1

core/CoreApp/controllers/Fullorderexcel.php

@@ -173,7 +173,7 @@ class Fullorderexcel extends Start_Controller {
         	{
 				$adminid = $this->power->read(1);
 				$this->power->save(array("excelid"=>$adminid['excelid'].$addid.'|',"exceltext"=>$adminid['exceltext'].$post['title'].'|'),$adminid['id']);
-				echo json_encode(array('msg'=>'添加成功'.$adminid['id'],'success'=>true));exit;
+				echo json_encode(array('msg'=>'添加成功','success'=>true));exit;
        	 	}
        		else
         	{
@@ -230,7 +230,7 @@ class Fullorderexcel extends Start_Controller {
 			{
 				$adminid = $this->power->read(1);
 				$this->power->save(array("excelid"=>$adminid['excelid'].$addid.'|',"exceltext"=>$adminid['exceltext'].$post['title'].'|'),$adminid['id']);
-				echo json_encode(array('msg'=>'添加成功'.$adminid['id'],'success'=>true));exit;
+				echo json_encode(array('msg'=>'添加成功','success'=>true));exit;
 			}
 			else
 			{

core/CoreApp/controllers/Queueu9.php

@@ -37,7 +37,29 @@ class Queueu9 extends Start_Controller {
         }
     }
     public function _index(){
-    
+       echo "<pre>";
+       $user_agent = $_SERVER['HTTP_USER_AGENT'];
+       $token = $_SERVER['HTTP_X_AUTH_TOKEN'];
+       $time =  $this->input->get('time',true);
+       $check_str = "ququexd_".$time;
+       if(empty($user_agent)){
+           exit('No direct script access allowed');
+       }
+       if($user_agent != 'XuChangLongYi/1.0 (Erp)'){
+           exit('Illegal request');
+       }
+       if(empty($token)){
+           exit('No access permission');
+       }
+       
+       $sercet_str = md5($check_str);
+       
+       if($sercet_str != $token){
+           exit("Request permission is illegal");
+       }
+       
+       
+       exit("执行完毕");
     }
 
      //执行小单的流转到临时仓的队列