www.gusucode.com > Carbon Forum PHP轻论坛系统 v3.6.5源码程序 > Carbon-Forum-3.6.5/common.php
<?php
/*
* Carbon-Forum
* https://github.com/lincanbin/Carbon-Forum
*
* Copyright 2006-2015 Canbin Lin (lincanbin@hotmail.com)
* http://www.94cb.com/
*
* Licensed under the Apache License, Version 2.0:
* http://www.apache.org/licenses/LICENSE-2.0
*
* A high performance open-source forum software written in PHP.
*/
/*
逐渐替换为帕斯卡命名法
数据库从设计上避免使用Join多表联查
*/
//输出所有错误信息,调试用
//error_reporting(E_ALL);
//ini_set('display_errors', 'On');
//关闭错误报告,生产环境用
ini_set('display_errors', 'Off');
//Initialize timer
$mtime = explode(' ', microtime());
$starttime = $mtime[1] + $mtime[0];
$TimeStamp = $_SERVER['REQUEST_TIME'];
require(__DIR__ . "/config.php");
require(__DIR__ . '/language/' . ForumLanguage . '/common.php');
//Initialize PHP Data Object(Database)
require(__DIR__ . "/includes/PDO.class.php");
$DB = new Db(DBHost, DBName, DBUser, DBPassword);
//Initialize MemCache(d) / Redis
$MCache = false;
if (EnableMemcache) {
if (extension_loaded('memcached')) {
//MemCached
$MCache = new Memcached(MemCachePrefix . 'Cache');
//Using persistent memcached connection
if (!count($MCache->getServerList())) {
$MCache->addServer(MemCacheHost, MemCachePort);
}
} elseif (extension_loaded('memcache')) {
//MemCache
require(__DIR__ . "/includes/MemcacheMod.class.php");
$MCache = new MemcacheMod(MemCacheHost, MemCachePort);
} elseif (extension_loaded('redis')) {
//Redis
//https://github.com/phpredis/phpredis
$MCache = new Redis();
$MCache->pconnect(MemCacheHost, MemCachePort);
} elseif (extension_loaded('xcache')) {
// XCache
require(__DIR__ . "/includes/XCache.class.php");
$MCache = new XCache();
}
}
//Load configuration
$Config = array();
if ($MCache) {
$Config = $MCache->get(MemCachePrefix . 'Config');
}
if (!$Config) {
foreach ($DB->query('SELECT ConfigName,ConfigValue FROM ' . $Prefix . 'config') as $ConfigArray) {
$Config[$ConfigArray['ConfigName']] = $ConfigArray['ConfigValue'];
}
if ($MCache) {
$MCache->set(MemCachePrefix . 'Config', $Config, 86400);
}
}
// 热门标签列表
$HotTagsArray = json_decode($Config['CacheHotTags'], true);
$HotTagsArray = $HotTagsArray?$HotTagsArray:array();
$PHPSelf = addslashes(htmlspecialchars($_SERVER['PHP_SELF'] ? $_SERVER['PHP_SELF'] : $_SERVER['SCRIPT_NAME']));
$UrlPath = $Config['WebsitePath'] ? str_ireplace($Config['WebsitePath'] . '/', '', substr($PHPSelf, 0, -4)) : substr($PHPSelf, 1, -4);
//For IIS ISAPI_Rewrite
$RequestURI = isset($_SERVER['HTTP_X_REWRITE_URL']) ? $_SERVER['HTTP_X_REWRITE_URL'] : $_SERVER['REQUEST_URI'];
//消除低版本中魔术引号的影响
if (version_compare(PHP_VERSION, '5.4.0') < 0 && get_magic_quotes_gpc()) {
function StripslashesDeep($var)
{
return is_array($var) ? array_map('StripslashesDeep', $var) : stripslashes($var);
}
$_GET = StripslashesDeep($_GET);
$_POST = StripslashesDeep($_POST);
$_COOKIE = StripslashesDeep($_COOKIE);
$_REQUEST = StripslashesDeep($_REQUEST);
}
// At某人并提醒他,使用时常在其前后加空格或回车,如 “@admin ”
function AddingNotifications($Content, $TopicID, $PostID, $FilterUser = '')
{
/*
Type:
1:新回复
2:@ 到我的
*/
global $Prefix, $DB, $MCache, $TimeStamp, $CurUserName;
//例外列表
$ExceptionUser = array(
$CurUserName
);
if ($FilterUser != $CurUserName) {
$ExceptionUser[] = $FilterUser;
}
// 正则跟用户注册、登录保持一致
preg_match_all('/\B\@([a-zA-Z0-9\x80-\xff\-_]{4,20})/', strip_tags($Content,'<br><p>'), $out, PREG_PATTERN_ORDER);
$TemporaryUserList = array_unique($out[1]); //排重
$TemporaryUserList = array_diff($TemporaryUserList, $ExceptionUser);
//对数组重新分配下标
sort($TemporaryUserList);
//var_dump($TemporaryUserList);
if ($TemporaryUserList) {
$UserList = $DB->row('SELECT ID FROM `' . $Prefix . 'users` WHERE `UserName` in (?)', $TemporaryUserList);
if ($UserList && count($UserList) <= 20) {
//最多@ 20人,防止骚扰
foreach ($UserList as $UserID) {
$DB->query('INSERT INTO `' . $Prefix . 'notifications`(`ID`,`UserID`, `UserName`, `Type`, `TopicID`, `PostID`, `Time`, `IsRead`) VALUES (null,?,?,?,?,?,?,?)', array(
$UserID,
$CurUserName,
2,
$TopicID,
$PostID,
$TimeStamp,
0
));
$DB->query('UPDATE `' . $Prefix . 'users` SET `NewMessage` = NewMessage+1 WHERE ID = :UserID', array(
'UserID' => $UserID
));
//清理内存缓存
if ($MCache) {
$MCache->delete(MemCachePrefix . 'UserInfo_' . $UserID);
}
}
}
}
}
//提示信息
function AlertMsg($PageTitle, $error, $status_code = 200)
{
global $Lang, $RequestURI, $UrlPath, $IsMobile, $IsApp, $Prefix, $DB, $Config, $CurUserID, $CurUserName, $CurUserCode, $CurUserRole, $CurUserInfo, $FormHash, $starttime, $PageMetaKeyword, $TemplatePath;
$errors = array();
if (!$IsApp && !$IsMobile) {
switch ($status_code) {
case 404:
header("HTTP/1.1 404 Not Found");
header("Status: 404 Not Found");
break;
case 401:
header("HTTP/1.1 401 Unauthorized");
header("Status: 401 Unauthorized");
break;
case 403:
header("HTTP/1.1 403 Forbidden");
header("Status: 403 Forbidden");
break;
case 400:
header("HTTP/1.1 400 Bad Request");
header("Status: 400 Bad Request");
break;
case 500:
header("HTTP/1.1 500 Internal Server Error");
header("Status: 500 Internal Server Error");
break;
case 503:
header("HTTP/1.1 503 Service Unavailable");
header("Status: 503 Service Unavailable");
break;
default:
break;
}
}
$ContentFile = $TemplatePath . 'alert.php';
include($TemplatePath . 'layout.php');
exit;
}
//获取数组中的某一列
function ArrayColumn($Input, $ColumnKey)
{
if (version_compare(PHP_VERSION, '5.5.0') < 0) {
$Result = array();
if ($Input) {
foreach ($Input as $Value) {
$Result[] = $Value[$ColumnKey];
}
}
return $Result;
} else {
return array_column($Input, $ColumnKey);
}
}
//鉴权
function Auth($MinRoleRequire, $AuthorizedUserID = 0, $StatusRequire = false)
{
global $CurUserRole, $CurUserID, $CurUserInfo, $Lang, $RequestURI;
$error = '';
if ($CurUserRole < $MinRoleRequire) {
$error = str_replace('{{RoleDict}}', $Lang['RolesDict'][$MinRoleRequire], $Lang['Error_Insufficient_Permissions']);
}
if ($CurUserID && $StatusRequire == true && $CurUserInfo['UserAccountStatus'] == 0) {
$error = $Lang['Error_Account_navailable'];
}
if ($AuthorizedUserID && $CurUserID && $CurUserID == $AuthorizedUserID) {
$error = false;
}
if ($error) {
AlertMsg($Lang['Error_Message'], $error, 401);
}
}
//转换字符
function CharCV($string)
{
$string = htmlspecialchars(trim($string));
return $string;
}
// 过滤掉一些非法字符
function CharsFilter($String)
{
$String = str_replace("<", "", $String);
$String = str_replace(">", "", $String);
return trim($String);
}
// 获得IP地址
function CurIP()
{
$IsCDN = false; //未使用CDN时,应直接使用 $_SERVER['REMOTE_ADDR'] 以防止客户端伪造IP
$IP = false;
if ($IsCDN && !empty($_SERVER["HTTP_CLIENT_IP"])) {
$IP = trim($_SERVER["HTTP_CLIENT_IP"]);
}
if (!empty($_SERVER['HTTP_X_FORWARDED_FOR'])) {
$IPs = explode(",", $_SERVER['HTTP_X_FORWARDED_FOR']);
if ($IP) {
array_unshift($IPs, $IP);
$IP = FALSE;
}
//支持使用CDN后获取IP,理论上令 $IP = $IPs[0]; 即可,安全起见遍历过滤一次
for ($i = 0; $i < count($IPs); $i++) {
if (!preg_match("/^(10|172.16|172.17|172.18|172.19|172.20|172.21|172.22|172.23|172.24|172.25|172.26|172.27|172.28|172.29|172.30|172.31|192.168)/i", trim($IPs[$i]))) {
$IP = trim($IPs[$i]);
break;
}
}
}
return htmlspecialchars($IP ? $IP : $_SERVER['REMOTE_ADDR']);
}
// 获得表单校验散列
function FormHash()
{
global $Config, $SALT;
if (array_key_exists('UserCode', $_COOKIE))
return substr(md5($Config['SiteName'] . $_COOKIE['UserCode'] . $SALT), 8, 8);
else
return substr(md5($Config['SiteName'] . $SALT), 8, 8);
}
//格式化文件大小
function FormatBytes($size, $precision = 2)
{
$units = array(
' B',
' KB',
' MB',
' GB',
' TB'
);
for ($i = 0; $size >= 1024 && $i < 4; $i++)
$size /= 1024;
return round($size, $precision) . $units[$i];
}
// 格式化时间
function FormatTime($UnixTimeStamp)
{
global $Lang;
$Seconds = $_SERVER['REQUEST_TIME'] - $UnixTimeStamp;
if ($Seconds < 2592000) {
// 小于30天如下显示
if ($Seconds >= 86400) {
return round($Seconds / 86400, 0) . ' ' . $Lang['Time_Days_Ago'];
} else if ($Seconds >= 3600) {
return round($Seconds / 3600, 0) . ' ' . $Lang['Time_Hours_Ago'];
} else if ($Seconds >= 60) {
return round($Seconds / 60, 0) . ' ' . $Lang['Time_Minutes_Ago'];
} else if ($Seconds < 0) {
return $Lang['Time_Just_Now'];
} else {
return ($Seconds + 1) . ' ' . $Lang['Time_Seconds_Ago'];
}
} else {
// 大于一月
return date("Y-m-d", $UnixTimeStamp);
//gmdate()可以返回格林威治标准时,date()则为当地时
}
}
//获取头像
function GetAvatar($UserID, $UserName, $Size = 'middle')
{
global $Config;
return '<img src="' . $Config['WebsitePath'] . '/upload/avatar/' . $Size . '/' . $UserID . '.png" alt="' . $UserName . '"/>';
}
//获取Tag标签
function GetTagIcon($TagID, $Icon, $TagName, $Size = 'middle')
{
global $Config;
return '<img src="' . $Config['WebsitePath'] . '/upload/tag/' . $Size . '/' . ($Icon?$TagID:'0') . '.png" alt="' . $TagName . '"/>';
}
//获取Cookie
function GetCookie($Key, $DefaultValue = false)
{
global $Config;
if (isset($_COOKIE[$Config['CookiePrefix'] . $Key]))
return $_COOKIE[$Config['CookiePrefix'] . $Key];
else if ($DefaultValue) {
SetCookies(array(
$Key => $DefaultValue
));
return $DefaultValue;
} else
return false;
}
//Hash值校验,防止时序攻击法
function HashEquals($KnownString, $UserString)
{
if (version_compare(PHP_VERSION, '5.6.0') < 0) {
return ($KnownString === $UserString);
} else {
return hash_equals($KnownString, $UserString);
}
}
//长整数intval,防止溢出,目前暂未用到
function Int($s)
{
return ($a = preg_replace('/[^\-\d]*(\-?\d*).*/', '$1', $s)) ? $a : '0';
}
//判断是否为邮件地址
function IsEmail($email)
{
return strlen($email) > 6 && preg_match("/^[\w\-\.]+@[\w\-\.]+(\.\w+)+$/", $email);
}
//判断是否为合法用户名
function IsName($string)
{
return !preg_match('/^[0-9]{4,20}$/', $string) && preg_match('/^[a-zA-Z0-9\x80-\xff\-_]{4,20}$/i', $string);
}
//只有上一页下一页的分页
function PaginationSimplified($PageUrl, $PageCount, $IsLastPage)
{
global $Config, $Lang;
$PageUrl = $Config['WebsitePath'] . $PageUrl;
if ($PageCount != 1)
echo '<div class="float-left"><a class="previous-next" href="' . $PageUrl . ($PageCount - 1) . '">‹‹' . $Lang['Page_Previous'] . '</a></div>';
echo '<span class="currentpage">' . $PageCount . '</span>';
if (!$IsLastPage)
echo '<div class="float-right"><a href="' . $PageUrl . ($PageCount + 1) . '">' . $Lang['Page_Next'] . '››</a></div>';
}
//分页
function Pagination($PageUrl, $PageCount, $TotalPage)
{
if ($TotalPage <= 1)
return false;
global $Config, $Lang;
$PageUrl = $Config['WebsitePath'] . $PageUrl;
$PageLast = $PageCount - 1;
$PageNext = $PageCount + 1;
//echo '<span id="pagenum"><span class="currentpage">' . $PageCount . '/' . $TotalPage . '</span>';
if ($PageCount != 1)
echo '<div class="float-left"><a href="' . $PageUrl . $PageLast . '">‹‹' . $Lang['Page_Previous'] . '</a></div>';
if ($PageCount >= 6)
echo '<a href="' . $PageUrl . '1">1</a>';
if ($PageCount <= 4) {
$PageiStart = 1;
} else if ($PageCount >= ($TotalPage - 3)) {
$PageiStart = $TotalPage - 7;
} else {
$PageiStart = $PageCount - 3;
}
if ($PageCount + 3 >= $TotalPage) {
$PageiEnd = $TotalPage;
} else if ($PageCount <= 3 && $TotalPage >= 8) {
$PageiEnd = 8;
} else {
$PageiEnd = $PageCount + 3;
}
for ($Pagei = $PageiStart; $Pagei <= $PageiEnd; $Pagei++) {
if ($PageCount == $Pagei) {
echo '<span class="currentpage">' . $Pagei . '</span>';
} elseif ($Pagei > 0 && $Pagei <= $TotalPage) {
echo '<a href="' . $PageUrl . $Pagei . '">' . $Pagei . '</a>';
}
}
if ($PageCount + 3 < $TotalPage) {
echo '<a href="' . $PageUrl . $TotalPage . '">' . $TotalPage . '</a>';
}
if ($PageCount != $TotalPage) {
echo '<div class="float-right"><a href="' . $PageUrl . $PageNext . '">' . $Lang['Page_Next'] . '››</a></div>';
}
//echo ' <input type="text" onkeydown="JavaScript:if((event.keyCode==13)&&(this.value!=\'\')){window.location=\''.$PageUrl.'\'+this.value;}" onkeyup="JavaScript:if(isNaN(this.value)){this.value=\'\';}" size=4 title="请输入要跳转到第几页,然后按下回车键">';
//echo '</span>';
}
//来源检查
function ReferCheck($UserHash)
{
if (empty($_SERVER['HTTP_REFERER']) || $UserHash != FormHash() || preg_replace("/https?:\/\/([^\:\/]+).*/i", "\\1", $_SERVER['HTTP_REFERER']) !== preg_replace("/([^\:]+).*/", "\\1", $_SERVER['HTTP_HOST']))
return false;
else
return true;
}
//表单获取
function Request($Type, $Key, $DefaultValue = '')
{
switch ($Type) {
case 'Get':
return isset($_GET[$Key]) ? trim($_GET[$Key]) : $DefaultValue;
break;
case 'Post':
return isset($_POST[$Key]) ? trim($_POST[$Key]) : $DefaultValue;
break;
default:
return isset($_REQUEST[$Key]) ? trim($_REQUEST[$Key]) : $DefaultValue;
break;
}
}
//设置工作模式为API模式(返回Json格式数据)
//SetStyle('api','API');
function SetStyle($PathName, $StyleName)
{
global $IsApp, $TemplatePath, $Style;
if ($StyleName = 'API') {
$IsApp = true;
header('Access-Control-Allow-Origin: *');
header('Content-Type: application/json; charset=utf-8');
}
$TemplatePath = __DIR__ . '/styles/' . $PathName . '/template/';
$Style = $StyleName;
}
//批量设置Cookie
function SetCookies($CookiesArray, $Expires = 0)
{
global $Config;
foreach ($CookiesArray as $key => $value) {
if (!$Expires)
setcookie($Config['CookiePrefix'] . $key, $value, 0, $Config['WebsitePath'] . '/', null, false, true);
else
setcookie($Config['CookiePrefix'] . $key, $value, time() + 86400 * $Expires, $Config['WebsitePath'] . '/', null, false, true);
}
}
//大小写不敏感的array_diff
function TagsDiff($Arr1, $Arr2)
{
global $Config;
$Arr2 = array_change_key_case(array_flip($Arr2), CASE_LOWER); //flip,排重,Key有Hash索引,速度更快
foreach ($Arr1 as $Key => $Item) {
if (mb_strlen($Item, "UTF-8") > $Config["MaxTagChars"] || array_key_exists(strtolower(trim($Item)), $Arr2) || strpos("|", $Item) || !preg_match('/^[a-zA-Z0-9\x80-\xff\-_ ]{1,' . $Config['MaxTagChars'] . '}$/i', $Item)) {
unset($Arr1[$Key]);
} else {
$Arr1[$Key] = htmlspecialchars(trim($Arr1[$Key])); //XSS
}
}
return $Arr1;
}
//修改系统设置
function UpdateConfig($NewConfig)
{
global $Prefix, $DB, $Config, $MCache;
if ($NewConfig) {
foreach ($NewConfig as $Key => $Value) {
$DB->query("UPDATE `" . $Prefix . "config` SET ConfigValue=? WHERE ConfigName=?", array(
$Value,
$Key
));
$Config[$Key] = $Value;
}
if ($MCache) {
$MCache->set(MemCachePrefix . 'Config', $Config, 86400);
}
return true;
} else {
return false;
}
}
//修改用户资料
function UpdateUserInfo($NewUserInfo, $UserID = 0)
{
global $Prefix, $DB, $CurUserID, $CurUserInfo, $MCache;
if ($UserID == 0) {
$UserID = $CurUserID;
}
if ($NewUserInfo) {
$StringBindParam = '';
foreach ($NewUserInfo as $Key => $Value) {
$StringBindParam .= $Key . ' = :' . $Key . ',';
}
$StringBindParam = substr($StringBindParam, 0, -1);
$Result = $DB->query('UPDATE `' . $Prefix . 'users` SET ' . $StringBindParam . ' WHERE ID = :UserID', array_merge($NewUserInfo, array(
'UserID' => $UserID
)));
if ($MCache) {
$MCache->set(MemCachePrefix . 'UserInfo_' . $UserID, $DB->row("SELECT * FROM " . $Prefix . "users WHERE ID = :UserID", array(
"UserID" => $UserID
)), 86400);
}
return $Result;
} else {
return false;
}
}
//跨站脚本白名单过滤
function XssEscape($html)
{
preg_match_all("/\<([^\<]+)\>/is", $html, $ms);
$searchs[] = '<';
$replaces[] = '<';
$searchs[] = '>';
$replaces[] = '>';
if ($ms[1]) {
$allowtags = 'img|a|font|div|table|tbody|caption|tr|td|th|br|br\/|p|b|strong|i|u|em|span|ol|ul|li|blockquote|object|param|embed|pre|hr|h1|h2|h3|h4|h5|h6|video|source';
$ms[1] = array_unique($ms[1]);
foreach ($ms[1] as $value) {
$searchs[] = "<" . $value . ">";
$value = str_replace('&', '_uch_tmp_str_', $value);
$value = dhtmlspecialchars($value);
$value = str_replace('_uch_tmp_str_', '&', $value);
$value = str_replace(array(
'\\',
'/*'
), array(
'.',
'/.'
), $value);
$skipkeys = array(
'onabort',
'onactivate',
'onafterprint',
'onafterupdate',
'onbeforeactivate',
'onbeforecopy',
'onbeforecut',
'onbeforedeactivate',
'onbeforeeditfocus',
'onbeforepaste',
'onbeforeprint',
'onbeforeunload',
'onbeforeupdate',
'onblur',
'onbounce',
'oncellchange',
'onchange',
'onclick',
'oncontextmenu',
'oncontrolselect',
'oncopy',
'oncut',
'ondataavailable',
'ondatasetchanged',
'ondatasetcomplete',
'ondblclick',
'ondeactivate',
'ondrag',
'ondragend',
'ondragenter',
'ondragleave',
'ondragover',
'ondragstart',
'ondrop',
'onerror',
'onerrorupdate',
'onfilterchange',
'onfinish',
'onfocus',
'onfocusin',
'onfocusout',
'onhelp',
'onkeydown',
'onkeypress',
'onkeyup',
'onlayoutcomplete',
'onload',
'onlosecapture',
'onmousedown',
'onmouseenter',
'onmouseleave',
'onmousemove',
'onmouseout',
'onmouseover',
'onmouseup',
'onmousewheel',
'onmove',
'onmoveend',
'onmovestart',
'onpaste',
'onpropertychange',
'onreadystatechange',
'onreset',
'onresize',
'onresizeend',
'onresizestart',
'onrowenter',
'onrowexit',
'onrowsdelete',
'onrowsinserted',
'onscroll',
'onselect',
'onselectionchange',
'onselectstart',
'onstart',
'onstop',
'onsubmit',
'onunload',
'javascript',
'script',
'eval',
'behaviour',
'expression'
); //style, class
$skipstr = implode('|', $skipkeys);
$value = preg_replace(array(
"/($skipstr)/i"
), '.', $value);
if (!preg_match("/^[\/|\s]?($allowtags)(\s+|$)/is", $value)) {
$value = '';
}
$replaces[] = empty($value) ? '' : "<" . str_replace('"', '"', $value) . ">";
}
}
$html = str_replace($searchs, $replaces, $html);
return $html;
}
function dhtmlspecialchars($string, $flags = null)
{
if (is_array($string)) {
foreach ($string as $key => $val) {
$string[$key] = dhtmlspecialchars($val, $flags);
}
} else {
if ($flags === null) {
$string = str_replace(array(
'&',
'"',
'<',
'>'
), array(
'&',
'"',
'<',
'>'
), $string);
if (strpos($string, '&#') !== false) {
$string = preg_replace('/&((#(\d{3,5}|x[a-fA-F0-9]{4}));)/', '&\\1', $string);
}
} else {
if (version_compare(PHP_VERSION, '5.4.0') < 0) {
$string = htmlspecialchars($string, $flags);
} else {
if (strtolower(CHARSET) == 'utf-8') {
$charset = 'UTF-8';
} else {
$charset = 'ISO-8859-1';
}
$string = htmlspecialchars($string, $flags, $charset);
}
}
}
return $string;
}
$UserAgent = array_key_exists('HTTP_USER_AGENT', $_SERVER) ? strtolower($_SERVER['HTTP_USER_AGENT']) : '';
if ($UserAgent) {
$IsSpider = preg_match('/(bot|crawl|spider|slurp|sohu-search|lycos|robozilla|google)/i', $UserAgent);
$IsMobile = preg_match('/(iPod|iPhone|Android|Opera Mini|BlackBerry|webOS|UCWEB|Blazer|PSP)/i', $UserAgent);
} else {
//exit('error: 400 no agent');
$IsSpider = false;
$IsMobile = false;
}
$IsApp = $_SERVER['HTTP_HOST'] == $Config['AppDomainName'] ? true : false;
/* Set current template
* default: PC Version
* mobile: Mobile Version
* api: API
*/
if ($IsApp) {
$TemplatePath = __DIR__ . '/styles/api/template/';
$Style = 'API';
header('Access-Control-Allow-Origin: *');
header('Content-Type: application/json');
} elseif ($_SERVER['HTTP_HOST'] == $Config['MobileDomainName']) {
$TemplatePath = __DIR__ . '/styles/mobile/template/';
$Style = 'Mobile';
} else {
$TemplatePath = __DIR__ . '/styles/default/template/';
$Style = 'Default';
//header('X-XSS-Protection: 1; mode=block');
//X-XSS-Protection may cause some issues in dashboard
}
$CurView = GetCookie('View', $IsMobile ? 'mobile' : 'desktop');
if ($Config['MobileDomainName'] && $_SERVER['HTTP_HOST'] != $Config['MobileDomainName'] && $CurView == 'mobile' && !$IsApp) {
//如果是手机,则跳转到移动版,暂时关闭
header("HTTP/1.1 302 Moved Temporarily");
header("Status: 302 Moved Temporarily");
header('Location: http://' . $Config['MobileDomainName'] . $RequestURI);
exit();
}
$CurIP = CurIP();
$FormHash = FormHash();
// 限制不能打开.php的网址
if (strpos($RequestURI, '.php')) {
AlertMsg('404', '404 NOT FOUND', 404);
}
$CurrentDate = date('Y-m-d');
if ($Config['DaysDate'] != $CurrentDate) {
if (!strtotime($Config['DaysDate'])) {
$Config['DaysDate'] = $CurrentDate;
}
$DB->query('INSERT INTO `' . $Prefix . 'statistics`
(`DaysUsers`, `DaysPosts`, `DaysTopics`, `TotalUsers`, `TotalPosts`, `TotalTopics`, `DaysDate`, `DateCreated`)
SELECT
:DaysUsers, :DaysPosts, :DaysTopics, :TotalUsers, :TotalPosts, :TotalTopics, :DaysDate, :DateCreated
FROM dual
WHERE NOT EXISTS(
SELECT * FROM `' . $Prefix . 'statistics`
WHERE DaysDate = :DaysDate2
)
', array(
'DaysUsers' => $Config['DaysUsers'],
'DaysPosts' => $Config['DaysPosts'],
'DaysTopics' => $Config['DaysTopics'],
'TotalUsers' => $Config['NumUsers'],
'TotalPosts' => $Config['NumPosts'],
'TotalTopics' => $Config['NumTopics'],
'DaysDate' => $Config['DaysDate'],
'DateCreated' => $TimeStamp,
'DaysDate2' => $Config['DaysDate']
));
UpdateConfig(array(
'DaysDate' => $CurrentDate,
'DaysTopics' => 0,
'DaysPosts' => 0,
'DaysUsers' => 0,
'CacheHotTags' => json_encode($DB->query('SELECT ID,Name,Icon,TotalPosts,Followers FROM ' . $Prefix . 'tags
WHERE IsEnabled=1
ORDER BY TotalPosts DESC
LIMIT ' . $Config['TopicsPerPage']))
));
}
// Get the infomation of current user
$CurUserInfo = null; //当前用户信息,Array,以后判断是否登陆使用if($CurUserID)
$CurUserRole = 0;
$CurUserID = intval(GetCookie('UserID'));
$CurUserExpirationTime = intval(GetCookie('UserExpirationTime'));
$CurUserCode = GetCookie('UserCode');
if ($CurUserExpirationTime > $TimeStamp && $CurUserExpirationTime < ($TimeStamp + 2678400) && $CurUserID && $CurUserCode) {
$TempUserInfo = array();
if ($MCache) {
$TempUserInfo = $MCache->get(MemCachePrefix . 'UserInfo_' . $CurUserID);
}
if (!$TempUserInfo) {
$TempUserInfo = $DB->row("SELECT * FROM " . $Prefix . "users WHERE ID = :UserID", array(
"UserID" => $CurUserID
));
if ($MCache && $TempUserInfo) {
$MCache->set(MemCachePrefix . 'UserInfo_' . $CurUserID, $TempUserInfo, 86400);
}
}
//Using hash_equals() in the future
if ($TempUserInfo && HashEquals(md5($TempUserInfo['Password'] . $TempUserInfo['Salt'] . $CurUserExpirationTime . $SALT), $CurUserCode)) {
$CurUserName = $TempUserInfo['UserName'];
$CurUserRole = $TempUserInfo['UserRoleID'];
$CurUserInfo = $TempUserInfo;
} else {
SetCookies(array(
'UserID' => '',
'UserExpirationTime' => '',
'UserCode' => ''
), 1);
}
unset($TempUserInfo);
} elseif ($CurUserExpirationTime || $CurUserID || $CurUserCode) {
SetCookies(array(
'UserID' => '',
'UserExpirationTime' => '',
'UserCode' => ''
), 1);
}