function uc_api_synlogout($get, $post) { header('P3P: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"'); ZLogin::NoRemember(); if (isset($_SESSION['user_id'])) { unset($_SESSION['user_id']); } return API_RETURN_SUCCEED; }
} if ($_POST['password2'] == $_POST['password'] && $_POST['password']) { if ($INI['system']['emailverify']) { $u['enable'] = 'N'; } $usergroup = Table::Fetch('user_group', 'customer', 'name'); if (!empty($usergroup)) { $u['user_group_id'] = $usergroup['id']; } if ($user_id = ZUser::Create($u)) { if ($INI['system']['emailverify']) { mail_sign_id($user_id); Session::Set('unemail', $_POST['email']); Utility::Redirect(WEB_ROOT . '/account/verify.php'); } else { ZLogin::Login($user_id); Utility::Redirect(WEB_ROOT . '/index.php'); } } else { $au = Table::Fetch('user', $_POST['email'], 'email'); if ($au) { Session::Set('error', 'Failed, Email has registerred '); } else { Session::Set('error', 'Failed, username has been taken'); } } } else { Session::Set('error', 'Register failed, check your password please'); } } include template('account_signup');
$_POST = magic_gpc($_POST); $_COOKIE = magic_gpc($_COOKIE); /* process currefer*/ $currefer = uencode(strval($_SERVER['REQUEST_URI'])); /* session,cache,configure,webroot register */ Session::Init(); $INI = ZSystem::GetINI(); /* end */ /* date_zone */ if (function_exists('date_default_timezone_set')) { date_default_timezone_set($INI['system']['timezone']); } /* end date_zone */ /* biz logic */ $currency = $INI['system']['currency']; $login_user_id = ZLogin::GetLoginId(); $login_user = Table::Fetch('user', $login_user_id); $hotcities = option_hotcategory('city', false, true); $allcities = option_category('city', false, true); $city = cookie_city(null); if (!isset($_COOKIE['referer'])) { setcookie('referer', $_SERVER['HTTP_REFERER']); } /* not allow access app.php */ if ($_SERVER['SCRIPT_FILENAME'] == __FILE__) { redirect(WEB_ROOT . '/index.php'); } /* end */ $AJAX = 'XMLHttpRequest' == @$_SERVER['HTTP_X_REQUESTED_WITH']; if (false == $AJAX) { header('Content-Type: text/html; charset=UTF-8');
$wwwlink = mail_zd($email); die(include template('account_verify')); } else { if (strpos($secret, '@')) { Session::Set('unemail', $secret); mail_sign_email($secret); redirect(WEB_ROOT . '/account/verify.php'); } } $user = Table::Fetch('user', $secret, 'secret'); if ($user['enable'] == 'Y') { Session::Set('error', '你的账户已经验通过,请直接登录!'); if (isset($_SESSION['user_id'])) { unset($_SESSION['user_id']); ZLogin::NoRemember(); ZUser::SynLogout(); } redirect(WEB_ROOT . '/account/login.php'); } if ($user) { if (option_yes('mobilecode')) { Table::UpdateCache('user', $user['id'], array('emailable' => 'Y')); die(include template('account_signmobile')); } else { Table::UpdateCache('user', $user['id'], array('emailable' => 'Y', 'enable' => 'Y')); Session::Set('notice', '恭喜!你的帐户已经通过Email验证'); ZLogin::Login($user['id']); redirect(get_loginpage(WEB_ROOT . '/index.php')); } } redirect(WEB_ROOT . '/index.php');
<?php require_once dirname(dirname(__FILE__)) . '/app.php'; if (isset($_SESSION['user_id'])) { unset($_SESSION['user_id']); ZLogin::NoRemember(); } redirect('index.php');
$login_user = ZUser::GetLogin($_POST['email'], $_POST['password']); if (!$login_user) { Session::Set('error', '登录失败'); redirect(WEB_ROOT . '/account/login.php'); } else { if (option_yes('mobilecode') && $login_user['emailable'] == 'Y' && $login_user['enable'] == 'N') { $user['id'] = $login_user['id']; Session::Set('error', '请验证手机号'); die(include template('account_signmobile')); } else { if (option_yes('emailverify') && $login_user['emailable'] == 'N' && $login_user['enable'] == 'N' && $login_user['secret']) { Session::Set('unemail', $_POST['email']); redirect(WEB_ROOT . '/account/verify.php'); } else { Session::Set('user_id', $login_user['id']); if (abs(intval($_POST['auto_login']))) { ZLogin::Remember($login_user); } ZUser::SynLogin($login_user['username'], $_POST['password']); ZCredit::Login($login_user['id']); redirect(get_loginpage(WEB_ROOT . '/index.php')); } } } } $currefer = strval($_GET['r']); if ($currefer) { Session::Set('loginpage', udecode($currefer)); } $pagetitle = '登录'; include template('account_login');
<?php require_once dirname(__FILE__) . '/app.php'; if (isset($_SESSION['user_id'])) { unset($_SESSION['user_id']); ZLogin::NoRemember($login_user_id); } redirect(WEB_ROOT . '/index.php');
<?php require_once dirname(dirname(__FILE__)) . '/app.php'; if (isset($_SESSION['partner_id'])) { $login_partner = Table::Fetch('partner', $_SESSION['partner_id']); ZLogin::NoRemeberBiz($login_partner); unset($_SESSION['partner_id']); } redirect(WEB_ROOT . '/biz/login.php');
<?php require_once dirname(dirname(__FILE__)) . '/app.php'; $cookie_username = ZLogin::GetRemeberBizName(); if ($_POST) { $login_partner = ZPartner::GetLogin($_POST['username'], $_POST['password']); if (!$login_partner) { Session::Set('error', '用户名密码不匹配!请重新输入。如果忘记账号或密码,请联系青年优品工作人员为您重置密码'); redirect(WEB_ROOT . '/biz/login.php'); } else { Session::Set('partner_id', $login_partner['id']); ZLogin::RememberBiz($login_partner); redirect(WEB_ROOT . '/biz/coupon/'); } } include template('biz_login');
} $v = join('<br/>', $v); $d = array('html' => $v, 'id' => 'coupon-dialog-display-id'); json($d, 'updater'); } else { if ($action == 'sms') { $coupon = Table::Fetch('coupon', $sid); if ($coupon['sms'] >= 5 && !is_manager()) { json('短信发送' . $INI['system']['couponname'] . '最多5次, 如有任何疑问请联系客服!', 'alert'); } $interval = abs(intval($INI['sms']['interval'])); $lefttime = $interval + $coupon['sms_time'] - time(); if (!is_manager() && $lefttime > 0) { json("你好,请在{$lefttime}秒后,再次尝试短信发送优惠券" . $INI['system']['couponname'], 'alert'); } if (!$coupon || !is_login() || $coupon['user_id'] != ZLogin::GetLoginId() && !is_manager()) { json($cid, 'alert'); } $flag = sms_coupon($coupon); if ($flag === true) { json('手机短信发送成功,请及时查收', 'alert'); } else { if (is_string($flag)) { json($flag, 'alert'); } } json("手机短信发送失败,错误码:{$code}", 'alert'); } } } }
json($flag, 'alert'); } } json("手机短信发送失败,错误码:{$code}", 'alert'); } else { if ($action == 'vouchersms') { $voucher = Table::Fetch('voucher', $cid); if ($voucher['sms'] >= 5 && !is_manager()) { json('短信发送商户券最多5次', 'alert'); } $interval = abs(intval($INI['sms']['interval'])); $lefttime = $interval + $voucher['sms_time'] - time(); if (!is_manager() && $lefttime > 0) { json("你好,请在{$lefttime}秒后,再次尝试短信发送商户券", 'alert'); } if (!$voucher || !is_login() || $voucher['user_id'] != ZLogin::GetLoginId() && !is_manager()) { json('非法下载', 'alert'); } $flag = sms_voucher($voucher); if ($flag === true) { json('手机短信发送成功,请及时查收', 'alert'); } else { if (is_string($flag)) { json($flag, 'alert'); } } json("手机短信发送失败,错误码:{$code}", 'alert'); } } } }
} else { if ('bindcodeyes' == $action) { $mobile = trim(strval($_GET['mobile'])); $user_id = abs(intval($_GET['user_id'])); $secretcode = trim(strval($_GET['secretcode'])); $condition = array('tools' => $mobile, 'enable' => 'N', 'user_id' => $user_id); //json($user_id, 'alert'); $sms = DB::GetTableRow('toolsbind', $condition); if (!$sms) { json(array(array('data' => '非法访问!', 'type' => 'alert'), array('data' => 'X.boxClose();', 'type' => 'eval')), 'mix'); } if ($sms['secret'] != $secretcode) { json('短信认证码不正确,请重新输入!', 'alert'); } else { ZToolsbind::Enable($mobile, true); ZLogin::Login($sms['user_id']); json(array(array('data' => '绑定成功', 'type' => 'alert'), array('data' => 'X.boxClose();', 'type' => 'eval'), array('data' => 'window.location= "/index.php";', 'type' => 'eval')), 'mix'); redirect(WEB_ROOT . '/index.php'); } } else { if ('loginbindmobile' == $action) { $userid = strval($_GET['userid']); $html = render('ajax_dialog_smsloginbind'); json($html, 'dialog'); } else { if ('loginmobilebindcheck' == $action) { $mobile = trim(strval($_GET['mobile'])); $verifycode = trim(strval($_GET['verifycode'])); $user_id = abs(intval($_GET['user_id'])); $secret = Utility::VerifyCode(); if (Utility::CaptchaCheck($verifycode)) {
/** * Performs user sign-in. * * @access public * @since 3.0 * */ function login_action() { global $_POST, $SANITIZER, $SecureSession, $CONFIG; $str_error = ''; // init if (isset($_POST["un"])) { $un = trim($_POST["un"]); $un = $SANITIZER->sanitize($un); } else { $un = ""; } if (isset($_POST["pw"])) { $pw_hash = md5($SANITIZER->sanitize($_POST["pw"])); } else { $pw_hash = ""; } $_POST["remember_me"] = 1; $remember_me = true; /** Get user data from DB **/ $PL_PW = $CONFIG->secure_login_password; if (isset($_POST["cmd_login"])) { if ($un == "") { $str_error .= JText::_("Required field cannot be left blank.") . '<br />'; } /** Log in user **/ if (empty($str_error)) { $str_error .= ZLogin::login($un, $pw_hash); } else { @session_destroy(); $str_error .= JText::_('We cannot log you into your account at this time. Please try again later.') . '<br />'; } if (!empty($str_error)) { return $str_error; } else { //header("Location: {$CONFIG->basedir_rewrite}"); } } }
/** * Performs a new user registration. * * @access public * @since 3.0 * */ function register_action() { global $_POST, $CONFIG, $SANITIZER, $SecureSession; $str_error = ''; // init if (isset($_POST["fullname"])) { $fullname = trim($SANITIZER->sanitize($_POST["fullname"])); } else { $fullname = ""; } if (isset($_POST["un"])) { $un = trim($SANITIZER->sanitize($_POST["un"])); } else { $un = ""; } /* if (isset($_POST["pw"])) { $pw = trim($SANITIZER->sanitize($_POST["pw"])); } else { $pw = ""; } */ if (isset($_POST["pw"])) { //$pw_hash = trim($SANITIZER->sanitize($_POST["pw_hash"])); $pw_hash = md5(trim($SANITIZER->sanitize($_POST["pw"]))); } else { $pw_hash = ""; } if (isset($_POST["email"])) { $email = trim($SANITIZER->sanitize($_POST["email"])); } else { $email = ""; } $email_validation_required = true; /** Save new user's data */ if (isset($_POST["cmd_register"])) { /** Check inputs**/ //echo $pw_hash; if ($fullname == "" || $pw_hash == md5("")) { $str_error .= JText::_("Required field cannot be left blank.") . '<br />'; //return $str_error; } /** Test integrity username **/ $str_error .= ZRegister::test_integrity_username($un); /** Test integrity email **/ $str_error .= ZRegister::test_integrity_email($email); /** Extract firstname, lastname from full name **/ $fullname_array = ZRegister::extract_fullname_parts($fullname); $firstname = $fullname_array[0]; $lastname = $fullname_array[1]; if (empty($str_error)) { $sql = "\n\t\t\t\t\t\t\t\tINSERT INTO users (\n\t\t\t\t\t\t\t\t\tproj_fid\n\t\t\t\t\t\t\t\t\t, proj_item_id\n\t\t\t\t\t\t\t\t\t, un\n\t\t\t\t\t\t\t\t\t, pw\n\t\t\t\t\t\t\t\t\t, firstname\n\t\t\t\t\t\t\t\t\t, lastname\n\t\t\t\t\t\t\t\t\t, gender\n\t\t\t\t\t\t\t\t\t, email\n\t\t\t\t\t\t\t\t\t, birth_date\n\t\t\t\t\t\t\t\t\t, age_rule\n\t\t\t\t\t\t\t\t\t, country\n\t\t\t\t\t\t\t\t\t, language\n\t\t\t\t\t\t\t\t\t, timezone\n\t\t\t\t\t\t\t\t\t, newsletter\n\t\t\t\t\t\t\t\t\t, isconfirmed\n\t\t\t\t\t\t\t\t\t, created)\n\t\t\t\t\t\t\t\tVALUES (\n\t\t\t\t\t\t\t\t\t7\n\t\t\t\t\t\t\t\t\t, 1\n\t\t\t\t\t\t\t\t\t, '{$un}'\n\t\t\t\t\t\t\t\t\t, '{$pw_hash}'\n\t\t\t\t\t\t\t\t\t, '{$firstname}'\n\t\t\t\t\t\t\t\t\t, '{$lastname}'\n\t\t\t\t\t\t\t\t\t, 2\n\t\t\t\t\t\t\t\t\t, '{$email}'\n\t\t\t\t\t\t\t\t\t, '2100-01-01'\n\t\t\t\t\t\t\t\t\t, 0\n\t\t\t\t\t\t\t\t\t, ''\n\t\t\t\t\t\t\t\t\t, ''\n\t\t\t\t\t\t\t\t\t, 0\n\t\t\t\t\t\t\t\t\t, 0\n\t\t\t\t\t\t\t\t\t, 0\n\t\t\t\t\t\t\t\t\t, now()\n\t\t\t\t\t\t\t\t)\n\t\t\t\t\t\t\t "; // if ($_SERVER["REMOTE_ADDR"] == @$CONFIG->debug_ip) { //echo $sql; } $result = mysql_query($sql); $new_user_id = mysql_insert_id(); /* */ if ($new_user_id && mysql_affected_rows() > 0) { @setcookie("registered", 1, time() + 60 * 60 * 24 * 365, "/"); /* expire in 1 year */ /** Add default Josta (News-Josta) **/ //$str_error = ZCollection::add_josta($new_user_id, JText::_("Friends"), "", $str_error); $str_error = ZCollection::add_josta($new_user_id, "Default Josta", "", $str_error); //ZUser::add_user_to_josta($new_user_id); } else { @session_destroy(); $str_error .= JText::_('Registration was not successful. Please try again.'); } } /** Send email validation request **/ if ($email_validation_required && empty($str_error)) { // Encrypt email address $strongCipher = new Cipher_blowfish(); $strongCipher->setKey(@$CONFIG->secret); $activation = $strongCipher->zf_encrypt(date("Y-m-d H:i:s") . "_" . $new_user_id); // Send email with password reset instructions $name = JText::_('ZIME Service'); //senders name $sender = "*****@*****.**"; //senders e-mail adress $recipient = $email; //recipient $subject = ZString::replaceVars(JText::_('Welcome to ZIME'), $un); //subject $mail_body = JText::__('email_registration.txt'); $mail_body = str_replace("[USER]", $fullname . " ({$un})", $mail_body); $mail_body = str_replace("[URL]", "{$CONFIG->basedir_rewrite}validate.php?option=register&activation={$activation}", $mail_body); $header = "From: " . $name . " <" . $sender . ">\r\n"; //optional headerfields //echo $mail_body ini_set('sendmail_from', $sender); //Suggested by "Some Guy" if (!@mail($recipient, $subject, $mail_body, $header)) { //mail command :) $str_error .= JText::_('Could not send the notification.'); } } /** Set default notices **/ $_POST["notice_new_follower"] = "1"; ZSettings::notices_action($new_user_id); // catch $str_error ?? /** Log in user **/ if (empty($str_error)) { $str_error .= ZLogin::login($un, $pw_hash); } else { //@session_destroy(); //$str_error .= JText::_('We cannot log you into your account at this time. Please try again later.') . '<br />'; } if (!empty($str_error)) { return $str_error; } else { @header("Location: {$CONFIG->basedir_rewrite}"); } } }
* redirect index.php where autologin is true * @author abei * @version 20131028 */ $cookie_wap_bizer = ZLogin::GetRemeberPwdForWapBiz(); if ( $_POST ) { $login_partner = ZPartner::GetLogin($_POST['username'], $_POST['password']); if ( !$login_partner ) { Session::Set('error', '用户名密码不匹配!'); redirect( WEB_ROOT . '/y/login.php'); } else { Session::Set('partner_mobile_id', $login_partner['id']); // 记住密码 if($_POST['rememeber']){ ZLogin::RemeberPwdForWapBiz($login_partner['id'],$_POST['password']); } /** * AutoLogin */ redirect( WEB_ROOT . '/y/index.php'); } } include template('biz_mobile_login');
$INI = ZSystem::GetINI(); /* end */ /* date_zone */ if (function_exists('date_default_timezone_set')) { date_default_timezone_set($INI['system']['timezone']); } /* end date_zone */ /* biz logic */ $currency = $INI['system']['currency']; $login_user_id = ZLogin::GetLoginId(); $login_user = Table::Fetch('user', $login_user_id); $hotcities = option_hotcategory('city', false, true); $allcities = option_category('city', false, true); $city = cookie_city(null); /** * Get Bizer information * @author abei * @version 20131028 */ $wap_bizer_id = ZLogin::GetBizLoginId(); if (!isset($_COOKIE['referer'])) { setcookie('referer', $_SERVER['HTTP_REFERER']); } /* not allow access app.php */ if ($_SERVER['SCRIPT_FILENAME'] == __FILE__) { redirect(WEB_ROOT . '/index.php'); } /* end */ $AJAX = 'XMLHttpRequest' == @$_SERVER['HTTP_X_REQUESTED_WITH']; if (false == $AJAX) { header('Content-Type: text/html; charset=UTF-8');