/**
*
* 重置密码发送验证码接口 ...
*/
public function rePasswordSendSms()
{
$memberId = 0;
if ($memberName = trimall($this->input['member_name'])) {
if (hg_check_email_format($memberName)) {
$this->errorOutput('请填写正确的用户名');
}
if (hg_verify_mobile($memberName)) {
$memberId = $this->Members->get_member_id($memberName, false, false, 'shouji');
if ($memberId) {
$isMobile = 1;
$platform_id = $memberName;
}
}
if (!$memberId) {
$memberId = $this->Members->get_member_id($memberName, false, false, 'm2o');
}
if (!$memberId) {
$memberId = $this->Members->get_member_id($memberName, false, false, 'uc');
}
if (!$memberId) {
$this->errorOutput(NO_MEMBER);
}
if (!$isMobile) {
if ($mobile = trimall($this->input['mobile'])) {
$checkBind = new check_Bind();
$platform_id = $checkBind->check_Bind($memberId, 'shouji');
if ($platform_id && $platform_id != $mobile) {
$this->errorOutput('对不起,您填写的手机号不正确,请重新输入!');
} elseif (empty($platform_id)) {
$this->errorOutput('对不起,您需找回的帐号未绑定手机号!');
}
} else {
$this->errorOutput('请输入正确的手机号,并获取验证码!');
}
}
$this->send_sms();
} else {
$this->errorOutput(NO_MEMBER_NAME);
}
}
public function reset_password()
{
$this->check_verifycode();
$verifycode = trim($this->input['verifycode']);
$member_name = trim($this->input['member_name']);
$password = trim($this->input['password']);
$type = isset($this->input['type']) ? intval($this->input['type']) : -1;
//验证码类型
$identifierUserSystem = new identifierUserSystem();
$identifier = $identifierUserSystem->setIdentifier((int) $this->input['identifier'])->checkIdentifier();
//多用户系统
if (!$verifycode) {
$this->errorOutput(VERIFY_NULL);
}
if (!$password) {
$this->errorOutput(NO_NEW_PASSWORD);
}
if ($type == '-1' && hg_check_email_format($member_name)) {
$member_type = 'email';
$type = 1;
} elseif ($type == '-1' && hg_verify_mobile($member_name)) {
$member_type = 'shouji';
$type = 0;
} else {
if ($type == 0) {
$member_type = 'shouji';
} else {
if ($type == 1) {
$member_type = 'email';
}
}
}
$condition = " AND platform_id = '" . $member_name . "' AND mb.type='{$member_type}' AND mb.identifier=" . $identifier . "";
$field = 'mb.member_id,platform_id,mb.type';
$bind_info = $this->mMember->get_bind_info($condition, $field);
$bind_info = $bind_info[0];
if (empty($bind_info)) {
$this->errorOutput(NO_MEMBER);
}
$data = array();
$data['member_id'] = $bind_info['member_id'];
//根据验证码修改密码、
if (!$type) {
if ($this->mSmsServer->get_verifycode_info($member_name, $verifycode)) {
//验证成功之后删除
$this->mSmsServer->mobile_verifycode_delete($member_name, $verifycode);
if ($this->settings['ucenter']['open']) {
$_member_name = $member_name;
$is_password = $this->mMember->uc_user_edit($_member_name, '', $password, '', 1);
}
if ($password && ($is_password >= 0 || !$this->settings['ucenter']['open'])) {
$salt = hg_generate_salt();
$data['salt'] = $salt;
$md5_password = md5(md5($password) . $salt);
$data['password'] = $md5_password;
} elseif ($password && ($is_password < 0 && $this->settings['ucenter']['open'])) {
$this->errorOutput('UC密码同步失败');
}
if ($this->mMember->update($data)) {
$bind_info['status'] = 1;
$this->addItem($bind_info);
$this->output();
}
} else {
$this->errorOutput(MOBILE_VERIFY_FAILED);
}
} else {
if ($this->memberverifycode->get_verifycode_info($member_name, $verifycode, $type, $action = 1)) {
//验证成功之后删除
$this->memberverifycode->verifycode_delete($member_name, $verifycode, $type, $action = 1);
if ($this->settings['ucenter']['open']) {
$_member_name = $member_name;
$is_password = $this->mMember->uc_user_edit($_member_name, '', $password, '', 1);
}
if ($password && ($is_password > 0 || !$this->settings['ucenter']['open'])) {
$salt = hg_generate_salt();
$data['salt'] = $salt;
$md5_password = md5(md5($password) . $salt);
$data['password'] = $md5_password;
} elseif ($password && ($is_password < 0 && $this->settings['ucenter']['open'])) {
$this->errorOutput('UC密码同步失败');
}
if ($this->mMember->update($data)) {
$bind_info['status'] = 1;
$this->addItem($bind_info);
$this->output();
}
} else {
$this->errorOutput(EMAIL_VERIFY_FAILED);
}
}
}
public function uc_user_edit($username, $oldpw, $newpw, $email, $ignoreoldpw = 0, $questionid = '', $answer = '')
{
if (empty($this->input['member_name'])) {
$this->input['member_name'] = $username;
}
$check_Bind = new check_Bind();
if (hg_check_email_format($username)) {
$type = 'email';
$member_id = $check_Bind->bind_to_memberid($username, $type, true);
//如果用户名为邮箱则检测邮箱类型
if ($member_id) {
$sql = 'SELECT member_name FROM ' . DB_PREFIX . 'member AS m WHERE member_id = \'' . $member_id . '\'';
$row = $this->db->query_first($sql);
$this->input['member_name'] = $username = $row['member_name'];
}
} else {
if (hg_verify_mobile($username)) {
$type = 'shouji';
$member_id = $check_Bind->bind_to_memberid($username, $type, true);
//如果用户名为邮箱则检测邮箱类型
if ($member_id) {
$sql = 'SELECT member_name FROM ' . DB_PREFIX . 'member AS m WHERE member_id = \'' . $member_id . '\'';
$row = $this->db->query_first($sql);
$this->input['member_name'] = $username = $row['member_name'];
}
}
}
if (empty($member_id)) {
$member_id = $check_Bind->bind_to_memberid($username, 'uc');
//优先检测uc类型
$type = 'uc';
}
if (empty($member_id)) {
$member_id = $check_Bind->bind_to_memberid($username, 'm2o');
$type = 'm2o';
}
$is_ucid = 0;
if ($member_id) {
$is_ucid = $check_Bind->check_uc($member_id, $type);
}
include_once CUR_CONF_PATH . 'uc_client/client.php';
$uc_userinfo = uc_get_user($this->input['member_name']);
if ($is_ucid && $is_ucid == $uc_userinfo[0]) {
return uc_user_edit($username, $oldpw, $newpw, $email, $ignoreoldpw, $questionid, $answer);
}
return 0;
//UC信息未修改
}
/**
* 检查必填等限制项
* @param unknown_type $forms 提交的表单
* @param unknown_type $value
*/
private function check_limit($forms, $value, $id)
{
$nums = 0;
if ($value['is_required'] && !$forms[$value['type'] . '_' . $value['id']]) {
if ($value['type'] == 'standard' && $value['form_type'] == 5 && $_FILES['file_' . $value['id']] || $value['type'] == 'standard' && $value['form_type'] == 6) {
} else {
$this->errorOutput($value['name'] . '不能为空!');
}
}
if ($value['is_unique'] && $forms[$value['type'] . '_' . $value['id']]) {
if ($this->check_exist($forms[$value['type'] . '_' . $value['id']], $id, $value['id'])) {
$this->errorOutput($value['name'] . ' ' . $forms[$value['type'] . '_' . $value['id']] . ' 已经存在!');
}
}
if (is_array($forms[$value['type'] . '_' . $value['id']]) && !array_filter($forms[$value['type'] . '_' . $value['id']]) && $value['is_required']) {
$this->errorOutput($value['name'] . '不能为空!');
}
if ($value['char_num']) {
$num = $this->get_char_num(trim($forms[$value['type'] . '_' . $value['id']]));
if ($num > $value['char_num']) {
$this->errorOutput($value['name'] . '字符数不能超过' . $value['char_num'] . '个!');
}
}
if ($forms[$value['type'] . '_' . $value['id']] && ($value['fixed_id'] == 3 && $value['type'] == 'fixed') || $value['member_field'] == 'mobile') {
$check_mobile = hg_verify_mobile_fb($forms[$value['type'] . '_' . $value['id']]);
if (!$check_mobile && $forms[$value['type'] . '_' . $value['id']]) {
$this->errorOutput(MOBILE_ERROR);
}
}
if ($forms[$value['type'] . '_' . $value['id']] && ($value['fixed_id'] == 2 && $value['type'] == 'fixed') || $value['member_field'] == 'email') {
$check_email = hg_check_email_format($forms[$value['type'] . '_' . $value['id']]);
if (!$check_email) {
$this->errorOutput(EMAIL_ERROR);
}
}
if ($value['form_type'] == 3 && $value['type'] == 'standard') {
if (is_array($forms[$value['type'] . '_' . $value['id']])) {
$nums = count(array_filter($forms[$value['type'] . '_' . $value['id']]));
} else {
$nums = count(array_filter(explode(',', $forms[$value['type'] . '_' . $value['id']])));
}
if ($nums) {
if ($value['limit_type'] == 1 && $nums < $value['op_num'] && $nums > 0) {
$this->errorOutput($value['name'] . '至少要选' . $value['op_num'] . '项!');
}
if ($value['limit_type'] == 2 && $nums > $value['op_num']) {
$this->errorOutput($value['name'] . '至多只能选' . $value['op_num'] . '项!');
}
if ($value['limit_type'] == 3 && $nums != $value['op_num']) {
$this->errorOutput($value['name'] . '只能且必须选' . $value['op_num'] . '项!');
}
if ($value['min'] && $nums < $value['min'] && $nums > 0) {
$this->errorOutput($value['name'] . '至少要选' . $value['min'] . '项!');
}
if ($value['max'] && $nums > $value['max']) {
$this->errorOutput($value['name'] . '至多只能选' . $value['max'] . '项!');
}
}
}
if ($value['fixed_id'] == 5 && $forms[$value['type'] . '_' . $value['id']]) {
if (!($input_time = strtotime($forms[$value['type'] . '_' . $value['id']]))) {
$this->errorOutput($value['name'] . '不是合法的日期格式');
}
$_start_time = strtotime($value['start_time'] . '-01-01 00:00:00');
$_end_time = strtotime($value['end_time'] . '-12-31 23:59:59');
if ($_start_time && $input_time < $_start_time or $_end_time && $input_time > $_end_time) {
$this->errorOutput($value['name'] . '超出时间范围!');
}
}
}
private function checkRegMemberNameError()
{
!$this->memberName && $this->errorOutput(NO_MEMBER_NAME);
$identifierUserSystem = new identifierUserSystem();
$identifier = $identifierUserSystem->setIdentifier((int) $this->input['identifier'])->checkIdentifier();
//多用户系统
if ($this->memberName && $this->type == 'm2o' && is_numeric($this->memberName)) {
$this->errorOutput(MEMBER_NO_NUM);
} else {
if ($this->memberName && $this->type == 'm2o' && ($memberNameStatus = $this->mMember->member_name_auth($this->memberName)) != 1) {
$ret_verify = $this->mMember->verify_member_name($this->memberName, 0, $identifier);
switch ($ret_verify) {
case -4:
$this->errorOutput(MEMBER_NAME_EXCEEDS_MAX);
break;
case -5:
$this->errorOutput(USERNAME_BELOW_MINIMUM);
break;
case -6:
$this->errorOutput(MEMBER_NAME_ERROR);
break;
default:
break;
}
}
}
if ($this->memberName && $this->type == 'shouji' && !hg_verify_mobile($this->memberName)) {
$this->errorOutput(MOBILE_NUMBER_FORMAT_ERROR);
}
if ($this->memberName && $this->type == 'email' && !hg_check_email_format($this->memberName)) {
$this->errorOutput(EMAIL_FORMAT_ERROR);
}
}
/**
*
* 检测邮箱状态 ...
* @param string $email
*/
public function check_reg_mail($email, $member_id = 0, $identifier = 0)
{
$checkemail = 0;
//邮箱未传值,未检测
if ($email) {
$checkemail = 1;
//开始检测
if (!hg_check_email_format($email)) {
$checkemail = -4;
}
if ($checkemail > 0 && $this->settings['ucenter']['open'] && !$identifier) {
$mMember = new member();
$ucid = $mMember->checkUc($member_id);
include_once CUR_CONF_PATH . 'uc_client/client.php';
if ($ucid) {
$ucInfo = uc_get_user($ucid, 1);
if ($ucInfo && $ucInfo[2] == $email) {
return 1;
}
}
$checkemail = uc_user_checkemail($email);
}
if ($checkemail > 0) {
if ($member_id) {
$where = ' AND member_id!=' . $member_id;
}
$sql = 'SELECT count(*) as total FROM ' . DB_PREFIX . 'member_bind WHERE 1 ' . $where . ' AND platform_id=\'' . $email . '\' AND identifier = ' . $identifier;
$result = $this->db->query_first($sql);
if ($result['total']) {
$checkemail = -6;
}
}
}
return $checkemail;
}
/**
* member_id 会员id
platform_id 第三方平台会员id char
nick_name 昵称
type 会员类型
type_name 会员类型名称
avatar_url 头像地址
bind_time 绑定时间
bind_ip 绑定ip
* Enter description here ...
*/
public function bind()
{
$memberUpdataField = array();
//主表修改字段
$member_id = intval($this->user['user_id']);
if (!$member_id) {
$this->errorOutput(USER_NO_LOGIN);
}
$platform_id = trim($this->input['platform_id']);
$password = $this->input['password'] ? trim($this->input['password']) : '';
$type = trim($this->input['type']);
$platformInfo = $this->Members->get_platform_name($type);
$identifierUserSystem = new identifierUserSystem();
$identifier = $identifierUserSystem->setIdentifier((int) $this->input['identifier'])->checkIdentifier();
//多用户系统
if (in_array($type, array('m2o', 'uc')) || empty($platformInfo)) {
$this->errorOutput(BIND_MEMBER_TYPE_ERROR);
} else {
if (!$platformInfo['status']) {
$this->errorOutput(BIND_MEMBER_TYPE_CLOSE);
}
}
$type_name = $platformInfo['name'];
$device_token = $this->Members->check_device_token(trim($this->input['device_token']));
$udid = $this->Members->check_udid(trim($this->input['uuid']));
//唯一设备号
if ($device_token === 0) {
$this->errorOutput(ERROR_DEVICE_TOKEN);
}
if ($udid === 0) {
$this->errorOutput(ERROR_UDID);
}
$avatar_url = trim($this->input['avatar_url']);
$ip = hg_getip();
//验证会员是否存在
$condition = " AND m.member_id=" . $member_id;
$left_join = 'LEFT JOIN ' . DB_PREFIX . 'member_bind as mb ON m.member_id=mb.member_id AND m.type=mb.type';
$ret_member = $this->mMember->get_member_info($condition, 'm.*,mb.nick_name', $left_join, 0);
$ret_member = $ret_member[0];
if (empty($ret_member)) {
$this->errorOutput(NO_MEMBER);
}
$callback_sql = '';
if (!empty($ret_member['nick_name'])) {
$nick_name = $ret_member['nick_name'];
} else {
$nick_name = $platform_id;
}
if (empty($avatar_url)) {
$avatar = array('host' => '', 'dir' => '', 'filepath' => '', 'filename' => '');
if (is_serialized_string($ret_member['avatar'])) {
$avatar = unserialize($ret_member['avatar']);
}
$avatar_url = $avatar['host'] . $avatar['dir'] . $avatar['filepath'] . $avatar['filename'];
} else {
$avatar_url = trim($this->input['avatar_url']);
}
if (hg_check_email_format($platform_id)) {
$sql = 'SELECT platform_id FROM ' . DB_PREFIX . 'member_bind WHERE platform_id="' . $platform_id . '" AND identifier=' . $identifier;
$result = $this->db->query_first($sql);
if ($result) {
$this->errorOutput(EMAIL_HAS_BINDED);
}
if (defined(BIND_EMAIL_NEED_VERIFYCODE)) {
$email_verifycode = trim($this->input['email_verifycode']);
if (!$email_verifycode) {
$this->errorOutput(VERIFY_NULL);
}
if ($this->memberverifycode->get_verifycode_info($platform_id, $email_verifycode, 1, $action = 1)) {
//验证成功之后删除
$this->memberverifycode->verifycode_delete($platform_id, $email_verifycode, 1, $action = 1);
} else {
$this->errorOutput(VERIFY_FAILED);
}
}
$type = 'email';
$type_name = '邮箱';
} elseif (hg_verify_mobile($platform_id)) {
$type = 'shouji';
$type_name = '手机';
}
$need_password_type = array('shouji', 'm2o', 'email');
if (in_array($type, $need_password_type) && $password) {
//随机串
$salt = hg_generate_salt();
//密码md5
$md5_password = md5(md5($password) . $salt);
$memberUpdataField['password'] = $md5_password;
$memberUpdataField['salt'] = $salt;
} elseif (in_array($type, $need_password_type) && empty($ret_member['password'])) {
$this->errorOutput(NO_PASSWORD);
//如果绑定类型为手机,M2O,email,但是主表未设置密码,则需要设置密码
}
if (!$member_id) {
$this->errorOutput(NO_MEMBER_ID);
}
if (!$platform_id) {
$this->errorOutput(NO_EXTERNAL_MEMBER_ID);
}
if (!$nick_name) {
$this->errorOutput(NO_NICKNAME);
}
if (!$type) {
$this->errorOutput(NO_EXTERNAL_TYPE);
}
//验证手机验证码
if ($type == 'shouji') {
$mobile_verifycode = trim($this->input['mobile_verifycode']);
if (!$mobile_verifycode) {
$this->errorOutput(MOBILE_NOT_VERIFY);
}
$mobile = $platform_id;
//简单验证手机号格式
if (!hg_verify_mobile($mobile)) {
$this->errorOutput(MOBILE_NUMBER_FORMAT_ERROR);
}
//验证码
$verifycode = $this->mSmsServer->get_verifycode_info($mobile, $mobile_verifycode);
if (empty($verifycode)) {
$this->errorOutput(VERIFY_FAILED);
}
//删除验证码
$this->mSmsServer->mobile_verifycode_delete($mobile, $mobile_verifycode);
if (TIMENOW > $verifycode['create_time'] + VERIFYCODE_EXPIRED_TIME) {
$this->errorOutput(VERIFY_EXPIRED);
}
}
$condition = " AND mb.platform_id = '" . $platform_id . "' AND mb.type = '" . $type . "' AND mb.identifier=" . $identifier;
$_bind = $this->mMember->get_bind_info($condition);
if ($_bind[0] && $member_id != $_bind[0]['member_id']) {
$this->errorOutput(ACCOUNT_BIND);
//验证此账户类型是否已被其他用户绑定
}
$condition = " AND mb.member_id = '" . $member_id . "' AND mb.type = '" . $type . "' AND mb.identifier=" . $identifier;
$bind = $this->mMember->get_bind_info($condition);
$bind = $bind[0];
if ($bind) {
$this->errorOutput(BIND_TYPE_EXISTS);
//强制用户解除已有该类型绑定,防止原先绑定信息未经验证被串改!
}
$avatar_array = $this->mMember->update_avatar($avatar_url, $bind, $member_id);
if ($avatar_array && is_array($avatar_array)) {
$sql = 'UPDATE ' . DB_PREFIX . 'member SET avatar =\'' . daddslashes(serialize($avatar_array)) . '\' WHERE member_id=' . intval($member_id);
$this->db->query($sql);
}
$bind_data = array('member_id' => $member_id, 'platform_id' => $platform_id, 'nick_name' => $nick_name, 'type' => $type, 'type_name' => $type_name, 'avatar_url' => $avatar_url, 'identifier' => $identifier, 'reg_device_token' => $device_token, 'reg_udid' => $udid);
if (empty($bind)) {
$checkBind = new check_Bind();
$isUc = 0;
$isUc = $checkBind->check_Bind($member_id, 'uc');
if (empty($isUc)) {
$isUc = $checkBind->check_uc($member_id);
if ($isUc) {
$bind_data['inuc'] = $isUc;
}
}
//新增绑定表
$bind_data['bind_time'] = TIMENOW;
$bind_data['bind_ip'] = $ip;
$ret_bind = $this->mMember->bind_create($bind_data);
if (empty($ret_bind)) {
$this->errorOutput(BIND_DATA_ADD_FAILED);
}
} else {
//更新绑定表
$ret_bind = $this->mMember->bind_update($bind_data);
if (empty($ret_bind)) {
$this->errorOutput(BIND_DATA_UPDATE_FAILED);
}
}
if ($type == 'shouji') {
$memberUpdataField['mobile'] = $platform_id;
} elseif ($type == 'email') {
$memberUpdataField['email'] = $platform_id;
}
if ($ret_member['type'] == 'email' || $ret_member['type'] == 'shouji') {
$memberUpdataField['member_name'] = $platform_id;
}
$return = array('member_id' => $member_id, 'member_name' => in_array($ret_member['member_name'], array('m2o', 'uc')) ? $ret_member['member_name'] : $platform_id, 'type' => $type, 'nick_name' => $nick_name, 'is_exist_password' => $ret_member['password'] ? 1 : 0);
if ($memberUpdataField && $this->mMember->update($memberUpdataField, array('member_id' => $member_id))) {
if ($this->settings['ucenter']['open']) {
if ($ret_member['type'] == 'm2o' && $type == 'email') {
$this->mMember->uc_user_edit($ret_member['member_name'], '', $password, $platform_id, 1);
}
}
}
$this->addItem($return);
$this->output();
}
protected function verify_email_format($email)
{
return hg_check_email_format($email);
}
/**
* 生成邮箱验证码并发送接口
* $mail 邮箱
*
* 返回
* success
*/
private function generate_link_email()
{
if (!$this->settings['App_email']) {
$this->errorOutput('邮箱验证码发送失败!请联系管理员');
}
if (empty($this->email)) {
$this->errorOutput(NO_EMAIL);
} else {
if (!hg_check_email_format($this->email)) {
$this->errorOutput(EMAIL_FORMAT_ERROR);
}
}
if (!$this->appuniqueid) {
$this->errorOutput('发送配置标识不能为空');
}
include ROOT_PATH . 'lib/class/email.class.php';
$Oemail = new email();
$params = array('to' => $this->email, 'appuniqueid' => $this->appuniqueid);
if ($this->subject) {
$params['subject'] = $this->subject;
} elseif ($this->tspace) {
$params['tspace'] = $this->tspace;
}
if ($this->body) {
$params['body'] = $this->body;
} elseif ($this->bspace) {
$params['bspace'] = $this->bspace;
}
$sendInfo = $Oemail->addEmailQueue($params);
$data = array('email' => $this->email, 'type' => $this->type, 'status' => 0, 'token' => $this->token, 'create_time' => TIMENOW, 'expire_time' => $this->_expire_time);
$res = $this->email_token->create($data);
return $data;
}
