static function loginCheck()
{
$uname = wf_gpc('wf_uname', 'p', 'trim');
$upawd = wf_gpc('wf_upawd', 'p', 'trim');
$uhash = wf_gpc('wf_uhash', 'p', 'trim');
if (empty($uhash) || $uhash != $_SESSION['wf_uhash']) {
$_SESSION = array();
$_SESSION['wf_error'] = '校验码码非法,请刷新页面后重试';
wf_redirect('login.php?act=in');
}
// 请求API接口
$json_url = WF_API_URL . '?' . http_build_query(array('key' => WF_API_KEY, 'hostid' => WF_API_HOSTID, 'username' => $uname, 'password' => md5(WF_API_KEY . $upawd)));
$user_info = file_get_contents($json_url);
$user_info = json_decode($user_info);
$_SESSION = array();
if (1 === $user_info->code) {
$_SESSION['wf_uauth'] = explode(',', $user_info->data->auth);
$_SESSION['wf_uroot'] = $user_info->data->root;
$_SESSION['wf_upath'] = $user_info->data->path;
$_SESSION['wf_uhost'] = $user_info->data->host;
$_SESSION['wf_tokey'] = self::getTokey();
$_SESSION['wf_error'] = '';
wf_redirect('./');
} else {
$_SESSION['wf_error'] = $user_info->message;
wf_redirect('login.php?act=in');
}
}
static function loginOut()
{
$_SESSION = array();
unset($_SESSION);
wf_redirect('login.php?act=in');
exit;
}
<?php
require 'config.php';
//判断是否登录,如果不是通过登录进入则进入登录界面
if (!WF_Auth::isLogin()) {
wf_redirect('login.php?act=in');
exit;
}
?>
<!DOCTYPE html>
<html lang="zh-CN">
<head>
<meta charset="UTF-8" />
<title>附件下载管理系统</title>
<link rel="stylesheet" href="static/css/style.css" />
<link rel="stylesheet" href="static/css/toolbar.css" />
<link rel="shortcut icon" href="favicon.ico" />
<script type="text/javascript">
window.nfs = {
admin: <?php
echo WF_Auth::isAdmin() ? 'true' : 'false';
?>
,
host: '<?php
echo wf_gpc('wf_uhost', 's');
?>
',
path: '<?php
echo wf_gpc('wf_upath', 's');
