开通博客赚积分
发布资源赚积分
分类

源码开发语言/平台
当前位置:首页 > 源码/资料 > Internet/网络编程 > WEB源码(ASP,PHP,...) > 查看源码
checkModuleSession.php
资源名称:BBWPS.rar [点击查看]
上传用户:yttaitong
上传日期:2009-05-10
资源大小:128k
文件大小:8k
源码类别:

WEB源码(ASP,PHP,...)

开发平台:

PHP

checkModuleSession.php:源码内容
  1. <?php
  2. /*
  3.     [BBWPS!] (C)2006-2010 小蜜蜂版权所有.
  4. This is NOT a freeware, use is subject to license terms
  5.     时间:2007年12月
  6.     描述:检查用户是否登录
  7. */
  8. function checkCookie(){
  9. global $baseCheckCode,$_COOKIE,$basePath,$_GET;
  10. if(!$_COOKIE['bbwps_user']||!$_COOKIE['bbwps_pwd']||!$_COOKIE['bbwps_ip']||!$_COOKIE['bbwps_check']){
  11. if(!$_GET['bbwps_user']||!$_GET['bbwps_pwd']||!$_GET['bbwps_ip']||!$_GET['bbwps_check']){
  12. ExeSuccess("您还没有登陆",$basePath);
  13. }
  14. else {
  15. extract($_GET);
  16. }
  17. }
  18. else {
  19. extract($_COOKIE);
  20. }
  21. $checkPass = decoded($bbwps_check,$baseCheckCode);
  22. $loginArray = array("bbwps_user"=>$bbwps_user,"bbwps_regctrl"=>$bbwps_regctrl,"bbwps_permit"=>$bbwps_permit);
  23. if($checkPass==$bbwps_pwd)
  24. return($loginArray);
  25. else ExeSuccess("您还没有登陆",$basePath);
  26. }
  27. function encode_key($txt, $encrypt_key) {
  28. $encrypt_key = md5($encrypt_key);
  29. $ctr = 0;
  30. $tmp = '';
  31. for($i = 0; $i < strlen($txt); $i++) {
  32. $ctr = $ctr == strlen($encrypt_key) ? 0 : $ctr;
  33. $tmp .= $txt[$i] ^ $encrypt_key[$ctr++];
  34. }
  35. return $tmp;
  36. }
  37. function decoded($codeString,$key){
  38. $txt = $codeString;
  39. $txt = encode_key(base64_decode($txt), $key);
  40. $tmp = '';
  41. for($i = 0;$i < strlen($txt); $i++) {
  42. $md5 = $txt[$i];
  43. $tmp .= $txt[++$i] ^ $md5;
  44. }
  45. return $tmp;
  46. }
  47. function encode($codeString,$key){
  48. $txt = $codeString;
  49. srand((double)microtime() * 1000000);
  50. $encrypt_key = md5(rand(0, 32000));
  51. $ctr = 0;
  52. $tmp = '';
  53. for($i = 0;$i < strlen($txt); $i++) {
  54. $ctr = $ctr == strlen($encrypt_key) ? 0 : $ctr;
  55. $tmp .= $encrypt_key[$ctr].($txt[$i] ^ $encrypt_key[$ctr++]);
  56. }
  57. return base64_encode(encode_key($tmp, $key));
  58. }
  59. function isLogin($path){
  60. global $installPath,$host,$basePath;
  61. if(!$path) return null;
  62. $popedom="http://".$host.$installPath."/";
  63. $_bbwspSession=getBBWPSSession($path);
  64. if(count($_bbwspSession)>0){
  65. $checkpopedomNum=substr($_bbwspSession["BBWPS_MODULE_POPEDOM"],-1);
  66. $checkpopedom=MakeMd5($popedom,$checkpopedomNum).$checkpopedomNum;
  67. if($checkpopedom==$_bbwspSession["BBWPS_MODULE_POPEDOM"]){
  68. return $_bbwspSession["BBWPS_MODULE_USERNAME"];
  69. }
  70. else{
  71. echo "<script language=javascript>";
  72. echo "alert('您还没有登陆!');";
  73. echo "top.location='".$basePath."release.php';";
  74. echo "</script>";
  75. return null;
  76. exit;
  77. }
  78. }
  79. else{
  80. echo "<script language=javascript>";
  81. echo "alert('您还没有登陆!');";
  82. echo "top.location='".$basePath."release.php';";
  83. echo "</script>";
  84. return null;
  85. exit;
  86. }
  87. }
  88. function bbwpsSetSession($path="",$data){
  89. global $sessionTime,$domain,$_COOKIE;
  90. if(!$data||!$path) return false;
  91. if(!is_dir($path)) return false;
  92. $sessionTime?null:$sessionTime=20;
  93. $dh=opendir($path);
  94. while ($file=readdir($dh)){
  95. if($file!="."&&$file!=".."){
  96. $dirArray[]=$file;
  97. }
  98. }
  99. closedir($dh);
  100. foreach ($dirArray as $file){
  101. if(strstr($file,"bbwpssess_")){
  102. $checktime=filectime($path.$file);
  103. if(($checktime+$sessionTime*60)<time()){
  104. unlink($path.$file);
  105. }
  106. }
  107. }
  108. if(isset($_COOKIE["PHPBBWPSSESSIONID"])&&$_COOKIE["PHPBBWPSSESSIONID"]){
  109. $sess_file_name=$_COOKIE["PHPBBWPSSESSIONID"];
  110. $_PHPBBWPSSESSION=getBBWPSSession($path);
  111. if(count($_PHPBBWPSSESSION)>0){
  112. foreach ($_PHPBBWPSSESSION as $key=>$value){
  113. $dataTmp[$key]=$value;
  114. }
  115. foreach ($data as $key=>$value){
  116. $dataTmp[$key]=$value;
  117. }
  118. }
  119. else{
  120. $dataTmp=$data;
  121. }
  122. }
  123. else{
  124. $sess_file_name=md5(microtime()*10+rand(1,10000));
  125. $dataTmp=$data;
  126. }
  127. $sess_string="<?PHPn";
  128. if(is_array($dataTmp)){
  129. foreach ($dataTmp as $key=>$value){
  130. $sess_string.='$_BBWPSSESSION['.$key.']="'.$value.'";'."n";
  131. }
  132. }
  133. else{
  134. $sess_string.='$_BBWPSSESSION['.$data.']="'.$data.'";'."n";
  135. }
  136. $sess_string.="?>";
  137. if(headers_sent()) echo "out";
  138. if(setcookie("PHPBBWPSSESSIONID",$sess_file_name,0,"/"))
  140. if(count($domain)>0){
  141. foreach ($domain as $dm){
  142. setcookie("PHPBBWPSLASTTIME",time(),0,"/",$dm);
  143. setcookie("PHPBBWPSADMINIP",getCurrentAdminIP(),0,"/",$dm);
  144. }
  145. }
  146. else{
  147. setcookie("PHPBBWPSLASTTIME",time(),0,"/");
  148. setcookie("PHPBBWPSADMINIP",getCurrentAdminIP(),0,"/");
  149. }
  150. if(is_writeable($path)){
  151. $fp=fopen($path."bbwpssess_".$sess_file_name.".php","w");
  152. fwrite($fp,$sess_string,strlen($sess_string));
  153. fclose($fp);
  154. return true;
  155. }
  156. else{
  157. return false;
  158. }
  159. }
  160. function getBBWPSSession($path="./"){
  161. global $sessionTime,$domain,$basePath,$_COOKIE;
  162. $sess_file_name=$path."bbwpssess_".$_COOKIE["PHPBBWPSSESSIONID"].".php";
  163. isset($_COOKIE["PHPBBWPSLASTTIME"])?$sess_time=$_COOKIE["PHPBBWPSLASTTIME"]:$sess_time=0;
  164. if(isset($_COOKIE["PHPBBWPSADMINIP"])){
  165. if(getCurrentAdminIP()!=$_COOKIE["PHPBBWPSADMINIP"]){
  166. return null;
  167. }
  168. }
  169. $sessionTime?null:$sessionTime=20;
  170. if(file_exists($sess_file_name)){
  171. if(($sess_time+$sessionTime*60)<time()){
  172. @unlink($sess_file_name);
  173. return null;
  174. }
  175. if(count($domain)>0){
  176. foreach ($domain as $dm){
  177. setcookie("PHPBBWPSLASTTIME",time(),0,"/",$dm);
  178. }
  179. }
  180. else{
  181. setcookie("PHPBBWPSLASTTIME",time(),0,"/");
  182. }
  183. include($sess_file_name);
  184. return $_BBWPSSESSION;
  185. }
  186. else{
  187. return null;
  188. }
  189. }
  190. function exitBBWPSSession($path="./"){
  191. global $basePath;
  192. $sess_file_name=$path."bbwpssess_".$_COOKIE["PHPBBWPSSESSIONID"].".php";
  193. @unlink($sess_file_name);
  194. setcookie("PHPBBWPSSESSIONID","",-1,"/");
  195. setcookie("PHPBBWPSLASTTIME","",-1,"/");
  196. $errorUrl = $basePath."release.php";
  197. exit("<script> parent.location.href='".$errorUrl."';</script>");
  198. }
  199. function getCurrentAdminIP(){
  200. if(getenv('HTTP_CLIENT_IP') && strcasecmp(getenv('HTTP_CLIENT_IP'), 'unknown')) {
  201. $onlineip = getenv('HTTP_CLIENT_IP');
  202. } elseif(getenv('HTTP_X_FORWARDED_FOR') && strcasecmp(getenv('HTTP_X_FORWARDED_FOR'), 'unknown')) {
  203. $onlineip = getenv('HTTP_X_FORWARDED_FOR');
  204. } elseif(getenv('REMOTE_ADDR') && strcasecmp(getenv('REMOTE_ADDR'), 'unknown')) {
  205. $onlineip = getenv('REMOTE_ADDR');
  206. } elseif(isset($_SERVER['REMOTE_ADDR']) && $_SERVER['REMOTE_ADDR'] && strcasecmp($_SERVER['REMOTE_ADDR'], 'unknown')) {
  207. $onlineip = $_SERVER['REMOTE_ADDR'];
  208. }
  209. return $onlineip;
  210. }
  211. function MakeMd5($string,$num=1){
  212. for ($i=0;$i<$num;$i++){
  213. $string = md5($string);
  214. }
  215. return $string;
  216. }
  217. function DeMakeMd5($Ostring,$str){
  218. $stringNum=substr($Ostring,-1);
  219. if($Ostring==MakeMd5($str,$stringNum).$stringNum){
  220. return true;
  221. }
  222. else{
  223. return false;
  224. }
  225. }
  226. function EnMakeMd5($str){
  227. $num=rand(1,9);
  228. return MakeMd5($str,$num).$num;
  229. }
  230. function parseADTag($tmpObj,$tmpFile){
  231. global $basePath,$moduleID,$baseCheckCode;
  232. $basecheckcode=EnMakeMd5($baseCheckCode);
  233. $tmpString=file_get_contents($tmpFile);
  234. preg_match_all("/{ad_(.*?)}/is",$tmpString,$tagArray);
  235. if(is_array($tagArray)){
  236. foreach ($tagArray[0] as $key=>$value){
  237. $tmpObj->set_var("ad_".$tagArray[1][$key],"<script language="javascript" type="text/javascript" src="".$basePath."/api/parseAD.php?tag="."ad_".$tagArray[1][$key]."&basecheckcode=$basecheckcode&moduleID=$moduleID".""></script>");
  238. }
  239. }
  240. return $tmpObj;
  241. }
  242. function setBBWPSuserCredis($op="sum",$num,$forward,$reason,$sortuser){
  243. global $baseCheckCode,$_COOKIE,$basePath,$_GET,$articleid;
  244. $forward=rawurlencode($forward."&id=".EnMakeMd5($articleid));
  245. $reason=rawurldecode($reason);
  246. if(isset($_GET["basecheckcode"])&&isset($_GET["op"])){
  247. if(!DeMakeMd5($_GET["basecheckcode"],$baseCheckCode)||$_GET["op"]>0){
  248. switch ($_GET["op"]){
  249. case 1 :
  250. return false;
  251. break;
  252. case 2 :
  253. return false;
  254. break;
  255. }
  256. }
  257. else{
  258. if(!DeMakeMd5($_GET["id"],$articleid)){
  259. Meta(0,$basePath."/api/pay.php?basecheckcode=".EnMakeMd5($baseCheckCode)."&num=$num&op=$op&forward=$forward&check=".encode($sortuser,$baseCheckCode)."&reason=$reason&id=$articleid");
  260. }
  261. return true;
  262. }
  263. }
  264. else{
  265. Meta(0,$basePath."/api/pay.php?basecheckcode=".EnMakeMd5($baseCheckCode)."&num=$num&op=$op&forward=$forward&check=".encode($sortuser,$baseCheckCode)."&reason=$reason");
  266. }
  267. }
  268. function getBBWPSuserInfo($bbwpsusername){
  269. global $baseCheckCode,$basePath;
  270. $userInfoCacheUrl = $basePath."api/user.php?bbwpsusername=$bbwpsusername&basecheckcode=".EnMakeMd5($baseCheckCode);
  271. $x=new OutParse($userInfoCacheUrl);
  272. $userInfoArray=$x->GetItems();
  273. $userInfoArray=array_change_key_case($userInfoArray[1]);
  274. return $userInfoArray;
  276. ?>