$actionTime = time(); $actionIp = getClientIP(); $DB->connect($mysql_host, $mysql_user, $mysql_pass, $mysql_dbname); if ($DB->fetch_one("SELECT COUNT(`bid`) FROM `" . $table_black . "` WHERE `uname`='" . $actionIp . "'") != 0) { echo "1 很抱歉,系统拒绝了您的注册!请与管理员联系。"; } else { if ($DB->fetch_one("SELECT COUNT(`uid`) FROM `" . $table_member . "` WHERE lower(`name`)='" . strtolower($uname) . "'") != 0) { echo "1 用户昵称已被占用"; } else { if ($DB->fetch_one("SELECT COUNT(`uid`) FROM `" . $table_member . "` WHERE `email` = '" . $email . "'") != 0) { echo "1 电子邮箱地址已被注册"; } else { $passport_info['name'] = $uname; $passport_info['email'] = $email; $passport_info['password'] = md5($passwd); $passport_info['securekey'] = createSecureKey(8); $passport_info['regdate'] = $actionTime; $passport_info['regip'] = $actionIp; $passport_info['lastdate'] = $actionTime; $passport_info['lastip'] = $actionIp; $passport_info['groupid'] = 1; if ($DB->query($DB->insert_sql("`" . $table_member . "`", $passport_info))) { $user_id = $DB->insert_id(); loginCookie($user_id, stripslashes($uname), 1, $actionIp, $actionTime); echo "0 恭喜您,注册成功!"; } else { echo "1 数据库繁忙,请重新提交!"; } } } }
if (strlen($loginUser) < 2 || strlen($loginUser) > 45 || strlen($loginPwd) < 6 || strlen($loginPwd) > 18) { echo "0 用户名或者密码不符合要求"; } else { $DB->connect($mysql_host, $mysql_user, $mysql_pass, $mysql_dbname); if (!emailcheck($loginUser)) { $LoginType = "lower(`name`)"; } else { $LoginType = "`email`"; } $userArr = $TB->getMemberInfo($LoginType, strtolower($loginUser)); if (!empty($userArr['uid'])) { if ($userArr['password'] == md5($loginPwd)) { $loginTime = time(); $loginIp = getClientIP(); loginCookie($userArr['uid'], $userArr['name'], $userArr['groupid'], $loginIp, $loginTime); $loginInfo['securekey'] = createSecureKey(10); $loginInfo['lastdate'] = $loginTime; $loginInfo['lastip'] = $loginIp; if ($userArr['lastdate'] != date("Y.m.d")) { $loginInfo['integral'] = array("`integral`+1"); } $DB->query($DB->update_sql("`" . $table_member . "`", $loginInfo, "`uid`=" . $userArr['uid'])); echo "1 登录成功"; } else { echo "0 您输入的密码不正确"; } } else { echo "0 通行证账号不存在"; } $DB->close(); }
die("1 您输入的当前密码长度不正确。"); } $newpasswd = stripslashes(trim($_POST['newpasswd'])); $reppasswd = stripslashes(trim($_POST['reppasswd'])); if (!empty($newpasswd)) { if (strlen($newpasswd) < 6 || strlen($newpasswd) > 18) { die("1 新密码长度应控制在6至18个字符之间。"); } if ($newpasswd != $reppasswd) { die("1 两次输入的新密码不一致。"); } if ($newpasswd == $oldpasswd) { die("1 新密码不能与当前密码一样。"); } $profileArr['password'] = md5($newpasswd); $profileArr['securekey'] = createSecureKey(9); } $useremail = strtolower(trim($_POST['useremail'])); if (strlen($useremail) > 45 || !emailcheck($useremail)) { die("1 电子邮件地址不合法。"); } $DB->connect($mysql_host, $mysql_user, $mysql_pass, $mysql_dbname); $userArr = $TB->getMemberInfo("`uid`", $loginArr['uid']); if ($userArr['password'] == md5($oldpasswd)) { if ($userArr['email'] != $useremail) { if ($DB->fetch_one("SELECT COUNT(`uid`) FROM `" . $table_member . "` WHERE `email`='" . $useremail . "'") != 0) { $DB->close(); die("1 电子邮箱地址已被占用"); } $profileArr['email'] = $useremail; }
die("1 密码长度应控制在6至18个字符之间。"); } if ($newpwd != $repwd) { die("1 两次输入的密码不一致。"); } $userid = intval($_POST['backuid']); if ($userid < 1) { die("2 操作异常,请重新取回密码!"); } $DB->connect($mysql_host, $mysql_user, $mysql_pass, $mysql_dbname); $userArr = $TB->getMemberInfo("`uid`", $userid); if ($userArr['securekey'] == $safetycode) { $loginTime = time(); $loginIp = getClientIP(); $newInfo['password'] = md5($newpwd); $newInfo['securekey'] = createSecureKey(10); $newInfo['lastdate'] = $loginTime; $newInfo['lastip'] = $loginIp; if ($DB->query($DB->update_sql("`" . $table_member . "`", $newInfo, "`uid`=" . $userArr['uid']))) { loginCookie($userArr['uid'], $userArr['name'], $userArr['groupid'], $loginIp, $loginTime); echo "0 密码修改成功,请牢记您的新密码!"; } else { echo "1 数据库繁忙,请重试!"; } } else { echo "1 识别码不正确!"; } $DB->close(); } } else { $tmp = template("recoverpass.html");