public function home() { global $db, $config, $router; // 初始化資料庫連結介面 $db = new mysql($config["db"]); $db->connect(); $router = new Router(); $this->userid = empty($_SESSION['auth_id']) ? '' : $_SESSION['auth_id']; $ret['status'] = 0; // Check Variable Start if (empty($_GET['pgpid'])) { $ret['status'] = 0; } elseif (empty($_POST['name'])) { //('收件人姓名错误!!'); $ret['status'] = 2; } elseif (empty($_POST['zip'])) { //('收件人邮编错误!!'); $ret['status'] = 3; } elseif (empty($_POST['address'])) { //('收件人地址错误!!'); $ret['status'] = 4; } else { $query = "SELECT p.*, unix_timestamp(offtime) as offtime, unix_timestamp() as `now`, pgp.pgpid, pgp.price, pgp.complete \r\n\t\t\tFROM `{$config['db'][4]['dbname']}`.`{$config['default_prefix']}pay_get_product` pgp \r\n\t\t\tLEFT OUTER JOIN `{$config['db'][4]['dbname']}`.`{$config['default_prefix']}product` p ON \r\n\t\t\t\tpgp.prefixid = p.prefixid\r\n\t\t\t\tAND pgp.productid = p.productid\r\n\t\t\t\tAND p.switch = 'Y' \r\n\t\t\tWHERE \r\n\t\t\t\tpgp.`prefixid` = '{$config['default_prefix_id']}' \r\n\t\t\t\tAND pgp.pgpid = '{$_GET["pgpid"]}'\r\n\t\t\t\tAND pgp.userid = '{$this->userid}'\r\n\t\t\t\tAND pgp.switch = 'Y'\r\n\t\t\t"; $table = $db->getQueryRecord($query); //if (empty($table['table']['record'])) { $this->jsPrintMsg('商品不存在!', $location_url); } $product = $table['table']['record'][0]; $product['price'] = round($product['price'] * $config['sjb_rate'], 2); $product['real_process_fee'] = round($product['retail_price'] * $product['process_fee'] / 100 * $config['sjb_rate'], 2); $product['total'] = $product['real_process_fee'] + $product['price']; $query = "select sum(amount) as total_amount\r\n\t\t\tfrom `{$config['db'][1]['dbname']}`.`{$config['default_prefix']}spoint` \r\n\t\t\twhere\r\n\t\t\t\tuserid = '{$this->userid}'\r\n\t\t\t\tand switch = 'Y'\r\n\t\t\tGROUP BY userid\r\n\t\t\t"; $table = $db->getQueryRecord($query); if ($table['table']['record'][0]['total_amount'] < $product['total']) { //餘額不足 $ret['status'] = 6; } if ($product['complete'] == 'Y') { //'已结账' $ret['status'] = 5; } } if (empty($ret['status'])) { //產生訂單記錄 $mk = $this->mk_order($product); //回傳: 完成 $ret['status'] = $mk['err'] ? $mk['err'] : 200; } echo json_encode($ret); }
public function chk_login() { global $db, $config, $enterprisemodel; $r['err'] = ''; $db2 = new mysql($config["db2"]); $db2->connect(); $query = "SELECT * FROM `{$config['db'][0]['dbname']}`.`{$config['default_prefix']}enterprise` e\r\n\t\t JOIN `{$config['db'][0]['dbname']}`.`{$config['default_prefix']}enterprise_profile` ep\r\n\t\t\t\t ON e.enterpriseid=ep.enterpriseid and e.switch='Y'\r\n\t\t WHERE e.prefixid = '{$config['default_prefix_id']}' \r\n\t\t\t AND e.loginname = '{$_POST['loginname']}' \r\n\t\t\t AND e.switch = 'Y' \r\n\t\t LIMIT 1\r\n\t\t"; error_log("[ajax/enterprise.chk_login]" . $query); $table = $db2->getQueryRecord($query); if (empty($table['table']['record'])) { //'账号不存在' $r['err'] = 3; } else { $_SESSION['sajamanagement']['enterprise'] = ''; $enterprise = $table['table']['record'][0]; $passwd = $this->str->strEncode($_POST['passwd'], $config['encode_key']); if ($enterprise['passwd'] === $passwd) { $_SESSION['sajamanagement']['enterprise'] = $enterprise; setcookie("enterpriseid", $enterprise['enterpriseid'], time() + 43200, "/", COOKIE_DOMAIN); $r['err'] = ''; } else { //'密码不正确' $r['err'] = 5; } } return $r; }
public function saja() { $time_start = $this->time_start; global $db, $config, $router; // 初始化資料庫連結介面 $db = new mysql($config["db"]); $db->connect(); $router = $this->time_start; $this->userid = empty($_SESSION['auth_id']) ? '' : $_SESSION['auth_id']; $ret['status'] = 0; $ret['winner'] = ''; $ret['rank'] = ''; //讀取商品資料 $query = "SELECT p.*, unix_timestamp(p.offtime) as offtime, unix_timestamp() as `now`\r\n\t\tFROM `{$config['db'][4]['dbname']}`.`{$config['default_prefix']}product` p \r\n\t\tWHERE \r\n\t\t\tp.prefixid = '{$config['default_prefix_id']}'\r\n\t\t\tAND p.productid = '{$_POST['productid']}'\r\n\t\t\tAND p.switch = 'Y'\r\n\t\tLIMIT 1\r\n\t\t"; $table = $db->getQueryRecord($query); unset($table['table']['record'][0]['description']); $product = $table['table']['record'][0]; if ($product['offtime'] == 0 && $product['locked'] == 'Y' || $product['offtime'] > 0 && $product['now'] > $product['offtime']) { //回傳: 本商品已结标 $ret['status'] = 2; } /* elseif($this->chk_time_limit() ) { //回傳: 下标时间间隔过短,请稍后再下标 $ret['status'] = 3; }*/ if ($_POST['type'] == 'single') { //單次下標 $chk = $this->chk_single($product); if ($chk['err']) { $ret['status'] = $chk['err']; } } elseif ($_POST['type'] == 'range') { //連續下標 $chk = $this->chk_range($product); if ($chk['err']) { $ret['status'] = $chk['err']; } } if (empty($ret['status'])) { //產生下標歷史記錄 $mk = $this->mk_history($product); //回傳: 下标完成 $ret['status'] = $mk['err'] ? $mk['err'] : 200; $ret['winner'] = $mk['winner']; $ret['rank'] = $mk['rank']; } $time_end = microtime(true); $time = number_format($time_end - $time_start, 10); echo "下標 {$time} 秒<br>"; echo json_encode($ret); }
/** * Country Method : get_country */ public function get_country() { // global $db, $config; global $config; $db = new mysql($config["db2"]); $db->connect(); $query = "SELECT *\n\t\tFROM `{$config['db'][2]['dbname']}`.`{$config['default_prefix']}country` \n\t\tWHERE\n\t\t\tprefixid = '{$config['default_prefix_id']}'\n\t\t\tAND switch = 'Y'\n\t\t\tORDER BY countryid\n\t\t"; $table = $db->getQueryRecord($query); if (!empty($table['table']['record'])) { return $table['table']['record']; } return false; }
public function faq_detail($id) { // global $db, $config; global $config; $db = new mysql($config["db2"]); $db->connect(); $query = "SELECT f.*, fc.name cname\n\t\tFROM `{$config["db"][0]["dbname"]}`.`{$config['default_prefix']}faq` f \n\t\tLEFT OUTER JOIN `{$config["db"][0]["dbname"]}`.`{$config['default_prefix']}faq_category` fc ON \n\t\t\tf.prefixid = fc.prefixid \n\t\t\tAND f.fcid = fc.fcid \n\t\t\tAND fc.`switch`='Y' \n\t\tWHERE \n\t\t\tf.prefixid = '{$config["default_prefix_id"]}' \n\t\t\tAND f.faqid ='{$id}' \n\t\t\tAND f.switch = 'Y'\n\t\t"; $table = $db->getQueryRecord($query); if (!empty($table['table']['record'][0])) { //简介 $description = !empty($table['table']['record'][0]['description']) ? $table['table']['record'][0]['description'] : '空白'; $table['table']['record'][0]['description'] = html_decode($description); return $table['table']['record'][0]; } return false; }
function getEnterprise($enterpriseid) { global $config; $ret = array(); $ret['code'] = 1; if ($enterpriseid == '') { $ret['code'] = -1; $ret['msg'] = '登入失败 : id缺误 !!'; } $query = "SELECT * FROM `saja_user`.`saja_enterprise` \r\n\t\t\tWHERE \r\n\t\t\tprefixid = 'saja' \r\n\t\t\tAND enterpriseid = '" . $enterpriseid . "' \r\n\t\t\tAND switch = 'Y' \r\n\t\t\t"; error_log($query); $model = new mysql($config["db"][0]); $model->connect(); $table = $model->getQueryRecord($query); if (empty($table['table']['record'])) { $ret['code'] = -2; $ret['msg'] = '登入失败 : 账戶不存在!!'; } $ret['code'] = 1; $ret['msg'] = $table['table']['record'][0]; return $ret; }
function set_login($user) { global $config; $_SESSION['user'] = ''; $_SESSION['auth_id'] = ''; $_SESSION['auth_email'] = ''; $_SESSION['auth_secret'] = ''; $query = "SELECT *\r\n\t\tFROM `{$config['db'][0]['dbname']}`.`{$config['default_prefix']}user_profile`\r\n\t\tWHERE `prefixid` = '{$config['default_prefix_id']}' \r\n\t\t\tAND `userid` = '{$user['userid']}'\r\n\t\t\tAND `switch` = 'Y'\r\n\t\t"; // error_log("[set_login]Query User : "******"db"][0]); $db->connect(); $table = $db->getQueryRecord($query); $user['profile'] = $table['table']['record'][0]; $_SESSION['user'] = $user; // Set session and cookie information. $_SESSION['auth_id'] = $user['userid']; $_SESSION['auth_email'] = ''; $_SESSION['auth_secret'] = md5($user['userid'] . $user['name']); setcookie("auth_id", $user['userid'], time() + 60 * 60 * 24 * 30, "/", COOKIE_DOMAIN); setcookie("auth_email", '', time() + 60 * 60 * 24 * 30, "/", COOKIE_DOMAIN); setcookie("auth_secret", md5($user['userid'] . $user['name']), time() + 60 * 60 * 24 * 30, "/", COOKIE_DOMAIN); }
$curr_saja_bonus = 0; // 現有saja bonus點數 $nickname = ""; $i_RETURNCODE = "1"; $needed_ibon_bonus = 0; // 所需ibon總共點數 $saja_bonus_to_reduce = 0; // 須扣除saja bonus 點數 $db = new mysql($config["db"]); $db->connect(); $sql = "SELECT * FROM saja_exchange.saja_exchange_ibon_log "; $sql .= "WHERE i_DETAIL_NUM = '" . $i_DETAIL_NUM . "' "; $sql .= "AND state = '1' "; $sql .= "ORDER BY adate DESC LIMIT 1"; error_log("sql 4 :" . $sql); $table = $db->getQueryRecord($sql); if (!empty($table['table']['record'])) { $userid = $table['table']['record'][0]['userid']; $account_id = $table['table']['record'][0]['account_id']; // if ($i_STATUS_CODE=="0000" && $i_prdate_no!= "") { if ($i_STATUS_CODE == "0000" && $i_prdate_no > 0) { $i_dt = array("SERIAL_NO" => array(), "DATA_1" => array(), "DATA_2" => array(), "DATA_3" => array(), "DATA_4" => array(), "DATA_5" => array(), "DATA_6" => array(), "DATA_7" => array(), "DATA_8" => array()); for ($i = 0; $i < (int) $i_XMLData->TOTAL_COUNT; $i++) { $i_same = 0; for ($j = 0; $j < count($i_dt["SERIAL_NO"]); $j++) { // 重複商品項目合併數量及金額 if ($i_dt["SERIAL_NO"][$j] != (string) $i_XMLData->LISTDATA->DATA[$i]->SERIAL_NO && $i_dt["DATA_1"][$j] == (string) $i_XMLData->LISTDATA->DATA[$i]->DATA_1 && $i_dt["DATA_2"][$j] == (string) $i_XMLData->LISTDATA->DATA[$i]->DATA_2 && $i_dt["DATA_7"][$j] == (string) $i_XMLData->LISTDATA->DATA[$i]->DATA_7) { $i_dt["DATA_3"][$j] = (int) $i_dt["DATA_3"][$j] + (int) $i_XMLData->LISTDATA->DATA[$i]->DATA_3; $i_dt["DATA_4"][$j] = (int) $i_dt["DATA_4"][$j] + (int) $i_XMLData->LISTDATA->DATA[$i]->DATA_4; $i_same = 1; }
require_once "/var/www/lib/saja/mysql.ini.php"; // include_once("/var/www/html/site/lib/helpers.php"); $phpF = $_SERVER['PHP_SELF']; $arrF = explode('/', $phpF); $arrF2 = explode('.', $arrF[count($arrF) - 1]); $productid = $arrF2[0]; session_start(); error_log("[evt/" . $productid . ".php] openid:" . $_SESSION['sso']['openid'] . ",user_src:" . $_REQUEST['user_src'] . ",productid:" . $productid . ",userid:" . $_SESSION['auth_id']); if (empty($_SESSION['sso']['openid'])) { die('请登入进行激活 !!'); } $passed = false; $db = new mysql($config["db"][0]); $db->connect(); $chk = "select * from saja_user.saja_passphrase where openid='{$_SESSION['sso']['openid']}' and productid='{$productid}' LIMIT 0,1 "; $table = $db->getQueryRecord($chk); error_log("[evt/" . $productid . ".php] : " . $chk . '==>' . $table['table']['record'][0]['ppid']); if ($table['table']['record'][0]['ppid'] > 0) { // 已經激活過 $switch = $table['table']['record'][0]['switch']; if ($switch == 'W' || $switch == 'Y') { $passed = true; } } else { // 第一次進來 $insert = "insert into saja_user.saja_passphrase set openid='{$_SESSION['sso']['openid']}', \r\n\t\t\t\tuserid='{$_SESSION['auth_id']}', \r\n\t\t\t\tuser_src='{$_REQUEST['user_src']}', \r\n\t\t\t productid='{$productid}', \r\n\t\t\t\tswitch='N', insertt=NOW(), modifyt=NOW() "; $r = $db->query($insert); error_log("[evt/" . $productid . ".php] log user_src: " . $insert . '==>' . $r); } /* $chk = "select count(ppid) as cnt from saja_user.saja_passphrase where openid='{$_SESSION['sso']['openid']}' and productid='{$productid}' ";
public function countRecommandUsers($userid) { global $config; $db = new mysql($config["db2"]); $db->connect(); $sql = "SELECT count(userid) as cnt from `{$config['db'][0]['dbname']}`.`{$config['default_prefix']}passphrase`\n WHERE switch='Y' and user_src='{$userid}' "; $table = $db->getQueryRecord($sql); if (!empty($table['table']['record'][0])) { return $table['table']['record'][0]['cnt']; } else { return false; } }
public function get_cancelled_bid_info($productid) { // global $db, $config; global $config; $db = new mysql($config["db2"]); $db->connect(); $query = "select price, count(price) as num \n\t\tFROM `{$config['db'][4]['dbname']}`.`{$config['default_prefix']}history` \n\t\twhere \n\t\t\tprefixid = '{$config["default_prefix_id"]}' \n\t\t and productid = '{$productid}'\n\t\t and type = 'bid'\n\t\t AND productid IS NOT NULL\n\t\t\tAND userid IS NOT NULL\n\t\t\tand switch = 'Y'\n\t\t\tgroup by price\n\t\t\torder by price\n\t\t"; $table = $db->getQueryRecord($query); if (!empty($table['table']['record'])) { return $table['table']['record']; } return false; }
public function extrainfo() { global $db, $config, $usermodel; // 初始化資料庫連結介面 $db = new mysql($config["db"]); $db->connect(); $usermodel = new UserModel(); $this->str = new convertString(); $ret['status'] = 0; $query = "SELECT * \r\n\t\tFROM `{$config['db'][0]['dbname']}`.`{$config['default_prefix']}user` \r\n\t\tWHERE \r\n\t\t\tprefixid = '{$config['default_prefix_id']}' \r\n\t\t\tAND userid = '{$_SESSION['auth_id']}' \r\n\t\t\tAND switch = 'Y' \r\n\t\t"; $table = $db->getQueryRecord($query); if (empty($table['table']['record'])) { //'账号不存在' $ret['status'] = 2; } //error_log("uecid: ".$_POST['uecid']); //$uecArr = json_decode($_POST['uecArr']) //error_log('extrainfo: '.$_POST['uecArr']['field2name']); if (empty($ret['status'])) { $query_fieldname_set = ''; //if (is_array($_POST['uecArr'])) { //foreach($_POST['uecArr'] as $key => $value) { foreach ($_POST['uecArr'] as $key => $value) { $query_fieldname_set .= ", `" . $key . "` = '" . $value . "'"; //error_log("key: ".$key.", value: ".$value); } //} //error_log("query_fieldname_set: ".$query_fieldname_set); //刪除其他會員資訊 $query = "delete from `{$config['db'][0]['dbname']}`.`{$config['default_prefix']}user_extrainfo` \r\n\t\t\twhere \r\n\t\t\t\t`prefixid` = '{$config['default_prefix_id']}'\r\n\t\t\t\tAND `userid` = '{$_SESSION['auth_id']}'\r\n\t\t\t\tAND `uecid` = '{$_POST['uecid']}'\r\n\t\t\t"; $db->query($query); //新增其他會員資訊 $query = "INSERT INTO `{$config['db'][0]['dbname']}`.`{$config['default_prefix']}user_extrainfo` \r\n\t\t\tSET \r\n\t\t\t\t`prefixid` = '{$config['default_prefix_id']}'\r\n\t\t\t\t, `userid` = '{$_SESSION['auth_id']}'\r\n\t\t\t\t, `uecid` = '{$_POST['uecid']}'\r\n\t\t\t\t{$query_fieldname_set}\r\n\t\t\t\t, `seq` = '0'\r\n\t\t\t\t, `switch` = 'Y'\r\n\t\t\t\t, `insertt` = NOW()\r\n\t\t\t"; $db->query($query); //回傳: $ret['status'] = 200; } echo json_encode($ret); }
if (!empty($doc->getElementsByTagName("notify")->item(0)->nodeValue)) { //商户订单号 $out_trade_no = $doc->getElementsByTagName("out_trade_no")->item(0)->nodeValue; //支付宝交易号 $trade_no = $doc->getElementsByTagName("trade_no")->item(0)->nodeValue; //交易状态 $trade_status = $doc->getElementsByTagName("trade_status")->item(0)->nodeValue; // 交易金額 $total_fee = $doc->getElementsByTagName("total_fee")->item(0)->nodeValue; $deposit_history_data = '{"out_trade_no":"' . $out_trade_no . '", "trade_no":"' . $trade_no . '","total_fee":' . $total_fee . ', "trade_status":"' . $trade_status . '", "timepaid":"' . date('YmdHis') . '", "paymenttype":"ALIPAY_WAP"}'; $model = new mysql($config["db"][0]); $model->connect(); $db_user = $config["db"][0]['dbname']; $db_cash_flow = $config["db"][1]['dbname']; $query = "select dh.* from `{$db_cash_flow}`.`{$config['default_prefix']}deposit_history` dh \r\n\t\t\tleft outer join `{$db_cash_flow}`.`{$config['default_prefix']}deposit` d on\r\n\t\t\t\td.prefixid = dh.prefixid \r\n\t\t\t\tand d.depositid = dh.depositid \r\n\t\t\t\tand d.userid = dh.userid \r\n\t\t\t\tand d.switch = 'N' \r\n\t\t\twhere dh.dhid = '{$out_trade_no}' \r\n\t\t\t\tand dh.status = 'order' \r\n\t\t\t\tand dh.data = ''"; $deposit_history_array = $model->getQueryRecord($query); if (!empty($deposit_history_array['table']['record'][0]['dhid'])) { $userid = $deposit_history_array['table']['record'][0]['userid']; error_log("update deposit_history start"); $query = "update `{$db_cash_flow}`.`{$config['default_prefix']}deposit_history` \r\n\t\t\tset \r\n\t\t\t\tstatus = 'deposit',\r\n\t\t\t\tdata = '{$deposit_history_data}', \r\n\t\t\t\tmodifyt = NOW() \r\n\t\t\twhere \r\n\t\t\t\tdhid = '{$out_trade_no}'\r\n\t\t\t\tand status = 'order' \r\n\t\t\t\tand data = ''"; $model->query($query); error_log("update deposit_history end"); error_log("update deposit start"); $query = "update `{$db_cash_flow}`.`{$config['default_prefix']}deposit` \r\n\t\t\tSET \r\n\t\t\t\tswitch = 'Y',\r\n\t\t\t\tmodifyt = NOW()\r\n\t\t\twhere \r\n\t\t\t\tdepositid = '{$deposit_history_array['table']['record'][0]['depositid']}'\r\n\t\t\t\tand switch = 'N'\r\n\t\t\t"; $model->query($query); error_log("update deposit end"); error_log("update spoint start"); $query = "update `{$db_cash_flow}`.`{$config['default_prefix']}spoint` \r\n\t\t\tSET \r\n\t\t\t\tswitch = 'Y',\r\n\t\t\t\tmodifyt = NOW()\r\n\t\t\twhere \r\n\t\t\t\tspointid = '{$deposit_history_array['table']['record'][0]['spointid']}'\r\n\t\t\t\tand switch = 'N'\r\n\t\t\t"; $model->query($query); error_log("update spoint end"); error_log("update deposit_rule_item start");
public function act_osc() { global $db, $config; // 初始化資料庫連結介面 $db = new mysql($config["db"]); $db->connect(); $oscModel = new OscodeModel(); $this->str = new convertString(); $ret['status'] = 0; if (empty($_POST['scsn']) || empty($_POST['scpw'])) { //S码序号、S码密码不能空白 $ret['status'] = 2; } else { $query = "SELECT * \r\n\t\t\tFROM `{$config['db'][1]['dbname']}`.`{$config['default_prefix']}oscode` \r\n\t\t\tWHERE \r\n\t\t\t\tprefixid = '{$config['default_prefix_id']}' \r\n\t\t\t\tAND serial = '{$_POST['scsn']}' \r\n\t\t\t\tAND switch = 'Y' \r\n\t\t\t"; $table = $db->getQueryRecord($query); $scode_item = isset($table['table']['record'][0]) ? $table['table']['record'][0] : ''; if (empty($scode_item)) { //'不存在' $ret['status'] = 3; } elseif ($_POST['scpw'] !== $scode_item['pwd']) { //'密码错误' $ret['status'] = 4; } elseif ($scode_item['verified'] == 'Y') { //已激活 $ret['status'] = 5; } } if (empty($ret['status'])) { //限定S码激活 $query = "UPDATE `{$config['db'][1]['dbname']}`.`{$config['default_prefix']}oscode` \r\n\t\t\tSET `verified`='Y', userid='{$_SESSION['auth_id']}'\r\n\t\t\tWHERE \r\n\t\t\t\t`prefixid` = '{$config['default_prefix_id']}'\r\n\t\t\t\tAND serial = '{$_POST['scsn']}'\r\n\t\t\t"; $db->query($query); $query = "UPDATE `{$config['db'][1]['dbname']}`.`{$config['default_prefix']}scode_promote`\r\n\t\t\tSET\r\n\t\t\t `scode_sum`=`scode_sum` + 1,\r\n\t\t\t `amount`=`amount` + 1\r\n\t\t\tWHERE \r\n\t\t\t\t`prefixid` = '{$config['default_prefix_id']}' \r\n\t\t\t\tAND spid = '{$scode_item['spid']}' \r\n\t\t\t"; $db->query($query); //回傳: $ret['status'] = 200; } echo json_encode($ret); }
public function get_info($id, $email = null) { // global $db, $config; global $config; $db = new mysql($config["db2"]); $db->connect(); $query = "SELECT * , up.bonus_noexpw\n\t\tFROM `{$config["db"][0]["dbname"]}`.`{$config['default_prefix']}user` u\n\t\tLEFT OUTER JOIN `{$config["db"][0]["dbname"]}`.`{$config['default_prefix']}user_profile` up ON \n\t\tu.prefixid = up.prefixid \n\t\tAND u.userid = up.userid\n\t\tAND up.`switch`='Y'\n\t\tWHERE \n\t\t\tu.prefixid = '{$config["default_prefix_id"]}' \n\t\t\tAND u.userid = '{$id}' \n\t\t\tAND u.switch = 'Y'\n\t\t\tAND up.userid IS NOT NULL \n\t\t"; error_log("[member] " . $query); $table = $db->getQueryRecord($query); if (!empty($table['table']['record'])) { $results = $table['table']['record'][0]; unset($results['passwd']); return $results; } return false; }
function get_exchange_bonus_history($oid, $uid) { // global $db, $config; global $config; $db = new mysql($config["db2"]); $db->connect(); $query = "select * from `{$config['db'][3]['dbname']}`.`{$config['default_prefix']}exchange_bonus_history` \n\t\twhere\n\t\t\t`prefixid` = '{$config['default_prefix_id']}' \n\t\t\tand `orderid` = '{$oid}'\n\t\t\tand `userid` = '{$uid}'\n\t\t\tand `switch` = 'Y'\n\t\t"; $recArr = $db->getQueryRecord($query); if (!empty($recArr['table']['record'][0])) { return $recArr['table']['record'][0]; } return false; }
// $ret['msg']="通关身分验证失败 !!!"; } $user_src = $_POST['user_src']; $productid = $_POST['productid']; error_log('[passphrase_chk] ' . $_SESSION['sso']['openid'] . '<=>' . $_SESSION['auth_id']); error_log("[passphrase_chk] post : " . $openid . " " . $userid . " " . $passphrase . " " . $user_src . " " . $productid); if ($ret['status'] < 0) { echo json_encode($ret); exit; } if (strpos($openid, $passphrase) != false) { $db = new mysql($config["db"][0]); $db->connect(); // 檢查是否重複 $chk1 = " SELECT * FROM saja_user.saja_passphrase WHERE productid='{$productid}' and userid='{$userid}' and openid='{$openid}' LIMIT 0,1 "; $table = $db->getQueryRecord($chk1); // 重複->直接更新modifyt if ($table['table']['record'][0]['ppid'] > 0) { error_log('[evt/passhrase_chk] check1: ' . $chk1 . '==>' . $table['table']['record'][0]['ppid']); $ori_switch = $table['table']['record'][0]['switch']; if ($ori_switch == 'N') { $switch = 'W'; } else { $switch = $table['table']['record'][0]['switch']; } $update = "update saja_user.saja_passphrase set passphrase='{$passphrase}', switch='{$switch}', modifyt=NOW() where productid='{$productid}' and openid='{$openid}' and userid='{$userid}' "; $r = $db->query($update); error_log("[passphrase_chk] update:" . $update . "==>" . $r); if ($r) { if ($switch = 'W') { // 已通關未充值過
private function checkUserCellphone() { $query = "SELECT cellphone \n\t\t\t\t\tFROM `" . $this->obj->config->db[0]["dbname"] . "`.`" . $this->obj->config->default_prefix . "user`\n\t\t\t\t\tWHERE userid = '" . $this->params["userid"] . "'"; $result["table"] = ""; $modelP = new mysql($this->obj->config->db[0]); $modelP->connect(); $result = $modelP->getQueryRecord($query, $obj); return $result["table"]["record"][0]['cellphone']; }
} if (empty($io->input['post']["passwd"])) { jsAlertMsg('登錄密碼錯誤!!'); } // Check Variable End require_once "saja/mysql.ini.php"; $model = new mysql($config["db"][0]); $model->connect(); $db_user = $config["db"][0]["dbname"]; //print_R($db_user);exit; require_once "saja/convertString.ini.php"; $str = new convertString(); ############################################################################################################################################## // Table Start $query = "SELECT * FROM `{$db_user}`.`{$config['default_prefix']}enterprise` \r\nWHERE \r\n\tprefixid = '" . $config['default_prefix_id'] . "' \r\n\tAND loginname = '" . $io->input['post']["name"] . "' \r\n\tAND switch = 'Y' \r\n"; $table = $model->getQueryRecord($query); if (empty($table['table']['record'])) { jsAlertMsg('登錄帳號不存在!!'); die; } $enterprise = $table['table']['record'][0]; $passwd = $str->strEncode($io->input['post']['passwd'], $config['encode_key']); if ($enterprise['passwd'] !== $passwd) { jsAlertMsg('登錄密碼錯誤!!'); } // Table End ############################################################################################################################################## $_SESSION['sajamanagement']['enterprise'] = $enterprise; setcookie('enterpriseid', $enterprise['enterpriseid'], time() + 86400, "/", COOKIE_DOMAIN); //set cookie for 1 day header("location:" . $config['default_main']);
function get_user($uid, $type = 'wexin') { global $config; $query = "SELECT u.*, s.ssoid, s.name as provider_name, s.uid as provider_uid, s.switch as sso_switch\r\n\t\tFROM `{$config['db'][0]['dbname']}`.`{$config['default_prefix']}sso` s \r\n\t\tLEFT OUTER JOIN `{$config['db'][0]['dbname']}`.`{$config['default_prefix']}user_sso_rt` us ON\r\n\t\t\ts.prefixid = us.prefixid\r\n\t\t\tAND s.ssoid = us.ssoid\r\n\t\t\tAND us.switch = 'Y'\r\n\t\tLEFT OUTER JOIN `{$config['db'][0]['dbname']}`.`{$config['default_prefix']}user` u ON\r\n\t\t\tus.prefixid = u.prefixid\r\n\t\t\tAND us.userid = u.userid\r\n\t\t\tAND u.switch = 'Y'\r\n\t\tWHERE\r\n\t\t\ts.prefixid = '{$config['default_prefix_id']}' \r\n\t\t\tAND s.name = '{$type}'\r\n\t\t\tAND s.uid = '{$uid}'\r\n\t\t\tAND s.switch = 'Y'\r\n\t\t\tAND u.userid IS NOT NULL\r\n\t\t"; error_log("query User : "******"db"][0]); $db->connect(); $table = $db->getQueryRecord($query); if (empty($table['table']['record'])) { return false; } elseif ($table['table']['record'][0]['switch'] != 'Y' || $table['table']['record'][0]['sso_switch'] != 'Y') { return false; } else { return $table['table']['record'][0]; } }
public function get_marquee() { // global $db, $config; global $config; $db = new mysql($config["db2"]); $db->connect(); $query = "SELECT *\n\t\t\tFROM `{$config['db'][2]['dbname']}`.`{$config['default_prefix']}ad` \n\t\t\tWHERE\n\t\t\t\tprefixid = '{$config['default_prefix_id']}'\n\t\t\t\tAND acid = '2'\n\t\t\t\tAND switch = 'Y'\n\t\t\t\tAND adid IS NOT NULL\n\t\t\t\tand promotetype = 'M'\n\t\t\t\tand ontime <= NOW()\n\t\t\t\tand offtime > NOW()\n\t\t\t\tORDER BY ontime desc\n\t\t\t"; $table = $db->getQueryRecord($query); if (!empty($table['table']['record'])) { $results = $table['table']['record']; return $results; } return false; }
public function check_sms() { global $db, $config, $usermodel; // 初始化資料庫連結介面 $db = new mysql($config["db"]); $db->connect(); $usermodel = new UserModel(); $ret['status'] = 0; $user_auth = $usermodel->validUserAuth($_SESSION['auth_id'], $_POST['phone']); if (empty($user_auth)) { //'手机号码不正确' $ret['status'] = 2; } elseif (empty($_POST['smscode']) || $_POST['smscode'] !== $user_auth['code']) { //'手机号码不正确' $ret['status'] = 3; } if (empty($ret['status'])) { //修改SMS check code $shuffle = get_shuffle(); $checkcode = substr($shuffle, 0, 6); $query = "UPDATE `{$config['db'][0]['dbname']}`.`{$config['default_prefix']}user_sms_auth` \r\n\t\t\tSET verified='Y', code='{$checkcode}'\r\n\t\t\tWHERE \r\n\t\t\t\t`prefixid` = '{$config['default_prefix_id']}'\r\n\t\t\t\tAND `userid` = '{$_SESSION['auth_id']}'\r\n\t\t\t"; $db->query($query); //檢查是否介紹人(送scode) $query = "select * from `{$config['db'][1]['dbname']}`.`{$config['default_prefix']}scode_history`\r\n\t\t\t\twhere `prefixid` = '{$config['default_prefix_id']}' \r\n\t\t\t\tand memo = '{$_SESSION['auth_id']}'\r\n\t\t\t\tand switch = 'N'"; $table = $db->getQueryRecord($query); if (!empty($table['table']['record'])) { //return $table['table']['record']; $query = "UPDATE `{$config['db'][1]['dbname']}`.`{$config['default_prefix']}scode` \r\n\t\t\t\tSET switch = 'Y', modifyt = NOW() \r\n\t\t\t\tWHERE \r\n\t\t\t\t\t`prefixid` = '{$config['default_prefix_id']}' \r\n\t\t\t\t\tAND `scodeid` = '{$table['table']['record'][0]['scodeid']}' \r\n\t\t\t\t\tand `userid` = '{$table['table']['record'][0]['userid']}'\r\n\t\t\t\t"; $db->query($query); $query = "UPDATE `{$config['db'][0]['dbname']}`.`{$config['default_prefix']}scode_history` \r\n\t\t\t\tSET switch = 'Y', modifyt = NOW() \r\n\t\t\t\tWHERE \r\n\t\t\t\t\t`prefixid` = '{$config['default_prefix_id']}'\r\n\t\t\t\t\tAND `sphid` = '{$table['table']['record'][0]['sphid']}'\r\n\t\t\t\t"; $db->query($query); } //回傳: $ret['status'] = 200; } echo json_encode($ret); }
?> <div id="msg"></div> <hr> <!-- form action="updProd.php" method="post" --> <table cellpadding="6" cellspacing="3"> <tr> <th>商品 : </th> <td> <select style="font-size:30px" id="productid" name="productid"> <option value="">----------</option> <?php // 找出還未結標的商品 $query = "SELECT productid, name, is_flash from saja_shop.saja_product where prefixid='saja' and closed='N' and offtime>NOW() and switch='Y' order by productid desc "; $db = new mysql($config["db"]); $db->connect(); $table = $db->getQueryRecord($query); if (!empty($table['table']['record'])) { for ($i = 0; $i < count($table['table']['record']); ++$i) { $row = $table['table']['record'][$i]; $flash = ""; if ($row['is_flash'] == 'Y') { $flash = "閃殺--"; } ?> <option value="<?php echo $row['productid']; ?> "><?php echo $flash . $row['name']; ?>
public function qrcode() { global $db, $config, $router; // 初始化資料庫連結介面 $db = new mysql($config["db"]); $db->connect(); $router = new Router(); $this->userid = empty($_SESSION['auth_id']) ? '' : $_SESSION['auth_id']; //兌換數量 $order_info['num'] = 1; // Check Variable Start if (empty($order_info['num']) || empty($_POST['epid'])) { $ret['status'] = 0; } //查詢兌換密碼 $chk = $this->expw_check(); if ($chk['err']) { $ret['status'] = $chk['err']; } if (empty($ret['status'])) { if ($_POST['epid'] > 0) { $query = "SELECT p.*, unix_timestamp(offtime) as offtime, unix_timestamp() as `now` \r\n\t\t\t\tFROM `{$config['db'][3]['dbname']}`.`{$config['default_prefix']}exchange_product` p \r\n\t\t\t\tWHERE \r\n\t\t\t\t\tp.`prefixid` = '{$config['default_prefix_id']}' \r\n\t\t\t\t\tAND p.epid = '{$_POST['epid']}'\r\n\t\t\t\t\tAND p.switch = 'Y'\r\n\t\t\t\t\tLIMIT 1\r\n\t\t\t\t"; $table = $db->getQueryRecord($query); //if (empty($table['table']['record'])) { $this->jsPrintMsg('商品不存在!', $location_url); } //if ($table['table']['record'][0]['now'] > $table['table']['record'][0]['offtime']) { $this->jsPrintMsg('商品兑换已结束', $location_url); } $retail_price = $table['table']['record'][0]['retail_price'] ? (double) $table['table']['record'][0]['retail_price'] : 0; $cost_price = $table['table']['record'][0]['cost_price'] ? (double) $table['table']['record'][0]['cost_price'] : 0; $process_fee = $table['table']['record'][0]['process_fee'] ? (double) $table['table']['record'][0]['process_fee'] : 0; $order_info['point_price'] = $table['table']['record'][0]['point_price'] ? (double) $table['table']['record'][0]['point_price'] : 0; //分潤=(市價-進貨價)*數量 $order_info['profit'] = ($retail_price - $cost_price) * $order_info['num']; //商品兌換總點數 $used_point = $order_info['point_price'] * $order_info['num']; //商品處理費總數 $process_fee * $num; $order_info['used_process'] = $process_fee; //總費用 $order_info['total_fee'] = $order_info['used_process'] + $used_point; } else { $query = "select * from `{$config['db'][3]['dbname']}`.`{$config['default_prefix']}order` \r\n \tWHERE \r\n\t\t\t\t\t`prefixid` = '{$config['default_prefix_id']}' \r\n\t\t\t\t\tAND orderid = '{$_POST['orderid']}'\r\n\t\t\t\t\tAND switch = 'Y'\r\n\t\t\t\t\tLIMIT 1\r\n\t\t\t\t"; $table = $db->getQueryRecord($query); $order_info['point_price'] = $table['table']['record'][0]['point_price']; $order_info['used_process'] = 0; $order_info['total_fee'] = $table['table']['record'][0]['total_fee']; $order_info['profit'] = 0; } //檢查使用者的紅利點數 $query = "SELECT SUM(amount) bonus \r\n\t\t\tFROM `{$config['db'][1]['dbname']}`.`{$config['default_prefix']}bonus` \r\n\t\t\tWHERE \r\n\t\t\t\t`prefixid` = '{$config['default_prefix_id']}' \r\n\t\t\t\tAND `switch` = 'Y'\r\n\t\t\t\tAND `userid` = '{$this->userid}' \r\n\t\t\t"; $recArr = $db->getQueryRecord($query); $user_bonus = $recArr['table']['record'][0]['bonus'] ? (double) $recArr['table']['record'][0]['bonus'] : 0; if ($user_bonus < $order_info['total_fee']) { //('红利点数不足'); $ret['status'] = 5; } } if (empty($ret['status'])) { //產生訂單記錄 $mk = $this->set_order($order_info); //回傳: 完成 $ret['status'] = $mk['err'] ? $mk['err'] : 200; } echo json_encode($ret); }