function user_list()
{
$users = ZUser::getUsers();
foreach ($users as $k => $v) {
$users[$k]->packageName = ZPackage::getPackage($v->package)->name;
}
return json_encode($users);
}
static public function GetLoginId() {
$user_id = abs(intval(Session::Get('user_id')));
if (!$user_id) {
$u = ZUser::GetLoginCookie(self::$cookie_name);
if ( $user_id = abs(intval($u['id'])) ) {
ZInvite::CreateNewId($user_id);
}
}
if ($user_id) self::Login($user_id);
return $user_id;
}
public static function GetLoginId()
{
$user_id = abs(intval(Session::Get('user_id')));
if (!$user_id) {
$u = ZUser::GetLoginCookie(self::$cookie_name);
$user_id = abs(intval($u['id']));
}
if ($user_id) {
self::Login($user_id);
}
return $user_id;
}
function uc_api_updatepw($get, $post)
{
$username = $get['username'];
$password = ZUser::GenPassword($get['password']);
if (strtolower(UC_CHARSET) != 'utf-8') {
$username = mb_convert_encoding($username, 'UTF-8', UC_CHARSET);
}
$u = Table::Fetch('user', $username, 'username');
if ($u && $u['password'] != $password) {
Table::UpdateCache('user', $u['id'], array('password' => $password));
if ($_SESSION['user_id'] && $_SESSION['user_id'] == $u['id']) {
unset($_SESSION['user_id']);
}
}
return API_RETURN_SUCCEED;
}
function zuitu_uc_login($email, $pass)
{
if (!function_exists('uc_user_login')) {
return array();
}
if (!defined('UC_API')) {
return array();
}
$isuid = strpos($email, '@') ? 2 : 0;
if (strtolower(UC_CHARSET) != 'utf-8') {
$email = mb_convert_encoding($email, UC_CHARSET, 'UTF-8');
}
$ucresult = uc_user_login($email, $pass, $isuid, 0);
$uckey = array('uid', 'username', 'password', 'email', 'duplicate');
$ucresult = array_combine($uckey, $ucresult);
$ucresult = zuitu_encode_array($ucresult);
$ucresult = zuitu_encode_detect($ucresult);
DB::Query('SET NAMES UTF8;');
if ($ucresult['uid'] > 0 && $ucresult['email']) {
$eu = Table::Fetch('user', $ucresult['email'], 'email');
if ($eu) {
if ($eu['username'] != $ucresult['username']) {
$epass = ZUser::GenPassword($ucresult['password']);
Table::UpdateCache('user', $eu['id'], array('username' => $ucresult['username'], 'password' => $epass));
return Table::FetchForce('user', $eu['id']);
}
return $eu;
}
unset($ucresult['uid']);
unset($ucresult['duplicate']);
zuitu_encode_array($ucresult);
zuitu_encode_detect($ucresult);
$newuser_id = ZUser::Create($ucresult, false);
if ($newuser_id) {
return Table::Fetch('user', $newuser_id);
}
}
return array();
}
// var_dump($login_userEmailCheck);
//
// if($login_TWuserDetails['id']!=''){
// ZLogin::Login($login_TWuserDetails['id']);
// // setcookie('_twitter_sess','1');
// Utility::Redirect( WEB_ROOT . '/index.php');
// }
//if($login_userEmailCheck!='')
// {
// $sql = "update user set twitter_userid = '".$user_details['twitter_userid']."' where id ='".$login_userEmailCheck['id']."'";
// mysql_query($sql);
// ZLogin::Login($login_userEmailCheck['id']);
// Utility::Redirect( WEB_ROOT . '/index.php');
// }
// else
// {
// if($user_id = ZUser::Create($user_details))
// {
// ZLogin::Login($user_id);
// Utility::Redirect( WEB_ROOT . '/index.php');
// }
// }
if ($user_id = ZUser::Create($user_details)) {
ZLogin::Login($user_id);
Utility::Redirect(WEB_ROOT . '/index.php');
}
}
include template('signup_twitteremail');
?>
Utility::Redirect(WEB_ROOT . '/account/qq_bind.php');
}
if ($sns_bind['sns']) {
Session::Set('error', '绑定失败,Email已绑定');
Utility::Redirect(WEB_ROOT . '/account/qq_bind.php');
}
if (ZUser::Modify($sns_bind['id'], $update)) {
Session::Set('user_id', $sns_bind['id']);
Utility::Redirect(get_loginpage(WEB_ROOT . '/index.php'));
}
} else {
$mobile = $_POST['mobile'];
$email = $_POST['email'];
$have_email = Table::Fetch('user', $email, 'email');
if ($have_email) {
Session::Set('error', '该邮箱已被注册');
Utility::Redirect(WEB_ROOT . '/account/qq_bind.php');
}
$username = $ms['nick'];
$have_user = Table::Fetch('user', $username, 'username');
while (!empty($have_user)) {
$username = $ms['nick'] . '_' . rand(100, 999);
$have_user = Table::Fetch('user', $username, 'username');
}
$new_user = array('username' => $username, 'email' => $email, 'mobile' => $mobile, 'password' => $_POST['password'], 'sns' => $sns);
$user_sns['id'] = ZUser::Create($new_user, true);
Session::Set('user_id', $user_sns['id']);
Utility::Redirect(get_loginpage(WEB_ROOT . '/index.php'));
}
}
include template('account_sina_bind');
<?php
require_once dirname(dirname(__FILE__)) . '/app.php';
need_login();
$pagetitle = "收货地址管理";
$condition = array('user_id' => $login_user_id);
$add = DB::LimitQuery('address', array('condition' => $condition, 'order' => 'ORDER BY id DESC'));
if ($_POST) {
$address = $_POST;
$user_id = $login_user_id;
if (ZUser::Address($user_id, $address)) {
Session::Set('notice', '新建收货地址成功');
redirect(WEB_ROOT . '/account/setaddress.php ');
} else {
Session::Set('error', '新建收货地址失败');
}
}
include template('account_setaddress');
<?php
require_once dirname(dirname(__FILE__)) . '/app.php';
if ($_POST) {
$login_admin = ZUser::GetLogin($_POST['username'], $_POST['password']);
if (!$login_admin || $login_admin['manager'] != 'Y') {
Session::Set('error', '用户名密码不匹配!');
redirect(WEB_ROOT . '/manage/login.php');
} else {
Session::Set('admin_id', $login_admin['id']);
Session::Set('user_id', $login_admin['id']);
redirect(WEB_ROOT . '/manage/index.php');
}
}
include template('manage_login');
<?php
include_once 'config.php';
include_once 'txwboauth.php';
$c = new WeiboClient(WB_AKEY, WB_SKEY, $_SESSION['last_key']['oauth_token'], $_SESSION['last_key']['oauth_token_secret']);
$ms = $c->pub_abc($_SESSION['last_key']['openid']);
$id = $_SESSION['last_key']['openid'];
$name = $ms['nickname'];
//echo $name;
if (!$id) {
need_login();
}
$type = "qzone";
$sns = "qzone:" . $id;
$exist_user = Table::Fetch('user', $sns, 'sns');
if ($exist_user) {
Session::Set('user_id', $exist_user['id']);
Utility::Redirect(get_loginpage(WEB_ROOT . '/index.php'));
}
$prompt_name = $ms['nickname'];
$exist_user = Table::Fetch('user', $prompt_name, 'username');
while (!empty($exist_user)) {
$prompt_name = $ms['nickname'] . '_' . rand(100, 999);
$exist_user = Table::Fetch('user', $prompt_name, 'username');
}
$new_user = array('username' => $prompt_name, 'password' => rand(10000000, 99999999), 'sns' => $sns);
if ($user_id = ZUser::Create($new_user, true)) {
Session::Set('user_id', $user_id);
Utility::Redirect(get_loginpage(WEB_ROOT . '/index.php'));
}
Utility::Redirect(WEB_ROOT . '/thirdpart/qzone/index.php');
$username = $mobile;
$have_username = Table::Fetch('user', $username, 'username');
if($have_username) {
Session::Set('error', '该会员名已被注册');
Utility::Redirect(WEB_ROOT . '/manage/user/create.php' );
}
$new_user = array(
'username' => $username,
'email' => $email,
'mobile' => $mobile,
'password' => $insert['password'],
'score'=>$score,
);
$insert_id = ZUser::Create($new_user, true);
if($insert_id) {
/**
* 发送短信
*/
$sms = '尊敬的商户,欢迎您参加青年优品“智慧生活-触手可及”交流会,您的青年优品VIP账户登录名为'.$mobile."密码".$insert['password'].",该账户已充值540u币,使用详情请登录青年优品网站qnvip.com".$_POST['sms_content'];
sms_send($mobile,$sms);
Session::Set('notice', '注册成功');
Utility::Redirect(WEB_ROOT . '/manage/user/create.php' );
}else{
Session::Set('error', '新建会员失败');
Utility::Redirect(WEB_ROOT . '/manage/user/create.php' );
}
}
$table = new Table('user', $_POST);
$up_array = array('username', 'realname', 'mobile', 'zipcode', 'address', 'secret', 'qq');
// unique email per user
if (strpos($email, '@')) {
$eu = Table::Fetch('user', $email, 'email');
if ($eu && $eu['id'] != $id) {
Session::Set('notice', 'Email地址已经存在,不能修改');
redirect(WEB_ROOT . "/manage/user/index.php");
}
}
if ($login_user_id == 1 && $id > 1) {
$up_array[] = 'manager';
}
if ($id == 1 && $login_user_id > 1) {
Session::Set('notice', '你无权修改超级管理员信息');
redirect(WEB_ROOT . "/manage/user/index.php");
}
$table->manager = strtoupper($table->manager) == 'Y' ? 'Y' : 'N';
if ($table->password) {
$table->password = ZUser::GenPassword($table->password);
$up_array[] = 'password';
}
$flag = $table->update($up_array);
if ($flag) {
Session::Set('notice', '修改用户信息成功');
redirect(WEB_ROOT . "/manage/user/edit.php?id={$id}");
}
Session::Set('error', '修改用户信息失败');
$user = $_POST;
}
include template('manage_user_edit');
foreach ($arr as $v) {
$f = substr($v, 0, -4);
$style->{$f} = '';
}
$task = @$_REQUEST['task'];
$task = preg_replace("/[^a-z0-9]+/i", "", $task);
$basename = basename($_SERVER['PHP_SELF'], '.php');
if ($task == 'login') {
$basename = 'login';
}
$style->{$basename} = ' class="here"';
//addStylesheet('simple.css');
$title = 'Zhpanel v' . $zh_version;
session_id();
session_start();
isset($_SESSION['zmessage']) || ($_SESSION['zmessage'] = '');
isset($_SESSION[$sess_key]) || ($_SESSION[$sess_key] = array());
$me = getmyname();
$isadmin = isadmin();
$role = ZUser::getRole($me);
$token = token();
$switch_from = isswitch();
if ($task !== 'login' && $task !== 'logout') {
if (!$me) {
redirect('misc.php?task=login');
}
}
$sys = $pdo->fetchRow("SELECT * FROM system WHERE id=1");
//print_r($sys);
//$lang = parse_ini_file(ZH."/tpl/{$sys->theme}/lang.ini.php", false, INI_SCANNER_RAW);
include ZH . "/tpl/{$sys->theme}/lang.ini.php";
<?php
require_once dirname(dirname(__FILE__)) . '/app.php';
$vid = '';
if ($login_user['passowrd']) {
$vid = ZUser::GenPassword($login_user['passowrd'] . time());
Session::Set('vid', $vid);
}
$ramd = rand(1, 5);
if ($_POST) {
if ($_REQUEST['vid']) {
}
}
include template('play_puzzle');
* ----------------------------------------------------------------------------
* This is not free software
* ----------------------------------------------------------------------------
* @author abei <*****@*****.**>
* @version 1.0
* @link http://www.qiang8.cn
*/
require_once(dirname(dirname(__FILE__)) . '/app.php');
if ( $login_user_id ) {
redirect('index.php');
}
if ( $_POST ) {
$login_user = ZUser::GetLogin($_POST['email'], $_POST['password']);
if ( !$login_user ) {
Session::Set('error', '登录失败');
redirect('login.php');
} else if (option_yes('emailverify')
&& $login_user['enable']=='N'
&& $login_user['secret']
) {
Session::Set('error', "您的邮箱{$login_user['email']}还没有通过验证");
redirect('login.php');
} else {
Session::Set('user_id', $login_user['id']);
ZLogin::Remember($login_user);
redirect(get_loginpage('index.php'));
}
}
function updateFtpAccount($owner, $ftpuser, $passwd = '', $dir = '', $writable = true)
{
global $pdo;
$user = ZUser::getUser($owner);
$row = array('owner' => $owner, 'uid' => $user->uid, 'gid' => $user->gid, 'pass' => $passwd, 'home' => $dir, 'writable' => $writable, 'updated' => date('Y-m-d H:i:s'), 'gecos' => date('Y-m-d H.i.s'));
$row = array_merge($_REQUEST, $row);
if (!$passwd) {
unset($row['pass']);
}
$res = $pdo->update('ftp', $row, "user='******'");
// && syncFtpUsers();
sync();
return $res;
}
Session::Set('error', '每IP每手机号每小时只能找回一次密码');
redirect(WEB_ROOT . '/account/repass.php');
} else {
$user = Table::Fetch('user', strval($_POST['mobile']), 'mobile');
if ($user) {
//设置6位随机数字密码
$new_password = Utility::VerifyCode();
$content = $INI['system']['sitename'] . " 您的用户名:" . $user['username'] . " 新密码:" . $new_password . " 请及时修改密码。";
//长度不能超过70个字符
$ret = sms_send($_POST['mobile'], $content);
if ($ret === true) {
//插入获取验证码数据记录
$verifycode_data = array('mobile' => $_POST['mobile'], 'getip' => Utility::GetRemoteIp(), 'verifycode' => $new_password, 'dateline' => time(), 'reguid' => $user['id'], 'regdateline' => time(), 'status' => 3);
$table = new Table('verifycode', $verifycode_data);
$table->insert(array('mobile', 'getip', 'verifycode', 'dateline', 'reguid', 'regdateline', 'status'));
$password = ZUser::GenPassword($new_password);
Table::UpdateCache('user', $user['id'], array('password' => $password, 'recode' => ''));
Session::Set('notice', '成功发送找回密码短信到手机号:' . $_POST['mobile'] . ' 请稍候查看短信及时修改密码');
redirect(WEB_ROOT . '/account/repass.php');
} else {
Session::Set('error', '找回密码短信发送失败,错误码:' . $ret . '');
redirect(WEB_ROOT . '/account/repass.php');
}
}
Session::Set('error', '你的手机号没有在本站注册');
redirect(WEB_ROOT . '/account/repass.php');
}
}
}
}
} else {
}
break;
case 'edit':
$name = isset($_REQUEST['name']) ? $_REQUEST['name'] : '';
$name = preg_replace("/[^a-z0-9_]+/i", "", $name);
if (!$name) {
redirect('ftp.php');
}
$password = $_REQUEST['password'];
$owner = strtok($name, '_');
$users = ZUser::getUsers();
$account = ZFtp::getFtpAccount($name);
if (!$account) {
setmsg(t('No such user.'));
}
$myuid = ZUser::getuid($owner);
$dirs = ZFile::getUserDirs($owner);
$docroot = trim($account->home);
$docroot = str_replace("/home/{$owner}", '~', $docroot);
if (checktoken()) {
$op = $_REQUEST['op'];
if ($op == 'remove') {
if (ZFtp::removeFtpAccount($name)) {
setmsg(t('Ftp Account Deleted.'), 'notice', 'ftp.php');
}
} else {
if ('suspend' == $op) {
if (ZFtp::suspendFtpUser($name, !intval($_REQUEST['suspend']))) {
setmsg('', 'notice');
} else {
setmsg(t('Error'));
if ($rrUser) {
ZLogin::Login($rrUser['id']);
Utility::Redirect(get_loginpage(WEB_ROOT . '/index.php'));
}
} elseif ($actid == 'create' && $userid == $uu['user']['uid']) {
//创建人人和本站的连接
if (ZUser::GetRenrenUser($uu['user']['uid'])) {
Session::Set('error', '注册失败,用户名已被使用');
} else {
$u = array();
$u['username'] = $uu['user']['uid'];
$u['realname'] = $uu['user']['name'];
$u['password'] = '******';
$u['city_id'] = abs(intval($city['id']));
$u['email'] = $uu['user']['email_hash'] ? $uu['user']['email_hash'] : $uu['user']['uid'] . '@renren.com';
if (option_yes('emailverify')) {
$u['enable'] = 'N';
}
if ($user_id = ZUser::CreateRenRen($u, $userid)) {
Session::Set('notice', '账号绑定成功');
ZLogin::Login($user_id);
Utility::Redirect(get_loginpage(WEB_ROOT . '/index.php'));
} else {
Session::Set('error', '账户关联出错!');
}
}
} elseif (!$uu) {
Session::Set('error', '访问出错');
Utility::Redirect(WEB_ROOT . '/index.php');
}
include template('xiaonei_connect_ok');
<?php
require_once dirname(dirname(__FILE__)) . '/app.php';
need_login();
if ($_POST) {
$update = array('email' => $_POST['email'], 'username' => $_POST['username'], 'realname' => $_POST['realname'], 'zipcode' => $_POST['zipcode'], 'address' => $_POST['address'], 'mobile' => $_POST['mobile'], 'gender' => $_POST['gender'], 'city_id' => $_POST['city_id'], 'qq' => $_POST['qq'], 'city_id' => $_POST['city_id']);
$avatar = upload_image('upload_image', $login_user['avatar'], 'user');
$update['avatar'] = $avatar;
if ($_POST['password'] == $_POST['password2'] && $_POST['password']) {
$update['password'] = $_POST['password'];
}
if (ZUser::Modify($login_user['id'], $update)) {
Session::Set('notice', '修改账户设置成功');
Utility::Redirect(WEB_ROOT . '/account/settings.php ');
} else {
Session::Set('error', '修改账户设置失败');
}
}
$readonly['email'] = defined('UC_API') ? '' : 'readonly';
$readonly['username'] = defined('UC_API') ? 'readonly' : '';
include template('account_settings');
<?php
require_once dirname(dirname(__FILE__)) . '/app.php';
if ($_POST) {
$login_user = ZUser::GetLogin($_POST['email'], $_POST['password']);
if (!$login_user) {
Session::Set('error', '登录失败');
Utility::Redirect(WEB_ROOT . '/account/login.php');
} else {
if ($INI['system']['emailverify'] && $login_user['enable'] == 'N' && $login_user['secret']) {
Session::Set('unemail', $_POST['email']);
Utility::Redirect(WEB_ROOT . '/account/verify.php');
} else {
Session::Set('user_id', $login_user['id']);
ZLogin::Remember($login_user);
ZUser::SynLogin($_POST['email'], $_POST['password']);
Utility::Redirect(get_loginpage(WEB_ROOT . '/index.php'));
}
}
}
$currefer = strval($_GET['r']);
if ($currefer) {
Session::Set('loginpage', udecode($currefer));
}
include template('account_login');
$wwwlink = mail_zd($email);
die(include template('account_verify'));
} else {
if (strpos($secret, '@')) {
Session::Set('unemail', $secret);
mail_sign_email($secret);
redirect(WEB_ROOT . '/account/verify.php');
}
}
$user = Table::Fetch('user', $secret, 'secret');
if ($user['enable'] == 'Y') {
Session::Set('error', '你的账户已经验通过,请直接登录!');
if (isset($_SESSION['user_id'])) {
unset($_SESSION['user_id']);
ZLogin::NoRemember();
ZUser::SynLogout();
}
redirect(WEB_ROOT . '/account/login.php');
}
if ($user) {
if (option_yes('mobilecode')) {
Table::UpdateCache('user', $user['id'], array('emailable' => 'Y'));
die(include template('account_signmobile'));
} else {
Table::UpdateCache('user', $user['id'], array('emailable' => 'Y', 'enable' => 'Y'));
Session::Set('notice', '恭喜!你的帐户已经通过Email验证');
ZLogin::Login($user['id']);
redirect(get_loginpage(WEB_ROOT . '/index.php'));
}
}
redirect(WEB_ROOT . '/index.php');
<?php
require_once dirname(dirname(__FILE__)) . '/app.php';
if (is_post()) {
$user = Table::Fetch('user', $_POST['user_id']);
if ($user['remcode'] == $_POST['verifycode'] && !empty($_POST['verifycode'])) {
if (isset($_SESSION['user_id'])) {
unset($_SESSION['user_id']);
ZLogin::NoRemember();
$login_user = $login_user_id = $login_manager = $login_leader = null;
}
if ($_POST['password'] == $_POST['password2']) {
ZUser::Modify($user['id'], array('password' => $_POST['password'], 'remcode' => ''));
redirect(WEB_ROOT . '/account/reset.php?code=ok');
}
Session::Set('error', '两次输入的密码不匹配,请重新设置');
} else {
Session::Set('error', '验证码错误');
}
}
redirect(WEB_ROOT . '/account/repassmobile.php');
/**
* Performs user sign-in by user name and password hash.
*
* @access public
* @param string $un The user name
* @param string $pw_hash The password hash
* @since 3.0
*
*/
function login($un, $pw_hash)
{
global $_SESSION, $_POST, $SANITIZER, $SecureSession, $CONFIG;
$PL_PW = $CONFIG->secure_login_password;
$str_error = '';
// init
$_POST["remember_me"] = 1;
$remember_me = true;
$sql = "\n\t\t\t\t\t\tSELECT u.id, u.un, u.firstname, u.lastname, u.email, u.web, u.bio\n\t\t\t\t\t\t, GROUP_CONCAT(un.notice_fid ORDER BY un.notice_fid ASC SEPARATOR '|') AS u_notices\n\t\t\t\t\t\tFROM users AS u\n\t\t\t\t\t\tLEFT OUTER JOIN user_notices AS un ON un.user_fid = u.id\n\t\t\t\t\t\tWHERE u.un = '{$un}'\n\t\t\t\t\t\tAND u.pw = '{$pw_hash}'\n\t\t\t\t\t\tAND u.deleted IS NULL\n\t\t\t\t\t\tGROUP BY un.user_fid\n\t\t\t\t\t\tLIMIT 0, 1\n\t\t\t\t\t ";
if ($_SERVER["REMOTE_ADDR"] == @$CONFIG->debug_ip) {
// echo $sql;
}
$result = mysql_query($sql);
$record_count = 0;
if ($result) {
$record_count = MySQL_NUM_ROWS($result);
}
if ($record_count == 1) {
$u_id = mysql_result($result, 0, "u.id");
//ZUser::get($u_id);
$ss = new SecureSession();
$ss->check_browser = true;
$ss->check_ip_blocks = 2;
$ss->secure_word = 'SALT_';
$ss->regenerate_id = true;
$ss->Open();
$_SESSION['logged_in'] = true;
/** Generate a secure user id **/
$_SESSION['u'] = md5($_SESSION['ss_fprint'] . $u_id);
$_SESSION['u_temp'] = $u_id;
$u_un = mysql_result($result, 0, "u.un");
$u_email = mysql_result($result, 0, "u.email");
$u_firstname = mysql_result($result, 0, "u.firstname");
$u_lastname = mysql_result($result, 0, "u.lastname");
$u_web = mysql_result($result, 0, "u.web");
$u_bio = mysql_result($result, 0, "u.bio");
$_SESSION['u_un'] = $u_un;
$_SESSION['u_email'] = $u_email;
if (trim($u_lastname) != "") {
$_SESSION['u_name'] = trim($u_firstname . " " . $u_lastname);
} else {
$_SESSION['u_name'] = trim($u_firstname);
}
$_SESSION['u_web'] = trim($u_web);
$_SESSION['u_bio'] = trim($u_bio);
$u_notices = mysql_result($result, 0, "u_notices");
$u_notices = explode("|", $u_notices);
if (array_search("1", $u_notices) !== false) {
$_SESSION["u_notice_1"] = "checked";
} else {
$_SESSION["u_notice_1"] = "";
}
if (array_search("2", $u_notices) !== false) {
$_SESSION["u_notice_2"] = "checked";
} else {
$_SESSION["u_notice_2"] = "";
}
/** Get user data **/
ZUser::query_user("", $_SESSION['u_temp']);
ZUser::set();
/** Save Session ID if 'Remember Me' activated **/
if (isset($_POST["remember_me"])) {
$pl = MD5($u_id . $PL_PW);
$pl_ssid = md5(uniqid(rand(), true));
@setcookie("pl", $pl, time() + 3600 * 24 * 14, "/");
/* expire in 2 weeks */
@setcookie("pl_ssid", $pl_ssid, time() + 3600 * 24 * 14, "/");
/* expire in 2 weeks */
} else {
$this_session_id = "";
@setcookie("pl", "", time() - 3600);
/* delete cookie */
@setcookie("pl_ssid", "", time() - 3600);
/* delete cookie */
}
/** Save new Persistent Login Session ID **/
$sql = "\n\t\t\t\t\t\t\tUPDATE users AS u\n\t\t\t\t\t\t\tSET u.session_id = '{$pl_ssid}'\n\t\t\t\t\t\t\tWHERE u.un = '{$un}'\n\t\t\t\t\t\t\tAND u.pw = '{$pw_hash}'\n\t\t\t\t\t\t ";
if ($_SERVER["REMOTE_ADDR"] == @$CONFIG->debug_ip) {
//echo $sql;
}
$result2 = mysql_query($sql);
//@header('Location: index.php');
//die();
} else {
@session_destroy();
$str_error .= JText::_('Username and password do not match.') . '<br />';
}
return $str_error;
}
if (ZUser::removeUser($name)) {
setmsg(t('Removed!'), 'notice');
} else {
setmsg(t('Error'));
}
}
break;
case 'list':
default:
$task = 'list';
$start = 0;
$limit = 20;
if ($role == 0) {
// user
redirect('?task=edit&name=' . $me);
//$users = array(ZUser::getUser($me));
} elseif ($role == 1) {
// admin
$users = ZUser::getUsers($start, $limit);
} else {
// reseller
$users = ZUser::getUsers($start, $limit, ZUser::getUser($me)->id);
}
foreach ($users as $k => $v) {
$users[$k]->packageName = ZPackage::getPackage($v->package)->name;
}
break;
}
if (!$norender) {
include template('user');
}
$res = mysql_query($sql);
$dbname_escaped = str_replace('_', '\\_', $dbname);
$sql = "GRANT ALL PRIVILEGES ON `{$dbname_escaped}` . * TO '{$user}'@'{$dbhost}' WITH GRANT OPTION ";
$res2 = mysql_query($sql);
if ($res && $res2) {
setmsg(t("Database created."), 'notice', 'self');
} else {
setmsg(mysql_error(), 'error', 'self');
}
}
if (checktoken() && 'chpasswd' == $op) {
$pass = $_REQUEST['password'];
$host = $_REQUEST['host'];
$host || ($host = 'localhost');
// check password
if (true !== ($res = ZUser::chkPassword($pass))) {
$err['password'] = t('Password can not be empty.');
setmsg($err['password'], 'error', 'self');
}
if ($break) {
break;
}
$pass = mysql_real_escape_string($pass);
$sql = "SET PASSWORD FOR '{$name}'@'{$host}' = PASSWORD('{$pass}')";
$res = mysql_query($sql);
if ($res) {
setmsg(t("Password updated"), 'notice', 'self');
} else {
setmsg(mysql_error());
}
}
$login_user = ZUser::GetLogin($_POST['email'], $_POST['password']);
if (!$login_user) {
Session::Set('error', '登录失败');
redirect(WEB_ROOT . '/account/login.php');
} else {
if (option_yes('mobilecode') && $login_user['emailable'] == 'Y' && $login_user['enable'] == 'N') {
$user['id'] = $login_user['id'];
Session::Set('error', '请验证手机号');
die(include template('account_signmobile'));
} else {
if (option_yes('emailverify') && $login_user['emailable'] == 'N' && $login_user['enable'] == 'N' && $login_user['secret']) {
Session::Set('unemail', $_POST['email']);
redirect(WEB_ROOT . '/account/verify.php');
} else {
Session::Set('user_id', $login_user['id']);
if (abs(intval($_POST['auto_login']))) {
ZLogin::Remember($login_user);
}
ZUser::SynLogin($login_user['username'], $_POST['password']);
ZCredit::Login($login_user['id']);
redirect(get_loginpage(WEB_ROOT . '/index.php'));
}
}
}
}
$currefer = strval($_GET['r']);
if ($currefer) {
Session::Set('loginpage', udecode($currefer));
}
$pagetitle = '登录';
include template('account_login');
/*(function() {
var e = document.createElement('script');
e.src = document.location.protocol + '//connect.facebook.net/en_US/all.js';
e.async = true;
alert(document.getElementById("fb-root"));
document.getElementById("fb-root").appendChild(e);
}());*/
</script>
<?php
// $det = ZLogin::GetLoginId();
if (!$_SESSION['user_id']) {
if ($me) {
$login_user = ZUser::GetUserByFB_IdMail($me['id'], $me['email']);
if ($login_user) {
if (!$login_user['fb_userid']) {
//update
$sql = "update user set fb_userid = '" . $me['id'] . "',fl_facebook='new' where id ='" . $login_user['id'] . "'";
mysql_query($sql);
//login
Session::Set('user_id', $login_user['id']);
ZLogin::Remember($login_user);
($goto = Session::Get('loginpage', true)) || ($goto = WEB_ROOT . '/index.php');
Utility::Redirect($goto);
} else {
Session::Set('user_id', $login_user['id']);
ZLogin::Remember($login_user);
($goto = Session::Get('loginpage', true)) || ($goto = WEB_ROOT . '/index.php');
Utility::Redirect($goto);
if ($_POST['subscribe']) {
ZSubscribe::Create($_POST['email'], $city['id']);
}
if (!Utility::ValidEmail($_POST['email'], true)) {
Session::Set('error', 'Email is not a valid email address');
Utility::Redirect(WEB_ROOT . '/account/signup.php');
}
if ($_POST['password2'] == $_POST['password'] && $_POST['password']) {
if ($INI['system']['emailverify']) {
$u['enable'] = 'N';
}
$usergroup = Table::Fetch('user_group', 'customer', 'name');
if (!empty($usergroup)) {
$u['user_group_id'] = $usergroup['id'];
}
if ($user_id = ZUser::Create($u)) {
if ($INI['system']['emailverify']) {
mail_sign_id($user_id);
Session::Set('unemail', $_POST['email']);
Utility::Redirect(WEB_ROOT . '/account/verify.php');
} else {
ZLogin::Login($user_id);
Utility::Redirect(WEB_ROOT . '/index.php');
}
} else {
$au = Table::Fetch('user', $_POST['email'], 'email');
if ($au) {
Session::Set('error', 'Failed, Email has registerred ');
} else {
Session::Set('error', 'Failed, username has been taken');
}
<?php
require_once "alipay.config.php";
require_once "lib/alipay_notify.class.php";
$alipayNotify = new AlipayNotify($aliapy_config);
$verify_result = $alipayNotify->verifyReturn();
if ($verify_result) {
$ali_user = ZUser::Check_alifast($_GET['user_id'], $_GET['real_name'], $_GET['email']);
if ($ali_user) {
Session::Set('user_id', $ali_user['id']);
Session::Set('ali_token', $_GET['token']);
ZCredit::Login($ali_user['id']);
//etao专用
if ($_GET['target_url'] != "") {
$url = $_GET['target_url'];
echo "<script>window.location='{$url}';</script>";
exit;
}
redirect(get_loginpage(WEB_ROOT . '/index.php'));
} else {
Session::Set('error', '验证失败');
redirect(WEB_ROOT . '/index.php');
}
} else {
echo "验证失败";
}
?>
