/** * 登陆 **/ function login() { if (isset($_POST['username']) && isset($_POST['password']) && $_POST['username'] != "" && $_POST['password'] != "") { // 用户名密码都不为空 $userName = $_POST['username']; $password = $_POST['password']; $conn = createConn(); // 创建数据库连接 $result = mysql_query("select * from user where user_id = '{$userName}' and password = '******'"); $count = mysql_num_rows($result); if ($count == 1) { // 登录成功 $userIdResult = mysql_fetch_array($result); $_SESSION['userId'] = $userName; $_SESSION['userName'] = $userIdResult['user_name']; echo "<script language='javascript'>"; echo "window.location.href='../main.php';"; echo "</script>"; } else { // 登陆失败 echo "<script language='javascript'>"; echo "alert('用户名或密码错误!');"; echo "window.location.href='../index.php';"; echo "</script>"; } mysql_close($conn); } else { // 用户名或密码为空 echo "<script language='javascript'>"; echo "alert('用户名、密码不能为空!');"; echo "window.location.href='../index.php';"; echo "</script>"; } }
function begun_or_not($page) { global $duration, $diff; $connection = createConn(); $var = -1; $sql_query = "SELECT * FROM googlockstart_end where no='0'"; $temp = mysql_query($sql_query, $connection); $result = mysql_fetch_array($temp); finish($connection); $curr_timestamp = time(); $diff = $curr_timestamp - $result['start_timestamp']; $duration = $result['finish_timestamp'] - $result['start_timestamp']; if ($diff < 0) { $msg = "Game has not started yet"; $var = 0; } else { if ($curr_timestamp > $result['finish_timestamp']) { $msg = "Game has finished"; $var = 1; } else { $msg = "Game has Started!!"; } } if ($page == 1) { if ($var == 0) { header("location: index.php"); } else { if ($var == 1) { header("location: login.php"); } } } else { return $msg; } }
function fetchRecord($sql, $namedParameters = array()) { $conn = createConn(); //Prepare the sql and execute the statment $query = $conn->prepare($sql, array(PDO::ATTR_CURSOR => PDO::CURSOR_FWDONLY)); $query->execute($namedParameters); //Retieve all the rows $record = $query->fetch(PDO::FETCH_ASSOC); $conn = NULL; return $record; }
function fetchAllRecords($sql) { $conn = createConn(); //Prepare the sql and execute the statment $query = $conn->prepare($sql, array(PDO::ATTR_CURSOR => PDO::CURSOR_FWDONLY)); $query->execute(); //Retieve all the rows $records = $query->fetchAll(PDO::FETCH_ASSOC); // fetch becuase only one record return $records; $conn = null; }
function geProductDescription($Id) { $sql = "SELECT `productDescription` \n" . "FROM `oe_product`\n" . "WHERE productId = :currentId"; $conn = createConn(); //Prepare the sql and execute the statment $query = $conn->prepare($sql, array(PDO::ATTR_CURSOR => PDO::CURSOR_FWDONLY)); $namedParameters = array(); $namedParameters[':currentId'] = $Id; $query->execute($namedParameters); //Retieve the row $ProductDescription = $query->fetch(PDO::FETCH_ASSOC); // fetch becuase only one record echo $ProductDescription['productDescription']; $conn = null; }
<?php session_start(); require_once "require/constants.php"; require_once "require/functions.php"; require_once "require/begun_or_not_scheme.php"; begun_or_not(1); // define any other scheme in begun_or_not_scheme.php $done = 0; if (isset($_COOKIE["username"]) && isset($_SESSION['username']) && $_COOKIE["username"] == $_SESSION['username']) { $username = $_SESSION['username']; $password = $_SESSION['password']; $connection = createConn(); $temp_usr = mysql_real_escape_string($username); $temp_pass = mysql_real_escape_string($password); $sql_query = "select completed from googlockusers where username='******' and password='******'"; //lock put_lock($connection, "googlockusers", "read"); $temp = mysql_query($sql_query, $connection) or die("ERROR QUERY"); remove_lock($connection); //unlock $result = mysql_fetch_array($temp); $result['completed'] = $result['completed'] + 1; $no = $result['completed']; if ($result['completed'] > $no_of_questions) { //finished all the questions $done = 1; } $sql_query = "select question from googlockquestions where no='{$result['completed']}'"; $temp = mysql_query($sql_query, $connection) or die("Error in query"); $question = mysql_fetch_array($temp);
<?php session_start(); if (!isset($_SESSION['userName'])) { // 未登录 echo "<script language='javascript'>"; echo "window.location.href='index.php';"; echo "</script>"; } else { // 已登录 include_once 'app/common/commonFunc.php'; $conn = createConn(); $userId = $_SESSION['userId']; $menuRs = mysql_query("select distinct m.* from menu m \n\t\t\tjoin role_menu_relation rm on m.menu_id = rm.menu_id \n\t\t\tjoin user_role_relation ur on rm.role_id = ur.role_id \n\t\t\tjoin user u on u.user_id = ur.user_id \n\t\t\twhere u.user_id = '{$userId}'\n\t\t\torder by m.sort"); } ?> <!--<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml">--> <!DOCTYPE HTML> <html> <head> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=8" /> <title>在线考试系统</title> <link href="dwz/themes/azure/style.css" rel="stylesheet" type="text/css" media="screen"/> <link href="dwz/themes/css/core.css" rel="stylesheet" type="text/css" media="screen"/> <link href="dwz/themes/css/print.css" rel="stylesheet" type="text/css" media="print"/> <link href="dwz/uploadify/css/uploadify.css" rel="stylesheet" type="text/css" media="screen"/> <!--[if IE]> <link href="themes/css/ieHack.css" rel="stylesheet" type="text/css" media="screen"/> <![endif]-->