Startsida Utforska Hjälp
Registrera dig Logga in
richod
/
ximushanyuan
1
0
Fork 0
Filer Ärenden 0 Pull-förfrågningar 0 Wiki
Gren: master
Grenar Taggar
ximushanyuan
/
web
/
source
/
utility
/
verifycode.ctrl.php

verifycode.ctrl.php 2.6 KB
Permalänk Historik

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283 
  1. <?php
    2. 

  2. /**
    3. 

  3.  * [WeEngine System] Copyright (c) 2014 WE7.CC
    4. 

  4.  * WeEngine is NOT a free software, it under the license terms, visited http://www.we7.cc/ for more details.
    5. 

  5.  */
    6. 

  6. defined('IN_IA') or exit('Access Denied');
    7. 

  7. 

  8. load()->model('setting');
    9. 

  9. $custom_sign = safe_gpc_string($_GPC['custom_sign']);
    10. 

  10. 

  11. $_W['uniacid'] = intval($_GPC['uniacid']);
    12. 

  12. if (empty($_W['uniacid'])) {
    13. 

  13. 	$uniacid_arr = array(
    14. 

  14. 		'name' => '短信验证码',
    15. 

  15. 	);
    16. 

  16. } else {
    17. 

  17. 	$uniacid_arr = pdo_fetch('SELECT * FROM ' . tablename('uni_account') . ' WHERE uniacid = :uniacid', array(':uniacid' => $_W['uniacid']));
    18. 

  18. 	if(empty($uniacid_arr)) {
    19. 

  19. 		exit('非法访问');
    20. 

  20. 	}
    21. 

  21. }
    22. 

  22. 

  23. $receiver = trim($_GPC['receiver']);
    24. 

  24. if(empty($receiver)){
    25. 

  25. 	exit('请输入邮箱或手机号');
    26. 

  26. } elseif(preg_match(REGULAR_MOBILE, $receiver)){
    27. 

  27. 	$receiver_type = 'mobile';
    28. 

  28. } elseif(preg_match("/^\w+([-+.]\w+)*@\w+([-.]\w+)*\.\w+([-.]\w+)*$/", $receiver)) {
    29. 

  29. 	$receiver_type = 'email';
    30. 

  30. } else {
    31. 

  31. 	exit('您输入的邮箱或手机号格式错误');
    32. 

  32. }
    33. 

  33. 

  34. $sql = 'DELETE FROM ' . tablename('uni_verifycode') . ' WHERE `createtime`<' . (TIMESTAMP - 1800);
    35. 

  35. pdo_query($sql);
    36. 

  36. 

  37. $sql = 'SELECT * FROM ' . tablename('uni_verifycode') . ' WHERE `receiver`=:receiver AND `uniacid`=:uniacid';
    38. 

  38. $pars = array();
    39. 

  39. $pars[':receiver'] = $receiver;
    40. 

  40. $pars[':uniacid'] = $_W['uniacid'];
    41. 

  41. $row = pdo_fetch($sql, $pars);
    42. 

  42. $record = array();
    43. 

  43. $code = random(6, true);
    44. 

  44. if(!empty($row)) {
    45. 

  45. 	if($row['total'] >= 5) {
    46. 

  46. 		exit('您的操作过于频繁,请稍后再试');
    47. 

  47. 	}
    48. 

  48. 	$record['total'] = $row['total'] + 1;
    49. 

  49. 	$record['verifycode'] = $code;
    50. 

  50. 	$record['createtime'] = TIMESTAMP;
    51. 

  51. } else {
    52. 

  52. 	$record['uniacid'] = $_W['uniacid'];
    53. 

  53. 	$record['receiver'] = $receiver;
    54. 

  54. 	$record['verifycode'] = $code;
    55. 

  55. 	$record['total'] = 1;
    56. 

  56. 	$record['createtime'] = TIMESTAMP;
    57. 

  57. }
    58. 

  58. if(!empty($row)) {
    59. 

  59. 	pdo_update('uni_verifycode', $record, array('id' => $row['id']));
    60. 

  60. } else {
    61. 

  61. 	pdo_insert('uni_verifycode', $record);
    62. 

  62. }
    63. 

  63. 

  64. if($receiver_type == 'email') {
    65. 

  65. 	load()->func('communication');
    66. 

  66. 	$content = "您的邮箱验证码为: {$code} 您正在使用{$uniacid_arr['name']}相关功能, 需要你进行身份确认.";
    67. 

  67. 	$result = ihttp_email($receiver, "{$uniacid_arr['name']}身份确认验证码", $content);
    68. 

  68. } else {
    69. 

  69. 	load()->model('cloud');
    70. 

  70. 	$r = cloud_prepare();
    71. 

  71. 	if(is_error($r)) {
    72. 

  72. 		exit($r['message']);
    73. 

  73. 	}
    74. 

  74. 	$setting = uni_setting($_W['uniacid'], 'notify');
    75. 

  75. 	$content = "您的短信验证码为: {$code} 您正在使用{$uniacid_arr['name']}相关功能, 需要你进行身份确认. ".random(3);
    76. 

  76. 	$result = cloud_sms_send($receiver, $content, array(), $custom_sign);
    77. 

  77. }
    78. 

  78. 

  79. if(is_error($result)) {
    80. 

  80. 	header('error: ' . urlencode($result['message']));
    81. 

  81. 	exit($result['message']);
    82. 

  82. }
    83. 

  83. exit('success');
    84.