"><a class="nav-link active" href="edit_email.php">验证邮箱</a></li>
 						</ul>
 						<form action="edit_email.php" method="post" enctype="multipart/form-data" name="form1">
 							<input type="hidden" name="_csrf_token" value="<?php echo $GLOBALS['csrf_token'];?>">
 							<input type="hidden" name="dopost" value="save">
 							<div class="form-group row">
 								<label for="iptUname" class="col-sm-2 col-form-label">邮箱地址</label>
 								<div class="col-sm-10"><input type="text" name="email" id="email" size="35" class="form-control" value="<?php echo $email;?>"></div>
 							</div>
 							<div class="text-center"><button type="submit" class="btn btn-success btn-sm">保存</button></div>
 						</form>
 					</div>
 				</div>
 			</div>
 		</div>
 		<?php pasterTempletDiy('foot.htm');?>
 	</body>
 </html>
--- a/src/user/templets/edit_face.htm
+++ b/src/user/templets/edit_face.htm
@@ -1,47 +0,0 @@
 <!DOCTYPE html>
 <html>
 	<head>
 		<meta charset="utf-8">
 		<meta name="viewport" content="width=device-width,initial-scale=1,shrink-to-fit=no">
 		<title>头像设置-会员中心-<?php echo $cfg_webname;?></title>
 		<script src="<?php echo $cfg_cmsurl;?>/static/web/js/jquery.min.js"></script>
 		<link rel="stylesheet" href="<?php echo $cfg_cmsurl;?>/static/web/css/bootstrap.min.css">
 		<link rel="stylesheet" href="<?php echo $cfg_cmsurl;?>/static/web/font/css/font-awesome.min.css">
 		<link rel="stylesheet" href="<?php echo $cfg_cmsurl;?>/static/web/css/style.css">
 	</head>
 	<body class="body-bg">
 		<?php pasterTempletDiy('top.htm');?>
 		<div class="container py-3">
 			<div class="row">
 				<?php
 				$_menu_edtex = true;
 				$_menu_edtitem = 'face';
 				?>
 				<?php include(DEDEMEMBER."/templets/menu.htm");?>
 				<div class="col-md-9">
 					<div class="pannel-main-container shadow-sm rounded">
 						<ul class="nav nav-tabs">
 							<li class="nav-item"><a class="nav-link" href="edit_baseinfo.php">账号安全</a></li>
 							<li class="nav-item"><a class="nav-link active" href="edit_face.php">头像设置</a></li>
 							<li class="nav-item"><a class="nav-link" href="edit_email.php">验证邮箱</a></li>
 						</ul>
 						<form action="edit_face.php" method="post" enctype="multipart/form-data" name="form1">
 							<input type="hidden" name="_csrf_token" value="<?php echo $GLOBALS['csrf_token'];?>">
 							<input type="hidden" name="dopost" value="save">
 							<div class="form-group row">
 								<label for="iptValidate" class="col-sm-2 col-form-label">原来头像</label>
 								<div class="col-sm-10"><?php if ($face!='') echo " <img src='$face' class='user-img'>";?></div>
 							</div>
 							<div class="form-group row">
 								<label for="iptUname" class="col-sm-2 col-form-label">手工填写网址</label>
 								<div class="col-sm-10"><input type="text" name="faceurl" id="faceurl" size="35" class="form-control" value="<?php echo $face;?>"></div>
 							</div>
 							<div class="text-center"><button type="submit" class="btn btn-success btn-sm">保存</button></div>
 						</form>
 					</div>
 				</div>
 			</div>
 		</div>
 		<?php pasterTempletDiy('foot.htm');?>
 	</body>
 </html>