www.gusucode.com > 仿51.com的php源码 1.1 > ProcessInterface_Guestbook.php

    <?php 
include("include/dbclass.php");
include("include/global.php");
$dbc=new DbConn();
$user=$_GET["user"];
$uid=$_COOKIE["uid"];
$go=$_GET["go"];
$action=$_GET["action"];
if($action=="SaveMessage")
{
if($gb_time-$_COOKIE['wtime']<30)
{
echo "<script language='javascript'>alert('为防止恶意灌水,签写留言间隔为30秒!请您稍后再试');history.back();</script>";
exit();
}

$f_Guest_Sex=$_POST["f_Guest_Sex"];
$f_Guest_Memo=$_POST["f_Guest_Memo"];
$f_Guest_AddDate=$_POST["f_Guest_AddDate"];
$f_Guest_IsHide=$_POST["f_Guest_IsHide"];
$vip=$_COOKIE["vip"];
if($user==$uid)
{
echo "<script language='javascript'>alert('不能自己给自己留言!');parent.enableFrome(0);</script>";
exit();
}

if($f_Guest_Memo==null)
{
echo "<script language='javascript'>alert('来源参数错误! 请勿从以外的网站提交数据!');parent.enableFrome(0);</script>";
exit();
}
$T=date("Y-m-d h:i:s",strftime(time()));
if($uid==null)
{
echo "<script>alert('你还没有登陆,请先登陆!');history.back();</script>";
exit();
}
//查看是不是有形像了
$sqlck="select face,LeaveWordPrivilege from userdata where User_Account='$user' ";
$rs=$dbc->getRs($sqlck);
if($rs["face"]=="images/nophoto.gif")
{
echo "<script>alert('你还没有设置形象照!');history.back();</script>";
exit();
}
if($rs["LeaveWordPrivilege"]==2)
{
echo "<script>alert('你要留言的用户设置不给予留言操作了!');history.back();</script>";
exit();
}
//查看不是有VIP或好友才能留言了
if($rs["LeaveWordPrivilege"]==1)
{
$sqlf="select id from myfriend where User_Account='$user' and myfriendname='$uid'";
$rs1=$dbc->getRs($sqlf);

if((int)$_COOKIE["vip"]==0 && $rs1["id"]==null)
{
echo "<script>alert('用户设置为VIP用户或好友才能留言!');window.open('help/vip.php');</script>";
exit();
}
}
$lv=false;
$s="";
	$filter=$rs1["filterTxt"]; 
	$filter = explode(",",$filter);
	for($i=0;$i<count($filter);$i++){
		if(ereg($filter[$i],$f_Guest_Memo)){
		$s=$s.$filter[$i];	
		$lv=true;break;
			
		
		}
	}
	
	if($lv)	
	{
echo "<script>alert('你的留言含有不良内容:".$s."');history.back();;</script>";
	exit();
	}


$sql="insert into guestbook (UserName,User_Account,Guest_Sex,Guest_Memo,Guest_IsHide,Guest_AddDate) values ('$user','$uid','$f_Guest_Sex','$f_Guest_Memo','$f_Guest_IsHide','$T')";
$dbc->Execute($sql);
setcookie("wtime",$gb_time,$gb_time+30);
if($f_Guest_IsHide=="0")
{
echo "<script>alert('你的留言提交成功了!');parent.location.reload();</script>";
}
else
{
echo "<script>alert('你的留言提交成功了!');</script>";
}
}
?>