www.gusucode.com > 仿51.com的php源码 1.1 > ProcessInterface_Guestbook.php
<?php include("include/dbclass.php"); include("include/global.php"); $dbc=new DbConn(); $user=$_GET["user"]; $uid=$_COOKIE["uid"]; $go=$_GET["go"]; $action=$_GET["action"]; if($action=="SaveMessage") { if($gb_time-$_COOKIE['wtime']<30) { echo "<script language='javascript'>alert('为防止恶意灌水,签写留言间隔为30秒!请您稍后再试');history.back();</script>"; exit(); } $f_Guest_Sex=$_POST["f_Guest_Sex"]; $f_Guest_Memo=$_POST["f_Guest_Memo"]; $f_Guest_AddDate=$_POST["f_Guest_AddDate"]; $f_Guest_IsHide=$_POST["f_Guest_IsHide"]; $vip=$_COOKIE["vip"]; if($user==$uid) { echo "<script language='javascript'>alert('不能自己给自己留言!');parent.enableFrome(0);</script>"; exit(); } if($f_Guest_Memo==null) { echo "<script language='javascript'>alert('来源参数错误! 请勿从以外的网站提交数据!');parent.enableFrome(0);</script>"; exit(); } $T=date("Y-m-d h:i:s",strftime(time())); if($uid==null) { echo "<script>alert('你还没有登陆,请先登陆!');history.back();</script>"; exit(); } //查看是不是有形像了 $sqlck="select face,LeaveWordPrivilege from userdata where User_Account='$user' "; $rs=$dbc->getRs($sqlck); if($rs["face"]=="images/nophoto.gif") { echo "<script>alert('你还没有设置形象照!');history.back();</script>"; exit(); } if($rs["LeaveWordPrivilege"]==2) { echo "<script>alert('你要留言的用户设置不给予留言操作了!');history.back();</script>"; exit(); } //查看不是有VIP或好友才能留言了 if($rs["LeaveWordPrivilege"]==1) { $sqlf="select id from myfriend where User_Account='$user' and myfriendname='$uid'"; $rs1=$dbc->getRs($sqlf); if((int)$_COOKIE["vip"]==0 && $rs1["id"]==null) { echo "<script>alert('用户设置为VIP用户或好友才能留言!');window.open('help/vip.php');</script>"; exit(); } } $lv=false; $s=""; $filter=$rs1["filterTxt"]; $filter = explode(",",$filter); for($i=0;$i<count($filter);$i++){ if(ereg($filter[$i],$f_Guest_Memo)){ $s=$s.$filter[$i]; $lv=true;break; } } if($lv) { echo "<script>alert('你的留言含有不良内容:".$s."');history.back();;</script>"; exit(); } $sql="insert into guestbook (UserName,User_Account,Guest_Sex,Guest_Memo,Guest_IsHide,Guest_AddDate) values ('$user','$uid','$f_Guest_Sex','$f_Guest_Memo','$f_Guest_IsHide','$T')"; $dbc->Execute($sql); setcookie("wtime",$gb_time,$gb_time+30); if($f_Guest_IsHide=="0") { echo "<script>alert('你的留言提交成功了!');parent.location.reload();</script>"; } else { echo "<script>alert('你的留言提交成功了!');</script>"; } } ?>