v2.3

Author: helloxz

application/config/routes.php

@@ -55,4 +55,7 @@
 //API路由
 $route['api/upload'] = 'upload/localhost';
 $route['api/upload/parse'] = 'upload/parse';
-$route['api/upload/(:any)'] = 'upload/localhost/$1';
+$route['api/upload/(:any)'] = 'upload/localhost/$1';
+$route['api/parse'] = '/upload/parse';
+//删除链接
+$route['delete/(:any)'] = '/del/token/$1';

application/controllers/Del.php

@@ -1,5 +1,11 @@
 <?php
-    // 该控制器删除图片
+/**
+ * ImgURL删除图片类
+ *
+ * @package upgrade
+ * @author xiaoz
+ * @link https://imgurl.org/
+ */
     defined('BASEPATH') OR exit('No direct script access allowed');
     class Del extends CI_Controller{
         //构造函数
@@ -8,14 +14,16 @@ public function __construct(){
 
             //加载模型
             $this->load->model('query','',TRUE);
+            //加载数据库模型
+            $this->load->model('delete','',TRUE);
             //加载类
             $this->load->library('basic');
-            //检测是否登录
-            $this->basic->is_login(TRUE);
-            
         }
-        //根据img_images ID删除图片
+        //根据img_images ID删除图片，需要检查用户是否登录
         public function id($id){
+            //检测是否登录
+            $this->basic->is_login(TRUE);
+
             @$id = (int)$id;
 
             $img = $this->query->img_id($id);
@@ -38,5 +46,32 @@ public function id($id){
             $re = json_encode($re);
             echo $re;
         }
+        //根据token删除单张图片，不需要登录，只需要知道token即可
+        public function token($value){
+            //对value进行过滤
+            $value = trim($value);
+            $value = strip_tags($value);
+            $len = strlen($value);
+            if($len !== 16){
+                exit('不是有效的token！');
+            }
+            //获取图片信息
+            $img = $this->query->get_token($value);
+            //如果返回空，说明token不存在
+            if($img === NULL){
+                exit('token不存在，可能是图片已经被删除！');
+            }
+            //删除图片
+            //从数据库中删除
+            $this->delete->del_img($img->imgid);
+            //从磁盘中删除
+            $path = FCPATH.$img->path;
+            $thumbnail_path = FCPATH.$img->thumb_path;
+            //缩略图地址
+            unlink($path);
+            unlink($thumbnail_path);
+
+            echo '图片已删除！';
+        }
     }
 ?>

application/controllers/Maintain.php

@@ -58,6 +58,15 @@ public function import($id){
             // $query = $this->db->query($sql)->row();
             // var_dump($query);
         }
+        //版本升级
+        public function upgrade(){
+            $data['admin_title']    =   'ImgURL升级';
+            //加载视图
+            $this->load->view('admin/header',$data);
+            $this->load->view('admin/left');
+            $this->load->view('admin/upgrade');
+            $this->load->view('admin/footer');
+        }
 
     }
 ?>

application/controllers/Upgrade.php

@@ -0,0 +1,32 @@
+<?php
+/**
+ * ImgURL升级类
+ *
+ * @package upgrade
+ * @author xiaoz
+ * @link https://imgurl.org/
+ */
+
+defined('BASEPATH') OR exit('No direct script access allowed');
+class Upgrade extends CI_Controller{
+    //构造函数
+    public function __construct(){
+        parent::__construct();
+
+        //加载辅助类
+        $this->load->library('basic');
+        $this->basic->is_login(TRUE);
+        //加载模型
+        $this->load->model('query','',TRUE);
+    }
+    public function v22_to_v23(){
+        //升级数据库操作
+        $result = $this->query->to23();
+        if($result){
+            echo '升级完毕，请关闭此页面！';
+        }
+        else{
+            echo '升级失败，未知错误！';
+        }
+    }
+}

application/controllers/Upload.php

@@ -21,6 +21,8 @@ class Upload extends CI_Controller{
         public $temp;
         //用户是否已经登录的属性
         protected $user;
+        //获取站点主域名
+        protected $main_domain;
         //构造函数
         public function __construct()
         {
@@ -44,6 +46,8 @@ public function __construct()
             $this->load->library('basic');
             //加载查询模型
             $this->load->model('query','',TRUE);
+            $this->main_domain = $this->basic->domain();
+            
             //用户已经登录
             if($this->basic->is_login(FALSE)){
                 $this->user = 'admin';
@@ -155,7 +159,17 @@ public function localhost($type = 'json'){
                 }
                 //图片没有上传过
                 else{
-                    //需要插入到images表的数据
+                    $arr = array(
+                        "ip"    =>  get_ip(),
+                        "ua"    =>  get_ua(),
+                        "date"  =>  $this->date
+                    );
+                    
+                    //生成token
+                    $token = $this->token($arr);
+                    //生成删除链接
+                    $delete = $this->main_domain.'/delete/'.$token;
+                    //需要插入到img_images表的数据
                     $datas = array(
                         "imgid"     =>  $imgid,
                         "path"      =>  $relative_path,
@@ -165,7 +179,8 @@ public function localhost($type = 'json'){
                         "ua"        =>  get_ua(),
                         "date"      =>  $this->date,
                         "user"      =>  $this->user,
-                        "level"     =>  'unknown'
+                        "level"     =>  'unknown',
+                        "token"     =>  $token
                     );
                     //需要插入到imginfo表的数据
                     $imginfo = array(
@@ -189,7 +204,8 @@ public function localhost($type = 'json'){
                         "url"               =>  $url,
                         "thumbnail_url"     =>  $thumbnail_url,
                         "width"             =>  $data['image_width'],
-                        "height"            =>  $data['image_height']
+                        "height"            =>  $data['image_height'],
+                        "delete"            =>  $delete
                     );
                     //根据不同的类型返回不同的数据
                     $this->re_data($type,$info);
@@ -442,5 +458,22 @@ public function parse(){
             $this->succeed_msg($info);
             //echo $re;
         }
+        /*
+        1. 该方法生成图片的唯一删除token
+        2. 参数为一个数组，内容为IP/UA/DATE
+        3. ip + ua + date + 4位随机数，进行md5加密得到token
+        */
+        protected function token($arr){
+            $ip = $arr['ip'];
+            $ua = $arr['ua'];
+            $date = $arr['date'];
+            //生成4位随机数
+            $str =  GetRandStr(4);
+            $token = $ip.$ua.$date.$str;
+            $token = md5($token);
+            //token只需要16位
+            $token = substr($token, 8, 16);
+            return $token;
+        }
     }
 ?>

application/helpers/basic_helper.php

@@ -141,4 +141,24 @@ function thumbnail($img){
             return $img['path'];
         }
     }
+    //生成4位随机数，方法来自：https://blog.csdn.net/happy_jijiawei/article/details/50581094
+    function GetRandStr($len) 
+    { 
+        $chars = array( 
+            "a", "b", "c", "d", "e", "f", "g", "h", "i", "j", "k",  
+            "l", "m", "n", "o", "p", "q", "r", "s", "t", "u", "v",  
+            "w", "x", "y", "z", "A", "B", "C", "D", "E", "F", "G",  
+            "H", "I", "J", "K", "L", "M", "N", "O", "P", "Q", "R",  
+            "S", "T", "U", "V", "W", "X", "Y", "Z", "0", "1", "2",  
+            "3", "4", "5", "6", "7", "8", "9" 
+        ); 
+        $charsLen = count($chars) - 1; 
+        shuffle($chars);   
+        $output = ""; 
+        for ($i=0; $i<$len; $i++) 
+        { 
+            $output .= $chars[mt_rand(0, $charsLen)]; 
+        }  
+        return $output;  
+    }
 ?>

application/libraries/Basic.php

@@ -134,5 +134,10 @@ public function conf($arg = ''){
                     break;
             }
         }
+        //获取站点主域名
+        public function domain(){
+            $domain = $this->CI->query->get_domain();
+            return $domain;
+        }
     }
 ?>

application/models/Query.php

@@ -323,5 +323,46 @@ public function found_img($type,$page){
             $datas = $this->db->query($sql)->result_array();
             return $datas;
         }
+        //v2.2升级v2.3
+        public function to23(){
+            // $sql = 'alter table "img_images" ADD "token"  TEXT(16) DEFAULT NULL;
+            // CREATE UNIQUE INDEX "token" ON "img_images" ("token" ASC);
+            // ';
+            $sqls = array(
+                'alter table "img_images" ADD "token"  TEXT(16) DEFAULT NULL;',
+                'CREATE UNIQUE INDEX "token" ON "img_images" ("token" ASC)',
+                'CREATE UNIQUE INDEX "imginfo_imgid" ON "img_imginfo" ("imgid" ASC)'
+            );
+            //遍历SQL语句
+            foreach ($sqls as $value) {
+                $datas = $this->db->query($value);
+            }
+            //var_dump($datas);
+            if($datas){
+                return TRUE;
+            }
+            else{
+                return FALSE;
+            }
+        }
+        //查询站点主域名
+        public function get_domain() {
+            $sql = 'SELECT "values" FROM "img_options" WHERE `name` = "site_url"';
+            $data = $this->db->query($sql)->row();
+            
+            if($data){
+                return $data->values;
+            }
+            else{
+                return FALSE;
+            }
+        }
+        //根据token查询图片信息
+        public function get_token($value){
+           //先获取img id
+           $sql = "SELECT a.*,b.mime,b.width,b.height,b.views,b.ext,b.client_name FROM img_images AS a INNER JOIN img_imginfo AS b ON a.token = '{$value}' AND a.imgid = b.imgid";
+           $imginfo = $this->db->query($sql)->row();
+           return $imginfo;
+        }
     }
 ?>

application/views/admin/header.php

@@ -13,7 +13,7 @@
 	<title><?php echo $admin_title; ?> - ImgURL后台管理</title>
   	<link rel="stylesheet" href="/static/layui/css/layui.css">
   	<link rel="stylesheet" href="/static/font-awesome/css/font-awesome.min.css">
-	<link rel="stylesheet" href="/static/css/admin.css?v=<?php echo $version; ?>">
+	  <link rel="stylesheet" href="/static/css/admin.css?v=<?php echo $version; ?>">
 	<script src = "/static/js/jquery.min.js"></script>
 </head>
 <body class="layui-layout-body">

application/views/admin/images.php

@@ -140,7 +140,15 @@
 		<div class="layui-col-lg6" id = "paging">
             <?php echo $page; ?>
         </div>
-        <div class="layui-col-lg6">
+        <div class="layui-col-lg3">
+	        <span>操作：</span>
+	        <div class="layui-btn-group">
+			  <button type="button" class="layui-btn layui-btn-xs" onclick = "check_all()">全选</button>
+			  <button type="button" class="layui-btn layui-btn-xs" onclick = "cancel_all()">取消全选</button>
+			  <!--<button type="button" class="layui-btn layui-btn-xs" onclick = "invert_selection()">反选</button>-->
+			</div>
+	    </div>
+        <div class="layui-col-lg3">
             <!-- <button class="layui-btn layui-btn-xs" id = "checkAll">全选</button>--> <label>选中项：</label><button class="layui-btn layui-btn-xs layui-btn-danger" onclick = "del_more()">删除</button> 
         </div>
 	</div>

application/views/admin/index.php

@@ -1,3 +1,4 @@
+<script src="/static/js/Chart.min.js"></script>
 <div class="layui-container" style = "margin-top:2em;">
 	<div class="layui-row layui-col-space20">
 		<div class="layui-col-lg3">

application/views/admin/left.php

@@ -34,8 +34,9 @@
 		<li class="layui-nav-item">
           <a href="javascript:;"><i class="layui-icon layui-icon-app"></i> 管理维护</a>
           <dl class="layui-nav-child">
-			<dd><a href="javascript:;" onclick = "version()">当前版本</a></dd>
-			<dd><a href="/maintain/upto2">1.x升级2.x</a></dd>
+          <dd><a href="javascript:;" onclick = "version()">当前版本</a></dd>
+          <dd><a href="/maintain/upto2">1.x升级2.x</a></dd>
+          <dd><a href="/maintain/upgrade">版本升级</a></dd>
 			<!-- <dd><a href="/maintain/upto2">检查更新</a></dd> -->
             <!-- <dd><a href="javascript:;">FTP</a></dd> -->
             <!-- <dd><a href="">七牛云</a></dd>

application/views/admin/upgrade.php

@@ -0,0 +1,22 @@
+<?php
+    //读取版本号
+    $content = file_get_contents(FCPATH."/data/version.txt");
+    $content = explode("-",$content);
+    $version = $content[0];
+?>
+<div class="layui-container" style = "margin-top:2em;">
+    <div class="layui-row">
+        <div class="layui-col-lg12">
+            <div>
+                <ol>
+                    <li>1. 您当前使用的版本为<code style = "color:red;"><?php echo $version; ?></code></li>
+                    <li>2. 升级之前请备份数据，升级之前请备份数据，升级之前请备份数据</li>
+                    <li>3. 不要跨版本升级</li>
+                    <li>4. 上述准备完成后，点击下方对应的版本进行升级</li>
+                    <li>4. 没事不要乱点，否则后果自负</li>
+                </ol>
+            </div>
+            <div style = "margin-top:1em;"><a href="/upgrade/v22_to_v23" class="layui-btn" target = "_blank">v2.2 > v2.3</a></div>
+        </div>
+    </div>
+</div>

application/views/user/footer.php

@@ -10,8 +10,9 @@
 	<div class = "footer">
 		<div class = "layui-container">
 			<div class = "layui-row">
+				<!--未经作者授权，请勿去掉版权，谢谢-->
 				<div class = "layui-col-lg12">
-					Copyright © 2017-2019 Powered by <a href="https://imgurl.org/" target = "_blank">ImgURL</a> | Author <a href="https://www.xiaoz.me/" target = "_blank">xiaoz.me</a> | 
+					Copyright © 2017-2019 Powered by <a href="https://imgurl.org/" target = "_blank" title = "ImgURL是一个开源免费的图床程序">ImgURL</a> | Author <a href="https://www.xiaoz.me/" target = "_blank" title = "小z博客">xiaoz.me</a> | 
 					<!-- 简单判断用户是否登录 -->
 					<?php if((isset($_COOKIE['user'])) && (isset($_COOKIE['token']))){ ?>
 						<a href="/user/logout">logout</a>

application/views/user/header.php

@@ -45,8 +45,13 @@
                             <li class="layui-nav-item"><a href="/home/multiple"><i class="layui-icon layui-icon-upload"></i> 多图上传</a></li>
                             <li class="layui-nav-item"><a href="/found"><i class="layui-icon layui-icon-search"></i> 探索发现</a></li>
                             <li class="layui-nav-item"><a href="/home/log"><i class="layui-icon layui-icon-notice"></i> 更新日志</a></li>
-                            <li class="layui-nav-item"><a href="https://doc.xiaoz.me/#/imgurl2/api" target = "_blank"><i class="layui-icon layui-icon-template-1"></i> API</a></li>
-                            <li class="layui-nav-item"><a href="https://doc.xiaoz.me/#/imgurl2/" target = "_blank" rel = "nofollow"><i class="layui-icon">&#xe705;</i> 帮助文档</a></li>
+                            <li class="layui-nav-item">
+                                <a href="https://dwz.ovh/imgurldoc" target = "_blank" rel = "nofollow"><i class="layui-icon">&#xe705;</i> 帮助文档</a>
+                                <dl class="layui-nav-child"> <!-- 二级菜单 -->
+                                    <dd><a href="https://www.xiaoz.me/doc/doc-imgurl/install" rel = "nofollow" target = "_blank">安装ImgURL</a></dd>
+                                    <dd><a href="https://www.xiaoz.me/doc/doc-imgurl/api" rel = "nofollow" target = "_blank">ImgURL API</a></dd>
+                                    </dl>
+                            </li>
                             <li class="layui-nav-item"><a href="https://github.com/helloxz/imgurl" target = "_blank" rel = "nofollow"><i class="layui-icon">&#xe635;</i> 源码</a></li>
                             <li class="layui-nav-item"><a href="/page/use"><i class="layui-icon">&#xe60b;</i> 关于</a></li>
                             <!-- 简单判断用户是否登录 -->