$actionTime = time();
$actionIp = getClientIP();
$DB->connect($mysql_host, $mysql_user, $mysql_pass, $mysql_dbname);
if ($DB->fetch_one("SELECT COUNT(`bid`) FROM `" . $table_black . "` WHERE `uname`='" . $actionIp . "'") != 0) {
echo "1 很抱歉,系统拒绝了您的注册!请与管理员联系。";
} else {
if ($DB->fetch_one("SELECT COUNT(`uid`) FROM `" . $table_member . "` WHERE lower(`name`)='" . strtolower($uname) . "'") != 0) {
echo "1 用户昵称已被占用";
} else {
if ($DB->fetch_one("SELECT COUNT(`uid`) FROM `" . $table_member . "` WHERE `email` = '" . $email . "'") != 0) {
echo "1 电子邮箱地址已被注册";
} else {
$passport_info['name'] = $uname;
$passport_info['email'] = $email;
$passport_info['password'] = md5($passwd);
$passport_info['securekey'] = createSecureKey(8);
$passport_info['regdate'] = $actionTime;
$passport_info['regip'] = $actionIp;
$passport_info['lastdate'] = $actionTime;
$passport_info['lastip'] = $actionIp;
$passport_info['groupid'] = 1;
if ($DB->query($DB->insert_sql("`" . $table_member . "`", $passport_info))) {
$user_id = $DB->insert_id();
loginCookie($user_id, stripslashes($uname), 1, $actionIp, $actionTime);
echo "0 恭喜您,注册成功!";
} else {
echo "1 数据库繁忙,请重新提交!";
}
}
}
}
if (strlen($loginUser) < 2 || strlen($loginUser) > 45 || strlen($loginPwd) < 6 || strlen($loginPwd) > 18) {
echo "0 用户名或者密码不符合要求";
} else {
$DB->connect($mysql_host, $mysql_user, $mysql_pass, $mysql_dbname);
if (!emailcheck($loginUser)) {
$LoginType = "lower(`name`)";
} else {
$LoginType = "`email`";
}
$userArr = $TB->getMemberInfo($LoginType, strtolower($loginUser));
if (!empty($userArr['uid'])) {
if ($userArr['password'] == md5($loginPwd)) {
$loginTime = time();
$loginIp = getClientIP();
loginCookie($userArr['uid'], $userArr['name'], $userArr['groupid'], $loginIp, $loginTime);
$loginInfo['securekey'] = createSecureKey(10);
$loginInfo['lastdate'] = $loginTime;
$loginInfo['lastip'] = $loginIp;
if ($userArr['lastdate'] != date("Y.m.d")) {
$loginInfo['integral'] = array("`integral`+1");
}
$DB->query($DB->update_sql("`" . $table_member . "`", $loginInfo, "`uid`=" . $userArr['uid']));
echo "1 登录成功";
} else {
echo "0 您输入的密码不正确";
}
} else {
echo "0 通行证账号不存在";
}
$DB->close();
}
die("1 您输入的当前密码长度不正确。");
}
$newpasswd = stripslashes(trim($_POST['newpasswd']));
$reppasswd = stripslashes(trim($_POST['reppasswd']));
if (!empty($newpasswd)) {
if (strlen($newpasswd) < 6 || strlen($newpasswd) > 18) {
die("1 新密码长度应控制在6至18个字符之间。");
}
if ($newpasswd != $reppasswd) {
die("1 两次输入的新密码不一致。");
}
if ($newpasswd == $oldpasswd) {
die("1 新密码不能与当前密码一样。");
}
$profileArr['password'] = md5($newpasswd);
$profileArr['securekey'] = createSecureKey(9);
}
$useremail = strtolower(trim($_POST['useremail']));
if (strlen($useremail) > 45 || !emailcheck($useremail)) {
die("1 电子邮件地址不合法。");
}
$DB->connect($mysql_host, $mysql_user, $mysql_pass, $mysql_dbname);
$userArr = $TB->getMemberInfo("`uid`", $loginArr['uid']);
if ($userArr['password'] == md5($oldpasswd)) {
if ($userArr['email'] != $useremail) {
if ($DB->fetch_one("SELECT COUNT(`uid`) FROM `" . $table_member . "` WHERE `email`='" . $useremail . "'") != 0) {
$DB->close();
die("1 电子邮箱地址已被占用");
}
$profileArr['email'] = $useremail;
}
die("1 密码长度应控制在6至18个字符之间。");
}
if ($newpwd != $repwd) {
die("1 两次输入的密码不一致。");
}
$userid = intval($_POST['backuid']);
if ($userid < 1) {
die("2 操作异常,请重新取回密码!");
}
$DB->connect($mysql_host, $mysql_user, $mysql_pass, $mysql_dbname);
$userArr = $TB->getMemberInfo("`uid`", $userid);
if ($userArr['securekey'] == $safetycode) {
$loginTime = time();
$loginIp = getClientIP();
$newInfo['password'] = md5($newpwd);
$newInfo['securekey'] = createSecureKey(10);
$newInfo['lastdate'] = $loginTime;
$newInfo['lastip'] = $loginIp;
if ($DB->query($DB->update_sql("`" . $table_member . "`", $newInfo, "`uid`=" . $userArr['uid']))) {
loginCookie($userArr['uid'], $userArr['name'], $userArr['groupid'], $loginIp, $loginTime);
echo "0 密码修改成功,请牢记您的新密码!";
} else {
echo "1 数据库繁忙,请重试!";
}
} else {
echo "1 识别码不正确!";
}
$DB->close();
}
} else {
$tmp = template("recoverpass.html");
