diff --git a/Connections/SQL-sample.php b/Connections/SQL-sample.php
index 1bac2bb..56cd9c2 100644
--- a/Connections/SQL-sample.php
+++ b/Connections/SQL-sample.php
@@ -1,4 +1,36 @@
 <?php
+/*
+<Secret Center, open source member management system>
+Copyright (C) 2012-2016 Secret Center開發團隊 <http://center.gdsecret.net/#team>
+
+This program is free software: you can redistribute it and/or modify
+it under the terms of the GNU Affero General Public License as published by
+the Free Software Foundation, version 3.
+
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+GNU Affero General Public License for more details.
+
+You should have received a copy of the GNU Affero General Public License
+along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+Also add information on how to contact you by electronic and paper mail.
+
+  If your software can interact with users remotely through a computer
+network, you should also make sure that it provides a way for users to
+get its source.  For example, if your program is a web application, its
+interface could display a "Source" link that leads users to an archive
+of the code.  There are many ways you could offer source, and different
+solutions will be better for different programs; see section 13 for the
+specific requirements.
+
+  You should also get your employer (if you work as a programmer) or school,
+if any, to sign a "copyright disclaimer" for the program, if necessary.
+For more information on this, and how to apply and follow the GNU AGPL, see
+<http://www.gnu.org/licenses/>.
+*/
+
 if(!@$includepath){
     set_include_path('include/');
 }
@@ -13,4 +45,3 @@
 global $SQL;
 $SQL = new Database($hostname_SQL,$username_SQL,$password_SQL,$database_SQL);
 $SQL->query("SET NAMES 'utf8'");
-?>
\ No newline at end of file
diff --git a/Connections/SQL.php b/Connections/SQL.php
index ea6b520..b266a75 100644
--- a/Connections/SQL.php
+++ b/Connections/SQL.php
@@ -1,11 +1,43 @@
 <?php
+/*
+<Secret Center, open source member management system>
+Copyright (C) 2012-2016 Secret Center開發團隊 <http://center.gdsecret.net/#team>
+
+This program is free software: you can redistribute it and/or modify
+it under the terms of the GNU Affero General Public License as published by
+the Free Software Foundation, version 3.
+
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+GNU Affero General Public License for more details.
+
+You should have received a copy of the GNU Affero General Public License
+along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+Also add information on how to contact you by electronic and paper mail.
+
+  If your software can interact with users remotely through a computer
+network, you should also make sure that it provides a way for users to
+get its source.  For example, if your program is a web application, its
+interface could display a "Source" link that leads users to an archive
+of the code.  There are many ways you could offer source, and different
+solutions will be better for different programs; see section 13 for the
+specific requirements.
+
+  You should also get your employer (if you work as a programmer) or school,
+if any, to sign a "copyright disclaimer" for the program, if necessary.
+For more information on this, and how to apply and follow the GNU AGPL, see
+<http://www.gnu.org/licenses/>.
+*/
+
 if(!@$includepath){
     set_include_path('include/');
 }
 error_reporting(E_ALL);
 require_once('database.php');
 
-$database_SQL = "sc8.0";//資料庫名稱
+$database_SQL = "center";//資料庫名稱
 $username_SQL = "root";//連線帳號
 $password_SQL = "usbw";//連線密碼
 $hostname_SQL = "127.0.0.1";//MySQL伺服器
@@ -13,4 +45,3 @@
 global $SQL;
 $SQL = new Database($hostname_SQL,$username_SQL,$password_SQL,$database_SQL);
 $SQL->query("SET NAMES 'utf8'");
-?>
\ No newline at end of file
diff --git a/account.php b/account.php
index f39b6fc..34bcbc7 100644
--- a/account.php
+++ b/account.php
@@ -1,4 +1,36 @@
 <?php
+/*
+<Secret Center, open source member management system>
+Copyright (C) 2012-2016 Secret Center開發團隊 <http://center.gdsecret.net/#team>
+
+This program is free software: you can redistribute it and/or modify
+it under the terms of the GNU Affero General Public License as published by
+the Free Software Foundation, version 3.
+
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+GNU Affero General Public License for more details.
+
+You should have received a copy of the GNU Affero General Public License
+along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+Also add information on how to contact you by electronic and paper mail.
+
+  If your software can interact with users remotely through a computer
+network, you should also make sure that it provides a way for users to
+get its source.  For example, if your program is a web application, its
+interface could display a "Source" link that leads users to an archive
+of the code.  There are many ways you could offer source, and different
+solutions will be better for different programs; see section 13 for the
+specific requirements.
+
+  You should also get your employer (if you work as a programmer) or school,
+if any, to sign a "copyright disclaimer" for the program, if necessary.
+For more information on this, and how to apply and follow the GNU AGPL, see
+<http://www.gnu.org/licenses/>.
+*/
+
 require_once('Connections/SQL.php');
 require_once('config.php');
 require_once('include/view.php');
@@ -8,112 +40,108 @@
 	exit;
 }
 
-$view = new View('view/new_theme.html','include/nav.php',$center['site_name'],'我的帳號');
-$view->addScript("https://ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js");
-$view->addScript("include/js/channel.js");
-$view->addScript("include/js/notice.js");
-$view->addScript("include/js/jquery.validate.js");
-
-$member = sc_get_member_data($_SESSION['Center_Username']);
-
+$_member = sc_get_result("SELECT * FROM `member` WHERE `id` = '%d'",array($_SESSION['Center_Id']));
 
 if(isset($_POST['email'])&& filter_var($_POST['email'], FILTER_VALIDATE_EMAIL)){
 	if($_POST['web_site']!='' && !filter_var($_POST['web_site'], FILTER_VALIDATE_URL)){
-		$_web_site=$member['row']['web_site'];
+		$_web_site=$_member['row']['web_site'];
 	}else{
 		$_web_site=$_POST['web_site'];
 	}
 	if($_POST['password'] == ''){
-		$pass = $member['row']['password'];
-	}
-	else {
-		$pass = sc_password($_POST['password'], $member['row']['name']);
+		$_password = $_member['row']['password'];
+	}else {
+		$_password = sc_password($_POST['password'], $_member['row']['username']);
 	}
 	
-	$SQL->query("UPDATE member SET password = '%s', email = '%s', web_site = '%s' WHERE name = '%s'",array(
-			$pass,
-			$_POST['email'],
-			$_web_site,
-			$_SESSION['Center_Username']
-	));
+	$SQL->query("UPDATE `member` SET `password` = '%s', `email` = '%s', `web_site` = '%s' WHERE `id` = '%d'",array($_password,$_POST['email'],$_web_site,$_SESSION['Center_Id']));
 	header("Location: account.php?ok");
 }
+
+
+$view = new View('include/theme/default.html','include/nav.php',NULL,$center['site_name'],'我的帳號');
+$view->addScript("include/js/notice.js");
 ?>
-<script type="text/javascript">
+<script>
 $(function(){
-	$("#form1").validate({
-		rules:{
-			authpassword:{equalTo: "#password"},
-			email:{required:true,email:true},
-			web_site:{url:true},
-		},
-		messages:{
-			authpassword:{equalTo: "密碼不一致"},
+	$('input[name="authpassword"]').on('keyup', function(){
+		var $_error_msg=$(this).parent().siblings('.help-block');
+		if($(this).val()!=$('input[name="password"]').val()){
+			$_error_msg.html('<span class="text-danger">密碼不一致</span>'); 
+			$('input[type="submit"]').attr('disabled','disabled');
+		}else{
+			$_error_msg.html('');
+			$('input[type="submit"]').attr('disabled',false);
 		}
-	});
+	}).parent().parent().append('<div class="col-sm-3 help-block"></div>');
 });
 </script>
-<div class="main">
 <?php if(isset($_GET['ok'])){?>
 <div class="alert alert-success">修改成功！</div>
 <?php } ?>
-	<h2 class="subtitle">我的帳號</h2>
-<div class="row-fluid">
-	<div class="span3 text-center">
-		<img src="include/avatar.php?id=<?php echo $member['row']['name']; ?>" class="avatar">
-		<p><a href="avatar.php">修改頭像</a></p>
+<h2 class="page-header">我的帳號</h2>
+<div class="row">
+	<div class="col-sm-3 text-center">
+		<img src="<?php echo sc_avatar_url($_member['row']['id']); ?>" class="avatar">
+		<p><a href="avatar.php">修改頭貼</a></p>
 	</div>
-	<div class="span9">
-		<form id="form1" name="form1" action="account.php" method="POST" class="form-horizontal">
-			<div class="control-group">
-					<label class="control-label">帳號：</label>
-					<div class="controls"><?php echo htmlspecialchars($member['row']['name']); ?></div>
+	<div class="col-sm-9">
+		<form class="form-horizontal form-sm" action="account.php" method="POST">
+			<div class="form-group">
+				<label class="col-sm-3 control-label">帳號：</label>
+				<div class="col-sm-6">
+					<p class="form-control-static"><?php echo $_member['row']['username']; ?></p>
+				</div>
 			</div>
-			<div class="control-group">
-				<label class="control-label" for="password">密碼：</label>
-				<div class="controls">
-					<input name="password" type="password" class="input-large" id="password" maxlength="30">
+			<div class="form-group">
+				<label class="col-sm-3 control-label" for="username">密碼：</label>
+				<div class="col-sm-6">
+					<input class="form-control" name="password" type="password" maxlength="30">
 				</div>
 			</div>
-			<div class="control-group">
-				<label class="control-label" for="authpassword">確認密碼：</label>
-				<div class="controls">	
-					<input name="authpassword" type="password" id="authpassword" class="input-large" maxlength="30" />
+			<div class="form-group">
+				<label class="col-sm-3 control-label" for="authpassword">確認密碼：</label>
+				<div class="col-sm-6">
+					<input class="form-control" name="authpassword" type="password">
 				</div>
 			</div>
-			<div class="control-group">
-				<label class="control-label" for="email">* 電子信箱：</label>
-				<div class="controls">	
-					<input name="email" type="text" id="email" class="input-large" maxlength="255" value="<?php echo $member['row']['email']; ?>" />
+			<div class="form-group">
+				<label class="col-sm-3 control-label" for="email">* 電子信箱：</label>
+				<div class="col-sm-6">
+					<input class="form-control" name="email" type="email" maxlength="255" required="required" value="<?php echo $_member['row']['email']; ?>">
 				</div>
 			</div>
-			<div class="control-group">
-				<label class="control-label" for="web_site">個人網站：</label>
-				<div class="controls">	
-					<input name="web_site" type="text" id="web_site" class="input-large" maxlength="255" value="<?php echo $member['row']['web_site']; ?>" />
+			<div class="form-group">
+				<label class="col-sm-3 control-label" for="web_site">個人網站：</label>
+				<div class="col-sm-6">
+					<input class="form-control" name="web_site" type="text" maxlength="255" value="<?php echo $_member['row']['web_site']; ?>">
 				</div>
 			</div>
-			<div class="control-group">
-					<label class="control-label">權限：</label>
-					<div class="controls"><?php echo sc_member_level($member['row']['level']); ?></div>
+			<div class="form-group">
+				<label class="col-sm-3 control-label">權限：</label>
+				<div class="col-sm-6">
+					<p class="form-control-static"><?php echo sc_member_level($_member['row']['level']); ?></p>
+				</div>
 			</div>
-			<div class="control-group">
-				<label class="control-label">註冊日期：</label>
-				<div class="controls"><?php echo $member['row']['joined']; ?></div>
+			<div class="form-group">
+				<label class="col-sm-3 control-label">註冊日期：</label>
+				<div class="col-sm-6">
+					<p class="form-control-static"><?php echo $_member['row']['joined']; ?></p>
+				</div>
 			</div>
-			<div class="control-group">
-				<label class="control-label">最後登入：</label>
-				<div class="controls"><?php echo $member['row']['last_login']; ?></div>
+			<div class="form-group">
+				<label class="col-sm-3 control-label">最後登入：</label>
+				<div class="col-sm-6">
+					<p class="form-control-static"><?php echo $_member['row']['last_login']; ?></p>
+				</div>
 			</div>
-			<div class="control-group">
-				<div class="controls">
-					<input name="button" type="submit" id="botton" class="btn btn-success btn-large" value="確認修改" />
+			<div class="form-group">
+				<div class="col-sm-offset-3 col-sm-6">
+					<input class="btn btn-success btn-lg" type="submit" value="確認修改">
 				</div>
 			</div>
-		</div>
-		<div class="clearfix"></div>
-	</form>
-</div>
+		</form>
+	</div>
 </div>
 <?php
 	$view->render();
diff --git a/admin/chat.php b/admin/chat.php
index 0ae1d60..ae6e2f3 100644
--- a/admin/chat.php
+++ b/admin/chat.php
@@ -1,4 +1,36 @@
 <?php
+/*
+<Secret Center, open source member management system>
+Copyright (C) 2012-2016 Secret Center開發團隊 <http://center.gdsecret.net/#team>
+
+This program is free software: you can redistribute it and/or modify
+it under the terms of the GNU Affero General Public License as published by
+the Free Software Foundation, version 3.
+
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+GNU Affero General Public License for more details.
+
+You should have received a copy of the GNU Affero General Public License
+along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+Also add information on how to contact you by electronic and paper mail.
+
+  If your software can interact with users remotely through a computer
+network, you should also make sure that it provides a way for users to
+get its source.  For example, if your program is a web application, its
+interface could display a "Source" link that leads users to an archive
+of the code.  There are many ways you could offer source, and different
+solutions will be better for different programs; see section 13 for the
+specific requirements.
+
+  You should also get your employer (if you work as a programmer) or school,
+if any, to sign a "copyright disclaimer" for the program, if necessary.
+For more information on this, and how to apply and follow the GNU AGPL, see
+<http://www.gnu.org/licenses/>.
+*/
+
 set_include_path('../include/');
 $includepath = true;
 
@@ -7,37 +39,32 @@
 require_once('view.php');
 
 if(!isset($_SESSION['Center_Username']) or $_SESSION['Center_UserGroup'] != 9){
-	header("Location: ../index.php");
-	exit;
+    header("Location: ../index.php");
+    exit;
 }
 
-if(isset($_GET['del']) && $_GET['del'] == 'public'){
-	$delete_data = "TRUNCATE TABLE chat";
-	$SQL->query($delete_data);
+if(isset($_GET['del'])){
+	$SQL->query("TRUNCATE TABLE `chat`");
 }
 
-$view = new View('../view/new_theme.html','../include/admin_nav.php',$center['site_name'],'聊天管理',true);
-$view->addScript("https://ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js");
-$view->addScript("../include/js/channel.js");
+$view = new View('theme/admin_default.html','admin/nav.php','',$center['site_name'],'聊天室',true);
+$view->addScript("../include/js/chat.js");
 ?>
 <script>
 $(function(){
-	window.user = <?php echo isset($_GET['user']) ? "'" . $_GET['user'] . "'" : 'null'; ?>;
-	new Chat("#target",false,<?php echo $center['chat']['public'] * 1000; ?>);
-});
-$(function(){
-	$('#chat_del_public').click(function(e){
+	new sc_chat('#chat',1);
+	$('#chat_del').click(function(e){
 		if(!window.confirm("確定清除所有聊天紀錄？")){
 			e.preventDefault();
 		}
 	});
 });
 </script>
-<div class="main">
-	<h2 class="subtitle">聊天室管理</h2>
-	<a id="chat_del_public" class="btn btn-danger" href="chat.php?del=public">清除所有公共聊天紀錄</a>
-	<div id="target" class="chat"></div>
-</div>
+<h2 class="page-header">聊天管理</h2>
+<p>
+	<a id="chat_del" class="btn btn-danger" href="chat.php?del">清除所有聊天紀錄</a>
+</p>
+<div id="chat"></div>
 <?php
-$view->render();
+	$view->render();
 ?>
\ No newline at end of file
diff --git a/admin/editconfig.php b/admin/editconfig.php
index 4f9bc7a..fa7848a 100644
--- a/admin/editconfig.php
+++ b/admin/editconfig.php
@@ -1,4 +1,36 @@
 <?php
+/*
+<Secret Center, open source member management system>
+Copyright (C) 2012-2016 Secret Center開發團隊 <http://center.gdsecret.net/#team>
+
+This program is free software: you can redistribute it and/or modify
+it under the terms of the GNU Affero General Public License as published by
+the Free Software Foundation, version 3.
+
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+GNU Affero General Public License for more details.
+
+You should have received a copy of the GNU Affero General Public License
+along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+Also add information on how to contact you by electronic and paper mail.
+
+  If your software can interact with users remotely through a computer
+network, you should also make sure that it provides a way for users to
+get its source.  For example, if your program is a web application, its
+interface could display a "Source" link that leads users to an archive
+of the code.  There are many ways you could offer source, and different
+solutions will be better for different programs; see section 13 for the
+specific requirements.
+
+  You should also get your employer (if you work as a programmer) or school,
+if any, to sign a "copyright disclaimer" for the program, if necessary.
+For more information on this, and how to apply and follow the GNU AGPL, see
+<http://www.gnu.org/licenses/>.
+*/
+
 set_include_path('../include/');
 $includepath = true;
 
@@ -8,7 +40,7 @@
 
 if(!isset($_SESSION['Center_Username']) or $_SESSION['Center_UserGroup'] != 9){
     header("Location: ../index.php");
-	exit;
+    exit;
 }
 
 if(isset($_POST['site_name'])){
@@ -17,10 +49,10 @@
 	}else{
 		$register=0;
 	}
-	if(isset($_POST['img_tiny'])){
-		$img_tiny=1;
+	if(isset($_POST['compress'])){
+		$compress=1;
 	}else{
-		$img_tiny=0;
+		$compress=0;
 	}
 	if(isset($_POST['forum_captcha'])){
 		$forum_captcha=1;
@@ -33,12 +65,10 @@
 		addslashes($_POST['site_name']),
 		$register,
 		$_POST['mail'],
-		implode('","',explode(',',$_POST['limitedext'])),
-		abs($_POST['max_files']),
-		abs($_POST['max_size']),
 		abs($_POST['public']),
 		abs($_POST['avatar_max_size']),
-		$img_tiny,
+		$compress,
+		abs($_POST['quality']),
 		$forum_captcha,
 		abs($_POST['forum_limit']),
 		sc_xss_filter($_POST['member_message'])
@@ -48,139 +78,122 @@
 	require('../config.php');
 }
 
-$view = new View('../view/new_theme.html','../include/admin_nav.php',$center['site_name'],'系統設定',true);
-$view->addScript("https://ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js");
-$view->addScript("../include/js/channel.js");
-$view->addScript("../include/js/jquery.validate.js");
+$view = new View('theme/admin_default.html','admin/nav.php','',$center['site_name'],'系統設定',true);
 ?>
-<script type="text/javascript">
+<?php if(isset($_GET['ok'])){?>
+	<div class="alert alert-success">編輯成功！</div>
+<?php } ?>
+<script>
 $(function(){
-	$("#form1").validate({
-		rules:{
-			site_name:{required:true},
-			mail:{required:true},
-			public:{required:true,min:0},
-			limitedext:{required:true},
-			max_files:{required:true,min:0},
-			max_size:{required:true,min:0}
-		},
+	$('input[name="quality"]').on('change keyup', function(){
+		$('#quality_percent').html($(this).val()+' %');
 	});
 });
 </script>
-<div class="main">
-<?php if(isset($_GET['ok'])){?>
-	<div class="alert alert-success">編輯成功！</div>
-<?php } ?>
-<h2 class="subtitle">系統設定</h2>
-<form id="form1" name="form1" class="form-horizontal" method="post" action="editconfig.php">
+<h2 class="page-header">系統設定</h2>
+<form class="form-horizontal" method="post" action="editconfig.php">
 	<fieldset>
 		<legend>主要</legend>
-		<div class="control-group">
-			<label class="control-label" for="site_name">網站名稱：</label>
-			<div class="controls">
-				<input id="site_name" name="site_name" class="input-xlarge" type="text" value="<?php echo $center['site_name']; ?>">
+		<div class="form-group">
+			<label class="col-sm-2 control-label" for="site_name">網站名稱：</label>
+			<div class="col-sm-6">
+				<input class="form-control" name="site_name" type="text" value="<?php echo $center['site_name']; ?>">
 			</div>
 		</div>
-		<div class="control-group">
-			<label class="control-label" for="register">開啟註冊：</label>
-			<div class="controls">
-				<input id="register" name="register" type="checkbox" value="1"<?php if($center['register']){echo ' checked="checked"';} ?>> <label class="checkbox inline" for="register">開啟</label>
+		<div class="form-group">
+			<label class="col-sm-2 control-label" for="register">開啟註冊：</label>
+			<div class="col-sm-6">
+				<label class="checkbox-inline">
+					<input name="register" type="checkbox" value="1"<?php if($center['register']){echo ' checked="checked"';} ?>>開啟
+				</label>
 			</div>
 		</div>
-		<div class="control-group">
-			<label class="control-label" for="mail">網站信箱：</label>
-			<div class="controls">
-				<input id="mail" name="mail" class="input-xlarge" type="email" value="<?php echo $center['mail']; ?>">
+		<div class="form-group">
+			<label class="col-sm-2 control-label" for="mail">網站信箱：</label>
+			<div class="col-sm-6">
+				<input class="form-control" name="mail" type="email" value="<?php echo $center['mail']; ?>">
 			</div>
 		</div>
-		<div class="control-group">
-			<label class="control-label" for="member_message">會員中心訊息：</label>
-			<div class="controls">
-				<textarea id="member_message" name="member_message" class="input-block-level" rows="3"><?php echo $center['member']['message']; ?></textarea>
+		<div class="form-group">
+			<label class="col-sm-2 control-label" for="member_message">會員中心訊息：</label>
+			<div class="col-sm-6">
+				<textarea class="form-control" name="member_message" rows="3"><?php echo $center['member']['message']; ?></textarea>
 			</div>
 		</div>
 	</fieldset>
 	<fieldset>
 		<legend>聊天室</legend>
-		<div class="control-group">
-			<label class="control-label" for="public">發言間隔：</label>
-			<div class="controls">
-				<div class="input-append">
-					<input id="public" name="public" class="input-mini" type="text" value="<?php echo $center['chat']['public']; ?>">
-					<span class="add-on">秒</span>
+		<div class="form-group">
+			<label class="col-sm-2 control-label" for="public">發言間隔：</label>
+			<div class="col-sm-6">
+				<div class="input-group" style="width:200px;">
+					<input class="form-control" name="public" type="text" value="<?php echo $center['chat']['public']; ?>">
+					<span class="input-group-addon">秒</span>
 				</div>
 			</div>
 		</div>
 	</fieldset>
 	<fieldset>
-		<legend>文件夾</legend>
-		<div class="control-group">
-			<label class="control-label" for="limitedext">允許上傳的檔案格式：</label>
-			<div class="controls">
-				<input id="limitedext" name="limitedext" class="input-xxlarge" type="text" value="<?php echo implode(",", $center['file']['limitedext']); ?>">
-			</div>
-		</div>
-		<div class="control-group">
-			<label class="control-label" for="max_files">最多檔案數量：</label>
-			<div class="controls">
-				<div class="input-append">
-					<input id="max_files" name="max_files" class="input-mini" type="text" value="<?php echo $center['file']['max_files']; ?>">
-					<span class="add-on">個</span>
+		<legend>頭貼</legend>
+		<div class="form-group">
+			<label class="col-sm-2 control-label" for="avatar_max_size">檔案大小限制：</label>
+			<div class="col-sm-6">
+				<div class="input-group" style="width:200px;">
+					<input class="form-control" name="avatar_max_size" type="text" value="<?php echo $center['avatar']['max_size']; ?>">
+					<span class="input-group-addon">KB</span>
 				</div>
 			</div>
 		</div>
-		<div class="control-group">
-			<label class="control-label" for="max_size">檔案大小限制：</label>
-			<div class="controls">
-				<div class="input-append">
-					<input id="max_size" name="max_size" class="input-mini" type="text" value="<?php echo $center['file']['max_size']; ?>">
-					<span class="add-on">KB</span>
-				</div>
+		<div class="form-group">
+			<label class="col-sm-2 control-label" for="compress">開啟壓縮：</label>
+			<div class="col-sm-6">
+				<label class="checkbox-inline">
+					<input name="compress" type="checkbox" value="1"<?php if($center['avatar']['compress']){echo ' checked="checked"';} ?>>開啟
+				</label>
 			</div>
 		</div>
-	</fieldset>
-	<fieldset>
-		<legend>頭像</legend>
-		<div class="control-group">
-			<label class="control-label" for="avatar_max_size">檔案大小限制：</label>
-			<div class="controls">
-				<div class="input-append">
-					<input id="avatar_max_size" name="avatar_max_size" class="input-mini" type="text" value="<?php echo $center['avatar']['max_size']; ?>">
-					<span class="add-on">KB</span>
-				</div>
+		<div class="form-group">
+			<label class="col-sm-2 control-label" for="quality">壓縮品質：</label>
+			<div class="col-sm-6">
+				<p class="form-control-static">
+					<span id="quality_percent" style="margin-right:5px;"><?php echo $center['avatar']['quality']; ?> %</span>
+					<input name="quality" type="range" min="0" max="100" step="1" value="<?php echo $center['avatar']['quality']; ?>" style="width:calc(90% - 60px );display:inline-block;">
+				</p>
 			</div>
-		</div>
-		<div class="control-group">
-			<label class="control-label" for="img_tiny">開啟壓縮：</label>
-			<div class="controls">
-				<input id="img_tiny" name="img_tiny" type="checkbox" value="1"<?php if($center['avatar']['img_tiny']){echo ' checked="checked"';} ?>> <label class="checkbox inline" for="img_tiny">開啟</label>
+			<div class="col-sm-4 help-block">
+				範圍1~100，越高品質越好
 			</div>
 		</div>
 	</fieldset>
 	<fieldset>
 		<legend>論壇</legend>
-		<div class="control-group">
-			<label class="control-label" for="forum_captcha">發帖驗證碼：</label>
-			<div class="controls">
-				<input id="forum_captcha" name="forum_captcha" type="checkbox" value="1"<?php if($center['forum']['captcha']){echo ' checked="checked"';} ?>> <label class="checkbox inline" for="forum_captcha">開啟</label>
+		<div class="form-group">
+			<label class="col-sm-2 control-label" for="forum_captcha">發帖驗證碼：</label>
+			<div class="col-sm-6">
+				<label class="checkbox-inline">
+					<input name="forum_captcha" type="checkbox" value="1"<?php if($center['forum']['captcha']){echo ' checked="checked"';} ?>> 開啟
+				</label>
 			</div>
 		</div>
-		<div class="control-group">
-			<label class="control-label" for="forum_limit">每頁顯示資料：</label>
-			<div class="controls">
-				<div class="input-append">
-					<input id="forum_limit" name="forum_limit" class="input-mini" type="text" value="<?php echo $center['forum']['limit']; ?>">
-					<span class="add-on">筆</span>
+		<div class="form-group">
+			<label class="col-sm-2 control-label" for="forum_limit">每頁顯示資料：</label>
+			<div class="col-sm-6">
+				<div class="input-group" style="width:200px;">
+					<input class="form-control" name="forum_limit" class="input-mini" type="text" value="<?php echo $center['forum']['limit']; ?>">
+					<span class="input-group-addon">筆</span>
 				</div>
-				<span class="help-inline">每頁所顯示的帖子/回覆數量</span>
+			</div>
+			<div class="col-sm-4 help-block">
+				每頁所顯示的帖子/回覆數量
 			</div>
 		</div>
 	</fieldset>
-	<div class="form-actions">
-		<input name="button" type="submit" id="button" class="btn btn-success" value="修改" />
+	<div class="form-group">
+		<div class="col-sm-offset-2 col-sm-6">
+			<input class="btn btn-success btn-lg" type="submit" value="修改">
+		</div>
 	</div>
 </form>
-</div>
 <?php
 $view->render();
 ?>
\ No newline at end of file
diff --git a/admin/editcss.php b/admin/editcss.php
index d1c5039..d9c3381 100644
--- a/admin/editcss.php
+++ b/admin/editcss.php
@@ -1,4 +1,36 @@
 <?php
+/*
+<Secret Center, open source member management system>
+Copyright (C) 2012-2016 Secret Center開發團隊 <http://center.gdsecret.net/#team>
+
+This program is free software: you can redistribute it and/or modify
+it under the terms of the GNU Affero General Public License as published by
+the Free Software Foundation, version 3.
+
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+GNU Affero General Public License for more details.
+
+You should have received a copy of the GNU Affero General Public License
+along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+Also add information on how to contact you by electronic and paper mail.
+
+  If your software can interact with users remotely through a computer
+network, you should also make sure that it provides a way for users to
+get its source.  For example, if your program is a web application, its
+interface could display a "Source" link that leads users to an archive
+of the code.  There are many ways you could offer source, and different
+solutions will be better for different programs; see section 13 for the
+specific requirements.
+
+  You should also get your employer (if you work as a programmer) or school,
+if any, to sign a "copyright disclaimer" for the program, if necessary.
+For more information on this, and how to apply and follow the GNU AGPL, see
+<http://www.gnu.org/licenses/>.
+*/
+
 set_include_path('../include/');
 $includepath = true;
 
@@ -11,93 +43,96 @@
 	exit;
 }
 
-if(isset($_POST['body_font_size'])){
+if(isset($_POST['body_font-size'])){
+	$_put_array=array(
+		addslashes($_POST['body_font-size']),
+		addslashes($_POST['body_background-color']),
+		addslashes($_POST['body_line-height']),
+		addslashes($_POST['main_width']),
+		addslashes($_POST['chat_color']),
+		addslashes($_POST['chat_background-color'])
+	);
+	
 	$_css='../style.css';
 	$_css_sample='../style-sample.css';
-	$put_css = vsprintf(str_replace('%;','@',file_get_contents($_css_sample)),array(
-		addslashes($_POST['body_font_size']),
-		addslashes($_POST['body_background_color']),
-		addslashes($_POST['body_line_height']),
-		addslashes($_POST['container_width'])
-	));
+	
+	$config='../include/admin/cssconfig.php';
+	$config_sample='../include/admin/cssconfig-sample.php';
+	
+	$put_css = vsprintf(str_replace('%;','@',file_get_contents($_css_sample)),$_put_array);
+	$put_config = vsprintf(file_get_contents($config_sample),$_put_array);
+	
 	file_put_contents($_css,str_replace('@','%;',$put_css));
+	file_put_contents($config,$put_config);
+	
 	$_GET['ok']=true;
 }
-
-$view = new View('../view/new_theme.html','../include/admin_nav.php',$center['site_name'],'網站樣式',true);
-$view->addScript("https://ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js");
-$view->addScript("../include/js/channel.js");
-$view->addScript("../include/js/jquery.validate.js");
+require_once('../include/admin/cssconfig.php');
+$view = new View('theme/admin_default.html','admin/nav.php','',$center['site_name'],'網站樣式',true);
 ?>
-<script type="text/javascript">
-$(function(){
-	$('#body_font_size').val(parseInt($('body').css('font-size')));
-	$('#body_background_color').val(rgb2hex($('body').css('background-color')));
-	$('#body_line_height').val(parseInt($('body').css('line-height')));
-	$('#container_width').val(Math.round(parseInt($('.container').css('width'))/parseInt($('body').css('width'))*1000)/10);
-	
-	$('#body_background_color').change($('#new_color').text($('#body_background_color').val()));
-	
-	function rgb2hex(rgb){
-		var hexDigits = ["0","1","2","3","4","5","6","7","8","9","a","b","c","d","e","f"];
-		rgb = rgb.match(/^rgb\((\d+),\s*(\d+),\s*(\d+)\)$/);
-		function hex(x) {
-			return isNaN(x) ? "00" : hexDigits[(x - x % 16) / 16] + hexDigits[x % 16];
-		}
-		return "#" + hex(rgb[1]) + hex(rgb[2]) + hex(rgb[3]);
-	}
-});
-</script>
-<div class="main">
 <?php if(isset($_GET['ok'])){?>
 	<div class="alert alert-success">修改成功！</div>
 <?php } ?>
-<h2 class="subtitle">網站樣式</h2>
+<h2 class="page-header">網站樣式</h2>
 <p>提醒您，若修改後網站樣式沒有變更，請清除瀏覽器快取後再重新整理頁面</p>
-<form id="form1" name="form1" class="form-horizontal" method="post" action="editcss.php">
+<form class="form-horizontal form-sm" method="post" action="editcss.php">
 	<fieldset>
 		<legend>主要</legend>
-		<div class="control-group">
-			<label class="control-label" for="body_font_size">字體大小：</label>
-			<div class="controls">
-				<div class="input-append">
-					<input id="body_font_size" name="body_font_size" class="input-mini" type="text" maxlength="2" required="required">
-					<span class="add-on">px</span>
+		<div class="form-group">
+			<label class="col-sm-3 control-label" for="body_font-size">字體大小：</label>
+			<div class="col-sm-3">
+				<div class="input-group">
+					<input class="form-control" name="body_font-size" type="text" value="<?php echo $center['css']['body']['font-size']; ?>" required="required">
+					<span class="input-group-addon">px</span>
 				</div>
 			</div>
 		</div>
-		<div class="control-group">
-			<label class="control-label" for="body_background_color">背景色：</label>
-			<div class="controls">
-				<input id="body_background_color" name="body_background_color" class="input-mini" type="color" required="required">
-				<span id="new_color" class="help-inline"></span>
+		<div class="form-group">
+			<label class="col-sm-3 control-label" for="body_background-color">背景顏色：</label>
+			<div class="col-sm-3">
+				<input class="form-control" name="body_background-color" type="color" value="<?php echo $center['css']['body']['background-color']; ?>" required="required">
 			</div>
 		</div>
-		<div class="control-group">
-			<label class="control-label" for="body_line_height">行距：</label>
-			<div class="controls">
-				<div class="input-append">
-					<input id="body_line_height" name="body_line_height" class="input-mini" type="text" maxlength="2" required="required">
-					<span class="add-on">px</span>
+		<div class="form-group">
+			<label class="col-sm-3 control-label" for="body_line-height">行距：</label>
+			<div class="col-sm-3">
+				<div class="input-group">
+					<input class="form-control" name="body_line-height" type="text" value="<?php echo $center['css']['body']['line-height']; ?>" required="required">
+					<span class="input-group-addon">px</span>
 				</div>
 			</div>
-				
 		</div>
-		<div class="control-group">
-			<label class="control-label" for="container_width">版面寬度：</label>
-			<div class="controls">
-				<div class="input-append">
-					<input id="container_width" name="container_width" class="input-mini" type="text" maxlength="4" required="required">
-					<span class="add-on">%</span>
+		<div class="form-group">
+			<label class="col-sm-3 control-label" for="main_width">版面寬度：</label>
+			<div class="col-sm-3">
+				<div class="input-group">
+					<input class="form-control" name="main_width" type="text" value="<?php echo $center['css']['#main']['width']; ?>" required="required">
+					<span class="input-group-addon">%</span>
 				</div>
 			</div>
 		</div>
 	</fieldset>
-	<div class="form-actions">
-		<input name="button" type="submit" id="button" class="btn btn-success" value="修改" />
+	<fieldset>
+		<legend>聊天室</legend>
+		<div class="form-group">
+			<label class="col-sm-3 control-label" for="chat_color">文字顏色：</label>
+			<div class="col-sm-3">
+				<input class="form-control" name="chat_color" type="color" value="<?php echo $center['css']['#chat .msg-panel']['color']; ?>" required="required">
+			</div>
+		</div>
+		<div class="form-group">
+			<label class="col-sm-3 control-label" for="chat_background-color">背景顏色：</label>
+			<div class="col-sm-3">
+				<input class="form-control" name="chat_background-color" type="color" value="<?php echo $center['css']['#chat .msg-panel']['background-color']; ?>" required="required">
+			</div>
+		</div>
+	</fieldset>
+	<div class="form-group">
+		<div class="col-sm-offset-3 col-sm-3">
+			<input class="btn btn-success btn-lg" type="submit" value="修改">
+		</div>
 	</div>
 </form>
-</div>
 <?php
 $view->render();
 ?>
\ No newline at end of file
diff --git a/admin/forum.php b/admin/forum.php
index 609072c..ca2b2c6 100644
--- a/admin/forum.php
+++ b/admin/forum.php
@@ -1,4 +1,36 @@
 <?php
+/*
+<Secret Center, open source member management system>
+Copyright (C) 2012-2016 Secret Center開發團隊 <http://center.gdsecret.net/#team>
+
+This program is free software: you can redistribute it and/or modify
+it under the terms of the GNU Affero General Public License as published by
+the Free Software Foundation, version 3.
+
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+GNU Affero General Public License for more details.
+
+You should have received a copy of the GNU Affero General Public License
+along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+Also add information on how to contact you by electronic and paper mail.
+
+  If your software can interact with users remotely through a computer
+network, you should also make sure that it provides a way for users to
+get its source.  For example, if your program is a web application, its
+interface could display a "Source" link that leads users to an archive
+of the code.  There are many ways you could offer source, and different
+solutions will be better for different programs; see section 13 for the
+specific requirements.
+
+  You should also get your employer (if you work as a programmer) or school,
+if any, to sign a "copyright disclaimer" for the program, if necessary.
+For more information on this, and how to apply and follow the GNU AGPL, see
+<http://www.gnu.org/licenses/>.
+*/
+
 set_include_path('../include/');
 $includepath = true;
 
@@ -12,27 +44,30 @@
 }
 
 if(isset($_POST['del']) && $_POST['del'] != ''){
-    $del_sql[] = sprintf("DELETE FROM forum WHERE id IN (%s)",implode(",",$_POST['del']));
-    $del_sql[] = sprintf("DELETE FROM forum_reply WHERE post IN (%s)",implode(",",$_POST['del']));
-    foreach($del_sql as $val){
+    $_del[] = sprintf("DELETE FROM `forum` WHERE `id` IN (%s)",implode(",",$_POST['del']));
+    $_del[] = sprintf("DELETE FROM `forum_reply` WHERE `post_id` IN (%s)",implode(",",$_POST['del']));
+    foreach($_del as $val){
 		$SQL->query($val);
 	}
 	header("Location: forum.php?del&fid=".$_GET['fid']);
 }elseif(isset($_GET['delblock']) && abs($_GET['delblock']) != ''){
-	$_post_query=$SQL->query("SELECT `id` FROM `forum` WHERE block = '%d'",array(abs($_GET['delblock'])));
-	if($_post_query->num_rows>0){
-		$_post =$_post_query->fetch_assoc();
-		$del_sql[] = sprintf("DELETE FROM forum_reply WHERE post IN (%s)",implode(",",$_post));
+	$_post=sc_get_result("SELECT `id` FROM `forum` WHERE `block` = '%d'",array(abs($_GET['delblock'])));
+	if($_post['num_rows']>0){
+		do{
+			$_list[]=$_post['row']['id'];
+		}while($_post['row']=$_post['query']->fetch_assoc());
+		
+		$_del[] = sprintf("DELETE FROM `forum_reply` WHERE `post_id` IN (%s)",implode(",",$_list));
 	}
-	$del_sql[] = sprintf("DELETE FROM forum_block WHERE id =%d",abs($_GET['delblock']));
-    $del_sql[] = sprintf("DELETE FROM forum WHERE block = %d",abs($_GET['delblock']));
-    foreach($del_sql as $val){
+	$_del[] = sprintf("DELETE FROM `forum_block` WHERE `id` =%d",abs($_GET['delblock']));
+    $_del[] = sprintf("DELETE FROM `forum` WHERE `block` = %d",abs($_GET['delblock']));
+    foreach($_del as $val){
 		$SQL->query($val);
 	}
 	header("Location: forum.php?del");
 }elseif(isset($_GET['newblock'])&&sc_namefilter($_POST['blockname'])!=''){
 
-	sc_add_forum_block(sc_namefilter($_POST['blockname']),1);
+	sc_add_forum_block(sc_namefilter($_POST['blockname']));
 	
 }elseif(isset($_GET['edit']) &&abs($_GET['edit'])!='' && isset($_POST['blockname'])&&isset($_POST['position'])){
 	$SQL->query("UPDATE `forum_block` SET `blockname` = '%s',`position` = '%d' WHERE `id` = '%d'",array(sc_namefilter($_POST['blockname']),abs(intval($_POST['position'])),abs($_GET['edit'])));
@@ -40,200 +75,198 @@
 }
 
 
-
 if(isset($_GET['fid'])){
-	if($SQL->query("SELECT * FROM `forum_block` WHERE `id`='%d'",array(abs(intval($_GET['fid']))))->num_rows<1){
+	$_block = sc_get_result("SELECT * FROM `forum_block` WHERE `id`='%d'",array(abs(intval($_GET['fid']))));
+	
+	if($_block['num_rows']<1){
 		header("Location: forum.php");
 	}
+	
 	$limit_row=$center['forum']['limit'];
+	
 	if(isset($_GET['page'])){
 		$limit_start = abs(intval(($_GET['page']-1)*$limit_row));
-		$post_sql = sprintf("SELECT * FROM `forum` WHERE `block`='%d' ORDER BY `ptime` DESC LIMIT %d,%d",abs(intval($_GET['fid'])),$limit_start,$limit_row);
+		$_forum = sc_get_result("SELECT * FROM `forum` WHERE `block`='%d' ORDER BY `mktime` DESC LIMIT %d,%d",array($_block['row']['id'],$limit_start,$limit_row));
 	} else {
 		$limit_start=0;
-		$post_sql = sprintf("SELECT * FROM `forum` WHERE `block`='%d' ORDER BY `ptime` DESC LIMIT %d,%d",abs(intval($_GET['fid'])),$limit_start,$limit_row);
+		$_forum = sc_get_result("SELECT * FROM `forum` WHERE `block`='%d' ORDER BY `mktime` DESC LIMIT %d,%d",array($_block['row']['id'],$limit_start,$limit_row));
 	}
-	$_block = $SQL->query("SELECT * FROM `forum_block` WHERE `id`='%d'",array(abs(intval($_GET['fid']))))->fetch_assoc();
 }else{
-	$post_sql = sprintf("SELECT * FROM `forum_block` ORDER BY `position` ASC");
+	$_forum = sc_get_result("SELECT * FROM `forum_block` ORDER BY `position` ASC");
 }
 
-$post = $SQL->query($post_sql);
-$post_row = $post->fetch_assoc();
-$post_num_rows = $post->num_rows;
-
-$view = new View('../view/new_theme.html','../include/admin_nav.php',$center['site_name'],'論壇管理',true);
-$view->addScript("https://ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js");
-$view->addScript("../include/js/channel.js");
+$view = new View('theme/admin_default.html','admin/nav.php','',$center['site_name'],'論壇管理',true);
 ?>
-<div class="main">
-<?php if(isset($_GET['del'])){?>
+<?php if(isset($_GET['del'])){ ?>
 	<div class="alert alert-success">刪除成功！</div>
 <?php } ?>
 <?php if(isset($_GET['fid'])){ ?>
 <ul class="breadcrumb">
-	<li><a href="forum.php">論壇</a><span class="divider">/</span></li>
-	<li class="active"><a href="forum.php?fid=<?php echo $_block['id']; ?>"><?php echo $_block['blockname']; ?></a></li>
+	<li><a href="forum.php">論壇</a></li>
+	<li class="active"><a href="forum.php?fid=<?php echo $_block['row']['id']; ?>"><?php echo $_block['row']['blockname']; ?></a></li>
 </ul>
-<h2><?php echo $_block['blockname']; ?></h2>
-<?php
-if($post_num_rows == 0){
-?>
-<div class="alert alert-error">沒有帖子！</div>
-<?php
-}else{
-?>
-<form id="form1" name="form1" action="forum.php?fid=<?php echo abs($_GET['fid']); ?>" method="POST">
-	<table class="table table-striped table-hover">
-		<thead>
-			<tr>
-				<th>
-					<input type="button" name="button" class="btn btn-danger" value="刪除" onClick="if(window.confirm('確定刪除所選取的帖子？\n\n提醒您，該帖子的回覆也會一並刪除！')){document.getElementById('form1').submit();}">
-				</th>
-				<th>帖子</th>
-				<th>作者/發表時間</th>
-				<th>回覆</th>
-				<th>最後回覆</th>
-			</tr>
-		</thead>
-		<tbody>
-			<?php do{
-				$_post_reply_query = $SQL->query("SELECT * FROM `forum_reply` WHERE `post`='%d' ORDER BY `ptime` DESC",array($post_row['id']));
-				$_post_reply_row=$_post_reply_query->fetch_assoc();
-				$_post_reply_num_rows = $_post_reply_query->num_rows;
-			?>
-			<tr>
-				<td><input name="del[]" type="checkbox" id="del[]" value="<?php echo $post_row['id']; ?>" /></td>
-				<td>
-					<a href="forumview.php?id=<?php echo $post_row['id']; ?>">
-					<?php echo $post_row['post_title']; ?>
-					</a>
-					<?php if($post_row['level']>1){ ?>
-					&nbsp;&nbsp;
-					<span class="label"><?php echo sc_member_level($post_row['level']); ?></span>
-					<?php } ?>
-				</td>
-				<td style="line-height:0.8em;font-size:92%;">
-					<?php echo $post_row['posted']; ?>
-					<br><span style="font-size:66%;"><?php echo date('Y-m-d H:i',strtotime($post_row['ptime'])); ?></span>
-				</td>
-				<td>
-					<?php echo $_post_reply_num_rows; ?>
-				</td>
-				<td>
-					<?php
-						if($_post_reply_num_rows>0){
-							
-							echo '<div style="line-height:0.8em;font-size:92%;">'.$_post_reply_row['posted'].'<br><span style="font-size:66%;">'.date('Y-m-d H:i',strtotime($_post_reply_row['ptime'])).'</span></div>';
-						}else{
-							echo '無';
-						}
-					?>
-					
-				</td>
-			</tr>
-			<?php }while ($post_row = $post->fetch_assoc()); ?>
-		</tbody>
-	</table>
-<?php
-$nav_num_rows = $SQL->query("SELECT * FROM forum WHERE block = '%d'",array($_block['id']))->num_rows;
-
-$pageTotal=ceil($nav_num_rows / $limit_row);
-
-if($pageTotal > 1){
-	echo '<div class="pagination"><ul>';
-	for($i=1;$i<=$pageTotal;$i++){
-		if(@$_GET['page'] != $i){
-				echo '<li><a href="forum.php?page='.$i.'&fid='.$_block['id'].'">'.$i.'</a></li>';
-			}else{
-				echo '<li class="active"><a href="#">'.$i.'</a></li>';
+<h2 class="page-header"><?php echo $_block['row']['blockname']; ?></h2>
+<?php if($_forum['num_rows'] == 0){ ?>
+<div class="alert alert-danger">沒有帖子！</div>
+<?php }else{ ?>
+<script>
+$(function(){
+	$('input.btn.btn-danger').click(function(e){
+		if(!window.confirm("確定刪除所選取的帖子？\n\n提醒您，該帖子的回覆也會一並刪除！")){
+			e.preventDefault();
 		}
-	}
-	echo '</ul></div><br class="clearfix" />';
-}}
-?>
+	});
+});
+</script>
+<form action="forum.php?fid=<?php echo abs($_GET['fid']); ?>" method="POST">
+<table class="table table-striped table-hover">
+	<thead>
+		<tr>
+			<th width="30"><input class="btn btn-danger btn-sm" type="submit" value="刪除"></th>
+			<th>帖子</th>
+			<th>作者/發表時間</th>
+			<th>回覆</th>
+			<th>最後回覆</th>
+			<th></th>
+		</tr>
+	</thead>
+	<tbody>
+		<?php do{
+			$_reply = sc_get_result("SELECT * FROM `forum_reply` WHERE `post_id`='%d' ORDER BY `mktime` DESC",array($_forum['row']['id']));
+			$_author = sc_get_result("SELECT `username` FROM `member` WHERE `id` = '%d'",array($_forum['row']['author']));
+			$_reply_author = sc_get_result("SELECT `username` FROM `member` WHERE `id` = '%d'",array($_reply['row']['author']));
+		?>
+		<tr>
+			<td><input name="del[]" type="checkbox" value="<?php echo $_forum['row']['id']; ?>" /></td>
+			<td>
+				<a href="forumview.php?id=<?php echo $_forum['row']['id']; ?>">
+					<?php echo $_forum['row']['title']; ?>
+				</a>
+				<?php if($_forum['row']['level']>1){ ?>
+				&nbsp;&nbsp;
+				<span class="label label-default"><?php echo sc_member_level($_forum['row']['level']); ?></span>
+				<?php } ?>
+			</td>
+			<td style="line-height:0.8em;font-size:92%;">
+				<?php echo $_author['row']['username']; ?>
+				<br><span style="font-size:66%;"><?php echo date('Y-m-d H:i',strtotime($_forum['row']['mktime'])); ?></span>
+			</td>
+			<td>
+				<?php echo $_reply['num_rows']; ?>
+			</td>
+			<td>
+				<?php
+					if($_reply['num_rows']>0){
+						echo '<div style="line-height:0.8em;font-size:92%;">'.$_reply_author['row']['username'].'<br><span style="font-size:66%;">'.date('Y-m-d H:i',strtotime($_reply['row']['mktime'])).'</span></div>';
+					}else{
+						echo '無';
+					}
+				?>
+				
+			</td>
+		</tr>
+		<?php }while ($_forum['row'] = $_forum['query']->fetch_assoc()); ?>
+	</tbody>
+</table>
 </form>
+<?php
+	$_all_forum=sc_get_result("SELECT COUNT(*) FROM `forum` WHERE `block`='%d'",array($_block['row']['id']));
+	echo sc_page_pagination('forum.php',@$_GET['page'],implode('',$_all_forum['row']),$center['forum']['limit'],'&fid='.$_block['row']['id']);
+}
+?>
 <?php
 }elseif(isset($_GET['edit'])&& abs($_GET['edit']) != ''){
-	if($SQL->query("SELECT * FROM `forum_block` WHERE `id`='%d'",array(abs(intval($_GET['edit']))))->num_rows<1){
+	$_block=sc_get_result("SELECT * FROM `forum_block` WHERE `id`='%d'",array(abs(intval($_GET['edit']))));
+	if($_block['num_rows']<1){
 		die;
 	}
-	$_block=$SQL->query("SELECT * FROM `forum_block` WHERE `id`='%d'",array(abs(intval($_GET['edit']))))->fetch_assoc();
 ?>
-<h2>編輯</h2>
-<form id="form1" name="form1" action="forum.php?edit=<?php echo $_block['id']; ?>" method="POST" class="form-horizontal">
-	<div class="control-group">
-			<label class="control-label" for="blockname">區塊名稱：</label>
-			<div class="controls">
-				<input id="blockname" class="input-xlarge" name="blockname" type="text" value="<?php echo $_block['blockname']; ?>">
+<h2 class="page-header">區塊編輯</h2>
+<form class="form-horizontal form-sm" action="forum.php?edit=<?php echo $_block['row']['id']; ?>" method="POST">
+	<div class="form-group">
+			<label class="col-sm-3 control-label" for="blockname">區塊名稱：</label>
+			<div class="col-sm-7">
+				<input class="form-control" name="blockname" type="text" value="<?php echo $_block['row']['blockname']; ?>" required="required">
 			</div>
 		</div>
-	<div class="control-group">
-		<label class="control-label" for="position">區塊位置：</label>
-		<div class="controls">
-			<input id="position" class="input-mini" name="position" type="text" value="<?php echo $_block['position']; ?>">
-			<span class="help-inline">越低排序越上面，預設為 1</span>
+	<div class="form-group">
+		<label class="col-sm-3 control-label" for="position">區塊位置：</label>
+		<div class="col-sm-3">
+			<input class="form-control" name="position" type="text" value="<?php echo $_block['row']['position']; ?>">
+		</div>
+		<div class="col-sm-6 help-block">
+			越低排序越上面，預設為 0
 		</div>
 	</div>
-	<div class="control-group">
-		<div class="form-actions">
+	<div class="form-group">
+		<div class="col-sm-offset-3 col-sm-6">
 			<input type="submit" class="btn btn-success" value="確認修改" />
-			<a class="btn" href="forum.php">取消</a>
+			<a class="btn btn-default" href="forum.php">取消</a>
 		</div>
 	</div>
 </form>
 <?php }else{ ?>
-<h2>論壇管理</h2>
-<form id="newblock" name="newblock" class="form-inline" action="forum.php?newblock" method="POST">
-	<div class="input-append">
-		<input name="blockname" type="text" class="input-xlarge" placeholder="區塊名稱" required="required">
-		<input type="submit" class="btn btn-success" value="新增區塊">
+<h2 class="page-header">論壇</h2>
+<?php if($_forum['num_rows'] == 0){ ?>
+<div class="alert alert-danger">沒有區塊！</div>
+<?php }else{ ?>
+<script>
+$(function(){
+	$('a.btn.btn-danger').click(function(e){
+		if(!window.confirm("確定刪除所選取的區域？\n\n提醒您，該區塊的帖子也會一並刪除！")){
+			e.preventDefault();
+		}
+	});
+});
+</script>
+<form class="form-inline" method="POST" action="forum.php?newblock">
+	<div class="input-group">
+		<input class="form-control" name="blockname" type="text" placeholder="區塊名稱" required="required">
+		<span class="input-group-btn">
+			<input type="submit" class="btn btn-success" value="新增區塊">
+		</span>
 	</div>
 </form>
-	<table class="table table-striped">
-		<thead>
-			<tr>
-				<th>區塊</th>
-				<th>位置</th>
-				<th>帖數</th>
-				<th>最後發帖</th>
-			</tr>
-		</thead>
-		<tbody>
-			<?php do{
-				$_block_post_query = $SQL->query("SELECT * FROM `forum` WHERE `block`='%d' ORDER BY `ptime` DESC",array($post_row['id']));
-				$_block_post_row=$_block_post_query->fetch_assoc();
-				$_block_post_num_rows = $_block_post_query->num_rows;
-			?>
-			<tr>
-				<td>
-					<a href="forum.php?fid=<?php echo $post_row['id']; ?>">
-					<?php echo $post_row['blockname']; ?>
-					</a>
-				</td>
-				<td><?php echo $post_row['position']; ?></td>
-				<td><?php echo $_block_post_num_rows; ?></td>
-				<td>
-					<?php
-					if($_block_post_num_rows>0){
-						echo date('Y-m-d H:i',strtotime($_block_post_row['ptime']));
-					}else{
-						echo '無';
-					}?>
-				</td>
-				<td>
-					&nbsp;<a class="btn btn-info" href="forum.php?edit=<?php echo $post_row['id']; ?>">編輯</a>
-					<?php if($post_num_rows>1){ ?>
-					<a class="btn btn-danger" href="javascript:if(window.confirm('確定刪除所選取的區域？\n\n提醒您，該區域的帖子也會一並刪除！')){document.location.href='forum.php?delblock=<?php echo $post_row['id']; ?>'}">刪除</a>
-					<?php } ?>
-					
-				</td>
-			</tr>
-			<?php }while($post_row = $post->fetch_assoc()); ?>
-		</tbody>
-    </table>
+<table class="table table-striped">
+	<thead>
+		<tr>
+			<th>區塊</th>
+			<th>位置</th>
+			<th>帖數</th>
+			<th>最後發帖</th>
+			<th></th>
+		</tr>
+	</thead>
+	<tbody>
+		<?php do{
+			$_block_post = sc_get_result("SELECT * FROM `forum` WHERE `block`='%d' ORDER BY `mktime` DESC",array($_forum['row']['id']));
+		?>
+		<tr>
+			<td>
+				<a href="forum.php?fid=<?php echo $_forum['row']['id']; ?>">
+				<?php echo $_forum['row']['blockname']; ?>
+				</a>
+			</td>
+			<td><?php echo $_forum['row']['position']; ?></td>
+			<td><?php echo $_block_post['num_rows']; ?></td>
+			<td>
+				<?php
+				if($_block_post['num_rows']>0){
+					echo date('Y-m-d H:i',strtotime($_block_post['row']['mktime']));
+				}else{
+					echo '無';
+				}?>
+			</td>
+			<td>
+				<a class="btn btn-info" href="forum.php?edit=<?php echo $_forum['row']['id']; ?>">編輯</a>
+				<a class="btn btn-danger" href="forum.php?delblock=<?php echo $_forum['row']['id']; ?>">刪除</a>
+			</td>
+		</tr>
+		<?php }while($_forum['row'] = $_forum['query']->fetch_assoc()); ?>
+	</tbody>
+</table>
+<?php } ?>
 <?php } ?>
-</div>
 <?php
 $view->render();
 ?>
\ No newline at end of file
diff --git a/admin/forumedit.php b/admin/forumedit.php
index 333d59f..39bf496 100644
--- a/admin/forumedit.php
+++ b/admin/forumedit.php
@@ -1,4 +1,36 @@
 <?php
+/*
+<Secret Center, open source member management system>
+Copyright (C) 2012-2016 Secret Center開發團隊 <http://center.gdsecret.net/#team>
+
+This program is free software: you can redistribute it and/or modify
+it under the terms of the GNU Affero General Public License as published by
+the Free Software Foundation, version 3.
+
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+GNU Affero General Public License for more details.
+
+You should have received a copy of the GNU Affero General Public License
+along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+Also add information on how to contact you by electronic and paper mail.
+
+  If your software can interact with users remotely through a computer
+network, you should also make sure that it provides a way for users to
+get its source.  For example, if your program is a web application, its
+interface could display a "Source" link that leads users to an archive
+of the code.  There are many ways you could offer source, and different
+solutions will be better for different programs; see section 13 for the
+specific requirements.
+
+  You should also get your employer (if you work as a programmer) or school,
+if any, to sign a "copyright disclaimer" for the program, if necessary.
+For more information on this, and how to apply and follow the GNU AGPL, see
+<http://www.gnu.org/licenses/>.
+*/
+
 set_include_path('../include/');
 $includepath = true;
 
@@ -11,8 +43,8 @@
     exit;
 }
 
-if(!isset($_GET['id']) || $_GET['id'] == ''){
-	header("Location: forum.php");
+if((!isset($_GET['id']))or($_GET['id']=='')){
+    header("Location: forum.php");
 	exit;
 }
 
@@ -22,33 +54,30 @@
 		exit;
 	}
 	
-	$post = $SQL->query("SELECT * FROM forum WHERE id = '%d'",array($_GET['id']));
-	$post_row = $post->fetch_assoc();
-	$post_num_rows = $post->num_rows;
+	$_post = sc_get_result("SELECT * FROM `forum` WHERE `id` = '%d'",array($_GET['id']));
 
-	$_block_query=$SQL->query("SELECT * FROM `forum_block` ORDER BY `position` ASC");
-	$_block =$_block_query->fetch_assoc();
+	$_block = sc_get_result("SELECT * FROM `forum_block` ORDER BY `position` ASC");
 	
-	if($post_num_rows<=0){
+	if($_post['num_rows']<=0){
 		header("Location: forum.php");
 		exit;
 	}
 	
-	if(isset($_POST['title']) && isset($_POST['post']) && trim(htmlspecialchars($_POST['title'])) != '' && trim(strip_tags($_POST['post']),"&nbsp;") != '') {
+	if(isset($_POST['title']) && isset($_POST['content']) && trim(htmlspecialchars($_POST['title'])) != '' && trim(strip_tags($_POST['content']),"&nbsp;") != '') {
 		
-		$_block_auth = $SQL->query("SELECT * FROM `forum_block` WHERE id = '%d'",array(abs($_POST['block'])))->num_rows;
-		if($_block_auth<0){
+		$_block_auth = $SQL->query("SELECT * FROM `forum_block` WHERE `id` = '%d'",array(abs($_POST['block'])))->num_rows;
+		if($_block_auth<=0){
 			die;
 		}
 		
-		$SQL->query("UPDATE forum SET `post_title` = '%s', `post` = '%s',`block`='%d',`level`='%d' WHERE `id` = '%d'",array(
+		$SQL->query("UPDATE `forum` SET `title` = '%s', `content` = '%s',`block`='%d',`level`='%d' WHERE `id` = '%d'",array(
 			htmlspecialchars($_POST['title']),
-			sc_xss_filter($_POST['post']),
+			sc_xss_filter($_POST['content']),
 			abs($_POST['block']),
 			abs($_POST['level']),
 			$_GET['id']
 		));
-		header("Location: forumview.php?editok&id=".$post_row['id']);
+		header("Location: forumview.php?editok&id=".$_post['row']['id']);
 	}
 	
 }elseif(isset($_GET['reply'])) {
@@ -57,21 +86,19 @@
 		exit;
 	}
 	
-	$reply = $SQL->query("SELECT * FROM `forum_reply` WHERE `id` = '%d'",array($_GET['id']));
-	$reply_row = $reply->fetch_assoc();
-	$reply_num_rows = $reply->num_rows;
+	$_reply = sc_get_result("SELECT * FROM `forum_reply` WHERE `id` = '%d'",array($_GET['id']));
 
-	if($reply_num_rows<=0){
+	if($_reply['num_rows']<=0){
 		header("Location: forum.php");
 		exit;
 	}
 	
-	if(isset($_POST['reply']) && trim(strip_tags($_POST['reply']),"&nbsp;") != '') {
-	$SQL->query("UPDATE `forum_reply` SET `reply` = '%s' WHERE `id` = '%d'",array(
-		sc_xss_filter($_POST['reply']),
-		$_GET['id']
-	));
-	header("Location: forumview.php?id=".$reply_row['post']);
+	if(isset($_POST['content']) && trim(strip_tags($_POST['content']),"&nbsp;") != '') {
+		$SQL->query("UPDATE `forum_reply` SET `content` = '%s' WHERE `id` = '%d'",array(
+			sc_xss_filter($_POST['content']),
+			$_GET['id']
+		));
+		header("Location: forumview.php?editok&id=".$_reply['row']['post_id']);
 	}
 	
 }else{
@@ -79,80 +106,63 @@
 	exit;
 }
 
-
-$view = new View('../view/new_theme.html','../include/admin_nav.php',$center['site_name'],'論壇編輯',true);
+$view = new View('theme/admin_default.html','admin/nav.php','',$center['site_name'],'論壇編輯',true);
 $view->addCSS("../include/js/cleditor/jquery.cleditor.css");
-$view->addScript("https://ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js");
-$view->addScript("../include/js/cleditor/jquery.cleditor.js");
-$view->addScript("../include/js/cleditor/jquery.cleditor.icon.js");
+$view->addScript("../include/js/cleditor/jquery.cleditor.min.js");
 $view->addScript("../include/js/cleditor/jquery.cleditor.table.js");
-$view->addScript("../include/js/cleditor/jquery.cleditor.serverImg.js");
-$view->addScript("../include/js/jquery.validate.js");
-$view->addScript("../include/js/channel.js");
 ?>
-<div class="main">
-<?php if(isset($_GET['reply'])){ ?>
-<script type="text/javascript">
+<script>
 $(function(){
-	$("#reply").cleditor({width:'99%', height:300, useCSS:true})[0].focus();
-	$("#form1").validate({
-		rules:{
-			reply:{required:true}
-		}
-	});
+	$("#cleditor").cleditor({width:'99%', height:300, useCSS:true})[0].focus();
 });
 </script>
+<?php if(isset($_GET['reply'])){ ?>
 <h2>編輯回覆</h2>
-<form action="forumedit.php?reply&id=<?php echo $_GET['id']; ?>" method="POST" name="form1">
-	<div class="controls">
-		<label for="reply">回覆內容：</label>
-	</div>
-	<div style="margin:auto;">
-		<textarea name="reply" cols="65" rows="10" id="reply" required="required"><?php echo removal_escape_string($reply_row['reply']); ?></textarea>
+<form action="forumedit.php?reply&id=<?php echo $_reply['row']['id']; ?>" method="POST">
+	<div class="form-group">
+		<label for="content">回覆內容：</label>
+		<textarea id="cleditor" class="form-control" name="content" cols="65" rows="10" required="required"><?php echo sc_removal_escape_string($_reply['row']['content']); ?></textarea>
 	</div>
-	<p><input type="submit" name="button" class="btn btn-primary" value="編輯回覆" /></p>
+	<p><input name="button" class="btn btn-primary" type="submit" value="儲存"></p>
 </form>
 <?php } elseif(isset($_GET['post'])){ ?>
-<script type="text/javascript">
-$(function(){
-    $("#cleditor").cleditor({width:'99%', height:350, useCSS:true})[0].focus();
-	$("#form1").validate({
-		rules:{
-			title:{required:true},
-			post:{required:true}
-		}
-	});
-});
-</script>
 <h2>編輯帖子</h2>
-<form action="forumedit.php?post&id=<?php echo $_GET['id']; ?>" method="POST" name="form1">
-	<input name="title" class="input-block-level" type="text" value="<?php echo $post_row['post_title']; ?>" required="required" placeholder="標題">
-	<div class="controls controls-row">
-		<div class="span6">
-			<label class="control-label" for="block">區塊：</label>
-			<select class="input-xlarge" name="block" required="required">
-			<?php do{ ?>
-				<option value="<?php echo $_block['id']; ?>" <?php if($_block['id']==$post_row['block']){ ?>selected="selected"<?php } ?>>
-					<?php echo $_block['blockname']; ?>
-				</option>
-			<?php }while ($_block =  $_block_query->fetch_assoc()); ?>
-			</select>
+<form action="forumedit.php?post&id=<?php echo $_post['row']['id']; ?>" method="POST">
+	<div class="form-group">
+		<input class="form-control" name="title" type="text" placeholder="標題" required="required" value="<?php echo $_post['row']['title']; ?>">
+	</div>
+	<div class="row">
+		<div class="col-md-6">
+			<div class="form-group">
+				<label for="block">區塊：</label>
+				<select class="form-control" name="block" required="required">
+				<?php do{ ?>
+					<option value="<?php echo $_block['row']['id']; ?>" <?php if($_block['row']['id']==$_post['row']['block']){ ?>selected="selected"<?php } ?>>
+						<?php echo $_block['row']['blockname']; ?>
+					</option>
+				<?php }while ($_block['row'] = $_block['query']->fetch_assoc());  ?>
+				</select>
+			</div>
 		</div>
-		<div class="span6">
-			<label for="level">權限：</label>
-			<select name="level" id="level" class="input-xlarge">
-			<?php foreach(sc_member_level_array() as $key=>$value){if($key>0){ ?>
-				<option value="<?php echo $key; ?>" <?php if($key==$post_row['level']){ ?>selected="selected"<?php } ?>><?php echo $value; ?></option>
-			<?php }} ?>
-			</select>
+		<div class="col-md-6">
+			<div class="form-group">
+				<label for="level">權限：</label>
+				<select class="form-control" name="level" required="required">
+				<?php foreach(sc_member_level_array() as $key=>$value){if($key>0){ ?>
+					<option value="<?php echo $key; ?>" <?php if($key==$_post['row']['level']){ ?>selected="selected"<?php } ?>><?php echo $value; ?></option>
+				<?php }} ?>
+				</select>
+			</div>
 		</div>
 	</div>
-	<textarea id="cleditor" name="post" class="input-block-level" rows="10"><?php echo htmlspecialchars(removal_escape_string($post_row['post'])); ?></textarea>
+	<div class="form-group">
+		<textarea id="cleditor" name="content" rows="10" required="required">
+			<?php echo $_post['row']['content']; ?>
+		</textarea>
 	</div>
-	<p><input type="submit" name="button" class="btn btn-primary" value="編輯帖子" /></p>
+	<br><input name="button" class="btn btn-primary" type="submit" value="儲存">
 </form>
 <?php } ?>
-</div>
 <?php
 $view->render();
 ?>
\ No newline at end of file
diff --git a/admin/forummerge.php b/admin/forummerge.php
index 59db0be..5f196a7 100644
--- a/admin/forummerge.php
+++ b/admin/forummerge.php
@@ -1,4 +1,36 @@
 <?php
+/*
+<Secret Center, open source member management system>
+Copyright (C) 2012-2016 Secret Center開發團隊 <http://center.gdsecret.net/#team>
+
+This program is free software: you can redistribute it and/or modify
+it under the terms of the GNU Affero General Public License as published by
+the Free Software Foundation, version 3.
+
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+GNU Affero General Public License for more details.
+
+You should have received a copy of the GNU Affero General Public License
+along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+Also add information on how to contact you by electronic and paper mail.
+
+  If your software can interact with users remotely through a computer
+network, you should also make sure that it provides a way for users to
+get its source.  For example, if your program is a web application, its
+interface could display a "Source" link that leads users to an archive
+of the code.  There are many ways you could offer source, and different
+solutions will be better for different programs; see section 13 for the
+specific requirements.
+
+  You should also get your employer (if you work as a programmer) or school,
+if any, to sign a "copyright disclaimer" for the program, if necessary.
+For more information on this, and how to apply and follow the GNU AGPL, see
+<http://www.gnu.org/licenses/>.
+*/
+
 set_include_path('../include/');
 $includepath = true;
 
@@ -11,48 +43,41 @@
     exit;
 }
 
-$view = new View('../view/new_theme.html','../include/admin_nav.php',$center['site_name'],'區塊合併',true);
-$view->addScript("https://ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js");
-$view->addScript("../include/js/channel.js");
-
-
 if((isset($_POST['merge'])&&isset($_POST['block']))&&(abs($_POST['merge'])!=abs($_POST['block']))){
 	$SQL->query("UPDATE `forum` SET `block` = '%d' WHERE  `block` = '%d'",array(abs($_POST['block']),abs($_POST['merge'])));
-	$SQL->query("DELETE FROM forum_block WHERE id =%d",array(abs($_POST['merge'])));
+	$SQL->query("DELETE FROM `forum_block` WHERE `id` ='%d'",array(abs($_POST['merge'])));
 }
 
 
-$_block_query=$SQL->query("SELECT * FROM `forum_block` ORDER BY `position` ASC");
-$_block =$_block_query->fetch_assoc();
+$_block=sc_get_result("SELECT * FROM `forum_block` ORDER BY `position` ASC");
 
+$view = new View('theme/admin_default.html','admin/nav.php','',$center['site_name'],'區塊合併',true);
 ?>
-<div class="main">
-<h2>區塊合併</h2>
-<form action="forummerge.php" method="POST" name="form1">
-		<p>轉移舊區塊的所有帖子，並同時刪除舊區塊</p>
-		<div class="controls">
+<h2 class="page-header">區塊合併</h2>
+<p>轉移舊區塊的所有帖子，並同時刪除舊區塊</p>
+<form class="form-xs" action="forummerge.php" method="POST">
+		<div class="form-group">
 			將舊區塊
-			<select class="input-large" name="merge" required="required">
+			<select class="form-control" name="merge" required="required">
 			<?php do{ ?>
-				<option value="<?php echo $_block['id']; ?>"><?php echo $_block['blockname']; ?></option>
-			<?php }while ($_block =  $_block_query->fetch_assoc());  ?>
+				<option value="<?php echo $_block['row']['id']; ?>"><?php echo $_block['row']['blockname']; ?></option>
+			<?php }while ($_block['row'] = $_block['query']->fetch_assoc());  ?>
 			</select>
 		</div>
-		<div class="controls">
+		<div class="form-group">
 			合併到&nbsp;
-			<select class="input-large" name="block" required="required">
+			<select class="form-control" name="block" required="required">
 			<?php
-			$_block_query->data_seek(0);
-			while ($_block =  $_block_query->fetch_assoc()){
+			$_block['query']->data_seek(0);
+			while ($_block['row'] = $_block['query']->fetch_assoc()){
 			?>
-				<option value="<?php echo $_block['id']; ?>"><?php echo $_block['blockname']; ?></option>
+				<option value="<?php echo $_block['row']['id']; ?>"><?php echo $_block['row']['blockname']; ?></option>
 			<?php } ?>
 			</select>
 		</div>
 		
-	<input type="submit" name="button" class="btn btn-warning btn-large" value="區塊合併" />
+	<input type="submit" class="btn btn-warning" value="區塊合併">
 </form>
-</div>
 <?php
 $view->render();
 ?>
\ No newline at end of file
diff --git a/admin/forumsearch.php b/admin/forumsearch.php
index a49c78d..09df3c8 100644
--- a/admin/forumsearch.php
+++ b/admin/forumsearch.php
@@ -1,4 +1,36 @@
 <?php
+/*
+<Secret Center, open source member management system>
+Copyright (C) 2012-2016 Secret Center開發團隊 <http://center.gdsecret.net/#team>
+
+This program is free software: you can redistribute it and/or modify
+it under the terms of the GNU Affero General Public License as published by
+the Free Software Foundation, version 3.
+
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+GNU Affero General Public License for more details.
+
+You should have received a copy of the GNU Affero General Public License
+along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+Also add information on how to contact you by electronic and paper mail.
+
+  If your software can interact with users remotely through a computer
+network, you should also make sure that it provides a way for users to
+get its source.  For example, if your program is a web application, its
+interface could display a "Source" link that leads users to an archive
+of the code.  There are many ways you could offer source, and different
+solutions will be better for different programs; see section 13 for the
+specific requirements.
+
+  You should also get your employer (if you work as a programmer) or school,
+if any, to sign a "copyright disclaimer" for the program, if necessary.
+For more information on this, and how to apply and follow the GNU AGPL, see
+<http://www.gnu.org/licenses/>.
+*/
+
 set_include_path('../include/');
 $includepath = true;
 
@@ -11,11 +43,7 @@
     exit;
 }
 
-$view = new View('../view/new_theme.html','../include/admin_nav.php',$center['site_name'],'論壇搜尋',true);
-$view->addScript("https://ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js");
-$view->addScript("../include/js/channel.js");
-
-if(isset($_GET['q'])&&trim($_GET['q'])!=''&&isset($_GET['level'])&&isset($_GET['ptime'])&&isset($_GET['posted'])&&isset($_GET['block'])){
+if(isset($_GET['q'])&&trim($_GET['q'])!=''&&isset($_GET['level'])&&isset($_GET['mktime'])&&isset($_GET['author'])&&isset($_GET['block'])){
 	if(is_numeric($_GET['level'])){
 		$_level= sprintf("AND `level` = '%d'",abs($_GET['level']));
  	}else{
@@ -26,77 +54,75 @@
  	}else{
 		$_block='';
 	}
-	$GET_ptime['0']=strtotime($_GET['ptime']['0']);
-	$GET_ptime['1']=strtotime($_GET['ptime']['1']);
-	if($GET_ptime['0']>0&&$GET_ptime['1']>0){
-		$_ptime=sprintf(" AND `ptime` BETWEEN '%s' AND '%s'",
-					date('Y-m-d H:i:s',$GET_ptime['0']),
-					date('Y-m-d H:i:s',$GET_ptime['1']));
-	}elseif($GET_ptime['0']>0){
-		$_ptime=sprintf(" AND `ptime` > '%s'",
-					date('Y-m-d H:i:s',$GET_ptime['0']));
-	}elseif($GET_ptime['1']>0){
-		$_ptime=sprintf(" AND `ptime` < '%s'",
-					date('Y-m-d H:i:s',$GET_ptime['1']));
+	$GET_mktime['0']=strtotime($_GET['mktime']['0']);
+	$GET_mktime['1']=strtotime($_GET['mktime']['1']);
+	if($GET_mktime['0']>0&&$GET_mktime['1']>0){
+		$_mktime=sprintf(" AND `mktime` BETWEEN '%s' AND '%s'",
+					date('Y-m-d H:i:s',$GET_mktime['0']),
+					date('Y-m-d H:i:s',$GET_mktime['1']));
+	}elseif($GET_mktime['0']>0){
+		$_mktime=sprintf(" AND `mktime` > '%s'",
+					date('Y-m-d H:i:s',$GET_mktime['0']));
+	}elseif($GET_mktime['1']>0){
+		$_mktime=sprintf(" AND `mktime` < '%s'",
+					date('Y-m-d H:i:s',$GET_mktime['1']));
 	}
 	else{
-		$_ptime='';
+		$_mktime='';
 	}
 	$limit_row=$center['forum']['limit'];
 	if(isset($_GET['page'])){
 		$limit_start = abs(intval(($_GET['page']-1)*$limit_row));
-		$post=$SQL->query("SELECT * FROM `forum` WHERE `post_title` LIKE '%%%s%%' OR `post` LIKE '%%%s%%' OR `posted` LIKE '%%%s%%' $_block $_level $_ptime ORDER BY `ptime` DESC LIMIT %d,%d",array(sc_xss_filter($_GET['q']),sc_xss_filter($_GET['q']),$_GET['posted'],$limit_start,$limit_row));
+		$_post=sc_get_result("SELECT * FROM `forum` WHERE `title` LIKE '%%%s%%' OR `content` LIKE '%%%s%%' OR `author` LIKE '%%%s%%' $_block $_level $_mktime ORDER BY `mktime` DESC LIMIT %d,%d",array(sc_xss_filter($_GET['q']),sc_xss_filter($_GET['q']),$_GET['author'],$limit_start,$limit_row));
 	} else{
 		$limit_start=0;
-		$post=$SQL->query("SELECT * FROM `forum` WHERE `post_title` LIKE '%%%s%%' OR `post` LIKE '%%%s%%' OR `posted` LIKE '%%%s%%' $_block $_level $_ptime ORDER BY `ptime` DESC LIMIT %d,%d",array(sc_xss_filter($_GET['q']),sc_xss_filter($_GET['q']),$_GET['posted'],$limit_start,$limit_row));
+		$_post=sc_get_result("SELECT * FROM `forum` WHERE `title` LIKE '%%%s%%' OR `content` LIKE '%%%s%%' OR `author` LIKE '%%%s%%' $_block $_level $_mktime ORDER BY `mktime` DESC LIMIT %d,%d",array(sc_xss_filter($_GET['q']),sc_xss_filter($_GET['q']),$_GET['author'],$limit_start,$limit_row));
 	}
-	$post_row = $post->fetch_assoc();
-	$post_num_rows = $post->num_rows;
 }else{
-	$_block_query=$SQL->query("SELECT * FROM `forum_block` ORDER BY `position` ASC");
-	$_block =$_block_query->fetch_assoc();
+	$_block=sc_get_result("SELECT * FROM `forum_block` ORDER BY `position` ASC");
 }
+
+$view = new View('theme/admin_default.html','admin/nav.php','',$center['site_name'],'論壇搜尋',true);
 ?>
-<div class="main">
-<h2>論壇搜尋</h2>
-<?php if(!isset($_GET['q'])or trim($_GET['q'])==''or!isset($_GET['level'])or!isset($_GET['ptime'])or!isset($_GET['posted'])or!isset($_GET['block'])){ ?>
-<form id="search" class="form-horizontal" action="forumsearch.php" method="GET">	
-	<div class="control-group">
-		<label class="control-label" for="q">標題：</label>
-		<div class="controls">
-			<input name="q" type="text" class="input-xlarge" id="q">
+<h2 class="page-header">論壇搜尋</h2>
+<?php if(!isset($_GET['q'])or trim($_GET['q'])==''or!isset($_GET['level'])or!isset($_GET['mktime'])or!isset($_GET['author'])or!isset($_GET['block'])){ ?>
+<form class="form-horizontal form-sm" action="forumsearch.php" method="GET">	
+	<div class="form-group">
+		<label class="col-sm-3 control-label" for="q">關鍵字：</label>
+		<div class="col-sm-9">
+			<input class="form-control" name="q" type="text">
 		</div>
 	</div>
-	<div class="control-group">
-		<label class="control-label" for="posted">發帖人：</label>
-		<div class="controls">
-			<input name="posted" type="text" class="input-xlarge" id="posted">
+	<div class="form-group">
+		<label class="col-sm-3 control-label" for="author">發帖人：</label>
+		<div class="col-sm-9">
+			<input class="form-control" name="author" type="text">
 		</div>
 	</div>
-	<div class="control-group">
-		<label class="control-label" for="block">區塊：</label>
-		<div class="controls">
-			<select class="input-xlarge" name="block" required="required">
+	<div class="form-group">
+		<label class="col-sm-3 control-label" for="block">區塊：</label>
+		<div class="col-sm-9">
+			<select class="form-control" name="block" required="required">
 				<option value="all" selected="selected">所有</option>
 			<?php do{ ?>
-				<option value="<?php echo $_block['id']; ?>">
-					<?php echo $_block['blockname']; ?>
+				<option value="<?php echo $_block['row']['id']; ?>">
+					<?php echo $_block['row']['blockname']; ?>
 				</option>
-			<?php }while ($_block =  $_block_query->fetch_assoc()); ?>
+			<?php }while ($_block =  $_block['query']->fetch_assoc()); ?>
 			</select>
 		</div>
 	</div>
-	<div class="control-group">
-		<label class="control-label" for="ptime">發表日期：</label>
-		<div class="controls">
-			<input name="ptime[]" type="date" class="input-small" /> - 
-			<input name="ptime[]" type="date" class="input-small" />(YYYY-MM-DD)
+	<div class="form-group">
+		<label class="col-sm-3 control-label" for="mktime">發表日期：</label>
+		<div class="col-sm-9">
+			<input class="form-control" name="mktime[]" type="date" style="width:30%;display:inline-block;"> - 
+			<input class="form-control" name="mktime[]" type="date" style="width:30%;display:inline-block;"><small>(YYYY-MM-DD)</small>
 		</div>
 	</div>
-	<div class="control-group">
-		<label class="control-label" for="level">權限：</label>
-		<div class="controls">
-			<select name="level" id="level" class="input-xlarge">
+	<div class="form-group">
+		<label class="col-sm-3 control-label" for="level">權限：</label>
+		<div class="col-sm-9">
+			<select class="form-control" name="level">
 				<option value="all">所有</option>
 				<?php foreach(sc_member_level_array() as $key=>$value){ ?>
 					<option value="<?php echo $key; ?>"><?php echo $value; ?></option>
@@ -104,53 +130,43 @@
 			</select>
 		</div>
 	</div>
-	<div class="form-actions">
-		<input type="submit" id="button" class="btn btn-success" value="搜尋" />
+	<div class="form-group">
+		<div class="col-sm-offset-3 col-sm-9">
+			<input class="btn btn-success btn-lg" type="submit" value="搜尋">
+		</div>
 	</div>
 </form>
-<?php }else{if($post_num_rows<=0){ ?>
-<div class="alert alert-error">沒有符合的資料！</div>
+<?php 
+}else{
+if($_post['num_rows']<=0){ ?>
+<div class="alert alert-danger">沒有符合的資料！</div>
 <?php }else{ ?>
 <?php do{
-	$_post_reply_query = $SQL->query("SELECT * FROM `forum_reply` WHERE `post`='%d' ORDER BY `ptime` DESC",array($post_row['id']));
-	$_post_reply_row=$_post_reply_query->fetch_assoc();
-	$_post_reply_num_rows = $_post_reply_query->num_rows;
+	$_reply = sc_get_result("SELECT COUNT(*) FROM `forum_reply` WHERE `post_id`='%d'",array($_post['row']['id']));
+	$_author = sc_get_result("SELECT `username` FROM `member` WHERE `id` = '%d'",array($_post['row']['author']));
 ?>
-<div id="1" class="post">
-	<a href="forumview.php?id=<?php echo $post_row['id']; ?>" style="font-size:120%;display:block;">
-	<?php echo $post_row['post_title']; ?>
+<div class="post">
+	<a href="forumview.php?id=<?php echo $_post['row']['id']; ?>" style="font-size:120%;display:block;">
+	<?php echo $_post['row']['title']; ?>
 	</a>
 	<p>
-	<?php echo mb_substr(strip_tags($post_row['post']),mb_stripos(strip_tags($post_row['post']),sc_xss_filter($_GET['q']),0,'UTF-8')-30,60,'UTF-8'); ?>...
+	<?php echo mb_substr(strip_tags($_post['row']['content']),mb_stripos(strip_tags($_post['row']['content']),sc_xss_filter($_GET['q']),0,'UTF-8')-30,60,'UTF-8'); ?>...
 	</p>
-	<ul class="inline" style="font-size:80%;color:rgb(100,100,100);">
-		<?php if($post_row['level']>1){ ?>
-		<li><span class="label"><?php echo sc_member_level($post_row['level']); ?></span></li>
+	<ul class="list-inline" style="font-size:90%;color:rgb(100,100,100);">
+		<?php if($_post['row']['level']>1){ ?>
+		<li><span class="label"><?php echo sc_member_level($_post['row']['level']); ?></span></li>
 		<?php } ?>
-		<li><?php echo $post_row['posted']; ?></li>
-		<li><?php echo date('Y-m-d H:i',strtotime($post_row['ptime'])); ?></li>
-		<li><?php echo $_post_reply_num_rows; ?> 回覆</li>
+		<li><?php echo $_author['row']['username']; ?></li>
+		<li><?php echo date('Y-m-d H:i',strtotime($_post['row']['mktime'])); ?></li>
+		<li><?php echo implode('',$_reply['row']); ?> 回覆</li>
 	</ul>
 </div>
-<?php }while ($post_row = $post->fetch_assoc()); ?>
 <?php
-$nav_num_rows = $SQL->query("SELECT * FROM `forum` WHERE `post_title` LIKE '%%%s%%' OR `post` LIKE '%%%s%%' OR `posted` LIKE '%%%s%%' $_block $_level $_ptime ",array(sc_xss_filter($_GET['q']),sc_xss_filter($_GET['q']),$_GET['posted']))->num_rows;
-
-$pageTotal=ceil($nav_num_rows / $limit_row);
-
-if($pageTotal > 1){
-	echo '<div class="pagination"><ul>';
-	for($i=1;$i<=$pageTotal;$i++){
-		if(@$_GET['page'] != $i){
-				echo '<li><a href="forumsearch.php?q='.sc_xss_filter($_GET['q']).'&posted='.urlencode(sc_namefilter($_GET['posted'])).'&block='.urlencode(abs($_GET['block'])).'&level='.urlencode(abs($_GET['level'])).'&ptime[]='.$GET_ptime['0'].'&ptime[]='.$GET_ptime['1'].'&page='.$i.'">'.$i.'</a></li>';
-			}else{
-				echo '<li class="active"><a href="#">'.$i.'</a></li>';
-		}
-	}
-	echo '</ul></div><br class="clearfix" />';
-}}}
+	}while ($_post['row'] = $_post['query']->fetch_assoc());
+	$_all_post=sc_get_result("SELECT COUNT(*) FROM `forum` WHERE `title` LIKE '%%%s%%' OR `content` LIKE '%%%s%%' OR `author` LIKE '%%%s%%' $_block $_level $_mktime",array(sc_xss_filter($_GET['q']),sc_xss_filter($_GET['q']),$_GET['author']));
+	echo sc_page_pagination('forumsearch.php',@$_GET['page'],implode('',$_all_post['row']),$center['forum']['limit'],'&q='.sc_xss_filter($_GET['q']).'&author='.urlencode(sc_namefilter($_GET['author'])).'&block='.urlencode(abs($_GET['block'])).'&level='.urlencode(abs($_GET['level'])).'&mktime[]='.$GET_mktime['0'].'&mktime[]='.$GET_mktime['1']);
+}}
 ?>
-</div>
 <?php
 $view->render();
 ?>
\ No newline at end of file
diff --git a/admin/forumview.php b/admin/forumview.php
index f63135d..4827c91 100644
--- a/admin/forumview.php
+++ b/admin/forumview.php
@@ -1,4 +1,36 @@
 <?php
+/*
+<Secret Center, open source member management system>
+Copyright (C) 2012-2016 Secret Center開發團隊 <http://center.gdsecret.net/#team>
+
+This program is free software: you can redistribute it and/or modify
+it under the terms of the GNU Affero General Public License as published by
+the Free Software Foundation, version 3.
+
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+GNU Affero General Public License for more details.
+
+You should have received a copy of the GNU Affero General Public License
+along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+Also add information on how to contact you by electronic and paper mail.
+
+  If your software can interact with users remotely through a computer
+network, you should also make sure that it provides a way for users to
+get its source.  For example, if your program is a web application, its
+interface could display a "Source" link that leads users to an archive
+of the code.  There are many ways you could offer source, and different
+solutions will be better for different programs; see section 13 for the
+specific requirements.
+
+  You should also get your employer (if you work as a programmer) or school,
+if any, to sign a "copyright disclaimer" for the program, if necessary.
+For more information on this, and how to apply and follow the GNU AGPL, see
+<http://www.gnu.org/licenses/>.
+*/
+
 set_include_path('../include/');
 $includepath = true;
 
@@ -11,136 +43,129 @@
     exit;
 }
 
-if(isset($_GET['del'])&& abs($_GET['del'])!=''){
-	$del[] = sprintf("DELETE FROM forum WHERE id = '%d'",abs($_GET['del']));
-    $del[] = sprintf("DELETE FROM forum_reply WHERE post = '%d'",abs($_GET['del']));
-    foreach($del as $val){
-		$SQL->query($val);
-	}
-	header("Location: forum.php?del");
-	exit;
-}
-
 if((!isset($_GET['id']))or($_GET['id']=='')){
     header("Location: forum.php");
 	exit;
 }
 
-$post = $SQL->query("SELECT * FROM forum WHERE id = '%s'",array($_GET['id']));
-$post_row = $post->fetch_assoc();
-$post_num_rows = $post->num_rows;
+$_post = sc_get_result("SELECT * FROM `forum` WHERE `id` = '%d'",array($_GET['id']));
 
-if($post_num_rows<=0){
+if($_post['num_rows']<=0){
 	header("Location: forum.php");
 	exit;
 }
 
 
-if(isset($_GET['delreply']) && $_GET['delreply'] != ''){
-	$SQL->query("DELETE FROM forum_reply WHERE id = %d",array($_GET['delreply']));
-	header("Location: forumview.php?delreply&id=".$_GET['id']);
+if(isset($_GET['del']) && $_GET['del'] != ''){
+    $_del[] = sprintf("DELETE FROM `forum` WHERE `id` = '%d'",$_GET['del']);
+    $_del[] = sprintf("DELETE FROM `forum_reply` WHERE `post_id` = '%d'",$_GET['del']);
+    foreach($_del as $val){
+		$SQL->query($val);
+	}
+	header('Location: forum.php?del&fid='.$_post['row']['block']);
+}elseif(isset($_GET['delreply']) && $_GET['delreply'] != ''){
+	$SQL->query("DELETE FROM `forum_reply` WHERE `id` = '%d'",array($_GET['delreply']));
+	header("Location: forumview.php?delreply&id=".$_post['row']['id']);
 }
 
-
-$_block = $SQL->query("SELECT * FROM `forum_block` WHERE `id`='%d'",array(abs(intval($post_row['block']))))->fetch_assoc();
+$_block = sc_get_result("SELECT * FROM `forum_block` WHERE `id`='%d'",array($_post['row']['block']));
 
 $limit_row=$center['forum']['limit'];
+	
 if(isset($_GET['page'])){
 	$limit_start = abs(intval(($_GET['page']-1)*$limit_row));
-	$reply_sql = sprintf("SELECT * FROM forum_reply WHERE post = '%s' ORDER BY id ASC LIMIT %d,%d",$_GET['id'],$limit_start,$limit_row);
+	$_reply = sc_get_result("SELECT * FROM `forum_reply` WHERE `post_id`='%d' ORDER BY `mktime` ASC LIMIT %d,%d",array($_post['row']['id'],$limit_start,$limit_row));
 } else {
-	$limit_start = 0;
-	$reply_sql = sprintf("SELECT * FROM forum_reply WHERE post = '%s' ORDER BY id ASC LIMIT %d,%d",$_GET['id'],$limit_start,$limit_row);
+	$limit_start=0;
+	$_reply = sc_get_result("SELECT * FROM `forum_reply` WHERE `post_id`='%d' ORDER BY `mktime` ASC LIMIT %d,%d",array($_post['row']['id'],$limit_start,$limit_row));
 }
-$reply_query = $SQL->query($reply_sql);
-$reply_num_rows = $reply_query->num_rows;
-
-
-$view = new View('../view/new_theme.html','../include/admin_nav.php',$center['site_name'],$post_row['post_title'],true);
-$view->addScript("https://ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js");
-$view->addScript("../include/js/channel.js");
+$_author = sc_get_result("SELECT `username` FROM `member` WHERE `id` = '%d'",array($_post['row']['author']));
+$view = new View('theme/admin_default.html','admin/nav.php','',$center['site_name'],$_post['row']['title'],true);
 ?>
-<div class="main">
+<script>
+$(function(){
+	$('a.btn.btn-danger').click(function(e){
+		if(!window.confirm("確定刪除？")){
+			e.preventDefault();
+		}
+	});
+});
+</script>
 <?php if(isset($_GET['editok'])){ ?>
 	<div class="alert alert-success">編輯成功！</div>
-<?php }
-if(isset($_GET['delreply']) && $_GET['delreply'] == ''){?>
+<?php }elseif(isset($_GET['delreply'])){ ?>
 	<div class="alert alert-success">刪除成功！</div> 
 <?php } ?>
 <ul class="breadcrumb">
-	<li><a href="forum.php">論壇</a><span class="divider">/</span></li>
-	<li><a href="forum.php?fid=<?php echo $_block['id']; ?>"><?php echo $_block['blockname']; ?></a><span class="divider">/</span></li>
-	<li class="active"><?php echo lt_replace($post_row['post_title']); ?></li>
+	<li><a href="forum.php">論壇</a></li>
+	<li><a href="forum.php?fid=<?php echo $_block['row']['id']; ?>"><?php echo $_block['row']['blockname']; ?></a></li>
+	<li class="active"><?php echo sc_removal_escape_string($_post['row']['title']); ?></li>
 </ul>
-<h2>
-	<?php echo $post_row['post_title']; ?>
-	<?php if($post_row['level']>1){ ?>
-	<span class="label"><?php echo sc_member_level($post_row['level']); ?></span>
+<ul class="list-inline">
+	<li>
+		<h2><?php echo $_post['row']['title']; ?></h2>
+	</li>
+	<?php if($_post['row']['level']>1){ ?>
+	<li>
+		<span class="label label-default"><?php echo sc_member_level($_post['row']['level']); ?></span>
+	</li>
 	<?php } ?>
-</h2>
+</ul>
 <div id="1" class="post">
-	<ul class="inline">
+	<ul class="list-inline">
 		<li>
-			<img src="../include/avatar.php?id=<?php echo $post_row['posted']; ?>" class="avatar">
+			<img src="<?php echo sc_avatar_url($_post['row']['author']); ?>" class="avatar">
 		</li>
-		<li style="font-size:120%;"><?php echo $post_row['posted']; ?></li>
-		<li>發表於&nbsp;<?php echo $post_row['ptime']; ?></li>
+		<li style="font-size:120%;"><?php echo $_author['row']['username']; ?></li>
+		<li>發表於&nbsp;<?php echo $_post['row']['mktime']; ?></li>
 		<li>1&nbsp;樓</li>
+		<?php if($_post['row']['author'] == $_SESSION['Center_Id']){ ?>
 		<li>
-			<a href="forumedit.php?post&id=<?php echo $post_row['id']; ?>" class="btn btn-info btn-small">
+			<a href="forumedit.php?post&id=<?php echo $_post['row']['id']; ?>" class="btn btn-info btn-sm">
 				編輯
 			</a>
-			<a href="javascript:if(confirm('確定刪除？'))location='forumview.php?del=<?php echo $post_row['id']; ?>'" class="btn btn-danger btn-small">
+			<a href="forumview.php?del=<?php echo $_post['row']['id']; ?>&id=<?php echo $_post['row']['id']; ?>" class="btn btn-danger btn-sm">
 				刪除
 			</a>	
 		</li>
+		<?php } ?>
 	</ul>
-    <div class="con"><?php echo removal_escape_string($post_row['post']); ?></div>
+    <div class="con"><?php echo sc_removal_escape_string($_post['row']['content']); ?></div>
 </div>
 <?php
-if($reply_num_rows != 0){
-	$reply_floor = 1+$limit_start;
-	while ($reply_row = $reply_query->fetch_assoc()){
-		$reply_floor++;
+if($_reply['num_rows']>0){
+	$_floor = 1+$limit_start;
+	do{
+		$_floor++;
+		$_reply_author = sc_get_result("SELECT `username` FROM `member` WHERE `id` = '%d'",array($_reply['row']['author']));
 ?>
-<div id="<?php echo $reply_floor; ?>" class="post">
-	<ul class="inline">
+<div id="<?php echo $_floor; ?>" class="post">
+	<ul class="list-inline">
 		<li>
-			<img src="../include/avatar.php?id=<?php echo $reply_row['posted']; ?>" class="avatar">
+			<img src="<?php echo sc_avatar_url($_reply['row']['author']); ?>" class="avatar">
 		</li>
-		<li style="font-size:130%;"><?php echo $reply_row['posted']; ?></li>
-		<li>發表於&nbsp;<?php echo $reply_row['ptime']; ?></li>
-		<li><?php echo $reply_floor; ?>&nbsp;樓</li>
+		<li style="font-size:130%;"><?php echo $_reply_author['row']['username']; ?></li>
+		<li>發表於&nbsp;<?php echo $_reply['row']['mktime']; ?></li>
+		<li><?php echo $_floor; ?>&nbsp;樓</li>
+		<?php if($_reply['row']['author']==$_SESSION['Center_Id']){ ?>
 		<li>
-			<a href="forumedit.php?reply&id=<?php echo $reply_row['id']; ?>" class="btn btn-info btn-small">
+			<a href="forumedit.php?reply&id=<?php echo $_reply['row']['id']; ?>" class="btn btn-info btn-sm">
 				編輯
 			</a>
-			<a href="forumview.php?delreply=<?php echo $reply_row['id']; ?>&id=<?php echo $_GET['id']; ?>" class="btn btn-danger btn-small">
-				刪除此回覆
+			<a href="forumview.php?delreply=<?php echo $_reply['row']['id']; ?>&id=<?php echo $_post['row']['id']; ?>" class="btn btn-danger btn-sm">
+				刪除
 			</a>
 		</li>
+		<?php } ?>
 	</ul>
-	<div class="con"><?php echo removal_escape_string($reply_row['reply']); ?></div>
+	<div class="con"><?php echo sc_removal_escape_string($_reply['row']['content']); ?></div>
 </div>
 <?php
-	}
-}
-$nav = $SQL->query("SELECT * FROM forum_reply WHERE post = '%s'",array($_GET['id']));
-$pageTotal = ceil($nav->num_rows / $limit_row);
-
-if($pageTotal>1){
-	echo '<div class="pagination"><ul>';
-	for($i=1;$i<=$pageTotal;$i++){
-		if(@$_GET['page']!=$i){
-				echo '<li><a href="forumview.php?id='.$_GET['id'].'&page='.$i.'">'.$i.'</a></li>';
-			}else{
-				echo '<li class="active"><a href="#">'.$i.'</a></li>';
-		}
-	}
-	echo '</ul></div><br class="clearfix" />';
+	}while($_reply['row'] = $_reply['query']->fetch_assoc());
 }
+$_all_reply=sc_get_result("SELECT COUNT(*) FROM `forum_reply` WHERE `post_id`='%d'",array($_post['row']['id']));
+echo sc_page_pagination('forumview.php',@$_GET['page'],implode('',$_all_reply['row']),$center['forum']['limit'],'&id='.$_post['row']['id']);
 ?>
-</div>
 <?php
 $view->render();
 ?>
\ No newline at end of file
diff --git a/admin/index.php b/admin/index.php
index 5f3b3e3..eeda771 100644
--- a/admin/index.php
+++ b/admin/index.php
@@ -1,4 +1,36 @@
 <?php
+/*
+<Secret Center, open source member management system>
+Copyright (C) 2012-2016 Secret Center開發團隊 <http://center.gdsecret.net/#team>
+
+This program is free software: you can redistribute it and/or modify
+it under the terms of the GNU Affero General Public License as published by
+the Free Software Foundation, version 3.
+
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+GNU Affero General Public License for more details.
+
+You should have received a copy of the GNU Affero General Public License
+along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+Also add information on how to contact you by electronic and paper mail.
+
+  If your software can interact with users remotely through a computer
+network, you should also make sure that it provides a way for users to
+get its source.  For example, if your program is a web application, its
+interface could display a "Source" link that leads users to an archive
+of the code.  There are many ways you could offer source, and different
+solutions will be better for different programs; see section 13 for the
+specific requirements.
+
+  You should also get your employer (if you work as a programmer) or school,
+if any, to sign a "copyright disclaimer" for the program, if necessary.
+For more information on this, and how to apply and follow the GNU AGPL, see
+<http://www.gnu.org/licenses/>.
+*/
+
 set_include_path('../include/');
 $includepath = true;
 
@@ -12,52 +44,58 @@
 }
 
 if(isset($_GET['logout'])){
-	$_SESSION['Center_Username'] = NULL;
-	$_SESSION['Center_UserGroup'] = NULL;
-	unset($_SESSION['Center_Username']);
-	unset($_SESSION['Center_UserGroup']);
-	setcookie("login","",time()-7200);
+	sc_loginout();
 	header("Location: ../index.php?out");
 	exit;
 }
-
-$view = new View('../view/new_theme.html','../include/admin_nav.php',$center['site_name'],'系統管理',true);
-$view->addScript("https://ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js");
-$view->addScript("../include/js/channel.js");
+$view = new View('theme/admin_default.html','admin/nav.php','',$center['site_name'],'系統管理',true);
 ?>
-<script>
-$(function(){
-	$.ajax({
-		url: $('#check').attr('href'),
-		dataType: 'jsonp',
-		success: function(data){
-			if(!data.error){
-				if(!data.latest){
-					$('#results').html(data.msg);
-				}
-				else {
-					$('#results').text(data.msg);
-					$('#link').html(data.link);
-				}
-			}
-			else {
-				$('#results').html(data.msg);
-			}
-		}
-	});
-});
-</script>
-<div class="main">
-	<?php if((isset($_COOKIE['login']))&&(isset($_GET['login']))){?>
-		<div class="prompt">登入成功！</div>
-	<?php } ?>
-	<h2>系統管理</h2>
-	歡迎來到系統管理介面！<br>
-	您目前所使用的 Secret會員系統版本：<?php echo sc_ver(); ?>
-	<div id="results" class="well" style="margin: 1em auto; width: 50%; text-align: center;">
-		<a href="http://center.gdsecret.com/update.php?json&ver=<?php echo sc_ver(); ?>&url=<?php echo 'http://'.$_SERVER['HTTP_HOST'].$_SERVER['REQUEST_URI']; ?>" id="check">檢查更新</a>
+<h2 class="page-header">系統管理</h2>
+<p>歡迎來到系統管理介面！</p>
+<div class="row">
+	<div class="col-md-6">
+		<div class="panel panel-primary">
+			<div class="panel-heading">
+				<h3 class="panel-title">系統</h3>
+			</div>
+			<div class="panel-body">
+				目前版本：Secret Center <?php echo sc_ver(); ?>&nbsp;&nbsp;<span id="ver_check"></span>
+			</div>
+		</div>
+	</div>
+	<div class="col-md-6">
+		<div class="panel panel-warning">
+			<div class="panel-heading">
+				<h3 class="panel-title">會員</h3>
+			</div>
+			<div class="panel-body">
+				目前會員數量：
+				<?php echo implode('',$SQL->query("SELECT COUNT(*) FROM `member`")->fetch_assoc()); ?> 人
+			</div>
+		</div>
+	</div>
+	<div class="col-md-6">
+		<div class="panel panel-success">
+			<div class="panel-heading">
+				<h3 class="panel-title">論壇</h3>
+			</div>
+			<div class="panel-body">
+				目前帖子總數：
+				<?php echo implode('',$SQL->query("SELECT COUNT(*) FROM `forum`")->fetch_assoc()); ?> 篇
+			</div>
+		</div>
+	</div>
+	<div class="col-md-6">
+		<div class="panel panel-info">
+			<div class="panel-heading">
+				<h3 class="panel-title">通知</h3>
+			</div>
+			<div class="panel-body">
+				目前通知數量：
+				<?php echo implode('',$SQL->query("SELECT COUNT(*) FROM `notice`")->fetch_assoc()); ?> 筆
+			</div>
+		</div>
 	</div>
-	<div id="link"></div>
 </div>
 <?php
 $view->render();
diff --git a/admin/member.php b/admin/member.php
index d8ad038..a08b8a2 100644
--- a/admin/member.php
+++ b/admin/member.php
@@ -1,4 +1,36 @@
 <?php
+/*
+<Secret Center, open source member management system>
+Copyright (C) 2012-2016 Secret Center開發團隊 <http://center.gdsecret.net/#team>
+
+This program is free software: you can redistribute it and/or modify
+it under the terms of the GNU Affero General Public License as published by
+the Free Software Foundation, version 3.
+
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+GNU Affero General Public License for more details.
+
+You should have received a copy of the GNU Affero General Public License
+along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+Also add information on how to contact you by electronic and paper mail.
+
+  If your software can interact with users remotely through a computer
+network, you should also make sure that it provides a way for users to
+get its source.  For example, if your program is a web application, its
+interface could display a "Source" link that leads users to an archive
+of the code.  There are many ways you could offer source, and different
+solutions will be better for different programs; see section 13 for the
+specific requirements.
+
+  You should also get your employer (if you work as a programmer) or school,
+if any, to sign a "copyright disclaimer" for the program, if necessary.
+For more information on this, and how to apply and follow the GNU AGPL, see
+<http://www.gnu.org/licenses/>.
+*/
+
 set_include_path('../include/');
 $includepath = true;
 
@@ -12,161 +44,159 @@
 }
 
 if(isset($_GET['edit']) && $_GET['edit'] != ''){
-    $member_sql = sprintf("SELECT * FROM member WHERE id = '%d'", abs($_GET['edit']));
+    $_member = sc_get_result("SELECT * FROM `member` WHERE `id` = '%d'",array(abs($_GET['edit'])));
+	if(isset($_POST['email'])&& filter_var($_POST['email'], FILTER_VALIDATE_EMAIL)){
+		if($_POST['web_site']!='' && !filter_var($_POST['web_site'], FILTER_VALIDATE_URL)){
+			$_web_site=$_member['row']['web_site'];
+		}else{
+			$_web_site=$_POST['web_site'];
+		}
+		if($_POST['password']==''){
+			$_password = $_member['row']['password'];
+		}else{
+			$_password = sc_password($_POST['password'],$_member['row']['username']);
+		}
+		
+		$SQL->query("UPDATE `member` SET `password` = '%s', `email` = '%s', `web_site` = '%s', `rekey` = '%s', `level` = '%d' WHERE `id` = '%d'",array($_password,$_POST['email'],$_web_site,$_POST['rekey'],$_POST['level'],$_member['row']['id']));
+		header("Location: member.php?edit=".$_member['row']['id'].'&ok');
+	}
 }else{
 	$limit_row=30;
 	if(isset($_GET['page'])){
 		$limit_start = abs(intval(($_GET['page']-1)*$limit_row));
-		$member_sql = sprintf("SELECT * FROM member ORDER BY id ASC LIMIT %d,%d",$limit_start,$limit_row);
-	}else{
-		$limit_start= 0;
-		$member_sql = sprintf("SELECT * FROM member ORDER BY id ASC LIMIT %d,%d",$limit_start,$limit_row);
+		$_member = sc_get_result("SELECT * FROM `member` ORDER BY `id` ASC LIMIT %d,%d",array($limit_start,$limit_row));
+	} else {
+		$limit_start=0;
+		$_member = sc_get_result("SELECT * FROM `member` ORDER BY `id` ASC LIMIT %d,%d",array($limit_start,$limit_row));
 	}
 	
 }
 
-$member_query = $SQL->query($member_sql);
-$member_row = $member_query->fetch_assoc();
-$member_num_rows = $member_query->num_rows;
-
-
-if(isset($_POST['email'])&& filter_var($_POST['email'], FILTER_VALIDATE_EMAIL)){
-	if($_POST['web_site']!='' && !filter_var($_POST['web_site'], FILTER_VALIDATE_URL)){
-		$_web_site=$member['row']['web_site'];
-	}else{
-		$_web_site=$_POST['web_site'];
-	}
-	if($_POST['password']==''){
-		$pass = $member_row['password'];
-	}else{
-		$pass = sc_password($_POST['password'],$member_row['name']);
+if(isset($_GET['del']) && $_GET['del'] != '') {
+	$_member = sc_get_result("SELECT * FROM `member` WHERE `id` = '%d'",array(abs($_GET['del'])));
+	
+	$_avatar_dir='../include/avatar/';
+	if($_member['row']['avatar']!='default.png'){
+		unlink($_avatar_dir.$_member['row']['avatar']);//刪除舊頭貼
 	}
 	
-	$SQL->query("UPDATE member SET password = '%s', email = '%s', web_site = '%s', rekey = '%s', level = '%s' WHERE id = '%s'",array(
-		$pass,
-		$_POST['email'],
-		$_web_site,
-		$_POST['rekey'],
-		$_POST['level'],
-		$_GET['edit']
-	));
-	header("Location: member.php?edit=".$_GET['edit'].'&ok');
-}
-elseif(isset($_GET['del']) && $_GET['del'] != '') {
-	$member = $SQL->query("SELECT * FROM member WHERE id = '%d'",array($_GET['del']))->fetch_assoc();
-	$SQL->query("DELETE FROM member WHERE id = '%d'",array($_GET['del']));
+	$SQL->query("DELETE FROM `chat` WHERE `author` = '%d'",array($_member['row']['id']));
+	$SQL->query("DELETE FROM `forum` WHERE `author` = '%d'",array($_member['row']['id']));
+	$SQL->query("DELETE FROM `forum_reply` WHERE `author` = '%d'",array($_member['row']['id']));
+	$SQL->query("DELETE FROM `member` WHERE `id` = '%d'",array($_member['row']['id']));
 	
 	header("Location: member.php?delok");
 }
 
-$view = new View('../view/new_theme.html','../include/admin_nav.php',$center['site_name'],'會員管理',true);
-$view->addScript("https://ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js");
-$view->addScript("../include/js/jquery.validate.js");
-$view->addScript("../include/js/channel.js");
-
+$view = new View('theme/admin_default.html','admin/nav.php','',$center['site_name'],'會員管理',true);
 ?>
-<script type="text/javascript">
-$(function(){
-	$("#form1").validate({
-		rules:{
-			authpassword:{equalTo: "#password"},
-			email:{required:true,email:true},
-			web_site:{url:true},
-			rekey:{required:true}
-		},
-		messages:{
-			authpassword:{equalTo: "密碼不一致"},
-		}
-	});
-});
-</script>
 <?php if(isset($_GET['ok'])){?>
 	<div class="alert alert-success">修改成功！</div>
+<?php }elseif(isset($_GET['delok'])){ ?>
+	<div class="alert alert-success">成功刪除此會員！</div>
 <?php } ?>
-<div class="main">
+<h2 class="page-header">會員管理</h2>
 <?php if(isset($_GET['edit'])) { ?>
-<div class="row-fluid">
-	<div class="span3 text-center">
-		<img src="../include/avatar.php?id=<?php echo $member_row['name']; ?>" class="avatar">
+<script>
+$(function(){
+	$('input[name="authpassword"]').on('keyup', function(){
+		var $_error_msg=$(this).parent().siblings('.help-block');
+		if($(this).val()!=$('input[name="password"]').val()){
+			$_error_msg.html('<span class="text-danger">密碼不一致</span>'); 
+			$('input[type="submit"]').attr('disabled','disabled');
+		}else{
+			$_error_msg.html('');
+			$('input[type="submit"]').attr('disabled',false);
+		}
+	}).parent().parent().append('<div class="col-sm-3 help-block"></div>');
+});
+</script>
+<div class="row">
+	<div class="col-sm-3 text-center">
+		<img src="<?php echo sc_avatar_url($_member['row']['id']); ?>" class="avatar">
 	</div>
-	<div class="span9">
-		<form id="form1" name="form1" action="member.php?edit=<?php echo abs($_GET['edit']); ?>" method="POST" class="form-horizontal">
-			<div class="control-group">
-					<label class="control-label">帳號：</label>
-					<div class="controls">
-						<input id="username" name="username" value="<?php echo htmlspecialchars($member_row['name']); ?>" disabled="disabled" type="text">
-					</div>
+	<div class="col-sm-9">
+		<form class="form-horizontal form-sm" action="member.php?edit=<?php echo $_member['row']['id']; ?>" method="POST">
+			<div class="form-group">
+				<label class="col-sm-3 control-label">帳號：</label>
+				<div class="col-sm-6">
+					<p class="form-control-static"><?php echo $_member['row']['username']; ?></p>
 				</div>
-			<div class="control-group">
-				<label class="control-label" for="password">密碼：</label>
-				<div class="controls">
-					<input name="password" type="password" class="input-large" id="password" maxlength="30">
+			</div>
+			<div class="form-group">
+				<label class="col-sm-3 control-label" for="username">密碼：</label>
+				<div class="col-sm-6">
+					<input class="form-control" name="password" type="password" maxlength="30">
 				</div>
 			</div>
-			<div class="control-group">
-				<label class="control-label" for="authpassword">確認密碼：</label>
-				<div class="controls">	
-					<input name="authpassword" type="password" id="authpassword" class="input-large" maxlength="30" />
+			<div class="form-group">
+				<label class="col-sm-3 control-label" for="authpassword">確認密碼：</label>
+				<div class="col-sm-6">
+					<input class="form-control" name="authpassword" type="password">
 				</div>
 			</div>
-			<div class="control-group">
-				<label class="control-label" for="email">電子信箱：</label>
-				<div class="controls">	
-					<input name="email" type="text" id="email" class="input-large" maxlength="255" value="<?php echo $member_row['email']; ?>" />
+			<div class="form-group">
+				<label class="col-sm-3 control-label" for="email">* 電子信箱：</label>
+				<div class="col-sm-6">
+					<input class="form-control" name="email" type="email" maxlength="255" required="required" value="<?php echo $_member['row']['email']; ?>">
 				</div>
 			</div>
-			<div class="control-group">
-				<label class="control-label" for="web_site">個人網站：</label>
-				<div class="controls">	
-					<input name="web_site" type="text" id="web_site" class="input-large" maxlength="255" value="<?php echo $member_row['web_site']; ?>" />
+			<div class="form-group">
+				<label class="col-sm-3 control-label" for="web_site">個人網站：</label>
+				<div class="col-sm-6">
+					<input class="form-control" name="web_site" type="text" maxlength="255" value="<?php echo $_member['row']['web_site']; ?>">
 				</div>
 			</div>
-			<div class="control-group">
-				<label class="control-label" for="rekey">金鑰：</label>
-				<div class="controls">	
-					<input name="rekey" type="text" id="rekey" class="input-large" value="<?php echo $member_row['rekey']; ?>" />
+			<div class="form-group">
+				<label class="col-sm-3 control-label" for="rekey">金鑰：</label>
+				<div class="col-sm-6">
+					<input class="form-control" name="rekey" type="text" maxlength="255" value="<?php echo $_member['row']['rekey']; ?>">
 				</div>
 			</div>
-			<div class="control-group">
-				<label class="control-label" for="level">權限：</label>
-				<div class="controls">
-					<select name="level" id="level" class="input-large">
+			<div class="form-group">
+				<label class="col-sm-3 control-label">權限：</label>
+				<div class="col-sm-6">
+					<select class="form-control" name="level">
 					<?php foreach(sc_member_level_array() as $key=>$value){ ?>
-						<option value="<?php echo $key; ?>" <?php if($member_row['level']==$key){ ?>selected="selected"<?php } ?>><?php echo $value; ?></option>
+						<option value="<?php echo $key; ?>" <?php if($_member['row']['level']==$key){ ?>selected="selected"<?php } ?>><?php echo $value; ?></option>
 					<?php } ?>
 					</select>
 				</div>
 			</div>
-			<div class="control-group">
-				<label class="control-label">註冊日期：</label>
-				<div class="controls">
-					<input id="joined" name="joined" value="<?php echo $member_row['joined']; ?>" disabled="disabled" type="text">
+			<div class="form-group">
+				<label class="col-sm-3 control-label">註冊日期：</label>
+				<div class="col-sm-6">
+					<p class="form-control-static"><?php echo $_member['row']['joined']; ?></p>
 				</div>
 			</div>
-			<div class="control-group">
-				<label class="control-label">最後登入：</label>
-				<div class="controls">
-					<input id="last_login" name="last_login" value="<?php echo $member_row['last_login']; ?>" disabled="disabled" type="text">
+			<div class="form-group">
+				<label class="col-sm-3 control-label">最後登入：</label>
+				<div class="col-sm-6">
+					<p class="form-control-static"><?php echo $_member['row']['last_login']; ?></p>
 				</div>
 			</div>
-			<div class="control-group">
-				<div class="controls">
-					<input name="button" type="submit" id="button" class="btn btn-success btn-large" value="確認修改" />
+			<div class="form-group">
+				<div class="col-sm-offset-3 col-sm-6">
+					<input class="btn btn-success btn-lg" type="submit" value="確認修改">
 				</div>
 			</div>
-		</div>
-		<div class="clearfix"></div>
-	</form>
+		</form>
+	</div>
 </div>
 <?php } else { ?>
-<?php if(isset($_GET['delok'])){?>
-	<div class="alert alert-success">成功刪除此會員！</div>
-<?php } ?>
-<h2 class="subtitle">會員管理</h2>
+<script>
+$(function(){
+	$('a.btn.btn-danger').click(function(e){
+		if(!window.confirm("確定刪除此會員？")){
+			e.preventDefault();
+		}
+	});
+});
+</script>
 <table class="table table-striped table-hover">
   <tr>
     <th width="10%">ID</th>
-    <th width="20%">帳號名稱</th>
+    <th width="20%">帳號</th>
 	<th width="20%">電子信箱</th>
 	<th width="20%">個人網站</th>
     <th width="15%">權限</th>
@@ -174,38 +204,25 @@
   </tr>
 <?php do { ?>
   <tr>
-    <td><?php echo $member_row['id'] ;?></td>
-    <td><?php echo $member_row['name'] ;?></td>
-	<td><?php echo $member_row['email'] ;?></td>
-	<td><?php echo $member_row['web_site'] ;?></td>
-    <td><?php echo sc_member_level($member_row['level']); ?></td>
-    <td><a href="?edit=<?php echo $member_row['id'] ;?>">編輯</a>│<a href="javascript:if(confirm('確定刪除此會員？'))location='member.php?del=<?php echo $member_row['id'] ;?>'">刪除</a></td>
+    <td><?php echo $_member['row']['id'] ;?></td>
+    <td><?php echo $_member['row']['username'] ;?></td>
+	<td><small><?php echo $_member['row']['email'] ;?></small></td>
+	<td><small><?php echo $_member['row']['web_site'] ;?></small></td>
+    <td><?php echo sc_member_level($_member['row']['level']); ?></td>
+    <td>
+		<a href="member.php?edit=<?php echo $_member['row']['id'] ;?>" class="btn btn-info btn-sm">編輯</a>
+		<a href="member.php?del=<?php echo $_member['row']['id'] ;?>" class="btn btn-danger btn-sm">刪除</a>
+	</td>
   </tr>
-<?php } while ($member_row = $member_query->fetch_assoc()); ?>
+<?php } while ($_member['row'] = $_member['query']->fetch_assoc()); ?>
 </table>
 <div>
 <?php
-$nav_query = $SQL->query('SELECT * FROM `member` ORDER BY `id` ASC');
-$nav_num_rows = $nav_query->num_rows;
-
-$pageTotal = ceil($nav_num_rows/$limit_row);
-
-if($pageTotal > 1){
-	echo '<div class="pagination"><ul>';
-	for($i=1;$i<=$pageTotal;$i++){
-		if(@$_GET['page']!=$i){
-				echo '<li><a href="member.php?page='.$i.'">'.$i.'</a></li>';
-			}else{
-				echo '<li class="active"><a href="#">'.$i.'</a></li>';
-		}
-	}
-	echo '</ul></div><br class="clearfix" />';
-}
+$_all_nav=sc_get_result("SELECT COUNT(*) FROM `member`");
+echo sc_page_pagination('member.php',@$_GET['page'],implode('',$_all_nav['row']),$center['forum']['limit']);
 ?>
 </div>
 <?php } ?>
-</div>
 <?php
 $view->render();
-$member_query->free();
 ?>
\ No newline at end of file
diff --git a/admin/membersearch.php b/admin/membersearch.php
new file mode 100644
index 0000000..9a98d8a
--- /dev/null
+++ b/admin/membersearch.php
@@ -0,0 +1,188 @@
+<?php
+/*
+<Secret Center, open source member management system>
+Copyright (C) 2012-2016 Secret Center開發團隊 <http://center.gdsecret.net/#team>
+
+This program is free software: you can redistribute it and/or modify
+it under the terms of the GNU Affero General Public License as published by
+the Free Software Foundation, version 3.
+
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+GNU Affero General Public License for more details.
+
+You should have received a copy of the GNU Affero General Public License
+along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+Also add information on how to contact you by electronic and paper mail.
+
+  If your software can interact with users remotely through a computer
+network, you should also make sure that it provides a way for users to
+get its source.  For example, if your program is a web application, its
+interface could display a "Source" link that leads users to an archive
+of the code.  There are many ways you could offer source, and different
+solutions will be better for different programs; see section 13 for the
+specific requirements.
+
+  You should also get your employer (if you work as a programmer) or school,
+if any, to sign a "copyright disclaimer" for the program, if necessary.
+For more information on this, and how to apply and follow the GNU AGPL, see
+<http://www.gnu.org/licenses/>.
+*/
+
+set_include_path('../include/');
+$includepath = true;
+
+require_once('../Connections/SQL.php');
+require_once('../config.php');
+require_once('view.php');
+
+if(!isset($_SESSION['Center_Username']) or $_SESSION['Center_UserGroup'] != 9){
+    header("Location: ../index.php");
+    exit;
+}
+
+if(isset($_GET['search'])&&isset($_POST['level'])&&isset($_POST['joined'])&&isset($_POST['last_login'])&&isset($_POST['username'])&&isset($_POST['email'])&&isset($_POST['web_site'])){
+	if(is_numeric($_POST['level'])){
+		$_level= sprintf("AND `level` = '%d'",abs($_POST['level']));
+ 	}else{
+		$_level='';
+	}
+	$POST_joined['0']=strtotime($_POST['joined']['0']);
+	$POST_joined['1']=strtotime($_POST['joined']['1']);
+	$POST_last_login['0']=strtotime($_POST['last_login']['0']);
+	$POST_last_login['1']=strtotime($_POST['last_login']['1']);
+	if($POST_joined['0']>0&&$POST_joined['1']>0){
+		$_joined=sprintf(" AND `joined` BETWEEN '%s' AND '%s'",
+					date('Y-m-d H:i:s',$POST_joined['0']),
+					date('Y-m-d H:i:s',$POST_joined['1']));
+	}elseif($POST_joined['0']>0){
+		$_joined=sprintf(" AND `joined` > '%s'",
+					date('Y-m-d H:i:s',$POST_joined['0']));
+	}elseif($POST_joined['1']>0){
+		$_joined=sprintf(" AND `joined` < '%s'",
+					date('Y-m-d H:i:s',$POST_joined['1']));
+	}
+	else{
+		$_joined='';
+	}
+	if($POST_last_login['0']>0&&$POST_last_login['1']>0){
+		$_last_login=sprintf(" AND `last_login` BETWEEN '%s' AND '%s'",
+					date('Y-m-d H:i:s',$POST_last_login['0']),
+					date('Y-m-d H:i:s',$POST_last_login['1']));
+	}elseif($POST_last_login['0']>0){
+		$_last_login=sprintf(" AND `last_login` > '%s'",
+					date('Y-m-d H:i:s',$POST_last_login['0']));
+	}elseif($POST_last_login['1']>0){
+		$_last_login=sprintf(" AND `last_login` < '%s'",
+					date('Y-m-d H:i:s',$POST_last_login['1']));
+	}
+	else{
+		$_last_login='';
+	}
+	
+	$_member = sc_get_result("SELECT * FROM `member` WHERE `username` LIKE '%%%s%%' AND `email` LIKE '%%%s%%' AND `web_site` LIKE '%%%s%%' $_last_login $_joined $_level ORDER BY `id` ASC",array(sc_namefilter($_POST['username']),$_POST['email'],$_POST['web_site']));
+}
+
+$view = new View('theme/admin_default.html','admin/nav.php','',$center['site_name'],'會員搜尋',true);
+?>
+<h2 class="page-header">會員搜尋</h2>
+<?php if(!isset($_GET['search'])or!isset($_POST['level'])or!isset($_POST['joined'])or!isset($_POST['last_login'])or!isset($_POST['username'])or!isset($_POST['email'])or!isset($_POST['web_site'])){ ?>
+<form class="form-horizontal form-sm" action="membersearch.php?search" method="POST">	
+	<div class="form-group">
+		<label class="col-sm-3 control-label" for="username">帳號：</label>
+		<div class="col-sm-9">
+			<input class="form-control" name="username" type="text">
+		</div>
+	</div>
+	<div class="form-group">
+		<label class="col-sm-3 control-label" for="email">電子信箱：</label>
+		<div class="col-sm-9">	
+			<input class="form-control" name="email" type="text">
+		</div>
+	</div>
+	<div class="form-group">
+		<label class="col-sm-3 control-label" for="web_site">個人網站：</label>
+		<div class="col-sm-9">	
+			<input class="form-control" name="web_site" type="text">
+		</div>
+	</div>
+	<div class="form-group">
+		<label class="col-sm-3 control-label" for="joined">註冊日期：</label>
+		<div class="col-sm-9">
+			<input class="form-control" name="joined[]" type="date" style="width:30%;display:inline-block;"> - 
+			<input class="form-control" name="joined[]" type="date" style="width:30%;display:inline-block;"><small>(YYYY-MM-DD)</small>
+		</div>
+	</div>
+	<div class="form-group">
+		<label class="col-sm-3 control-label" for="last_login">最後登入：</label>
+		<div class="col-sm-9">
+			<input class="form-control" name="last_login[]" type="date" style="width:30%;display:inline-block;"> - 
+			<input class="form-control" name="last_login[]" type="date" style="width:30%;display:inline-block;"><small>(YYYY-MM-DD)</small>
+		</div>
+	</div>
+	<div class="form-group">
+		<label class="col-sm-3 control-label" for="level">權限：</label>
+		<div class="col-sm-9">
+			<select class="form-control" name="level">
+				<option value="all">所有</option>
+				<?php foreach(sc_member_level_array() as $key=>$value){ ?>
+					<option value="<?php echo $key; ?>"><?php echo $value; ?></option>
+				<?php } ?>
+			</select>
+		</div>
+	</div>
+	<div class="form-group">
+		<div class="col-sm-offset-3 col-sm-9">
+			<input class="btn btn-success btn-lg" type="submit" value="搜尋">
+		</div>
+	</div>
+</form>
+<?php }else{if ($_member['num_rows']>0){ ?>
+<script>
+$(function(){
+	$('a.btn.btn-danger').click(function(e){
+		if(!window.confirm("確定刪除此會員？")){
+			e.preventDefault();
+		}
+	});
+});
+</script>
+<table class="table table-striped table-hover">
+  <tr>
+    <th width="7%">ID</th>
+    <th width="17%">帳號名稱</th>
+	<th width="17%">電子信箱</th>
+	<th width="12%">個人網站</th>
+	<th width="12%">註冊日期</th>
+	<th width="15%">最後登入</th>
+    <th width="10%">權限</th>
+    <th width="10%">管理</th>
+  </tr>
+<?php do { ?>
+  <tr>
+    <td><?php echo $_member['row']['id'] ;?></td>
+    <td><?php echo $_member['row']['username'] ;?></td>
+	<td><small><?php echo $_member['row']['email'] ;?></small></td>
+	<td><small><?php echo $_member['row']['web_site'] ;?></small></td>
+	<td style="font-size:92%;">
+		<small><?php echo date('Y-m-d',strtotime($_member['row']['joined'])); ?></small>
+	</td>
+	<td style="font-size:92%;">
+		<small><?php echo date('Y-m-d H:i',strtotime($_member['row']['last_login'])); ?></small>
+	</td>
+    <td><?php echo sc_member_level($_member['row']['level']); ?></td>
+    <td>
+		<a href="member.php?edit=<?php echo $_member['row']['id'] ;?>" class="btn btn-info btn-xs">編輯</a>
+		<a href="member.php?del=<?php echo $_member['row']['id'] ;?>" class="btn btn-danger btn-xs">刪除</a>
+	</td>
+  </tr>
+<?php } while ($_member['row'] = $_member['query']->fetch_assoc()); ?>
+</table>
+<?php }else{ ?>
+	<div class="alert alert-danger">很抱歉，沒有符合的資料！</div>
+<?php }} ?>
+<?php
+$view->render();
+?>
\ No newline at end of file
diff --git a/admin/notice.php b/admin/notice.php
index bad0a52..7e5581c 100644
--- a/admin/notice.php
+++ b/admin/notice.php
@@ -1,4 +1,36 @@
 <?php
+/*
+<Secret Center, open source member management system>
+Copyright (C) 2012-2016 Secret Center開發團隊 <http://center.gdsecret.net/#team>
+
+This program is free software: you can redistribute it and/or modify
+it under the terms of the GNU Affero General Public License as published by
+the Free Software Foundation, version 3.
+
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+GNU Affero General Public License for more details.
+
+You should have received a copy of the GNU Affero General Public License
+along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+Also add information on how to contact you by electronic and paper mail.
+
+  If your software can interact with users remotely through a computer
+network, you should also make sure that it provides a way for users to
+get its source.  For example, if your program is a web application, its
+interface could display a "Source" link that leads users to an archive
+of the code.  There are many ways you could offer source, and different
+solutions will be better for different programs; see section 13 for the
+specific requirements.
+
+  You should also get your employer (if you work as a programmer) or school,
+if any, to sign a "copyright disclaimer" for the program, if necessary.
+For more information on this, and how to apply and follow the GNU AGPL, see
+<http://www.gnu.org/licenses/>.
+*/
+
 set_include_path('../include/');
 $includepath = true;
 
@@ -11,66 +43,72 @@
 	exit;
 }
 
-if(isset($_POST['status'])&&isset($_POST['ptime'])&&abs($_POST['status'])>=0&&abs($_POST['ptime'])>=0){
+if(isset($_POST['status'])&&isset($_POST['mktime'])&&intval($_POST['status'])>=0&&intval($_POST['mktime'])>=0){
 	if($_POST['status']!='all'){
-		$_status=abs($_POST['status']);
+		$_status=intval($_POST['status']);
 		$_status_SQL=sprintf("`status` = '%d' AND",$_status);
 	}else{
 		$_status='';
 		$_status_SQL='';
 	}
-	$SQL->query("DELETE FROM `notice` WHERE $_status_SQL `ptime` < '%s'",array(date('Y-m-d H:i:s',time()-60*60*24*30*abs($_POST['ptime']))));
+	$SQL->query("DELETE FROM `notice` WHERE $_status_SQL `mktime` < '%s'",array(date('Y-m-d H:i:s',time()-60*60*24*30*abs($_POST['mktime']))));
 	$_GET['delok']=true;
 }
-$notice['num_rows']=$SQL->query("SELECT * FROM `notice`")->num_rows;
-$unread_notice['num_rows']=$SQL->query("SELECT * FROM `notice` WHERE `status`='0'")->num_rows;
-$read_notice['num_rows']=$SQL->query("SELECT * FROM `notice` WHERE `status`='1'")->num_rows;
+$_notice['num_rows']=$SQL->query("SELECT * FROM `notice`")->num_rows;
+$_unread_notice['num_rows']=$SQL->query("SELECT * FROM `notice` WHERE `status`='0'")->num_rows;
+$_read_notice['num_rows']=$SQL->query("SELECT * FROM `notice` WHERE `status`='1'")->num_rows;
 
-$view = new View('../view/new_theme.html','../include/admin_nav.php',$center['site_name'],'通知管理',true);
-$view->addScript("https://ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js");
-$view->addScript("../include/js/channel.js");
+$view = new View('theme/admin_default.html','admin/nav.php','',$center['site_name'],'通知管理',true);
 ?>
+<script>
+$(function(){
+	$('input.btn.btn-danger').click(function(e){	
+		if(!window.confirm('確定刪除？')){
+			e.preventDefault();
+		}
+	});
+});
+</script>
 <?php if(isset($_GET['delok'])){ ?>
 	<div class="alert alert-success">刪除成功！</div>
 <?php } ?>
-<div class="main">
-	<h2 class="subtitle">通知管理</h2>
-	<p>
-		目前總共有 <?php echo $notice['num_rows']; ?> 筆通知，
-		<?php echo $unread_notice['num_rows']; ?> 筆未讀，
-		<?php echo $read_notice['num_rows']; ?> 筆已讀
-	</p>
-	<form class="form-horizontal" id="form1" name="form1" action="notice.php" method="POST">
-		<div class="control-group">
-		<label class="control-label" for="ptime">時間：</label>
-		<div class="controls">
-				<select name="ptime" id="ptime" class="input-large">
-					<option value="12">一年前</option>
-					<option value="9">九個月前</option>
-					<option value="6">六個月前</option>
-					<option value="3">三個月前</option>
-					<option value="2">二個月前</option>
-					<option value="1">一個月前</option>
-					<option value="0">不限</option>
-				</select>
-			</div>
+<h2 class="page-header">通知管理</h2>
+<p>
+	目前總共有 <?php echo $_notice['num_rows']; ?> 筆通知，
+	<?php echo $_unread_notice['num_rows']; ?> 筆未讀，
+	<?php echo $_read_notice['num_rows']; ?> 筆已讀
+</p>
+<form class="form-horizontal form-sm" action="notice.php" method="POST">
+	<div class="form-group">
+	<label class="col-sm-3 control-label" for="mktime">時間：</label>
+	<div class="col-sm-6">
+			<select class="form-control" name="mktime">
+				<option value="12">一年前</option>
+				<option value="9">九個月前</option>
+				<option value="6">六個月前</option>
+				<option value="3" selected>三個月前</option>
+				<option value="2">二個月前</option>
+				<option value="1">一個月前</option>
+				<option value="0">不限</option>
+			</select>
 		</div>
-		<div class="control-group">
-			<label class="control-label" for="status">狀態：</label>
-			<div class="controls">
-				<select name="status" id="status" class="input-large">
-					<option value="all">所有</option>
-					<option value="0">未讀</option>
-					<option value="1" selected>已讀</option>
-				</select>
-			</div>
+	</div>
+	<div class="form-group">
+		<label class="col-sm-3 control-label" for="status">狀態：</label>
+		<div class="col-sm-6">
+			<select class="form-control" name="status">
+				<option value="all">所有</option>
+				<option value="0">未讀</option>
+				<option value="1" selected>已讀</option>
+			</select>
 		</div>
-		<div class="form-actions">
-			<input class="btn btn-danger" type="button" onClick="if(window.confirm('確定刪除？')){document.getElementById('form1').submit();}" value="刪除">
+	</div>
+	<div class="form-group">
+		<div class="col-sm-offset-3 col-sm-6">
+			<input class="btn btn-danger" type="submit" value="刪除">
 		</div>
-
-	</form>
-</div>
+	</div>
+</form>
 <?php
 $view->render();
 ?>
\ No newline at end of file
diff --git a/admin/searchmember.php b/admin/searchmember.php
deleted file mode 100644
index 481714e..0000000
--- a/admin/searchmember.php
+++ /dev/null
@@ -1,148 +0,0 @@
-<?php
-set_include_path('../include/');
-$includepath = true;
-
-require_once('../Connections/SQL.php');
-require_once('../config.php');
-require_once('view.php');
-
-if(!isset($_SESSION['Center_Username']) or $_SESSION['Center_UserGroup'] != 9){
-    header("Location: ../index.php");
-    exit;
-}
-if(isset($_GET['search'])&&isset($_POST['level'])&&isset($_POST['joined'])&&isset($_POST['last_login'])&&isset($_POST['name'])&&isset($_POST['email'])&&isset($_POST['web_site'])){
-	if(is_numeric($_POST['level'])){
-		$_level= sprintf("AND `level` = '%d'",abs($_POST['level']));
- 	}else{
-		$_level='';
-	}
-	$POST_joined['0']=strtotime($_POST['joined']['0']);
-	$POST_joined['1']=strtotime($_POST['joined']['1']);
-	$POST_last_login['0']=strtotime($_POST['last_login']['0']);
-	$POST_last_login['1']=strtotime($_POST['last_login']['1']);
-	if($POST_joined['0']>0&&$POST_joined['1']>0){
-		$_joined=sprintf(" AND `joined` BETWEEN '%s' AND '%s'",
-					date('Y-m-d H:i:s',$POST_joined['0']),
-					date('Y-m-d H:i:s',$POST_joined['1']));
-	}elseif($POST_joined['0']>0){
-		$_joined=sprintf(" AND `joined` > '%s'",
-					date('Y-m-d H:i:s',$POST_joined['0']));
-	}elseif($POST_joined['1']>0){
-		$_joined=sprintf(" AND `joined` < '%s'",
-					date('Y-m-d H:i:s',$POST_joined['1']));
-	}
-	else{
-		$_joined='';
-	}
-	if($POST_last_login['0']>0&&$POST_last_login['1']>0){
-		$_last_login=sprintf(" AND `last_login` BETWEEN '%s' AND '%s'",
-					date('Y-m-d H:i:s',$POST_last_login['0']),
-					date('Y-m-d H:i:s',$POST_last_login['1']));
-	}elseif($POST_last_login['0']>0){
-		$_last_login=sprintf(" AND `last_login` > '%s'",
-					date('Y-m-d H:i:s',$POST_last_login['0']));
-	}elseif($POST_last_login['1']>0){
-		$_last_login=sprintf(" AND `last_login` < '%s'",
-					date('Y-m-d H:i:s',$POST_last_login['1']));
-	}
-	else{
-		$_last_login='';
-	}
-	
-	//echo vsprintf("SELECT * FROM member WHERE `name` LIKE '%%%s%%' AND `email` LIKE '%%%s%%' AND `web_site` LIKE '%%%s%%' $_last_login $_joined $_level ORDER BY id ASC",array(sc_namefilter($_POST['name']),$_POST['email'],$_POST['web_site']));die();
-	
-	$member_query = $SQL->query("SELECT * FROM member WHERE `name` LIKE '%%%s%%' AND `email` LIKE '%%%s%%' AND `web_site` LIKE '%%%s%%' $_last_login $_joined $_level ORDER BY id ASC",array(sc_namefilter($_POST['name']),$_POST['email'],$_POST['web_site']));
-	$member_row = $member_query->fetch_assoc();
-	$member_num_rows = $member_query->num_rows;
-}
-
-$view = new View('../view/new_theme.html','../include/admin_nav.php',$center['site_name'],'會員管理',true);
-$view->addScript("https://ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js");
-$view->addScript("../include/js/jquery.validate.js");
-$view->addScript("../include/js/channel.js");
-
-?>
-<?php if(!isset($_GET['search'])or!isset($_POST['level'])or!isset($_POST['joined'])or!isset($_POST['last_login'])or!isset($_POST['name'])or!isset($_POST['email'])or!isset($_POST['web_site'])){ ?>
-<div class="main">
-<h2 class="subtitle">會員搜尋</h2>
-<form id="form1" name="form1" class="form-horizontal" action="searchmember.php?search" method="POST">	
-	<div class="control-group">
-		<label class="control-label" for="name">帳號：</label>
-		<div class="controls">
-			<input name="name" type="text" class="input-xlarge" id="name">
-		</div>
-	</div>
-	<div class="control-group">
-		<label class="control-label" for="email">電子信箱：</label>
-		<div class="controls">	
-			<input name="email" type="text" id="email" class="input-xlarge" />
-		</div>
-	</div>
-	<div class="control-group">
-		<label class="control-label" for="web_site">個人網站：</label>
-		<div class="controls">	
-			<input name="web_site" type="text" id="web_site" class="input-xlarge" />
-		</div>
-	</div>
-	<div class="control-group">
-		<label class="control-label" for="joined">註冊日期：</label>
-		<div class="controls">
-			<input name="joined[]" type="date" class="input-small" /> - 
-			<input name="joined[]" type="date" class="input-small" />(YYYY-MM-DD)
-		</div>
-	</div>
-	<div class="control-group">
-		<label class="control-label" for="last_login">最後登入：</label>
-		<div class="controls">
-			<input name="last_login[]" type="date" class="input-small" /> - 
-			<input name="last_login[]" type="date" class="input-small" />(YYYY-MM-DD)
-		</div>
-	</div><div class="control-group">
-		<label class="control-label" for="level">權限：</label>
-		<div class="controls">
-			<select name="level" id="level" class="input-xlarge">
-				<option value="all">所有</option>
-				<?php foreach(sc_member_level_array() as $key=>$value){ ?>
-					<option value="<?php echo $key; ?>"><?php echo $value; ?></option>
-				<?php } ?>
-			</select>
-		</div>
-	</div>
-	<div class="form-actions">
-		<input name="button" type="submit" id="button" class="btn btn-success" value="搜尋" />
-	</div>
-</form>
-<?php }else{if ($member_num_rows>0){ ?>
-<h2 class="subtitle">會員搜尋</h2>
-<table class="table table-striped table-hover">
-  <tr>
-    <th width="5%">ID</th>
-    <th width="20%">帳號名稱</th>
-	<th width="15%">電子信箱</th>
-	<th width="15%">個人網站</th>
-	<th width="15%">註冊日期</th>
-	<th width="15%">最後登入</th>
-    <th width="5%">權限</th>
-    <th width="10%">管理</th>
-  </tr>
-<?php do { ?>
-  <tr>
-    <td><?php echo $member_row['id'] ;?></td>
-    <td><?php echo $member_row['name'] ;?></td>
-	<td><small><?php echo $member_row['email'] ;?></small></td>
-	<td><small><?php echo $member_row['web_site'] ;?></small></td>
-	<td style="line-height:0.8em;"><small><?php echo $member_row['joined'] ;?></small></td>
-	<td style="line-height:0.8em;"><small><?php echo $member_row['last_login'] ;?></small></td>
-    <td><?php echo sc_member_level($member_row['level']); ?></td>
-    <td><a href="member.php?edit=<?php echo $member_row['id'] ;?>">編輯</a>│<a href="javascript:if(confirm('確定刪除此會員？'))location='member.php?del=<?php echo $member_row['id'] ;?>'">刪除</a></td>
-  </tr>
-<?php } while ($member_row = $member_query->fetch_assoc()); ?>
-</table>
-
-<?php }else{ ?>
-	<div class="alert alert-error">很抱歉，沒有符合的資料！</div>
-<?php }} ?>
-</div>
-<?php
-$view->render();
-?>
\ No newline at end of file
diff --git a/avatar.php b/avatar.php
index 83eb197..639b8a5 100644
--- a/avatar.php
+++ b/avatar.php
@@ -1,4 +1,36 @@
 <?php
+/*
+<Secret Center, open source member management system>
+Copyright (C) 2012-2016 Secret Center開發團隊 <http://center.gdsecret.net/#team>
+
+This program is free software: you can redistribute it and/or modify
+it under the terms of the GNU Affero General Public License as published by
+the Free Software Foundation, version 3.
+
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+GNU Affero General Public License for more details.
+
+You should have received a copy of the GNU Affero General Public License
+along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+Also add information on how to contact you by electronic and paper mail.
+
+  If your software can interact with users remotely through a computer
+network, you should also make sure that it provides a way for users to
+get its source.  For example, if your program is a web application, its
+interface could display a "Source" link that leads users to an archive
+of the code.  There are many ways you could offer source, and different
+solutions will be better for different programs; see section 13 for the
+specific requirements.
+
+  You should also get your employer (if you work as a programmer) or school,
+if any, to sign a "copyright disclaimer" for the program, if necessary.
+For more information on this, and how to apply and follow the GNU AGPL, see
+<http://www.gnu.org/licenses/>.
+*/
+
 require_once('Connections/SQL.php');
 require_once('config.php');
 require_once('include/view.php');
@@ -8,21 +40,17 @@
 	exit;
 }
 
-$view = new View('view/new_theme.html','include/nav.php',$center['site_name'],'修改頭像');
-$view->addScript("https://ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js");
-$view->addScript("include/js/channel.js");
-$view->addScript("include/js/notice.js");
-
-$member = sc_get_member_data($_SESSION['Center_Username']);
+$_member = sc_get_result("SELECT * FROM `member` WHERE `id` = '%d'",array($_SESSION['Center_Id']));
+$_avatar_dir='include/avatar/';
 $upload_error = null;
 
-if((@$_GET['step'] == 2) && (!isset($_GET['no'])) && isset($_FILES['upload'])) {
+if(@$_GET['step'] == 2 && !isset($_GET['no']) && isset($_FILES['upload'])) {
 	try {
-		//檢查頭像資料夾是否存在
-		if(!is_dir("images/avatar")) {
-			//不存在的話就創建頭像資料夾
-			if(!mkdir("images/avatar")){
-				die("頭像資料夾不存在，並且創建失敗");
+		//檢查頭貼資料夾是否存在
+		if(!is_dir($_avatar_dir)) {
+			//不存在的話就創建頭貼資料夾
+			if(!mkdir($_avatar_dir)){
+				die("頭貼資料夾不存在，並且創建失敗");
 			}
 		}
 		if($_FILES['upload']['name'] != "" && is_uploaded_file($_FILES['upload']['tmp_name'])){
@@ -34,26 +62,26 @@
 				throw new Exception("檔案大小超出限制");
 			}
 			
-			$limitedext = array("jpeg","jpg","gif","png");//允許的副檔名
+			$limitedext = array('jpeg','jpg','gif','png');//允許的副檔名
 			$extend = pathinfo($_FILES['upload']['name'], PATHINFO_EXTENSION);//檔案副檔名
-			$new_name=$_SESSION['Center_Username'].'_'.substr(sc_keygen(),0,8);//檔案亂數名(不含副檔名)
-			$file='images/avatar/'.$new_name.'.'.$extend;
+			$new_name=$_SESSION['Center_Id'];//檔案名(不含副檔名)
+			$file=$_avatar_dir.$new_name.'.'.$extend;
 			
 			if(!in_array($extend,$limitedext)){
 				throw new Exception("不允許此檔案格式");
 			}
-			if($center['avatar']['img_tiny']){
-				$file='images/avatar/'.$new_name.'.jpg';
-				sc_avatar_image_tiny($_FILES['upload']['tmp_name'],$extend,$file,240,80);//壓縮圖片為JPG格式
+			if($center['avatar']['compress']){
+				$file=$_avatar_dir.$new_name.'.jpg';
+				sc_avatar_compress($_FILES['upload']['tmp_name'],$extend,$file,240,$center['avatar']['quality']);//壓縮圖片為JPG格式
 			}else{
 				move_uploaded_file($_FILES['upload']['tmp_name'],$file);//複製檔案
 			}
-			if($member['row']['avatar']!='../images/default_avatar.png'){
-				unlink(str_replace('../','',$member['row']['avatar']));//刪除舊頭像
+			if($_member['row']['avatar']!='default.png'&&$_avatar_dir.$_member['row']['avatar']!=$file){
+				unlink($_avatar_dir.$_member['row']['avatar']);//刪除舊頭貼
 			}
-			$SQL->query("UPDATE member SET avatar = '%s' WHERE name = '%s'",array(
-				'../'.$file,
-				$_SESSION['Center_Username']
+			$SQL->query("UPDATE `member` SET `avatar` = '%s' WHERE `id` = '%s'",array(
+				ltrim($file,$_avatar_dir),
+				$_SESSION['Center_Id']
 			));
 			header("Location: avatar.php?ok");
 		}
@@ -65,33 +93,29 @@
 		$upload_error = $e->getMessage();
 	}
 }
+
+$view = new View('include/theme/default.html','include/nav.php',NULL,$center['site_name'],'修改頭貼');
+$view->addScript("include/js/notice.js");
 ?>
 <div class="main">
-	<h2>修改頭像</h2>
-<?php
-if($upload_error !== null){
-?>
-	<div class="alert alert-error"><?php echo $upload_error; ?></div>
-<?php }
-if(isset($_GET['no'])) { ?>
-	<div class="alert alert-error">修改頭像失敗！</div>
-<?php }
-if(isset($_GET['ok'])) {
-?>
-	<div class="alert alert-success">修改頭像成功！</div>
-<?php }
-if(!isset($_GET['step'])) {
-?>
+	<h2 class="page-header">修改頭貼</h2>
+<?php if($upload_error !== null){ ?>
+<div class="alert alert-danger"><?php echo $upload_error; ?></div>
+<?php }elseif(isset($_GET['no'])) { ?>
+<div class="alert alert-danger">修改頭貼失敗！</div>
+<?php }elseif(isset($_GET['ok'])){ ?>
+<div class="alert alert-success">修改頭貼成功！</div>
+<?php }if(!isset($_GET['step'])) { ?>
 	<form action="avatar.php?step=2" method="post" enctype="multipart/form-data" name="form1">
-		<p>你目前的頭像：</p>
-		<img src="include/avatar.php?id=<?php echo $_SESSION['Center_Username'] ?>" class="avatar avatar-xlarge">
+		<p>你目前的頭貼：</p>
+		<img src="<?php echo sc_avatar_url($_member['row']['id']); ?>" class="avatar avatar-lg">
 		<br>
 		<div class="controls">
 			<p><input name="upload" type="file" id="upload" /></p>
 			<input type="submit" name="button" class="btn btn-info" value="上傳" />
 		</div>
 		<br>
-		<p>上傳頭像僅允許 jpg.gif.png 格式圖片，且檔案大小不得超過 <?php echo $center['avatar']['max_size']; ?> KB，建議尺寸 100x100 ~ 200x200(px)。</p>
+		<p>上傳頭貼僅允許 jpg.gif.png 格式圖片，且檔案大小不得超過 <?php echo $center['avatar']['max_size']; ?> KB，建議尺寸 100x100 ~ 200x200(px)。</p>
 	</form>
 <?php } ?>
 </div>
diff --git a/chat.php b/chat.php
index c81eb78..78d7cf4 100644
--- a/chat.php
+++ b/chat.php
@@ -1,4 +1,36 @@
 <?php
+/*
+<Secret Center, open source member management system>
+Copyright (C) 2012-2016 Secret Center開發團隊 <http://center.gdsecret.net/#team>
+
+This program is free software: you can redistribute it and/or modify
+it under the terms of the GNU Affero General Public License as published by
+the Free Software Foundation, version 3.
+
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+GNU Affero General Public License for more details.
+
+You should have received a copy of the GNU Affero General Public License
+along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+Also add information on how to contact you by electronic and paper mail.
+
+  If your software can interact with users remotely through a computer
+network, you should also make sure that it provides a way for users to
+get its source.  For example, if your program is a web application, its
+interface could display a "Source" link that leads users to an archive
+of the code.  There are many ways you could offer source, and different
+solutions will be better for different programs; see section 13 for the
+specific requirements.
+
+  You should also get your employer (if you work as a programmer) or school,
+if any, to sign a "copyright disclaimer" for the program, if necessary.
+For more information on this, and how to apply and follow the GNU AGPL, see
+<http://www.gnu.org/licenses/>.
+*/
+
 require_once('Connections/SQL.php');
 require_once('config.php');
 require_once('include/view.php');
@@ -8,21 +40,17 @@
 	exit;
 }
 
-$view = new View('view/new_theme.html','include/nav.php',$center['site_name'],'聊天室');
-$view->addScript("https://ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js");
-$view->addScript("include/js/channel.js");
+$view = new View('include/theme/default.html','include/nav.php',NULL,$center['site_name'],'聊天室');
+$view->addScript("include/js/chat.js");
 $view->addScript("include/js/notice.js");
 ?>
 <script>
 $(function(){
-	window.user = <?php echo isset($_GET['user']) ? "'" . $_GET['user'] . "'" : 'null'; ?>;
-	new Chat("#target",false,<?php echo $center['chat']['public'] * 1000; ?>);
+	new sc_chat('#chat',<?php echo $center['chat']['public']*1000; ?>);
 });
 </script>
-<div class="main">
-<h2>聊天室</h2>
-	<div id="target" class="chat"></div>
-</div>
+<h2 class="page-header">聊天室</h2>
+<div id="chat"></div>
 <?php
 	$view->render();
 ?>
\ No newline at end of file
diff --git a/config-sample.php b/config-sample.php
index 5ea9ca2..d688f41 100644
--- a/config-sample.php
+++ b/config-sample.php
@@ -1,4 +1,36 @@
 <?php
+/*
+<Secret Center, open source member management system>
+Copyright (C) 2012-2016 Secret Center開發團隊 <http://center.gdsecret.net/#team>
+
+This program is free software: you can redistribute it and/or modify
+it under the terms of the GNU Affero General Public License as published by
+the Free Software Foundation, version 3.
+
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+GNU Affero General Public License for more details.
+
+You should have received a copy of the GNU Affero General Public License
+along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+Also add information on how to contact you by electronic and paper mail.
+
+  If your software can interact with users remotely through a computer
+network, you should also make sure that it provides a way for users to
+get its source.  For example, if your program is a web application, its
+interface could display a "Source" link that leads users to an archive
+of the code.  There are many ways you could offer source, and different
+solutions will be better for different programs; see section 13 for the
+specific requirements.
+
+  You should also get your employer (if you work as a programmer) or school,
+if any, to sign a "copyright disclaimer" for the program, if necessary.
+For more information on this, and how to apply and follow the GNU AGPL, see
+<http://www.gnu.org/licenses/>.
+*/
+
 if(!session_id()) {
     session_start();
 }
@@ -14,12 +46,10 @@
 $center['register'] = "%d"; //是否開啟註冊，0為關閉，1為開啟
 $center['mail'] = "%s"; //網站Email，用於重設密碼信件
 
-$center['file']['limitedext'] = array("%s");//文件夾_允許上傳的檔案格式
-$center['file']['max_files'] = "%d"; //文件夾_最多檔案數量
-$center['file']['max_size'] = "%d"; //文件夾_檔案大小限制 單位 KB
 $center['chat']['public'] = "%d"; //聊天室_發言間隔 單位 秒
-$center['avatar']['max_size'] = "%d";//頭像_檔案大小限制 單位 KB
-$center['avatar']['img_tiny'] = "%d";//頭像_是否開啟壓縮，0為關閉，1為開啟
+$center['avatar']['max_size'] = "%d";//頭貼_檔案大小限制 單位 KB
+$center['avatar']['compress'] = "%d";//頭貼_是否開啟壓縮，0為關閉，1為開啟
+$center['avatar']['quality'] = "%d";//頭貼_壓縮品質設定 0~100
 $center['forum']['captcha']="%d"; //論壇_驗證碼是否開啟，0為關閉，1為開啟
 $center['forum']['limit']="%d"; //論壇_帖子&回覆每頁顯示數量
 $center['member']['message']=
diff --git a/config.php b/config.php
index d806929..5948564 100644
--- a/config.php
+++ b/config.php
@@ -1,4 +1,36 @@
 <?php
+/*
+<Secret Center, open source member management system>
+Copyright (C) 2012-2016 Secret Center開發團隊 <http://center.gdsecret.net/#team>
+
+This program is free software: you can redistribute it and/or modify
+it under the terms of the GNU Affero General Public License as published by
+the Free Software Foundation, version 3.
+
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+GNU Affero General Public License for more details.
+
+You should have received a copy of the GNU Affero General Public License
+along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+Also add information on how to contact you by electronic and paper mail.
+
+  If your software can interact with users remotely through a computer
+network, you should also make sure that it provides a way for users to
+get its source.  For example, if your program is a web application, its
+interface could display a "Source" link that leads users to an archive
+of the code.  There are many ways you could offer source, and different
+solutions will be better for different programs; see section 13 for the
+specific requirements.
+
+  You should also get your employer (if you work as a programmer) or school,
+if any, to sign a "copyright disclaimer" for the program, if necessary.
+For more information on this, and how to apply and follow the GNU AGPL, see
+<http://www.gnu.org/licenses/>.
+*/
+
 if(!session_id()) {
     session_start();
 }
@@ -10,21 +42,19 @@
 global $center;
 
 date_default_timezone_set("Asia/Taipei"); //時區設定
-$center['site_name'] = "Secret會員系統"; //網站名稱
+$center['site_name'] = "Secret Center 9.0"; //網站名稱
 $center['register'] = "1"; //是否開啟註冊，0為關閉，1為開啟
 $center['mail'] = "admin@example.com"; //網站Email，用於重設密碼信件
 
-$center['file']['limitedext'] = array("png","gif","jpg","zip","exe","txt","rar","doc","ppt","xls","docx","pptx","xlsx","odt","odp","ods");//文件夾_允許上傳的檔案格式
-$center['file']['max_files'] = "10"; //文件夾_最多檔案數量
-$center['file']['max_size'] = "100"; //文件夾_檔案大小限制 單位 KB
-$center['chat']['public'] = "3"; //聊天室_發言間隔 單位 秒
-$center['avatar']['max_size'] = "100";//頭像_檔案大小限制 單位 KB
-$center['avatar']['img_tiny'] = "1";//頭像_是否開啟壓縮，0為關閉，1為開啟
+$center['chat']['public'] = "1"; //聊天室_發言間隔 單位 秒
+$center['avatar']['max_size'] = "100";//頭貼_檔案大小限制 單位 KB
+$center['avatar']['compress'] = "1";//頭貼_是否開啟壓縮，0為關閉，1為開啟
+$center['avatar']['quality'] = "80";//頭貼_壓縮品質設定 0~100
 $center['forum']['captcha']="0"; //論壇_驗證碼是否開啟，0為關閉，1為開啟
 $center['forum']['limit']="30"; //論壇_帖子&回覆每頁顯示數量
 $center['member']['message']=
 <<<MSG
-歡迎來到 Secret會員系統！
+歡迎使用 Secret Center ！
 MSG;
 ;//會員中心信息
 require_once('function.php');
\ No newline at end of file
diff --git a/file.php b/file.php
deleted file mode 100644
index 48e37ef..0000000
--- a/file.php
+++ /dev/null
@@ -1,312 +0,0 @@
-<?php
-require_once('Connections/SQL.php');
-require_once('config.php');
-require_once('include/view.php');
-
-if(!isset($_SESSION['Center_Username'])){
-	header("Location: index.php?login");
-	exit;
-}
-
-$view = new View('view/new_theme.html','include/nav.php',$center['site_name'],'文件夾');
-$view->addScript("https://ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js");
-$view->addScript("include/js/channel.js");
-$view->addScript("include/js/notice.js");
-$view->addScript("include/js/fileupload/jquery.ui.widget.js");
-$view->addScript("include/js/fileupload/jquery.iframe-transport.js");
-$view->addScript("include/js/fileupload/jquery.fileupload.js");
-
-if(!is_dir('include/file/' . $_SESSION['Center_Username'] . '/')){
-	@mkdir('include/file/' . $_SESSION['Center_Username'] .'/');
-}
-
-if(isset($_FILES['files']) && $_FILES['files']['error'] == 0){
-	$dir = 'include/file/'.$_SESSION['Center_Username'];
-	
-	if(!is_dir($dir.'/')) {
-		if(!mkdir($dir)){
-			echo '{"status":"error","msg":"上傳目錄不存在，並且創建失敗"}';
-			exit;
-		}
-	}
-	
-	$filequantity = count(glob($dir . "/*.*"));
-	$_extend = pathinfo($_FILES['files']['name'], PATHINFO_EXTENSION);
-	$_size = $_FILES['files']['size'];
-	
-	if($filequantity >= $center['file']['max_files']){
-		echo '{"status":"error","msg":"文件數量已達最高上限"}';
-		exit;
-	}
-	if(!in_array($_extend,$center['file']['limitedext'])){
-		echo '{"status":"error","msg":"不允許此檔案格式"}';
-		exit;
-	}
-	if($_size>$center['file']['max_size']*1000){
-		echo '{"status":"error","msg":"檔案大小超過限制"}';
-		exit;
-	}
-	move_uploaded_file($_FILES['files']['tmp_name'],$dir.'/'.sc_namefilter($_FILES['files']['name']));
-	
-	echo '{"status":"success"}';
-	exit;
-}
-?>
-<script>
-$(function(){
-	$(document.body).on('dblclick','.alert',function(){
-		$(this).remove();
-	});
-	$('.file li').on('dblclick contextmenu',function(e){
-		e.preventDefault();
-		var file = $(this).attr('data-file');
-		$('.context-menu span a').each(function(){
-			$(this).attr('data-file',encodeURIComponent(file));
-		});
-		$('.context-menu').css({
-			top: e.pageY,
-			left: e.pageX
-		}).fadeIn(200);
-	});
-	$('.context-menu span a').on('click',function(e){
-		e.preventDefault();
-		var file = $(this).attr('data-file');
-		if($(this).attr('data-action')=='delete'){
-			if(window.confirm('確定刪除?')){
-				$('.main').prepend('<div class="loading alert alert-info">正在刪除中...</div>');
-				$.ajax({
-					url:"include/ajax/file.php?del="+file+"&"+ Math.random(),
-					dataType: 'text',
-					success: function(data){
-						if(data==1){
-							$('.loading').remove();
-							$('.file').find("[data-file='"+file+"']").remove();
-							$('.main').prepend('<div class="alert alert-success">成功刪除'+file+'！</div>');
-							$('#file_count').text($('#file_count').text()-1);
-						}
-					}
-				});
-			}
-		} else if($(this).attr('data-action')=='rename'){
-			$('.renaming').hide();
-			$('#rename').modal('show');
-			$('#rename .modal-body p').text('您正準備重新命名：'+ $(this).attr('data-file'));
-			$('#newname').val($(this).attr('data-file').substring(0,$(this).attr('data-file').lastIndexOf('.')));
-			$('#file_ext').text($(this).attr('data-file').substring($(this).attr('data-file').lastIndexOf('.')));
-			$('#rename .btn.btn-success').on('click',function(e){
-				e.preventDefault();
-				if($('#newname').val()!=''){
-					$('.renaming').show();
-					$.ajax({
-						url:"include/ajax/file.php?rename="+file+"&newname="+encodeURIComponent($('#newname').val())+'&'+ Math.random(),
-						dataType: 'json',
-						success: function(data){
-							if(data!=''){
-								$('.renaming').removeClass('alert-info').addClass('alert-success').text('重新命名成功！');
-								$('.file').find("[data-file='"+file+"']").attr('data-file',data.file).find('a').attr('href',data.url).text(data.file);
-								setTimeout(function(){
-									$('#rename').modal('hide');
-									$('.renaming').removeClass('alert-success').addClass('alert-info').text('處理中，請稍後...');
-									$('.renaming').hide();
-									},1500
-								);
-							}
-						}
-					});
-				}
-			});
-		}
-	});
-	$(':not(.context-menu)').on('click',function(){
-		$('.context-menu').fadeOut(200);
-	});
-	
-	var max_file_size=<?php echo $center['file']['max_size']; ?>*1000;
-	var limitedext=['<?php echo implode("','",$center['file']['limitedext']); ?>'];
-	
-	$('#fileupload').fileupload({
-		dropZone: $('#drop'),
-		url: 'file.php',
-		dataType: 'json',
-		add: function (e, data) {
-	            var tpl = $('<div class="uploading"><ul class="inline"><li class="cancel"><i class="icon icon-remove"></i></li><li class="pro"></li><li class="info"></li></ul></div>');
-	            tpl.find('.info').text(data.files[0].name);
-	            data.context = tpl.appendTo($('.item'));
-				
-				$('#progress .bar').width(0).text('');
-				
-				var extend=data.files[0].name.split('.').pop();
-				
-				for(var i=0;i<limitedext.length;i++){
-					if(limitedext[i]==extend){
-						var in_array = true;
-						break;
-					}else{
-						var in_array = false;
-					}
-				}
-				
-				var error=0;
-				if(in_array!=true){
-					alert(data.files[0].name+' 不允許此格式');
-					error=1;
-				}
-				if(data.files[0].size>max_file_size){
-					alert(data.files[0].name+' 的大小過大');
-					error=1;
-				}
-				if(error==0){
-					var jqXHR = data.submit();
-				}else{
-					tpl.remove();
-				}
-				
-	            tpl.find('.cancel').click(function(){
-	                tpl.fadeOut(function(){
-						if(tpl.hasClass('uploading')){
-							jqXHR.abort();  //終止上傳
-						}
-	                    tpl.remove();
-	                });
-	            });
-	        },
-
-	        //單一檔案進度
-	        progress: function(e, data){
-	            var progress = parseInt(data.loaded / data.total * 100, 10);
-	            data.context.find('.pro').text(progress+'%').change();
-	            if(progress == 100){
-	                data.context.addClass('uploaded').removeClass('uploading');
-	            }
-	        },
-
-			//總進度
-			progressall: function (e, data) {
-				var progress = parseInt(data.loaded / data.total * 100, 10);
-				$('#progress .bar').css('width', progress + '%');
-				$('#progress .bar').text(progress + '%');
-			},
-
-	        //上傳失敗
-	        fail:function(e, data){
-	            data.context.addClass('error');
-				data.context.find('.pro').text();
-	        },
-
-	        //單一檔案上傳完成
-	        done: function (e, data) {
-				if(data.result.status=='error'){
-					data.context.addClass('error');
-					data.context.find('.pro').text(data.result.msg);
-				}
-	        },
-
-	        //全部上傳完畢
-	        /*stop: function (e) {
-				window.document.location='file.php?uploading';
-	        }*/
-    });
-});
-</script>
-<div class="main">
-	<h2>文件夾</h2>
-	<?php if(isset($_GET['upload'])){
-		$dir = 'include/file/'.$_SESSION['Center_Username'];
-		$filequantity = count(glob($dir . "/*.*"));
-		if($filequantity >= $center['file']['max_files']){
-	?>
-		<div class="alert alert-error">文件數量已達最高上限！</div>
-	<?php }else{ ?>
-		<div class="remarks">檔案上傳相關規定：
-			<ol>
-				<li>禁止上傳違法的檔案、圖片</li>
-				<li>檔案大小限制：<?php echo floor($center['file']['max_size']); ?> KB</li>
-				<li>允許的檔案類型：<?php echo implode(",",$center['file']['limitedext']); ?></li>
-			</ol>
-		</div>
-		<div id="uploader">
-			<div id="drop" class="well">
-				<p>將檔案拖曳到這裡</p>
-				<input type="file" id="fileupload" name="files" multiple>
-			</div>
-			總進度
-			<div id="progress" class="progress progress-success" style="margin:0 auto;width: 50%;">
-				<div class="bar" style="width: 0%;"></div>
-			</div>
-			<div class="item"></div>
-		</div>
-	<?php }
-	} else {
-		if(isset($_GET['uploading'])){
-	?>
-		<div class="alert alert-success">檔案上傳成功！</div>
-	<?php }
-		$dir = 'include/file/'.$_SESSION['Center_Username'];
-		$filequantity = count(glob($dir."/*.*"));
-		
-		if(!is_dir($dir.'/')) {      //檢查會員資料夾是否存在
-			if(!mkdir($dir)){  //不存在的話就創建會員資料夾
-				die ("上傳目錄不存在，並且創建失敗");
-			}
-		}
-		
-		$handle = @opendir($dir) or die("無法打開" . $dir);
-		
-		if($filequantity >= $center['file']['max_files']){
-			echo '<div class="alert alert-error">文件數量已達最高上限！</div>';
-		}
-		
-		echo "<strong>在 " . $_SESSION['Center_Username'] . " 文件夾中的檔案</strong>，目前有<span id='file_count'>" . $filequantity . "</span>個文件，上限".$center['file']['max_files'] ."個！<br>";
-	?>
-		<ul class="file">
-	<?php
-		while($file = readdir($handle)){
-			if($file != "." && $file != ".."){ 
-			$myfile = $dir."/".$file;
-			$extend = pathinfo($myfile, PATHINFO_EXTENSION);//取得副檔名
-	?>
-		<li data-file="<?php echo $file ?>">
-			<img src="./images/file.png">
-			<a href="<?php echo $myfile ?>" target="_blank"><?php echo $file ?></a><br>
-			<span style="font-size:84%;">
-			<?php
-				$ext = array('位元組','KB','MB','GB','TB','PB','EB','YB');
-				$size = filesize($myfile);
-				$i = floor(log($size,1000));
-				echo sprintf('%.2f '.$ext[$i], ($size/pow(1000, floor($i))));
-			?>
-			</span>
-		</li>
-	<?php }
-	}
-	?>
-		<br class="clearfix" />
-	</ul>
-	<div class="context-menu">
-		<span><a data-action="delete"><i class="icon-trash"></i>刪除</a></span>
-		<span><a data-action="rename"><i class="icon-pencil"></i>重新命名</a></span>
-	</div>
-	<?php
-	clearstatcache();
-	closedir($handle);
-	}?>
-	<div id="rename" class="modal hide fade">
-		<div class="modal-header">
-			<button type="button" class="close" data-dismiss="modal" aria-hidden="true">×</button>
-			<h3>重新命名</h3>
-		</div>
-		<div class="modal-body">
-			<div class="renaming alert alert-info">處理中，請稍後...</div>
-			<p></p>
-			<input id="newname" name="newname" type="text" class="input-xlarge" maxlength="25">
-			<span id="file_ext"></span>
-		</div>
-		<div class="modal-footer">
-			<span class="btn btn-success"><i class="icon-ok icon-white"></i> 確定修改</span>
-			<span class="btn" data-dismiss="modal" aria-hidden="true"><i class="icon-remove"></i> 關閉</span>
-		</div>
-	</div>
-</div>
-<?php
-	$view->render();
-?>
\ No newline at end of file
diff --git a/forum.php b/forum.php
index be9663a..1150144 100644
--- a/forum.php
+++ b/forum.php
@@ -1,4 +1,36 @@
 <?php
+/*
+<Secret Center, open source member management system>
+Copyright (C) 2012-2016 Secret Center開發團隊 <http://center.gdsecret.net/#team>
+
+This program is free software: you can redistribute it and/or modify
+it under the terms of the GNU Affero General Public License as published by
+the Free Software Foundation, version 3.
+
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+GNU Affero General Public License for more details.
+
+You should have received a copy of the GNU Affero General Public License
+along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+Also add information on how to contact you by electronic and paper mail.
+
+  If your software can interact with users remotely through a computer
+network, you should also make sure that it provides a way for users to
+get its source.  For example, if your program is a web application, its
+interface could display a "Source" link that leads users to an archive
+of the code.  There are many ways you could offer source, and different
+solutions will be better for different programs; see section 13 for the
+specific requirements.
+
+  You should also get your employer (if you work as a programmer) or school,
+if any, to sign a "copyright disclaimer" for the program, if necessary.
+For more information on this, and how to apply and follow the GNU AGPL, see
+<http://www.gnu.org/licenses/>.
+*/
+
 require_once('Connections/SQL.php');
 require_once('config.php');
 require_once('include/view.php');
@@ -8,17 +40,6 @@
     exit;
 }
 
-$view = new View('view/new_theme.html','include/nav.php',$center['site_name'],'論壇');
-$view->addCSS("include/js/cleditor/jquery.cleditor.css");
-$view->addScript("https://ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js");
-$view->addScript("include/js/cleditor/jquery.cleditor.js");
-$view->addScript("include/js/cleditor/jquery.cleditor.icon.js");
-$view->addScript("include/js/cleditor/jquery.cleditor.table.js");
-$view->addScript("include/js/cleditor/jquery.cleditor.serverImg.js");
-$view->addScript("include/js/jquery.validate.js");
-$view->addScript("include/js/channel.js");
-$view->addScript("include/js/notice.js");
-
 if(isset($_GET['newpost'])){
 	if($_SESSION['Center_UserGroup']==0){
 		header("Location: forum.php?banned");
@@ -30,200 +51,196 @@
 		$_GET['block']=0;
 	}
 }
-if(isset($_POST['title']) && isset($_POST['post']) && trim(htmlspecialchars($_POST['title'])) != '' && trim($_POST['post'],"&nbsp;") != '') {;
+
+if(isset($_POST['title']) && isset($_POST['content']) && isset($_POST['block']) && isset($_POST['level']) && trim(htmlspecialchars($_POST['title'])) != '' && trim($_POST['content'],"&nbsp;") != '') {
+	$_POST['block']=abs(intval($_POST['block']));
 	if($center['forum']['captcha']==1){
 		if(strtoupper($_POST['captcha']) != strtoupper($_SESSION['captcha'])){
-			setcookie('post',$_POST['post'],time()+300);
+			setcookie('content',$_POST['content'],time()+600);
 			header("Location: forum.php?newpost&captcha");
 			exit;
 		}
 	}
-		
-	if($SQL->query("SELECT * FROM `forum_block` WHERE `id`='%d'",array(abs(intval($_POST['block']))))->num_rows>0){
-		sc_add_forum_post($_POST['title'],$_POST['post'],$_POST['block'],$_SESSION['Center_Username'],$_POST['level']);
-		header("Location: forum.php?posting&fid=".$_POST['block']);
+	
+	if($SQL->query("SELECT * FROM `forum_block` WHERE `id`='%d'",array($_POST['block']))->num_rows>0){
+		sc_add_forum_post($_POST['title'],$_POST['content'],$_POST['block'],$_SESSION['Center_Id'],$_POST['level']);
+		header("Location: forum.php?success&fid=".$_POST['block']);
 	}
 }
+
+
 if(isset($_GET['fid'])){
-	if($SQL->query("SELECT * FROM `forum_block` WHERE `id`='%d'",array(abs(intval($_GET['fid']))))->num_rows<1){
+	$_block = sc_get_result("SELECT * FROM `forum_block` WHERE `id`='%d'",array(abs(intval($_GET['fid']))));
+	
+	if($_block['num_rows']<1){
 		header("Location: forum.php");
 	}
+	
 	$limit_row=$center['forum']['limit'];
+	
 	if(isset($_GET['page'])){
 		$limit_start = abs(intval(($_GET['page']-1)*$limit_row));
-		$post_sql = sprintf("SELECT * FROM `forum` WHERE `block`='%d' ORDER BY `ptime` DESC LIMIT %d,%d",abs(intval($_GET['fid'])),$limit_start,$limit_row);
+		$_forum = sc_get_result("SELECT * FROM `forum` WHERE `block`='%d' ORDER BY `mktime` DESC LIMIT %d,%d",array($_block['row']['id'],$limit_start,$limit_row));
 	} else {
 		$limit_start=0;
-		$post_sql = sprintf("SELECT * FROM `forum` WHERE `block`='%d' ORDER BY `ptime` DESC LIMIT %d,%d",abs(intval($_GET['fid'])),$limit_start,$limit_row);
+		$_forum = sc_get_result("SELECT * FROM `forum` WHERE `block`='%d' ORDER BY `mktime` DESC LIMIT %d,%d",array($_block['row']['id'],$limit_start,$limit_row));
 	}
-	$_block = $SQL->query("SELECT * FROM `forum_block` WHERE `id`='%d'",array(abs(intval($_GET['fid']))))->fetch_assoc();
 }else{
-	$post_sql = sprintf("SELECT * FROM `forum_block` ORDER BY `position` ASC");
+	$_forum = sc_get_result("SELECT * FROM `forum_block` ORDER BY `position` ASC");
 }
-
-$post = $SQL->query($post_sql);
-$post_row = $post->fetch_assoc();
-$post_num_rows = $post->num_rows;
+$view = new View('include/theme/default.html','include/nav.php',NULL,$center['site_name'],'論壇');
+$view->addScript("include/js/notice.js");
 ?>
-<div class="main">
-<?php if(isset($_GET['posting'])){?>
+<?php if(isset($_GET['success'])){?>
 	<div class="alert alert-success">發佈成功！</div>
 <?php }elseif(isset($_GET['captcha'])){ ?>
-	<div class="alert alert-error">請檢查驗證碼！</div>
-	
+	<div class="alert alert-danger">請檢查驗證碼！</div>
 <?php }elseif(isset($_GET['banned'])){ ?>
-	<div class="alert alert-error">您被禁言無法發帖！</div>
-<?php }elseif(isset($_GET['gbanned'])){ ?>
-	<div class="alert alert-error">權限不足！</div>
+	<div class="alert alert-danger">您被禁言無法發帖！</div>
+<?php }elseif(isset($_GET['level'])){ ?>
+	<div class="alert alert-danger">權限不足！</div>
 <?php }
 if(isset($_GET['newpost'])) {
+$view->addCSS("include/js/cleditor/jquery.cleditor.css");
+$view->addScript("include/js/cleditor/jquery.cleditor.min.js");
+$view->addScript("include/js/cleditor/jquery.cleditor.table.js");
 ?>
-<script type="text/javascript">
+<script>
 $(function(){
     $("#cleditor").cleditor({width:'99%', height:350, useCSS:true})[0].focus();
-	$("#form1").validate({
-		rules:{
-			title:{required:true},
-			post:{required:true}
-		}
-	});
 	$('.captcha').on('click', function(e){
 		e.preventDefault();
 		$(this).attr('src', 'include/captcha.php?_=' + (new Date).getTime());
 	});
 });
 </script>
-<h2>發表帖子</h2>
-<form action="forum.php?newpost" method="POST" name="form1">
-	<input name="title" class="input-block-level" type="text" placeholder="標題">
-	<div class="controls controls-row">
-		<div class="span6">
-			<label class="control-label" for="block">區塊：</label>
-			<select class="input-xlarge" name="block" required="required">
-			<?php do{ ?>
-				<option value="<?php echo $post_row['id']; ?>" <?php if($post_row['id']==$_GET['block']){ ?>selected="selected"<?php } ?>>
-					<?php echo $post_row['blockname']; ?>
-				</option>
-			<?php }while ($post_row = $post->fetch_assoc());  ?>
-			</select>
+<h2 class="page-header">發表帖子</h2>
+<form action="forum.php?newpost" method="POST">
+	<div class="form-group">
+		<input class="form-control" name="title" type="text" placeholder="標題" required="required">
+	</div>
+	<div class="row">
+		<div class="col-md-6">
+			<div class="form-group">
+				<label for="block">區塊：</label>
+				<select class="form-control" name="block" required="required">
+				<?php do{ ?>
+					<option value="<?php echo $_forum['row']['id']; ?>" <?php if($_forum['row']['id']==$_GET['block']){ ?>selected="selected"<?php } ?>>
+						<?php echo $_forum['row']['blockname']; ?>
+					</option>
+				<?php }while ($_forum['row'] = $_forum['query']->fetch_assoc());  ?>
+				</select>
+			</div>
 		</div>
-		<div class="span6">
-			<label class="control-label" for="level">權限：</label>
-			<select name="level" id="level" class="input-xlarge">
-			<?php foreach(sc_member_level_array() as $key=>$value){if($key>0){ ?>
-				<option value="<?php echo $key; ?>" <?php if($key==1){ ?>selected="selected"<?php } ?>><?php echo $value; ?></option>
-			<?php }} ?>
-			</select>
+		<div class="col-md-6">
+			<div class="form-group">
+				<label for="level">權限：</label>
+				<select class="form-control" name="level" required="required">
+				<?php foreach(sc_member_level_array() as $key=>$value){if($key>0){ ?>
+					<option value="<?php echo $key; ?>" <?php if($key==1){ ?>selected="selected"<?php } ?>><?php echo $value; ?></option>
+				<?php }} ?>
+				</select>
+			</div>
 		</div>
 	</div>
-	<textarea id="cleditor" name="post" class="input-block-level" rows="10"><?php if(isset($_COOKIE['post'])){echo $_COOKIE['post'];} ?></textarea>
+	<div class="form-group">
+		<textarea id="cleditor" name="content" rows="10" required="required">
+			<?php
+			if(isset($_COOKIE['content'])){
+				echo $_COOKIE['content'];
+				setcookie('content','',time()-600);
+			}
+			?>
+		</textarea>
+	</div>
 	<?php if($center['forum']['captcha']==1){ ?>
-	<div class="control">
-		<label class="control-label" for="captcha">驗證碼：</label>
-			<img src="include/captcha.php" class="captcha" title="按圖更換驗證碼"/>
-			<input name="captcha" type="text" id="captcha" size="10" maxlength="10" required="required">
+	<div class="form-group">
+		<label for="captcha">驗證碼：</label>
+		<img src="include/captcha.php" class="captcha" title="按圖更換驗證碼"/>
+		<input id="captcha" class="form-control" name="captcha" type="text" size="10" maxlength="10" required="required">
 	</div>
 	<?php } ?>
-	<br><input id="button" name="button" class="btn btn-primary" type="submit" value="送出發表！">
+	<br><input name="button" class="btn btn-primary" type="submit" value="送出發表！">
 </form>
-<?php } elseif(isset($_GET['fid'])){ ?>
+<?php }elseif(isset($_GET['fid'])){ ?>
 <ul class="breadcrumb">
-	<li><a href="forum.php">論壇</a><span class="divider">/</span></li>
-	<li class="active"><a href="forum.php?fid=<?php echo $_block['id']; ?>"><?php echo $_block['blockname']; ?></a></li>
+	<li><a href="forum.php">論壇</a></li>
+	<li class="active"><a href="forum.php?fid=<?php echo $_block['row']['id']; ?>"><?php echo $_block['row']['blockname']; ?></a></li>
 </ul>
-<div class="row-fluid">
-	<div class="span8">
+<div class="row">
+	<div class="col-md-8">
 		<h2>
-			<?php echo $_block['blockname']; ?>
-			<a href="forum.php?block=<?php echo $_block['id']; ?>&newpost" class="btn btn-primary btn-mini">發表帖子</a>
+			<?php echo $_block['row']['blockname']; ?>
+			<a href="forum.php?block=<?php echo $_block['row']['id']; ?>&newpost" class="btn btn-primary btn-xs">發表帖子</a>
 		</h2>
 	</div>
-	<div class="span4 text-right" style="margin:15px 0 0 -15px;">
-		<form id="search" class="form-search" method="GET" action="forumsearch.php">
-			<div class="input-append">
-				<input id="q" name="q" type="text" class="input-block-level search-query" required="required">
-				<span class="btn" onclick="if(document.getElementById('q').value!=''){document.getElementById('search').submit();}"><i class="icon-search"></i></span>
-				<!--input type="submit" class="btn" value="搜尋"-->
+	<div class="col-md-4 text-right">
+		<form id="search" class="form-inline" method="GET" action="forumsearch.php">
+			<div class="input-group">
+				<input id="q" class="form-control" name="q" type="text" class="search-query" required="required">
+				<span class="input-group-btn">
+					<span class="btn btn-default" onclick="if(document.getElementById('q').value!=''){document.getElementById('search').submit();}"><i class="glyphicon glyphicon-search"></i></span>
+				</span>
 			</div>
 		</form>
 	</div>
 </div>
-<?php
-if($post_num_rows == 0){
-?>
-<div class="alert alert-error">沒有帖子！</div>
-<?php
-}else{
-?>
-		<table class="table table-striped table-hover">
-			<thead>
-				<tr>
-					<th>帖子</th>
-					<th>作者/發表時間</th>
-					<th>回覆</th>
-					<th>最後回覆</th>
-				</tr>
-			</thead>
-			<tbody>
-				<?php do{
-					$_post_reply_query = $SQL->query("SELECT * FROM `forum_reply` WHERE `post`='%d' ORDER BY `ptime` DESC",array($post_row['id']));
-					$_post_reply_row=$_post_reply_query->fetch_assoc();
-					$_post_reply_num_rows = $_post_reply_query->num_rows;
+<?php if($_forum['num_rows'] == 0){ ?>
+<div class="alert alert-danger">沒有帖子！</div>
+<?php }else{ ?>
+<table class="table table-striped table-hover">
+	<thead>
+		<tr>
+			<th>帖子</th>
+			<th>作者/發表時間</th>
+			<th>回覆</th>
+			<th>最後回覆</th>
+		</tr>
+	</thead>
+	<tbody>
+		<?php do{
+			$_reply = sc_get_result("SELECT * FROM `forum_reply` WHERE `post_id`='%d' ORDER BY `mktime` DESC",array($_forum['row']['id']));
+			$_author = sc_get_result("SELECT `username` FROM `member` WHERE `id` = '%d'",array($_forum['row']['author']));
+			$_reply_author = sc_get_result("SELECT `username` FROM `member` WHERE `id` = '%d'",array($_reply['row']['author']));
+		?>
+		<tr>
+			<td>
+				<a href="forumview.php?id=<?php echo $_forum['row']['id']; ?>">
+					<?php echo $_forum['row']['title']; ?>
+				</a>
+				<?php if($_forum['row']['level']>1){ ?>
+				&nbsp;&nbsp;
+				<span class="label label-default"><?php echo sc_member_level($_forum['row']['level']); ?></span>
+				<?php } ?>
+			</td>
+			<td style="line-height:0.8em;font-size:92%;">
+				<?php echo $_author['row']['username']; ?>
+				<br><span style="font-size:66%;"><?php echo date('Y-m-d H:i',strtotime($_forum['row']['mktime'])); ?></span>
+			</td>
+			<td>
+				<?php echo $_reply['num_rows']; ?>
+			</td>
+			<td>
+				<?php
+					if($_reply['num_rows']>0){
+						echo '<div style="line-height:0.8em;font-size:92%;">'.$_reply_author['row']['username'].'<br><span style="font-size:66%;">'.date('Y-m-d H:i',strtotime($_reply['row']['mktime'])).'</span></div>';
+					}else{
+						echo '無';
+					}
 				?>
-				<tr>
-					<td>
-						<a href="forumview.php?id=<?php echo $post_row['id']; ?>">
-						<?php echo $post_row['post_title']; ?>
-						</a>
-						<?php if($post_row['level']>1){ ?>
-						&nbsp;&nbsp;
-						<span class="label"><?php echo sc_member_level($post_row['level']); ?></span>
-						<?php } ?>
-					</td>
-					<td style="line-height:0.8em;font-size:92%;">
-						<?php echo $post_row['posted']; ?>
-						<br><span style="font-size:66%;"><?php echo date('Y-m-d H:i',strtotime($post_row['ptime'])); ?></span>
-					</td>
-					<td>
-						<?php echo $_post_reply_num_rows; ?>
-					</td>
-					<td>
-						<?php
-							if($_post_reply_num_rows>0){
-								
-								echo '<div style="line-height:0.8em;font-size:92%;">'.$_post_reply_row['posted'].'<br><span style="font-size:66%;">'.date('Y-m-d H:i',strtotime($_post_reply_row['ptime'])).'</span></div>';
-							}else{
-								echo '無';
-							}
-						?>
-						
-					</td>
-				</tr>
-				<?php }while ($post_row = $post->fetch_assoc()); ?>
-			</tbody>
-		</table>
+				
+			</td>
+		</tr>
+		<?php }while ($_forum['row'] = $_forum['query']->fetch_assoc()); ?>
+	</tbody>
+</table>
 <?php
-$nav_num_rows = $SQL->query("SELECT * FROM forum WHERE block = '%d'",array($_block['id']))->num_rows;
-
-$pageTotal=ceil($nav_num_rows / $limit_row);
-
-if($pageTotal > 1){
-	echo '<div class="pagination"><ul>';
-	for($i=1;$i<=$pageTotal;$i++){
-		if(@$_GET['page'] != $i){
-				echo '<li><a href="forum.php?page='.$i.'&fid='.$_block['id'].'">'.$i.'</a></li>';
-			}else{
-				echo '<li class="active"><a href="#">'.$i.'</a></li>';
-		}
-	}
-	echo '</ul></div><br class="clearfix" />';
-}}
-}else{ ?>
-<h2>論壇</h2>
-<?php
-if($post_num_rows == 0){
-?>
-<div class="alert alert-error">沒有區塊！</div>
+	$_all_forum=sc_get_result("SELECT COUNT(*) FROM `forum` WHERE `block`='%d'",array($_block['row']['id']));
+	echo sc_page_pagination('forum.php',@$_GET['page'],implode('',$_all_forum['row']),$center['forum']['limit'],'&fid='.$_block['row']['id']);
+}}else{ ?>
+<h2 class="page-header">論壇</h2>
+<?php if($_forum['num_rows'] == 0){ ?>
+<div class="alert alert-danger">沒有區塊！</div>
 <?php }else{ ?>
 	<table class="table table-striped">
 		<thead>
@@ -235,32 +252,29 @@
 		</thead>
 		<tbody>
 			<?php do{
-				$_block_post_query = $SQL->query("SELECT * FROM `forum` WHERE `block`='%d' ORDER BY `ptime` DESC",array($post_row['id']));
-				$_block_post_row=$_block_post_query->fetch_assoc();
-				$_block_post_num_rows = $_block_post_query->num_rows;
+				$_block_post = sc_get_result("SELECT * FROM `forum` WHERE `block`='%d' ORDER BY `mktime` DESC",array($_forum['row']['id']));
 			?>
 			<tr>
 				<td>
-					<a href="forum.php?fid=<?php echo $post_row['id']; ?>">
-					<?php echo $post_row['blockname']; ?>
+					<a href="forum.php?fid=<?php echo $_forum['row']['id']; ?>">
+					<?php echo $_forum['row']['blockname']; ?>
 					</a>
 				</td>
-				<td><?php echo $_block_post_num_rows; ?></td>
+				<td><?php echo $_block_post['num_rows']; ?></td>
 				<td>
 					<?php
-					if($_block_post_num_rows>0){
-						echo date('Y-m-d H:i',strtotime($_block_post_row['ptime']));
+					if($_block_post['num_rows']>0){
+						echo date('Y-m-d H:i',strtotime($_block_post['row']['mktime']));
 					}else{
 						echo '無';
 					}?>
 				</td>
 			</tr>
-			<?php }while($post_row = $post->fetch_assoc()); ?>
+			<?php }while($_forum['row'] = $_forum['query']->fetch_assoc()); ?>
 		</tbody>
     </table>
 <?php } ?>
 <?php } ?>
-</div>
 <?php
 $view->render();
 ?>
\ No newline at end of file
diff --git a/forumedit.php b/forumedit.php
index 9ff52b1..94300a6 100644
--- a/forumedit.php
+++ b/forumedit.php
@@ -1,4 +1,36 @@
 <?php
+/*
+<Secret Center, open source member management system>
+Copyright (C) 2012-2016 Secret Center開發團隊 <http://center.gdsecret.net/#team>
+
+This program is free software: you can redistribute it and/or modify
+it under the terms of the GNU Affero General Public License as published by
+the Free Software Foundation, version 3.
+
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+GNU Affero General Public License for more details.
+
+You should have received a copy of the GNU Affero General Public License
+along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+Also add information on how to contact you by electronic and paper mail.
+
+  If your software can interact with users remotely through a computer
+network, you should also make sure that it provides a way for users to
+get its source.  For example, if your program is a web application, its
+interface could display a "Source" link that leads users to an archive
+of the code.  There are many ways you could offer source, and different
+solutions will be better for different programs; see section 13 for the
+specific requirements.
+
+  You should also get your employer (if you work as a programmer) or school,
+if any, to sign a "copyright disclaimer" for the program, if necessary.
+For more information on this, and how to apply and follow the GNU AGPL, see
+<http://www.gnu.org/licenses/>.
+*/
+
 require_once('Connections/SQL.php');
 require_once('config.php');
 require_once('include/view.php');
@@ -8,8 +40,8 @@
 	exit;
 }
 
-if(!isset($_GET['id']) || $_GET['id'] == ''){
-	header("Location: forum.php");
+if((!isset($_GET['id']))or($_GET['id']=='')){
+    header("Location: forum.php");
 	exit;
 }
 
@@ -19,34 +51,31 @@
 		exit;
 	}
 	
-	$post = $SQL->query("SELECT * FROM forum WHERE id = '%d' AND posted = '%s'",array($_GET['id'],$_SESSION['Center_Username']));
-	$post_row = $post->fetch_assoc();
-	$post_num_rows = $post->num_rows;
+	$_post = sc_get_result("SELECT * FROM `forum` WHERE `id` = '%d' AND `author` = '%d'",array($_GET['id'],$_SESSION['Center_Id']));
 
-	$_block_query=$SQL->query("SELECT * FROM `forum_block` ORDER BY `position` ASC");
-	$_block =$_block_query->fetch_assoc();
+	$_block = sc_get_result("SELECT * FROM `forum_block` ORDER BY `position` ASC");
 	
-	if($post_num_rows<=0){
+	if($_post['num_rows']<=0){
 		header("Location: forum.php");
 		exit;
 	}
 	
-	if(isset($_POST['title']) && isset($_POST['post']) && trim(htmlspecialchars($_POST['title'])) != '' && trim(strip_tags($_POST['post']),"&nbsp;") != '') {
+	if(isset($_POST['title']) && isset($_POST['content']) && trim(htmlspecialchars($_POST['title'])) != '' && trim(strip_tags($_POST['content']),"&nbsp;") != '') {
 		
-		$_block_auth = $SQL->query("SELECT * FROM `forum_block` WHERE id = '%d'",array(abs($_POST['block'])))->num_rows;
-		if($_block_auth<0){
+		$_block_auth = $SQL->query("SELECT * FROM `forum_block` WHERE `id` = '%d'",array(abs($_POST['block'])))->num_rows;
+		if($_block_auth<=0){
 			die;
 		}
 		
-		$SQL->query("UPDATE forum SET `post_title` = '%s', `post` = '%s',`block`='%d',`level`='%d' WHERE `id` = '%d' AND `posted` = '%s'",array(
+		$SQL->query("UPDATE `forum` SET `title` = '%s', `content` = '%s',`block`='%d',`level`='%d' WHERE `id` = '%d' AND `author` = '%d'",array(
 			htmlspecialchars($_POST['title']),
-			sc_xss_filter($_POST['post']),
+			sc_xss_filter($_POST['content']),
 			abs($_POST['block']),
 			abs($_POST['level']),
 			$_GET['id'],
-			$_SESSION['Center_Username']
+			$_SESSION['Center_Id']
 		));
-		header("Location: forumview.php?editok&id=".$post_row['id']);
+		header("Location: forumview.php?editok&id=".$_post['row']['id']);
 	}
 	
 }elseif(isset($_GET['reply'])) {
@@ -55,22 +84,20 @@
 		exit;
 	}
 	
-	$reply = $SQL->query("SELECT * FROM `forum_reply` WHERE `id` = '%d' AND `posted`='%s'",array($_GET['id'],$_SESSION['Center_Username']));
-	$reply_row = $reply->fetch_assoc();
-	$reply_num_rows = $reply->num_rows;
+	$_reply = sc_get_result("SELECT * FROM `forum_reply` WHERE `id` = '%d' AND `author` = '%d'",array($_GET['id'],$_SESSION['Center_Id']));
 
-	if($reply_num_rows<=0){
+	if($_reply['num_rows']<=0){
 		header("Location: forum.php");
 		exit;
 	}
 	
-	if(isset($_POST['reply']) && trim(strip_tags($_POST['reply']),"&nbsp;") != '') {
-	$SQL->query("UPDATE `forum_reply` SET `reply` = '%s' WHERE `id` = '%d' AND `posted` = '%s'",array(
-		sc_xss_filter($_POST['reply']),
-		$_GET['id'],
-		$_SESSION['Center_Username']
-	));
-	header("Location: forumview.php?id=".$reply_row['post']);
+	if(isset($_POST['content']) && trim(strip_tags($_POST['content']),"&nbsp;") != '') {
+		$SQL->query("UPDATE `forum_reply` SET `content` = '%s' WHERE `id` = '%d' AND `author` = '%d'",array(
+			sc_xss_filter($_POST['content']),
+			$_GET['id'],
+			$_SESSION['Center_Id']
+		));
+		header("Location: forumview.php?editok&id=".$_reply['row']['post_id']);
 	}
 	
 }else{
@@ -79,80 +106,64 @@
 }
 
 
-$view = new View('view/new_theme.html','include/nav.php',$center['site_name'],'論壇編輯');
+$view = new View('include/theme/default.html','include/nav.php',NULL,$center['site_name'],'論壇編輯');
+$view->addScript("include/js/notice.js");
 $view->addCSS("include/js/cleditor/jquery.cleditor.css");
-$view->addScript("https://ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js");
-$view->addScript("include/js/cleditor/jquery.cleditor.js");
-$view->addScript("include/js/cleditor/jquery.cleditor.icon.js");
+$view->addScript("include/js/cleditor/jquery.cleditor.min.js");
 $view->addScript("include/js/cleditor/jquery.cleditor.table.js");
-$view->addScript("include/js/cleditor/jquery.cleditor.serverImg.js");
-$view->addScript("include/js/jquery.validate.js");
-$view->addScript("include/js/channel.js");
-$view->addScript("include/js/notice.js");
 ?>
-<div class="main">
-<?php if(isset($_GET['reply'])){ ?>
-<script type="text/javascript">
+<script>
 $(function(){
-	$("#reply").cleditor({width:'99%', height:300, useCSS:true})[0].focus();
-	$("#form1").validate({
-		rules:{
-			reply:{required:true}
-		}
-	});
+	$("#cleditor").cleditor({width:'99%', height:300, useCSS:true})[0].focus();
 });
 </script>
+<?php if(isset($_GET['reply'])){ ?>
 <h2>編輯回覆</h2>
-<form action="forumedit.php?reply&id=<?php echo $_GET['id']; ?>" method="POST" name="form1">
-	<div class="controls">
-		<label for="reply">回覆內容：</label>
-	</div>
-	<div style="margin:auto;">
-		<textarea name="reply" cols="65" rows="10" id="reply" required="required"><?php echo removal_escape_string($reply_row['reply']); ?></textarea>
+<form action="forumedit.php?reply&id=<?php echo $_reply['row']['id']; ?>" method="POST">
+	<div class="form-group">
+		<label for="content">回覆內容：</label>
+		<textarea id="cleditor" class="form-control" name="content" cols="65" rows="10" required="required"><?php echo sc_removal_escape_string($_reply['row']['content']); ?></textarea>
 	</div>
-	<p><input type="submit" name="button" class="btn btn-primary" value="編輯回覆" /></p>
+	<p><input name="button" class="btn btn-primary" type="submit" value="儲存"></p>
 </form>
 <?php } elseif(isset($_GET['post'])){ ?>
-<script type="text/javascript">
-$(function(){
-    $("#cleditor").cleditor({width:'99%', height:350, useCSS:true})[0].focus();
-	$("#form1").validate({
-		rules:{
-			title:{required:true},
-			post:{required:true}
-		}
-	});
-});
-</script>
 <h2>編輯帖子</h2>
-<form action="forumedit.php?post&id=<?php echo $_GET['id']; ?>" method="POST" name="form1">
-	<input name="title" class="input-block-level" type="text" value="<?php echo $post_row['post_title']; ?>" required="required" placeholder="標題">
-	<div class="controls controls-row">
-		<div class="span6">
-			<label class="control-label" for="block">區塊：</label>
-			<select class="input-xlarge" name="block" required="required">
-			<?php do{ ?>
-				<option value="<?php echo $_block['id']; ?>" <?php if($_block['id']==$post_row['block']){ ?>selected="selected"<?php } ?>>
-					<?php echo $_block['blockname']; ?>
-				</option>
-			<?php }while ($_block =  $_block_query->fetch_assoc()); ?>
-			</select>
+<form action="forumedit.php?post&id=<?php echo $_post['row']['id']; ?>" method="POST">
+	<div class="form-group">
+		<input class="form-control" name="title" type="text" placeholder="標題" required="required" value="<?php echo $_post['row']['title']; ?>">
+	</div>
+	<div class="row">
+		<div class="col-md-6">
+			<div class="form-group">
+				<label for="block">區塊：</label>
+				<select class="form-control" name="block" required="required">
+				<?php do{ ?>
+					<option value="<?php echo $_block['row']['id']; ?>" <?php if($_block['row']['id']==$_post['row']['block']){ ?>selected="selected"<?php } ?>>
+						<?php echo $_block['row']['blockname']; ?>
+					</option>
+				<?php }while ($_block['row'] = $_block['query']->fetch_assoc());  ?>
+				</select>
+			</div>
 		</div>
-		<div class="span6">
-			<label for="level">權限：</label>
-			<select name="level" id="level" class="input-xlarge">
-			<?php foreach(sc_member_level_array() as $key=>$value){if($key>0){ ?>
-				<option value="<?php echo $key; ?>" <?php if($key==$post_row['level']){ ?>selected="selected"<?php } ?>><?php echo $value; ?></option>
-			<?php }} ?>
-			</select>
+		<div class="col-md-6">
+			<div class="form-group">
+				<label for="level">權限：</label>
+				<select class="form-control" name="level" required="required">
+				<?php foreach(sc_member_level_array() as $key=>$value){if($key>0){ ?>
+					<option value="<?php echo $key; ?>" <?php if($key==$_post['row']['level']){ ?>selected="selected"<?php } ?>><?php echo $value; ?></option>
+				<?php }} ?>
+				</select>
+			</div>
 		</div>
 	</div>
-	<textarea id="cleditor" name="post" class="input-block-level" rows="10"><?php echo htmlspecialchars(removal_escape_string($post_row['post'])); ?></textarea>
+	<div class="form-group">
+		<textarea id="cleditor" name="content" rows="10" required="required">
+			<?php echo $_post['row']['content']; ?>
+		</textarea>
 	</div>
-	<p><input type="submit" name="button" class="btn btn-primary" value="編輯帖子" /></p>
+	<br><input name="button" class="btn btn-primary" type="submit" value="儲存">
 </form>
 <?php } ?>
-</div>
 <?php
 $view->render();
 ?>
\ No newline at end of file
diff --git a/forumsearch.php b/forumsearch.php
index 3c7ca00..2992120 100644
--- a/forumsearch.php
+++ b/forumsearch.php
@@ -1,4 +1,36 @@
 <?php
+/*
+<Secret Center, open source member management system>
+Copyright (C) 2012-2016 Secret Center開發團隊 <http://center.gdsecret.net/#team>
+
+This program is free software: you can redistribute it and/or modify
+it under the terms of the GNU Affero General Public License as published by
+the Free Software Foundation, version 3.
+
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+GNU Affero General Public License for more details.
+
+You should have received a copy of the GNU Affero General Public License
+along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+Also add information on how to contact you by electronic and paper mail.
+
+  If your software can interact with users remotely through a computer
+network, you should also make sure that it provides a way for users to
+get its source.  For example, if your program is a web application, its
+interface could display a "Source" link that leads users to an archive
+of the code.  There are many ways you could offer source, and different
+solutions will be better for different programs; see section 13 for the
+specific requirements.
+
+  You should also get your employer (if you work as a programmer) or school,
+if any, to sign a "copyright disclaimer" for the program, if necessary.
+For more information on this, and how to apply and follow the GNU AGPL, see
+<http://www.gnu.org/licenses/>.
+*/
+
 require_once('Connections/SQL.php');
 require_once('config.php');
 require_once('include/view.php');
@@ -8,78 +40,61 @@
     exit;
 }
 
-$view = new View('view/new_theme.html','include/nav.php',$center['site_name'],'論壇搜尋');
-$view->addScript("https://ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js");
-$view->addScript("include/js/channel.js");
-$view->addScript("include/js/notice.js");
-
 if(!isset($_GET['q'])or trim($_GET['q'])==''){
 	header("Location: forum.php");
     exit;
 }
 
 $limit_row=$center['forum']['limit'];
+
 if(isset($_GET['page'])){
 	$limit_start = abs(intval(($_GET['page']-1)*$limit_row));
-	$post=$SQL->query("SELECT * FROM `forum` WHERE `post_title` LIKE '%%%s%%' OR `post` LIKE '%%%s%%' ORDER BY `ptime` DESC LIMIT %d,%d",array(sc_xss_filter($_GET['q']),sc_xss_filter($_GET['q']),$limit_start,$limit_row));
+	$_post = sc_get_result("SELECT * FROM `forum` WHERE `title` LIKE '%%%s%%' OR `content` LIKE '%%%s%%' ORDER BY `mktime` DESC LIMIT %d,%d",array(sc_xss_filter($_GET['q']),sc_xss_filter($_GET['q']),$limit_start,$limit_row));
 } else {
 	$limit_start=0;
-	$post=$SQL->query("SELECT * FROM `forum` WHERE `post_title` LIKE '%%%s%%' OR `post` LIKE '%%%s%%' ORDER BY `ptime` DESC LIMIT %d,%d",array(sc_xss_filter($_GET['q']),sc_xss_filter($_GET['q']),$limit_start,$limit_row));
+	$_post = sc_get_result("SELECT * FROM `forum` WHERE `title` LIKE '%%%s%%' OR `content` LIKE '%%%s%%' ORDER BY `mktime` DESC LIMIT %d,%d",array(sc_xss_filter($_GET['q']),sc_xss_filter($_GET['q']),$limit_start,$limit_row));
 }
-$post_row = $post->fetch_assoc();
-$post_num_rows = $post->num_rows;
+
+$view = new View('include/theme/default.html','include/nav.php',NULL,$center['site_name'],'論壇搜尋');
+$view->addScript("include/js/notice.js");
 ?>
-<div class="main">
 <h2>論壇搜尋</h2>
-<form id="search" method="GET" action="forumsearch.php">
-	<div class="input-append">
-		<input name="q" type="text" class="input-xlarge" value="<?php echo sc_xss_filter($_GET['q']); ?>" required="required">
-		<input type="submit" class="btn btn-success" value="搜尋">
+<form id="search" method="GET" action="forumsearch.php" style="margin-bottom:1em;">
+	<div class="input-group">
+		<input id="q" class="form-control" name="q" type="text" class="search-query" required="required" value="<?php echo sc_xss_filter($_GET['q']); ?>">
+		<span class="input-group-btn">
+			<span class="btn btn-default" onclick="if(document.getElementById('q').value!=''){document.getElementById('search').submit();}"><i class="glyphicon glyphicon-search"></i></span>
+		</span>
 	</div>
 </form>
-<?php if($post_num_rows<=0){ ?>
-<div class="alert alert-error">沒有符合的資料！</div>
+<?php if($_post['num_rows']<=0){ ?>
+<div class="alert alert-danger">沒有符合的資料！</div>
 <?php }else{ ?>
 <?php do{
-	$_post_reply_query = $SQL->query("SELECT * FROM `forum_reply` WHERE `post`='%d' ORDER BY `ptime` DESC",array($post_row['id']));
-	$_post_reply_row=$_post_reply_query->fetch_assoc();
-	$_post_reply_num_rows = $_post_reply_query->num_rows;
+	$_post_reply = sc_get_result("SELECT * FROM `forum_reply` WHERE `post_id`='%d' ORDER BY `mktime` DESC",array($_post['row']['id']));
 ?>
 <div id="1" class="post">
-	<a href="forumview.php?id=<?php echo $post_row['id']; ?>" style="font-size:120%;display:block;">
-	<?php echo $post_row['post_title']; ?>
+	<a href="forumview.php?id=<?php echo $_post['row']['id']; ?>" style="font-size:120%;display:block;">
+	<?php echo $_post['row']['title']; ?>
 	</a>
-	<p>
-	<?php echo mb_substr(strip_tags($post_row['post']),mb_stripos(strip_tags($post_row['post']),sc_xss_filter($_GET['q']),0,'UTF-8')-30,60,'UTF-8'); ?>...
-	</p>
-	<ul class="inline" style="font-size:80%;color:rgb(100,100,100);">
-		<?php if($post_row['level']>1){ ?>
-		<li><span class="label"><?php echo sc_member_level($post_row['level']); ?></span></li>
+	<div class="con">
+	<?php echo mb_substr(strip_tags($_post['row']['content']),mb_stripos(strip_tags($_post['row']['content']),sc_xss_filter($_GET['q']),0,'UTF-8')-30,60,'UTF-8'); ?>...
+	</div>
+	<ul class="list-inline" style="font-size:80%;color:rgb(100,100,100);">
+		<?php if($_post['row']['level']>1){ ?>
+		<li><span class="label"><?php echo sc_member_level($_post['row']['level']); ?></span></li>
 		<?php } ?>
-		<li><?php echo $post_row['posted']; ?></li>
-		<li><?php echo date('Y-m-d H:i',strtotime($post_row['ptime'])); ?></li>
-		<li><?php echo $_post_reply_num_rows; ?> 回覆</li>
+		<li><?php echo $_post['row']['mktime']; ?></li>
+		<li><?php echo date('Y-m-d H:i',strtotime($_post['row']['mktime'])); ?></li>
+		<li><?php echo $_post_reply['num_rows']; ?> 回覆</li>
 	</ul>
 </div>
-<?php }while ($post_row = $post->fetch_assoc()); ?>
+<?php }while ($_post['row'] = $_post['query']->fetch_assoc()); ?>
 <?php
-$nav_num_rows = $SQL->query("SELECT * FROM `forum` WHERE `post_title` LIKE '%%%s%%' OR `post` LIKE '%%%s%%' ORDER BY `ptime`",array(sc_xss_filter($_GET['q']),sc_xss_filter($_GET['q'])))->num_rows;
-
-$pageTotal=ceil($nav_num_rows / $limit_row);
-
-if($pageTotal > 1){
-	echo '<div class="pagination"><ul>';
-	for($i=1;$i<=$pageTotal;$i++){
-		if(@$_GET['page'] != $i){
-				echo '<li><a href="forumsearch.php?q='.sc_xss_filter($_GET['q']).'&page='.$i.'">'.$i.'</a></li>';
-			}else{
-				echo '<li class="active"><a href="#">'.$i.'</a></li>';
-		}
-	}
-	echo '</ul></div><br class="clearfix" />';
-}}
+$_all=sc_get_result("SELECT COUNT(*) FROM `forum` WHERE `title` LIKE '%%%s%%' OR `content` LIKE '%%%s%%'",array(sc_xss_filter($_GET['q']),sc_xss_filter($_GET['q'])));
+echo sc_page_pagination('forumsearch.php',@$_GET['page'],implode('',$_all['row']),$center['forum']['limit'],'&q='.sc_xss_filter($_GET['q']));
+}
 ?>
-</div>
 <?php
 $view->render();
 ?>
\ No newline at end of file
diff --git a/forumview.php b/forumview.php
index 01adc13..476f2cc 100644
--- a/forumview.php
+++ b/forumview.php
@@ -1,4 +1,36 @@
 <?php
+/*
+<Secret Center, open source member management system>
+Copyright (C) 2012-2016 Secret Center開發團隊 <http://center.gdsecret.net/#team>
+
+This program is free software: you can redistribute it and/or modify
+it under the terms of the GNU Affero General Public License as published by
+the Free Software Foundation, version 3.
+
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+GNU Affero General Public License for more details.
+
+You should have received a copy of the GNU Affero General Public License
+along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+Also add information on how to contact you by electronic and paper mail.
+
+  If your software can interact with users remotely through a computer
+network, you should also make sure that it provides a way for users to
+get its source.  For example, if your program is a web application, its
+interface could display a "Source" link that leads users to an archive
+of the code.  There are many ways you could offer source, and different
+solutions will be better for different programs; see section 13 for the
+specific requirements.
+
+  You should also get your employer (if you work as a programmer) or school,
+if any, to sign a "copyright disclaimer" for the program, if necessary.
+For more information on this, and how to apply and follow the GNU AGPL, see
+<http://www.gnu.org/licenses/>.
+*/
+
 require_once('Connections/SQL.php');
 require_once('config.php');
 require_once('include/view.php');
@@ -13,36 +45,12 @@
 	exit;
 }
 
-$post = $SQL->query("SELECT * FROM forum WHERE id = '%s'",array($_GET['id']));
-$post_row = $post->fetch_assoc();
-$post_num_rows = $post->num_rows;
+$_post = sc_get_result("SELECT * FROM `forum` WHERE `id` = '%d'",array($_GET['id']));
 
-if($post_num_rows<=0){
+if($_post['num_rows']<=0){
 	header("Location: forum.php");
 	exit;
 }
-if($_SESSION['Center_UserGroup']==0){
-	$_group=1;
-}else{
-	$_group=$_SESSION['Center_UserGroup'];
-}
-if($_group<$post_row['level']&&$post_row['posted']!=$_SESSION['Center_Username']){
-	header("Location: forum.php?gbanned&fid=".$post_row['block']);
-	exit;
-}
-
-$_block = $SQL->query("SELECT * FROM `forum_block` WHERE `id`='%d'",array(abs(intval($post_row['block']))))->fetch_assoc();
-
-$limit_row=$center['forum']['limit'];
-if(isset($_GET['page'])){
-	$limit_start = abs(intval(($_GET['page']-1)*$limit_row));
-	$reply_sql = sprintf("SELECT * FROM forum_reply WHERE post = '%s' ORDER BY id ASC LIMIT %d,%d",$_GET['id'],$limit_start,$limit_row);
-} else {
-	$limit_start = 0;
-	$reply_sql = sprintf("SELECT * FROM forum_reply WHERE post = '%s' ORDER BY id ASC LIMIT %d,%d",$_GET['id'],$limit_start,$limit_row);
-}
-$reply_query = $SQL->query($reply_sql);
-$reply_num_rows = $reply_query->num_rows;
 
 if(isset($_GET['reply'])){
 	if($_SESSION['Center_UserGroup']==0){
@@ -50,143 +58,143 @@
 		exit;
 	}
 }
-if((isset($_GET['reply']))&& isset($_POST['reply']) && trim($_POST['reply'],"&nbsp;") != ''){
-	$SQL->query("INSERT INTO forum_reply ( post,reply, ptime, posted) VALUES ('%s','%s','%s','%s')",array(
-		$_GET['id'],
-		sc_xss_filter($_POST['reply']),
-		date("Y-m-d H:i:s"),
-		$_SESSION['Center_Username']
+if((isset($_GET['reply']))&& isset($_POST['content']) && trim($_POST['content'],"&nbsp;") != ''){
+	$SQL->query("INSERT INTO `forum_reply` ( `post_id`,`content`, `mktime`, `author`) VALUES ('%s','%s',now(),'%d')",array(
+		$_post['row']['id'],
+		sc_xss_filter($_POST['content']),
+		$_SESSION['Center_Id']
 	));
-	if($_SESSION['Center_Username']!=$post_row['posted']){
-		 sc_addnotice(
-			"forumview.php?id=".$_GET['id'],
-			$_SESSION['Center_Username']."在您的帖子中發表回覆",
-			$_SESSION['Center_Username'],
-			$post_row['posted']
+	
+	if($_SESSION['Center_Id']!=$_post['row']['author']){
+		 sc_add_notice(
+			sc_get_headurl().'forumview.php?id='.$_post['row']['id'],
+			$_SESSION['Center_Username'].'在您的帖子中發表回覆',
+			$_SESSION['Center_Id'],
+			$_post['row']['author']
 		);
 	}
+	sc_tag_member(
+		sc_xss_filter($_POST['content']),
+		sc_get_headurl().'forumview.php?id='.$_post['row']['id'],
+		$_SESSION['Center_Username'].'在論壇提到你',
+		$_SESSION['Center_Id']
+	);
 	header("Location: forumview.php?replying&id=".$_GET['id']);
 }
 
-$view = new View('view/new_theme.html','include/nav.php',$center['site_name'],$post_row['post_title']);
-$view->addCSS("include/js/cleditor/jquery.cleditor.css");
-$view->addScript("https://ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js");
-$view->addScript("include/js/cleditor/jquery.cleditor.js");
-$view->addScript("include/js/cleditor/jquery.cleditor.icon.js");
-$view->addScript("include/js/cleditor/jquery.cleditor.table.js");
-$view->addScript("include/js/cleditor/jquery.cleditor.serverImg.js");
-$view->addScript("include/js/jquery.validate.js");
-$view->addScript("include/js/channel.js");
+
+$_block = sc_get_result("SELECT * FROM `forum_block` WHERE `id`='%d'",array($_post['row']['block']));
+
+$limit_row=$center['forum']['limit'];
+	
+if(isset($_GET['page'])){
+	$limit_start = abs(intval(($_GET['page']-1)*$limit_row));
+	$_reply = sc_get_result("SELECT * FROM `forum_reply` WHERE `post_id`='%d' ORDER BY `mktime` ASC LIMIT %d,%d",array($_post['row']['id'],$limit_start,$limit_row));
+} else {
+	$limit_start=0;
+	$_reply = sc_get_result("SELECT * FROM `forum_reply` WHERE `post_id`='%d' ORDER BY `mktime` ASC LIMIT %d,%d",array($_post['row']['id'],$limit_start,$limit_row));
+}
+$_author = sc_get_result("SELECT `username` FROM `member` WHERE `id` = '%d'",array($_post['row']['author']));
+$view = new View('include/theme/default.html','include/nav.php',NULL,$center['site_name'],$_post['row']['title']);
 $view->addScript("include/js/notice.js");
 ?>
-<div class="main">
 <?php if(isset($_GET['replying'])){?>
 	<div class="alert alert-success">回覆成功！</div>
 <?php }elseif(isset($_GET['editok'])){ ?>
 	<div class="alert alert-success">編輯成功！</div>
 <?php }elseif(isset($_GET['banned'])){ ?>
-	<div class="alert alert-error">您被禁言無法發帖！</div>
+	<div class="alert alert-danger">您被禁言無法發帖！</div>
 <?php }
 if(isset($_GET['reply'])){
+$view->addCSS("include/js/cleditor/jquery.cleditor.css");
+$view->addScript("include/js/cleditor/jquery.cleditor.min.js");
+$view->addScript("include/js/cleditor/jquery.cleditor.icon.js");
+$view->addScript("include/js/cleditor/jquery.cleditor.table.js");
 ?>
-<script type="text/javascript">
+<script>
 $(function(){
-	$("#reply").cleditor({width:'99%', height:300, useCSS:true})[0].focus();
-	$("#form1").validate({
-		rules:{
-			reply:{required:true}
-		}
-	});
+	$("#cleditor").cleditor({width:'99%', height:300, useCSS:true})[0].focus();
 });
 </script>
 <form action="forumview.php?id=<?php echo $_GET['id']; ?>&reply" method="POST" name="form1">
-	<div class="controls">
-		<label for="reply">回覆內容：</label>
-	</div>
-	<div style="margin:auto;">
-		<textarea name="reply" cols="65" rows="10" id="reply" required="required"></textarea>
+	<div class="form-group">
+		<label for="content">回覆內容：</label>
+		<textarea id="cleditor" class="form-control" name="content" cols="65" rows="10" required="required"></textarea>
 	</div>
-	<p><input type="submit" name="button" class="btn btn-primary" value="回覆" /></p>
+	<p><input type="submit" name="button" class="btn btn-primary" value="回覆"></p>
 </form>
 <?php } else { ?>
 <ul class="breadcrumb">
-	<li><a href="forum.php">論壇</a><span class="divider">/</span></li>
-	<li><a href="forum.php?fid=<?php echo $_block['id']; ?>"><?php echo $_block['blockname']; ?></a><span class="divider">/</span></li>
-	<li class="active"><?php echo lt_replace($post_row['post_title']); ?></li>
+	<li><a href="forum.php">論壇</a></li>
+	<li><a href="forum.php?fid=<?php echo $_block['row']['id']; ?>"><?php echo $_block['row']['blockname']; ?></a></li>
+	<li class="active"><?php echo sc_removal_escape_string($_post['row']['title']); ?></li>
 </ul>
-<h2>
-	<?php echo $post_row['post_title']; ?>
-	<?php if($post_row['level']>1){ ?>
-	<span class="label"><?php echo sc_member_level($post_row['level']); ?></span>
+<ul class="list-inline">
+	<li>
+		<h2><?php echo $_post['row']['title']; ?></h2>
+	</li>
+	<?php if($_post['row']['level']>1){ ?>
+	<li>
+		<span class="label label-default"><?php echo sc_member_level($_post['row']['level']); ?></span>
+	</li>
 	<?php } ?>
-	<a href="forumview.php?id=<?php echo $post_row['id']; ?>&reply" class="btn btn-primary btn-mini">發表新回覆</a>
-</h2>
+	<li>
+		<a href="forumview.php?id=<?php echo $_post['row']['id']; ?>&reply" class="btn btn-primary btn-xs">發表新回覆</a>
+	</li>
+</ul>
 <div id="1" class="post">
-	<ul class="inline">
+	<ul class="list-inline">
 		<li>
-			<img src="include/avatar.php?id=<?php echo $post_row['posted']; ?>" class="avatar">
+			<img src="<?php echo sc_avatar_url($_post['row']['author']); ?>" class="avatar">
 		</li>
-		<li style="font-size:120%;"><?php echo $post_row['posted']; ?></li>
-		<li>發表於&nbsp;<?php echo $post_row['ptime']; ?></li>
+		<li style="font-size:120%;"><?php echo $_author['row']['username']; ?></li>
+		<li>發表於&nbsp;<?php echo $_post['row']['mktime']; ?></li>
 		<li>1&nbsp;樓</li>
-		<?php if($post_row['posted'] == $_SESSION['Center_Username']){ ?>
+		<?php if($_post['row']['author'] == $_SESSION['Center_Id']){ ?>
 		<li>
-			<a href="forumedit.php?post&id=<?php echo $post_row['id']; ?>" class="btn btn-info btn-small">
+			<a href="forumedit.php?post&id=<?php echo $_post['row']['id']; ?>" class="btn btn-info btn-sm">
 				編輯
 			</a>
-			<a href="javascript:if(confirm('確定刪除？'))location='mypost.php?del=<?php echo $post_row['id']; ?>'" class="btn btn-danger btn-small">
+			<a href="javascript:if(confirm('確定刪除？'))location='mypost.php?del=<?php echo $_post['row']['id']; ?>'" class="btn btn-danger btn-sm">
 				刪除
 			</a>	
 		</li>
 		<?php } ?>
 	</ul>
-    <div class="con"><?php echo removal_escape_string($post_row['post']); ?></div>
+    <div class="con"><?php echo sc_removal_escape_string($_post['row']['content']); ?></div>
 </div>
 <?php
-if($reply_num_rows != 0){
-	$reply_floor = 1+$limit_start;
-	while ($reply_row = $reply_query->fetch_assoc()){
-		$reply_floor++;
+if($_reply['num_rows']>0){
+	$_floor = 1+$limit_start;
+	do{
+		$_floor++;
+		$_reply_author = sc_get_result("SELECT `username` FROM `member` WHERE `id` = '%d'",array($_reply['row']['author']));
 ?>
-
-<div id="<?php echo $reply_floor; ?>" class="post">
-	<ul class="inline">
+<div id="<?php echo $_floor; ?>" class="post">
+	<ul class="list-inline">
 		<li>
-			<img src="include/avatar.php?id=<?php echo $reply_row['posted']; ?>" class="avatar">
+			<img src="<?php echo sc_avatar_url($_reply['row']['author']); ?>" class="avatar">
 		</li>
-		<li style="font-size:130%;"><?php echo $reply_row['posted']; ?></li>
-		<li>發表於&nbsp;<?php echo $reply_row['ptime']; ?></li>
-		<li><?php echo $reply_floor; ?>&nbsp;樓</li>
-		<?php if($reply_row['posted']==$_SESSION['Center_Username']){ ?>
+		<li style="font-size:130%;"><?php echo $_reply_author['row']['username']; ?></li>
+		<li>發表於&nbsp;<?php echo $_reply['row']['mktime']; ?></li>
+		<li><?php echo $_floor; ?>&nbsp;樓</li>
+		<?php if($_reply['row']['author']==$_SESSION['Center_Id']){ ?>
 		<li>
-			<a href="forumedit.php?reply&id=<?php echo $reply_row['id']; ?>" class="btn btn-info btn-small">
+			<a href="forumedit.php?reply&id=<?php echo $_reply['row']['id']; ?>" class="btn btn-info btn-sm">
 				編輯
 			</a>
 		</li>
 		<?php } ?>
 	</ul>
-	<div class="con"><?php echo removal_escape_string($reply_row['reply']); ?></div>
+	<div class="con"><?php echo sc_removal_escape_string($_reply['row']['content']); ?></div>
 </div>
 <?php
-	}
-}
-$nav = $SQL->query("SELECT * FROM forum_reply WHERE post = '%s'",array($_GET['id']));
-$pageTotal = ceil($nav->num_rows / $limit_row);
-
-if($pageTotal>1){
-	echo '<div class="pagination"><ul>';
-	for($i=1;$i<=$pageTotal;$i++){
-		if(@$_GET['page']!=$i){
-				echo '<li><a href="forumview.php?id='.$_GET['id'].'&page='.$i.'">'.$i.'</a></li>';
-			}else{
-				echo '<li class="active"><a href="#">'.$i.'</a></li>';
-		}
-	}
-	echo '</ul></div><br class="clearfix" />';
+	}while($_reply['row'] = $_reply['query']->fetch_assoc());
 }
+$_all_reply=sc_get_result("SELECT COUNT(*) FROM `forum_reply` WHERE `post_id`='%d'",array($_post['row']['id']));
+echo sc_page_pagination('forumview.php',@$_GET['page'],implode('',$_all_reply['row']),$center['forum']['limit'],'&id='.$_post['row']['id']);
 ?>
 <?php } ?>
-</div>
 <?php
 $view->render();
 ?>
\ No newline at end of file
diff --git a/getpassword.php b/getpassword.php
index ad04955..6ed42d2 100644
--- a/getpassword.php
+++ b/getpassword.php
@@ -1,23 +1,53 @@
 <?php
+/*
+<Secret Center, open source member management system>
+Copyright (C) 2012-2016 Secret Center開發團隊 <http://center.gdsecret.net/#team>
+
+This program is free software: you can redistribute it and/or modify
+it under the terms of the GNU Affero General Public License as published by
+the Free Software Foundation, version 3.
+
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+GNU Affero General Public License for more details.
+
+You should have received a copy of the GNU Affero General Public License
+along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+Also add information on how to contact you by electronic and paper mail.
+
+  If your software can interact with users remotely through a computer
+network, you should also make sure that it provides a way for users to
+get its source.  For example, if your program is a web application, its
+interface could display a "Source" link that leads users to an archive
+of the code.  There are many ways you could offer source, and different
+solutions will be better for different programs; see section 13 for the
+specific requirements.
+
+  You should also get your employer (if you work as a programmer) or school,
+if any, to sign a "copyright disclaimer" for the program, if necessary.
+For more information on this, and how to apply and follow the GNU AGPL, see
+<http://www.gnu.org/licenses/>.
+*/
+
 require_once('Connections/SQL.php');
 require_once('config.php');
 require_once('include/view.php');
 
-$view = new View('view/new_theme.html','include/nav.php',$center['site_name'],'重設密碼');
-
 if(isset($_POST['username'])&&isset($_POST['email'])&&trim($_POST['username'])!=''&&trim($_POST['email'])!=''){
 	$_username=sc_namefilter($_POST['username']);
 	
-	$member = sc_get_member_data($_username);
+	$_member = sc_get_result("SELECT * FROM `member` WHERE `username` = '%s'",array($_username));
 	
-	if($member['num_rows'] < 1 or $_POST['email']!=$member['row']['email']){
+	if($_member['num_rows'] < 1 or $_POST['email']!=$_member['row']['email']){
 		$_GET['nouser']=true;
 	}else{
 		
 		$_subject="重設密碼 - {$center['site_name']}";
-		$_body="{$member['row']['name']} 您好
+		$_body="{$_member['row']['username']} 您好
 		\n 請點擊以下連結重設您的密碼 
-		\n ".sc_get_headurl()."getpassword.php?user={$member['row']['id']}&auth=".md5($member['row']['rekey'])."
+		\n ".sc_get_headurl()."getpassword.php?id={$_member['row']['id']}&auth=".md5($_member['row']['rekey'])."
 		\n (若是您沒有申請重設密碼，請忽略此信件)";
 		
 		$_header="From: {$center['site_name']} <{$center['mail']}> \n";
@@ -25,22 +55,20 @@
 		mb_internal_encoding('UTF-8');
 		$_subject=mb_encode_mimeheader($_subject,'UTF-8');
 		
-		if(mail($member['row']['email'],$_subject,$_body,$_header)){
+		if(mail($_member['row']['email'],$_subject,$_body,$_header)){
 			$_step=2;
 		}
 	}
-}elseif(isset($_GET['auth'])&&trim($_GET['auth'])!=''&&isset($_GET['user'])&&abs($_GET['user'])!=''){
-	$_uid=abs($_GET['user']);
-	$member['query'] = $SQL->query("SELECT * FROM member WHERE `id` = '%d'",array($_uid));
-	$member['row'] = $member['query']->fetch_assoc();
-	$member['num_rows'] = $member['query']->num_rows;
-	if($member['num_rows']>0){
-		if(md5($member['row']['rekey'])==$_GET['auth']){
+}elseif(isset($_GET['auth'])&&trim($_GET['auth'])!=''&&isset($_GET['id'])&&abs($_GET['id'])!=''){
+	$_uid=abs($_GET['id']);
+	$_member = sc_get_result("SELECT * FROM member WHERE `id` = '%d'",array($_uid));
+	if($_member['num_rows']>0){
+		if(md5($_member['row']['rekey'])==$_GET['auth']){
 			$_rekey_SQL=sprintf(",`rekey` = '%s'",substr(sc_keygen($_GET['auth']),0,16));
 			$_step=3;
 			
 			if(isset($_POST['password'])&&trim($_POST['password'])!=''){
-				$SQL->query("UPDATE member SET `password` = '%s' $_rekey_SQL WHERE `id` = '%d'",array(sc_password($_POST['password'],$member['row']['name']),$_uid));
+				$SQL->query("UPDATE member SET `password` = '%s' $_rekey_SQL WHERE `id` = '%d'",array(sc_password($_POST['password'],$_member['row']['username']),$_uid));
 				$_step=4;
 				header("Location: index.php?getpassword");
 				exit;
@@ -48,39 +76,36 @@
 		}
 	}
 }
+$view = new View('include/theme/default.html','include/nav.php',NULL,$center['site_name'],'重設密碼');
 ?>
-<div class="main">
 <?php if(isset($_GET['nouser'])){ ?>
-	<div class="alert alert-error">帳號或電子信箱出現錯誤</div>
+<div class="alert alert-danger">帳號或電子信箱出現錯誤</div>
 <?php } ?>
 <h2>重設密碼</h2>
 <?php if(!isset($_step)){ ?>
-<form action="getpassword.php" method="POST">
-	<div class="controls">
+<form class="form-xs" action="getpassword.php" method="POST">
+	<div class="form-group">
 		<label for="username">請輸入您的帳號：</label>
-		<input class="input-large" id="username" name="username" type="text" required>
+		<input class="form-control" name="username" type="text" required="required">
 	</div>
-	
-	<div class="controls">
+	<div class="form-group">
 		<label for="email">請輸入您的電子信箱：</label>
-		<input class="input-large" id="email" name="email" type="email" required>
+		<input class="form-control" name="email" type="email" required="required">
 	</div>
-	
-	<input class="btn btn-primary" name="login" type="submit" id="login" value="下一步" />
+	<input class="btn btn-primary" type="submit" value="下一步">
 </form>
 <?php }elseif($_step==2){ ?>
 	<div class="alert alert-success">密碼重設連結已經發送至您的電子信箱囉！</div>
 <?php }elseif($_step==3){ ?>
-<form id="form1" name="form1" action="getpassword.php?user=<?php echo $_uid.'&auth='.$_GET['auth']; ?>" method="POST">
-	<p>會員「<?php echo $member['row']['name']; ?>」歡迎你</p>
-	<div class="controls">
+<form class="form-xs" action="getpassword.php?id=<?php echo $_uid.'&auth='.$_GET['auth']; ?>" method="POST">
+	<p>會員「<?php echo $_member['row']['username']; ?>」歡迎你</p>
+	<div class="form-group">
 		<label>請重新設定你的密碼：</label>
-		<input class="input-large" id="password" name="password" type="password" />
+		<input class="form-control" name="password" type="password">
 	</div>
-	<input class="btn btn-primary" name="login" type="submit" id="login" value="送出修改" />
+	<input class="btn btn-primary" type="submit" value="送出修改">
 </form>
 <?php } ?>
-</div>
 <?php
 $view->render();
 ?>
\ No newline at end of file
diff --git a/images/avatar/admin_1b0d4wA3.jpg b/images/avatar/admin_1b0d4wA3.jpg
deleted file mode 100644
index 3b67a0d..0000000
Binary files a/images/avatar/admin_1b0d4wA3.jpg and /dev/null differ
diff --git a/images/avatar/admin_cT1814a1.jpg b/images/avatar/admin_cT1814a1.jpg
deleted file mode 100644
index 1943110..0000000
Binary files a/images/avatar/admin_cT1814a1.jpg and /dev/null differ
diff --git a/images/edit.gif b/images/edit.gif
deleted file mode 100644
index 13aa89a..0000000
Binary files a/images/edit.gif and /dev/null differ
diff --git a/images/file.png b/images/file.png
deleted file mode 100644
index a306686..0000000
Binary files a/images/file.png and /dev/null differ
diff --git a/images/loading.gif b/images/loading.gif
deleted file mode 100644
index 6fba776..0000000
Binary files a/images/loading.gif and /dev/null differ
diff --git a/images/low_contrast_linen.png b/images/low_contrast_linen.png
deleted file mode 100644
index 17b491e..0000000
Binary files a/images/low_contrast_linen.png and /dev/null differ
diff --git a/images/processing.gif b/images/processing.gif
deleted file mode 100644
index 7c99504..0000000
Binary files a/images/processing.gif and /dev/null differ
diff --git a/include/RiseStarHandRegular.otf b/include/RiseStarHandRegular.otf
new file mode 100644
index 0000000..3d89c07
Binary files /dev/null and b/include/RiseStarHandRegular.otf differ
diff --git a/include/admin/cssconfig-sample.php b/include/admin/cssconfig-sample.php
new file mode 100644
index 0000000..8788be3
--- /dev/null
+++ b/include/admin/cssconfig-sample.php
@@ -0,0 +1,41 @@
+<?php
+/*
+<Secret Center, open source member management system>
+Copyright (C) 2012-2016 Secret Center開發團隊 <http://center.gdsecret.net/#team>
+
+This program is free software: you can redistribute it and/or modify
+it under the terms of the GNU Affero General Public License as published by
+the Free Software Foundation, version 3.
+
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+GNU Affero General Public License for more details.
+
+You should have received a copy of the GNU Affero General Public License
+along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+Also add information on how to contact you by electronic and paper mail.
+
+  If your software can interact with users remotely through a computer
+network, you should also make sure that it provides a way for users to
+get its source.  For example, if your program is a web application, its
+interface could display a "Source" link that leads users to an archive
+of the code.  There are many ways you could offer source, and different
+solutions will be better for different programs; see section 13 for the
+specific requirements.
+
+  You should also get your employer (if you work as a programmer) or school,
+if any, to sign a "copyright disclaimer" for the program, if necessary.
+For more information on this, and how to apply and follow the GNU AGPL, see
+<http://www.gnu.org/licenses/>.
+*/
+
+global $center;
+
+$center['css']['body']['font-size'] = "%d";
+$center['css']['body']['background-color'] = "%s";
+$center['css']['body']['line-height'] = "%d";
+$center['css']['#main']['width'] = "%d";
+$center['css']['#chat .msg-panel']['color']="%s";
+$center['css']['#chat .msg-panel']['background-color']="%s";
\ No newline at end of file
diff --git a/include/admin/cssconfig.php b/include/admin/cssconfig.php
new file mode 100644
index 0000000..eaf5dd2
--- /dev/null
+++ b/include/admin/cssconfig.php
@@ -0,0 +1,41 @@
+<?php
+/*
+<Secret Center, open source member management system>
+Copyright (C) 2012-2016 Secret Center開發團隊 <http://center.gdsecret.net/#team>
+
+This program is free software: you can redistribute it and/or modify
+it under the terms of the GNU Affero General Public License as published by
+the Free Software Foundation, version 3.
+
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+GNU Affero General Public License for more details.
+
+You should have received a copy of the GNU Affero General Public License
+along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+Also add information on how to contact you by electronic and paper mail.
+
+  If your software can interact with users remotely through a computer
+network, you should also make sure that it provides a way for users to
+get its source.  For example, if your program is a web application, its
+interface could display a "Source" link that leads users to an archive
+of the code.  There are many ways you could offer source, and different
+solutions will be better for different programs; see section 13 for the
+specific requirements.
+
+  You should also get your employer (if you work as a programmer) or school,
+if any, to sign a "copyright disclaimer" for the program, if necessary.
+For more information on this, and how to apply and follow the GNU AGPL, see
+<http://www.gnu.org/licenses/>.
+*/
+
+global $center;
+
+$center['css']['body']['font-size'] = "15";
+$center['css']['body']['background-color'] = "#dcf0ff";
+$center['css']['body']['line-height'] = "24";
+$center['css']['#main']['width'] = "80";
+$center['css']['#chat .msg-panel']['color']="#000000";
+$center['css']['#chat .msg-panel']['background-color']="#ffffff";
\ No newline at end of file
diff --git a/include/admin/nav.php b/include/admin/nav.php
new file mode 100644
index 0000000..9b24a6b
--- /dev/null
+++ b/include/admin/nav.php
@@ -0,0 +1,60 @@
+<?php
+/*
+<Secret Center, open source member management system>
+Copyright (C) 2012-2016 Secret Center開發團隊 <http://center.gdsecret.net/#team>
+
+This program is free software: you can redistribute it and/or modify
+it under the terms of the GNU Affero General Public License as published by
+the Free Software Foundation, version 3.
+
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+GNU Affero General Public License for more details.
+
+You should have received a copy of the GNU Affero General Public License
+along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+Also add information on how to contact you by electronic and paper mail.
+
+  If your software can interact with users remotely through a computer
+network, you should also make sure that it provides a way for users to
+get its source.  For example, if your program is a web application, its
+interface could display a "Source" link that leads users to an archive
+of the code.  There are many ways you could offer source, and different
+solutions will be better for different programs; see section 13 for the
+specific requirements.
+
+  You should also get your employer (if you work as a programmer) or school,
+if any, to sign a "copyright disclaimer" for the program, if necessary.
+For more information on this, and how to apply and follow the GNU AGPL, see
+<http://www.gnu.org/licenses/>.
+*/
+ if((isset($_SESSION['Center_Username']))&&($_SESSION['Center_UserGroup']==9)){ ?>
+	<li><a href="index.php">後臺首頁</a></li>
+	<li class="dropdown">
+		<a href="member.php" data-target="#" data-toggle="dropdown">會員管理 ▼</a>
+		<ul class="dropdown-menu">
+			<li><a href="member.php">會員管理</a></li>
+			<li><a href="membersearch.php">會員搜尋</a></li>
+		</ul>
+	</li>
+	<li><a href="chat.php">聊天管理</a></li>
+	<li class="dropdown">
+		<a href="forum.php" data-target="#" data-toggle="dropdown">論壇管理 ▼</a>
+		<ul class="dropdown-menu">
+			<li><a href="forum.php">論壇管理</a></li>
+			<li><a href="forumsearch.php">論壇搜尋</a></li>
+			<li><a href="forummerge.php">區塊合併</a></li>
+		</ul>
+	</li>
+	<li><a href="notice.php">通知管理</a></li>
+	<li class="dropdown">
+		<a href="editconfig.php" data-target="#" data-toggle="dropdown">系統設定 ▼</a>
+		<ul class="dropdown-menu">
+			<li><a href="editconfig.php">系統設定</a></li>
+			<li><a href="editcss.php">網站樣式</a></li>
+		</ul>
+	</li>
+	<li><a href="../member.php">會員中心</a></li>
+<?php } ?>
\ No newline at end of file
diff --git a/include/admin_nav.php b/include/admin_nav.php
deleted file mode 100644
index 60d724a..0000000
--- a/include/admin_nav.php
+++ /dev/null
@@ -1,28 +0,0 @@
-<?php if((isset($_SESSION['Center_Username']))&&($_SESSION['Center_UserGroup']==9)){ ?>
-	<li><a href="index.php">後臺首頁</a></li>
-	<li class="dropdown">
-		<a href="member.php" data-target="#" data-toggle="dropdown">會員管理 ▼</a>
-		<ul class="dropdown-menu">
-			<li><a href="member.php">會員管理</a></li>
-			<li><a href="searchmember.php">會員搜尋</a></li>
-		</ul>
-	</li>
-	<li><a href="chat.php">聊天管理</a></li>
-	<li class="dropdown">
-		<a href="forum.php" data-target="#" data-toggle="dropdown">論壇管理 ▼</a>
-		<ul class="dropdown-menu">
-			<li><a href="forum.php">論壇管理</a></li>
-			<li><a href="forumsearch.php">論壇搜尋</a></li>
-			<li><a href="forummerge.php">區塊合併</a></li>
-		</ul>
-	</li>
-	<li><a href="notice.php">通知管理</a></li>
-	<li class="dropdown">
-		<a href="editconfig.php" data-target="#" data-toggle="dropdown">系統設定 ▼</a>
-		<ul class="dropdown-menu">
-			<li><a href="editconfig.php">系統設定</a></li>
-			<li><a href="editcss.php">網站樣式</a></li>
-		</ul>
-	</li>
-	<li><a href="../member.php">會員中心</a></li>
-<?php } ?>
\ No newline at end of file
diff --git a/include/ajax/channel.php b/include/ajax/channel.php
deleted file mode 100644
index c17ba2b..0000000
--- a/include/ajax/channel.php
+++ /dev/null
@@ -1,57 +0,0 @@
-<?php
-abstract class Channel {
-	public $count;
-	public $timeout = 15;
-	protected $payload;
-	
-	public function __construct(){
-		$this->count = intval(@$_GET['e']);
-		$this->payload = isset($_GET['payload']) ? unserialize(base64_decode($_GET['payload'])) : null;
-	}
-	
-	protected function flush(){
-		@ob_flush();
-		flush();
-	}
-	
-	protected function timeoutResponse(){
-		$data = array(
-			'status' => 'CONTINUE',
-			//'payload' => base64_encode(serialize($this->payload)),
-			'data' => null
-		);
-		echo json_encode($data);
-		$this->flush();
-	}
-	
-	protected function response($result){
-		$data = array(
-			'status' => 'DATA',
-			'payload' => base64_encode(serialize($this->payload)),
-			'data' => $result
-		);
-		echo json_encode($data);
-		$this->flush();
-	}
-	
-	public function update(){
-		return false;
-	}
-	
-	public function start(){
-		@set_time_limit(0);
-		$start = time();
-		
-		while(($result = $this->update()) === false){
-			if(time() - $start > $this->timeout){
-				$this->timeoutResponse();
-				die();
-			}
-			sleep(1);
-		}
-		
-		header("Content-type: application/json");
-		$this->response($result);
-		die();
-	}
-}
\ No newline at end of file
diff --git a/include/ajax/chat.php b/include/ajax/chat.php
index 89cfd94..fd43762 100644
--- a/include/ajax/chat.php
+++ b/include/ajax/chat.php
@@ -1,76 +1,91 @@
 <?php
-if(!session_id()){
-	session_start();
-}
+/*
+<Secret Center, open source member management system>
+Copyright (C) 2012-2016 Secret Center開發團隊 <http://center.gdsecret.net/#team>
 
-$user = $_SESSION['Center_Username'];
-session_write_close();
+This program is free software: you can redistribute it and/or modify
+it under the terms of the GNU Affero General Public License as published by
+the Free Software Foundation, version 3.
+
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+GNU Affero General Public License for more details.
+
+You should have received a copy of the GNU Affero General Public License
+along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+Also add information on how to contact you by electronic and paper mail.
+
+  If your software can interact with users remotely through a computer
+network, you should also make sure that it provides a way for users to
+get its source.  For example, if your program is a web application, its
+interface could display a "Source" link that leads users to an archive
+of the code.  There are many ways you could offer source, and different
+solutions will be better for different programs; see section 13 for the
+specific requirements.
+
+  You should also get your employer (if you work as a programmer) or school,
+if any, to sign a "copyright disclaimer" for the program, if necessary.
+For more information on this, and how to apply and follow the GNU AGPL, see
+<http://www.gnu.org/licenses/>.
+*/
 
 set_include_path('../');
 $includepath = true;
-
 require_once('../../Connections/SQL.php');
-require_once('channel.php');
+require_once('../../config.php');
 
-class Chat extends Channel {
-	protected $type = 'public';
-	protected $user = null;
-	
-	public function __construct(){
-		parent::__construct();
-		if(isset($_GET['type'])){
-			$this->type = $_GET['type'];
-		}
-		if(isset($_GET['user'])){
-			$this->user = $_GET['user'];
-		}
-	}
-	
-	public function update(){
-		global $SQL;
-		global $user;
-		
-		if($this->payload === null){
-			$this->payload = array(
-				'last' => 0
-			);
-		}
+$_SESSION_scratch = $_SESSION;
+session_write_close();
+if(!isset($_SESSION_scratch['Center_Username'])){
+	exit;
+}
+
+if(isset($_GET['sent'])){
+	if(isset($_POST['content'])&&trim($_POST['content'])!=''){
+		$_chat = sc_get_result("SELECT * FROM `chat` ORDER BY `mktime` ASC");
 		
-		if($this->payload['last'] > 0){
-			if($this->type == "public"){
-				$result = $SQL->query("SELECT * FROM `chat` WHERE `ptime` > '%s'",array(
-					date("Y-m-d H:i:s",$this->payload['last'])
-				));
-			}
-		}
-		else {
-			if($this->type == "public"){
-				$result = $SQL->query("SELECT * FROM `chat` ORDER BY `ptime` ASC",array());
-			}
+		if($_chat['num_rows'] > 50){
+			$SQL->query("TRUNCATE TABLE `chat`");
 		}
+		$SQL->query("INSERT INTO `chat` (`content`, `mktime`, `author`) VALUES ('%s', now(), '%s')",array(htmlspecialchars($_POST['content']),$_SESSION_scratch['Center_Id']));
 		
-		return $this->prepare($result);
-	}
+		sc_tag_member(
+			htmlspecialchars($_POST['content']),
+			rtrim(sc_get_headurl(),'include/ajax').'/chat.php',
+			$_SESSION_scratch['Center_Username'].'在聊天室提到你',
+			$_SESSION_scratch['Center_Id']
+		);
 	
-	public function prepare($result){
-		if($result->num_rows == 0){
-			return false;
-		}
-		
-		$results = array();
+		header("Content-type: application/json");
+		echo json_encode(array("success" => true));
+	}
+}elseif(isset($_POST['last'])){
+	$_last=intval($_POST['last']);
+	$_timeout=20;
+	$i=0;
+	while($i<$_timeout){
+		$_result = sc_get_result("SELECT * FROM `chat` WHERE `mktime` > '%s'",array(date('Y-m-d H:i:s',$_last)));
 		
-		while($rows = $result->fetch_assoc()){
-			$this->payload['last'] = strtotime($rows['ptime']);
-			$t = strtotime($rows['ptime']);
-			if(date('d') == date('d', $t)){
-				$rows['ptime'] = date('H:i:s',$t);
-			}
-			$results[] = $rows;
+		$_data=array();
+		$_data['last']=time();
+		if($_result['num_rows'] > 0){
+			do{
+				$_member = $SQL->query("SELECT `username` FROM `member` WHERE `id` = '%d'",array($_result['row']['author']))->fetch_assoc();
+				$t = strtotime($_result['row']['mktime']);
+				if(date('d') == date('d', $t)){
+					$_data['data'][]=array('id'=>$_result['row']['id'],'content'=>$_result['row']['content'],'mktime'=>date('H:i:s',$t),'author'=>$_member['username']);
+				}else{
+					$_data['data'][]=array('id'=>$_result['row']['id'],'content'=>$_result['row']['content'],'mktime'=>$_result['row']['mktime'],'author'=>$_member['username']);
+				}
+			}while($_result['row'] = $_result['query']->fetch_assoc());
+			break;
 		}
-		
-		return $results;
+		$i++;
+		sleep(1);
 	}
+	header("Content-type: application/json");
+	echo json_encode($_data);
 }
-
-$chat = new Chat();
-$chat->start();
+die;
\ No newline at end of file
diff --git a/include/ajax/chat_receive.php b/include/ajax/chat_receive.php
deleted file mode 100644
index 22a4295..0000000
--- a/include/ajax/chat_receive.php
+++ /dev/null
@@ -1,35 +0,0 @@
-<?php
-if(!session_id()){
-	session_start();
-}
-
-$user = $_SESSION['Center_Username'];
-session_write_close();
-
-set_include_path('../');
-$includepath = true;
-
-require_once('../../Connections/SQL.php');
-
-try {
-	$Chat = $SQL->query("SELECT * FROM chat ORDER BY id ASC");
-	$row_Chat = $Chat->fetch_assoc();
-	$totalRows_Chat = $Chat->num_rows;
-	
-	if($totalRows_Chat > 50){
-	    $SQL->query("TRUNCATE TABLE chat");
-	}
-	$SQL->query("INSERT INTO chat (name, data, ptime) VALUES ('%s', '%s', now())",array(
-		$user,
-		htmlspecialchars($_POST['data'])
-	));
-	
-	header("Content-type: application/json");
-	echo json_encode(array("success" => true));
-	die();
-}
-catch (Exception $e){
-	header("Content-type: application/json");
-	echo json_encode(array("success" => false, "error" => base64_encode($e->getMessage())));
-	die();
-}
\ No newline at end of file
diff --git a/include/ajax/file.php b/include/ajax/file.php
deleted file mode 100644
index 5913127..0000000
--- a/include/ajax/file.php
+++ /dev/null
@@ -1,32 +0,0 @@
-<?php
-if(!session_id()){
-	session_start();
-}
-
-set_include_path('../');
-$includepath = true;
-
-require_once('../../Connections/SQL.php');
-require_once('../../config.php');
-if(!isset($_SESSION['Center_Username'])){
-    exit;
-}
-
-$dir = '../file/'.$_SESSION['Center_Username'].'/';
-
-if((isset($_GET['rename'])) && ($_GET['rename']!='') && (isset($_GET['newname'])) && (sc_namefilter($_GET['newname'])!='')){
-	$_GETrename=sc_namefilter($_GET['rename']);
-	$file = $dir.$_GETrename;
-	$newname =sc_namefilter($_GET['newname']).'.' . pathinfo(sc_namefilter($_GETrename), PATHINFO_EXTENSION);
-	$newfile= $dir.$newname;
-	if(@rename($file, $newfile)){
-		$_data['url']='include/file/'.$_SESSION['Center_Username'].'/'.$newname;
-		$_data['file']=$newname;
-		echo json_encode($_data);
-	}
-}elseif((isset($_GET['del'])) && ($_GET['del'] !='')){
-	if(@unlink($dir.sc_namefilter($_GET['del']))){
-		echo 1;
-	}
-}
-exit;
\ No newline at end of file
diff --git a/include/ajax/findImg.php b/include/ajax/findImg.php
deleted file mode 100644
index 72dcc22..0000000
--- a/include/ajax/findImg.php
+++ /dev/null
@@ -1,13 +0,0 @@
-<?php
-if(!session_id()){
-	session_Start();
-}
-
-$result = glob(sprintf('../file/%s/*.{jpg,jpeg,jfif,png,gif,JPG,JPEG,JFIF,PNG,GIF}', $_SESSION['Center_Username']), GLOB_BRACE);
-
-foreach($result as &$item){
-	$item = str_replace('../', 'include/', $item);
-}
-
-header('Content-type: application/json');
-echo json_encode($result);
\ No newline at end of file
diff --git a/include/ajax/notice.php b/include/ajax/notice.php
index 72eb062..6e6533c 100644
--- a/include/ajax/notice.php
+++ b/include/ajax/notice.php
@@ -1,38 +1,99 @@
 <?php
-if(!session_id()){
-	session_start();
-}
+/*
+<Secret Center, open source member management system>
+Copyright (C) 2012-2016 Secret Center開發團隊 <http://center.gdsecret.net/#team>
+
+This program is free software: you can redistribute it and/or modify
+it under the terms of the GNU Affero General Public License as published by
+the Free Software Foundation, version 3.
+
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+GNU Affero General Public License for more details.
+
+You should have received a copy of the GNU Affero General Public License
+along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+Also add information on how to contact you by electronic and paper mail.
+
+  If your software can interact with users remotely through a computer
+network, you should also make sure that it provides a way for users to
+get its source.  For example, if your program is a web application, its
+interface could display a "Source" link that leads users to an archive
+of the code.  There are many ways you could offer source, and different
+solutions will be better for different programs; see section 13 for the
+specific requirements.
+
+  You should also get your employer (if you work as a programmer) or school,
+if any, to sign a "copyright disclaimer" for the program, if necessary.
+For more information on this, and how to apply and follow the GNU AGPL, see
+<http://www.gnu.org/licenses/>.
+*/
 
 set_include_path('../');
 $includepath = true;
-
 require_once('../../Connections/SQL.php');
 require_once('../../config.php');
-if(!isset($_SESSION['Center_Username'])){
-    exit;
+
+$_SESSION_scratch = $_SESSION;
+session_write_close();
+if(!isset($_SESSION_scratch['Center_Username'])){
+	exit;
 }
-if(isset($_GET['read'])){
-	$SQL->query("UPDATE `notice` SET `status` = '1' WHERE `send_to`='%s' AND `status`='0' ORDER BY `ptime` DESC LIMIT 5",array($_SESSION['Center_Username']));
-}elseif(isset($_GET['unread'])){
-	echo $SQL->query("SELECT * FROM `notice` WHERE `send_to`='%s' AND `status`='0'",array($_SESSION['Center_Username']))->num_rows;
-}else{
-	$notice['all_rows']=$SQL->query("SELECT * FROM `notice` WHERE `send_to`='%s'",array($_SESSION['Center_Username']))->num_rows;
-
-	if($notice['all_rows']>20){
-		$SQL->query("DELETE FROM `notice` WHERE `send_to`='%s' AND `status`='1' ORDER BY `ptime` ASC LIMIT 1",array($_SESSION['Center_Username']));
+if(isset($_POST['last_count'])){
+	$_last=intval($_POST['last_count']);
+	$_timeout=20;
+	$i=0;
+	while($i<$_timeout){
+		$_unread_count = $SQL->query("SELECT `id` FROM `notice` WHERE `status`=0 AND `send_to`='%d'",array($_SESSION_scratch['Center_Id']))->num_rows;
+		
+		$_data=array();
+		if($_unread_count != $_last){
+			$_data['count']=$_unread_count;
+			break;
+		}
+		$i++;
+		sleep(1);
 	}
-
-	$notice['query']=$SQL->query("SELECT * FROM `notice` WHERE `send_to`='%s' ORDER BY `ptime` DESC  LIMIT 0,10",array($_SESSION['Center_Username']));
-	$notice['row']=$notice['query']->fetch_assoc();
-	$notice['num_rows']=$notice['query']->num_rows;
-
-	if($notice['num_rows']>0){
+	header("Content-type: application/json");
+	echo json_encode($_data);
+	
+}elseif(isset($_POST['last'])){
+	
+	$_last=intval($_POST['last']);
+	$_all_rows=$SQL->query("SELECT * FROM `notice` WHERE `send_to`='%d'",array($_SESSION_scratch['Center_Id']))->num_rows;
+	
+	if($_all_rows>30){
+		$SQL->query("DELETE FROM `notice` WHERE `send_to`='%d' ORDER BY `mktime` ASC LIMIT 1",array($_SESSION_scratch['Center_Id']));
+	}
+	
+	$_result = sc_get_result("SELECT * FROM `notice` WHERE `send_to`='%d' AND `mktime` > '%s' ORDER BY `mktime` ASC",array($_SESSION_scratch['Center_Id'],date('Y-m-d H:i:s',$_last)));
+	
+	$_data=array();
+	$_data['last']=time();
+	
+	if($_result['num_rows'] > 0){
 		do{
-			$_data[]=json_encode($notice['row']);
-		}while($notice['row']=$notice['query']->fetch_assoc());
-		echo '['.implode(',',$_data).']';
-	}else{
-		echo '{"error":"1"}';
+			$_send_from = sc_get_result("SELECT `username` FROM `member` WHERE `id` = '%d'",array($_result['row']['send_from']));
+			$_send_to = sc_get_result("SELECT `username` FROM `member` WHERE `id` = '%d'",array($_result['row']['send_to']));
+			
+			$_data['data'][]=array(
+			'id'=>$_result['row']['id'],
+			'url'=>$_result['row']['url'],
+			'content'=>$_result['row']['content'],
+			'status'=>$_result['row']['status'],
+			'send_from'=>$_send_from['row']['username'],
+			'send_from_avatar'=>sc_avatar_url($_result['row']['send_from'],true),
+			'send_to'=>$_send_to['row']['username'],
+			'mktime'=>$_result['row']['mktime']
+			);
+			
+		}while($_result['row'] = $_result['query']->fetch_assoc());
 	}
+	
+	$SQL->query("UPDATE `notice` SET `status` = '1' WHERE `send_to`='%d' AND `status`='0' ORDER BY `mktime` DESC LIMIT 5",array($_SESSION_scratch['Center_Id']));
+	header("Content-type: application/json");
+	echo json_encode($_data);
 }
 die;
\ No newline at end of file
diff --git a/include/avatar.php b/include/avatar.php
deleted file mode 100644
index 31208fa..0000000
--- a/include/avatar.php
+++ /dev/null
@@ -1,13 +0,0 @@
-<?php
-require_once('../Connections/SQL.php');
-require_once('../config.php');
-
-if(isset($_GET['id'])) {
-	$avatar = $SQL->query("SELECT avatar FROM member WHERE name = '%s'",array($_GET['id']));
-	$row_avatar = $avatar->fetch_assoc();
-	$totalRows_avatar = $avatar->num_rows;
-	if(isset($row_avatar['avatar'])){
-		$avatar = $row_avatar['avatar'];
-		header("Location: $avatar");
-	}
-}
\ No newline at end of file
diff --git a/images/default_avatar.png b/include/avatar/default.png
similarity index 100%
rename from images/default_avatar.png
rename to include/avatar/default.png
diff --git a/include/captcha.php b/include/captcha.php
index 177c876..7b5d893 100644
--- a/include/captcha.php
+++ b/include/captcha.php
@@ -1,4 +1,36 @@
 <?php
+/*
+<Secret Center, open source member management system>
+Copyright (C) 2012-2016 Secret Center開發團隊 <http://center.gdsecret.net/#team>
+
+This program is free software: you can redistribute it and/or modify
+it under the terms of the GNU Affero General Public License as published by
+the Free Software Foundation, version 3.
+
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+GNU Affero General Public License for more details.
+
+You should have received a copy of the GNU Affero General Public License
+along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+Also add information on how to contact you by electronic and paper mail.
+
+  If your software can interact with users remotely through a computer
+network, you should also make sure that it provides a way for users to
+get its source.  For example, if your program is a web application, its
+interface could display a "Source" link that leads users to an archive
+of the code.  There are many ways you could offer source, and different
+solutions will be better for different programs; see section 13 for the
+specific requirements.
+
+  You should also get your employer (if you work as a programmer) or school,
+if any, to sign a "copyright disclaimer" for the program, if necessary.
+For more information on this, and how to apply and follow the GNU AGPL, see
+<http://www.gnu.org/licenses/>.
+*/
+
 if(!session_id()) session_start();
 
 function captcha(){
@@ -29,8 +61,9 @@ function genColor($r, $br = 0, $g = 0, $bg = 0, $b = 0, $bb = 0, $a = 0){
 
 captcha();
 
-$width = 300;
-$height = 75;
+$width =250;
+$height = 60;
+$font=array('RiseStarHandRegular.otf');
 $image = imagecreatetruecolor($width, $height);
 
 $text = $_SESSION['captcha'];
@@ -39,45 +72,48 @@ function genColor($r, $br = 0, $g = 0, $bg = 0, $b = 0, $bb = 0, $a = 0){
 
 imagealphablending($image, true);
 
-for($a = 1; $a <= 8; $a++){
-	$p = $a / 8;
+$pa=8;
+for($a = 1; $a <= $pa; $a++){
+	$p = $a / $pa;
 	imageline($image, 1, $height * $p, $width - 2, $height * $p, imagecolorallocate($image, 127, 186, 190));
 	imageline($image, $width * $p, 1, $width * $p, $height - 2, imagecolorallocate($image, 127, 186, 190));
 }
 
 imagettftext(
 	$image,
-	$height * ((30+rand(0,5))*0.01),
+	$height * 0.4,
 	0,
 	mt_rand($width * 0.1, $width * 0.3),
-	mt_rand($height * 0.3, $height * 0.85),
+	mt_rand($height * 0.33, $height * 0.85),
 	genColor(80),
-	'./captchafont.ttf',
+	$font[array_rand($font)],
 	substr($text, 0, 2)
 );
 
+
 imagettftext(
 	$image, 
-	$height * ((30+rand(0,5))*0.01), 
+	$height * 0.4, 
 	0, 
 	mt_rand($width * 0.4, $width * 0.55), 
-	mt_rand($height * 0.3, $height * 0.85),
+	mt_rand($height * 0.33, $height * 0.85),
 	genColor(100), 
-	'./captchafont.ttf', 
+	$font[array_rand($font)],
 	substr($text, 2, 2)
 );
 
 imagettftext(
 	$image, 
-	$height * ((30+rand(0,5))*0.01), 
+	$height * 0.4, 
 	0, 
 	mt_rand($width * 0.6, $width * 0.8), 
-	mt_rand($height * 0.3, $height * 0.85), 
+	mt_rand($height * 0.33, $height * 0.85), 
 	genColor(100),
-	'./captchafont.ttf', 
+	$font[array_rand($font)], 
 	substr($text, 4, 2)
 );
 
+
 for($i = 0; $i < 8; $i++){
 	imagefilledarc($image, mt_rand($width * 0.15, $width * 0.8), mt_rand($height * 0.15, $height * 0.8), $height * 0.4, $height * 0.4, 0, 360, genColor(255, 180, 255, 110, 255, 90, 110), IMG_ARC_PIE);
 }
diff --git a/include/database.php b/include/database.php
index 4abaebe..3fd447c 100644
--- a/include/database.php
+++ b/include/database.php
@@ -1,4 +1,36 @@
 <?php
+/*
+<Secret Center, open source member management system>
+Copyright (C) 2012-2016 Secret Center開發團隊 <http://center.gdsecret.net/#team>
+
+This program is free software: you can redistribute it and/or modify
+it under the terms of the GNU Affero General Public License as published by
+the Free Software Foundation, version 3.
+
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+GNU Affero General Public License for more details.
+
+You should have received a copy of the GNU Affero General Public License
+along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+Also add information on how to contact you by electronic and paper mail.
+
+  If your software can interact with users remotely through a computer
+network, you should also make sure that it provides a way for users to
+get its source.  For example, if your program is a web application, its
+interface could display a "Source" link that leads users to an archive
+of the code.  There are many ways you could offer source, and different
+solutions will be better for different programs; see section 13 for the
+specific requirements.
+
+  You should also get your employer (if you work as a programmer) or school,
+if any, to sign a "copyright disclaimer" for the program, if necessary.
+For more information on this, and how to apply and follow the GNU AGPL, see
+<http://www.gnu.org/licenses/>.
+*/
+
 class Database {
 	private $conn;
 	private $addr;
diff --git a/include/function.php b/include/function.php
index afa56bb..4ad256f 100644
--- a/include/function.php
+++ b/include/function.php
@@ -1,30 +1,38 @@
 <?php
-function deletedir($dir) {
-    if ($handle = opendir($dir)) {
-        while(false !== ($item = readdir($handle))) {
-            if ($item != "." && $item != "..") {
-                if (is_dir($dir."/".$item)) {
-                    deletedir($dir."/".$item);
-                } else {
-                    unlink($dir."/".$item);
-                }
-            }
-        }    
-        closedir($handle);
-        rmdir($dir);
-      }
-}
+/*
+<Secret Center, open source member management system>
+Copyright (C) 2012-2016 Secret Center開發團隊 <http://center.gdsecret.net/#team>
 
-function lt_replace($str){ 
-    return preg_replace("/<([^\/[:alpha:]])/", '&lt;\\1', $str); 
-} 
+This program is free software: you can redistribute it and/or modify
+it under the terms of the GNU Affero General Public License as published by
+the Free Software Foundation, version 3.
+
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+GNU Affero General Public License for more details.
+
+You should have received a copy of the GNU Affero General Public License
+along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+Also add information on how to contact you by electronic and paper mail.
+
+  If your software can interact with users remotely through a computer
+network, you should also make sure that it provides a way for users to
+get its source.  For example, if your program is a web application, its
+interface could display a "Source" link that leads users to an archive
+of the code.  There are many ways you could offer source, and different
+solutions will be better for different programs; see section 13 for the
+specific requirements.
+
+  You should also get your employer (if you work as a programmer) or school,
+if any, to sign a "copyright disclaimer" for the program, if necessary.
+For more information on this, and how to apply and follow the GNU AGPL, see
+<http://www.gnu.org/licenses/>.
+*/
 
-function removal_escape_string($data){
-	$data = lt_replace($data);
-    return stripslashes($data);
-}
 function sc_ver(){
-	return '8.1';
+	return '9.0';
 }
 
 function sc_keygen($_value=''){
@@ -33,7 +41,7 @@ function sc_keygen($_value=''){
 function sc_login($_username,$_password){
 	global $SQL;
 	if (isset($_username)&&isset($_password)) {
-		$login = $SQL->query("SELECT `name`, `password`, `level` FROM `member` WHERE (name = '%s' OR email = '%s') AND password = '%s'",array(
+		$login = $SQL->query("SELECT `id`,`username`, `password`, `level` FROM `member` WHERE (`username` = '%s' OR `email` = '%s') AND `password` = '%s'",array(
 			$_username,
 			$_username,
 			sc_password($_password,$_username)
@@ -42,26 +50,26 @@ function sc_login($_username,$_password){
 		
 		//[相容] 7.3 版以前密碼----開始
 		if ($login->num_rows <1) {
-			$login = $SQL->query("SELECT `name`, `password`, `level` FROM `member` WHERE (name = '%s' OR email = '%s') AND password = '%s'",array(
+			$login = $SQL->query("SELECT `id`,`username`, `password`, `level` FROM `member` WHERE (`username` = '%s' OR `email` = '%s') AND `password` = '%s'",array(
 			$_username,
 			$_username,
 			md5(sha1($_password))
 			));
 			if($login->num_rows > 0){
-				$SQL->query("UPDATE `member` SET `password` = '%s' WHERE `name` = '%s'",array(sc_password($_password,$_username),$_username));
+				$SQL->query("UPDATE `member` SET `password` = '%s' WHERE `username` = '%s'",array(sc_password($_password,$_username),$_username));
 			}
 		}//[相容] 7.3 版以前密碼----結束
 		
 		
 		if ($login->num_rows > 0) {
 			$info = $login->fetch_assoc();
-			$group = $info['level'];
 			
-			$last_login= $SQL->query("UPDATE `member` SET `last_login` = now() WHERE `name` = '%s'",array($info['name']));
+			$last_login= $SQL->query("UPDATE `member` SET `last_login` = now() WHERE `username` = '%s'",array($info['username']));
 			
 			$_SESSION['Center_Username'] = strtolower($_username);
-			$_SESSION['Center_UserGroup'] = $group;	      
-			setcookie("login", time(), time()+7200);
+			$_SESSION['Center_Id'] = $info['id'];
+			$_SESSION['Center_UserGroup'] = $info['level'];	      
+			setcookie("login", time(), time()+10800);
 			return 1;
 		}
 		else {
@@ -71,10 +79,12 @@ function sc_login($_username,$_password){
 }
 function sc_loginout(){
 	$_SESSION['Center_Username'] = NULL;
+	$_SESSION['Center_Id'] = NULL;
 	$_SESSION['Center_UserGroup'] = NULL;
 	unset($_SESSION['Center_Username']);
+	unset($_SESSION['Center_Id']);
 	unset($_SESSION['Center_UserGroup']);
-	setcookie("login", "", time()-7200);
+	setcookie("login", "", time()-10800);
 	return 1;
 }
 
@@ -89,13 +99,13 @@ function sc_register($_username,$_password,$_email,$_web_site='',$_level=1){
 			
 			$_username=sc_namefilter($_username);
 			
-			$auth_name = $SQL->query("SELECT name FROM member WHERE name = '%s' OR email = '%s'", array($_username,$_email));
+			$auth_name = $SQL->query("SELECT `username` FROM `member` WHERE `username` = '%s' OR `email` = '%s'", array($_username,$_email));
 			if($auth_name->num_rows > 0){
 				return -1;
 				exit;
 			}
 			
-			$add_user = $SQL->query("INSERT INTO member (name, password, email, web_site, avatar, rekey, level , joined ,last_login) VALUES ('%s', '%s', '%s', '%s', '../images/default_avatar.png', '%s', '%s', now(), now())",array(
+			$add_user = $SQL->query("INSERT INTO `member` (`username`, `password`, `email`, `web_site`, `avatar`, `rekey`, `level` , `joined` ,`last_login`) VALUES ('%s', '%s', '%s', '%s', 'default.png', '%s', '%d', now(), now())",array(
 				sc_namefilter($_username),
 				sc_password($_password,$_username),
 				$_email,
@@ -113,14 +123,13 @@ function sc_register($_username,$_password,$_email,$_web_site='',$_level=1){
 	}
 }
 
-
-function sc_get_member_data($_username){
+function sc_get_result($_query,$_value=array()){
 	global $SQL;
-	$member['query'] = $SQL->query("SELECT * FROM member WHERE name = '%s'",array($_username));
-	$member['row'] = $member['query']->fetch_assoc();
-	$member['num_rows'] = $member['query']->num_rows;
-	if($member['num_rows']=1){
-		return $member;
+	$_result['query'] = $SQL->query($_query,$_value);
+	$_result['row'] = $_result['query']->fetch_assoc();
+	$_result['num_rows'] = $_result['query']->num_rows;
+	if($_result['num_rows']>0){
+		return $_result;
 	}else{
 		return -1;
 	}
@@ -146,42 +155,71 @@ function sc_password($_value,$_salt){
 }
 
 function sc_get_headurl(){
-	$url="http://{$_SERVER['HTTP_HOST']}{$_SERVER['PHP_SELF']}";
+	$_prefix='http';
+	if(isset($_SERVER['HTTPS'])){
+		if($_SERVER['HTTPS'] == 'on'){
+			$_prefix='https';
+		}
+	}
+	$url="$_prefix://{$_SERVER['HTTP_HOST']}{$_SERVER['PHP_SELF']}";
 	$po= strripos($url,'/');
 	return substr($url,0,$po).'/';
 }
 
-function sc_addnotice($_url,$_content,$_send_from,$_send_to){
+function sc_add_notice($_url,$_content,$_send_from,$_send_to){
 	global $SQL;
-	$SQL->query("INSERT INTO notice ( url,content, status, send_from,send_to,ptime) VALUES ('%s','%s',0,'%s','%s',now())",array($_url,$_content,$_send_from,$_send_to));
+	$SQL->query("INSERT INTO `notice` ( `url`,`content`, `status`, `send_from`,`send_to`,`mktime`) VALUES ('%s','%s',0,'%d','%d',now())",array($_url,$_content,$_send_from,$_send_to));
 	return 1;
 }
 
-function sc_xss_filter($content){
+function sc_xss_filter($_content){
 	require_once('htmlpurifier/HTMLPurifier.auto.php');
     $purifier = new HTMLPurifier();
-    $filterContent = $purifier->purify($content);
+    $filterContent = $purifier->purify($_content);
     return $filterContent;
 }
 
-function sc_add_forum_post($_title,$_content,$_block,$_username,$_level){
+function sc_add_forum_post($_title,$_content,$_block,$_id,$_level){
 	global $SQL;
-	$SQL->query("INSERT INTO `forum` (`post_title`, `post`,`block`, `posted`, `level`, `ptime`) VALUES ('%s', '%s','%d', '%s','%d', now())",array(
+	$SQL->query("INSERT INTO `forum` (`title`, `content`,`block`, `level`, `mktime`, `author`) VALUES ('%s', '%s','%d', '%d', now(),'%d')",array(
 		htmlspecialchars($_title),
 		sc_xss_filter($_content),
 		abs($_block),
-		$_username,
-		abs($_level)
+		abs($_level),
+		abs($_id)
 	));
 	return 1;
 }
-function sc_add_forum_block($_blockname,$_position=1){
+function sc_add_forum_block($_blockname,$_position=0){
 	global $SQL;
-	$SQL->query("INSERT INTO `forum_block` (`blockname`, `position`, `ptime`) VALUES ('%s', '%d', now())",array(sc_namefilter($_blockname),abs($_position)));
+	$SQL->query("INSERT INTO `forum_block` (`blockname`, `position`, `mktime`) VALUES ('%s', '%d', now())",array(sc_namefilter($_blockname),abs($_position)));
+	return 1;
+}
+
+function sc_tag_member($_content,$_notice_url,$_notice_content,$_id){
+	preg_match_all('/@[A-Za-z0-9]{0,30}/',$_content,$_tag);
+	foreach ($_tag[0] as $_v){
+		$_member = sc_get_result("SELECT `id` FROM `member` WHERE `username` = '%s'",array(ltrim($_v,'@')));
+		sc_add_notice($_notice_url,$_notice_content,$_id,$_member['row']['id']);
+	}
 	return 1;
 }
+function sc_avatar_url($_id,$_only_file_name=false){
+	$_avatar = sc_get_result("SELECT `avatar` FROM `member` WHERE `id` = '%s'",array(abs($_id)));
+	if($_avatar['num_rows']>0){
+		if($_only_file_name){
+			return $_avatar['row']['avatar'];
+		}else{
+			
+			$_headurl = rtrim(rtrim(rtrim(sc_get_headurl(),'/include'),'/admin'),'/ajax').'/';
+			return $_headurl.'include/avatar/'.$_avatar['row']['avatar'];
+		}
+	}else{
+		return -1;
+	}
+}
 
-function sc_avatar_image_tiny($_image,$_image_type,$_new_image_file,$_new_height,$_new_image_quality=75){
+function sc_avatar_compress($_image,$_image_type,$_new_image_file,$_new_height,$_new_image_quality=75){
 	switch ($_image_type){
 		case 'jpg':
 		case 'jpeg':
@@ -215,4 +253,66 @@ function sc_avatar_image_tiny($_image,$_image_type,$_new_image_file,$_new_height
 		imagejpeg($_origin_img, $_new_image_file, $_new_image_quality);//輸出JPG圖片
 		return true;
 	}
+}
+function sc_deletedir($dir) {
+    if ($handle = opendir($dir)) {
+        while(false !== ($item = readdir($handle))) {
+            if ($item != "." && $item != "..") {
+                if (is_dir($dir."/".$item)) {
+                    deletedir($dir."/".$item);
+                } else {
+                    unlink($dir."/".$item);
+                }
+            }
+        }    
+        closedir($handle);
+        rmdir($dir);
+      }
+}
+
+function sc_page_pagination($_href,$_now_page,$_data_num,$_page_limit,$_href_parameters=''){
+	$_return='';
+	$_now_page=abs($_now_page);
+	$page_num= ceil($_data_num / $_page_limit);
+	if($page_num>=7){
+		$_return.='<ul class="pagination">';
+		$_array=array(1,2,3,$_now_page-2,$_now_page-1,$_now_page,$_now_page+1,$_now_page+2,$page_num-2,$page_num-1,$page_num);
+		$_array=array_unique($_array);
+		$_last_value=0;
+		foreach ($_array as $value){
+			if($value>0&&$value<=$page_num){
+				if($_last_value+1!=$value){
+					$_return.='<li><span>...</span></li>';
+				}
+				if($_now_page==$value){
+					$_return.='<li class="active"><span>'.$value.'</span></li>';
+				}else{
+					$_return.='<li><a href="'.$_href.'?page='.$value.$_href_parameters.'">'.$value.'</a></li>';
+				}
+				$_last_value=$value;
+			}
+		}
+		$_return.='</ul>';
+	}elseif($page_num>1){
+		$_return.='<ul class="pagination">';
+		for($i=1;$i<=$page_num;$i++){
+			if($_now_page!=$i){
+				$_return.='<li><a href="'.$_href.'?page='.$i.$_href_parameters.'">'.$i.'</a></li>';
+			}else{
+				$_return.='<li class="active"><span>'.$i.'</span></li>';
+			}
+		}
+		$_return.='</ul>';
+	}
+	return $_return;
+}
+
+
+function lt_replace($str){ 
+    return preg_replace("/<([^\/[:alpha:]])/", '&lt;\\1', $str); 
+}
+
+function sc_removal_escape_string($data){
+	$data = lt_replace($data);
+    return stripslashes($data);
 }
\ No newline at end of file
diff --git a/include/htmlpurifier/HTMLPurifier/DefinitionCache/Serializer/CSS/4.7.0,24166bfe16a0cc6bd18d813b83121ef2eaf16545,1.ser b/include/htmlpurifier/HTMLPurifier/DefinitionCache/Serializer/CSS/4.7.0,24166bfe16a0cc6bd18d813b83121ef2eaf16545,1.ser
new file mode 100644
index 0000000..fe7977a
Binary files /dev/null and b/include/htmlpurifier/HTMLPurifier/DefinitionCache/Serializer/CSS/4.7.0,24166bfe16a0cc6bd18d813b83121ef2eaf16545,1.ser differ
diff --git a/include/htmlpurifier/HTMLPurifier/DefinitionCache/Serializer/URI/4.7.0,8d03c8ec0e84e7feb92afd4c0f1735841b5fdacf,1.ser b/include/htmlpurifier/HTMLPurifier/DefinitionCache/Serializer/URI/4.7.0,8d03c8ec0e84e7feb92afd4c0f1735841b5fdacf,1.ser
new file mode 100644
index 0000000..f6d3e81
Binary files /dev/null and b/include/htmlpurifier/HTMLPurifier/DefinitionCache/Serializer/URI/4.7.0,8d03c8ec0e84e7feb92afd4c0f1735841b5fdacf,1.ser differ
diff --git a/include/index.php b/include/index.php
deleted file mode 100644
index 932e7a2..0000000
--- a/include/index.php
+++ /dev/null
@@ -1,11 +0,0 @@
-<?php
-if(isset($_GET['logout'])){
-	$_SESSION['Center_Username'] = NULL;
-	$_SESSION['Center_UserGroup'] = NULL;
-	unset($_SESSION['Center_Username']);
-	unset($_SESSION['Center_UserGroup']);
-	setcookie("login","",time()-7200);
-	header("Location: index.php?out");
-	exit;
-}
-?>
\ No newline at end of file
diff --git a/include/js/channel.js b/include/js/channel.js
deleted file mode 100644
index c863138..0000000
--- a/include/js/channel.js
+++ /dev/null
@@ -1,140 +0,0 @@
-(function($,window){
-	// AJAX Channel implantation
-	// For real-time updates
-    var Channel = function(endpoint){
-		this.counter = 0;
-		this.payload = null;
-		this.endpoint = endpoint;
-		this.handler = function(){};
-		this.xhr = null;
-	};
-	
-	Channel.prototype._start = function(){
-		var self = this;
-		this.counter++;
-		var data = {
-			e: this.counter
-		};
-		
-		if(this.payload !== null){
-			data.payload = this.payload;
-		}
-		
-		this.xhr = $.ajax({
-			url: this.endpoint,
-			type: "GET",
-			dataType: "json",
-			data: data,
-			cache: false,
-			success:function(channel){
-				if(channel.status == "DATA"){
-					self.payload = channel.payload;
-					self.handler(channel.data);
-				}
-				
-				self._start();
-			},
-			error:function(){
-				setTimeout(function(){
-					self._start();
-				}, 3000);
-			}
-		});
-	};
-	
-	Channel.prototype.start = function(){
-		this._start();
-	};
-	
-	Channel.prototype.stop = function(){
-		this.xhr.abort();
-	};
-	
-	// Chat system
-	var Chat = function(target,priv,interval){
-		var self = this;
-		this.target = $(target);
-		this.sent = false;
-		this.priv = priv || false;
-		this.interval = interval || 3000;
-		this.channel = new Channel((window.location.href.indexOf("/admin") > -1 ? "../" : "") + "include/ajax/chat.php?type=public");
-		this.setup();
-		
-		this.channel.handler = function(data){
-			self.update(data);
-		};
-		
-		this.channel.start();
-	};
-	function scrolltoBtm(){
-		$(".msg-pane").scrollTop(9999);
-	}
-	Chat.prototype.setup = function(){
-		var self = this;
-		this.msgPane = $('<div class="msg-pane"><div class="msg alert"><span class="c">沒有訊息！</span></div></div>');
-		this.chat_form = $('<form><div class="controls-inline"><input name="data" type="text" id="data" maxlength="150" title="提示：按Enter鍵送出信息" class="input-xxlarge" />&nbsp;&nbsp;&nbsp;<em>提示：按Enter鍵送出信息</em></div></form>');
-		
-		this.target.append(this.msgPane);
-		this.target.append(this.chat_form);
-		
-		this.chat_form.find('#data').on('keypress',function(e){
-			if(e.which === 13){
-				e.preventDefault();
-				if(self.chat_form.find('#data').val()){
-					$.ajax({
-						url: window.location.href.indexOf("/admin") > -1 ? '../include/ajax/chat_receive.php' : 'include/ajax/chat_receive.php',
-						type: 'POST',
-						data: self.chat_form.serialize(),
-						dataType: 'json',
-						success:function(status){
-							if(!status.success){
-								window.alert("無法傳送訊息，請稍後再試。");
-							}
-							else {
-								self.chat_form.find('#data').val('');
-								if(!self.priv && !self.sent){
-									self.sent = true;
-									self.chat_form.find('#data').attr('disabled',true);
-									self.chat_form.find('#data + em').text('提示：'+self.interval / 1000 + '秒後才可以繼續發言。');
-									setTimeout(function(){
-										self.sent = false;
-										self.chat_form.find('#data').attr('disabled',false);
-										self.chat_form.find('#data + em').text('提示：按Enter鍵送出信息');
-									}, self.interval);
-								}
-								
-								
-								//self.channel.stop();
-								//self.chnnel.start();
-							}
-						},
-						error:function(){
-							window.alert("無法傳送訊息，請稍後再試。");
-						}
-					});
-					scrolltoBtm();
-				}
-				else {
-					window.alert("您必需填寫所有欄位。");
-				}
-			}
-		});
-	};
-	
-	Chat.prototype.update = function(data){
-		var self = this;
-		this.msgPane.find('.msg.alert').remove();
-		$.each(data,function(i,ele){
-			var template = $("<div>").addClass("msg");
-			template.append($('<span>',{text:ele.name}).addClass("n"));
-			template.append($('<span>').html(ele.data).addClass("c"));
-			template.append($('<span>',{text:ele.ptime}).addClass("t"));
-			self.msgPane.append(template);
-		});
-		scrolltoBtm();
-	};
-	
-	//Expose as globals
-	window.Channel = Channel;
-	window.Chat = Chat;
-})(jQuery,window);
\ No newline at end of file
diff --git a/include/js/chat.js b/include/js/chat.js
new file mode 100644
index 0000000..e893d34
--- /dev/null
+++ b/include/js/chat.js
@@ -0,0 +1,113 @@
+/*
+<Secret Center, open source member management system>
+Copyright (C) 2012-2016 Secret Center開發團隊 <http://center.gdsecret.net/#team>
+
+This program is free software: you can redistribute it and/or modify
+it under the terms of the GNU Affero General Public License as published by
+the Free Software Foundation, version 3.
+
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+GNU Affero General Public License for more details.
+
+You should have received a copy of the GNU Affero General Public License
+along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+Also add information on how to contact you by electronic and paper mail.
+
+  If your software can interact with users remotely through a computer
+network, you should also make sure that it provides a way for users to
+get its source.  For example, if your program is a web application, its
+interface could display a "Source" link that leads users to an archive
+of the code.  There are many ways you could offer source, and different
+solutions will be better for different programs; see section 13 for the
+specific requirements.
+
+  You should also get your employer (if you work as a programmer) or school,
+if any, to sign a "copyright disclaimer" for the program, if necessary.
+For more information on this, and how to apply and follow the GNU AGPL, see
+<http://www.gnu.org/licenses/>.
+*/
+(function($,window){
+	var sc_chat = function(target,interval){
+		var self = this;
+		target = $(target);
+		interval = interval || 3000;
+		sent = false;
+		msg_panel = $('<div class="msg-panel"><div class="alert alert-error">沒有訊息！</div></div>');
+		chat_form = $('<form class="form-inline"><div class="form-group"><input  class="form-control" name="content" type="text" maxlength="255" style="min-width:400px;" title="提示：按Enter鍵送出" /></div>&nbsp;&nbsp;&nbsp;<em>提示：按Enter鍵送出</em></form>');
+		target.append(msg_panel);
+		target.append(chat_form);
+		
+		chat_form.find('.form-control').on('keypress',function(e){
+			if(e.which === 13){
+				e.preventDefault();
+				if(chat_form.find('.form-control').val()){
+					$.ajax({
+						url: window.location.href.indexOf("/admin") > -1 ? '../include/ajax/chat.php?sent' : 'include/ajax/chat.php?sent',
+						type: 'POST',
+						data: chat_form.serialize(),
+						dataType: 'json',
+						success:function(status){
+							if(!status.success){
+								window.alert("無法傳送訊息，請稍後再試。");
+							} else {
+								chat_form.find('.form-control').val('');
+								if(!sent){
+									sent = true;
+									chat_form.find('.form-control').attr('disabled',true);
+									chat_form.find('.form-group + em').text('提示：'+interval / 1000 + '秒後才可以繼續發言。');
+									setTimeout(function(){
+										sent = false;
+										chat_form.find('.form-control').attr('disabled',false);
+										chat_form.find('.form-group + em').text('提示：按Enter鍵送出');
+									}, interval);
+								}
+							}
+						},
+						error:function(){
+							window.alert("無法傳送訊息，請稍後再試。");
+						}
+					});
+				} else {
+					window.alert("您必需填寫所有欄位。");
+				}
+			}
+		});	
+		
+		this.load();
+		this.scroll_to_btm();
+	}
+	sc_chat.prototype.load = function(last){
+		var self = this;
+		var last = last || 0;
+		$.ajax({
+			url:  window.location.href.indexOf("/admin") > -1 ? '../include/ajax/chat.php' : 'include/ajax/chat.php',
+			type: 'POST',
+			data:{last: last},
+			dataType: 'json',
+			cache: false,
+			timeout: 20000,
+			error : function(){
+				self.load(last);
+			},
+			success: function(data) {
+				msg_panel.find('.alert').remove();
+				$.each(data.data,function(i,e){
+					var msg = $("<div>").addClass("msg");
+					msg.append($('<span>',{text:e.author}).addClass("chat-author"));
+					msg.append($('<span>').html(e.content).addClass("chat-content"));
+					msg.append($('<span>',{text:e.mktime}).addClass("chat-mktime"));
+					msg_panel.append(msg);
+				});
+				self.load(data.last);
+				self.scroll_to_btm();
+			}
+		});
+	}
+	sc_chat.prototype.scroll_to_btm = function(){
+		msg_panel.scrollTop(9999);
+	}
+	window.sc_chat = sc_chat;
+})(jQuery,window);
\ No newline at end of file
diff --git a/include/js/cleditor/images/icons/1.gif b/include/js/cleditor/images/icons/1.gif
deleted file mode 100644
index 9f9f923..0000000
Binary files a/include/js/cleditor/images/icons/1.gif and /dev/null differ
diff --git a/include/js/cleditor/images/icons/10.gif b/include/js/cleditor/images/icons/10.gif
deleted file mode 100644
index eea026a..0000000
Binary files a/include/js/cleditor/images/icons/10.gif and /dev/null differ
diff --git a/include/js/cleditor/images/icons/11.gif b/include/js/cleditor/images/icons/11.gif
deleted file mode 100644
index e26144c..0000000
Binary files a/include/js/cleditor/images/icons/11.gif and /dev/null differ
diff --git a/include/js/cleditor/images/icons/12.gif b/include/js/cleditor/images/icons/12.gif
deleted file mode 100644
index e9eb35b..0000000
Binary files a/include/js/cleditor/images/icons/12.gif and /dev/null differ
diff --git a/include/js/cleditor/images/icons/2.gif b/include/js/cleditor/images/icons/2.gif
deleted file mode 100644
index 7087f48..0000000
Binary files a/include/js/cleditor/images/icons/2.gif and /dev/null differ
diff --git a/include/js/cleditor/images/icons/3.gif b/include/js/cleditor/images/icons/3.gif
deleted file mode 100644
index 6db9d41..0000000
Binary files a/include/js/cleditor/images/icons/3.gif and /dev/null differ
diff --git a/include/js/cleditor/images/icons/4.gif b/include/js/cleditor/images/icons/4.gif
deleted file mode 100644
index 4e399bf..0000000
Binary files a/include/js/cleditor/images/icons/4.gif and /dev/null differ
diff --git a/include/js/cleditor/images/icons/5.gif b/include/js/cleditor/images/icons/5.gif
deleted file mode 100644
index f6e1b99..0000000
Binary files a/include/js/cleditor/images/icons/5.gif and /dev/null differ
diff --git a/include/js/cleditor/images/icons/6.gif b/include/js/cleditor/images/icons/6.gif
deleted file mode 100644
index 621bf47..0000000
Binary files a/include/js/cleditor/images/icons/6.gif and /dev/null differ
diff --git a/include/js/cleditor/images/icons/7.gif b/include/js/cleditor/images/icons/7.gif
deleted file mode 100644
index 44bf7f7..0000000
Binary files a/include/js/cleditor/images/icons/7.gif and /dev/null differ
diff --git a/include/js/cleditor/images/icons/8.gif b/include/js/cleditor/images/icons/8.gif
deleted file mode 100644
index ab44a75..0000000
Binary files a/include/js/cleditor/images/icons/8.gif and /dev/null differ
diff --git a/include/js/cleditor/images/icons/9.gif b/include/js/cleditor/images/icons/9.gif
deleted file mode 100644
index 5a1630e..0000000
Binary files a/include/js/cleditor/images/icons/9.gif and /dev/null differ
diff --git a/include/js/cleditor/images/icons/icons.gif b/include/js/cleditor/images/icons/icons.gif
deleted file mode 100644
index b579921..0000000
Binary files a/include/js/cleditor/images/icons/icons.gif and /dev/null differ
diff --git a/include/js/cleditor/jquery.cleditor.icon.js b/include/js/cleditor/jquery.cleditor.icon.js
deleted file mode 100644
index e7c9b29..0000000
--- a/include/js/cleditor/jquery.cleditor.icon.js
+++ /dev/null
@@ -1,10 +0,0 @@
-/*
- CLEditor Icon Plugin v1.0
- http://premiumsoftware.net/cleditor
- requires CLEditor v1.2 or later
-
- Copyright 2010, Chris Landowski, Premium Software, LLC
- Dual licensed under the MIT or GPL Version 2 licenses.
-*/
-(function(a){var d=a.cleditor.imagesPath()+"icons/",e="URL("+d+"icons.gif)";a.cleditor.buttons.icon={name:"icon",css:{backgroundImage:e,backgroundPosition:"2px 2px"},title:"Insert Icon",command:"insertimage",popupName:"Icon",popupHover:true,buttonClick:function(f,b){a(b.popup).width(60)},popupClick:function(f,b){var h=-parseInt(f.target.style.backgroundPosition)/20+1;b.value=d+h+".gif"}};for(var g=a("<div>"),c=0;c<12;c++)a("<div>").css({width:20,height:20,backgroundImage:e,backgroundPosition:c*-20}).css("float",
-"left").appendTo(g);a.cleditor.buttons.icon.popupContent=g.children();a.cleditor.defaultOptions.controls=a.cleditor.defaultOptions.controls.replace("| cut","icon | cut")})(jQuery);
\ No newline at end of file
diff --git a/include/js/cleditor/jquery.cleditor.js b/include/js/cleditor/jquery.cleditor.min.js
similarity index 100%
rename from include/js/cleditor/jquery.cleditor.js
rename to include/js/cleditor/jquery.cleditor.min.js
diff --git a/include/js/cleditor/jquery.cleditor.serverImg.js b/include/js/cleditor/jquery.cleditor.serverImg.js
deleted file mode 100644
index b7f9033..0000000
--- a/include/js/cleditor/jquery.cleditor.serverImg.js
+++ /dev/null
@@ -1,41 +0,0 @@
-(function($){
-	$.cleditor.buttons.serverImg = {
-		name: "serverImg",
-		title: "從文件夾選擇圖片",
-		image: 'serverImgs.png',
-		command: "insertimage",
-		popupName: "從文件夾選擇圖片",
-		popupHover: false,
-		popupContent: '',
-		buttonClick: function(e, data) {
-			$(data.popup).width();
-			$(data.popup).css('background-color', '#fff');
-		},
-		popupClick: function(e, data){
-			data.value = $(e.target).attr('data-img');
-		}
-	};
-	$.cleditor.defaultOptions.controls = $.cleditor.defaultOptions.controls.replace("image", "serverImg image");
-	
-	var ul = $('<ul class="file">');
-	$.ajax({
-		url: 'include/ajax/findImg.php',
-		type: 'GET',
-		dataType: 'json',
-		async: false, //CLEditor bug - 不能動態改變Popup內容
-		success: function(data){
-			if(data.length > 0){
-				$.each(data, function(i){
-					$('<li>', {'data-img': data[i]}).append($('<img>', {src: data[i], 'data-img': data[i]})).appendTo(ul);
-				});
-				$.cleditor.buttons.serverImg.popupContent = ul;
-			}
-			else {
-				$.cleditor.buttons.serverImg.popupContent = $('<div class="prompt">文件夾上沒有圖片！</div>');
-			}
-		},
-		error: function(){
-			$.cleditor.buttons.serverImg.popupContent = $('<div class="prompt error">伺服器錯誤！</div>');
-		}
-	});
-})(jQuery);
\ No newline at end of file
diff --git a/include/js/fileupload/jquery.fileupload.js b/include/js/fileupload/jquery.fileupload.js
deleted file mode 100644
index 91b7254..0000000
--- a/include/js/fileupload/jquery.fileupload.js
+++ /dev/null
@@ -1,1477 +0,0 @@
-/*
- * jQuery File Upload Plugin
- * https://github.com/blueimp/jQuery-File-Upload
- *
- * Copyright 2010, Sebastian Tschan
- * https://blueimp.net
- *
- * Licensed under the MIT license:
- * http://www.opensource.org/licenses/MIT
- */
-
-/* jshint nomen:false */
-/* global define, require, window, document, location, Blob, FormData */
-
-(function (factory) {
-    'use strict';
-    if (typeof define === 'function' && define.amd) {
-        // Register as an anonymous AMD module:
-        define([
-            'jquery',
-            'jquery.ui.widget'
-        ], factory);
-    } else if (typeof exports === 'object') {
-        // Node/CommonJS:
-        factory(
-            require('jquery'),
-            require('./vendor/jquery.ui.widget')
-        );
-    } else {
-        // Browser globals:
-        factory(window.jQuery);
-    }
-}(function ($) {
-    'use strict';
-
-    // Detect file input support, based on
-    // http://viljamis.com/blog/2012/file-upload-support-on-mobile/
-    $.support.fileInput = !(new RegExp(
-        // Handle devices which give false positives for the feature detection:
-        '(Android (1\\.[0156]|2\\.[01]))' +
-            '|(Windows Phone (OS 7|8\\.0))|(XBLWP)|(ZuneWP)|(WPDesktop)' +
-            '|(w(eb)?OSBrowser)|(webOS)' +
-            '|(Kindle/(1\\.0|2\\.[05]|3\\.0))'
-    ).test(window.navigator.userAgent) ||
-        // Feature detection for all other devices:
-        $('<input type="file">').prop('disabled'));
-
-    // The FileReader API is not actually used, but works as feature detection,
-    // as some Safari versions (5?) support XHR file uploads via the FormData API,
-    // but not non-multipart XHR file uploads.
-    // window.XMLHttpRequestUpload is not available on IE10, so we check for
-    // window.ProgressEvent instead to detect XHR2 file upload capability:
-    $.support.xhrFileUpload = !!(window.ProgressEvent && window.FileReader);
-    $.support.xhrFormDataFileUpload = !!window.FormData;
-
-    // Detect support for Blob slicing (required for chunked uploads):
-    $.support.blobSlice = window.Blob && (Blob.prototype.slice ||
-        Blob.prototype.webkitSlice || Blob.prototype.mozSlice);
-
-    // Helper function to create drag handlers for dragover/dragenter/dragleave:
-    function getDragHandler(type) {
-        var isDragOver = type === 'dragover';
-        return function (e) {
-            e.dataTransfer = e.originalEvent && e.originalEvent.dataTransfer;
-            var dataTransfer = e.dataTransfer;
-            if (dataTransfer && $.inArray('Files', dataTransfer.types) !== -1 &&
-                    this._trigger(
-                        type,
-                        $.Event(type, {delegatedEvent: e})
-                    ) !== false) {
-                e.preventDefault();
-                if (isDragOver) {
-                    dataTransfer.dropEffect = 'copy';
-                }
-            }
-        };
-    }
-
-    // The fileupload widget listens for change events on file input fields defined
-    // via fileInput setting and paste or drop events of the given dropZone.
-    // In addition to the default jQuery Widget methods, the fileupload widget
-    // exposes the "add" and "send" methods, to add or directly send files using
-    // the fileupload API.
-    // By default, files added via file input selection, paste, drag & drop or
-    // "add" method are uploaded immediately, but it is possible to override
-    // the "add" callback option to queue file uploads.
-    $.widget('blueimp.fileupload', {
-
-        options: {
-            // The drop target element(s), by the default the complete document.
-            // Set to null to disable drag & drop support:
-            dropZone: $(document),
-            // The paste target element(s), by the default undefined.
-            // Set to a DOM node or jQuery object to enable file pasting:
-            pasteZone: undefined,
-            // The file input field(s), that are listened to for change events.
-            // If undefined, it is set to the file input fields inside
-            // of the widget element on plugin initialization.
-            // Set to null to disable the change listener.
-            fileInput: undefined,
-            // By default, the file input field is replaced with a clone after
-            // each input field change event. This is required for iframe transport
-            // queues and allows change events to be fired for the same file
-            // selection, but can be disabled by setting the following option to false:
-            replaceFileInput: true,
-            // The parameter name for the file form data (the request argument name).
-            // If undefined or empty, the name property of the file input field is
-            // used, or "files[]" if the file input name property is also empty,
-            // can be a string or an array of strings:
-            paramName: undefined,
-            // By default, each file of a selection is uploaded using an individual
-            // request for XHR type uploads. Set to false to upload file
-            // selections in one request each:
-            singleFileUploads: true,
-            // To limit the number of files uploaded with one XHR request,
-            // set the following option to an integer greater than 0:
-            limitMultiFileUploads: undefined,
-            // The following option limits the number of files uploaded with one
-            // XHR request to keep the request size under or equal to the defined
-            // limit in bytes:
-            limitMultiFileUploadSize: undefined,
-            // Multipart file uploads add a number of bytes to each uploaded file,
-            // therefore the following option adds an overhead for each file used
-            // in the limitMultiFileUploadSize configuration:
-            limitMultiFileUploadSizeOverhead: 512,
-            // Set the following option to true to issue all file upload requests
-            // in a sequential order:
-            sequentialUploads: false,
-            // To limit the number of concurrent uploads,
-            // set the following option to an integer greater than 0:
-            limitConcurrentUploads: undefined,
-            // Set the following option to true to force iframe transport uploads:
-            forceIframeTransport: false,
-            // Set the following option to the location of a redirect url on the
-            // origin server, for cross-domain iframe transport uploads:
-            redirect: undefined,
-            // The parameter name for the redirect url, sent as part of the form
-            // data and set to 'redirect' if this option is empty:
-            redirectParamName: undefined,
-            // Set the following option to the location of a postMessage window,
-            // to enable postMessage transport uploads:
-            postMessage: undefined,
-            // By default, XHR file uploads are sent as multipart/form-data.
-            // The iframe transport is always using multipart/form-data.
-            // Set to false to enable non-multipart XHR uploads:
-            multipart: true,
-            // To upload large files in smaller chunks, set the following option
-            // to a preferred maximum chunk size. If set to 0, null or undefined,
-            // or the browser does not support the required Blob API, files will
-            // be uploaded as a whole.
-            maxChunkSize: undefined,
-            // When a non-multipart upload or a chunked multipart upload has been
-            // aborted, this option can be used to resume the upload by setting
-            // it to the size of the already uploaded bytes. This option is most
-            // useful when modifying the options object inside of the "add" or
-            // "send" callbacks, as the options are cloned for each file upload.
-            uploadedBytes: undefined,
-            // By default, failed (abort or error) file uploads are removed from the
-            // global progress calculation. Set the following option to false to
-            // prevent recalculating the global progress data:
-            recalculateProgress: true,
-            // Interval in milliseconds to calculate and trigger progress events:
-            progressInterval: 100,
-            // Interval in milliseconds to calculate progress bitrate:
-            bitrateInterval: 500,
-            // By default, uploads are started automatically when adding files:
-            autoUpload: true,
-
-            // Error and info messages:
-            messages: {
-                uploadedBytes: 'Uploaded bytes exceed file size'
-            },
-
-            // Translation function, gets the message key to be translated
-            // and an object with context specific data as arguments:
-            i18n: function (message, context) {
-                message = this.messages[message] || message.toString();
-                if (context) {
-                    $.each(context, function (key, value) {
-                        message = message.replace('{' + key + '}', value);
-                    });
-                }
-                return message;
-            },
-
-            // Additional form data to be sent along with the file uploads can be set
-            // using this option, which accepts an array of objects with name and
-            // value properties, a function returning such an array, a FormData
-            // object (for XHR file uploads), or a simple object.
-            // The form of the first fileInput is given as parameter to the function:
-            formData: function (form) {
-                return form.serializeArray();
-            },
-
-            // The add callback is invoked as soon as files are added to the fileupload
-            // widget (via file input selection, drag & drop, paste or add API call).
-            // If the singleFileUploads option is enabled, this callback will be
-            // called once for each file in the selection for XHR file uploads, else
-            // once for each file selection.
-            //
-            // The upload starts when the submit method is invoked on the data parameter.
-            // The data object contains a files property holding the added files
-            // and allows you to override plugin options as well as define ajax settings.
-            //
-            // Listeners for this callback can also be bound the following way:
-            // .bind('fileuploadadd', func);
-            //
-            // data.submit() returns a Promise object and allows to attach additional
-            // handlers using jQuery's Deferred callbacks:
-            // data.submit().done(func).fail(func).always(func);
-            add: function (e, data) {
-                if (e.isDefaultPrevented()) {
-                    return false;
-                }
-                if (data.autoUpload || (data.autoUpload !== false &&
-                        $(this).fileupload('option', 'autoUpload'))) {
-                    data.process().done(function () {
-                        data.submit();
-                    });
-                }
-            },
-
-            // Other callbacks:
-
-            // Callback for the submit event of each file upload:
-            // submit: function (e, data) {}, // .bind('fileuploadsubmit', func);
-
-            // Callback for the start of each file upload request:
-            // send: function (e, data) {}, // .bind('fileuploadsend', func);
-
-            // Callback for successful uploads:
-            // done: function (e, data) {}, // .bind('fileuploaddone', func);
-
-            // Callback for failed (abort or error) uploads:
-            // fail: function (e, data) {}, // .bind('fileuploadfail', func);
-
-            // Callback for completed (success, abort or error) requests:
-            // always: function (e, data) {}, // .bind('fileuploadalways', func);
-
-            // Callback for upload progress events:
-            // progress: function (e, data) {}, // .bind('fileuploadprogress', func);
-
-            // Callback for global upload progress events:
-            // progressall: function (e, data) {}, // .bind('fileuploadprogressall', func);
-
-            // Callback for uploads start, equivalent to the global ajaxStart event:
-            // start: function (e) {}, // .bind('fileuploadstart', func);
-
-            // Callback for uploads stop, equivalent to the global ajaxStop event:
-            // stop: function (e) {}, // .bind('fileuploadstop', func);
-
-            // Callback for change events of the fileInput(s):
-            // change: function (e, data) {}, // .bind('fileuploadchange', func);
-
-            // Callback for paste events to the pasteZone(s):
-            // paste: function (e, data) {}, // .bind('fileuploadpaste', func);
-
-            // Callback for drop events of the dropZone(s):
-            // drop: function (e, data) {}, // .bind('fileuploaddrop', func);
-
-            // Callback for dragover events of the dropZone(s):
-            // dragover: function (e) {}, // .bind('fileuploaddragover', func);
-
-            // Callback for the start of each chunk upload request:
-            // chunksend: function (e, data) {}, // .bind('fileuploadchunksend', func);
-
-            // Callback for successful chunk uploads:
-            // chunkdone: function (e, data) {}, // .bind('fileuploadchunkdone', func);
-
-            // Callback for failed (abort or error) chunk uploads:
-            // chunkfail: function (e, data) {}, // .bind('fileuploadchunkfail', func);
-
-            // Callback for completed (success, abort or error) chunk upload requests:
-            // chunkalways: function (e, data) {}, // .bind('fileuploadchunkalways', func);
-
-            // The plugin options are used as settings object for the ajax calls.
-            // The following are jQuery ajax settings required for the file uploads:
-            processData: false,
-            contentType: false,
-            cache: false,
-            timeout: 0
-        },
-
-        // A list of options that require reinitializing event listeners and/or
-        // special initialization code:
-        _specialOptions: [
-            'fileInput',
-            'dropZone',
-            'pasteZone',
-            'multipart',
-            'forceIframeTransport'
-        ],
-
-        _blobSlice: $.support.blobSlice && function () {
-            var slice = this.slice || this.webkitSlice || this.mozSlice;
-            return slice.apply(this, arguments);
-        },
-
-        _BitrateTimer: function () {
-            this.timestamp = ((Date.now) ? Date.now() : (new Date()).getTime());
-            this.loaded = 0;
-            this.bitrate = 0;
-            this.getBitrate = function (now, loaded, interval) {
-                var timeDiff = now - this.timestamp;
-                if (!this.bitrate || !interval || timeDiff > interval) {
-                    this.bitrate = (loaded - this.loaded) * (1000 / timeDiff) * 8;
-                    this.loaded = loaded;
-                    this.timestamp = now;
-                }
-                return this.bitrate;
-            };
-        },
-
-        _isXHRUpload: function (options) {
-            return !options.forceIframeTransport &&
-                ((!options.multipart && $.support.xhrFileUpload) ||
-                $.support.xhrFormDataFileUpload);
-        },
-
-        _getFormData: function (options) {
-            var formData;
-            if ($.type(options.formData) === 'function') {
-                return options.formData(options.form);
-            }
-            if ($.isArray(options.formData)) {
-                return options.formData;
-            }
-            if ($.type(options.formData) === 'object') {
-                formData = [];
-                $.each(options.formData, function (name, value) {
-                    formData.push({name: name, value: value});
-                });
-                return formData;
-            }
-            return [];
-        },
-
-        _getTotal: function (files) {
-            var total = 0;
-            $.each(files, function (index, file) {
-                total += file.size || 1;
-            });
-            return total;
-        },
-
-        _initProgressObject: function (obj) {
-            var progress = {
-                loaded: 0,
-                total: 0,
-                bitrate: 0
-            };
-            if (obj._progress) {
-                $.extend(obj._progress, progress);
-            } else {
-                obj._progress = progress;
-            }
-        },
-
-        _initResponseObject: function (obj) {
-            var prop;
-            if (obj._response) {
-                for (prop in obj._response) {
-                    if (obj._response.hasOwnProperty(prop)) {
-                        delete obj._response[prop];
-                    }
-                }
-            } else {
-                obj._response = {};
-            }
-        },
-
-        _onProgress: function (e, data) {
-            if (e.lengthComputable) {
-                var now = ((Date.now) ? Date.now() : (new Date()).getTime()),
-                    loaded;
-                if (data._time && data.progressInterval &&
-                        (now - data._time < data.progressInterval) &&
-                        e.loaded !== e.total) {
-                    return;
-                }
-                data._time = now;
-                loaded = Math.floor(
-                    e.loaded / e.total * (data.chunkSize || data._progress.total)
-                ) + (data.uploadedBytes || 0);
-                // Add the difference from the previously loaded state
-                // to the global loaded counter:
-                this._progress.loaded += (loaded - data._progress.loaded);
-                this._progress.bitrate = this._bitrateTimer.getBitrate(
-                    now,
-                    this._progress.loaded,
-                    data.bitrateInterval
-                );
-                data._progress.loaded = data.loaded = loaded;
-                data._progress.bitrate = data.bitrate = data._bitrateTimer.getBitrate(
-                    now,
-                    loaded,
-                    data.bitrateInterval
-                );
-                // Trigger a custom progress event with a total data property set
-                // to the file size(s) of the current upload and a loaded data
-                // property calculated accordingly:
-                this._trigger(
-                    'progress',
-                    $.Event('progress', {delegatedEvent: e}),
-                    data
-                );
-                // Trigger a global progress event for all current file uploads,
-                // including ajax calls queued for sequential file uploads:
-                this._trigger(
-                    'progressall',
-                    $.Event('progressall', {delegatedEvent: e}),
-                    this._progress
-                );
-            }
-        },
-
-        _initProgressListener: function (options) {
-            var that = this,
-                xhr = options.xhr ? options.xhr() : $.ajaxSettings.xhr();
-            // Accesss to the native XHR object is required to add event listeners
-            // for the upload progress event:
-            if (xhr.upload) {
-                $(xhr.upload).bind('progress', function (e) {
-                    var oe = e.originalEvent;
-                    // Make sure the progress event properties get copied over:
-                    e.lengthComputable = oe.lengthComputable;
-                    e.loaded = oe.loaded;
-                    e.total = oe.total;
-                    that._onProgress(e, options);
-                });
-                options.xhr = function () {
-                    return xhr;
-                };
-            }
-        },
-
-        _isInstanceOf: function (type, obj) {
-            // Cross-frame instanceof check
-            return Object.prototype.toString.call(obj) === '[object ' + type + ']';
-        },
-
-        _initXHRData: function (options) {
-            var that = this,
-                formData,
-                file = options.files[0],
-                // Ignore non-multipart setting if not supported:
-                multipart = options.multipart || !$.support.xhrFileUpload,
-                paramName = $.type(options.paramName) === 'array' ?
-                    options.paramName[0] : options.paramName;
-            options.headers = $.extend({}, options.headers);
-            if (options.contentRange) {
-                options.headers['Content-Range'] = options.contentRange;
-            }
-            if (!multipart || options.blob || !this._isInstanceOf('File', file)) {
-                options.headers['Content-Disposition'] = 'attachment; filename="' +
-                    encodeURI(file.name) + '"';
-            }
-            if (!multipart) {
-                options.contentType = file.type || 'application/octet-stream';
-                options.data = options.blob || file;
-            } else if ($.support.xhrFormDataFileUpload) {
-                if (options.postMessage) {
-                    // window.postMessage does not allow sending FormData
-                    // objects, so we just add the File/Blob objects to
-                    // the formData array and let the postMessage window
-                    // create the FormData object out of this array:
-                    formData = this._getFormData(options);
-                    if (options.blob) {
-                        formData.push({
-                            name: paramName,
-                            value: options.blob
-                        });
-                    } else {
-                        $.each(options.files, function (index, file) {
-                            formData.push({
-                                name: ($.type(options.paramName) === 'array' &&
-                                    options.paramName[index]) || paramName,
-                                value: file
-                            });
-                        });
-                    }
-                } else {
-                    if (that._isInstanceOf('FormData', options.formData)) {
-                        formData = options.formData;
-                    } else {
-                        formData = new FormData();
-                        $.each(this._getFormData(options), function (index, field) {
-                            formData.append(field.name, field.value);
-                        });
-                    }
-                    if (options.blob) {
-                        formData.append(paramName, options.blob, file.name);
-                    } else {
-                        $.each(options.files, function (index, file) {
-                            // This check allows the tests to run with
-                            // dummy objects:
-                            if (that._isInstanceOf('File', file) ||
-                                    that._isInstanceOf('Blob', file)) {
-                                formData.append(
-                                    ($.type(options.paramName) === 'array' &&
-                                        options.paramName[index]) || paramName,
-                                    file,
-                                    file.uploadName || file.name
-                                );
-                            }
-                        });
-                    }
-                }
-                options.data = formData;
-            }
-            // Blob reference is not needed anymore, free memory:
-            options.blob = null;
-        },
-
-        _initIframeSettings: function (options) {
-            var targetHost = $('<a></a>').prop('href', options.url).prop('host');
-            // Setting the dataType to iframe enables the iframe transport:
-            options.dataType = 'iframe ' + (options.dataType || '');
-            // The iframe transport accepts a serialized array as form data:
-            options.formData = this._getFormData(options);
-            // Add redirect url to form data on cross-domain uploads:
-            if (options.redirect && targetHost && targetHost !== location.host) {
-                options.formData.push({
-                    name: options.redirectParamName || 'redirect',
-                    value: options.redirect
-                });
-            }
-        },
-
-        _initDataSettings: function (options) {
-            if (this._isXHRUpload(options)) {
-                if (!this._chunkedUpload(options, true)) {
-                    if (!options.data) {
-                        this._initXHRData(options);
-                    }
-                    this._initProgressListener(options);
-                }
-                if (options.postMessage) {
-                    // Setting the dataType to postmessage enables the
-                    // postMessage transport:
-                    options.dataType = 'postmessage ' + (options.dataType || '');
-                }
-            } else {
-                this._initIframeSettings(options);
-            }
-        },
-
-        _getParamName: function (options) {
-            var fileInput = $(options.fileInput),
-                paramName = options.paramName;
-            if (!paramName) {
-                paramName = [];
-                fileInput.each(function () {
-                    var input = $(this),
-                        name = input.prop('name') || 'files[]',
-                        i = (input.prop('files') || [1]).length;
-                    while (i) {
-                        paramName.push(name);
-                        i -= 1;
-                    }
-                });
-                if (!paramName.length) {
-                    paramName = [fileInput.prop('name') || 'files[]'];
-                }
-            } else if (!$.isArray(paramName)) {
-                paramName = [paramName];
-            }
-            return paramName;
-        },
-
-        _initFormSettings: function (options) {
-            // Retrieve missing options from the input field and the
-            // associated form, if available:
-            if (!options.form || !options.form.length) {
-                options.form = $(options.fileInput.prop('form'));
-                // If the given file input doesn't have an associated form,
-                // use the default widget file input's form:
-                if (!options.form.length) {
-                    options.form = $(this.options.fileInput.prop('form'));
-                }
-            }
-            options.paramName = this._getParamName(options);
-            if (!options.url) {
-                options.url = options.form.prop('action') || location.href;
-            }
-            // The HTTP request method must be "POST" or "PUT":
-            options.type = (options.type ||
-                ($.type(options.form.prop('method')) === 'string' &&
-                    options.form.prop('method')) || ''
-                ).toUpperCase();
-            if (options.type !== 'POST' && options.type !== 'PUT' &&
-                    options.type !== 'PATCH') {
-                options.type = 'POST';
-            }
-            if (!options.formAcceptCharset) {
-                options.formAcceptCharset = options.form.attr('accept-charset');
-            }
-        },
-
-        _getAJAXSettings: function (data) {
-            var options = $.extend({}, this.options, data);
-            this._initFormSettings(options);
-            this._initDataSettings(options);
-            return options;
-        },
-
-        // jQuery 1.6 doesn't provide .state(),
-        // while jQuery 1.8+ removed .isRejected() and .isResolved():
-        _getDeferredState: function (deferred) {
-            if (deferred.state) {
-                return deferred.state();
-            }
-            if (deferred.isResolved()) {
-                return 'resolved';
-            }
-            if (deferred.isRejected()) {
-                return 'rejected';
-            }
-            return 'pending';
-        },
-
-        // Maps jqXHR callbacks to the equivalent
-        // methods of the given Promise object:
-        _enhancePromise: function (promise) {
-            promise.success = promise.done;
-            promise.error = promise.fail;
-            promise.complete = promise.always;
-            return promise;
-        },
-
-        // Creates and returns a Promise object enhanced with
-        // the jqXHR methods abort, success, error and complete:
-        _getXHRPromise: function (resolveOrReject, context, args) {
-            var dfd = $.Deferred(),
-                promise = dfd.promise();
-            context = context || this.options.context || promise;
-            if (resolveOrReject === true) {
-                dfd.resolveWith(context, args);
-            } else if (resolveOrReject === false) {
-                dfd.rejectWith(context, args);
-            }
-            promise.abort = dfd.promise;
-            return this._enhancePromise(promise);
-        },
-
-        // Adds convenience methods to the data callback argument:
-        _addConvenienceMethods: function (e, data) {
-            var that = this,
-                getPromise = function (args) {
-                    return $.Deferred().resolveWith(that, args).promise();
-                };
-            data.process = function (resolveFunc, rejectFunc) {
-                if (resolveFunc || rejectFunc) {
-                    data._processQueue = this._processQueue =
-                        (this._processQueue || getPromise([this])).pipe(
-                            function () {
-                                if (data.errorThrown) {
-                                    return $.Deferred()
-                                        .rejectWith(that, [data]).promise();
-                                }
-                                return getPromise(arguments);
-                            }
-                        ).pipe(resolveFunc, rejectFunc);
-                }
-                return this._processQueue || getPromise([this]);
-            };
-            data.submit = function () {
-                if (this.state() !== 'pending') {
-                    data.jqXHR = this.jqXHR =
-                        (that._trigger(
-                            'submit',
-                            $.Event('submit', {delegatedEvent: e}),
-                            this
-                        ) !== false) && that._onSend(e, this);
-                }
-                return this.jqXHR || that._getXHRPromise();
-            };
-            data.abort = function () {
-                if (this.jqXHR) {
-                    return this.jqXHR.abort();
-                }
-                this.errorThrown = 'abort';
-                that._trigger('fail', null, this);
-                return that._getXHRPromise(false);
-            };
-            data.state = function () {
-                if (this.jqXHR) {
-                    return that._getDeferredState(this.jqXHR);
-                }
-                if (this._processQueue) {
-                    return that._getDeferredState(this._processQueue);
-                }
-            };
-            data.processing = function () {
-                return !this.jqXHR && this._processQueue && that
-                    ._getDeferredState(this._processQueue) === 'pending';
-            };
-            data.progress = function () {
-                return this._progress;
-            };
-            data.response = function () {
-                return this._response;
-            };
-        },
-
-        // Parses the Range header from the server response
-        // and returns the uploaded bytes:
-        _getUploadedBytes: function (jqXHR) {
-            var range = jqXHR.getResponseHeader('Range'),
-                parts = range && range.split('-'),
-                upperBytesPos = parts && parts.length > 1 &&
-                    parseInt(parts[1], 10);
-            return upperBytesPos && upperBytesPos + 1;
-        },
-
-        // Uploads a file in multiple, sequential requests
-        // by splitting the file up in multiple blob chunks.
-        // If the second parameter is true, only tests if the file
-        // should be uploaded in chunks, but does not invoke any
-        // upload requests:
-        _chunkedUpload: function (options, testOnly) {
-            options.uploadedBytes = options.uploadedBytes || 0;
-            var that = this,
-                file = options.files[0],
-                fs = file.size,
-                ub = options.uploadedBytes,
-                mcs = options.maxChunkSize || fs,
-                slice = this._blobSlice,
-                dfd = $.Deferred(),
-                promise = dfd.promise(),
-                jqXHR,
-                upload;
-            if (!(this._isXHRUpload(options) && slice && (ub || mcs < fs)) ||
-                    options.data) {
-                return false;
-            }
-            if (testOnly) {
-                return true;
-            }
-            if (ub >= fs) {
-                file.error = options.i18n('uploadedBytes');
-                return this._getXHRPromise(
-                    false,
-                    options.context,
-                    [null, 'error', file.error]
-                );
-            }
-            // The chunk upload method:
-            upload = function () {
-                // Clone the options object for each chunk upload:
-                var o = $.extend({}, options),
-                    currentLoaded = o._progress.loaded;
-                o.blob = slice.call(
-                    file,
-                    ub,
-                    ub + mcs,
-                    file.type
-                );
-                // Store the current chunk size, as the blob itself
-                // will be dereferenced after data processing:
-                o.chunkSize = o.blob.size;
-                // Expose the chunk bytes position range:
-                o.contentRange = 'bytes ' + ub + '-' +
-                    (ub + o.chunkSize - 1) + '/' + fs;
-                // Process the upload data (the blob and potential form data):
-                that._initXHRData(o);
-                // Add progress listeners for this chunk upload:
-                that._initProgressListener(o);
-                jqXHR = ((that._trigger('chunksend', null, o) !== false && $.ajax(o)) ||
-                        that._getXHRPromise(false, o.context))
-                    .done(function (result, textStatus, jqXHR) {
-                        ub = that._getUploadedBytes(jqXHR) ||
-                            (ub + o.chunkSize);
-                        // Create a progress event if no final progress event
-                        // with loaded equaling total has been triggered
-                        // for this chunk:
-                        if (currentLoaded + o.chunkSize - o._progress.loaded) {
-                            that._onProgress($.Event('progress', {
-                                lengthComputable: true,
-                                loaded: ub - o.uploadedBytes,
-                                total: ub - o.uploadedBytes
-                            }), o);
-                        }
-                        options.uploadedBytes = o.uploadedBytes = ub;
-                        o.result = result;
-                        o.textStatus = textStatus;
-                        o.jqXHR = jqXHR;
-                        that._trigger('chunkdone', null, o);
-                        that._trigger('chunkalways', null, o);
-                        if (ub < fs) {
-                            // File upload not yet complete,
-                            // continue with the next chunk:
-                            upload();
-                        } else {
-                            dfd.resolveWith(
-                                o.context,
-                                [result, textStatus, jqXHR]
-                            );
-                        }
-                    })
-                    .fail(function (jqXHR, textStatus, errorThrown) {
-                        o.jqXHR = jqXHR;
-                        o.textStatus = textStatus;
-                        o.errorThrown = errorThrown;
-                        that._trigger('chunkfail', null, o);
-                        that._trigger('chunkalways', null, o);
-                        dfd.rejectWith(
-                            o.context,
-                            [jqXHR, textStatus, errorThrown]
-                        );
-                    });
-            };
-            this._enhancePromise(promise);
-            promise.abort = function () {
-                return jqXHR.abort();
-            };
-            upload();
-            return promise;
-        },
-
-        _beforeSend: function (e, data) {
-            if (this._active === 0) {
-                // the start callback is triggered when an upload starts
-                // and no other uploads are currently running,
-                // equivalent to the global ajaxStart event:
-                this._trigger('start');
-                // Set timer for global bitrate progress calculation:
-                this._bitrateTimer = new this._BitrateTimer();
-                // Reset the global progress values:
-                this._progress.loaded = this._progress.total = 0;
-                this._progress.bitrate = 0;
-            }
-            // Make sure the container objects for the .response() and
-            // .progress() methods on the data object are available
-            // and reset to their initial state:
-            this._initResponseObject(data);
-            this._initProgressObject(data);
-            data._progress.loaded = data.loaded = data.uploadedBytes || 0;
-            data._progress.total = data.total = this._getTotal(data.files) || 1;
-            data._progress.bitrate = data.bitrate = 0;
-            this._active += 1;
-            // Initialize the global progress values:
-            this._progress.loaded += data.loaded;
-            this._progress.total += data.total;
-        },
-
-        _onDone: function (result, textStatus, jqXHR, options) {
-            var total = options._progress.total,
-                response = options._response;
-            if (options._progress.loaded < total) {
-                // Create a progress event if no final progress event
-                // with loaded equaling total has been triggered:
-                this._onProgress($.Event('progress', {
-                    lengthComputable: true,
-                    loaded: total,
-                    total: total
-                }), options);
-            }
-            response.result = options.result = result;
-            response.textStatus = options.textStatus = textStatus;
-            response.jqXHR = options.jqXHR = jqXHR;
-            this._trigger('done', null, options);
-        },
-
-        _onFail: function (jqXHR, textStatus, errorThrown, options) {
-            var response = options._response;
-            if (options.recalculateProgress) {
-                // Remove the failed (error or abort) file upload from
-                // the global progress calculation:
-                this._progress.loaded -= options._progress.loaded;
-                this._progress.total -= options._progress.total;
-            }
-            response.jqXHR = options.jqXHR = jqXHR;
-            response.textStatus = options.textStatus = textStatus;
-            response.errorThrown = options.errorThrown = errorThrown;
-            this._trigger('fail', null, options);
-        },
-
-        _onAlways: function (jqXHRorResult, textStatus, jqXHRorError, options) {
-            // jqXHRorResult, textStatus and jqXHRorError are added to the
-            // options object via done and fail callbacks
-            this._trigger('always', null, options);
-        },
-
-        _onSend: function (e, data) {
-            if (!data.submit) {
-                this._addConvenienceMethods(e, data);
-            }
-            var that = this,
-                jqXHR,
-                aborted,
-                slot,
-                pipe,
-                options = that._getAJAXSettings(data),
-                send = function () {
-                    that._sending += 1;
-                    // Set timer for bitrate progress calculation:
-                    options._bitrateTimer = new that._BitrateTimer();
-                    jqXHR = jqXHR || (
-                        ((aborted || that._trigger(
-                            'send',
-                            $.Event('send', {delegatedEvent: e}),
-                            options
-                        ) === false) &&
-                        that._getXHRPromise(false, options.context, aborted)) ||
-                        that._chunkedUpload(options) || $.ajax(options)
-                    ).done(function (result, textStatus, jqXHR) {
-                        that._onDone(result, textStatus, jqXHR, options);
-                    }).fail(function (jqXHR, textStatus, errorThrown) {
-                        that._onFail(jqXHR, textStatus, errorThrown, options);
-                    }).always(function (jqXHRorResult, textStatus, jqXHRorError) {
-                        that._onAlways(
-                            jqXHRorResult,
-                            textStatus,
-                            jqXHRorError,
-                            options
-                        );
-                        that._sending -= 1;
-                        that._active -= 1;
-                        if (options.limitConcurrentUploads &&
-                                options.limitConcurrentUploads > that._sending) {
-                            // Start the next queued upload,
-                            // that has not been aborted:
-                            var nextSlot = that._slots.shift();
-                            while (nextSlot) {
-                                if (that._getDeferredState(nextSlot) === 'pending') {
-                                    nextSlot.resolve();
-                                    break;
-                                }
-                                nextSlot = that._slots.shift();
-                            }
-                        }
-                        if (that._active === 0) {
-                            // The stop callback is triggered when all uploads have
-                            // been completed, equivalent to the global ajaxStop event:
-                            that._trigger('stop');
-                        }
-                    });
-                    return jqXHR;
-                };
-            this._beforeSend(e, options);
-            if (this.options.sequentialUploads ||
-                    (this.options.limitConcurrentUploads &&
-                    this.options.limitConcurrentUploads <= this._sending)) {
-                if (this.options.limitConcurrentUploads > 1) {
-                    slot = $.Deferred();
-                    this._slots.push(slot);
-                    pipe = slot.pipe(send);
-                } else {
-                    this._sequence = this._sequence.pipe(send, send);
-                    pipe = this._sequence;
-                }
-                // Return the piped Promise object, enhanced with an abort method,
-                // which is delegated to the jqXHR object of the current upload,
-                // and jqXHR callbacks mapped to the equivalent Promise methods:
-                pipe.abort = function () {
-                    aborted = [undefined, 'abort', 'abort'];
-                    if (!jqXHR) {
-                        if (slot) {
-                            slot.rejectWith(options.context, aborted);
-                        }
-                        return send();
-                    }
-                    return jqXHR.abort();
-                };
-                return this._enhancePromise(pipe);
-            }
-            return send();
-        },
-
-        _onAdd: function (e, data) {
-            var that = this,
-                result = true,
-                options = $.extend({}, this.options, data),
-                files = data.files,
-                filesLength = files.length,
-                limit = options.limitMultiFileUploads,
-                limitSize = options.limitMultiFileUploadSize,
-                overhead = options.limitMultiFileUploadSizeOverhead,
-                batchSize = 0,
-                paramName = this._getParamName(options),
-                paramNameSet,
-                paramNameSlice,
-                fileSet,
-                i,
-                j = 0;
-            if (!filesLength) {
-                return false;
-            }
-            if (limitSize && files[0].size === undefined) {
-                limitSize = undefined;
-            }
-            if (!(options.singleFileUploads || limit || limitSize) ||
-                    !this._isXHRUpload(options)) {
-                fileSet = [files];
-                paramNameSet = [paramName];
-            } else if (!(options.singleFileUploads || limitSize) && limit) {
-                fileSet = [];
-                paramNameSet = [];
-                for (i = 0; i < filesLength; i += limit) {
-                    fileSet.push(files.slice(i, i + limit));
-                    paramNameSlice = paramName.slice(i, i + limit);
-                    if (!paramNameSlice.length) {
-                        paramNameSlice = paramName;
-                    }
-                    paramNameSet.push(paramNameSlice);
-                }
-            } else if (!options.singleFileUploads && limitSize) {
-                fileSet = [];
-                paramNameSet = [];
-                for (i = 0; i < filesLength; i = i + 1) {
-                    batchSize += files[i].size + overhead;
-                    if (i + 1 === filesLength ||
-                            ((batchSize + files[i + 1].size + overhead) > limitSize) ||
-                            (limit && i + 1 - j >= limit)) {
-                        fileSet.push(files.slice(j, i + 1));
-                        paramNameSlice = paramName.slice(j, i + 1);
-                        if (!paramNameSlice.length) {
-                            paramNameSlice = paramName;
-                        }
-                        paramNameSet.push(paramNameSlice);
-                        j = i + 1;
-                        batchSize = 0;
-                    }
-                }
-            } else {
-                paramNameSet = paramName;
-            }
-            data.originalFiles = files;
-            $.each(fileSet || files, function (index, element) {
-                var newData = $.extend({}, data);
-                newData.files = fileSet ? element : [element];
-                newData.paramName = paramNameSet[index];
-                that._initResponseObject(newData);
-                that._initProgressObject(newData);
-                that._addConvenienceMethods(e, newData);
-                result = that._trigger(
-                    'add',
-                    $.Event('add', {delegatedEvent: e}),
-                    newData
-                );
-                return result;
-            });
-            return result;
-        },
-
-        _replaceFileInput: function (data) {
-            var input = data.fileInput,
-                inputClone = input.clone(true),
-                restoreFocus = input.is(document.activeElement);
-            // Add a reference for the new cloned file input to the data argument:
-            data.fileInputClone = inputClone;
-            $('<form></form>').append(inputClone)[0].reset();
-            // Detaching allows to insert the fileInput on another form
-            // without loosing the file input value:
-            input.after(inputClone).detach();
-            // If the fileInput had focus before it was detached,
-            // restore focus to the inputClone.
-            if (restoreFocus) {
-                inputClone.focus();
-            }
-            // Avoid memory leaks with the detached file input:
-            $.cleanData(input.unbind('remove'));
-            // Replace the original file input element in the fileInput
-            // elements set with the clone, which has been copied including
-            // event handlers:
-            this.options.fileInput = this.options.fileInput.map(function (i, el) {
-                if (el === input[0]) {
-                    return inputClone[0];
-                }
-                return el;
-            });
-            // If the widget has been initialized on the file input itself,
-            // override this.element with the file input clone:
-            if (input[0] === this.element[0]) {
-                this.element = inputClone;
-            }
-        },
-
-        _handleFileTreeEntry: function (entry, path) {
-            var that = this,
-                dfd = $.Deferred(),
-                errorHandler = function (e) {
-                    if (e && !e.entry) {
-                        e.entry = entry;
-                    }
-                    // Since $.when returns immediately if one
-                    // Deferred is rejected, we use resolve instead.
-                    // This allows valid files and invalid items
-                    // to be returned together in one set:
-                    dfd.resolve([e]);
-                },
-                successHandler = function (entries) {
-                    that._handleFileTreeEntries(
-                        entries,
-                        path + entry.name + '/'
-                    ).done(function (files) {
-                        dfd.resolve(files);
-                    }).fail(errorHandler);
-                },
-                readEntries = function () {
-                    dirReader.readEntries(function (results) {
-                        if (!results.length) {
-                            successHandler(entries);
-                        } else {
-                            entries = entries.concat(results);
-                            readEntries();
-                        }
-                    }, errorHandler);
-                },
-                dirReader, entries = [];
-            path = path || '';
-            if (entry.isFile) {
-                if (entry._file) {
-                    // Workaround for Chrome bug #149735
-                    entry._file.relativePath = path;
-                    dfd.resolve(entry._file);
-                } else {
-                    entry.file(function (file) {
-                        file.relativePath = path;
-                        dfd.resolve(file);
-                    }, errorHandler);
-                }
-            } else if (entry.isDirectory) {
-                dirReader = entry.createReader();
-                readEntries();
-            } else {
-                // Return an empy list for file system items
-                // other than files or directories:
-                dfd.resolve([]);
-            }
-            return dfd.promise();
-        },
-
-        _handleFileTreeEntries: function (entries, path) {
-            var that = this;
-            return $.when.apply(
-                $,
-                $.map(entries, function (entry) {
-                    return that._handleFileTreeEntry(entry, path);
-                })
-            ).pipe(function () {
-                return Array.prototype.concat.apply(
-                    [],
-                    arguments
-                );
-            });
-        },
-
-        _getDroppedFiles: function (dataTransfer) {
-            dataTransfer = dataTransfer || {};
-            var items = dataTransfer.items;
-            if (items && items.length && (items[0].webkitGetAsEntry ||
-                    items[0].getAsEntry)) {
-                return this._handleFileTreeEntries(
-                    $.map(items, function (item) {
-                        var entry;
-                        if (item.webkitGetAsEntry) {
-                            entry = item.webkitGetAsEntry();
-                            if (entry) {
-                                // Workaround for Chrome bug #149735:
-                                entry._file = item.getAsFile();
-                            }
-                            return entry;
-                        }
-                        return item.getAsEntry();
-                    })
-                );
-            }
-            return $.Deferred().resolve(
-                $.makeArray(dataTransfer.files)
-            ).promise();
-        },
-
-        _getSingleFileInputFiles: function (fileInput) {
-            fileInput = $(fileInput);
-            var entries = fileInput.prop('webkitEntries') ||
-                    fileInput.prop('entries'),
-                files,
-                value;
-            if (entries && entries.length) {
-                return this._handleFileTreeEntries(entries);
-            }
-            files = $.makeArray(fileInput.prop('files'));
-            if (!files.length) {
-                value = fileInput.prop('value');
-                if (!value) {
-                    return $.Deferred().resolve([]).promise();
-                }
-                // If the files property is not available, the browser does not
-                // support the File API and we add a pseudo File object with
-                // the input value as name with path information removed:
-                files = [{name: value.replace(/^.*\\/, '')}];
-            } else if (files[0].name === undefined && files[0].fileName) {
-                // File normalization for Safari 4 and Firefox 3:
-                $.each(files, function (index, file) {
-                    file.name = file.fileName;
-                    file.size = file.fileSize;
-                });
-            }
-            return $.Deferred().resolve(files).promise();
-        },
-
-        _getFileInputFiles: function (fileInput) {
-            if (!(fileInput instanceof $) || fileInput.length === 1) {
-                return this._getSingleFileInputFiles(fileInput);
-            }
-            return $.when.apply(
-                $,
-                $.map(fileInput, this._getSingleFileInputFiles)
-            ).pipe(function () {
-                return Array.prototype.concat.apply(
-                    [],
-                    arguments
-                );
-            });
-        },
-
-        _onChange: function (e) {
-            var that = this,
-                data = {
-                    fileInput: $(e.target),
-                    form: $(e.target.form)
-                };
-            this._getFileInputFiles(data.fileInput).always(function (files) {
-                data.files = files;
-                if (that.options.replaceFileInput) {
-                    that._replaceFileInput(data);
-                }
-                if (that._trigger(
-                        'change',
-                        $.Event('change', {delegatedEvent: e}),
-                        data
-                    ) !== false) {
-                    that._onAdd(e, data);
-                }
-            });
-        },
-
-        _onPaste: function (e) {
-            var items = e.originalEvent && e.originalEvent.clipboardData &&
-                    e.originalEvent.clipboardData.items,
-                data = {files: []};
-            if (items && items.length) {
-                $.each(items, function (index, item) {
-                    var file = item.getAsFile && item.getAsFile();
-                    if (file) {
-                        data.files.push(file);
-                    }
-                });
-                if (this._trigger(
-                        'paste',
-                        $.Event('paste', {delegatedEvent: e}),
-                        data
-                    ) !== false) {
-                    this._onAdd(e, data);
-                }
-            }
-        },
-
-        _onDrop: function (e) {
-            e.dataTransfer = e.originalEvent && e.originalEvent.dataTransfer;
-            var that = this,
-                dataTransfer = e.dataTransfer,
-                data = {};
-            if (dataTransfer && dataTransfer.files && dataTransfer.files.length) {
-                e.preventDefault();
-                this._getDroppedFiles(dataTransfer).always(function (files) {
-                    data.files = files;
-                    if (that._trigger(
-                            'drop',
-                            $.Event('drop', {delegatedEvent: e}),
-                            data
-                        ) !== false) {
-                        that._onAdd(e, data);
-                    }
-                });
-            }
-        },
-
-        _onDragOver: getDragHandler('dragover'),
-
-        _onDragEnter: getDragHandler('dragenter'),
-
-        _onDragLeave: getDragHandler('dragleave'),
-
-        _initEventHandlers: function () {
-            if (this._isXHRUpload(this.options)) {
-                this._on(this.options.dropZone, {
-                    dragover: this._onDragOver,
-                    drop: this._onDrop,
-                    // event.preventDefault() on dragenter is required for IE10+:
-                    dragenter: this._onDragEnter,
-                    // dragleave is not required, but added for completeness:
-                    dragleave: this._onDragLeave
-                });
-                this._on(this.options.pasteZone, {
-                    paste: this._onPaste
-                });
-            }
-            if ($.support.fileInput) {
-                this._on(this.options.fileInput, {
-                    change: this._onChange
-                });
-            }
-        },
-
-        _destroyEventHandlers: function () {
-            this._off(this.options.dropZone, 'dragenter dragleave dragover drop');
-            this._off(this.options.pasteZone, 'paste');
-            this._off(this.options.fileInput, 'change');
-        },
-
-        _setOption: function (key, value) {
-            var reinit = $.inArray(key, this._specialOptions) !== -1;
-            if (reinit) {
-                this._destroyEventHandlers();
-            }
-            this._super(key, value);
-            if (reinit) {
-                this._initSpecialOptions();
-                this._initEventHandlers();
-            }
-        },
-
-        _initSpecialOptions: function () {
-            var options = this.options;
-            if (options.fileInput === undefined) {
-                options.fileInput = this.element.is('input[type="file"]') ?
-                        this.element : this.element.find('input[type="file"]');
-            } else if (!(options.fileInput instanceof $)) {
-                options.fileInput = $(options.fileInput);
-            }
-            if (!(options.dropZone instanceof $)) {
-                options.dropZone = $(options.dropZone);
-            }
-            if (!(options.pasteZone instanceof $)) {
-                options.pasteZone = $(options.pasteZone);
-            }
-        },
-
-        _getRegExp: function (str) {
-            var parts = str.split('/'),
-                modifiers = parts.pop();
-            parts.shift();
-            return new RegExp(parts.join('/'), modifiers);
-        },
-
-        _isRegExpOption: function (key, value) {
-            return key !== 'url' && $.type(value) === 'string' &&
-                /^\/.*\/[igm]{0,3}$/.test(value);
-        },
-
-        _initDataAttributes: function () {
-            var that = this,
-                options = this.options,
-                data = this.element.data();
-            // Initialize options set via HTML5 data-attributes:
-            $.each(
-                this.element[0].attributes,
-                function (index, attr) {
-                    var key = attr.name.toLowerCase(),
-                        value;
-                    if (/^data-/.test(key)) {
-                        // Convert hyphen-ated key to camelCase:
-                        key = key.slice(5).replace(/-[a-z]/g, function (str) {
-                            return str.charAt(1).toUpperCase();
-                        });
-                        value = data[key];
-                        if (that._isRegExpOption(key, value)) {
-                            value = that._getRegExp(value);
-                        }
-                        options[key] = value;
-                    }
-                }
-            );
-        },
-
-        _create: function () {
-            this._initDataAttributes();
-            this._initSpecialOptions();
-            this._slots = [];
-            this._sequence = this._getXHRPromise(true);
-            this._sending = this._active = 0;
-            this._initProgressObject(this);
-            this._initEventHandlers();
-        },
-
-        // This method is exposed to the widget API and allows to query
-        // the number of active uploads:
-        active: function () {
-            return this._active;
-        },
-
-        // This method is exposed to the widget API and allows to query
-        // the widget upload progress.
-        // It returns an object with loaded, total and bitrate properties
-        // for the running uploads:
-        progress: function () {
-            return this._progress;
-        },
-
-        // This method is exposed to the widget API and allows adding files
-        // using the fileupload API. The data parameter accepts an object which
-        // must have a files property and can contain additional options:
-        // .fileupload('add', {files: filesList});
-        add: function (data) {
-            var that = this;
-            if (!data || this.options.disabled) {
-                return;
-            }
-            if (data.fileInput && !data.files) {
-                this._getFileInputFiles(data.fileInput).always(function (files) {
-                    data.files = files;
-                    that._onAdd(null, data);
-                });
-            } else {
-                data.files = $.makeArray(data.files);
-                this._onAdd(null, data);
-            }
-        },
-
-        // This method is exposed to the widget API and allows sending files
-        // using the fileupload API. The data parameter accepts an object which
-        // must have a files or fileInput property and can contain additional options:
-        // .fileupload('send', {files: filesList});
-        // The method returns a Promise object for the file upload call.
-        send: function (data) {
-            if (data && !this.options.disabled) {
-                if (data.fileInput && !data.files) {
-                    var that = this,
-                        dfd = $.Deferred(),
-                        promise = dfd.promise(),
-                        jqXHR,
-                        aborted;
-                    promise.abort = function () {
-                        aborted = true;
-                        if (jqXHR) {
-                            return jqXHR.abort();
-                        }
-                        dfd.reject(null, 'abort', 'abort');
-                        return promise;
-                    };
-                    this._getFileInputFiles(data.fileInput).always(
-                        function (files) {
-                            if (aborted) {
-                                return;
-                            }
-                            if (!files.length) {
-                                dfd.reject();
-                                return;
-                            }
-                            data.files = files;
-                            jqXHR = that._onSend(null, data);
-                            jqXHR.then(
-                                function (result, textStatus, jqXHR) {
-                                    dfd.resolve(result, textStatus, jqXHR);
-                                },
-                                function (jqXHR, textStatus, errorThrown) {
-                                    dfd.reject(jqXHR, textStatus, errorThrown);
-                                }
-                            );
-                        }
-                    );
-                    return this._enhancePromise(promise);
-                }
-                data.files = $.makeArray(data.files);
-                if (data.files.length) {
-                    return this._onSend(null, data);
-                }
-            }
-            return this._getXHRPromise(false, data && data.context);
-        }
-
-    });
-
-}));
diff --git a/include/js/fileupload/jquery.iframe-transport.js b/include/js/fileupload/jquery.iframe-transport.js
deleted file mode 100644
index a7d34e0..0000000
--- a/include/js/fileupload/jquery.iframe-transport.js
+++ /dev/null
@@ -1,217 +0,0 @@
-/*
- * jQuery Iframe Transport Plugin
- * https://github.com/blueimp/jQuery-File-Upload
- *
- * Copyright 2011, Sebastian Tschan
- * https://blueimp.net
- *
- * Licensed under the MIT license:
- * http://www.opensource.org/licenses/MIT
- */
-
-/* global define, require, window, document */
-
-(function (factory) {
-    'use strict';
-    if (typeof define === 'function' && define.amd) {
-        // Register as an anonymous AMD module:
-        define(['jquery'], factory);
-    } else if (typeof exports === 'object') {
-        // Node/CommonJS:
-        factory(require('jquery'));
-    } else {
-        // Browser globals:
-        factory(window.jQuery);
-    }
-}(function ($) {
-    'use strict';
-
-    // Helper variable to create unique names for the transport iframes:
-    var counter = 0;
-
-    // The iframe transport accepts four additional options:
-    // options.fileInput: a jQuery collection of file input fields
-    // options.paramName: the parameter name for the file form data,
-    //  overrides the name property of the file input field(s),
-    //  can be a string or an array of strings.
-    // options.formData: an array of objects with name and value properties,
-    //  equivalent to the return data of .serializeArray(), e.g.:
-    //  [{name: 'a', value: 1}, {name: 'b', value: 2}]
-    // options.initialIframeSrc: the URL of the initial iframe src,
-    //  by default set to "javascript:false;"
-    $.ajaxTransport('iframe', function (options) {
-        if (options.async) {
-            // javascript:false as initial iframe src
-            // prevents warning popups on HTTPS in IE6:
-            /*jshint scripturl: true */
-            var initialIframeSrc = options.initialIframeSrc || 'javascript:false;',
-            /*jshint scripturl: false */
-                form,
-                iframe,
-                addParamChar;
-            return {
-                send: function (_, completeCallback) {
-                    form = $('<form style="display:none;"></form>');
-                    form.attr('accept-charset', options.formAcceptCharset);
-                    addParamChar = /\?/.test(options.url) ? '&' : '?';
-                    // XDomainRequest only supports GET and POST:
-                    if (options.type === 'DELETE') {
-                        options.url = options.url + addParamChar + '_method=DELETE';
-                        options.type = 'POST';
-                    } else if (options.type === 'PUT') {
-                        options.url = options.url + addParamChar + '_method=PUT';
-                        options.type = 'POST';
-                    } else if (options.type === 'PATCH') {
-                        options.url = options.url + addParamChar + '_method=PATCH';
-                        options.type = 'POST';
-                    }
-                    // IE versions below IE8 cannot set the name property of
-                    // elements that have already been added to the DOM,
-                    // so we set the name along with the iframe HTML markup:
-                    counter += 1;
-                    iframe = $(
-                        '<iframe src="' + initialIframeSrc +
-                            '" name="iframe-transport-' + counter + '"></iframe>'
-                    ).bind('load', function () {
-                        var fileInputClones,
-                            paramNames = $.isArray(options.paramName) ?
-                                    options.paramName : [options.paramName];
-                        iframe
-                            .unbind('load')
-                            .bind('load', function () {
-                                var response;
-                                // Wrap in a try/catch block to catch exceptions thrown
-                                // when trying to access cross-domain iframe contents:
-                                try {
-                                    response = iframe.contents();
-                                    // Google Chrome and Firefox do not throw an
-                                    // exception when calling iframe.contents() on
-                                    // cross-domain requests, so we unify the response:
-                                    if (!response.length || !response[0].firstChild) {
-                                        throw new Error();
-                                    }
-                                } catch (e) {
-                                    response = undefined;
-                                }
-                                // The complete callback returns the
-                                // iframe content document as response object:
-                                completeCallback(
-                                    200,
-                                    'success',
-                                    {'iframe': response}
-                                );
-                                // Fix for IE endless progress bar activity bug
-                                // (happens on form submits to iframe targets):
-                                $('<iframe src="' + initialIframeSrc + '"></iframe>')
-                                    .appendTo(form);
-                                window.setTimeout(function () {
-                                    // Removing the form in a setTimeout call
-                                    // allows Chrome's developer tools to display
-                                    // the response result
-                                    form.remove();
-                                }, 0);
-                            });
-                        form
-                            .prop('target', iframe.prop('name'))
-                            .prop('action', options.url)
-                            .prop('method', options.type);
-                        if (options.formData) {
-                            $.each(options.formData, function (index, field) {
-                                $('<input type="hidden"/>')
-                                    .prop('name', field.name)
-                                    .val(field.value)
-                                    .appendTo(form);
-                            });
-                        }
-                        if (options.fileInput && options.fileInput.length &&
-                                options.type === 'POST') {
-                            fileInputClones = options.fileInput.clone();
-                            // Insert a clone for each file input field:
-                            options.fileInput.after(function (index) {
-                                return fileInputClones[index];
-                            });
-                            if (options.paramName) {
-                                options.fileInput.each(function (index) {
-                                    $(this).prop(
-                                        'name',
-                                        paramNames[index] || options.paramName
-                                    );
-                                });
-                            }
-                            // Appending the file input fields to the hidden form
-                            // removes them from their original location:
-                            form
-                                .append(options.fileInput)
-                                .prop('enctype', 'multipart/form-data')
-                                // enctype must be set as encoding for IE:
-                                .prop('encoding', 'multipart/form-data');
-                            // Remove the HTML5 form attribute from the input(s):
-                            options.fileInput.removeAttr('form');
-                        }
-                        form.submit();
-                        // Insert the file input fields at their original location
-                        // by replacing the clones with the originals:
-                        if (fileInputClones && fileInputClones.length) {
-                            options.fileInput.each(function (index, input) {
-                                var clone = $(fileInputClones[index]);
-                                // Restore the original name and form properties:
-                                $(input)
-                                    .prop('name', clone.prop('name'))
-                                    .attr('form', clone.attr('form'));
-                                clone.replaceWith(input);
-                            });
-                        }
-                    });
-                    form.append(iframe).appendTo(document.body);
-                },
-                abort: function () {
-                    if (iframe) {
-                        // javascript:false as iframe src aborts the request
-                        // and prevents warning popups on HTTPS in IE6.
-                        // concat is used to avoid the "Script URL" JSLint error:
-                        iframe
-                            .unbind('load')
-                            .prop('src', initialIframeSrc);
-                    }
-                    if (form) {
-                        form.remove();
-                    }
-                }
-            };
-        }
-    });
-
-    // The iframe transport returns the iframe content document as response.
-    // The following adds converters from iframe to text, json, html, xml
-    // and script.
-    // Please note that the Content-Type for JSON responses has to be text/plain
-    // or text/html, if the browser doesn't include application/json in the
-    // Accept header, else IE will show a download dialog.
-    // The Content-Type for XML responses on the other hand has to be always
-    // application/xml or text/xml, so IE properly parses the XML response.
-    // See also
-    // https://github.com/blueimp/jQuery-File-Upload/wiki/Setup#content-type-negotiation
-    $.ajaxSetup({
-        converters: {
-            'iframe text': function (iframe) {
-                return iframe && $(iframe[0].body).text();
-            },
-            'iframe json': function (iframe) {
-                return iframe && $.parseJSON($(iframe[0].body).text());
-            },
-            'iframe html': function (iframe) {
-                return iframe && $(iframe[0].body).html();
-            },
-            'iframe xml': function (iframe) {
-                var xmlDoc = iframe && iframe[0];
-                return xmlDoc && $.isXMLDoc(xmlDoc) ? xmlDoc :
-                        $.parseXML((xmlDoc.XMLDocument && xmlDoc.XMLDocument.xml) ||
-                            $(xmlDoc.body).html());
-            },
-            'iframe script': function (iframe) {
-                return iframe && $.globalEval($(iframe[0].body).text());
-            }
-        }
-    });
-
-}));
diff --git a/include/js/fileupload/jquery.ui.widget.js b/include/js/fileupload/jquery.ui.widget.js
deleted file mode 100644
index e08df3f..0000000
--- a/include/js/fileupload/jquery.ui.widget.js
+++ /dev/null
@@ -1,572 +0,0 @@
-/*! jQuery UI - v1.11.4+CommonJS - 2015-08-28
-* http://jqueryui.com
-* Includes: widget.js
-* Copyright 2015 jQuery Foundation and other contributors; Licensed MIT */
-
-(function( factory ) {
-	if ( typeof define === "function" && define.amd ) {
-
-		// AMD. Register as an anonymous module.
-		define([ "jquery" ], factory );
-
-	} else if ( typeof exports === "object" ) {
-
-		// Node/CommonJS
-		factory( require( "jquery" ) );
-
-	} else {
-
-		// Browser globals
-		factory( jQuery );
-	}
-}(function( $ ) {
-/*!
- * jQuery UI Widget 1.11.4
- * http://jqueryui.com
- *
- * Copyright jQuery Foundation and other contributors
- * Released under the MIT license.
- * http://jquery.org/license
- *
- * http://api.jqueryui.com/jQuery.widget/
- */
-
-
-var widget_uuid = 0,
-	widget_slice = Array.prototype.slice;
-
-$.cleanData = (function( orig ) {
-	return function( elems ) {
-		var events, elem, i;
-		for ( i = 0; (elem = elems[i]) != null; i++ ) {
-			try {
-
-				// Only trigger remove when necessary to save time
-				events = $._data( elem, "events" );
-				if ( events && events.remove ) {
-					$( elem ).triggerHandler( "remove" );
-				}
-
-			// http://bugs.jquery.com/ticket/8235
-			} catch ( e ) {}
-		}
-		orig( elems );
-	};
-})( $.cleanData );
-
-$.widget = function( name, base, prototype ) {
-	var fullName, existingConstructor, constructor, basePrototype,
-		// proxiedPrototype allows the provided prototype to remain unmodified
-		// so that it can be used as a mixin for multiple widgets (#8876)
-		proxiedPrototype = {},
-		namespace = name.split( "." )[ 0 ];
-
-	name = name.split( "." )[ 1 ];
-	fullName = namespace + "-" + name;
-
-	if ( !prototype ) {
-		prototype = base;
-		base = $.Widget;
-	}
-
-	// create selector for plugin
-	$.expr[ ":" ][ fullName.toLowerCase() ] = function( elem ) {
-		return !!$.data( elem, fullName );
-	};
-
-	$[ namespace ] = $[ namespace ] || {};
-	existingConstructor = $[ namespace ][ name ];
-	constructor = $[ namespace ][ name ] = function( options, element ) {
-		// allow instantiation without "new" keyword
-		if ( !this._createWidget ) {
-			return new constructor( options, element );
-		}
-
-		// allow instantiation without initializing for simple inheritance
-		// must use "new" keyword (the code above always passes args)
-		if ( arguments.length ) {
-			this._createWidget( options, element );
-		}
-	};
-	// extend with the existing constructor to carry over any static properties
-	$.extend( constructor, existingConstructor, {
-		version: prototype.version,
-		// copy the object used to create the prototype in case we need to
-		// redefine the widget later
-		_proto: $.extend( {}, prototype ),
-		// track widgets that inherit from this widget in case this widget is
-		// redefined after a widget inherits from it
-		_childConstructors: []
-	});
-
-	basePrototype = new base();
-	// we need to make the options hash a property directly on the new instance
-	// otherwise we'll modify the options hash on the prototype that we're
-	// inheriting from
-	basePrototype.options = $.widget.extend( {}, basePrototype.options );
-	$.each( prototype, function( prop, value ) {
-		if ( !$.isFunction( value ) ) {
-			proxiedPrototype[ prop ] = value;
-			return;
-		}
-		proxiedPrototype[ prop ] = (function() {
-			var _super = function() {
-					return base.prototype[ prop ].apply( this, arguments );
-				},
-				_superApply = function( args ) {
-					return base.prototype[ prop ].apply( this, args );
-				};
-			return function() {
-				var __super = this._super,
-					__superApply = this._superApply,
-					returnValue;
-
-				this._super = _super;
-				this._superApply = _superApply;
-
-				returnValue = value.apply( this, arguments );
-
-				this._super = __super;
-				this._superApply = __superApply;
-
-				return returnValue;
-			};
-		})();
-	});
-	constructor.prototype = $.widget.extend( basePrototype, {
-		// TODO: remove support for widgetEventPrefix
-		// always use the name + a colon as the prefix, e.g., draggable:start
-		// don't prefix for widgets that aren't DOM-based
-		widgetEventPrefix: existingConstructor ? (basePrototype.widgetEventPrefix || name) : name
-	}, proxiedPrototype, {
-		constructor: constructor,
-		namespace: namespace,
-		widgetName: name,
-		widgetFullName: fullName
-	});
-
-	// If this widget is being redefined then we need to find all widgets that
-	// are inheriting from it and redefine all of them so that they inherit from
-	// the new version of this widget. We're essentially trying to replace one
-	// level in the prototype chain.
-	if ( existingConstructor ) {
-		$.each( existingConstructor._childConstructors, function( i, child ) {
-			var childPrototype = child.prototype;
-
-			// redefine the child widget using the same prototype that was
-			// originally used, but inherit from the new version of the base
-			$.widget( childPrototype.namespace + "." + childPrototype.widgetName, constructor, child._proto );
-		});
-		// remove the list of existing child constructors from the old constructor
-		// so the old child constructors can be garbage collected
-		delete existingConstructor._childConstructors;
-	} else {
-		base._childConstructors.push( constructor );
-	}
-
-	$.widget.bridge( name, constructor );
-
-	return constructor;
-};
-
-$.widget.extend = function( target ) {
-	var input = widget_slice.call( arguments, 1 ),
-		inputIndex = 0,
-		inputLength = input.length,
-		key,
-		value;
-	for ( ; inputIndex < inputLength; inputIndex++ ) {
-		for ( key in input[ inputIndex ] ) {
-			value = input[ inputIndex ][ key ];
-			if ( input[ inputIndex ].hasOwnProperty( key ) && value !== undefined ) {
-				// Clone objects
-				if ( $.isPlainObject( value ) ) {
-					target[ key ] = $.isPlainObject( target[ key ] ) ?
-						$.widget.extend( {}, target[ key ], value ) :
-						// Don't extend strings, arrays, etc. with objects
-						$.widget.extend( {}, value );
-				// Copy everything else by reference
-				} else {
-					target[ key ] = value;
-				}
-			}
-		}
-	}
-	return target;
-};
-
-$.widget.bridge = function( name, object ) {
-	var fullName = object.prototype.widgetFullName || name;
-	$.fn[ name ] = function( options ) {
-		var isMethodCall = typeof options === "string",
-			args = widget_slice.call( arguments, 1 ),
-			returnValue = this;
-
-		if ( isMethodCall ) {
-			this.each(function() {
-				var methodValue,
-					instance = $.data( this, fullName );
-				if ( options === "instance" ) {
-					returnValue = instance;
-					return false;
-				}
-				if ( !instance ) {
-					return $.error( "cannot call methods on " + name + " prior to initialization; " +
-						"attempted to call method '" + options + "'" );
-				}
-				if ( !$.isFunction( instance[options] ) || options.charAt( 0 ) === "_" ) {
-					return $.error( "no such method '" + options + "' for " + name + " widget instance" );
-				}
-				methodValue = instance[ options ].apply( instance, args );
-				if ( methodValue !== instance && methodValue !== undefined ) {
-					returnValue = methodValue && methodValue.jquery ?
-						returnValue.pushStack( methodValue.get() ) :
-						methodValue;
-					return false;
-				}
-			});
-		} else {
-
-			// Allow multiple hashes to be passed on init
-			if ( args.length ) {
-				options = $.widget.extend.apply( null, [ options ].concat(args) );
-			}
-
-			this.each(function() {
-				var instance = $.data( this, fullName );
-				if ( instance ) {
-					instance.option( options || {} );
-					if ( instance._init ) {
-						instance._init();
-					}
-				} else {
-					$.data( this, fullName, new object( options, this ) );
-				}
-			});
-		}
-
-		return returnValue;
-	};
-};
-
-$.Widget = function( /* options, element */ ) {};
-$.Widget._childConstructors = [];
-
-$.Widget.prototype = {
-	widgetName: "widget",
-	widgetEventPrefix: "",
-	defaultElement: "<div>",
-	options: {
-		disabled: false,
-
-		// callbacks
-		create: null
-	},
-	_createWidget: function( options, element ) {
-		element = $( element || this.defaultElement || this )[ 0 ];
-		this.element = $( element );
-		this.uuid = widget_uuid++;
-		this.eventNamespace = "." + this.widgetName + this.uuid;
-
-		this.bindings = $();
-		this.hoverable = $();
-		this.focusable = $();
-
-		if ( element !== this ) {
-			$.data( element, this.widgetFullName, this );
-			this._on( true, this.element, {
-				remove: function( event ) {
-					if ( event.target === element ) {
-						this.destroy();
-					}
-				}
-			});
-			this.document = $( element.style ?
-				// element within the document
-				element.ownerDocument :
-				// element is window or document
-				element.document || element );
-			this.window = $( this.document[0].defaultView || this.document[0].parentWindow );
-		}
-
-		this.options = $.widget.extend( {},
-			this.options,
-			this._getCreateOptions(),
-			options );
-
-		this._create();
-		this._trigger( "create", null, this._getCreateEventData() );
-		this._init();
-	},
-	_getCreateOptions: $.noop,
-	_getCreateEventData: $.noop,
-	_create: $.noop,
-	_init: $.noop,
-
-	destroy: function() {
-		this._destroy();
-		// we can probably remove the unbind calls in 2.0
-		// all event bindings should go through this._on()
-		this.element
-			.unbind( this.eventNamespace )
-			.removeData( this.widgetFullName )
-			// support: jquery <1.6.3
-			// http://bugs.jquery.com/ticket/9413
-			.removeData( $.camelCase( this.widgetFullName ) );
-		this.widget()
-			.unbind( this.eventNamespace )
-			.removeAttr( "aria-disabled" )
-			.removeClass(
-				this.widgetFullName + "-disabled " +
-				"ui-state-disabled" );
-
-		// clean up events and states
-		this.bindings.unbind( this.eventNamespace );
-		this.hoverable.removeClass( "ui-state-hover" );
-		this.focusable.removeClass( "ui-state-focus" );
-	},
-	_destroy: $.noop,
-
-	widget: function() {
-		return this.element;
-	},
-
-	option: function( key, value ) {
-		var options = key,
-			parts,
-			curOption,
-			i;
-
-		if ( arguments.length === 0 ) {
-			// don't return a reference to the internal hash
-			return $.widget.extend( {}, this.options );
-		}
-
-		if ( typeof key === "string" ) {
-			// handle nested keys, e.g., "foo.bar" => { foo: { bar: ___ } }
-			options = {};
-			parts = key.split( "." );
-			key = parts.shift();
-			if ( parts.length ) {
-				curOption = options[ key ] = $.widget.extend( {}, this.options[ key ] );
-				for ( i = 0; i < parts.length - 1; i++ ) {
-					curOption[ parts[ i ] ] = curOption[ parts[ i ] ] || {};
-					curOption = curOption[ parts[ i ] ];
-				}
-				key = parts.pop();
-				if ( arguments.length === 1 ) {
-					return curOption[ key ] === undefined ? null : curOption[ key ];
-				}
-				curOption[ key ] = value;
-			} else {
-				if ( arguments.length === 1 ) {
-					return this.options[ key ] === undefined ? null : this.options[ key ];
-				}
-				options[ key ] = value;
-			}
-		}
-
-		this._setOptions( options );
-
-		return this;
-	},
-	_setOptions: function( options ) {
-		var key;
-
-		for ( key in options ) {
-			this._setOption( key, options[ key ] );
-		}
-
-		return this;
-	},
-	_setOption: function( key, value ) {
-		this.options[ key ] = value;
-
-		if ( key === "disabled" ) {
-			this.widget()
-				.toggleClass( this.widgetFullName + "-disabled", !!value );
-
-			// If the widget is becoming disabled, then nothing is interactive
-			if ( value ) {
-				this.hoverable.removeClass( "ui-state-hover" );
-				this.focusable.removeClass( "ui-state-focus" );
-			}
-		}
-
-		return this;
-	},
-
-	enable: function() {
-		return this._setOptions({ disabled: false });
-	},
-	disable: function() {
-		return this._setOptions({ disabled: true });
-	},
-
-	_on: function( suppressDisabledCheck, element, handlers ) {
-		var delegateElement,
-			instance = this;
-
-		// no suppressDisabledCheck flag, shuffle arguments
-		if ( typeof suppressDisabledCheck !== "boolean" ) {
-			handlers = element;
-			element = suppressDisabledCheck;
-			suppressDisabledCheck = false;
-		}
-
-		// no element argument, shuffle and use this.element
-		if ( !handlers ) {
-			handlers = element;
-			element = this.element;
-			delegateElement = this.widget();
-		} else {
-			element = delegateElement = $( element );
-			this.bindings = this.bindings.add( element );
-		}
-
-		$.each( handlers, function( event, handler ) {
-			function handlerProxy() {
-				// allow widgets to customize the disabled handling
-				// - disabled as an array instead of boolean
-				// - disabled class as method for disabling individual parts
-				if ( !suppressDisabledCheck &&
-						( instance.options.disabled === true ||
-							$( this ).hasClass( "ui-state-disabled" ) ) ) {
-					return;
-				}
-				return ( typeof handler === "string" ? instance[ handler ] : handler )
-					.apply( instance, arguments );
-			}
-
-			// copy the guid so direct unbinding works
-			if ( typeof handler !== "string" ) {
-				handlerProxy.guid = handler.guid =
-					handler.guid || handlerProxy.guid || $.guid++;
-			}
-
-			var match = event.match( /^([\w:-]*)\s*(.*)$/ ),
-				eventName = match[1] + instance.eventNamespace,
-				selector = match[2];
-			if ( selector ) {
-				delegateElement.delegate( selector, eventName, handlerProxy );
-			} else {
-				element.bind( eventName, handlerProxy );
-			}
-		});
-	},
-
-	_off: function( element, eventName ) {
-		eventName = (eventName || "").split( " " ).join( this.eventNamespace + " " ) +
-			this.eventNamespace;
-		element.unbind( eventName ).undelegate( eventName );
-
-		// Clear the stack to avoid memory leaks (#10056)
-		this.bindings = $( this.bindings.not( element ).get() );
-		this.focusable = $( this.focusable.not( element ).get() );
-		this.hoverable = $( this.hoverable.not( element ).get() );
-	},
-
-	_delay: function( handler, delay ) {
-		function handlerProxy() {
-			return ( typeof handler === "string" ? instance[ handler ] : handler )
-				.apply( instance, arguments );
-		}
-		var instance = this;
-		return setTimeout( handlerProxy, delay || 0 );
-	},
-
-	_hoverable: function( element ) {
-		this.hoverable = this.hoverable.add( element );
-		this._on( element, {
-			mouseenter: function( event ) {
-				$( event.currentTarget ).addClass( "ui-state-hover" );
-			},
-			mouseleave: function( event ) {
-				$( event.currentTarget ).removeClass( "ui-state-hover" );
-			}
-		});
-	},
-
-	_focusable: function( element ) {
-		this.focusable = this.focusable.add( element );
-		this._on( element, {
-			focusin: function( event ) {
-				$( event.currentTarget ).addClass( "ui-state-focus" );
-			},
-			focusout: function( event ) {
-				$( event.currentTarget ).removeClass( "ui-state-focus" );
-			}
-		});
-	},
-
-	_trigger: function( type, event, data ) {
-		var prop, orig,
-			callback = this.options[ type ];
-
-		data = data || {};
-		event = $.Event( event );
-		event.type = ( type === this.widgetEventPrefix ?
-			type :
-			this.widgetEventPrefix + type ).toLowerCase();
-		// the original event may come from any element
-		// so we need to reset the target on the new event
-		event.target = this.element[ 0 ];
-
-		// copy original event properties over to the new event
-		orig = event.originalEvent;
-		if ( orig ) {
-			for ( prop in orig ) {
-				if ( !( prop in event ) ) {
-					event[ prop ] = orig[ prop ];
-				}
-			}
-		}
-
-		this.element.trigger( event, data );
-		return !( $.isFunction( callback ) &&
-			callback.apply( this.element[0], [ event ].concat( data ) ) === false ||
-			event.isDefaultPrevented() );
-	}
-};
-
-$.each( { show: "fadeIn", hide: "fadeOut" }, function( method, defaultEffect ) {
-	$.Widget.prototype[ "_" + method ] = function( element, options, callback ) {
-		if ( typeof options === "string" ) {
-			options = { effect: options };
-		}
-		var hasOptions,
-			effectName = !options ?
-				method :
-				options === true || typeof options === "number" ?
-					defaultEffect :
-					options.effect || defaultEffect;
-		options = options || {};
-		if ( typeof options === "number" ) {
-			options = { duration: options };
-		}
-		hasOptions = !$.isEmptyObject( options );
-		options.complete = callback;
-		if ( options.delay ) {
-			element.delay( options.delay );
-		}
-		if ( hasOptions && $.effects && $.effects.effect[ effectName ] ) {
-			element[ method ]( options );
-		} else if ( effectName !== method && element[ effectName ] ) {
-			element[ effectName ]( options.duration, options.easing, callback );
-		} else {
-			element.queue(function( next ) {
-				$( this )[ method ]();
-				if ( callback ) {
-					callback.call( element[ 0 ] );
-				}
-				next();
-			});
-		}
-	};
-});
-
-var widget = $.widget;
-
-
-
-}));
diff --git a/include/js/jquery.validate.js b/include/js/jquery.validate.js
deleted file mode 100644
index e6aad18..0000000
--- a/include/js/jquery.validate.js
+++ /dev/null
@@ -1,4 +0,0 @@
-/*! jQuery Validation Plugin - v1.14.0 - 6/30/2015
- * http://jqueryvalidation.org/
- * Copyright (c) 2015 Jörn Zaefferer; Licensed MIT */
-!function(a){"function"==typeof define&&define.amd?define(["jquery"],a):a(jQuery)}(function(a){a.extend(a.fn,{validate:function(b){if(!this.length)return void(b&&b.debug&&window.console&&console.warn("Nothing selected, can't validate, returning nothing."));var c=a.data(this[0],"validator");return c?c:(this.attr("novalidate","novalidate"),c=new a.validator(b,this[0]),a.data(this[0],"validator",c),c.settings.onsubmit&&(this.on("click.validate",":submit",function(b){c.settings.submitHandler&&(c.submitButton=b.target),a(this).hasClass("cancel")&&(c.cancelSubmit=!0),void 0!==a(this).attr("formnovalidate")&&(c.cancelSubmit=!0)}),this.on("submit.validate",function(b){function d(){var d,e;return c.settings.submitHandler?(c.submitButton&&(d=a("<input type='hidden'/>").attr("name",c.submitButton.name).val(a(c.submitButton).val()).appendTo(c.currentForm)),e=c.settings.submitHandler.call(c,c.currentForm,b),c.submitButton&&d.remove(),void 0!==e?e:!1):!0}return c.settings.debug&&b.preventDefault(),c.cancelSubmit?(c.cancelSubmit=!1,d()):c.form()?c.pendingRequest?(c.formSubmitted=!0,!1):d():(c.focusInvalid(),!1)})),c)},valid:function(){var b,c,d;return a(this[0]).is("form")?b=this.validate().form():(d=[],b=!0,c=a(this[0].form).validate(),this.each(function(){b=c.element(this)&&b,d=d.concat(c.errorList)}),c.errorList=d),b},rules:function(b,c){var d,e,f,g,h,i,j=this[0];if(b)switch(d=a.data(j.form,"validator").settings,e=d.rules,f=a.validator.staticRules(j),b){case"add":a.extend(f,a.validator.normalizeRule(c)),delete f.messages,e[j.name]=f,c.messages&&(d.messages[j.name]=a.extend(d.messages[j.name],c.messages));break;case"remove":return c?(i={},a.each(c.split(/\s/),function(b,c){i[c]=f[c],delete f[c],"required"===c&&a(j).removeAttr("aria-required")}),i):(delete e[j.name],f)}return g=a.validator.normalizeRules(a.extend({},a.validator.classRules(j),a.validator.attributeRules(j),a.validator.dataRules(j),a.validator.staticRules(j)),j),g.required&&(h=g.required,delete g.required,g=a.extend({required:h},g),a(j).attr("aria-required","true")),g.remote&&(h=g.remote,delete g.remote,g=a.extend(g,{remote:h})),g}}),a.extend(a.expr[":"],{blank:function(b){return!a.trim(""+a(b).val())},filled:function(b){return!!a.trim(""+a(b).val())},unchecked:function(b){return!a(b).prop("checked")}}),a.validator=function(b,c){this.settings=a.extend(!0,{},a.validator.defaults,b),this.currentForm=c,this.init()},a.validator.format=function(b,c){return 1===arguments.length?function(){var c=a.makeArray(arguments);return c.unshift(b),a.validator.format.apply(this,c)}:(arguments.length>2&&c.constructor!==Array&&(c=a.makeArray(arguments).slice(1)),c.constructor!==Array&&(c=[c]),a.each(c,function(a,c){b=b.replace(new RegExp("\\{"+a+"\\}","g"),function(){return c})}),b)},a.extend(a.validator,{defaults:{messages:{},groups:{},rules:{},errorClass:"error",validClass:"valid",errorElement:"label",focusCleanup:!1,focusInvalid:!0,errorContainer:a([]),errorLabelContainer:a([]),onsubmit:!0,ignore:":hidden",ignoreTitle:!1,onfocusin:function(a){this.lastActive=a,this.settings.focusCleanup&&(this.settings.unhighlight&&this.settings.unhighlight.call(this,a,this.settings.errorClass,this.settings.validClass),this.hideThese(this.errorsFor(a)))},onfocusout:function(a){this.checkable(a)||!(a.name in this.submitted)&&this.optional(a)||this.element(a)},onkeyup:function(b,c){var d=[16,17,18,20,35,36,37,38,39,40,45,144,225];9===c.which&&""===this.elementValue(b)||-1!==a.inArray(c.keyCode,d)||(b.name in this.submitted||b===this.lastElement)&&this.element(b)},onclick:function(a){a.name in this.submitted?this.element(a):a.parentNode.name in this.submitted&&this.element(a.parentNode)},highlight:function(b,c,d){"radio"===b.type?this.findByName(b.name).addClass(c).removeClass(d):a(b).addClass(c).removeClass(d)},unhighlight:function(b,c,d){"radio"===b.type?this.findByName(b.name).removeClass(c).addClass(d):a(b).removeClass(c).addClass(d)}},setDefaults:function(b){a.extend(a.validator.defaults,b)},messages:{required:"這是必填欄位",remote:"Please fix this field.",email:"E-Mail格式錯誤",url:"網址格式錯誤",date:"日期格式錯誤",dateISO:"Please enter a valid date ( ISO ).",number:"Please enter a valid number.",digits:"Please enter only digits.",creditcard:"Please enter a valid credit card number.",equalTo:"Please enter the same value again.",maxlength:a.validator.format("Please enter no more than {0} characters."),minlength:a.validator.format("Please enter at least {0} characters."),rangelength:a.validator.format("Please enter a value between {0} and {1} characters long."),range:a.validator.format("Please enter a value between {0} and {1}."),max:a.validator.format("Please enter a value less than or equal to {0}."),min:a.validator.format("Please enter a value greater than or equal to {0}.")},autoCreateRanges:!1,prototype:{init:function(){function b(b){var c=a.data(this.form,"validator"),d="on"+b.type.replace(/^validate/,""),e=c.settings;e[d]&&!a(this).is(e.ignore)&&e[d].call(c,this,b)}this.labelContainer=a(this.settings.errorLabelContainer),this.errorContext=this.labelContainer.length&&this.labelContainer||a(this.currentForm),this.containers=a(this.settings.errorContainer).add(this.settings.errorLabelContainer),this.submitted={},this.valueCache={},this.pendingRequest=0,this.pending={},this.invalid={},this.reset();var c,d=this.groups={};a.each(this.settings.groups,function(b,c){"string"==typeof c&&(c=c.split(/\s/)),a.each(c,function(a,c){d[c]=b})}),c=this.settings.rules,a.each(c,function(b,d){c[b]=a.validator.normalizeRule(d)}),a(this.currentForm).on("focusin.validate focusout.validate keyup.validate",":text, [type='password'], [type='file'], select, textarea, [type='number'], [type='search'], [type='tel'], [type='url'], [type='email'], [type='datetime'], [type='date'], [type='month'], [type='week'], [type='time'], [type='datetime-local'], [type='range'], [type='color'], [type='radio'], [type='checkbox']",b).on("click.validate","select, option, [type='radio'], [type='checkbox']",b),this.settings.invalidHandler&&a(this.currentForm).on("invalid-form.validate",this.settings.invalidHandler),a(this.currentForm).find("[required], [data-rule-required], .required").attr("aria-required","true")},form:function(){return this.checkForm(),a.extend(this.submitted,this.errorMap),this.invalid=a.extend({},this.errorMap),this.valid()||a(this.currentForm).triggerHandler("invalid-form",[this]),this.showErrors(),this.valid()},checkForm:function(){this.prepareForm();for(var a=0,b=this.currentElements=this.elements();b[a];a++)this.check(b[a]);return this.valid()},element:function(b){var c=this.clean(b),d=this.validationTargetFor(c),e=!0;return this.lastElement=d,void 0===d?delete this.invalid[c.name]:(this.prepareElement(d),this.currentElements=a(d),e=this.check(d)!==!1,e?delete this.invalid[d.name]:this.invalid[d.name]=!0),a(b).attr("aria-invalid",!e),this.numberOfInvalids()||(this.toHide=this.toHide.add(this.containers)),this.showErrors(),e},showErrors:function(b){if(b){a.extend(this.errorMap,b),this.errorList=[];for(var c in b)this.errorList.push({message:b[c],element:this.findByName(c)[0]});this.successList=a.grep(this.successList,function(a){return!(a.name in b)})}this.settings.showErrors?this.settings.showErrors.call(this,this.errorMap,this.errorList):this.defaultShowErrors()},resetForm:function(){a.fn.resetForm&&a(this.currentForm).resetForm(),this.submitted={},this.lastElement=null,this.prepareForm(),this.hideErrors();var b,c=this.elements().removeData("previousValue").removeAttr("aria-invalid");if(this.settings.unhighlight)for(b=0;c[b];b++)this.settings.unhighlight.call(this,c[b],this.settings.errorClass,"");else c.removeClass(this.settings.errorClass)},numberOfInvalids:function(){return this.objectLength(this.invalid)},objectLength:function(a){var b,c=0;for(b in a)c++;return c},hideErrors:function(){this.hideThese(this.toHide)},hideThese:function(a){a.not(this.containers).text(""),this.addWrapper(a).hide()},valid:function(){return 0===this.size()},size:function(){return this.errorList.length},focusInvalid:function(){if(this.settings.focusInvalid)try{a(this.findLastActive()||this.errorList.length&&this.errorList[0].element||[]).filter(":visible").focus().trigger("focusin")}catch(b){}},findLastActive:function(){var b=this.lastActive;return b&&1===a.grep(this.errorList,function(a){return a.element.name===b.name}).length&&b},elements:function(){var b=this,c={};return a(this.currentForm).find("input, select, textarea").not(":submit, :reset, :image, :disabled").not(this.settings.ignore).filter(function(){return!this.name&&b.settings.debug&&window.console&&console.error("%o has no name assigned",this),this.name in c||!b.objectLength(a(this).rules())?!1:(c[this.name]=!0,!0)})},clean:function(b){return a(b)[0]},errors:function(){var b=this.settings.errorClass.split(" ").join(".");return a(this.settings.errorElement+"."+b,this.errorContext)},reset:function(){this.successList=[],this.errorList=[],this.errorMap={},this.toShow=a([]),this.toHide=a([]),this.currentElements=a([])},prepareForm:function(){this.reset(),this.toHide=this.errors().add(this.containers)},prepareElement:function(a){this.reset(),this.toHide=this.errorsFor(a)},elementValue:function(b){var c,d=a(b),e=b.type;return"radio"===e||"checkbox"===e?this.findByName(b.name).filter(":checked").val():"number"===e&&"undefined"!=typeof b.validity?b.validity.badInput?!1:d.val():(c=d.val(),"string"==typeof c?c.replace(/\r/g,""):c)},check:function(b){b=this.validationTargetFor(this.clean(b));var c,d,e,f=a(b).rules(),g=a.map(f,function(a,b){return b}).length,h=!1,i=this.elementValue(b);for(d in f){e={method:d,parameters:f[d]};try{if(c=a.validator.methods[d].call(this,i,b,e.parameters),"dependency-mismatch"===c&&1===g){h=!0;continue}if(h=!1,"pending"===c)return void(this.toHide=this.toHide.not(this.errorsFor(b)));if(!c)return this.formatAndAdd(b,e),!1}catch(j){throw this.settings.debug&&window.console&&console.log("Exception occurred when checking element "+b.id+", check the '"+e.method+"' method.",j),j instanceof TypeError&&(j.message+=".  Exception occurred when checking element "+b.id+", check the '"+e.method+"' method."),j}}if(!h)return this.objectLength(f)&&this.successList.push(b),!0},customDataMessage:function(b,c){return a(b).data("msg"+c.charAt(0).toUpperCase()+c.substring(1).toLowerCase())||a(b).data("msg")},customMessage:function(a,b){var c=this.settings.messages[a];return c&&(c.constructor===String?c:c[b])},findDefined:function(){for(var a=0;a<arguments.length;a++)if(void 0!==arguments[a])return arguments[a];return void 0},defaultMessage:function(b,c){return this.findDefined(this.customMessage(b.name,c),this.customDataMessage(b,c),!this.settings.ignoreTitle&&b.title||void 0,a.validator.messages[c],"<strong>Warning: No message defined for "+b.name+"</strong>")},formatAndAdd:function(b,c){var d=this.defaultMessage(b,c.method),e=/\$?\{(\d+)\}/g;"function"==typeof d?d=d.call(this,c.parameters,b):e.test(d)&&(d=a.validator.format(d.replace(e,"{$1}"),c.parameters)),this.errorList.push({message:d,element:b,method:c.method}),this.errorMap[b.name]=d,this.submitted[b.name]=d},addWrapper:function(a){return this.settings.wrapper&&(a=a.add(a.parent(this.settings.wrapper))),a},defaultShowErrors:function(){var a,b,c;for(a=0;this.errorList[a];a++)c=this.errorList[a],this.settings.highlight&&this.settings.highlight.call(this,c.element,this.settings.errorClass,this.settings.validClass),this.showLabel(c.element,c.message);if(this.errorList.length&&(this.toShow=this.toShow.add(this.containers)),this.settings.success)for(a=0;this.successList[a];a++)this.showLabel(this.successList[a]);if(this.settings.unhighlight)for(a=0,b=this.validElements();b[a];a++)this.settings.unhighlight.call(this,b[a],this.settings.errorClass,this.settings.validClass);this.toHide=this.toHide.not(this.toShow),this.hideErrors(),this.addWrapper(this.toShow).show()},validElements:function(){return this.currentElements.not(this.invalidElements())},invalidElements:function(){return a(this.errorList).map(function(){return this.element})},showLabel:function(b,c){var d,e,f,g=this.errorsFor(b),h=this.idOrName(b),i=a(b).attr("aria-describedby");g.length?(g.removeClass(this.settings.validClass).addClass(this.settings.errorClass),g.html(c)):(g=a("<"+this.settings.errorElement+">").attr("id",h+"-error").addClass(this.settings.errorClass).html(c||""),d=g,this.settings.wrapper&&(d=g.hide().show().wrap("<"+this.settings.wrapper+"/>").parent()),this.labelContainer.length?this.labelContainer.append(d):this.settings.errorPlacement?this.settings.errorPlacement(d,a(b)):d.insertAfter(b),g.is("label")?g.attr("for",h):0===g.parents("label[for='"+h+"']").length&&(f=g.attr("id").replace(/(:|\.|\[|\]|\$)/g,"\\$1"),i?i.match(new RegExp("\\b"+f+"\\b"))||(i+=" "+f):i=f,a(b).attr("aria-describedby",i),e=this.groups[b.name],e&&a.each(this.groups,function(b,c){c===e&&a("[name='"+b+"']",this.currentForm).attr("aria-describedby",g.attr("id"))}))),!c&&this.settings.success&&(g.text(""),"string"==typeof this.settings.success?g.addClass(this.settings.success):this.settings.success(g,b)),this.toShow=this.toShow.add(g)},errorsFor:function(b){var c=this.idOrName(b),d=a(b).attr("aria-describedby"),e="label[for='"+c+"'], label[for='"+c+"'] *";return d&&(e=e+", #"+d.replace(/\s+/g,", #")),this.errors().filter(e)},idOrName:function(a){return this.groups[a.name]||(this.checkable(a)?a.name:a.id||a.name)},validationTargetFor:function(b){return this.checkable(b)&&(b=this.findByName(b.name)),a(b).not(this.settings.ignore)[0]},checkable:function(a){return/radio|checkbox/i.test(a.type)},findByName:function(b){return a(this.currentForm).find("[name='"+b+"']")},getLength:function(b,c){switch(c.nodeName.toLowerCase()){case"select":return a("option:selected",c).length;case"input":if(this.checkable(c))return this.findByName(c.name).filter(":checked").length}return b.length},depend:function(a,b){return this.dependTypes[typeof a]?this.dependTypes[typeof a](a,b):!0},dependTypes:{"boolean":function(a){return a},string:function(b,c){return!!a(b,c.form).length},"function":function(a,b){return a(b)}},optional:function(b){var c=this.elementValue(b);return!a.validator.methods.required.call(this,c,b)&&"dependency-mismatch"},startRequest:function(a){this.pending[a.name]||(this.pendingRequest++,this.pending[a.name]=!0)},stopRequest:function(b,c){this.pendingRequest--,this.pendingRequest<0&&(this.pendingRequest=0),delete this.pending[b.name],c&&0===this.pendingRequest&&this.formSubmitted&&this.form()?(a(this.currentForm).submit(),this.formSubmitted=!1):!c&&0===this.pendingRequest&&this.formSubmitted&&(a(this.currentForm).triggerHandler("invalid-form",[this]),this.formSubmitted=!1)},previousValue:function(b){return a.data(b,"previousValue")||a.data(b,"previousValue",{old:null,valid:!0,message:this.defaultMessage(b,"remote")})},destroy:function(){this.resetForm(),a(this.currentForm).off(".validate").removeData("validator")}},classRuleSettings:{required:{required:!0},email:{email:!0},url:{url:!0},date:{date:!0},dateISO:{dateISO:!0},number:{number:!0},digits:{digits:!0},creditcard:{creditcard:!0}},addClassRules:function(b,c){b.constructor===String?this.classRuleSettings[b]=c:a.extend(this.classRuleSettings,b)},classRules:function(b){var c={},d=a(b).attr("class");return d&&a.each(d.split(" "),function(){this in a.validator.classRuleSettings&&a.extend(c,a.validator.classRuleSettings[this])}),c},normalizeAttributeRule:function(a,b,c,d){/min|max/.test(c)&&(null===b||/number|range|text/.test(b))&&(d=Number(d),isNaN(d)&&(d=void 0)),d||0===d?a[c]=d:b===c&&"range"!==b&&(a[c]=!0)},attributeRules:function(b){var c,d,e={},f=a(b),g=b.getAttribute("type");for(c in a.validator.methods)"required"===c?(d=b.getAttribute(c),""===d&&(d=!0),d=!!d):d=f.attr(c),this.normalizeAttributeRule(e,g,c,d);return e.maxlength&&/-1|2147483647|524288/.test(e.maxlength)&&delete e.maxlength,e},dataRules:function(b){var c,d,e={},f=a(b),g=b.getAttribute("type");for(c in a.validator.methods)d=f.data("rule"+c.charAt(0).toUpperCase()+c.substring(1).toLowerCase()),this.normalizeAttributeRule(e,g,c,d);return e},staticRules:function(b){var c={},d=a.data(b.form,"validator");return d.settings.rules&&(c=a.validator.normalizeRule(d.settings.rules[b.name])||{}),c},normalizeRules:function(b,c){return a.each(b,function(d,e){if(e===!1)return void delete b[d];if(e.param||e.depends){var f=!0;switch(typeof e.depends){case"string":f=!!a(e.depends,c.form).length;break;case"function":f=e.depends.call(c,c)}f?b[d]=void 0!==e.param?e.param:!0:delete b[d]}}),a.each(b,function(d,e){b[d]=a.isFunction(e)?e(c):e}),a.each(["minlength","maxlength"],function(){b[this]&&(b[this]=Number(b[this]))}),a.each(["rangelength","range"],function(){var c;b[this]&&(a.isArray(b[this])?b[this]=[Number(b[this][0]),Number(b[this][1])]:"string"==typeof b[this]&&(c=b[this].replace(/[\[\]]/g,"").split(/[\s,]+/),b[this]=[Number(c[0]),Number(c[1])]))}),a.validator.autoCreateRanges&&(null!=b.min&&null!=b.max&&(b.range=[b.min,b.max],delete b.min,delete b.max),null!=b.minlength&&null!=b.maxlength&&(b.rangelength=[b.minlength,b.maxlength],delete b.minlength,delete b.maxlength)),b},normalizeRule:function(b){if("string"==typeof b){var c={};a.each(b.split(/\s/),function(){c[this]=!0}),b=c}return b},addMethod:function(b,c,d){a.validator.methods[b]=c,a.validator.messages[b]=void 0!==d?d:a.validator.messages[b],c.length<3&&a.validator.addClassRules(b,a.validator.normalizeRule(b))},methods:{required:function(b,c,d){if(!this.depend(d,c))return"dependency-mismatch";if("select"===c.nodeName.toLowerCase()){var e=a(c).val();return e&&e.length>0}return this.checkable(c)?this.getLength(b,c)>0:b.length>0},email:function(a,b){return this.optional(b)||/^[a-zA-Z0-9.!#$%&'*+\/=?^_`{|}~-]+@[a-zA-Z0-9](?:[a-zA-Z0-9-]{0,61}[a-zA-Z0-9])?(?:\.[a-zA-Z0-9](?:[a-zA-Z0-9-]{0,61}[a-zA-Z0-9])?)*$/.test(a)},url:function(a,b){return this.optional(b)||/^(?:(?:(?:https?|ftp):)?\/\/)(?:\S+(?::\S*)?@)?(?:(?!(?:10|127)(?:\.\d{1,3}){3})(?!(?:169\.254|192\.168)(?:\.\d{1,3}){2})(?!172\.(?:1[6-9]|2\d|3[0-1])(?:\.\d{1,3}){2})(?:[1-9]\d?|1\d\d|2[01]\d|22[0-3])(?:\.(?:1?\d{1,2}|2[0-4]\d|25[0-5])){2}(?:\.(?:[1-9]\d?|1\d\d|2[0-4]\d|25[0-4]))|(?:(?:[a-z\u00a1-\uffff0-9]-*)*[a-z\u00a1-\uffff0-9]+)(?:\.(?:[a-z\u00a1-\uffff0-9]-*)*[a-z\u00a1-\uffff0-9]+)*(?:\.(?:[a-z\u00a1-\uffff]{2,})).?)(?::\d{2,5})?(?:[/?#]\S*)?$/i.test(a)},date:function(a,b){return this.optional(b)||!/Invalid|NaN/.test(new Date(a).toString())},dateISO:function(a,b){return this.optional(b)||/^\d{4}[\/\-](0?[1-9]|1[012])[\/\-](0?[1-9]|[12][0-9]|3[01])$/.test(a)},number:function(a,b){return this.optional(b)||/^(?:-?\d+|-?\d{1,3}(?:,\d{3})+)?(?:\.\d+)?$/.test(a)},digits:function(a,b){return this.optional(b)||/^\d+$/.test(a)},creditcard:function(a,b){if(this.optional(b))return"dependency-mismatch";if(/[^0-9 \-]+/.test(a))return!1;var c,d,e=0,f=0,g=!1;if(a=a.replace(/\D/g,""),a.length<13||a.length>19)return!1;for(c=a.length-1;c>=0;c--)d=a.charAt(c),f=parseInt(d,10),g&&(f*=2)>9&&(f-=9),e+=f,g=!g;return e%10===0},minlength:function(b,c,d){var e=a.isArray(b)?b.length:this.getLength(b,c);return this.optional(c)||e>=d},maxlength:function(b,c,d){var e=a.isArray(b)?b.length:this.getLength(b,c);return this.optional(c)||d>=e},rangelength:function(b,c,d){var e=a.isArray(b)?b.length:this.getLength(b,c);return this.optional(c)||e>=d[0]&&e<=d[1]},min:function(a,b,c){return this.optional(b)||a>=c},max:function(a,b,c){return this.optional(b)||c>=a},range:function(a,b,c){return this.optional(b)||a>=c[0]&&a<=c[1]},equalTo:function(b,c,d){var e=a(d);return this.settings.onfocusout&&e.off(".validate-equalTo").on("blur.validate-equalTo",function(){a(c).valid()}),b===e.val()},remote:function(b,c,d){if(this.optional(c))return"dependency-mismatch";var e,f,g=this.previousValue(c);return this.settings.messages[c.name]||(this.settings.messages[c.name]={}),g.originalMessage=this.settings.messages[c.name].remote,this.settings.messages[c.name].remote=g.message,d="string"==typeof d&&{url:d}||d,g.old===b?g.valid:(g.old=b,e=this,this.startRequest(c),f={},f[c.name]=b,a.ajax(a.extend(!0,{mode:"abort",port:"validate"+c.name,dataType:"json",data:f,context:e.currentForm,success:function(d){var f,h,i,j=d===!0||"true"===d;e.settings.messages[c.name].remote=g.originalMessage,j?(i=e.formSubmitted,e.prepareElement(c),e.formSubmitted=i,e.successList.push(c),delete e.invalid[c.name],e.showErrors()):(f={},h=d||e.defaultMessage(c,"remote"),f[c.name]=g.message=a.isFunction(h)?h(b):h,e.invalid[c.name]=!0,e.showErrors(f)),g.valid=j,e.stopRequest(c,j)}},d)),"pending")}}});var b,c={};a.ajaxPrefilter?a.ajaxPrefilter(function(a,b,d){var e=a.port;"abort"===a.mode&&(c[e]&&c[e].abort(),c[e]=d)}):(b=a.ajax,a.ajax=function(d){var e=("mode"in d?d:a.ajaxSettings).mode,f=("port"in d?d:a.ajaxSettings).port;return"abort"===e?(c[f]&&c[f].abort(),c[f]=b.apply(this,arguments),c[f]):b.apply(this,arguments)})});
\ No newline at end of file
diff --git a/include/js/notice.js b/include/js/notice.js
index c100b44..74161d5 100644
--- a/include/js/notice.js
+++ b/include/js/notice.js
@@ -1,77 +1,105 @@
-$(function(){
-	function notice(){
-		$('#notifs').html('<h4>通知</h4><div id="loading" class="alert alert-success text-center">載入中...</div>');
+/*
+<Secret Center, open source member management system>
+Copyright (C) 2012-2016 Secret Center開發團隊 <http://center.gdsecret.net/#team>
+
+This program is free software: you can redistribute it and/or modify
+it under the terms of the GNU Affero General Public License as published by
+the Free Software Foundation, version 3.
+
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+GNU Affero General Public License for more details.
+
+You should have received a copy of the GNU Affero General Public License
+along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+Also add information on how to contact you by electronic and paper mail.
+
+  If your software can interact with users remotely through a computer
+network, you should also make sure that it provides a way for users to
+get its source.  For example, if your program is a web application, its
+interface could display a "Source" link that leads users to an archive
+of the code.  There are many ways you could offer source, and different
+solutions will be better for different programs; see section 13 for the
+specific requirements.
+
+  You should also get your employer (if you work as a programmer) or school,
+if any, to sign a "copyright disclaimer" for the program, if necessary.
+For more information on this, and how to apply and follow the GNU AGPL, see
+<http://www.gnu.org/licenses/>.
+*/
+(function($,window){
+	var sc_notice = function(){
+		var self = this;
+		$('.content').prepend('<span id="notifs-button"><a href="#">通知</a><span id="num">0</span></span><div id="notifs"></div>');
+		$('#notifs').html('<h4>通知</h4><div class="alert alert-success text-center">載入中...</div>');
+		this.count();
+		$("#notifs-button").click(function(e){
+			e.preventDefault();
+			$("#notifs").fadeToggle(300);
+			$("#notifs").css({
+				top: $('#notifs-button').offset().top + $('#notifs-button').outerHeight(),
+				left: $('#notifs-button').offset().left + $('#notifs-button').outerWidth() - $('#notifs').outerWidth()
+			});
+			if($('#notifs').is(':visible')){
+				var last = window.last || 0 ;
+				self.load(last);
+			}
+		});
+	}
+	sc_notice.prototype.count = function(last_count){
+		var self = this;
+		var last_count = last_count || 0;
 		$.ajax({
-			url:window.location.href.indexOf("/admin") > -1 ? "../include/ajax/notice.php?"+ Math.random() : "include/ajax/notice.php?"+ Math.random(),
+			url:  window.location.href.indexOf("/admin") > -1 ? '../include/ajax/notice.php' : 'include/ajax/notice.php',
+			type: 'POST',
+			data:{last_count: last_count},
 			dataType: 'json',
-			success: function(data){
-				if(data['error']!=1){
-					$('#loading').hide();
-					var notice_length=data.length;
-					for (var i=0;i<notice_length; i++) {
-						if(data[i]['status']!=1){
-							var notice_new=' new';
-						}else{
-							var notice_new='';
-						}
-						$('#notifs').append('<div class="notifications'+notice_new+'"><img src="include/avatar.php?id='+data[i]['send_from']+'" class="avatar avatar-mini"><a href="'+data[i]['url']+'"><span class="time">'+data[i]['ptime']+'</span><p>'+data[i]['content']+'</p></a><br class="clearfix"></div>');
-					}
+			cache: false,
+			timeout: 20000,
+			error : function(){
+				self.count(last_count);
+			},
+			success: function(data) {
+				if(data.count>0){
+					$('#num').addClass('new').text(data.count);
 				}else{
-					$('#loading').removeClass('alert-success').addClass('alert-info').text('沒有訊息');
+					$('#num').removeClass('new').text(0);
 				}
+				self.count(data.count);
 			}
 		});
 	}
-	function unread(){
+	sc_notice.prototype.load = function(last){
+		var self = this;
+		var last = last || 0;
 		$.ajax({
-			url:window.location.href.indexOf("/admin") > -1 ? "../include/ajax/notice.php?unread&"+ Math.random() : "include/ajax/notice.php?unread&"+ Math.random(),
-			dataType: 'text',
-			success: function(data){
-				if(data>0){
-					if($('#num').text()!=data){
-						$('#num').addClass('new').text(data);
-						if($('#notifs').is(":visible")){
-							notice();
-						}
-					}
-				}else{
-					if($('#num').text()!=0){
-						$('#notifications').removeClass('new');
+			url:  window.location.href.indexOf("/admin") > -1 ? '../include/ajax/notice.php' : 'include/ajax/notice.php',
+			type: 'POST',
+			data:{last: last},
+			dataType: 'json',
+			cache: false,
+			success: function(data) {
+				$('#notifs').find('.alert').remove();
+				$('#notifs notifications').removeClass('new');
+				$.each(data.data,function(i,e){
+					var item = $('<div>').addClass('notifications');
+					if(e.status==0){
+						item.addClass('new');
 					}
-				}
+					item.append($('<img>',{'src':'include/avatar/'+e.send_from_avatar}).addClass('avatar avatar-sm'));
+					item.append($('<span>',{text:e.mktime}).addClass('time'));
+					item.append($('<p>').html($('<a>',{'href':e.url,text:e.content})));
+					$('#notifs h4').after(item);
+				});
+				window.last=data.last;
 			}
 		});
 	}
-	function read(){
-		if($('#num').text()>0){
-			$.ajax({
-				url:window.location.href.indexOf("/admin") > -1 ? "../include/ajax/notice.php?read&"+ Math.random() : "include/ajax/notice.php?read&"+ Math.random()
-			});
-			$('#num').removeClass('new').text(0);
-			$('#notifications').removeClass('new');
-		}
-	}
+	window.sc_notice = sc_notice;
+})(jQuery,window);
 
-	$("#notifs-button").click(function(e){
-		e.preventDefault();
-		if(!$('#notifs').is(":visible")){
-			if($('#num').text()>0 || $('#notifs').text().length==0){
-				notice();
-			}
-		}else{
-			read();
-		}
-		$("#notifs").fadeToggle(300);
-		$("#notifs").css({
-			top: $('#notifs-button').offset().top + $('#notifs-button').outerHeight(),
-			left: $('#notifs-button').offset().left + $('#notifs-button').outerWidth() - $('#notifs').outerWidth()
-		});
-	});
-
-	setInterval(function(){
-		unread();
-	},3000);
-	unread();
-	$('.content').before('<div id="notifs"></div>');
-	$('#notifs-button').html('<a href="#">通知</a><span id="num">0</span>').show();
+$(function(){
+	new sc_notice();
 });
\ No newline at end of file
diff --git a/include/nav.php b/include/nav.php
index 724803b..9cd1397 100644
--- a/include/nav.php
+++ b/include/nav.php
@@ -1,4 +1,36 @@
-<?php if(isset($_SESSION['Center_Username'])){ ?>
+<?php
+/*
+<Secret Center, open source member management system>
+Copyright (C) 2012-2016 Secret Center開發團隊 <http://center.gdsecret.net/#team>
+
+This program is free software: you can redistribute it and/or modify
+it under the terms of the GNU Affero General Public License as published by
+the Free Software Foundation, version 3.
+
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+GNU Affero General Public License for more details.
+
+You should have received a copy of the GNU Affero General Public License
+along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+Also add information on how to contact you by electronic and paper mail.
+
+  If your software can interact with users remotely through a computer
+network, you should also make sure that it provides a way for users to
+get its source.  For example, if your program is a web application, its
+interface could display a "Source" link that leads users to an archive
+of the code.  There are many ways you could offer source, and different
+solutions will be better for different programs; see section 13 for the
+specific requirements.
+
+  You should also get your employer (if you work as a programmer) or school,
+if any, to sign a "copyright disclaimer" for the program, if necessary.
+For more information on this, and how to apply and follow the GNU AGPL, see
+<http://www.gnu.org/licenses/>.
+*/
+ if(isset($_SESSION['Center_Username'])){ ?>
 	<li><a href="member.php">會員中心</a></li>
 	<li><a href="chat.php">聊天室</a></li>
 	<li class="dropdown">
@@ -9,13 +41,6 @@
 			<li><a href="mypost.php">我的帖子</a></li>
 		</ul>
 	</li>
-	<li class="dropdown">
-		<a href="file.php" data-target="#" data-toggle="dropdown">文件夾 ▼</a>
-		<ul class="dropdown-menu">
-			<li><a href="file.php">文件夾</a></li>
-			<li><a href="file.php?upload">檔案上傳</a></li>
-		</ul>
-	</li>
 	<?php if($_SESSION['Center_UserGroup']==9){?>
 		<li><a href="admin/index.php">系統管理</a></li>
 	<?php } ?>
diff --git a/include/theme/admin_default.html b/include/theme/admin_default.html
new file mode 100644
index 0000000..a0d5e91
--- /dev/null
+++ b/include/theme/admin_default.html
@@ -0,0 +1,68 @@
+<!DOCTYPE html>
+<html>
+<head>
+	<title>{part} | {title}</title>
+	<meta charset="utf-8" />
+	<meta name="viewport" content="width=device-width, initial-scale=1.0">
+	<meta name="robots" content="noindex,nofollow,noodp,noydir" />
+	<meta name="application-name" content="{title}" />
+	<meta name="author" content="Secret" />
+	<link rel="stylesheet" href="https://maxcdn.bootstrapcdn.com/bootstrap/3.3.6/css/bootstrap.min.css">
+	<link href="{style}" rel="stylesheet" type="text/css">
+	<script src="https://code.jquery.com/jquery-1.12.0.min.js"></script>
+	{scripts}
+	<script src="https://maxcdn.bootstrapcdn.com/bootstrap/3.3.6/js/bootstrap.min.js"></script>
+	<script>
+	$(function(){
+		$.ajax({
+			url: '//center.gdsecret.net/update.php?json&ver=<?php echo sc_ver() .'&url='.sc_get_headurl(); ?>',
+			dataType: 'jsonp',
+			success: function(data){
+				if(!data.error){
+					if(!data.latest){
+						$('#main').prepend('<div id="update" class="alert alert-danger text-center"></div>');
+						$('#update').html(data.msg);
+					}
+					else {
+						$('footer').attr('title',data.msg);
+						$('#ver_check').addClass('label label-success').text('最新版');
+					}
+				}
+				else {
+					$('nav').prepend('<div id="update" class="alert alert-danger"></div>');
+					$('#update').html(data.msg);
+				}
+			}
+		});
+	});
+	</script>
+</head>
+<body>
+	<nav class="navbar navbar-inverse navbar-fixed-top">
+		<div class="container-fluid">
+			<div class="navbar-header">
+				<a class="navbar-brand" href="index.php">{title}</a>
+				<button type="button" class="navbar-toggle collapsed" data-toggle="collapse" data-target="#nav-collapse">
+					<span class="sr-only">Toggle navigation</span>
+					<span class="icon-bar"></span>
+					<span class="icon-bar"></span>
+					<span class="icon-bar"></span>
+				</button>
+			</div>
+			<div id="nav-collapse" class="collapse navbar-collapse">
+				<ul class="nav navbar-nav">
+					{nav}
+				</ul>
+			</div>
+		</div>
+	</nav>
+	<div id="main" class="container-fluid">
+		<div class="content">
+			{content}
+		</div>
+		<footer>
+			<p>Secret Center 由<a href="http://center.gdsecret.net/#team" target="_black">Secret Center 開發團隊</a>製作！</p>
+		</footer>
+	</div>
+</body>
+</html>
\ No newline at end of file
diff --git a/include/theme/default.html b/include/theme/default.html
new file mode 100644
index 0000000..36a7f41
--- /dev/null
+++ b/include/theme/default.html
@@ -0,0 +1,47 @@
+<!DOCTYPE html>
+<html>
+<head>
+	<title>{part} | {title}</title>
+	<meta charset="utf-8" />
+	<meta name="viewport" content="width=device-width, initial-scale=1.0">
+	<meta name="robots" content="index,follow,noodp,noydir" />
+	<meta name="application-name" content="{title}" />
+	<meta name="author" content="Secret" />
+	<meta property="og:title" content="{part} | {title}" />
+	<meta property="og:type" content="website" />
+	<meta property="og:site_name" content="{title}" />
+	<link rel="stylesheet" href="https://maxcdn.bootstrapcdn.com/bootstrap/3.3.6/css/bootstrap.min.css">
+	<link href="{style}" rel="stylesheet" type="text/css">
+	<script src="https://code.jquery.com/jquery-1.12.0.min.js"></script>
+	{scripts}
+	<script src="https://maxcdn.bootstrapcdn.com/bootstrap/3.3.6/js/bootstrap.min.js"></script>
+</head>
+<body>
+	<nav class="navbar navbar-inverse navbar-fixed-top">
+		<div class="container-fluid">
+			<div class="navbar-header">
+				<a class="navbar-brand" href="index.php">{title}</a>
+				<button type="button" class="navbar-toggle collapsed" data-toggle="collapse" data-target="#nav-collapse">
+					<span class="sr-only">Toggle navigation</span>
+					<span class="icon-bar"></span>
+					<span class="icon-bar"></span>
+					<span class="icon-bar"></span>
+				</button>
+			</div>
+			<div id="nav-collapse" class="collapse navbar-collapse">
+				<ul class="nav navbar-nav">
+					{nav}
+				</ul>
+			</div>
+		</div>
+	</nav>
+	<div id="main" class="container-fluid">
+		<div class="content">
+			{content}
+		</div>
+		<footer>
+			<p>Secret Center 由<a href="http://center.gdsecret.net/#team" target="_black">Secret Center 開發團隊</a>製作！</p>
+		</footer>
+	</div>
+</body>
+</html>
\ No newline at end of file
diff --git a/include/view.php b/include/view.php
index 3590774..da21bfa 100644
--- a/include/view.php
+++ b/include/view.php
@@ -1,22 +1,54 @@
 <?php
-	
+/*
+<Secret Center, open source member management system>
+Copyright (C) 2012-2016 Secret Center開發團隊 <http://center.gdsecret.net/#team>
+
+This program is free software: you can redistribute it and/or modify
+it under the terms of the GNU Affero General Public License as published by
+the Free Software Foundation, version 3.
+
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+GNU Affero General Public License for more details.
+
+You should have received a copy of the GNU Affero General Public License
+along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+Also add information on how to contact you by electronic and paper mail.
+
+  If your software can interact with users remotely through a computer
+network, you should also make sure that it provides a way for users to
+get its source.  For example, if your program is a web application, its
+interface could display a "Source" link that leads users to an archive
+of the code.  There are many ways you could offer source, and different
+solutions will be better for different programs; see section 13 for the
+specific requirements.
+
+  You should also get your employer (if you work as a programmer) or school,
+if any, to sign a "copyright disclaimer" for the program, if necessary.
+For more information on this, and how to apply and follow the GNU AGPL, see
+<http://www.gnu.org/licenses/>.
+*/
+
 class View {
 	private $master_content;
 	private $nav_content;
+	private $sidebar_content;
 	private $scripts;
 	private $title;
 	private $part;
 	private $non_base;
 
-	public function __construct($master,$nav,$title,$part,$non_base = false){
-		$this->load($master,$nav);
+	public function __construct($master,$nav,$sidebar,$title,$part,$non_base = false){
+		$this->load($master,$nav,$sidebar);
 		$this->title = $title;
 		$this->part = $part;
 		$this->non_base = $non_base;
 		ob_start();
 	}
 
-	private function load($master,$nav){
+	private function load($master,$nav,$sidebar){
 		ob_start();
 		include($master);
 		$this->master_content = ob_get_contents();
@@ -26,6 +58,17 @@ private function load($master,$nav){
 		include($nav);
 		$this->nav_content = ob_get_contents();
 		ob_end_clean();
+		
+		if($sidebar!=''){
+			ob_start();
+			include($sidebar);
+			$this->sidebar_content = ob_get_contents();
+			ob_end_clean();
+		}
+	}
+	
+	public function addMeta($name,$meta_content){
+		$this->scripts .= sprintf('<meta name="%s" content="%s" />'.PHP_EOL,$name,$meta_content);
 	}
 
 	public function addScript($url,$type="text/javascript"){
@@ -35,7 +78,7 @@ public function addScript($url,$type="text/javascript"){
 	public function addCSS($url,$type="text/css"){
 		$this->scripts .= sprintf('<link type="%s" rel="stylesheet" href="%s" />'.PHP_EOL,$type,$url);
 	}
-
+	
 	public function render(){
 		$content = ob_get_contents();
 		ob_end_clean();
@@ -46,6 +89,7 @@ public function render(){
 			'{style}' => $this->non_base ? '../style.css' : './style.css',
 			'{scripts}' => $this->scripts,
 			'{nav}' => $this->nav_content,
+			'{sidebar}' => $this->sidebar_content,
 			'{content}' => $content
 		));
 		@ob_flush();
diff --git a/index.php b/index.php
index 1cdd15d..2762ccc 100644
--- a/index.php
+++ b/index.php
@@ -1,15 +1,41 @@
 <?php
+/*
+<Secret Center, open source member management system>
+Copyright (C) 2012-2016 Secret Center開發團隊 <http://center.gdsecret.net/#team>
+
+This program is free software: you can redistribute it and/or modify
+it under the terms of the GNU Affero General Public License as published by
+the Free Software Foundation, version 3.
+
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+GNU Affero General Public License for more details.
+
+You should have received a copy of the GNU Affero General Public License
+along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+Also add information on how to contact you by electronic and paper mail.
+
+  If your software can interact with users remotely through a computer
+network, you should also make sure that it provides a way for users to
+get its source.  For example, if your program is a web application, its
+interface could display a "Source" link that leads users to an archive
+of the code.  There are many ways you could offer source, and different
+solutions will be better for different programs; see section 13 for the
+specific requirements.
+
+  You should also get your employer (if you work as a programmer) or school,
+if any, to sign a "copyright disclaimer" for the program, if necessary.
+For more information on this, and how to apply and follow the GNU AGPL, see
+<http://www.gnu.org/licenses/>.
+*/
+
 require_once('Connections/SQL.php');
 require_once('config.php');
 require_once('include/view.php');
 
-$view = new View('view/new_theme.html','include/nav.php',$center['site_name'],'會員登入');
-
-if(isset($_SESSION['Center_Username'],$_SESSION['Center_UserGroup'])){
-	header('Location: member.php');
-}
-
-if (isset($_POST['username'])) {
+if(isset($_POST['username'])){
 	if(sc_login($_POST['username'],$_POST['password'])==1){
 		header("Location: member.php?login");
 	}else{
@@ -21,6 +47,12 @@
 	sc_loginout();
 }
 
+if(isset($_SESSION['Center_Username'],$_SESSION['Center_UserGroup'])){
+	header('Location: member.php');
+}
+
+$view = new View('include/theme/default.html','include/nav.php',NULL,$center['site_name'],'會員登入');
+
 switch(true){
 	case isset($_GET['reg']):
 ?>
@@ -39,35 +71,33 @@
 	break;
 	case isset($_GET['login']):
 ?>
-	<div class="alert alert-error">登入失敗</div>
+	<div class="alert alert-danger">登入失敗</div>
 <?php
 	break;
 }
 ?>
-<div class="login-form">
-	<h2 class="page-header">會員登入</h2>
-	<form class="form-horizontal" action="index.php" method="post">
-		<div class="control-group">
-			<label class="control-label" for="username">帳號：</label>
-			<div class="controls">
-				<input id="username" name="username" type="text">
-			</div>
+<h2 class="page-header">會員登入</h2>
+<form id="loginbox" class="form-horizontal form-sm" action="index.php" method="post">
+	<div class="form-group">
+		<label class="col-sm-3 control-label" for="username">帳號：</label>
+		<div class="col-sm-9">
+			<input class="form-control" name="username" type="text" required="required">
 		</div>
-		<div class="control-group">
-			<label class="control-label" for="password">密碼：</label>
-			<div class="controls">
-				<input id="password" name="password" type="password">
-			</div>
+	</div>
+	<div class="form-group">
+		<label class="col-sm-3 control-label" for="password">密碼：</label>
+		<div class="col-sm-9">
+			<input class="form-control" name="password" type="password" required="required">
 		</div>
-		<div class="control-group">
-			<div class="controls">
-				<input type="submit" value="登入" class="btn btn-primary btn-large">
-				<a href="register.php" class="btn btn-info">註冊</a>
-				<a href="getpassword.php">忘了您的密碼？</a>
-			</div>
+	</div>
+	<div class="form-group">
+		<div class="col-sm-offset-3 col-sm-9">
+			<input class="btn btn-primary" type="submit" value="登入">
+			<a href="register.php" class="btn btn-info">註冊</a>
+			<a href="getpassword.php">忘了您的密碼？</a>
 		</div>
-	</form>
-</div>
+	</div>
+</form>
 <?php
 	$view->render();
 ?>
\ No newline at end of file
diff --git a/install.php b/install.php
index d0e9046..0e869a1 100644
--- a/install.php
+++ b/install.php
@@ -1,15 +1,53 @@
 <?php
-@error_reporting(0);
+/*
+<Secret Center, open source member management system>
+Copyright (C) 2012-2016 Secret Center開發團隊 <http://center.gdsecret.net/#team>
+
+This program is free software: you can redistribute it and/or modify
+it under the terms of the GNU Affero General Public License as published by
+the Free Software Foundation, version 3.
+
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+GNU Affero General Public License for more details.
+
+You should have received a copy of the GNU Affero General Public License
+along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+Also add information on how to contact you by electronic and paper mail.
+
+  If your software can interact with users remotely through a computer
+network, you should also make sure that it provides a way for users to
+get its source.  For example, if your program is a web application, its
+interface could display a "Source" link that leads users to an archive
+of the code.  There are many ways you could offer source, and different
+solutions will be better for different programs; see section 13 for the
+specific requirements.
+
+  You should also get your employer (if you work as a programmer) or school,
+if any, to sign a "copyright disclaimer" for the program, if necessary.
+For more information on this, and how to apply and follow the GNU AGPL, see
+<http://www.gnu.org/licenses/>.
+*/
+
+error_reporting(0);
+if(isset($_GET['step'])&&$_GET['step']>0&&$_GET['step']<=4){
+	$_step=abs($_GET['step']);
+}else{
+	$_step=0;
+}
+
 $error = false;
 
 function check($val){
     global $error;
     if($val){
-    	echo "<span style=\"color:green;\">√</span>";
+    	echo '<span style="color:green;">√</span>';
 	}
 	else {
 		$error = true;
-		echo "<span style=\"color:red;\">Χ</span>";
+		echo '<span style="color:red;">Χ</span>';
 	}
 }
 
@@ -20,250 +58,217 @@ function check_php_version($version){
 function check_extension($ext){
 	check(extension_loaded($ext));
 }
-if(isset($_GET['step'])&&$_GET['step']==4){
-	if($_POST["radio"]=="rename"){
-		rename("install.php","install.txt");
+
+if($_step==4){
+	if($_POST['radio']=='rename'){
+		rename('install.php','install.txt');
 		if(file_exists('upgrade.php')){
-			rename("upgrade.php","upgrade.txt");
+			rename('upgrade.php','upgrade.txt');
 		}
 	}else{
-		unlink("install.php");
+		unlink('install.php');
 		if(file_exists('upgrade.php')){
-			unlink("upgrade.php");
+			unlink('upgrade.php');
 		}
 	}
-	header("Location: index.php");
+	header('Location: index.php');
 }
 ?>
 <!DOCTYPE HTML>
 <html>
-	<head>
-		<meta charset="utf-8">
-		<title>『Secret會員系統』安裝程序</title>
-		<style>
-			body{
-				background-color:rgb(225,240,255);
-				font-family:"微軟正黑體","新細明體",Arial;
-			}
-			form {
-				margin: 1em;
-				width: 550px;
-			}
-			fieldset{
-				width: 650px;
-				margin: 15px 0 15px 0;
-			}
-			fieldset table {
-				width: 100%;
-				text-align: center;
-			}
-			label.error{
-				margin-left: 5px;
-				font-size: 80%;
-				color: red;
-			}
-			fieldset{
-				border:0;
-			}
-			fieldset legend{
-				font-size:120%;
-			}
-			#licenses {
-				width:650px;
-				padding: 1em;
-				background: rgb(190, 240 ,190);
-				font-size: 0.8em;
-				line-height: 1.5em;
-				word-wrap: break-word;
-				border-radius:0.25em;
-			}
-			table {
-				border: 1px #ccc solid;
-				border-radius: 5px;
-				border-collapse: collapse;
-			}
-			table th {
-				background: #e9e9e9;
-				padding: 0.25em;
-			}
-			table td {
-				background: rgb(248,248,248);
-				font-size:96%;
-				padding: 0.25em;
-			}
-			#main{
-				width:800px;
-				background-color:rgba(255,255,255,0.9);
-				margin:2em auto;
-				padding:1.5em;
-				box-shadow:0px 0px 20px rgb(210,225,245);
-				border-radius:0.5em;
-			}
-			.page-title{
-				font-size:180%;
-				margin-bottom:1em;
-				font-family:"微軟正黑體","新細明體",Arial;
-				font-weight:100;
-			}
-			input[type="text"], input[type="password"] {
-    			width: 250px;
-    			border: 1px solid rgb(200,200,200);
-    			padding: 0.3em;
-    			border-radius: 0.25em;
-			}
-		</style>
-	</head>
-	
-	<body>
+<head>
+	<meta charset="utf-8">
+	<title>Secret Center安裝程序</title>
+	<link rel="stylesheet" href="https://maxcdn.bootstrapcdn.com/bootstrap/3.3.6/css/bootstrap.min.css" rel="stylesheet">
+	<style>
+		body{
+			background-color:rgb(225,240,255);
+			font-family:"微軟正黑體","新細明體",Arial;
+		}
+		h2,h3{
+			font-weight:100;
+		}
+		#main{
+			width:800px;
+			background-color:rgba(255,255,255,0.9);
+			margin:2em auto;
+			padding: 0.5em 1.5em 1.5em 1.5em;
+			box-shadow:0px 0px 20px rgb(210,225,245);
+			border-radius:0.5em;
+		}
+		.message {
+			width:80%;
+			max-height:500px;
+			overflow:auto;
+			padding: 1em;
+			margin-bottom:1em;
+			background: rgb(190, 240 ,190);
+			font-size: 90%;
+			line-height: 1.5em;
+			word-wrap: break-word;
+			border-radius:0.25em;
+		}
+		.radio{
+			font-size:96%;
+			margin-bottom:2em;
+		}
+		input[type='text'],input[type='password']{
+			max-width:250px;
+			display:inline-block;
+		}
+		fieldset+fieldset{
+			margin-top:2em;
+		}
+	</style>
+</head>
+<body>
 	<div id="main">
-		<?php if(@$_GET['step']==NULL){ ?>
-		<h2 class="page-title">『Secret會員系統』安裝程序-授權條款</h2>
-		<p>『Secret會員系統』的授權條款，請務必詳細閱讀條款後再進行安裝。</p>
-		<form name="form1" method="post" action="install.php?step=1">
-            <div id="licenses">
-                <?php echo nl2br(file_get_contents('./licenses.txt')); ?>
-            </div>
-			<p><input type="submit" name="button" id="button" value="我已經閱讀完畢並同意授權條款，開始下一步"></p>
-		</form>
-		<?php }
-		if(@$_GET['step']==1){ ?>
-		<h2 class="page-title">『Secret會員系統』安裝程序-第一步</h2>
-		<form name="form1" method="post" action="install.php?step=2">
+		<h2 class="text-center">Secret Center安裝程序</h2>
+		<?php if($_step==0){ ?>
+		<h3>授權條款</h3>
+		<p>Secret Center的授權條款，請務必詳細閱讀條款後再進行安裝。</p>
+		<div class="message">
+			<?php echo nl2br(file_get_contents('./license.txt')); ?>
+		</div>
+		<a class="btn btn-primary" href="install.php?step=1">我已經閱讀完畢並同意授權條款，開始下一步</a>
+		<?php }elseif($_step==1){ ?>
+		<h3>安裝環境檢測</h3>
+		<table class="table table-striped">
+			<tr>
+			  <th width="30%">項目</th>
+			  <th width="25%">最低配置</th>
+			  <th width="25%">最佳配置</th>
+			  <th width="20%">檢測結果</th>
+			</tr>
+			<tr>
+			  <td>PHP</td>
+			  <td>5.3</td>
+			  <td>5.3~5.6</td>
+			  <td><?php check_php_version(5.3); ?></td>
+			</tr>
+			<tr>
+			  <td>GD函式庫</td>
+			  <td>必須支援</td>
+			  <td>必須支援</td>
+			  <td><?php check_extension('gd'); ?></td>
+			</tr>
+			<tr>
+			  <td>Multibyte String函式庫</td>
+			  <td>必須支援</td>
+			  <td>必須支援</td>
+			  <td><?php check_extension('mbstring'); ?></td>
+			</tr>
+			<tr>
+			  <td>Mysqli函式庫</td>
+			  <td>必須支援</td>
+			  <td>必須支援</td>
+			  <td><?php check_extension('mysqli'); ?></td>
+			</tr>
+		</table>
+		<h3>權限檢測</h3>
+		<table class="table table-striped">
+			<tr>
+			  <th width="30%">項目</th>
+			  <th width="25%">所需權限</th>
+			  <th width="20%">檢測結果</th>
+			</tr>
+			<tr>
+			  <td>config.php</td>
+			  <td>可寫</td>
+			  <td><?php check(is_writable('./config.php')); ?></td>
+			</tr>
+			<tr>
+			  <td>config-sample.php</td>
+			  <td>可讀</td>
+			  <td><?php check(is_readable('./config-sample.php')); ?></td>
+			</tr>
+			<tr>
+			  <td>Connections/SQL.php</td>
+			  <td>可寫</td>
+			  <td><?php check(is_writable('./Connections/SQL.php')); ?></td>
+			</tr>
+			<tr>
+			  <td>Connections/SQL-sample.php</td>
+			  <td>可讀</td>
+			  <td><?php check(is_readable('./Connections/SQL-sample.php')); ?></td>
+			</tr>
+			<tr>
+			  <td>inlude/avatar/</td>
+			  <td>可寫</td>
+			  <td><?php check(is_writable('./include/avatar/')); ?></td>
+			</tr>
+			<tr>
+			  <td>include/admin/cssconfig.php</td>
+			  <td>可寫</td>
+			  <td><?php check(is_writable('./include/admin/cssconfig.php')); ?></td>
+			</tr>
+			<tr>
+			  <td>include/admin/cssconfig-sample.php</td>
+			  <td>可讀</td>
+			  <td><?php check(is_readable('./include/admin/cssconfig-sample.php')); ?></td>
+			</tr>
+		</table>
+		<a class="btn btn-primary<?php if($error){ ?> disabled"<?php }else{ ?>" href="install.php?step=2"<?php } ?>>下一步</a>
+		<?php if($error){ ?><span style="color:red;">您必須解決以上問題才能繼續安裝！</span><?php } ?>
+		<?php }elseif($_step==2){ ?>
+		<form method="post" action="install.php?step=3">
 			<fieldset>
-				<legend>安裝環境檢測</legend>
-				<table>
-					<tr>
-					  <th width="30%">項目</th>
-					  <th width="25%">最低配置</th>
-					  <th width="25%">最佳配置</th>
-					  <th width="20%">檢測結果</th>
-					</tr>
-					<tr>
-					  <td>PHP</td>
-					  <td>5.3</td>
-					  <td>5.3~5.6</td>
-					  <td><?php check_php_version(5.3); ?></td>
-					</tr>
-					<tr>
-					  <td>GD函式庫</td>
-					  <td>必須支援</td>
-					  <td>必須支援</td>
-					  <td><?php check_extension('gd'); ?></td>
-					</tr>
-					<tr>
-					  <td>Multibyte String函式庫</td>
-					  <td>必須支援</td>
-					  <td>必須支援</td>
-					  <td><?php check_extension('mbstring'); ?></td>
-					</tr>
-					<tr>
-					  <td>Mysqli函式庫</td>
-					  <td>必須支援</td>
-					  <td>必須支援</td>
-					  <td><?php check_extension('mysqli'); ?></td>
-					</tr>
-				  </table>
-				</fieldset>
-				<fieldset>
-				<legend>權限檢測</legend>
-				  <table>
-					<tr>
-					  <th width="30%">項目</th>
-					  <th width="25%">所需權限</th>
-					  <th width="20%">檢測結果</th>
-					</tr>
-					<tr>
-					  <td>style.css</td>
-					  <td>可寫</td>
-					  <td><?php check(is_writable('./style.css')); ?></td>
-					</tr>
-                    <tr>
-					  <td>style-sample.css</td>
-					  <td>可讀</td>
-					  <td><?php check(is_readable('./style-sample.css')); ?></td>
-					</tr>
-					<tr>
-					  <td>config.php</td>
-					  <td>可寫</td>
-					  <td><?php check(is_writable('./config.php')); ?></td>
-					</tr>
-                    <tr>
-					  <td>config-sample.php</td>
-					  <td>可讀</td>
-					  <td><?php check(is_readable('./config-sample.php')); ?></td>
-					</tr>
-					<tr>
-					  <td>Connections/SQL.php</td>
-					  <td>可寫</td>
-					  <td><?php check(is_writable('./Connections/SQL.php')); ?></td>
-					</tr>
-					<tr>
-					  <td>Connections/SQL-sample.php</td>
-					  <td>可讀</td>
-					  <td><?php check(is_readable('./Connections/SQL-sample.php')); ?></td>
-					</tr>
-					<tr>
-					  <td>include/file</td>
-					  <td>可寫</td>
-					  <td><?php check(is_writable('./include/file')); ?></td>
-					</tr>
-				  </table>
-				</fieldset>
-				  <p><input type="submit" name="button" id="button" value="下一步"<?php if($error){ ?> disabled="disabled"<?php } ?>><?php if($error){ ?><span style="color:red;">您必須解決以上問題才能繼續安裝！</span><?php } ?></p>
-				</form>
-				<?php } ?>
-
-				<?php if(@$_GET['step']==2){ ?>
-				<script type="text/javascript" src="https://ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js"></script>
-				<script type="text/javascript" src="include/js/jquery.validate.js"></script>
-				<script type="text/javascript">
-				$(function(){
-					$("#form1").validate({
-						rules:{
-							mysql_database:{required:true},
-							mysql_username:{required:true},
-							mysql_host:{required:true}
-						}
-					});
-				});
-				</script>
-				<h2 class="page-title">『Secret會員系統』安裝程序-第二步</h2>
-				<form id="form1" name="form1" method="post" action="install.php?step=3">
-				<fieldset>
-					<legend>MySQL 連線資料</legend>
-					<p>資料庫名稱：<input type="text" name="mysql_database" id="mysql_database" value=""></p>
-					<p>連線帳號：<input type="text" name="mysql_username" id="mysql_username" value=""></p>
-					<p>連線密碼：<input type="text" name="mysql_password" id="mysql_password" value=""></p>
-					<p>MySQL伺服器：<input type="text" name="mysql_host" id="mysql_host" value=""></p>
-				</fieldset>
-				<fieldset>
-					<legend>管理員資料</legend>
-					<p>管理員帳號：
-					<input type="text" name="admin_id" id="admin_id" value="">&nbsp;(留空預設admin)</p>
-					<p>管理員密碼：<input type="password" name="admin_psd" id="admin_psd" value="">&nbsp;(留空預設admin)</p>
-				</fieldset>
-					<p><input type="submit" name="button" id="button" value="下一步"></p>
-				</form>
-				<?php }
-				if(@$_GET['step']==3){
-					$error = false;
-					$errormsg = null;
+				<legend>MySQL 連線資料</legend>
+				<div class="form-group">
+					<label for="mysql_database">資料庫名稱：</label>
+					<input class="form-control" name="mysql_database" type="text" required="required">
+				</div>
+				<div class="form-group">
+					<label for="mysql_username">連線帳號：</label>
+					<input class="form-control" name="mysql_username" type="text" required="required">
+				</div>
+				<div class="form-group">
+					<label for="mysql_password">連線密碼：</label>
+					<input class="form-control" name="mysql_password" type="text" required="required">
+				</div>
+				<div class="form-group">
+					<label for="mysql_host">MySQL伺服器：</label>
+					<input class="form-control" name="mysql_host" type="text" required="required">
+				</div>
+			</fieldset>
+			<fieldset>
+				<legend>管理員資料</legend>
+				<div class="form-group">
+					<label for="admin_id">管理員帳號：</label>
+					<input class="form-control" name="admin_id" type="text">&nbsp;(留空預設admin)
+				</div>
+				<div class="form-group">
+					<label for="admin_psd">管理員密碼：</label>
+					<input class="form-control" name="admin_psd" type="password">&nbsp;(留空預設admin)
+				</div>
+			</fieldset>
+			<input type="submit" class="btn btn-primary" value="下一步">
+		</form>
+		<?php }elseif($_step==3){
+			$error = false;
+			$errormsg = null;
+			
+			try {
+				if(isset($_POST['mysql_database'])&&($_POST['mysql_database']!='')){
+					$mysql_file = 'Connections/SQL.php';
+					$mysql_sample_file = 'Connections/SQL-sample.php';
+					$mysql_config = vsprintf(file_get_contents($mysql_sample_file), array(
+						addslashes($_POST['mysql_database']),
+						addslashes($_POST['mysql_username']),
+						addslashes($_POST['mysql_password']),
+						addslashes($_POST['mysql_host'])
+					));
+					file_put_contents($mysql_file,$mysql_config);
+					mysqli_connect(addslashes($_POST['mysql_host']),addslashes($_POST['mysql_username']),addslashes($_POST['mysql_password']),addslashes($_POST['mysql_database']));
+				
+					if(mysqli_connect_errno()){
+						$error = true;
+						$errormsg = '資料庫連線失敗<br>'.mysqli_connect_error();
+					}else{
+						require_once('Connections/SQL.php');
 					
-					try {
-						if(isset($_POST['mysql_database'])&&($_POST['mysql_database']!='')){
-							$mysql_file = 'Connections/SQL.php';
-							$mysql_sample_file = 'Connections/SQL-sample.php';
-							$mysql_config = vsprintf(file_get_contents($mysql_sample_file), array(
-								addslashes($_POST['mysql_database']),
-								addslashes($_POST['mysql_username']),
-								addslashes($_POST['mysql_password']),
-								addslashes($_POST['mysql_host'])
-							));
-							file_put_contents($mysql_file,$mysql_config);
-						}
-						
 						if($_POST['admin_id'] == NULL){
-							$admin_id = "admin";
+							$admin_id = 'admin';
 						}else{
 							$admin_id = $_POST['admin_id'];
 						}
@@ -273,56 +278,54 @@ function check_extension($ext){
 						}else{
 							$admin_password = md5(sha1($_POST['admin_psd']));
 						}
+					
+						$query=explode(';',str_replace("\r",'',str_replace("\n",'',file_get_contents('table.sql'))));
+						$query[] = sprintf("INSERT INTO `member` (`username`, `password`, `email`, `web_site`, `avatar`, `rekey`, `level` , `joined` ,`last_login`) VALUES ('%s', '%s', '', '', 'default.png', '%s', '9', now(), now())", $admin_id, $admin_password,hash('sha224',uniqid().time()));
 						
-						mysqli_connect(addslashes($_POST['mysql_host']),addslashes($_POST['mysql_username']),addslashes($_POST['mysql_password']),addslashes($_POST['mysql_database']));
-						
-						if(mysqli_connect_errno()){
-						$error = true;
-						$errormsg = '資料庫連線失敗<br>'.mysqli_connect_error();	
-						}else{
-							require_once('Connections/SQL.php');
-							
-							$query = file('table.sql');
-							$query[] = sprintf("INSERT INTO `member` (`id`, `name`, `password`, `email`, `web_site`, `avatar`, `rekey`, `level`, `joined`,`last_login`) VALUES (1,'%s','%s','admin','admin','../images/default_avatar.png','%s',9,now(),now())", $admin_id, $admin_password,str_shuffle(substr(base64_encode(mt_rand(100,999)).sha1(time().$admin_id.uniqid()),0,20)));
-							
-							
-							foreach($query as $val){
+						foreach($query as $val){
+							if($val!=''){
 								$SQL->query($val);
 							}
 						}
 					}
-					catch (Exception $e) {
-						$error = true;
-						$errormsg = base64_encode(json_encode(array(
-							'type' => 'SQL Insert Error',
-							'line' => __LINE__,
-							'file' => dirname(__FILE__) . ';' . __FILE__,
-							'errormsg' => $e->getMessage(),
-						)));
-					}
-					
-					if($error === false){
-				?>
-				
-					<h2 class="page-title" style="color:green;">『Secret會員系統』安裝成功！</h2>
-					<p>會員系統已安裝成功，為了保障您網站的安全，請在此選擇一種方式來處理此程序。</p>
-					<form name="form1" method="post" action="install.php?step=4">
-						<p><input type="radio" name="radio" id="radio" value="rename" checked="checked">重新命名此安裝程序</p>
-						<p><input type="radio" name="radio" id="radio2" value="unlink">刪除此安裝程序</p>
-						<p><input type="submit" name="button" id="button" value="確定！"></p>
-					</form>
-				<?php
-					}
-					else {
-				?>
-					<h2 class="page-title" style="color:red;">『Secret會員系統』安裝失敗！</h2>
-					<p>Secret會員系統安裝時發生錯誤！</p>
-					<p>參考代碼：</p>
-					<pre id="licenses"><?php echo $errormsg; ?></pre>
-				<?php
-					}
+				}else{
+					$error = true;
+					$errormsg = '您沒有填入完整的MySQL連線資料';
 				}
-				?>
+			}
+			catch (Exception $e) {
+				$error = true;
+				$errormsg = base64_encode(json_encode(array(
+					'type' => 'SQL Insert Error',
+					'line' => __LINE__,
+					'file' => dirname(__FILE__) . ';' . __FILE__,
+					'errormsg' => $e->getMessage(),
+				)));
+			}
+			
+			if($error === false){
+		?>
+		<h3 class="text-success">安裝成功！</h3>
+		<p>Secret Center已安裝成功，為了保障您網站的安全，請在此選擇一種方式來處理此程序。</p>
+		<form name="form1" method="post" action="install.php?step=4">
+			<div class="radio">
+				<label>
+					<input name="radio" type="radio" value="unlink" checked="checked">刪除此安裝程序
+				</label>
+			</div>
+			<div class="radio">
+				<label>
+					<input name="radio" type="radio" value="rename">重新命名此安裝程序
+				</label>
+			</div>
+			<input class="btn btn-primary" type="submit" value="確定！">
+		</form>
+		<?php } else { ?>
+		<h3 class="text-danger">Secret Center安裝失敗！</h3>
+		<p>Secret Center安裝時發生錯誤！</p>
+		<p>參考代碼：</p>
+		<div class="message"><?php echo $errormsg; ?></div>
+		<?php }} ?>
 	</div>
-	</body>
+</body>
 </html>
\ No newline at end of file
diff --git a/licenses.txt b/license.txt
similarity index 99%
rename from licenses.txt
rename to license.txt
index 6ca963f..dd7473a 100644
--- a/licenses.txt
+++ b/license.txt
@@ -1,7 +1,7 @@
                     GNU AFFERO GENERAL PUBLIC LICENSE
                        Version 3, 19 November 2007
 
- Copyright (C) 2012-2015 Secret 會員系統開發團隊 <http://center.gdsecret.com/#team>
+ Copyright (C) 2012-2016 Secret Center開發團隊 <http://center.gdsecret.net/#team>
  Everyone is permitted to copy and distribute verbatim copies
  of this license document, but changing it is not allowed.
 
diff --git a/member.php b/member.php
index e0cb3f2..c33decc 100644
--- a/member.php
+++ b/member.php
@@ -1,4 +1,36 @@
 <?php
+/*
+<Secret Center, open source member management system>
+Copyright (C) 2012-2016 Secret Center開發團隊 <http://center.gdsecret.net/#team>
+
+This program is free software: you can redistribute it and/or modify
+it under the terms of the GNU Affero General Public License as published by
+the Free Software Foundation, version 3.
+
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+GNU Affero General Public License for more details.
+
+You should have received a copy of the GNU Affero General Public License
+along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+Also add information on how to contact you by electronic and paper mail.
+
+  If your software can interact with users remotely through a computer
+network, you should also make sure that it provides a way for users to
+get its source.  For example, if your program is a web application, its
+interface could display a "Source" link that leads users to an archive
+of the code.  There are many ways you could offer source, and different
+solutions will be better for different programs; see section 13 for the
+specific requirements.
+
+  You should also get your employer (if you work as a programmer) or school,
+if any, to sign a "copyright disclaimer" for the program, if necessary.
+For more information on this, and how to apply and follow the GNU AGPL, see
+<http://www.gnu.org/licenses/>.
+*/
+
 require_once('Connections/SQL.php');
 require_once('config.php');
 require_once('include/view.php');
@@ -8,37 +40,28 @@
 	exit;
 }
 
-$view = new View('view/new_theme.html','include/nav.php',$center['site_name'],'會員中心');
-$view->addScript("https://ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js");
-$view->addScript("include/js/channel.js");
+$view = new View('include/theme/default.html','include/nav.php',NULL,$center['site_name'],'會員中心');
 $view->addScript("include/js/notice.js");
 ?>
-<div class="main">
 <?php if((isset($_COOKIE['login']))&&(isset($_GET['login']))){?>
 	<div class="alert alert-success">登入成功！</div>
 <?php } ?>
-	<h2 class="subtitle">會員中心</h2>
-    <div class="row-fluid">
-		<div class="span4">
-			<ul class="nav nav-tabs nav-stacked">
-				<li><a href="account.php">我的帳號</a></li>
-				<li><a href="avatar.php">修改頭像</a></li>
-				<li><a href="chat.php">聊天室</a></li>
-				<li><a href="forum.php">論壇</a></li>
-				<li><a href="file.php">文件夾</a></li>
-				<br class="clearfix" />
-			</ul>
+<h2 class="page-header">會員中心</h2>
+<div class="row">
+	<div class="col-md-4">
+		<div class="list-group">
+			<a href="account.php" class="list-group-item">我的帳號</a>
+			<a href="chat.php" class="list-group-item">聊天室</a>
+			<a href="forum.php" class="list-group-item">論壇</a>
 		</div>
-		<div class="span8">
-			<?php if($center['member']['message']!=''){ ?>
-			<div class="well">
-			<?php echo $center['member']['message']; ?>
-			</div>
-			<?php } ?>
+	</div>
+	<div class="col-md-8">
+		<?php if($center['member']['message']!=''){ ?>
+		<div class="well">
+		<?php echo $center['member']['message']; ?>
 		</div>
-    </div>
-
-
+		<?php } ?>
+	</div>
 </div>
 <?php
 	$view->render();
diff --git a/mypost.php b/mypost.php
index a9e3087..4bbbc1b 100644
--- a/mypost.php
+++ b/mypost.php
@@ -1,4 +1,36 @@
 <?php
+/*
+<Secret Center, open source member management system>
+Copyright (C) 2012-2016 Secret Center開發團隊 <http://center.gdsecret.net/#team>
+
+This program is free software: you can redistribute it and/or modify
+it under the terms of the GNU Affero General Public License as published by
+the Free Software Foundation, version 3.
+
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+GNU Affero General Public License for more details.
+
+You should have received a copy of the GNU Affero General Public License
+along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+Also add information on how to contact you by electronic and paper mail.
+
+  If your software can interact with users remotely through a computer
+network, you should also make sure that it provides a way for users to
+get its source.  For example, if your program is a web application, its
+interface could display a "Source" link that leads users to an archive
+of the code.  There are many ways you could offer source, and different
+solutions will be better for different programs; see section 13 for the
+specific requirements.
+
+  You should also get your employer (if you work as a programmer) or school,
+if any, to sign a "copyright disclaimer" for the program, if necessary.
+For more information on this, and how to apply and follow the GNU AGPL, see
+<http://www.gnu.org/licenses/>.
+*/
+
 require_once('Connections/SQL.php');
 require_once('config.php');
 require_once('include/view.php');
@@ -8,33 +40,26 @@
     exit;
 }
 
-$view = new View('view/new_theme.html','include/nav.php',$center['site_name'],'我的帖子');
-$view->addCSS("include/js/cleditor/jquery.cleditor.css");
-$view->addScript("https://ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js");
-$view->addScript("include/js/channel.js");
-$view->addScript("include/js/notice.js");
-
 if(isset($_GET['del'])&& abs($_GET['del'])!=''){
-	$del[] = sprintf("DELETE FROM forum WHERE id = '%d'",abs($_GET['del']));
-    $del[] = sprintf("DELETE FROM forum_reply WHERE post = '%d'",abs($_GET['del']));
-    foreach($del as $val){
+	$_del[] = sprintf("DELETE FROM `forum` WHERE `id` = '%d'",abs($_GET['del']));
+    $_del[] = sprintf("DELETE FROM `forum_reply` WHERE post_id = '%d'",abs($_GET['del']));
+    foreach($_del as $val){
 		$SQL->query($val);
 	}
 	$_GET['delok']=true;
 }
 
 
+$_mypost = sc_get_result("SELECT * FROM `forum` WHERE `author` = '%s' ORDER BY `id` DESC",array($_SESSION['Center_Id']));
 
-$mypost['query'] = $SQL->query("SELECT * FROM forum WHERE posted = '%s' ORDER BY `id` DESC",array($_SESSION['Center_Username']));
-$mypost['row'] = $mypost['query']->fetch_assoc();
-$mypost['num_rows'] = $mypost['query']->num_rows;
+$view = new View('include/theme/default.html','include/nav.php',NULL,$center['site_name'],'我的帖子');
+$view->addScript("include/js/notice.js");
 ?>
-<div class="main">
 <?php if(isset($_GET['del'])){?>
 	<div class="alert alert-success">刪除成功！</div>
 <?php } ?>
-<h2>我的帖子</h2>
-<?php if($mypost['num_rows'] == 0){ ?>
+<h2 class="page-header">我的帖子</h2>
+<?php if($_mypost['num_rows'] == 0){ ?>
 	<div class="alert alert-success">沒有帖子！趕快去<a href="forum.php?newpost">發表帖子</a>吧。</div>
 <?php }else{ ?>
 <table class="table table-striped table-hover">
@@ -50,42 +75,38 @@
 	</thead>
 	<tbody>
 <?php do{
-	$mypost_reply['query'] = $SQL->query("SELECT * FROM forum_reply WHERE post = '%d' ORDER BY `ptime` DESC",array($mypost['row']['id']));
-	$mypost_reply['row'] = $mypost_reply['query']->fetch_assoc();
-	$mypost_reply['num_rows'] = $mypost_reply['query']->num_rows;
-	
-	
-	$_block = $SQL->query("SELECT * FROM `forum_block` WHERE `id`='%d'",array($mypost['row']['block']))->fetch_assoc();
+	$_reply = sc_get_result("SELECT * FROM `forum_reply` WHERE `post_id` = '%d' ORDER BY `mktime` DESC",array($_mypost['row']['id']));
+	$_author = sc_get_result("SELECT `username` FROM `member` WHERE `id` = '%d'",array($_reply['row']['author']));
+	$_block = $SQL->query("SELECT * FROM `forum_block` WHERE `id`='%d'",array($_mypost['row']['block']))->fetch_assoc();
 ?>
 <tr>
 	<td>
-	<a href="forumview.php?id=<?php echo $mypost['row']['id']; ?>"><?php echo $mypost['row']['post_title']; ?></a>
-	<?php if($mypost['row']['level']>1){ ?>
+	<a href="forumview.php?id=<?php echo $_mypost['row']['id']; ?>"><?php echo $_mypost['row']['title']; ?></a>
+	<?php if($_mypost['row']['level']>1){ ?>
 	&nbsp;&nbsp;
-	<span class="label"><?php echo sc_member_level($mypost['row']['level']); ?></span>
+	<span class="label label-default"><?php echo sc_member_level($_mypost['row']['level']); ?></span>
 	<?php } ?>
 	</td>
 	<td><?php echo $_block['blockname']; ?></td>
-	<td><?php echo $mypost_reply['num_rows']; ?></td>
+	<td><?php echo $_reply['num_rows']; ?></td>
 	<td>
-	<?php if($mypost_reply['num_rows']>0){
-		echo '<div style="line-height:0.8em;font-size:92%;">'.$mypost_reply['row']['posted'].'<br><span style="font-size:66%;">'.date('Y-m-d H:i',strtotime($mypost_reply['row']['ptime'])).'</span></div>';
+	<?php if($_reply['num_rows']>0){
+		echo '<div style="line-height:0.8em;font-size:92%;">'.$_author['row']['username'].'<br><span style="font-size:66%;">'.date('Y-m-d H:i',strtotime($_reply['row']['mktime'])).'</span></div>';
 		}else{
 			echo '無';
 		}
 	?>
 	</td>
-	<td><?php echo $mypost['row']['ptime']; ?></td>
+	<td><?php echo $_mypost['row']['mktime']; ?></td>
 	<td>
-		<a href="forumedit.php?post&id=<?php echo $mypost['row']['id']; ?>" class="btn btn-info btn-small">編輯</a>
-		<a href="javascript:if(confirm('確定刪除？'))location='mypost.php?del=<?php echo $mypost['row']['id']; ?>'" class="btn btn-danger btn-small">刪除</a>
+		<a href="forumedit.php?post&id=<?php echo $_mypost['row']['id']; ?>" class="btn btn-info btn-sm">編輯</a>
+		<a href="javascript:if(confirm('確定刪除？'))location='mypost.php?del=<?php echo $_mypost['row']['id']; ?>'" class="btn btn-danger btn-sm">刪除</a>
 	</td>
 </tr>
-<?php }while ($mypost['row'] = $mypost['query']->fetch_assoc()); ?>
+<?php }while ($_mypost['row'] = $_mypost['query']->fetch_assoc()); ?>
 </tbody>
 </table>
 <?php } ?>
-</div>
 <?php
 $view->render();
 ?>
\ No newline at end of file
diff --git a/readme.txt b/readme.txt
index 471056b..18d906c 100644
--- a/readme.txt
+++ b/readme.txt
@@ -1,79 +1,75 @@
-==================================================================================
-『Secret會員系統』由 Secret 會員系統開發團隊 (http://center.gdsecret.com/#team)製作！
-並使用 GNU Affero General Public License 3.0 (AGPL 3.0) 授權。
-==================================================================================
+===============================================
+Secret Center 由 Secret Center 開發團隊 (http://center.gdsecret.net/#team) 製作
+使用 GNU AFFERO GENERAL PUBLIC LICENSE 3.0 (AGPL 3.0) 授權。
+===============================================
 
-安裝方法
-1.上傳文件後，執行http://你的網址/install.php
-2.填入相關資料
-3.安裝成功！
+Secret Center
 
------------------------------------------------
-
-後台位置：http://你的網址/admin/index.php
+內建聊天室、論壇、通知以及後臺管理的會員系統
 
-詳細資料(如：網站名稱)，請到config.php裡修改
+官方網站：http://center.gdsecret.net/
 
 -----------------------------------------------
 
-12月19日(8.1版)更新資訊
+安裝
 
-主要更新：
-　　◎升級HTML Purifier至4.7.0版
-　　◎預設的config增加對docx,pptx,xlsx支援
-　　◎頭像尺寸更改為六級制
+1. 上傳文件後，執行 install.php
+2. 填入相關資料
+3. 安裝成功！
 
+-----------------------------------------------
 
-論壇更新：
-　　◎修正論壇搜尋可以直接送出的BUG
+使用
 
+* 後台位置：http://你的網址/admin/index.php
+* 詳細資料(如：網站名稱)：config.php
 
-文件夾更新：
-　　◎升級jQuery File Upload至9.11.2版
-　　◎檔案管理改用AJAX
-　　◎管理選單雙擊檔案也可觸發
+-----------------------------------------------
 
+從Secret會員系統8.1升級
 
-通知系統更新：
-　　◎節省資料傳輸
-　　◎通知按鈕使用 e.preventDefault();
+1. 備份 Connections/SQL.php 及資料庫
+2. 上傳新版，不要覆蓋 Connections/SQL.php
+3. 執行 upgrade.php
+4. 升級成功！
 
+-----------------------------------------------
 
-後台更新：
-　　◎頭像上傳可設定是否壓縮圖片為高度最高 240px、畫質 80 的 JPG
+其他
 
------------------------------------------------
+本專案所引用的其他開放原始碼軟體：
 
-升級方法(8.0 to 8.1)
+Bootstrap v3.3.6
+授權：MIT License  
+官方網站：http://getbootstrap.com/
 
-1.覆蓋所有檔案
-2.修改Connections/SQL.php的連線資訊
-3.升級完成！
+CLEditor
+授權：MIT License  
+官方網站：http://premiumsoftware.net/cleditor/
 
 -----------------------------------------------
 
-本專案所引用的其他開放原始碼軟體：
+Secret Center 9.0 (3月30日) 更新資訊
 
-CLEditor v1.4.5
-授權：MIT License
-官方網站：http://premiumsoftware.net/cleditor/
+主要更新：
+　　◎程式全數重構
+　　◎移除文件夾
+　　◎升級至 Bootstrap 3.x 系列
 
 
-Bootstrap v2.3.2
-授權：Apache License v2.0
-官方網站：http://getbootstrap.com/2.3.2/
+聊天室更新：
+　　◎增加『@』功能
 
 
-HTML Purifier v4.7.0
-授權：LGPL v2.1+
-官方網站：http://htmlpurifier.org/
 
+論壇更新：
+　　◎回覆增加『@』功能
 
-jQuery File Upload v9.11.2
-授權：MIT License
-官方網站：https://blueimp.github.io/jQuery-File-Upload/
 
+通知系統更新：
+　　◎節省資料傳輸
+　　◎通知改用 Ajax Long Polling
 
-jQuery Validation Plugin v1.14.0
-授權：MIT License
-官方網站：http://jqueryvalidation.org/
\ No newline at end of file
+
+後台更新：
+　　◎增加更多網站樣式設定
\ No newline at end of file
diff --git a/register.php b/register.php
index 5924cc1..773cd7d 100644
--- a/register.php
+++ b/register.php
@@ -1,12 +1,40 @@
 <?php
+/*
+<Secret Center, open source member management system>
+Copyright (C) 2012-2016 Secret Center開發團隊 <http://center.gdsecret.net/#team>
+
+This program is free software: you can redistribute it and/or modify
+it under the terms of the GNU Affero General Public License as published by
+the Free Software Foundation, version 3.
+
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+GNU Affero General Public License for more details.
+
+You should have received a copy of the GNU Affero General Public License
+along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+Also add information on how to contact you by electronic and paper mail.
+
+  If your software can interact with users remotely through a computer
+network, you should also make sure that it provides a way for users to
+get its source.  For example, if your program is a web application, its
+interface could display a "Source" link that leads users to an archive
+of the code.  There are many ways you could offer source, and different
+solutions will be better for different programs; see section 13 for the
+specific requirements.
+
+  You should also get your employer (if you work as a programmer) or school,
+if any, to sign a "copyright disclaimer" for the program, if necessary.
+For more information on this, and how to apply and follow the GNU AGPL, see
+<http://www.gnu.org/licenses/>.
+*/
+
 require_once('Connections/SQL.php');
 require_once('config.php');
 require_once('include/view.php');
 
-$view = new View('view/new_theme.html','include/nav.php',$center['site_name'],'註冊');
-$view->addScript("https://ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js");
-$view->addScript("include/js/jquery.validate.js");
-
 if($center['register'] == 1){
 	if(isset($_POST['username']) && trim($_POST['username']) != ''){
 		if(strtoupper($_POST['captcha']) != strtoupper($_SESSION['captcha'])){
@@ -25,89 +53,87 @@
 		}
 	}
 }
+
+$view = new View('include/theme/default.html','include/nav.php',NULL,$center['site_name'],'註冊');
 ?>
-<script type="text/javascript">
+<script>
 $(function(){
-	$("#form1").validate({
-		rules:{
-			username:{required:true},
-			password:{required:true},
-			authpassword:{required:true,equalTo: "#password"},
-			email:{required:true,email:true},
-			web_site:{url:true},
-			captcha:{required:true}
-		},
-		messages:{
-			authpassword:{equalTo: "密碼不一致"},
-			captcha:{required:"請填入驗證碼"}
+	$('input[name="authpassword"]').on('keyup', function(){
+		var $_error_msg=$(this).parent().siblings('.help-block');
+		if($(this).val()!=$('input[name="password"]').val()){
+			$_error_msg.html('<span class="text-danger">密碼不一致</span>'); 
+			$('input[type="submit"]').attr('disabled','disabled');
+		}else{
+			$_error_msg.html('');
+			$('input[type="submit"]').attr('disabled',false);
 		}
-	});
+	}).parent().parent().append('<div class="col-sm-3 help-block"></div>');
+	
 	$('.captcha').on('click', function(e){
 		e.preventDefault();
 		$(this).attr('src', 'include/captcha.php?_=' + (new Date).getTime());
 	});
 });
 </script>
-
 <?php
 if($center['register'] == 1){
 	if(isset($_GET['requsername'])){
 ?>
-	<div class="alert alert-error">此帳號或電子信箱已被使用！</div>
+	<div class="alert alert-danger">此帳號或電子信箱已被使用！</div>
 <?php }
 	if(isset($_GET['captcha'])){
 ?>
-	<div class="alert alert-error">請檢查驗證碼！</div>
+	<div class="alert alert-danger">請檢查驗證碼！</div>
 <?php }
 ?>
-<form id="form1" action="register.php" method="POST" class="form-horizontal">
-	<h2>註冊</h2>
-	<div class="control-group">
-		<label class="control-label" for="username">* 帳號：</label>
-		<div class="controls">	
-			<input name="username" type="text" class="input-large" id="username" maxlength="20" required="required">
+<h2 class="page-header">註冊</h2>
+<form class="form-horizontal form-sm" action="register.php" method="POST">
+	<div class="form-group">
+		<label class="col-sm-3 control-label" for="username">* 帳號：</label>
+		<div class="col-sm-6">	
+			<input name="username" type="text" class="form-control" maxlength="20" required="required">
 		</div>
 	</div>
-	<div class="control-group">
-		<label class="control-label" for="username">* 密碼：</label>
-		<div class="controls">
-			<input name="password" type="password" class="input-large" id="password" maxlength="30" required="required">
+	<div class="form-group">
+		<label class="col-sm-3 control-label" for="username">* 密碼：</label>
+		<div class="col-sm-6">
+			<input class="form-control" name="password" type="password" maxlength="30" required="required">
 		</div>
 	</div>
-	<div class="control-group">
-		<label class="control-label" for="authpassword">* 確認密碼：</label>
-		<div class="controls">
-			<input name="authpassword" type="password" class="input-large" id="authpassword" maxlength="30" required="required">
+	<div class="form-group">
+		<label class="col-sm-3 control-label" for="authpassword">* 確認密碼：</label>
+		<div class="col-sm-6">
+			<input class="form-control" name="authpassword" type="password" required="required">
 		</div>
 	</div>
-	<div class="control-group">
-		<label class="control-label" for="email">* 電子信箱：</label>
-		<div class="controls">
-			<input name="email" type="text" id="email" class="input-large" value="" maxlength="255" required="required">
+	<div class="form-group">
+		<label class="col-sm-3 control-label" for="email">* 電子信箱：</label>
+		<div class="col-sm-6">
+			<input class="form-control" name="email" type="email" maxlength="255" required="required">
 		</div>
 	</div>
-	<div class="control-group">
-		<label class="control-label" for="web_site">個人網站：</label>
-		<div class="controls">
-			<input name="web_site" type="text" id="web_site" class="input-large" maxlength="255" />
+	<div class="form-group">
+		<label class="col-sm-3 control-label" for="web_site">個人網站：</label>
+		<div class="col-sm-6">
+			<input class="form-control" name="web_site" type="text" maxlength="255" />
 		</div>
 	</div>
-	<div class="control-group">
-		<label class="control-label" for="captcha">* 驗證碼：</label>
-		<div class="controls">
+	<div class="form-group">
+		<label class="col-sm-3 control-label" for="captcha">* 驗證碼：</label>
+		<div class="col-sm-6">
 			<img src="include/captcha.php" class="captcha" title="按圖更換驗證碼"/>
-			<input name="captcha" type="text" id="captcha" size="10" maxlength="10" required="required">
+			<input class="form-control" name="captcha" type="text" size="10" maxlength="10" required="required">
 		</div>
 	</div>
-	<div class="control-group">
-		<div class="controls">
-			<input id="button" name="button" class="btn btn-success btn-large" type="submit" value="送出註冊" />
+	<div class="form-group">
+		<div class="col-sm-offset-3 col-sm-6">
+			<input class="btn btn-success btn-lg" type="submit" value="送出註冊">
 		</div>
 	</div>
+</form>
 <?php } else { ?>
 	<div class="alert alert-error">目前關閉註冊！</div>
 <?php } ?>
-</form>
 <?php
 	$view->render();
 ?>
\ No newline at end of file
diff --git a/style-sample.css b/style-sample.css
index 35a58b5..d5aaa2b 100644
--- a/style-sample.css
+++ b/style-sample.css
@@ -1,14 +1,14 @@
 html, body {
-	font-size:%spx;
+	font-size:%dpx;
 	width: 100%;
 	height: 100%;
 	background-color: %s;
 	color: rgb(0,0,0);
-	line-height:%spx;
+	line-height:%dpx;
 	font-family:微軟正黑體,新細明體,Arial;
 }
 body {
-	margin-top: 70px;
+	padding-top: 70px;
 }
 h1,h2,h3{
 	font-weight: normal;
@@ -19,25 +19,17 @@ ul li ul{
 ul li{
 	line-height:1.65em;
 }
-#nav,#nav li{
-	line-height:2em;
-}
-#nav .navbar-inner{
-	width: auto;
-	padding: 0 20px;
-}
-.content{
-	min-height:350px;
-}
-.container{
-	width:%s%;
+#main{
+	width:%d%;
 	margin:0 auto;
-	/*margin-left:-1em;*/
 	background-color: rgba(255,255,255,0.7);
 	padding:2em;
 	letter-spacing:0.2px;
 	border-radius:0.25em;
 }
+#main .content{
+	min-height:350px;
+}
 footer{
 	margin-top:5em;
 	font-size:78%;
@@ -49,96 +41,18 @@ footer{
 .clearfix {
 	clear: both;
 }
-.avatar,.avatar-medium{
+.avatar,.avatar-md{
 	width:80px;
 }
-.avatar-xxlarge{
-	width:200px;
-}
-.avatar-xlarge{
-	width:150px;
+.avatar-lg{
+	width:120px;
 }
-.avatar-large{
-	width:100px;
-}
-.avatar-small{
+.avatar-sm{
 	width:50px;
 }
-.avatar-mini{
+.avatar-xs{
 	width:30px;
 }
-.file {
-	list-style: none;
-	list-style-type: none;
-	padding: 0;
-	margin: 0;
-}
-
-.file li {
-	float: left;
-	-webkit-box-sizing: border-box;
-	-moz-box-sizing: border-box;
-	box-sizing: border-box;
-	padding: 0.5em;
-	margin: 0.5em;
-	background: #fff;
-	border:2px solid white;
-	-webkit-border-radius: 0.25em;
-	-moz-border-radius: 0.25em;
-	border-radius: 0.25em;
-	-webkit-box-shadow: 1px 1px 5px rgba(0,0,0,0.5);
-	-moz-box-shadow: 1px 1px 5px rgba(0,0,0,0.5);
-	box-shadow: 1px 1px 5px rgba(0,0,0,0.5);
-	min-width: 15%;
-    text-align:center;
-}
-.file li:hover {
-	border:2px solid #4993DE;
-}
-.file li img {
-	height: 80px;
-	margin:5px auto;
-	display: block;
-	-moz-user-select: none;
-	-webkit-user-select: none;
-}
-.chat {
-	padding: 1em;
-}
-
-.msg-pane {
-	 background: #FFFFFF;
-	 font-size: 1.3em;
-	 width: auto;
-	 max-height: 450px;
-	 padding: 1em;
-	 overflow: auto;
-	 margin-bottom: 1em;
-	 line-height: 1.5em;
-}
-
-.msg {
-	border-bottom: #eee 1px solid;
-	padding: 0.2em 0.5em;
-	font-size: 0.85em;
-}
-
-.msg .n {
-	color: #B0B;
-	font-weight: bold;
-	margin-right: 1.5em;
-}
-
-.msg .c {
-	color: #00001f;
-}
-
-.msg .t {
-	color: #151515;
-	font-style: italic;
-	text-align: right;
-	float: right;
-}
 .post {
 	background: #fff;
 	border-bottom: #aaa 1px solid;
@@ -147,62 +61,15 @@ footer{
 	margin-bottom: 2em;
 	/*box-shadow:0px 0px 3px rgba(200,200,200,0.5);*/
 }
-.post  .con{
-	margin:1em 0 1em 0;
-	padding:0.3em;
-	min-height:5em;
-}
-.con a {
-	font-size: 1em;
-	display: inline;
-}
-
-.con span {
-	margin: 0 !important;
-	padding: 0 !important;
-	display: inline !important;
-	border: none !important;
-}
-#upload {
-	margin-top: 1.5em;
-}
-.context-menu {
-	position: absolute;
-	display: none;
+.post .con {
 	padding: 0.5em;
-	background: #fff;
-	-webkit-border-radius: 0.25em;
-	-moz-border-radius: 0.25em;
-	border-radius: 0.25em;
-	-webkit-box-sizing: border-box;
-	-moz-box-sizing: border-box;
-	box-sizing: border-box;
-	-webkit-box-shadow: 0 0 5px rgba(0,0,0,0.5);
-	-moz-box-shadow: 0 0 5px rgba(0,0,0,0.5);
-	box-shadow: 0 0 5px rgba(0,0,0,0.5);
-	-moz-user-select: none;
-	-webkit-user-select: none;
-}
-
-.context-menu span {
-	display: block;
-	padding: 0.1em 0.5em;
-	color: #000;
-	cursor:pointer;
-}
-
-.context-menu span [class^="icon-"]{
-	margin-right:5px;
-	vertical-align:middle;
+	min-height:3em;
 }
 form .captcha {
 	margin: 0.5em 0;
 	display: block;
 }
-form label.error {
-	color: #ff3100;
-	margin-left: 0.7em;
-}
+
 
 #notifs-button {
 	background: #fff;
@@ -212,7 +79,6 @@ form label.error {
 	border-radius: 0.25em;
 	border: #000 1px solid;
 	float: right;
-	display: none;
 }
 
 #notifs-button a {
@@ -234,7 +100,7 @@ form label.error {
 	position: absolute;
 	top: 0;
 	left: 0;
-	width: 22%;
+	width: 25%;
 	background: #fff;
 	color: #000;
 	-webkit-border-radius: 0.25em;
@@ -263,56 +129,68 @@ form label.error {
 }
 #notifs .notifications img.avatar{
 	float:left;
+	margin-right:8px;
 }
 #notifs a {
 	color: #000;
-	float:left;
 }
-
 #notifs .notifications.new {
 	background: rgb(234,234,255);
 }
-.login-form h2{
-	margin-bottom:1.5em;
+
+.form-sm{
+	max-width:600px;
 }
-#uploader{
-	text-align: center;
+.form-xs{
+	max-width:400px;
 }
-#uploader #drop{
-	width:100%;
-	border: 3px dashed gray;
-	padding:40px 0 40px 0;
-	margin:15px 0 15px 0;
-	font-size:120%;
+#loginbox{
+	margin-top:50px;
 }
-#uploader .item div{
-	width:32%;
-	float:left;
-	margin:20px 10px  10px 0;
-	padding:5px -10px 5px 0;
-	background-color:rgba(255,255,255,0.8);
-	border:1px solid gary;
-	overflow:hidden;
+#loginbox .form-control{
+	max-width:240px;
 }
-#uploader .item .uploading{
-	box-shadow:0px 0px 10px rgb(255,255,100);
-	border:1px solid rgb(255,255,50);
+#loginbox .form-group{
+	margin-bottom:20px;
 }
-#uploader .item .uploaded{
-	box-shadow:0px 0px 10px rgb(100,255,100);
-	border:1px solid rgb(50,255,50);
+
+
+#chat .msg-panel{
+	color:%s;
+	background-color:%s;
+	padding: 0.3em 0.5em 0.3em 0.5em;
+	max-height: 450px;
+	overflow: auto;
 }
-#uploader .item .error{
-	box-shadow:0px 0px 10px red;
-	border:1px solid red;
+#chat .msg-panel+form{
+	margin-top:1em;
+}
+#chat .msg{
+	padding:0.5em;
+	font-size:106%;
+}
+#chat .msg+.msg{
+	border-top: #eee 1px solid;
+}
+#chat .msg .chat-author{
+	color: #B0B;
+	font-weight: bold;
+	margin-right:1em;
+}
+#chat .msg .chat-mktime{
+	text-align:right;
+	float: right;
 }
 
+
+/*覆蓋BS 3的CSS 開始*/
+.page-header{
+	margin-top:0;
+}
+/*覆蓋BS 3的CSS 結束*/
+
 @media screen and (max-width:768px){
-	body {
-		margin: 0;
-		padding: 0;
-	}
-	.container{
+	#main{
 		width:100%;
 		-moz-box-sizing:border-box;
 		-webkit-box-sizing:border-box;
diff --git a/style.css b/style.css
index 07bb332..a56b1d9 100644
--- a/style.css
+++ b/style.css
@@ -4,11 +4,11 @@ html, body {
 	height: 100%;
 	background-color: #dcf0ff;
 	color: rgb(0,0,0);
-	line-height:23px;
+	line-height:24px;
 	font-family:微軟正黑體,新細明體,Arial;
 }
 body {
-	margin-top: 70px;
+	padding-top: 70px;
 }
 h1,h2,h3{
 	font-weight: normal;
@@ -19,25 +19,17 @@ ul li ul{
 ul li{
 	line-height:1.65em;
 }
-#nav,#nav li{
-	line-height:2em;
-}
-#nav .navbar-inner{
-	width: auto;
-	padding: 0 20px;
-}
-.content{
-	min-height:350px;
-}
-.container{
-	width:75%;
+#main{
+	width:80%;
 	margin:0 auto;
-	/*margin-left:-1em;*/
 	background-color: rgba(255,255,255,0.7);
 	padding:2em;
 	letter-spacing:0.2px;
 	border-radius:0.25em;
 }
+#main .content{
+	min-height:350px;
+}
 footer{
 	margin-top:5em;
 	font-size:78%;
@@ -49,96 +41,18 @@ footer{
 .clearfix {
 	clear: both;
 }
-.avatar,.avatar-medium{
+.avatar,.avatar-md{
 	width:80px;
 }
-.avatar-xxlarge{
-	width:200px;
-}
-.avatar-xlarge{
-	width:150px;
+.avatar-lg{
+	width:120px;
 }
-.avatar-large{
-	width:100px;
-}
-.avatar-small{
+.avatar-sm{
 	width:50px;
 }
-.avatar-mini{
+.avatar-xs{
 	width:30px;
 }
-.file {
-	list-style: none;
-	list-style-type: none;
-	padding: 0;
-	margin: 0;
-}
-
-.file li {
-	float: left;
-	-webkit-box-sizing: border-box;
-	-moz-box-sizing: border-box;
-	box-sizing: border-box;
-	padding: 0.5em;
-	margin: 0.5em;
-	background: #fff;
-	border:2px solid white;
-	-webkit-border-radius: 0.25em;
-	-moz-border-radius: 0.25em;
-	border-radius: 0.25em;
-	-webkit-box-shadow: 1px 1px 5px rgba(0,0,0,0.5);
-	-moz-box-shadow: 1px 1px 5px rgba(0,0,0,0.5);
-	box-shadow: 1px 1px 5px rgba(0,0,0,0.5);
-	min-width: 15%;
-    text-align:center;
-}
-.file li:hover {
-	border:2px solid #4993DE;
-}
-.file li img {
-	height: 80px;
-	margin:5px auto;
-	display: block;
-	-moz-user-select: none;
-	-webkit-user-select: none;
-}
-.chat {
-	padding: 1em;
-}
-
-.msg-pane {
-	 background: #FFFFFF;
-	 font-size: 1.3em;
-	 width: auto;
-	 max-height: 450px;
-	 padding: 1em;
-	 overflow: auto;
-	 margin-bottom: 1em;
-	 line-height: 1.5em;
-}
-
-.msg {
-	border-bottom: #eee 1px solid;
-	padding: 0.2em 0.5em;
-	font-size: 0.85em;
-}
-
-.msg .n {
-	color: #B0B;
-	font-weight: bold;
-	margin-right: 1.5em;
-}
-
-.msg .c {
-	color: #00001f;
-}
-
-.msg .t {
-	color: #151515;
-	font-style: italic;
-	text-align: right;
-	float: right;
-}
 .post {
 	background: #fff;
 	border-bottom: #aaa 1px solid;
@@ -147,61 +61,15 @@ footer{
 	margin-bottom: 2em;
 	/*box-shadow:0px 0px 3px rgba(200,200,200,0.5);*/
 }
-.post  .con{
-	margin:1em 0 1em 0;
-	padding:0.3em;
-	min-height:5em;
-}
-.con a {
-	font-size: 1em;
-	display: inline;
-}
-
-.con span {
-	margin: 0 !important;
-	padding: 0 !important;
-	display: inline !important;
-	border: none !important;
-}
-#upload {
-	margin-top: 1.5em;
-}
-.context-menu {
-	position: absolute;
-	display: none;
+.post .con {
 	padding: 0.5em;
-	background: #fff;
-	-webkit-border-radius: 0.25em;
-	-moz-border-radius: 0.25em;
-	border-radius: 0.25em;
-	-webkit-box-sizing: border-box;
-	-moz-box-sizing: border-box;
-	box-sizing: border-box;
-	-webkit-box-shadow: 0 0 5px rgba(0,0,0,0.5);
-	-moz-box-shadow: 0 0 5px rgba(0,0,0,0.5);
-	box-shadow: 0 0 5px rgba(0,0,0,0.5);
-	-moz-user-select: none;
-	-webkit-user-select: none;
-}
-
-.context-menu span {
-	display: block;
-	padding: 0.1em 0.5em;
-	color: #000;
-	cursor:pointer;
-}
-.context-menu span [class^="icon-"]{
-	margin-right:5px;
-	vertical-align:middle;
+	min-height:3em;
 }
 form .captcha {
 	margin: 0.5em 0;
 	display: block;
 }
-form label.error {
-	color: #ff3100;
-	margin-left: 0.7em;
-}
+
 
 #notifs-button {
 	background: #fff;
@@ -211,7 +79,6 @@ form label.error {
 	border-radius: 0.25em;
 	border: #000 1px solid;
 	float: right;
-	display: none;
 }
 
 #notifs-button a {
@@ -233,7 +100,7 @@ form label.error {
 	position: absolute;
 	top: 0;
 	left: 0;
-	width: 22%;
+	width: 25%;
 	background: #fff;
 	color: #000;
 	-webkit-border-radius: 0.25em;
@@ -262,56 +129,68 @@ form label.error {
 }
 #notifs .notifications img.avatar{
 	float:left;
+	margin-right:8px;
 }
 #notifs a {
 	color: #000;
-	float:left;
 }
-
 #notifs .notifications.new {
 	background: rgb(234,234,255);
 }
-.login-form h2{
-	margin-bottom:1.5em;
+
+.form-sm{
+	max-width:600px;
 }
-#uploader{
-	text-align: center;
+.form-xs{
+	max-width:400px;
 }
-#uploader #drop{
-	width:100%;
-	border: 3px dashed gray;
-	padding:40px 0 40px 0;
-	margin:15px 0 15px 0;
-	font-size:120%;
+#loginbox{
+	margin-top:50px;
 }
-#uploader .item div{
-	width:32%;
-	float:left;
-	margin:20px 10px  10px 0;
-	padding:5px -10px 5px 0;
-	background-color:rgba(255,255,255,0.8);
-	border:1px solid gary;
-	overflow:hidden;
+#loginbox .form-control{
+	max-width:240px;
 }
-#uploader .item .uploading{
-	box-shadow:0px 0px 10px rgb(255,255,100);
-	border:1px solid rgb(255,255,50);
+#loginbox .form-group{
+	margin-bottom:20px;
 }
-#uploader .item .uploaded{
-	box-shadow:0px 0px 10px rgb(100,255,100);
-	border:1px solid rgb(50,255,50);
+
+
+#chat .msg-panel{
+	color:#000000;
+	background-color:#ffffff;
+	padding: 0.3em 0.5em 0.3em 0.5em;
+	max-height: 450px;
+	overflow: auto;
 }
-#uploader .item .error{
-	box-shadow:0px 0px 10px red;
-	border:1px solid red;
+#chat .msg-panel+form{
+	margin-top:1em;
+}
+#chat .msg{
+	padding:0.5em;
+	font-size:106%;
+}
+#chat .msg+.msg{
+	border-top: #eee 1px solid;
+}
+#chat .msg .chat-author{
+	color: #B0B;
+	font-weight: bold;
+	margin-right:1em;
+}
+#chat .msg .chat-mktime{
+	text-align:right;
+	float: right;
 }
 
-@media screen and (max-width:600px){
-	body {
-		margin: 0;
-		padding: 0;
-	}
-	.container{
+
+/*覆蓋BS 3的CSS 開始*/
+.page-header{
+	margin-top:0;
+}
+/*覆蓋BS 3的CSS 結束*/
+
+%;media screen and (max-width:768px){
+	#main{
 		width:100%;
 		-moz-box-sizing:border-box;
 		-webkit-box-sizing:border-box;
diff --git a/table.sql b/table.sql
index 1210f1b..dce5be1 100644
--- a/table.sql
+++ b/table.sql
@@ -1,17 +1 @@
-SET NAMES utf8;
-SET time_zone = '+00:00';
-SET foreign_key_checks = 0;
-SET sql_mode = 'NO_AUTO_VALUE_ON_ZERO';
-DROP TABLE IF EXISTS `chat`;
-DROP TABLE IF EXISTS `forum`;
-DROP TABLE IF EXISTS `forum_block`;
-DROP TABLE IF EXISTS `forum_reply`;
-DROP TABLE IF EXISTS `member`;
-DROP TABLE IF EXISTS `notice`;
-CREATE TABLE `chat` (`id` mediumint(9) NOT NULL AUTO_INCREMENT, `name` varchar(30) COLLATE utf8_unicode_ci NOT NULL, `data` varchar(255) COLLATE utf8_unicode_ci NOT NULL, `ptime` datetime NOT NULL, PRIMARY KEY (`id`)) ENGINE=MyISAM DEFAULT CHARSET=utf8 COLLATE=utf8_unicode_ci;
-CREATE TABLE `forum` (`id` mediumint(9) NOT NULL AUTO_INCREMENT, `post_title` varchar(100) COLLATE utf8_unicode_ci DEFAULT NULL, `post` text COLLATE utf8_unicode_ci NOT NULL, `block` int(11) NOT NULL, `posted` varchar(40) COLLATE utf8_unicode_ci NOT NULL, `level` int(11) COLLATE utf8_unicode_ci NOT NULL, `ptime` datetime NOT NULL, PRIMARY KEY (`id`)) ENGINE=MyISAM DEFAULT CHARSET=utf8 COLLATE=utf8_unicode_ci;
-CREATE TABLE `forum_block` ( `id` int(11) NOT NULL AUTO_INCREMENT, `blockname` varchar(255) COLLATE utf8_unicode_ci NOT NULL, `position` tinyint(4) NOT NULL, `ptime` datetime NOT NULL, PRIMARY KEY (`id`)) ENGINE=MyISAM DEFAULT CHARSET=utf8 COLLATE=utf8_unicode_ci;
-CREATE TABLE `forum_reply` ( `id` mediumint(9) NOT NULL AUTO_INCREMENT, `post` mediumint(9) NOT NULL, `reply` text COLLATE utf8_unicode_ci NOT NULL, `ptime` datetime NOT NULL, `posted` varchar(30) COLLATE utf8_unicode_ci NOT NULL, PRIMARY KEY (`id`)) ENGINE=MyISAM DEFAULT CHARSET=utf8 COLLATE=utf8_unicode_ci;
-CREATE TABLE `member` ( `id` mediumint(9) NOT NULL AUTO_INCREMENT, `name` varchar(30) COLLATE utf8_unicode_ci NOT NULL, `password` varchar(255) COLLATE utf8_unicode_ci NOT NULL, `email` varchar(255) COLLATE utf8_unicode_ci NOT NULL, `web_site` varchar(255) COLLATE utf8_unicode_ci DEFAULT NULL, `avatar` varchar(255) COLLATE utf8_unicode_ci NOT NULL, `rekey` varchar(40) COLLATE utf8_unicode_ci NOT NULL, `level` int(11) COLLATE utf8_unicode_ci NOT NULL, `joined` datetime NOT NULL, `last_login` datetime NOT NULL, PRIMARY KEY (`id`)) ENGINE=MyISAM DEFAULT CHARSET=utf8 COLLATE=utf8_unicode_ci;
-CREATE TABLE `notice` ( `id` mediumint(9) NOT NULL AUTO_INCREMENT, `url` varchar(255) COLLATE utf8_unicode_ci NOT NULL, `content` text COLLATE utf8_unicode_ci NOT NULL, `status` tinyint(4) NOT NULL, `send_from` varchar(255) COLLATE utf8_unicode_ci NOT NULL, `send_to` varchar(255) COLLATE utf8_unicode_ci NOT NULL, `ptime` datetime NOT NULL, PRIMARY KEY (`id`)) ENGINE=MyISAM DEFAULT CHARSET=utf8 COLLATE=utf8_unicode_ci;
-INSERT INTO `forum_block` (`blockname`, `position`, `ptime`) VALUES ('預設區塊', '1', now());
\ No newline at end of file
+ SET NAMES utf8; SET time_zone = '+00:00'; SET foreign_key_checks = 0; SET sql_mode = 'NO_AUTO_VALUE_ON_ZERO'; DROP TABLE IF EXISTS `chat`; CREATE TABLE `chat` ( `id` int(11) NOT NULL AUTO_INCREMENT, `content` varchar(255) COLLATE utf8_unicode_ci NOT NULL, `mktime` datetime NOT NULL, `author` int(11) NOT NULL, PRIMARY KEY (`id`) ) ENGINE=MyISAM DEFAULT CHARSET=utf8 COLLATE=utf8_unicode_ci; DROP TABLE IF EXISTS `forum`; CREATE TABLE `forum` ( `id` int(11) NOT NULL AUTO_INCREMENT, `title` varchar(255) COLLATE utf8_unicode_ci NOT NULL, `content` text COLLATE utf8_unicode_ci NOT NULL, `block` int(11) NOT NULL, `level` int(4) NOT NULL, `mktime` datetime NOT NULL, `author` int(11) NOT NULL, PRIMARY KEY (`id`) ) ENGINE=MyISAM DEFAULT CHARSET=utf8 COLLATE=utf8_unicode_ci; DROP TABLE IF EXISTS `forum_block`; CREATE TABLE `forum_block` ( `id` int(11) NOT NULL AUTO_INCREMENT, `blockname` varchar(255) COLLATE utf8_unicode_ci NOT NULL, `position` tinyint(4) NOT NULL, `mktime` datetime NOT NULL, PRIMARY KEY (`id`) ) ENGINE=MyISAM DEFAULT CHARSET=utf8 COLLATE=utf8_unicode_ci; DROP TABLE IF EXISTS `forum_reply`; CREATE TABLE `forum_reply` ( `id` int(11) NOT NULL AUTO_INCREMENT, `post_id` int(11) NOT NULL, `content` text COLLATE utf8_unicode_ci NOT NULL, `mktime` datetime NOT NULL, `author` int(11) NOT NULL, PRIMARY KEY (`id`) ) ENGINE=MyISAM DEFAULT CHARSET=utf8 COLLATE=utf8_unicode_ci; DROP TABLE IF EXISTS `member`; CREATE TABLE `member` ( `id` int(11) NOT NULL AUTO_INCREMENT, `username` varchar(30) COLLATE utf8_unicode_ci NOT NULL, `password` varchar(255) COLLATE utf8_unicode_ci NOT NULL, `email` varchar(255) COLLATE utf8_unicode_ci NOT NULL, `web_site` varchar(255) COLLATE utf8_unicode_ci DEFAULT NULL, `avatar` varchar(255) COLLATE utf8_unicode_ci NOT NULL, `rekey` varchar(40) COLLATE utf8_unicode_ci NOT NULL, `level` tinyint(4) NOT NULL, `joined` datetime NOT NULL, `last_login` datetime NOT NULL, PRIMARY KEY (`id`) ) ENGINE=MyISAM DEFAULT CHARSET=utf8 COLLATE=utf8_unicode_ci; DROP TABLE IF EXISTS `notice`; CREATE TABLE `notice` ( `id` int(11) NOT NULL AUTO_INCREMENT, `url` varchar(255) COLLATE utf8_unicode_ci NOT NULL, `content` text COLLATE utf8_unicode_ci NOT NULL, `status` tinyint(4) NOT NULL, `send_from` int(11) NOT NULL, `send_to` int(11) NOT NULL, `mktime` datetime NOT NULL, PRIMARY KEY (`id`) ) ENGINE=MyISAM DEFAULT CHARSET=utf8 COLLATE=utf8_unicode_ci;
\ No newline at end of file
diff --git a/upgrade.php b/upgrade.php
new file mode 100644
index 0000000..67c2ad5
--- /dev/null
+++ b/upgrade.php
@@ -0,0 +1,260 @@
+<?php
+/*
+<Secret Center, open source member management system>
+Copyright (C) 2012-2016 Secret Center開發團隊 <http://center.gdsecret.net/#team>
+
+This program is free software: you can redistribute it and/or modify
+it under the terms of the GNU Affero General Public License as published by
+the Free Software Foundation, version 3.
+
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+GNU Affero General Public License for more details.
+
+You should have received a copy of the GNU Affero General Public License
+along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+Also add information on how to contact you by electronic and paper mail.
+
+  If your software can interact with users remotely through a computer
+network, you should also make sure that it provides a way for users to
+get its source.  For example, if your program is a web application, its
+interface could display a "Source" link that leads users to an archive
+of the code.  There are many ways you could offer source, and different
+solutions will be better for different programs; see section 13 for the
+specific requirements.
+
+  You should also get your employer (if you work as a programmer) or school,
+if any, to sign a "copyright disclaimer" for the program, if necessary.
+For more information on this, and how to apply and follow the GNU AGPL, see
+<http://www.gnu.org/licenses/>.
+*/
+
+error_reporting(0);
+if(isset($_GET['step'])&&$_GET['step']>0&&$_GET['step']<=4){
+	$_step=abs($_GET['step']);
+}else{
+	$_step=0;
+}
+
+$error = false;
+
+function check($val){
+    global $error;
+    if($val){
+    	echo '<span style="color:green;">√</span>';
+	}
+	else {
+		$error = true;
+		echo '<span style="color:red;">Χ</span>';
+	}
+}
+
+function check_php_version($version){
+	check(phpversion() >= $version);
+}
+
+function check_extension($ext){
+	check(extension_loaded($ext));
+}
+
+if($_step==2){
+	if($_POST['radio']=='rename'){
+		rename('upgrade.php','upgrade.txt');
+		if(file_exists('install.php')){
+			rename('install.php','install.txt');
+		}
+	}else{
+		unlink('upgrade.php');
+		if(file_exists('install.php')){
+			unlink('install.php');
+		}
+	}
+	header('Location: index.php');
+}
+?>
+<!DOCTYPE HTML>
+<html>
+<head>
+	<meta charset="utf-8">
+	<title>Secret Center升級程序</title>
+	<link rel="stylesheet" href="https://maxcdn.bootstrapcdn.com/bootstrap/3.3.6/css/bootstrap.min.css" rel="stylesheet">
+	<style>
+		body{
+			background-color:rgb(225,240,255);
+			font-family:"微軟正黑體","新細明體",Arial;
+		}
+		h2,h3{
+			font-weight:100;
+		}
+		#main{
+			width:800px;
+			background-color:rgba(255,255,255,0.9);
+			margin:2em auto;
+			padding: 0.5em 1.5em 1.5em 1.5em;
+			box-shadow:0px 0px 20px rgb(210,225,245);
+			border-radius:0.5em;
+		}
+		.message {
+			width:80%;
+			max-height:500px;
+			overflow:auto;
+			padding: 1em;
+			margin-bottom:1em;
+			background: rgb(190, 240 ,190);
+			font-size: 90%;
+			line-height: 1.5em;
+			word-wrap: break-word;
+			border-radius:0.25em;
+		}
+		.radio{
+			font-size:96%;
+			margin-bottom:2em;
+		}
+		input[type='text'],input[type='password']{
+			max-width:250px;
+			display:inline-block;
+		}
+		fieldset+fieldset{
+			margin-top:2em;
+		}
+	</style>
+</head>
+<body>
+	<div id="main">
+		<h2 class="text-center">Secret Center升級程序</h2>
+		<?php if($_step==0){ ?>
+		<h3>授權條款</h3>
+		<p>本程序僅適用於 Secret會員系統 8.1 升級至 Secret Center 9.0</p>
+		<p class="text-danger">升級之後，文件夾功能將無法使用(但是檔案仍會保留)<p>
+		<a class="btn btn-primary" href="upgrade.php?step=1">開始升級</a>
+		<?php }elseif($_step==1){
+			$error = false;
+			$errormsg = null;
+			
+			try {
+				require_once('Connections/SQL.php');
+				require_once('config.php');
+				if(mysqli_connect_errno()){
+					$error = true;
+					$errormsg = '資料庫連線失敗<br>'.mysqli_connect_error();
+				}else{
+					$_member = sc_get_result("SELECT `id`,`name` FROM `member`");
+					$_m_id=array();
+					do{
+						$_m_id[$_member['row']['name']]=$_member['row']['id'];
+					}while($_member['row'] = $_member['query']->fetch_assoc());
+					
+					$_chat = sc_get_result("SELECT * FROM `chat`");
+					if($_chat['num_rows']>0){
+						do{
+							$query[]=sprintf("UPDATE `chat` SET `name` = '%d' WHERE `name` = '%s'",$_m_id[$_chat['row']['name']],$_chat['row']['name']);
+						}while($_chat['row'] = $_chat['query']->fetch_assoc());
+					}
+					$query[]="ALTER TABLE `chat` CHANGE `id` `id` int NOT NULL AUTO_INCREMENT FIRST,CHANGE `data` `content` varchar(255) COLLATE 'utf8_unicode_ci' NOT NULL AFTER `id`,CHANGE `ptime` `mktime` datetime NOT NULL AFTER `content`,CHANGE `name` `author` int NOT NULL AFTER `mktime`";
+					
+					
+					
+					$_forum = sc_get_result("SELECT * FROM `forum`");
+					if($_forum['num_rows']>0){
+						do{
+							$query[]=sprintf("UPDATE `forum` SET `posted` = '%d' WHERE `posted` = '%s'",$_m_id[$_forum['row']['posted']],$_forum['row']['posted']);
+						}while($_forum['row'] = $_forum['query']->fetch_assoc());
+					}
+					$query[]="ALTER TABLE `forum` CHANGE `id` `id` int NOT NULL AUTO_INCREMENT FIRST, CHANGE `post_title` `title` varchar(255) COLLATE 'utf8_unicode_ci' NOT NULL AFTER `id`, CHANGE `post` `content` text COLLATE 'utf8_unicode_ci' NOT NULL AFTER `title`, CHANGE `level` `level` int(4) NOT NULL AFTER `block`, CHANGE `ptime` `mktime` datetime NOT NULL AFTER `level`, CHANGE `posted` `author` int NOT NULL AFTER `mktime`";
+					
+					
+					
+					$_forum_reply = sc_get_result("SELECT * FROM `forum_reply`");
+					if($_forum_reply['num_rows']>0){
+						do{
+							$query[]=sprintf("UPDATE `forum_reply` SET `posted` = '%d' WHERE `posted` = '%s'",$_m_id[$_forum_reply['row']['posted']],$_forum_reply['row']['posted']);
+						}while($_forum_reply['row'] = $_forum_reply['query']->fetch_assoc());
+					}
+					$query[]="ALTER TABLE `forum_reply` CHANGE `id` `id` int NOT NULL AUTO_INCREMENT FIRST, CHANGE `post` `post_id` int NOT NULL AFTER `id`, CHANGE `reply` `content` text COLLATE 'utf8_unicode_ci' NOT NULL AFTER `post_id`, CHANGE `ptime` `mktime` datetime NOT NULL AFTER `content`, CHANGE `posted` `author` int NOT NULL AFTER `mktime`";
+					
+					
+					$query[]="ALTER TABLE `forum_block` CHANGE `ptime` `mktime` datetime NOT NULL AFTER `position`";
+				
+					
+					$_member = sc_get_result("SELECT * FROM `member`");
+					if($_member['num_rows']>0){
+						do{
+							if($_member['row']['avatar']=='../images/default_avatar.png'){
+								$_avatar='default.png';
+							}else{
+								$_avatar=ltrim($_member['row']['avatar'],'../images/avatar/');
+							}
+							$query[]=sprintf("UPDATE `member` SET `avatar` = '%s' WHERE `id` = '%d'",$_avatar,$_member['row']['id']);
+						}while($_member['row'] = $_member['query']->fetch_assoc());
+					}
+					$query[]="ALTER TABLE `member` CHANGE `id` `id` int NOT NULL AUTO_INCREMENT FIRST, CHANGE `name` `username` varchar(30) COLLATE 'utf8_unicode_ci' NOT NULL AFTER `id`, CHANGE `level` `level` tinyint NOT NULL AFTER `rekey`;";
+					
+					
+					
+					$_notice = sc_get_result("SELECT * FROM `notice`");
+					if($_notice['num_rows']>0){
+						do{
+							$query[]=sprintf("UPDATE `notice` SET `send_from` = '%d' WHERE `send_from` = '%s'",$_m_id[$_notice['row']['send_from']],$_notice['row']['send_from']);
+							$query[]=sprintf("UPDATE `notice` SET `send_to` = '%d' WHERE `send_to` = '%s'",$_m_id[$_notice['row']['send_to']],$_notice['row']['send_to']);
+						}while($_notice['row'] = $_notice['query']->fetch_assoc());
+					}
+					$query[]="ALTER TABLE `notice` CHANGE `id` `id` int NOT NULL AUTO_INCREMENT FIRST,CHANGE `ptime` `mktime` datetime NOT NULL AFTER `send_to`,CHANGE `send_from` `send_from` int NOT NULL AFTER `status`,CHANGE `send_to` `send_to` int NOT NULL AFTER `send_from`";
+					
+					foreach($query as $val){
+						if($val!=''){
+							$SQL->query($val);
+						}
+					}
+					
+					rename('include/avatar/default.png','images/avatar/default.png');
+					sc_deletedir('include/avatar/');
+					rename('images/avatar/','include/avatar/');
+					sc_deletedir('view/');
+					sc_deletedir('images/');
+					unlink('licenses.txt');
+					unlink('include/admin_nav.php');
+					unlink('include/avatar.php');
+					unlink('include/index.php');
+					unlink('include/js/channel.js');
+					unlink('include/js/jquery.validate.js');
+					sc_deletedir('include/js/fileupload/');
+				}
+			}
+			catch (Exception $e) {
+				$error = true;
+				$errormsg = base64_encode(json_encode(array(
+					'type' => 'SQL Insert Error',
+					'line' => __LINE__,
+					'file' => dirname(__FILE__) . ';' . __FILE__,
+					'errormsg' => $e->getMessage(),
+				)));
+			}
+			
+			if($error === false){
+		?>
+		<h3 class="text-success">升級成功！</h3>
+		<p>Secret Center已升級成功，為了保障您網站的安全，請在此選擇一種方式來處理此程序。</p>
+		<form name="form1" method="post" action="upgrade.php?step=2">
+			<div class="radio">
+				<label>
+					<input name="radio" type="radio" value="unlink" checked="checked">刪除此升級程序
+				</label>
+			</div>
+			<div class="radio">
+				<label>
+					<input name="radio" type="radio" value="rename">重新命名此升級程序
+				</label>
+			</div>
+			<input class="btn btn-primary" type="submit" value="確定！">
+		</form>
+		<?php } else { ?>
+		<h3 class="text-danger">Secret Center升級失敗！</h3>
+		<p>Secret Center升級時發生錯誤！</p>
+		<p>參考代碼：</p>
+		<div class="message"><?php echo $errormsg; ?></div>
+		<?php }} ?>
+	</div>
+</body>
+</html>
\ No newline at end of file
diff --git a/view/new_theme.html b/view/new_theme.html
deleted file mode 100644
index fc5a2a7..0000000
--- a/view/new_theme.html
+++ /dev/null
@@ -1,38 +0,0 @@
-<!DOCTYPE html>
-<html>
-    <head>
-    	<title>{part} | {title}</title>
-		<meta charset="utf-8" />
-		<meta name="viewport" content="width=device-width, initial-scale=1.0">
-		<meta name="application-name" content="{title}" />
-		<meta name="author" content="Secret" />
-		<meta property="og:title" content="{title}" />
-		<meta property="og:type" content="website" />
-		<meta property="og:site_name" content="{title}" />
-		<link href="http://netdna.bootstrapcdn.com/twitter-bootstrap/2.3.2/css/bootstrap-combined.min.css" rel="stylesheet">
-		<link href="{style}" rel="stylesheet" type="text/css">
-		{scripts}
-		<script src="http://netdna.bootstrapcdn.com/twitter-bootstrap/2.3.2/js/bootstrap.min.js"></script>
-	</head>
-	<body>
-		<div class="container">
-			<div class="row-fluid">
-				<div class="content">
-					<nav id="nav" class="navbar navbar-inverse navbar-fixed-top">
-						<div class="navbar-inner">
-							<a class="brand" href="#">{title}</a>
-							<ul class="nav">
-								{nav}
-							</ul>
-						</div>
-					</nav>
-					<div id="notifs-button"></div>
-					{content}
-				</div>
-				<footer>
-						<p>Secret會員系統由<a href="http://center.gdsecret.com/#team" target="_black">Secret 會員系統開發團隊</a>製作！</p>
-				</footer>
-			</div>
-		</div>
-	</body>
-</html>
\ No newline at end of file