public function bindbank()
{
$oldaccount = M('member_banks')->getFieldByUid($this->uid, 'bank_num');
$data['uid'] = $this->uid;
$data['bank_num'] = text($_POST['account']);
$data['bank_name'] = text($_POST['bankname']);
$data['bank_address'] = text($_POST['bankaddress']);
$data['bank_province'] = text($_POST['province']);
$data['bank_city'] = text($_POST['cityName']);
$data['add_ip'] = get_client_ip();
$data['add_time'] = time();
//短信校验
$smscode = text($_POST['smscode']);
if (!is_verify($this->uid, $smscode, 11, 10 * 60)) {
ajaxmsg('短信验证码不对,请重新输入!', 0);
}
if ($oldaccount) {
$old = text($_POST['oldaccount']);
if ($old != $oldaccount) {
ajaxmsg('原银卡号不对', 0);
}
$newid = M('member_banks')->save($data);
} else {
$newid = M('member_banks')->add($data);
}
if ($newid) {
MTip('chk2', $this->uid);
ajaxmsg();
} else {
ajaxmsg('操作失败,请重试', 0);
}
}
public function getpaypasswordverify()
{
$code = text($_GET['vcode']);
$uk = is_verify(0, $code, 7, 60 * 1000);
if (false === $uk) {
$this->error("验证失败");
} else {
session("temp_get_paypass_uid", $uk);
$this->display('getpaypass');
}
}
public function validate()
{
$pre = C('DB_PREFIX');
$withdraw_money = floatval($_POST['amount']);
$pwd = md5($_POST['pwd']);
$vo = M('members m')->field('mm.account_money,m.user_leve,m.time_limit')->join("{$pre}member_money mm on mm.uid = m.id")->where("m.id={$this->uid} AND m.pin_pass='******'")->find();
//$this->display("Public:_footer");
if (!is_array($vo)) {
ajaxmsg("", 0);
}
if ($vo['account_money'] < $withdraw_money) {
ajaxmsg("提现额大于帐户余额", 2);
}
$start = strtotime(date("Y-m-d", time()) . " 00:00:00");
$end = strtotime(date("Y-m-d", time()) . " 23:59:59");
$wmap['uid'] = $this->uid;
$wmap['withdraw_status'] = array("neq", 3);
$wmap['add_time'] = array("between", "{$start},{$end}");
$today_money = M('member_withdraw')->where($wmap)->sum('withdraw_money');
$smscode = text($_POST['smscode']);
if (!is_verify($this->uid, $smscode, 12, 10 * 60)) {
ajaxmsg('短信验证码不对,请重新输入!', 3);
}
if (1 == 1 || $vo['user_leve'] > 0 && $vo['time_limit'] > time()) {
if ($today_money + $withdraw_money > 1000000) {
$message = "单日提现上限为100万元。您今日已经申请提现金额:{$today_money}元,当前申请金额为:{$withdraw_money}元,已超出单日上限,请您修改申请金额或改日再申请提现";
ajaxmsg($message, 2);
}
$tqfee = explode("|", $this->glo['fee_tqtx']);
$fee = getFloatValue($tqfee[0] * $withdraw_money / 100, 2);
$fee > $tqfee[1] ? $fee = $tqfee[1] : '';
//if( ($vo['account_money']-$withdraw_money - $fee)<0 ){
$message = "您好,您申请提现{$withdraw_money}元,确认要提交吗?";
//}else{
// $message = "您好,您申请提现{$withdraw_money}元,提现手续费{$fee}元将从您的帐户余额中扣除,确认要提现吗?";
//}
ajaxmsg("{$message}", 1);
} else {
if ($today_money + $withdraw_money > 300000) {
$message = "您是普通会员,单日提现上限为30万元。您今日已经申请提现金额:{$today_money元},当前申请金额为:{$withdraw_money元},已超出单日上限,请您修改申请金额或改日再申请提现";
ajaxmsg($message, 2);
}
$tqfee = $this->glo['fee_pttx'];
$fee = getFloatValue($tqfee * $withdraw_money / 100, 2);
if ($vo['account_money'] - $withdraw_money - $fee < 0) {
$message = "您好,您申请提现{$withdraw_money}元,提现手续费{$fee}元将从您的提现金额中扣除,确认要提现吗?";
} else {
$message = "您好,您申请提现{$withdraw_money}元,提现手续费{$fee}元将从您的帐户余额中扣除,确认要提现吗?";
}
ajaxmsg("{$message}", 1);
}
}
public function login()
{
require C("APP_ROOT") . "Common/menu.inc.php";
if (session("admin") > 0) {
$this->redirect('index');
exit;
}
if ($_POST) {
// if($_SESSION['verify'] != md5($_POST['code'])){
// $this->error("验证码错误!");
// }
$admin_name = text($_POST['admin_name']);
if (!session("temp_adminid")) {
$this->error('验证失败');
return;
}
if (!is_verify(session("temp_adminid"), text($_POST['code']), 13, 10 * 60)) {
$this->error('短信验证码不对,请重新输入!');
return;
}
$data['user_name'] = $admin_name;
$data['user_pass'] = md5($_POST['admin_pass']);
$data['is_ban'] = array('neq', '1');
$admin = M('ausers')->field('id,user_name,u_group_id,real_name,is_kf,area_id')->where($data)->find();
if (is_array($admin) && count($admin) > 0) {
foreach ($admin as $key => $v) {
session("admin_{$key}", $v);
}
if (session("admin_area_id") == 0) {
session("admin_area_id", "-1");
}
session('admin', $admin['id']);
session('adminname', $admin['real_name']);
$this->assign('jumpUrl', "__ROOT__/" . SAFE_ADMIN . "/index");
$this->success('登陆成功,现在转向管理主页');
} else {
$this->error('用户名或密码错误,登陆失败');
}
} else {
$this->display();
}
}
private function doCheckToken()
{
$token = text($_POST["token"]);
if (!is_verify($this->wdzjUid, text($token), 14, 10 * 60)) {
echo "Token is incorrect!";
exit;
}
}
public function checkUndoMethod()
{
$phcode = text($_POST['phcode']);
$emcode = text($_POST['emcode']);
$idnum = $this->uid;
if (is_verify($this->uid, $phcode, 10, 10 * 60)) {
if (is_verify($this->uid, $emcode, 6, 10 * 60)) {
M('members')->where("id='{$idnum}'")->setField('user_phone', null);
M('members_status')->where("uid='{$idnum}'")->setField('phone_status', 0);
ajaxmsg('手机取消绑定成功', 1);
} else {
ajaxmsg('邮箱验证码错误', 2);
}
} else {
ajaxmsg('手机验证码不正确', 3);
}
}
public function verifyep()
{
$pcode = is_verify($this->uid, text($_POST['pcode']), 3, 10 * 60);
$ecode = is_verify($this->uid, text($_POST['ecode']), 3, 10 * 60);
if ($pcode && $ecode) {
session('temp_safequestion', 1);
ajaxmsg();
} else {
ajaxmsg('', 0);
}
}
/**
* Генерирует информацию про юзера, по его данным, в HTML-код (новая версия)
*
* @global session $session
* @param type $user
* @return $session
*/
function view_user3($user, $query_link = "")
{
global $session;
if (is_object($user)) {
$user = get_object_vars($user);
}
$is_emp = is_emp($user['role']);
$is_emp_pfx = $is_emp ? 'e' : 'f';
$is_emp_pfx = $user['is_pro_test'] === 't' ? 'test' : $is_emp_pfx;
$login = $user['login'];
$link = '/users/' . $login;
$login_cls = $is_emp ? '6db335' : 'fd6c30';
$username = $user['uname'] . ' ' . $user['usurname'];
$html = $session->view_online_status($login) . '<a class="b-username__link b-username__link_color_000 b-username__link-empty" href="' . $link . $query_link . '">' . $username . '</a>
<span class="b-username__login-mark">
<span class="b-username__login b-username__login_color_' . $login_cls . '">[<a class="b-username__link b-username__link_color_' . $login_cls . '" href="' . $link . $query_link . '">' . $login . '</a>]</span>';
//$pro = ' ' . view_profi();
$is_pro = $user['is_pro'] == 't' || $user['is_pro_tes'] == 't';
$html .= ($is_pro || $user['is_team'] == 't' || @$user['is_profi'] == 't' ? ' ' : '') . '<span class="b-username__marks">';
if (@$user['is_profi'] == 't') {
$html .= view_profi();
} else {
if ($is_pro && $user['is_team'] == 'f') {
/* $is_emp_pfx = $is_emp_pfx . 'pro'; */
$title = 'PRO';
$html .= $is_emp ? view_pro_emp() : view_pro();
}
}
if ($user['is_team'] == 't') {
$is_emp_pfx = 'team';
$title = 'Команда Free-lance.ru';
$html .= view_team_fl();
//$html .= ' <a class="b-layout__link" href="/about/team/" target="_blank"><span alt="Платный аккаунт" title="Платный аккаунт" class="b-icon b-icon__pro b-icon__pro_' . $is_emp_pfx . ' "></span></a>'.(is_verify($login)? view_verify():'');
}
$is_verify = !empty($user['is_verify']) ? $user['is_verify'] == 't' : is_verify($login);
$html .= ($is_verify ? view_verify() : '') . '</span>';
$status = $session->getActivityByLogin($user['login']);
$last_ref_unixtime = strtotime($status);
if ($status && time() - $last_ref_unixtime <= 30 * 60) {
$ago = ago_pub(strtotimeEx($status));
if (intval($ago) == 0) {
$ago = "менее минуты";
}
/* $html .= ' <span class="b-layout__txt b-layout__txt_fontsize_11 b-layout__txt_color_fd6c30 b-layouyt__txt_weight_normal">На сайте</span>';*/
} else {
/* $html .= ' <span class="b-layout__txt b-layout__txt_fontsize_11 b-layout__txt_color_808080 b-layouyt__txt_weight_normal">Нет на сайте</span>';*/
}
$html .= '</span>';
return $html;
}
public function validatephone()
{
$jsoncode = file_get_contents("php://input");
$arr = array();
$arr = json_decode($jsoncode, true);
if (!is_array($arr) || empty($arr) || empty($arr['code'])) {
ajaxmsg("数据有误!", 0);
}
if ($arr['uid'] != $this->uid) {
ajaxmsg("数据有误!", 0);
}
$phonestatus = M('members_status')->getFieldByUid($this->uid, 'phone_status');
if ($phonestatus == 1) {
ajaxmsg("手机已经通过验证", 1);
}
//echo "uid".$this->uid."code".$arr['code'];
if (is_verify($this->uid, text($arr['code']), 2, 10 * 60)) {
$updata['phone_status'] = 1;
if (!session("temp_phone")) {
ajaxmsg("验证失败", 0);
}
$updata1['user_phone'] = session("temp_phone");
$a = M('members')->where("id = {$this->uid}")->count('id');
if ($a == 1) {
$newid = M("members")->where("id={$this->uid}")->save($updata1);
} else {
M('members')->where("id={$this->uid}")->setField('user_phone', session("temp_phone"));
}
$updata2['cell_phone'] = session("temp_phone");
$b = M('member_info')->where("uid = {$this->uid}")->count('uid');
if ($b == 1) {
$newid = M("member_info")->where("uid={$this->uid}")->save($updata2);
} else {
$updata2['uid'] = $this->uid;
$updata2['cell_phone'] = session("temp_phone");
M('member_info')->add($updata2);
}
$c = M('members_status')->where("uid = {$this->uid}")->count('uid');
if ($c == 1) {
$newid = M("members_status")->where("uid={$this->uid}")->save($updata);
} else {
$updata['uid'] = $this->uid;
$newid = M('members_status')->add($updata);
}
if ($newid) {
$newid = setMemberStatus($this->uid, 'phone', 1, 10, '手机');
ajaxmsg("验证成功");
} else {
ajaxmsg("验证失败", 0);
}
} else {
ajaxmsg("验证校验码不对,请重新输入!", 0);
}
}
/**
* Восстановление предложения.
*
* @param integer $prj_id ID проекта
* @param integer $offer_id ID предложения
*
* @return xajaxResponse
*/
function RestoreOffer($prj_id, $offer_id)
{
session_start();
$objResponse = new xajaxResponse();
require_once $_SERVER['DOCUMENT_ROOT'] . '/classes/contest.php';
require_once $_SERVER['DOCUMENT_ROOT'] . '/classes/projects.php';
// если пользователь не про или не верифицирован, то есть смысл проверить, может быть конкурс только для про или только для верифицированных
$prj = new projects();
$project = $prj->GetPrjCust($prj_id);
if ((!is_pro() || !is_verify()) && $project['user_id'] != get_uid() && !hasPermissions('projects')) {
if ($project['pro_only'] == 't' && !is_pro()) {
$objResponse->alert('Данная функция доступна только пользователям с аккаунтом PRO.');
return $objResponse;
} elseif ($project['verify_only'] == 't' && !is_verify()) {
$objResponse->alert('Данная функция доступна только верифицированным пользователям.');
return $objResponse;
}
}
$contest = new contest(0, $uid, is_emp(), FALSE, hasPermissions('projects'));
$contest->RestoreOffer($offer_id);
$objResponse->script("\$('comment{$offer_id}').show()");
return $objResponse;
}
?>
_2" href="/users/<?php
echo $theme['login'];
?>
/" title="<?php
echo $theme['login'];
?>
"><?php
echo user_in_color($theme['login'], $theme['role'], $theme['payed']);
?>
</a><?php
echo user_in_color(']', $theme['role'], $theme['payed']);
?>
<?php
echo $theme['is_team'] == 't' ? $is_team : $pro;
echo is_verify($theme['login']) ? view_verify() : '';
?>
<?php
echo $theme['completed_cnt'] > 0 ? view_sbr_shield() : '';
?>
<?php
if ($mod == 0) {
?>
<a class="mailto-login" href="mailto:<?php
echo $theme['email'];
?>
">
<?php
echo $theme['email'];
?>
</a>
,<?php
echo $offer['user_id'] == get_uid() ? '1' : '0';
?>
); return false;">Удалить навсегда</a></li><?php
}
?>
<?php
if (($contest->is_moder || $offer['user_id'] == $uid) && !$contest->is_banned && !$project['contest_end']) {
if ($project['pro_only'] === 't' && !$is_pro) {
?>
<li class="t-o<?php
echo $i;
?>
"><a href="javascript:void(0)" onclick="alert('Данная функция доступна только пользователям с аккаунтом PRO.')">Редактировать</a></li>
<?php
} elseif ($project['verify_only'] === 't' && !is_verify()) {
?>
<li class="t-o<?php
echo $i;
?>
"><a href="javascript:void(0)" onclick="alert('Данная функция доступна только верифицированным пользователям.')">Редактировать</a></li>
<?php
} else {
?>
<li class="t-o<?php
echo $i;
?>
"><a href="<?php
echo getFriendlyURL("project", $project['id']);
?>
?offer-edit=<?php
function view_mark_user($value, $pfx = '', $pro2 = true, $nbsp = "")
{
/*!!!is_team!!!*/
if (@$value[$pfx . 'is_profi'] == 't') {
$pro = ' ' . view_profi();
} else {
if ($pro2) {
$is_pro = ' ' . view_pro2($value['is_pro_test'] == 't');
} else {
$is_pro = ' ' . view_pro();
}
$pro = $value[$pfx . 'is_pro'] == 't' ? is_emp($value[$pfx . 'role']) ? ' ' . view_pro_emp() : $is_pro : "";
}
$is_team = ' ' . view_team_fl();
if (is_string($value['is_verify'])) {
$isVerify = $value['is_verify'] === 't';
} elseif (is_bool($value['is_verify'])) {
$isVerify = $value['is_verify'];
} else {
// эта часть должна убраться, чтобы не была соблазна использовать
// сильно увеличивает количество запросов к базе
$isVerify = $value[$pfx . 'login'] && is_verify($value[$pfx . 'login']);
}
if ($isVerify) {
$pro .= view_verify();
$is_team .= view_verify();
}
return $value[$pfx . 'is_team'] == 't' ? $is_team : $pro;
}
public function getpinpasswordverify()
{
$code = text($_GET['vcode']);
$uk = is_verify(0, $code, 9, 60 * 1000);
if (false === $uk) {
$this->assign('jumpUrl', __APP__ . "/member/user#fragment-3");
$this->error("重置支付密码验证失败");
} else {
$this->display('getpinpass');
}
}
echo seo_end();
?>
</span> <?php
if ($winner == $blog->id) {
?>
<a name="winner" id="winner"></a><?php
}
?>
<?php
/*!!!is_team!!!*/
$pro = $blog->payed == 't' ? $blog->role == 'emp' ? view_pro_emp() : view_pro2($blog->payed_test == "t" ? true : false) : "";
$is_team = view_team_fl();
?>
<?php
echo $blog->is_team == 't' ? $is_team : $pro;
echo is_verify($blog->login) ? view_verify() : '';
?>
<?php
echo $blog->completed_cnt > 0 ? view_sbr_shield() : '';
?>
 
<span class="b-layout__txt b-layout__txt_fontsize_11 b-layout__txt_color_71"><?php
echo date("[d.m.Y | H:i]", strtotimeEx($blog->post_time));
?>
</span>
<?php
$del_allow = $gr_base == 101 ? $blog->login == $_SESSION['login'] || hasPermissions('blogs') : $allow_del;
?>
<?php
if ($blog->deleted) {
public function validatephone()
{
$phonestatus = M('members_status')->getFieldByUid($this->uid, 'phone_status');
if ($phonestatus == 1) {
ajaxmsg("手机已经通过验证", 1);
}
if (is_verify($this->uid, text($_POST['code']), 2, 10 * 60)) {
$updata['phone_status'] = 1;
if (!session("temp_phone")) {
ajaxmsg("验证失败", 0);
}
$updata1['user_phone'] = session("temp_phone");
$a = M('members')->where("id = {$this->uid}")->count('id');
if ($a == 1) {
$newid = M("members")->where("id={$this->uid}")->save($updata1);
} else {
M('members')->where("id={$this->uid}")->setField('user_phone', session("temp_phone"));
}
$updata2['cell_phone'] = session("temp_phone");
$b = M('member_info')->where("uid = {$this->uid}")->count('uid');
if ($b == 1) {
$newid = M("member_info")->where("uid={$this->uid}")->save($updata2);
} else {
$updata2['uid'] = $this->uid;
M('member_info')->add($updata2);
}
$c = M('members_status')->where("uid = {$this->uid}")->count('uid');
if ($c == 1) {
$newid = M("members_status")->where("uid={$this->uid}")->save($updata);
} else {
$updata['uid'] = $this->uid;
$newid = M('members_status')->add($updata);
}
if ($newid) {
memberCreditsLog($this->uid, 11, intval($this->glo["phone_exp"]), "手机认证奖励经验");
memberScoresLog($this->uid, 11, intval($this->glo["phone_score"]), "手机认证奖励积分");
ajaxmsg();
} else {
ajaxmsg("验证失败", 0);
}
} else {
ajaxmsg("验证校验码不对,请重新输入!", 2);
}
}
