檢查提交後的數據,主要是檢查驗證碼、安全提問和來路是不是正常。
string $var 存放在全局變量中的下標
int $allowget 是不是允許get提交
int $seccodecheck 檢查驗證碼
int $secqaacheck 檢查安全問答
return返回 boolean
源碼:ps.綠色為註釋
function submitcheck($var, $allowget = 0, $seccodecheck = 0, $secqaacheck = 0) {
if(!getgpc($var)) {
return FALSE;
} else {
global $_G;
if($allowget || ($_SERVER['REQUEST_METHOD'] == 'POST' && !empty($_G['gp_formhash']) && $_G['gp_formhash'] == formhash() && empty($_SERVER['HTTP_X_FLASH_VERSION']) && (empty($_SERVER['HTTP_REFERER']) ||
preg_replace("/https?:\/\/([^\:\/]+).*/i", "\\1", $_SERVER['HTTP_REFERER']) == preg_replace("/([^\:]+).*/", "\\1", $_SERVER['HTTP_HOST'])))) {
if(checkperm('seccode')) {//return (empty($_G['group'][$perm])?'':$_G['group'][$perm]);會員組權限
//驗證問答
if($secqaacheck && !check_secqaa($_G['gp_secanswer'], $_G['gp_sechash'])) {
showmessage('submit_secqaa_invalid');
}
//驗證驗證碼
if($seccodecheck && !check_seccode($_G['gp_seccodeverify'], $_G['gp_sechash'])) {
showmessage('submit_seccode_invalid');//驗證碼填寫錯誤,請返回修改。
}
}
return TRUE;
} else {
showmessage('submit_invalid');
}
}
}
| 歡迎光臨 TShopping (http://www.tshopping.com.tw/) | Powered by Discuz! X3.2 |