use Model\User; use Util\Token; use Form\Response; if (strtolower($_SERVER['REQUEST_METHOD']) == 'post') { $userPostData = isset($_POST['user']) && is_array($_POST['user']) ? $_POST['user'] : array(); $userPostData = array_map('trim', $userPostData); $username = isset($userPostData['name']) ? $userPostData['name'] : ''; $password = isset($userPostData['pass']) ? $userPostData['pass'] : ''; //进行表单令牌验证 if (Token::validate($_POST['token']) === false) { Response::json(array('msg' => '非法访问,请刷新表单'), 1); } if (User::isUsername($username) == false) { Response::json(array('msg' => '账号不符合规则,请重新输入'), 1); } if (User::isPassword($password) == false) { Response::json(array('msg' => '密码不符合规则,请重新输入'), 1); } $userData = User::getUserDataByUsername('user_id,user_pass', $username); if (isset($userData['user_id']) == false) { Response::json(array('msg' => '您输入的帐号不存在,请重新输入'), 1); } if (md5($password) != $userData['user_pass']) { Response::json(array('msg' => '您输入的密码有误,请重新输入'), 1); } $_SESSION['user_id'] = $userData['user_id']; $_SESSION['user_name'] = $username; Response::json(array('msg' => '系统登录成功'), 0); } ?> <!DOCTYPE html>
$eid = isset($_GET['eid']) ? intval($_GET['eid']) : ''; $act = isset($_GET['act']) ? $_GET['act'] : ''; if ($act == 'save') { $userData = isset($_POST['user']) && is_array($_POST['user']) ? $_POST['user'] : array(); $data = array('user_name' => isset($userData['name']) ? $userData['name'] : '', 'user_pass' => isset($userData['pass']) && $userData['pass'] != '' ? md5($userData['pass']) : '', 'user_real_name' => isset($userData['real_name']) ? $userData['real_name'] : '', 'user_sex' => isset($userData['sex']) && $userData['sex'] != '' ? $userData['sex'] : 1, 'user_age' => isset($userData['age']) && $userData['age'] != '' ? $userData['age'] : 0, 'user_email' => isset($userData['email']) ? $userData['email'] : '', 'user_qq' => isset($userData['qq']) && $userData['qq'] != '' ? $userData['qq'] : 0, 'user_phone' => isset($userData['phone']) && $userData['phone'] != '' ? $userData['phone'] : 0, 'user_mobile' => isset($userData['mobile']) && $userData['mobile'] != '' ? $userData['mobile'] : 0); //去除数据两侧空字符 $data = array_map('trim', $data); if (User::isUsername($data['user_name']) == false) { Response::json(array('msg' => '用户名不符合规则,请重新输入'), 1); } if ($eid > 0) { if ($data['user_pass'] != '' && User::isPassword($data['user_pass']) == false) { Response::json(array('msg' => '密码不符合规则,请重新输入'), 1); } } else { if (User::isPassword($data['user_pass']) == false) { Response::json(array('msg' => '密码不符合规则,请重新输入'), 1); } } //真实姓名 if ($data['user_real_name'] != '' && User::isRealName($data['user_real_name']) == false) { Response::json(array('msg' => '输入的名字不符合规则,请重新输入'), 1); } //性别 if ($data['user_sex'] != '' && User::isSex($data['user_sex']) == false) { Response::json(array('msg' => '输入的性别不符合规则,请重新输入'), 1); } //年龄 if ($data['user_age'] != 0 && User::isAge($data['user_age']) == false) { Response::json(array('msg' => '输入的年龄不符合规则,请重新输入'), 1); }