ExamAware/ExamCloudSchedule
3
0
Fork 0
mirror of https://hub.gitmirror.com/https://github.com/ExamAware/ExamCloudSchedule synced 2025-04-29 18:26:34 +00:00
Code Issues Packages Projects Releases Wiki Activity

Compare commits

base: ExamAware:v1.1.1
Branches Tags
ExamAware:main
ExamAware:v1.1.1
ExamAware:v1.1.0
ExamAware:v1.0.0
ExamAware:v0.0.1
...
compare: ExamAware:main
Branches Tags
ExamAware:main
ExamAware:v1.1.1
ExamAware:v1.1.0
ExamAware:v1.0.0
ExamAware:v0.0.1

2 Commits
v1.1.1 ... main

Author SHA1 Message Date
fhzit
19c9f4b2b4 feat: 管理后台登录页返回按钮的实现 2025-04-20 10:59:13 +08:00
MKStoler1024
7f99f2613b feat: 添加用户管理功能,支持添加、删除、修改用户及角色 2025-04-18 00:21:31 +08:00
5 changed files with 207 additions and 5 deletions
Show Stats Expand all files Collapse all files

8
admin/index.php
View File

@ -1,6 +1,7 @@
<?php <?php
require_once '../includes/auth.php'; require_once '../includes/auth.php';
checkLogin(); checkLogin();
$role = getUserRole($_SESSION['username']);
// 获取所有配置文件列表 // 获取所有配置文件列表
$configs = []; $configs = [];
@ -126,7 +127,12 @@ uksort($configs, function($a, $b) {
<body> <body>
<div class="header"> <div class="header">
<h1>考试配置管理 <small>当前用户:<?= $_SESSION['username'] ?></small></h1> <h1>考试配置管理 <small>当前用户:<?= $_SESSION['username'] ?></small></h1>
<a href="login.php?action=logout" class="md3-button">退出登录</a> <div>
<?php if ($role === 'admin'): ?>
<a href="users.php" class="md3-button">用户管理</a>
<?php endif; ?>
<a href="login.php?action=logout" class="md3-button">退出登录</a>
</div>
</div> </div>
<div class="content"> <div class="content">

18
admin/login.php
View File

@ -81,9 +81,27 @@ if ($_SERVER['REQUEST_METHOD'] === 'POST') {
text-align: center; text-align: center;
margin-bottom: 16px; margin-bottom: 16px;
} }
.back-button {
position: absolute;
top: 16px;
left: 16px;
text-decoration: none;
padding: 8px 16px;
background: var(--md-primary);
color: var(--md-on-primary);
border-radius: 4px;
box-shadow: var(--md-elevation-1);
font-size: 14px;
}
.back-button:hover {
background: var(--md-primary-hover);
}
</style> </style>
</head> </head>
<body> <body>
<a href="../" class="back-button md3-button">返回</a>
<div class="login-container md3-card"> <div class="login-container md3-card">
<h2>登录</h2> <h2>登录</h2>
<?php if (isset($error)): ?> <?php if (isset($error)): ?>

154
admin/users.php Normal file
View File

@ -0,0 +1,154 @@
<?php
require_once '../includes/auth.php';
checkLogin();
if ($_SESSION['username'] !== 'admin') {
header('Location: index.php');
exit;
}
$users_file = __DIR__ . '/../includes/users.json';
$users = json_decode(file_get_contents($users_file), true) ?: [];
// 添加用户
if ($_SERVER['REQUEST_METHOD'] === 'POST' && isset($_POST['add_user'])) {
$new_user = trim($_POST['username']);
$new_pass = $_POST['password'];
$new_role = $_POST['role'] === 'admin' ? 'admin' : 'user';
if ($new_user && $new_pass) {
foreach ($users as $u) {
if ($u['username'] === $new_user) {
$error = '用户名已存在';
break;
}
}
if (!isset($error)) {
$users[] = [
'username' => $new_user,
'password' => md5($new_pass),
'role' => $new_role
];
file_put_contents($users_file, json_encode($users, JSON_UNESCAPED_UNICODE | JSON_PRETTY_PRINT));
header('Location: users.php');
exit;
}
} else {
$error = '用户名和密码不能为空';
}
}
// 删除用户
if (isset($_GET['del']) && $_GET['del'] !== 'admin') {
$users = array_filter($users, function($u) {
return $u['username'] !== $_GET['del'];
});
file_put_contents($users_file, json_encode(array_values($users), JSON_UNESCAPED_UNICODE | JSON_PRETTY_PRINT));
header('Location: users.php');
exit;
}
// 修改密码
if ($_SERVER['REQUEST_METHOD'] === 'POST' && isset($_POST['change_pass'])) {
$target = $_POST['target_user'];
$new_pass = $_POST['new_password'];
foreach ($users as &$u) {
if ($u['username'] === $target && $target !== '') {
$u['password'] = md5($new_pass);
break;
}
}
unset($u);
file_put_contents($users_file, json_encode($users, JSON_UNESCAPED_UNICODE | JSON_PRETTY_PRINT));
$msg = '密码已修改';
header('Location: users.php');
exit;
}
// 修改角色
if ($_SERVER['REQUEST_METHOD'] === 'POST' && isset($_POST['change_role'])) {
$target = $_POST['target_user'];
$new_role = $_POST['new_role'] === 'admin' ? 'admin' : 'user';
foreach ($users as &$u) {
if ($u['username'] === $target && $target !== 'admin') {
$u['role'] = $new_role;
break;
}
}
unset($u);
file_put_contents($users_file, json_encode($users, JSON_UNESCAPED_UNICODE | JSON_PRETTY_PRINT));
header('Location: users.php');
exit;
}
?>
<!DOCTYPE html>
<html>
<head>
<title>用户管理</title>
<link rel="stylesheet" href="/assets/css/md3.css">
<style>
body { background: var(--md-surface); margin: 0; padding: 24px; }
.container { max-width: 700px; margin: 0 auto; }
table { width: 100%; border-collapse: collapse; margin-top: 24px; }
th, td { padding: 12px; border-bottom: 1px solid var(--md-outline); }
th { background: var(--md-surface-variant); }
.md3-button { margin-right: 8px; }
.error { color: var(--md-error); margin-bottom: 12px; }
.msg { color: var(--md-primary); margin-bottom: 12px; }
form.inline { display:inline; }
select { padding: 4px 8px; }
</style>
</head>
<body>
<div class="container md3-card">
<h2>用户管理</h2>
<?php if (isset($error)): ?><div class="error"><?= $error ?></div><?php endif; ?>
<?php if (isset($msg)): ?><div class="msg"><?= $msg ?></div><?php endif; ?>
<form method="post" style="margin-bottom:16px;">
<input type="text" name="username" class="md3-text-field" placeholder="新用户名" required>
<input type="password" name="password" class="md3-text-field" placeholder="密码" required>
<select name="role" class="md3-text-field" style="width:auto;">
<option value="user">普通用户</option>
<option value="admin">管理员</option>
</select>
<button type="submit" name="add_user" class="md3-button">添加用户</button>
</form>
<table>
<tr><th>用户名</th><th>类型</th><th>操作</th></tr>
<?php foreach ($users as $u): ?>
<tr>
<td><?= htmlspecialchars($u['username']) ?></td>
<td>
<?php if ($u['username'] === 'admin'): ?>
管理员
<?php else: ?>
<form method="post" class="inline" style="margin:0;">
<input type="hidden" name="target_user" value="<?= htmlspecialchars($u['username']) ?>">
<select name="new_role" onchange="this.form.submit()">
<option value="user" <?= (isset($u['role']) && $u['role'] === 'user') ? 'selected' : '' ?>>普通用户</option>
<option value="admin" <?= (isset($u['role']) && $u['role'] === 'admin') ? 'selected' : '' ?>>管理员</option>
</select>
<input type="hidden" name="change_role" value="1">
</form>
<?php endif; ?>
</td>
<td>
<form method="post" class="inline" style="margin:0;">
<input type="hidden" name="target_user" value="<?= htmlspecialchars($u['username']) ?>">
<input type="password" name="new_password" placeholder="新密码" class="md3-text-field" style="width:100px;" required>
<button type="submit" name="change_pass" class="md3-button">改密</button>
</form>
<?php if ($u['username'] !== 'admin'): ?>
<a href="?del=<?= urlencode($u['username']) ?>" class="md3-button" style="background:var(--md-error)" onclick="return confirm('确定删除该用户?')">删除</a>
<?php else: ?>
<span style="color:#888;">保护</span>
<?php endif; ?>
</td>
</tr>
<?php endforeach; ?>
</table>
<div style="margin-top:24px;">
<a href="index.php" class="md3-button">返回管理首页</a>
</div>
</div>
</body>
</html>

16
includes/auth.php
View File

@ -20,4 +20,20 @@ function verifyUser($username, $password) {
} }
return false; return false;
} }
function getAllUsers() {
global $users_file;
return json_decode(file_get_contents($users_file), true) ?: [];
}
function getUserRole($username) {
global $users_file;
$users = json_decode(file_get_contents($users_file), true) ?: [];
foreach ($users as $user) {
if ($user['username'] === $username) {
return isset($user['role']) ? $user['role'] : 'user';
}
}
return 'user';
}
?> ?>

16
includes/users.json
View File

@ -1,4 +1,12 @@
[{ [
"username": "admin", {
"password": "21232f297a57a5a743894a0e4a801fc3" "username": "admin",
}] "password": "21232f297a57a5a743894a0e4a801fc3",
"role": "admin"
},
{
"username": "user",
"password": "e10adc3949ba59abbe56e057f20f883e",
"role": "user"
}
]