public static function uk86_getChatHtml($layout) { $web_html = ''; if ($layout != 'layout/msg_layout.php' && $layout != 'layout/store_joinin_layout.php') { $config_file = BASE_ROOT_PATH . DS . 'chat' . DS . 'config' . DS . "config.ini.php"; require_once $config_file; $avatar = uk86_getMemberAvatar($_SESSION['avatar']); $nchash = uk86_getNchash(); $formhash = Uk86Security::uk86_getTokenValue(); $css_url = CHAT_TEMPLATES_URL; $app_url = APP_SITE_URL; $chat_url = CHAT_SITE_URL; $node_url = NODE_SITE_URL; $shop_url = SHOP_SITE_URL; $web_html = <<<EOT \t\t\t\t\t<link href="{$css_url}/css/chat.css" rel="stylesheet" type="text/css"> \t\t\t\t\t<link href="{$css_url}/css/home_login.css" rel="stylesheet" type="text/css"> \t\t\t\t\t<div style="clear: both;"></div> \t\t\t\t\t<div id="web_chat_dialog" style="display: none;float:right;"> \t\t\t\t\t</div> \t\t\t\t\t<a id="chat_login" href="javascript:void(0)" style="display: none;"></a> \t\t\t\t\t<script type="text/javascript"> \t\t\t\t\tvar APP_SITE_URL = '{$app_url}'; \t\t\t\t\tvar CHAT_SITE_URL = '{$chat_url}'; \t\t\t\t\tvar SHOP_SITE_URL = '{$shop_url}'; \t\t\t\t\tvar connect_url = "{$node_url}"; \t\t\t\t\tvar layout = "{$layout}"; \t\t\t\t\tvar act_op = "{$_GET['act']}_{$_GET['op']}"; \t\t\t\t\tvar user = {}; \t\t\t\t\tuser['u_id'] = "{$_SESSION['member_id']}"; \t\t\t\t\tuser['u_name'] = "{$_SESSION['member_name']}"; \t\t\t\t\tuser['s_id'] = "{$_SESSION['store_id']}"; \t\t\t\t\tuser['s_name'] = "{$_SESSION['store_name']}"; \t\t\t\t\tuser['avatar'] = "{$avatar}"; \t\t\t\t\t\$("#chat_login").nc_login({ \t\t\t\t\t action:'/index.php?act=login', \t\t\t\t\t nchash:'{$nchash}', \t\t\t\t\t formhash:'{$formhash}' \t\t\t\t\t}); \t\t\t\t\t</script> EOT; if (defined('APP_ID') && APP_ID != 'shop') { $web_html .= '<link href="' . RESOURCE_SITE_URL . '/js/perfect-scrollbar.min.css" rel="stylesheet" type="text/css">'; $web_html .= '<script type="text/javascript" src="' . RESOURCE_SITE_URL . '/js/perfect-scrollbar.min.js"></script>'; $web_html .= '<script type="text/javascript" src="' . RESOURCE_SITE_URL . '/js/jquery.mousewheel.js"></script>'; } $web_html .= '<script type="text/javascript" src="' . RESOURCE_SITE_URL . '/js/jquery.charCount.js" charset="utf-8"></script>'; $web_html .= '<script type="text/javascript" src="' . RESOURCE_SITE_URL . '/js/jquery.smilies.js" charset="utf-8"></script>'; $web_html .= '<script type="text/javascript" src="' . CHAT_RESOURCE_URL . '/js/user.js" charset="utf-8"></script>'; } if ($layout == 'layout/seller_layout.php') { $web_html .= '<script type="text/javascript" src="' . CHAT_RESOURCE_URL . '/js/store.js" charset="utf-8"></script>'; $seller_smt_limits = ''; if (!empty($_SESSION['seller_smt_limits']) && is_array($_SESSION['seller_smt_limits'])) { $seller_smt_limits = implode(',', $_SESSION['seller_smt_limits']); } $web_html .= <<<EOT \t\t\t\t\t<script type="text/javascript"> \t\t\t\t\tuser['seller_id'] = "{$_SESSION['seller_id']}"; \t\t\t\t\tuser['seller_name'] = "{$_SESSION['seller_name']}"; \t\t\t\t\tuser['seller_is_admin'] = "{$_SESSION['seller_is_admin']}"; \t\t\t\t\tvar smt_limits = "{$seller_smt_limits}"; \t\t\t\t\t</script> EOT; } return $web_html; }
$('#comment_list').on('click', '[nctype="btn_comment_quote_cancel"]', function() { $(this).parents('p').remove(); }); $('#comment_list').on('click', '[nctype="comment_up"]', function() { <?php if ($_SESSION['is_login'] != '1') { ?> //登陆窗口 $.show_nc_login({ nchash:'<?php echo uk86_getNchash(); ?> ', formhash:'<?php echo Uk86Security::uk86_getTokenValue(); ?> ', anchor:'cms_comment_flag' }); <?php } else { ?> var comment_id = $(this).attr('comment_id'); var $count = $(this).find('em'); $.post("<?php echo CMS_SITE_URL . DS . 'index.php?act=comment&op=comment_up'; ?> ", {comment_id:comment_id}, function(data){ if(data.result == 'true') {
if (empty($_GET['act'])) { require_once BASE_CORE_PATH . '/framework/core/route.php'; new Uk86Route($config); } //统一ACTION $_GET['act'] = preg_match('/^[\\w]+$/i', $_GET['act']) ? $_GET['act'] : 'index'; $_GET['op'] = preg_match('/^[\\w]+$/i', $_GET['op']) ? $_GET['op'] : 'index'; //对GET POST接收内容进行过滤,$ignore内的下标不被过滤 $ignore = array('article_content', 'pgoods_body', 'doc_content', 'content', 'sn_content', 'g_body', 'store_description', 'p_content', 'groupbuy_intro', 'remind_content', 'note_content', 'ref_url', 'adv_pic_url', 'adv_word_url', 'adv_slide_url', 'appcode', 'mail_content'); if (!class_exists('Security')) { require BASE_CORE_PATH . '/framework/libraries/security.php'; } $_GET = !empty($_GET) ? Uk86Security::uk86_getAddslashesForInput($_GET, $ignore) : array(); $_POST = !empty($_POST) ? Uk86Security::uk86_getAddslashesForInput($_POST, $ignore) : array(); $_REQUEST = !empty($_REQUEST) ? Uk86Security::uk86_getAddslashesForInput($_REQUEST, $ignore) : array(); $_SERVER = !empty($_SERVER) ? Uk86Security::uk86_getAddSlashes($_SERVER) : array(); //启用ZIP压缩 if ($config['gzip'] == 1 && function_exists('ob_gzhandler') && $_GET['inajax'] != 1) { ob_start('ob_gzhandler'); } else { ob_start(); } require_once BASE_CORE_PATH . '/framework/libraries/queue.php'; require_once BASE_CORE_PATH . '/framework/function/core.php'; require_once BASE_CORE_PATH . '/framework/core/base.php'; require_once BASE_CORE_PATH . '/framework/function/goods.php'; if (function_exists('spl_autoload_register')) { spl_autoload_register(array('Uk86Base', 'uk86_autoload')); } else { function __autoload($class) {
} else { ?> <div class="ncs-norecord"><?php echo $lang['goods_index_no_reply']; ?> </div> <?php } if ($output['consult_able']) { ?> <form method="post" id="message" action="index.php?act=goods&op=save_consult&id=<?php echo $_GET['id']; ?> "> <?php Uk86Security::uk86_getToken(); ?> <input type="hidden" name="form_submit" value="ok" /> <input name="nchash" type="hidden" value="<?php echo uk86_getNchash(); ?> " /> <?php if ($output['type_name'] == '') { ?> <input type="hidden" name="goods_id" value="<?php echo $_GET['goods_id']; ?> "/> <?php }
/** * 检测FORM是否提交 * @param $check_token 是否验证token * @param $check_captcha 是否验证验证码 * @param $return_type 'alert','num' * @return boolean */ function uk86_chksubmit($check_token = false, $check_captcha = false, $return_type = 'alert') { $submit = isset($_POST['form_submit']) ? $_POST['form_submit'] : $_GET['form_submit']; if ($submit != 'ok') { return false; } if ($check_token && !Uk86Security::uk86_checkToken()) { if ($return_type == 'alert') { showDialog('Token error!'); } else { return -11; } } if ($check_captcha) { if (!uk86_checkSeccode($_POST['nchash'], $_POST['captcha'])) { uk86_setNcCookie('seccode' . $_POST['nchash'], '', -3600); if ($return_type == 'alert') { showDialog('验证码错误!'); } else { return -12; } } uk86_setNcCookie('seccode' . $_POST['nchash'], '', -3600); } return true; }