public function permission()
{
session_start();
$infoarr = @$_SESSION['user'];
$media_id = @$_GET['media_id'];
$Token1 = @$_GET['Token'];
$type = @$_GET['ask_method'];
if ($infoarr['openid'] != "") {
if ($media_id == "") {
$Token2 = "";
} else {
include "../cache/" . $media_id . ".php";
$Token2 = $Token['token'];
}
if ($Token1 == $Token2 && $Token1 != "" && $Token2 != "") {
$media_url = "http://weixin.faeries-land.com/uploadfile/" . $media_id . ".mp3";
$data = array('media_id' => "{$media_id}", 'media_url' => $media_url);
$code = 0;
$msg = "success!";
api_response::api_method($type, $code, $msg, $data);
} else {
$code = -1;
$msg = "error:permission denied!";
$data = "null";
api_response::api_method($type, $code, $msg, $data);
}
} else {
$code = -1;
$msg = "error:You have to use wechat app to open! ";
$data = "null";
api_response::api_method($type, $code, $msg, $data);
}
}
public function permission()
{
session_start();
$media_id = @$_GET['media_id'];
$Token1 = @$_GET['Token'];
$type = @$_GET['ask_method'];
if ($media_id == "") {
$Token2 = "";
} else {
include "./cache/" . $media_id . ".php";
$Token2 = $Token['token'];
}
if ($Token1 == $Token2 && $Token1 != "" && $Token2 != "") {
$media_url = "http://card.sky31.com/recordings/" . $media_id . ".mp3";
$data = array('media_id' => "{$media_id}", 'media_url' => $media_url);
$code = 0;
$msg = "success!";
api_response::api_method($type, $code, $msg, $data);
} else {
$code = -1;
$msg = "error:permission denied!";
$data = "null";
api_response::api_method($type, $code, $msg, $data);
}
}
public function get_status()
{
$UserID = $_POST['UserID'];
$status = $_POST['status'];
$type = $_GET['ask_method'];
$res = new dbconnect();
$sql = "select* from users where UserName='******'";
$row = $res->connect($sql);
if ($UserID == "" || $status == "") {
$code = "409";
$msg = "error:UserID or status can not be empty!";
$data = "null";
$result = api_response::api_method($type, $code, $msg, $data);
return $result;
} else {
if ($row['status'] == $status && $status != "") {
$code = "200";
$msg = "success!";
$data = array('id' => "{$row['id']}", 'UserID' => "{$row['UserName']}", 'openid' => "{$row['openid']}", 'nickname' => "{$row['nickname']}", 'headimgurl' => "{$row['headimgurl']}", 'sex' => "{$row['sex']}", 'mobile' => "{$row['mobile']}");
$result = api_response::api_method($type, $code, $msg, $data);
} else {
$code = "406";
$msg = "error:Failure login status!";
$data = "null";
$result = api_response::api_method($type, $code, $msg, $data);
}
return $result;
}
}
public function show($row, $type)
{
$data = array('media_id' => "{$row['media_id']}", 'title' => "{$row['title']}", 'content' => "{$row['content']}", 'create_at' => "{$row['create_at']}", 'From_nickname' => "{$row['From_nickname']}", 'To_nickname' => "{$row['To_nickname']}", 'code_url' => "http://weixin.faeries-land.com/code_img/" . $row['media_id'] . ".png");
if (empty($row)) {
$code = -1;
$msg = "error:The info not exist! ";
$data = "null";
$result = api_response::api_method($type, $code, $msg, $data);
} else {
$code = 0;
$msg = "success!";
$result = api_response::api_method($type, $code, $msg, $data);
}
return $result;
}
public static function get_info()
{
$UserName = $_POST['UserName'];
$PassWord = $_POST['PassWord'];
$appID = $_GET['appID'];
$type = $_GET['ask_method'];
if ($UserName == "" || $PassWord == "") {
$code = "409";
$msg = "error:UserName or password can not be empty!";
$data = "null";
$result = api_response::api_method($type, $code, $msg, $data);
return $result;
} else {
$sql = "select*from users where UserName='******'";
$row = new dbconnect();
$row = $row->connect($sql);
if (empty($row)) {
$code = "404";
$msg = "error:The user does not exist!";
$data = "null";
$result = api_response::api_method($type, $code, $msg, $data);
} else {
$sql = "select*from users where UserName='******'&& PassWord='******' ";
//$row=dbconnect::getInstance()->connect($sql);
$row = new dbconnect();
$row = $row->connect($sql);
$data = array('id' => "{$row['id']}", 'UserID' => "{$row['UserName']}", 'openid' => "{$row['openid']}", 'nickname' => "{$row['nickname']}", 'headimgurl' => "{$row['headimgurl']}", 'sex' => "{$row['sex']}", 'mobile' => "{$row['mobile']}");
if (empty($row)) {
$code = "403";
$msg = "error:Incorrect password!";
$data = "null";
$result = api_response::api_method($type, $code, $msg, $data);
} else {
$code = "200";
$msg = "success!";
define("STR_MD", "23nbhjfdb#%#^A!~");
$status = md5($row['UserName'] . $row['PassWord'] . STR_MD . time());
$UserName = $row['UserName'];
$result = new status();
$result->login_info($UserName, $status, $appID);
$result = api_response::api_method($type, $code, $msg, $data);
}
}
return $result;
}
}
public function show_receive()
{
$infoarr = @$_SESSION['user'];
$type = @$_GET['ask_method'];
$sql = "select*from card where to_openid='{$infoarr['openid']}'";
$result = new dbconnect();
$row = $result->connect($sql);
if (empty($row)) {
$code = -1;
$msg = "error:The info not exist! ";
$data = "null";
$result = api_response::api_method($type, $code, $msg, $data);
} else {
while ($row = $result->connect($sql)) {
$data = array('media_id' => "{$row['media_id']}", 'title' => "{$row['title']}", 'content' => "{$row['content']}", 'create_at' => "{$row['create_at']}", 'From_nickname' => "{$row['From_nickname']}", 'To_nickname' => "{$row['To_nickname']}", 'code_url' => "http://weixin.faeries-land.com/card/ask_cardinfo.php?media_id={$row['media_id']}");
$code = 0;
$msg = "success!";
$result = api_response::api_method($type, $code, $msg, $data);
}
}
return $result;
}
public function submit()
{
$type = @$_GET['ask_method'];
$dir = dirname(__FILE__) . "/media/";
$filename1 = @$_POST['school_no'] . ".mp3";
$filename2 = @$_POST['school_no'] . ".wav";
$name = @$_POST['name'];
$school_no = @$_POST['school_no'];
$mobile = @$_POST['mobile'];
$qq = @$_POST['qq'];
$school = @$_POST['school'];
$sex = @$_POST['sex'];
$media_type = @$_POST['media_type'];
$interesting = @$_POST['interesting'];
$learn = @$_POST['learn'];
//$media_url="http://weixin.faeries-land.com/multimedia/media/".@$_POST['upfile'];
$used = @$_POST['used'];
$other = @$_POST['other'];
$create_at = date("Y-m-d H:i:s");
if (file_exists($dir . $filename1) || file_exists($dir . $filename2)) {
$sql = "insert into media(name,school_no,mobile,qq,school,sex,media_type,interesting,learn,status,used,other,create_at)\n values('{$name}','{$school_no}','{$mobile}','{$qq}','{$school}','{$sex}','{$media_type}','{$interesting}','{$learn}','','{$used}','{$other}','{$create_at}') ";
$conn = new mysqli(HOST, UserName, PassWord, DataBase);
$conn->query("set names UTF8");
$result = $conn->query($sql);
if ($result) {
$sql = "select* from media where school_no='{$_POST['school_no']}' order by create_at desc ";
$result = $conn->query($sql);
$row = $result->fetch_array();
if ($row) {
$code = 0;
$msg = "success!";
$data = array('UserID' => "{$row['UserID']}", 'name' => "{$row['name']}", 'school_no' => "{$row['school_no']}", 'mobile' => "{$row['mobile']}", 'qq' => "{$row['qq']}", 'school' => "{$row['school']}", 'sex' => "{$row['sex']}", 'interesting' => "{$row['interesting']}", 'learn' => "{$row['learn']}", 'status' => "{$row['status']}", 'used' => "{$row['used']}", 'other' => "{$row['other']}");
api_response::api_method($type, $code, $msg, $data);
}
} else {
$code = -1;
$msg = "error:Database Exceptions!";
$data = "null";
api_response::api_method($type, $code, $msg, $data);
}
} else {
$code = -1;
$msg = "error:File not uploaded!";
$data = "null";
api_response::api_method($type, $code, $msg, $data);
}
}
public function show_info()
{
$type = @$_GET['ask_method'];
$sql = "select*from card where openid='{$infoarr['openid']}'";
$result = new dbconnect();
$row = $result->connect($sql);
if ($row) {
$code = 0;
$msg = "success!";
$data = array('media_id' => "{$row['media_id']}");
api_response::api_method($type, $code, $msg, $data);
} else {
$code = -1;
$msg = "error:The info not exist!";
$data = "null";
api_response::api_method($type, $code, $msg, $data);
}
}
