118 行
3.8 KiB
PHP
118 行
3.8 KiB
PHP
<?php
|
|
error_reporting(1);
|
|
ini_set('display_errors', 1);
|
|
|
|
session_start();
|
|
|
|
require_once __DIR__ . \DIRECTORY_SEPARATOR . 'loadRequires.php';
|
|
require_once __DIR__ . \DIRECTORY_SEPARATOR . 'template.php';
|
|
|
|
if (!isset($_POST['stage'])) {
|
|
echo "本页面只应被验证码页面调用。";
|
|
exit(1);
|
|
}
|
|
|
|
if (!isset($_SESSION['qwUserId'])) {
|
|
echo "2"; // 拒绝发送
|
|
exit(1);
|
|
}
|
|
|
|
$act = $_POST['act'];
|
|
$stage = $_POST['stage'];
|
|
|
|
## Blacklist
|
|
include_once __DIR__ . \DIRECTORY_SEPARATOR . 'blacklist-pn.php';
|
|
if (!isset($blacklist_pn)) {
|
|
$blacklist_pn = array();
|
|
}
|
|
|
|
switch ($stage) {
|
|
case 'update':
|
|
if (!isset($_POST['check_ua'])) {
|
|
alertAndBack('请您同意求闻百科的用户协议和个人信息保护方针。'); // 缺失参数
|
|
exit(1);
|
|
}
|
|
if (!isset($_POST['input_code']) || !isset($_POST['input_idd']) || !isset($_POST['input_phonenumber'])) {
|
|
alertAndBack('手机号和验证码不能为空!'); // 缺失参数
|
|
exit(1);
|
|
}
|
|
if (!isset($_SESSION['oldVerified'])) {
|
|
alertAndBack('验证码失效,请重试!'); // 验证码失效了
|
|
}
|
|
if (in_array($_POST['input_idd'] . $_POST['input_phonenumber'], $blacklist_pn)) {
|
|
alertAndBack('系统错误,请联系运营者。'); // 黑名单用户
|
|
} else {
|
|
if ($_SESSION['expireTime'] >= time()) {
|
|
$code = $_POST['input_code'] ?? '';
|
|
$idd = $_POST['input_idd'] ?? '';
|
|
$pn = $_POST['input_phonenumber'] ?? '';
|
|
if (($code == $_SESSION['verificationCode']) && ($idd == $_SESSION['qwPhoneNumberIdd']) && ($pn == $_SESSION['qwPhoneNumber'])) { // 验证码进行比对
|
|
unset($_SESSION['verificationCode']);
|
|
unset($_SESSION['oldVerified']);
|
|
$_SESSION['qwVerifyStage'] = 'update';
|
|
$_SESSION['newVerified'] = true;
|
|
require_once __DIR__ . \DIRECTORY_SEPARATOR . 'confirm.php'; // 验证成功
|
|
} else {
|
|
alertAndBack('验证码错误!'); // 验证码错误
|
|
}
|
|
} else { // 验证码的时间大于当前时间,代表失效了
|
|
unset($_SESSION['verificationCode']);
|
|
unset($_SESSION['newVerified']);
|
|
alertAndBack('验证码失效,请重试!'); // 验证码失效了
|
|
}
|
|
}
|
|
break;
|
|
|
|
case 'reg':
|
|
if (!isset($_POST['input_code']) || !isset($_POST['input_idd']) || !isset($_POST['input_phonenumber'])) {
|
|
alertAndBack('手机号和验证码不能为空!'); // 缺失参数
|
|
exit(1);
|
|
}
|
|
if ($_SESSION['expireTime'] >= time()) {
|
|
$code = $_POST['input_code'] ?? '';
|
|
if ($code == $_SESSION['verificationCode']) { // 验证码进行比对
|
|
unset($_SESSION['verificationCode']);
|
|
$_SESSION['qwVerifyStage'] = 'reg';
|
|
$_SESSION['oldVerified'] = true;
|
|
require_once __DIR__ . \DIRECTORY_SEPARATOR . 'confirm.php'; // 验证成功
|
|
} else {
|
|
alertAndBack('验证码错误!'); // 验证码错误
|
|
}
|
|
} else { // 验证码的时间大于当前时间,代表失效了
|
|
unset($_SESSION['verificationCode']);
|
|
unset($_SESSION['oldVerified']);
|
|
unset($_SESSION['newVerified']);
|
|
alertAndBack('验证码失效,请重试!'); // 验证码失效了
|
|
}
|
|
break;
|
|
|
|
case 'verify':
|
|
if (!isset($_POST['input_code'])) {
|
|
alertAndBack('验证码不能为空!'); // 缺失参数
|
|
exit(1);
|
|
}
|
|
if ($_SESSION['expireTime'] >= time()) {
|
|
$code = $_POST['input_code'] ?? '';
|
|
if ($code == $_SESSION['verificationCode']) { // 验证码进行比对
|
|
unset($_SESSION['verificationCode']);
|
|
unset($_SESSION['newVerified']);
|
|
$_SESSION['oldVerified'] = true;
|
|
refreshPage('/update.php');
|
|
// echo 1; // 验证成功
|
|
} else {
|
|
alertAndBack('验证码错误!'); // 验证码错误
|
|
}
|
|
} else { // 验证码的时间大于当前时间,代表失效了
|
|
unset($_SESSION['verificationCode']);
|
|
unset($_SESSION['oldVerified']);
|
|
unset($_SESSION['newVerified']);
|
|
alertAndBack('验证码失效,请重试!'); // 验证码失效了
|
|
}
|
|
break;
|
|
|
|
default:
|
|
alertAndBack('非法请求!'); // 未定义请求
|
|
exit(1);
|
|
break;
|
|
}
|