/**
* @CopyRight (C)2006-2011 LiangJing Development team Inc.
* @WebSite www.liangjing.org www.asp99.cn
* @Author Liangjing.org
* @Brief liangjingcms v1.x
* @Update 2011.09.11
* @Id 单页
**/
session_start();
require_once '../source/core/run.php';
$action= Core_Fun::rec_get("UIAction");
if($action="logon")
{
login();
}
function login(){
global $db;
$loginname= Core_Fun::rec_get('userName');
$password= Core_Fun::rec_get('password');
$checkcode= Core_Fun::rec_get('checkcode');
$founderr= false;
if(!Core_Fun::ischar($checkcode)){
$founderr= true;
}else{
if($checkcode != $_SESSION["verifycode"]){
$founderr= true;
$errmsg= "code";
}
}
if($founderr == true){
echo("code");
}
else
{
userlogin($loginname,$password);
}
}
function userlogin($username,$password,$ajax=0){
global $db;
$username = Core_Fun::replacebadchar($username);
$password = Core_Fun::replacebadchar($password);
$md5password = md5($password);
$sql = "SELECT a.*,g.grupname,g.gpurview".
" FROM ".DB_PREFIX."user AS a".
" LEFT JOIN ".DB_PREFIX."usergroup AS g ON a.usergroupid=g.usergroupid".
" WHERE 1=1 and lower(a.loginname)='".strtolower($username)."' AND a.password='$md5password'";
$rows = $db->fetch_first($sql);
if($rows){
if($rows['flag']==0){
echo("flagerror");
}else{
$_SESSION["USERID"]=$rows['userid'];
$_SESSION["USERNAME"]=$username;
$_SESSION["usergroupname"]=$rows['grupname'];
$_SESSION["gpurview"]=$rows['gpurview'];
$_SESSION["USERLEVEL"]=$rows['level'];
$_SESSION["pointnum"]=$rows['pointnum'];
$_SESSION["lastlogindate"]=$rows['lastlogindate'];
$array = array(
'lastlogindate'=>time(),
'pointnum'=>'[[pointnum+1]]',
'lastloginip'=>Core_Fun::getip(),
);
$db->update(DB_PREFIX."user",$array,"loginname='$username'");
echo("success");
}
}else{
echo("error");
}
}
?>
一键复制
编辑
Web IDE
原始数据
按行查看
历史