checkuserpass.php

来自「PPExam 是一个通用的在线考试系统」· PHP 代码 · 共 35 行

<?php
require('../../rte.php');
error_reporting(0);
$rtc['passport_api_time'] = $rtc['passport_api_time'] ? $rtc['passport_api_time'] : 1800;
if ($_GET['time'] < $timestamp - $rtc['passport_api_time']) {	//30分钟过期
	echo 0;
	exit;
}
if (strtolower(md5($_GET['db'].$_GET['time'].$rtc['passport_api_hash'])) == $_GET['sign']) {
	Iimport('azEncoder');
	$azencoder = new azEncoder();
	$azencoder -> SetKey($rtc['passport_api_hash']);
	
	$db = $azencoder -> Decode($_GET['db']);
	$rarray = array();
	parse_str($db,$rarray);
	
	if ($rarray['t'] == strtolower(md5($_GET['time'])) && $rarray['uid'] >0) {
		Iimport('PassPort_User');
		$passport = new PassPort_User();
		$passport -> LoadFromDBUsePriID($rarray['uid']);
		if ($passport -> U['uid']> 0) {
			if ($passport -> PassCheckEnCode($passport -> U) == $rarray['passcheck']) {
				//success!
				$rarray = array('uid' => $rarray['uid'] ,'time' => $timestamp);
				$db = $azencoder -> Encode(serialize($rarray));
				$str = "db=$db&time=$timestamp&sign=".strtolower(md5($db.$timestamp.$rtc['passport_api_hash']));
				echo $azencoder -> Encode($str);
				exit;
			}
		}
	}
}
echo 0;
?>