function login($email, $password) { // check username and password with db // if yes, return true // else throw exception // connect to db $dbInfo = initialize_db_info(); $dbLink = db_connect($dbInfo); db_select($dbLink, $dbInfo); $sql = generateUserVerificationSql($email, $password); // check if username is unique $result = mysql_query($sql, $dbLink); if (!$result || mysql_num_rows($result) == 0) { // The username and password did not match. // Check to see if the user exists. if (findUsername($email)) { } else { } } if (mysql_num_rows($result) > 0) { $row = mysql_fetch_assoc($result); $currentUser = new user_info(); $currentUser->setId($row['id']); $currentUser->setFirstName($row['first_name']); $currentUser->setLastName($row['last_name']); $currentUser->setEmail($row['email']); $currentUser->setHunterId($row['hunter_id']); $currentUser->setLoggedIn(true); $_SESSION['current_user'] = $currentUser; $_SESSION['roles'] = getRoles($currentUser); return $currentUser; } else { throw new Exception('no user found 2'); } }
function getInfo() { $info = user_info::getUserInfo($_SESSION['userId']); if ($info != false) { return $info; } else { return false; } }
function createUserFromRow($dbRow) { $rowUser = new user_info(); $rowUser->setId($dbRow['id']); $rowUser->setFirstName($dbRow['first_name']); $rowUser->setLastName($dbRow['last_name']); $rowUser->setEmail($dbRow['email']); $rowUser->setHunterId($dbRow['hunter_id']); return $rowUser; }
<?php define('ROOT', dirname($_SERVER['SCRIPT_FILENAME'])); require ROOT . "/include/admin-init.php"; if (!is_login()) { die(html_jump('login.php')); } set_page_type('library', 'library_return'); set_page_power(array(1)); set_title("图书归还"); $all_user = new user_info(); $all_user->get_id_list(); get_admin_header(); ?> <div id="library-lent"> <h2 class="center">图书归还</h2> <?php if (isset($_GET['status'])) { if ($_GET['status'] == 'OK') { echo '<p class="status blue center">成功归还图书</p>'; } else { echo '<p class="status red center">', $_GET['status'], '</p>'; } } ?> <form action="library-action.php" method="get"> 图书ID:<input name="id" value="<?php if (isset($_GET['id'])) { echo $_GET['id']; } ?>
* 负责处理新发表文章的逻辑 * Createed By C860 at 2014-1-19 */ if (!class_exists('sys')) { include_once '../conf/config.php'; } //需要登录 sys::needLog('../login.php'); //检测数据合法性 if (isset($_POST['title']) && !empty($_POST['title']) && isset($_POST['content']) && !empty($_POST['content']) && isset($_POST['tags']) && !empty($_POST['tags'])) { //引入相关模型类 include_once '../Models/article.php'; include_once '../Models/tag_relate_article.php'; include_once '../Models/user_info.php'; $currentTime = date('Y-m-d H:i:s'); //新增文章 if (article::add($_POST['title'], $_POST['content'], $currentTime, $_SESSION['userId'])) { $ID = article::getId($_POST['title'], $_SESSION['userId'], $currentTime); $tags = explode('|', $_POST['tags']); foreach ($tags as $tag) { tag_relate_article::add($tag, $ID); } user_info::increaseArticleCount($_SESSION['userId']); sys::alert('发表成功!'); sys::redirect('../index.php'); } } else { //引入相关模型类 include_once 'Models/tag.php'; $taglist = tag::getAllTags(); }
<?php if (!isset($_POST['do'])) { exit; } require_once '../class/include.php'; $facebook = new Facebook(array('appId' => FACEBOOK_APP_ID, 'secret' => FACEBOOK_SECRET)); $user = $facebook->getUser(); if ($_POST['do'] == 'insertUserInfo') { $user_info = new user_info(); //$user_info->GetById(1); $useragent = $_SERVER['HTTP_USER_AGENT']; if (preg_match('/android.+mobile|avantgo|bada\\/|blackberry|blazer|compal|elaine|fennec|hiptop|iemobile|ip(hone|od)|iris|kindle|lge |maemo|meego.+mobile|midp|mmp|netfront|opera m(ob|in)i|palm( os)?|phone|p(ixi|re)\\/|plucker|pocket|psp|series(4|6)0|symbian|treo|up\\.(browser|link)|vodafone|wap|windows (ce|phone)|xda|xiino/i', $useragent) || preg_match('/1207|6310|6590|3gso|4thp|50[1-6]i|770s|802s|a wa|abac|ac(er|oo|s\\-)|ai(ko|rn)|al(av|ca|co)|amoi|an(ex|ny|yw)|aptu|ar(ch|go)|as(te|us)|attw|au(di|\\-m|r |s )|avan|be(ck|ll|nq)|bi(lb|rd)|bl(ac|az)|br(e|v)w|bumb|bw\\-(n|u)|c55\\/|capi|ccwa|cdm\\-|cell|chtm|cldc|cmd\\-|co(mp|nd)|craw|da(it|ll|ng)|dbte|dc\\-s|devi|dica|dmob|do(c|p)o|ds(12|\\-d)|el(49|ai)|em(l2|ul)|er(ic|k0)|esl8|ez([4-7]0|os|wa|ze)|fetc|fly(\\-|_)|g1 u|g560|gene|gf\\-5|g\\-mo|go(\\.w|od)|gr(ad|un)|haie|hcit|hd\\-(m|p|t)|hei\\-|hi(pt|ta)|hp( i|ip)|hs\\-c|ht(c(\\-| |_|a|g|p|s|t)|tp)|hu(aw|tc)|i\\-(20|go|ma)|i230|iac( |\\-|\\/)|ibro|idea|ig01|ikom|im1k|inno|ipaq|iris|ja(t|v)a|jbro|jemu|jigs|kddi|keji|kgt( |\\/)|klon|kpt |kwc\\-|kyo(c|k)|le(no|xi)|lg( g|\\/(k|l|u)|50|54|\\-[a-w])|libw|lynx|m1\\-w|m3ga|m50\\/|ma(te|ui|xo)|mc(01|21|ca)|m\\-cr|me(di|rc|ri)|mi(o8|oa|ts)|mmef|mo(01|02|bi|de|do|t(\\-| |o|v)|zz)|mt(50|p1|v )|mwbp|mywa|n10[0-2]|n20[2-3]|n30(0|2)|n50(0|2|5)|n7(0(0|1)|10)|ne((c|m)\\-|on|tf|wf|wg|wt)|nok(6|i)|nzph|o2im|op(ti|wv)|oran|owg1|p800|pan(a|d|t)|pdxg|pg(13|\\-([1-8]|c))|phil|pire|pl(ay|uc)|pn\\-2|po(ck|rt|se)|prox|psio|pt\\-g|qa\\-a|qc(07|12|21|32|60|\\-[2-7]|i\\-)|qtek|r380|r600|raks|rim9|ro(ve|zo)|s55\\/|sa(ge|ma|mm|ms|ny|va)|sc(01|h\\-|oo|p\\-)|sdk\\/|se(c(\\-|0|1)|47|mc|nd|ri)|sgh\\-|shar|sie(\\-|m)|sk\\-0|sl(45|id)|sm(al|ar|b3|it|t5)|so(ft|ny)|sp(01|h\\-|v\\-|v )|sy(01|mb)|t2(18|50)|t6(00|10|18)|ta(gt|lk)|tcl\\-|tdg\\-|tel(i|m)|tim\\-|t\\-mo|to(pl|sh)|ts(70|m\\-|m3|m5)|tx\\-9|up(\\.b|g1|si)|utst|v400|v750|veri|vi(rg|te)|vk(40|5[0-3]|\\-v)|vm40|voda|vulc|vx(52|53|60|61|70|80|81|83|85|98)|w3c(\\-| )|webc|whit|wi(g |nc|nw)|wmlb|wonu|x700|yas\\-|your|zeto|zte\\-/i', substr($useragent, 0, 4))) { $came_from_platform_url = '1'; $came_from_app_url = '0'; } else { $came_from_platform_url = '0'; $came_from_app_url = '1'; } if ($user) { try { $user_profile = $facebook->api('/me'); } catch (Exception $e) { echo 'Caught exception: ', $e->getMessage(), "\n"; } // echo $user;exit; if (isset($_POST['radio1'])) { $st = "SELECT `ques1`,`ques2`,`ques3` FROM `trivia` "; $query = mysql_query($st) or die(mysql_error() . ' ' . $st); $row = mysql_fetch_assoc($query); $sum_answer = 0;
<?php define('ROOT', dirname($_SERVER['SCRIPT_FILENAME'])); require ROOT . "/include/admin-init.php"; if (!is_login()) { die(html_jump('login.php')); } set_page_type('user', 'user_manage'); set_page_power(array(1)); set_title("用户管理"); $all_user = new user_info(); $all_user->get_all_user(); $all_group = new group(); $all_group->get_id_list(); if (isset($_GET['status']) && $_GET['status'] != 'OK') { add_footer_str('<script language="javascript">error_notic("' . $_GET['status'] . '","");</script>'); } get_admin_header(); ?> <div id="user-manage"> <h2 class="center">用户管理中心</h2> <table border="0" align="center" cellpadding="0" cellspacing="0"> <tr class="title"><th>ID</th><th>用户名</th><th>姓名</th><th>专业</th><th>班级</th><th>年级</th><th>分组</th><th>电话</th><th>QQ</th><th>邮箱</th><th>权限</th><th>状态</th><th>操作</th></tr> <?php $i = 0; foreach ($all_user->all as $id => $v) { echo "<tr class=\"list-", $i++ % 2, "\">", "<td>", $v['id'], "</td>", "<td>", $v['user'], "</td>", "<td>", $v['name'], "</td>", "<td>", $v['major'], "</td>", "<td>", $v['class'], "</td>", "<td>", $v['grade'], "</td>", "<td>", $all_group->id_list[$v['group']], '-', $v['group'], "</td>", "<td>", $v['tel'], "</td>", "<td>", $v['qq'], "</td>", "<td>", $v['email'], "</td>", '<td><a href="user-manage.php?act=chang-power&id=', $v['id'], '" title="修改权限">', get_power_name($v['power']), "</a></td>", "<td>", $v['active'] == 1 ? '<a href="user-action.php?act=unactive&id=' . $v['id'] . '" title="取消激活">激活</a>' : '<a href="user-action.php?act=active&id=' . $v['id'] . '" title="激活">未激活</a>', "</td>", '<td><a href="user-edit-info.php?id=', $v['id'], '">编辑</a> <a href="user-action.php?act=del&id=', $v['id'], '">删除</a></td>', "</tr>\n"; } ?> </table> </div>
<?php /* * checkLog.php * 用户登录检测程序 * Created By C860 at 2014-1-18 */ include_once '../conf/config.php'; //引入相关模型类 include_once '../Models/user_basic.php'; include_once '../Models/user_info.php'; //检测数据合法性 if (isset($_POST['user']) && !empty($_POST['user']) && isset($_POST['password']) && !empty($_POST['password'])) { if (user_basic::check($_POST['user'], $_POST['password'], 0)) { $uid = user_basic::getUserId($_POST['user']); $nickname = user_info::getNickname($uid); //设置SESSION $_SESSION['userId'] = $uid; $_SESSION['user'] = $_POST['user']; $_SESSION['nickname'] = $nickname; sys::redirect('../index.php'); } else { sys::alert('用户名或密码错误!'); sys::redirect('../login.php'); } }
<?php define('ROOT', dirname($_SERVER['SCRIPT_FILENAME'])); require ROOT . "/include/admin-init.php"; if (!is_login()) { die(html_jump('login.php')); } set_page_type('user', 'user_group'); set_page_power(array(1)); set_title("用户组管理"); $group = new group(); $user_info = new user_info(); $group->get_group(); $user_info->get_all_user(); $user_info->get_id_list(); $group->get_user_group(); if (isset($_GET['status']) && $_GET['status'] != 'OK') { add_footer_str('<script language="javascript">error_notic("' . $_GET['status'] . '","");</script>'); } get_admin_header(); ?> <div id="user-group"> <h2 class="center">用户组管理</h2> <table border="0" align="center" cellpadding="0" cellspacing="0"> <tr class="title"><th>ID</th><th>分组名</th><th>组长</th><th>组员</th><th>操作</th></tr> <?php $i = 0; foreach ($group->group as $v) { echo '<tr class="list-', $i++ % 2, '"><td>', $v['id'], '</td>', '<td>', $v['name'], '</td>', '<td>'; if (isset($user_info->id_list[$v['lader']])) { echo '<a href="user.php?id=', $v['lader'], '">', $group->lader_id[$v['lader']], '(', $v['lader'], ')</a>';
function edit_group($id, $name, $lader) { if (empty($name) || empty($lader) || empty($id)) { return '数据有误'; } global $mysql; $old = $mysql->get_mysql_arr("group", "*", '`id`=' . $id); if (!(isset($old[0]['id']) && $old[0]['id'] == $id)) { return 'ID不存在或ID错误'; } if ($old[0]['name'] == $name && $old[0]['lader'] == $lader) { return '信息未改变'; } $user_info = new user_info(); $user_info->get_id_list(); if (!isset($user_info->id_list[$lader])) { return '该组长不存在'; } if ($mysql->up_sql_arr("group", array('name' => $name, 'lader' => $lader), '`id`=' . $id)) { return 'OK'; } else { return '更新数据失败'; } }
<?php /* * article.php * 负责文章显示页面的逻辑 * Created By C860 at 2014-2-7 */ include_once 'conf/config.php'; //引入相关模型类 include_once 'Models/article.php'; include_once 'Models/user_info.php'; //检验数据合法性 if (isset($_GET['id']) && is_numeric($_GET['id'])) { $id = $_GET['id']; $article = article::getArticle($id); $author = user_info::getNickname($article['user_id']); if (!$article || !$author) { sys::alert('未知错误!'); sys::redirect('index.php'); } }
<?php include_once "conf/config.php"; //引入相关模型类 include_once "Models/user_info.php"; include_once "Models/article.php"; if (!$_GET['id']) { die("出错"); } $ID = $_GET['id']; list($ID, $nickname, $popularity, $registerTime, $signature, $article_count) = user_info::getUserInfo($ID); $allrows = article::getArticleInfo($ID); if (!$allrows) { $allrows = array(); } ?> <!DOCTYPE html> <html> <head> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /> <title>hci-user</title> <link rel="stylesheet" type="text/css" href="public/stylesheets/global.css"> <link rel="stylesheet" type="text/css" href="public/stylesheets/user.css"> <script type="text/javascript" src="public/javascripts/navSlide.js"></script> <script type="text/javascript"> window.onload = function(){ //本页面对应栏,下标由0起始,首页为0 initSlide(0); }; </script> </head>
// // email address not valid // if (!valid_email($email)) { // throw new Exception('That is not a valid email address. Please go back and try again.'); // } // // // passwords not the same // if ($password1 != $password2) { // throw new Exception('The passwords you entered do not match - please go back and try again.'); // } // // // Check password length is ok // // Ok if username truncates, but passwords will get // // Munged if they are too long. // if ((strlen($password1) < 6) || (strlen($password1) > 16)) { // throw new Exception('Your password must be between 6 and 16 characters Please go back and try again.'); // } // Attempt to register // This function can also throw an exception register($email, $password1, $firstName, $lastName); $currentUser = new user_info(); $currentUser->setFirstName($firstName); $currentUser->setLastName($lastName); $currentUser->setEmail($email); sendNewUserNotification($currentUser); // Register session variable $_SESSION['current_user'] = $currentUser; header("Location: /index.php"); } catch (Exception $e) { echo $e->getMessage(); } }
include_once '../conf/config.php'; //引入相关模型类 include_once '../Models/user_basic.php'; include_once '../Models/user_info.php'; //检测数据合法性 if (isset($_POST['user']) && !empty($_POST['user']) && isset($_POST['password']) && !empty($_POST['password']) && isset($_POST['nickname']) && !empty($_POST['nickname'])) { //检测用户个性签名是否存在 if (isset($_POST['signature'])) { $signature = $_POST['signature']; } else { $signature = ''; } //检测用户名是否存在 if (user_basic::userExist($_POST['user'])) { sys::alert('用户名已存在!'); sys::redirect('../register.php'); } //检测昵称是否存在 if (user_info::nicknameExist($_POST['nickname'])) { sys::alert('用户昵称已存在!'); sys::redirect('../register.php'); } //数据全部合法,进行注册程序 if (user_basic::add($_POST['user'], $_POST['password']) && user_info::add(user_basic::getUserId($_POST['user']), $_POST['nickname'], date('Y-m-d H:i:s'), $signature)) { sys::alert('注册成功!'); sys::redirect('../index.php'); } else { sys::alert('出现未知错误!'); sys::redirect('../register.php'); } }