register.php

在传统CMS文章内容管理功能基础上

<?php
/*
[BBWPS!] (C)2006-2010 小蜜蜂版权所有.
This is NOT a freeware, use is subject to license terms
*/
error_reporting(0);
require_once("./class/template_class.php");
require_once("./class/mysql_class.php");
require_once("./function/function.php");
require_once("./config.php");
require_once("./config/baseCheckCode.php");
include_once("./$adminDir/data/userconfig.php");
include_once("./data/webconfig.php");
include_once("./data/module.php");
include_once("./class/tagParse_class.php");
include_once("./class/ParseOut_class.php");
include_once("./lang/$configlang");
$p=new Template("./template/index");
$p->set_file("handle_module","index_module.html");
foreach ($moduleArray as $module){
	if($module["isstart"]=="1"&&$module["cbaseid"]==0){
		$p->set_var("module_name",$module["name"]);
		$p->set_var("module_link",$module["dns"]);
		$p->parse("module","handle_module",true);
	}
}
foreach ($cbaseArrayConfig as $node){
	if($node["pcbaseid"]==0){
		$p->set_var("module_name",$node["cbasename"]);
		if($node["nodeurl"]!='0'){
			$p->set_var("module_link",$node["nodeurl"]);
		}
		else{
			$p->set_var("module_link","./front/?node-{$node["cbaseid"]}.html");
		}
		$p->parse("module","handle_module",true);
	}
}
$action  = $_GET['action'];
if($_GET["forward"]){
	setcookie("bbwps_path",$_GET["forward"]);
}
//显示注册页面，提示用户输入相信的信息
if ($action=="odd"){
	$p->set_file("handle","register.html");
	$p->set_block("handle","checkcode","che");
	$p->set_block("handle","regextend","ext");
	$p->set_block("handle","uploadface","up");
	$p->set_block("handle","regextendmust","extm");

	//-----------------------------------------
	//调用tagParse_class类解析模块通讯
	//-----------------------------------------
	$t = new tagParse($p,"./template/index/register.html",$baseCheckCode);
	$t->setInstallPath($installPath);
	$t->setModuleArray($moduleArray);
	//-----------------------------------------
	//开通缓存
	//-----------------------------------------
	$web['web_isbasecash']?$t->setOpenCash(TRUE):$t->setOpenCash(FALSE);
	$web_cashtime = intval($web['web_cashtime']);
	$t->setCashTime($web_cashtime*60,$web_cashtime*60);
	$t->setCashDir("./cache");
	$p = $t->parse();


	if($regcard==1){                     //是否开启验证码
		$p->parse("che","checkcode");
	}
	//是否允许用户上传头像
	if($uploadface){
		$p->parse("up","uploadface");
	}
	//-----------------------------------------------
	//是否开启中文注册　
	//-----------------------------------------------
	if($ischinese==0){
		$p->set_var("styleischinese","style=\"ime-mode:disabled\"");
		$p->set_var("jsischinese","else if (escape(user).indexOf('%u') != -1) {alert(\"{$langUserRegisterArray["reg_unchinese"]}\"); return false; } ");
	}
	//-----------------------------------------------
	//是否有扩展字段　
	//-----------------------------------------------
	$vipnum=$_GET["vipnum"];
	showSetField();
	//获得会员组的名称
	$db= new DB($hostname,$username,$password,$database);
	$sql="select * from {$prefix}permitgroup where pgid='$vipnum'";
	$db->query($sql,true);
	$rs=$db->fetch_array();
	$p->set_var("pgname",$rs["pgname"]);
	$p->set_var($web);
	$p->parse("out","handle");
	$p->p("out");
}
elseif ($action=="company"){
	$p->set_file("handle","companylogin.html");//公司注册信息
	$p->set_block("handle","checkcode","che");
	$p->set_block("handle","regextend","ext");
	$p->set_block("handle","uploadface","up");
	$p->set_block("handle","regextendmust","extm");
	//-----------------------------------------
	//调用tagParse_class类解析模块通讯
	//-----------------------------------------
	$t = new tagParse($p,"./template/index/companylogin.html",$baseCheckCode);
	$t->setInstallPath($installPath);
	$t->setModuleArray($moduleArray);
	//-----------------------------------------
	//开通缓存
	//-----------------------------------------
	$web['web_isbasecash']?$t->setOpenCash(TRUE):$t->setOpenCash(FALSE);
	$web_cashtime = intval($web['web_cashtime']);
	$t->setCashTime($web_cashtime*60,$web_cashtime*60);
	$t->setCashDir("./cache");
	$p = $t->parse();


	if($regcard==1){                     //是否开启验证码
		$p->parse("che","checkcode");
	}
	if($uploadface){
		$p->parse("up","uploadface");
	}
	//-----------------------------------------------
	//是否有扩展字段　
	//-----------------------------------------------
	$vipnum=$_GET["vipnum"];
	showSetField();
	//获得会员组的名称
	$db= new DB($hostname,$username,$password,$database);
	$sql="select * from {$prefix}permitgroup where pgid='$vipnum'";
	$db->query($sql,true);
	$rs=$db->fetch_array();
	$p->set_var("pgname",$rs["pgname"]);
	$p->set_var($web);
	$p->parse("out","handle");
	$p->p("out");
	exit();
}
////////////////////////////////////////
//注册处理
///////////////////////////////////////
elseif($action=="login"){
	$isMagic = @ini_get("magic_quotes_gpc");
	if(!$isMagic){
		foreach($_POST AS $key => $value) {
			$value = strip_tags($value);//处理掉HTML代码
			$_POST[$key] = str_replace('"','\"',$value);
		}
	}
	$user    = $_POST['post_bbwps_user'];
	$regctrl = $_GET['regctrl'];
	if(!$user) {
		MsgError($langUserRegisterArray["reg_unusername"]);
	}
	if($_POST['pwd2']!=$_POST['post_bbwps_pwd']){
		MsgError($langUserRegisterArray["reg_unpassword"]);
	}

	//////////////////////////////////////////////////////////////////////////////////////////
	//判断必要条件是否为空
	if($regctrl==0){//个人用户
		if($user==""||$_POST['post_bbwps_pwd']==""||$_POST['email']==""){
			MsgError($langUserRegisterArray["reg_unempty"]);
		}
	}else {//企业用户
		if($user==""||$_POST['post_bbwps_pwd']==""||$_POST['email']==""||$_POST['name']==""||$_POST['linkman']==""||$_POST['phone']==""||$_POST['address']==""){
			MsgError($langUserRegisterArray["reg_unempty"]);
		}
	}
	//END判断必要条件是否为空
	//////////////////////////////////////////////////////////////////////////////////////////

	//////////////////////////////////////////////////////////////////////////////////////////
	//判断用户名是否为中文
	if($ischinese==0){
		$StrLen = strlen($user);
		$Length = 1;
		for($i = 0;$i < $StrLen;$i++) {
			$TmpStr = ord(substr($user,$i,1));
			$TmpStr2 = ord(substr($user,$i+1,1));
			if(($TmpStr <= 161 || $TmpStr >=247) && ($TmpStr2 <= 161 || $TmpStr2 >=247)) {
			}else {
				MsgError($langUserRegisterArray["reg_unchinese"]);
			}
		}
	}
	//END判断用户名是否为中文
	//////////////////////////////////////////////////////////////////////////////////////////


	//////////////////////////////////////////////////////////////////////////////////////////
	//用户输入验证码较验
	if($regcard==1){
		include_once("./function/checkBaseSession.php");
		$_SESSION=getBBWPSSession("./$session/");
		if($_SESSION['bbwps_yz_code']!=md5($_POST['post_bbwps_yz'])){
			MsgError($langUserRegisterArray["reg_uncheckcode"]);
		}
	}

	//END用户输入验证码较验
	//////////////////////////////////////////////////////////////////////////////////////////


	//////////////////////////////////////////////////////////////////////////////////////////
	//判断用户名是否是用户信息保留关键字
	$forbidname = explode(",",$forbidname);
	foreach ($forbidname as $value){
		if($value!=""||$value!=null){
			$user = trim($user);
			$user = str_replace(" ","",$user);
			if(strpos($value,"*") === false){
				if($user==$value){
					MsgError($langUserRegisterArray["reg_username_illege"]);
				}
			}else{
				$value = str_replace("*","",$value);
				if(substr_count($user,$value)>0){
					MsgError($langUserRegisterArray["reg_username_illege"]);
				}
			}
		}
	}
	unset($forbidname,$value,$a);
	//END判断用户名是否是用户信息保留关键字
	//////////////////////////////////////////////////////////////////////////////////////////


	//////////////////////////////////////////////////////////////////////////////////////////
	//判断用户名是否存在
	$db= new DB($hostname,$username,$password,$database);
	$selectSql = "select uid from ".$prefix."members where username='".$_POST['post_bbwps_user']."'";
	$selectObj =  $db->get_one($selectSql);
	if($selectObj->uid) {
		MsgError($langUserRegisterArray["reg_username_exist"]);
	}
	unset($selectSql,$selectRow,$selectRes);
	$pwd  = md5($_POST['post_bbwps_pwd']);
	//END判断用户名是否存在
	//////////////////////////////////////////////////////////////////////////////////////////


	//////////////////////////////////////////////////////////////////////////////////////////
	//判断EMAIL是否设置为唯一
	if($doublee==0){
		$emailSql = "select email from ".$prefix."memberfields";
		$emailRes = $db->query($emailSql,true);
		while ($emailObj = $db->fetch_object($emailRes)) {
			if($emailObj->email==$_POST['email']){
				MsgError($langUserRegisterArray["reg_email_exist"]);
			}
		}
	}
	//END判断EMAIL是否设置为唯一
	//////////////////////////////////////////////////////////////////////////////////////////

	////////////////////////////////////////////////////////
	//获得IP
	$onlineip=foundIp();
	//END获得IP
	//////////////////////////////////////////////////////////////////////////////////////
	$email = $_POST['email'];
	$linkman = $_POST['linkman'];
	$address = $_POST['address'];
	$phone = $_POST['phone'];
	$name = $_POST['name'];
	$timestamp=time();

	$vipnum =$_POST["vipnum"];

	//判断是不是有扩展字段
	$setfield=$_POST["setfield"];
	if(is_array($setfield)){
		include_once("./data/setfield.php");
		foreach ($setfieldArray as $field){
			//是个人扩展字段
			if($field["tablename"]=="memberfields"&&$regctrl==0&&$field["vipnum"]==$vipnum){
				if($field["isnull"]&&!$setfield[$field["field"]]){
					MsgError($field["descript"].$langUserRegisterArray["reg_unempty"]);
				}
			}
			//是企业扩展字段
			if($field["tablename"]=="company"&&$regctrl==1&&$field["vipnum"]==$vipnum){
				if($field["isnull"]&&!$setfield[$field["field"]]){
					MsgError($field["descript"].$langUserRegisterArray["reg_unempty"]);
				}
			}
		}
		foreach ($setfield as $sk=>$sv){
			if(is_array($sv)){
				$sv=serialize($sv);
			}
			$setfieldSQL[]="`$sk`='$sv'";
		}