www.gusucode.com > mcms手机网站系统 v3.1源码程序 > mcms_v3.1.0/upload/app/user/setpwd.php
<?php
/*
* MCMS Copyright (c) 2012-2013 ZhangYiYeTai Inc.
*
* http://www.mcms.cc
*
* The program developed by loyjers core architecture, individual all rights reserved,
* if you have any questions please contact loyjers@126.com
*/
require_once(dirname(__FILE__) . "/../../init.php"); //公用引导启动文件
$time_start = H :: getmicrotime(); //开始时间
// 动作处理
call_mfunc();
// 模板处理
require_once(assign_tpl(basename(__FILE__), 'user'));
// ******************************************************* 函数方法 *******************************************************
function m__list(){
}
/*
*邮箱修改密码
*
*/
function m__setpwd(){
global $dbm,$U;
if(1==1) {
$_POST['uniqid_code'] = isset($_POST['uniqid_code']) ? H::sqlxss(trim($_POST['uniqid_code'])) : '';
$_POST['login_email'] = isset($_POST['login_name']) ? H::sqlxss($_POST['login_name']) : '';
$fields['login_pass'] = isset($_POST['login_pass'])?$_POST['login_pass']:'';
$_POST['login_pass_repeat'] = isset($_POST['login_pass_repeat'])?$_POST['login_pass_repeat'] : '';
if($_POST['uniqid_code']!=''){
$_POST['uniqid_code'] = trim($_POST['uniqid_code']);
$sql = "select * from ".TB_PRE."verify where code='{$_POST['uniqid_code']}' and create_user='{$_POST['login_email']}'";
$result = $dbm->query($sql);
if(count($result['list'])==0) die('{"code":1,"msg":"邮箱或验证字符串不正确"}');
$rs = $result['list'][0];
//邮件超过3个小时没验证提示验证码过期
if(($rs['update_time']+10800)<time()) {
die('{"code":1,"msg":"邮箱验证已过期,请重新验证","id":"code_salt"}');
}
$user = $U->get($_POST['login_email'],'*',4);
if(!$user) die('{"code":1,"msg":"系统没有该箱邮用户"}');
$verify_pass = verify :: verify_upass($_POST['login_pass']);
if($verify_pass != '') die('{"code":1,"msg":"'.$verify_pass.'","id":"login_pass"}');
if($fields['login_pass']!=$_POST['login_pass_repeat']) die('{"code":1,"msg":"两次密码不一致"}');
$fields['login_salt'] = H::security_code();
$fields['login_pass'] = H::password_encrypt_salt($fields['login_pass'], $fields['login_salt']);
$where = " uid='{$user['uid']}'";
$rs = $dbm->single_update(TB_PRE."user",$fields,$where);
if($rs['error']=='') {
die('{"code":0,"msg":"密码修改完成,请妥善保管好"}');
}
}
}
die('{"code":1,"msg":"非法操作"}');
}
/**
* 手机短信找回密码第二步:
*【1】点获取短信验证码
*【2】发短信验证码到对方手机里
*
*/
function m__sms(){
global $dbm,$U;
$_POST=H::sqlxss($_POST);
if(1==1) {
$_POST['login_phone'] = isset($_POST['login_phone'])?trim($_POST['login_phone']):'';
$verify=verify::verify_mobile($_POST['login_phone']);
if($verify!='') die('{"code":1,"msg":"'.$verify.'","id":"login_phone"}');
if(!$U->get($_POST['login_phone'],'login_mobile',3)) die('{"code":1,"msg":"手机号不已存在","id":"login_phone"}');
$code_salt = rand(1000,9999);
$rs = $dbm->query("select * from ".TB_PRE."verify where create_user='{$_POST['login_phone']}'");
if(count($rs['list'])>0) {
$dbm->single_update(TB_PRE."verify",array('update_time'=>time(),'code'=>$code_salt),"create_user='{$_POST['login_phone']}'");
} else {
$dbm->single_insert(TB_PRE."verify",array('code'=>$code_salt,'create_user'=>$_POST['login_phone'],'update_time'=>time()));
}
}
$msg ="您的验证码是".$code_salt.',请在60秒内正确输入';
send_sms($_POST['login_phone'],$msg);
die('{"code":0,"msg":"发送成功,请查看手机短信"}');
}
?>