www.gusucode.com > mcms手机网站系统 v3.1源码程序 > mcms_v3.1.0/upload/app/user/setpwd.php
<?php /* * MCMS Copyright (c) 2012-2013 ZhangYiYeTai Inc. * * http://www.mcms.cc * * The program developed by loyjers core architecture, individual all rights reserved, * if you have any questions please contact loyjers@126.com */ require_once(dirname(__FILE__) . "/../../init.php"); //公用引导启动文件 $time_start = H :: getmicrotime(); //开始时间 // 动作处理 call_mfunc(); // 模板处理 require_once(assign_tpl(basename(__FILE__), 'user')); // ******************************************************* 函数方法 ******************************************************* function m__list(){ } /* *邮箱修改密码 * */ function m__setpwd(){ global $dbm,$U; if(1==1) { $_POST['uniqid_code'] = isset($_POST['uniqid_code']) ? H::sqlxss(trim($_POST['uniqid_code'])) : ''; $_POST['login_email'] = isset($_POST['login_name']) ? H::sqlxss($_POST['login_name']) : ''; $fields['login_pass'] = isset($_POST['login_pass'])?$_POST['login_pass']:''; $_POST['login_pass_repeat'] = isset($_POST['login_pass_repeat'])?$_POST['login_pass_repeat'] : ''; if($_POST['uniqid_code']!=''){ $_POST['uniqid_code'] = trim($_POST['uniqid_code']); $sql = "select * from ".TB_PRE."verify where code='{$_POST['uniqid_code']}' and create_user='{$_POST['login_email']}'"; $result = $dbm->query($sql); if(count($result['list'])==0) die('{"code":1,"msg":"邮箱或验证字符串不正确"}'); $rs = $result['list'][0]; //邮件超过3个小时没验证提示验证码过期 if(($rs['update_time']+10800)<time()) { die('{"code":1,"msg":"邮箱验证已过期,请重新验证","id":"code_salt"}'); } $user = $U->get($_POST['login_email'],'*',4); if(!$user) die('{"code":1,"msg":"系统没有该箱邮用户"}'); $verify_pass = verify :: verify_upass($_POST['login_pass']); if($verify_pass != '') die('{"code":1,"msg":"'.$verify_pass.'","id":"login_pass"}'); if($fields['login_pass']!=$_POST['login_pass_repeat']) die('{"code":1,"msg":"两次密码不一致"}'); $fields['login_salt'] = H::security_code(); $fields['login_pass'] = H::password_encrypt_salt($fields['login_pass'], $fields['login_salt']); $where = " uid='{$user['uid']}'"; $rs = $dbm->single_update(TB_PRE."user",$fields,$where); if($rs['error']=='') { die('{"code":0,"msg":"密码修改完成,请妥善保管好"}'); } } } die('{"code":1,"msg":"非法操作"}'); } /** * 手机短信找回密码第二步: *【1】点获取短信验证码 *【2】发短信验证码到对方手机里 * */ function m__sms(){ global $dbm,$U; $_POST=H::sqlxss($_POST); if(1==1) { $_POST['login_phone'] = isset($_POST['login_phone'])?trim($_POST['login_phone']):''; $verify=verify::verify_mobile($_POST['login_phone']); if($verify!='') die('{"code":1,"msg":"'.$verify.'","id":"login_phone"}'); if(!$U->get($_POST['login_phone'],'login_mobile',3)) die('{"code":1,"msg":"手机号不已存在","id":"login_phone"}'); $code_salt = rand(1000,9999); $rs = $dbm->query("select * from ".TB_PRE."verify where create_user='{$_POST['login_phone']}'"); if(count($rs['list'])>0) { $dbm->single_update(TB_PRE."verify",array('update_time'=>time(),'code'=>$code_salt),"create_user='{$_POST['login_phone']}'"); } else { $dbm->single_insert(TB_PRE."verify",array('code'=>$code_salt,'create_user'=>$_POST['login_phone'],'update_time'=>time())); } } $msg ="您的验证码是".$code_salt.',请在60秒内正确输入'; send_sms($_POST['login_phone'],$msg); die('{"code":0,"msg":"发送成功,请查看手机短信"}'); } ?>