php message system (2)

WBOY
Release: 2016-08-08 09:27:53
Original
1490 people have browsed it

1. After the overall framework is determined with reference to the previous (mvc framework summary), the default parameters of the request will become:

<span>//</span><span>默认请求首页:
    </span><span>//</span><span>P=front
    </span><span>//</span><span>C=fIndex
    </span><span>//</span><span>A=show</span>
Copy after login

1.1 Find the action under the controller fIndexController:

<span>//</span><span>首页展示动作</span>
        <span>public</span><span> function showAction()
        {
            </span><span>//</span><span>防止恶意调用</span>
            $<span>this</span>-><span>checkAuthority();
            </span><span>//</span><span>不需要具体模型,直接载入模版</span>
            require CUR_VIE_PATH.<span>'</span><span>index.html</span><span>'</span><span>;
        }</span>
Copy after login

2. Preventing malicious calls is placed at our Controller level. It is used by almost all models, so it is placed in the basic model.

<span>/*</span><span>
     * 防止恶意调用方法,适用于全部方法
     </span><span>*/</span>
    <span>protected</span><span> function checkAuthority()
    {
        </span><span>if</span>(!defined(<span>'</span><span>IN_NG</span><span>'</span><span>))
        {
            exit(</span><span>"</span><span>you no authority</span><span>"</span><span>);
        }
    }</span>
Copy after login

Call this method at any time

3. Reject the lower version of php. Since it is always running, put it directly into the initial file Framework.class.php

4.1 Make CSS an include file

Every page must import CSS, which is really troublesome. Let’s define a file title.inc.html.

But each page has a different CSS, so you can define a constant to prove this page.

define('SCRIPT','index');

<title>Your Title</title>
    <?<span>php
        require </span><span>'</span><span>application/view/front/title.inc.html</span><span>'</span>
    ?>
</head>
Copy after login

The title.inc.html code

<link rel=<span>"</span><span>shortcut icon</span><span>"</span> href=<span>"</span><span>favicon.ico</span><span>"</span> />
<link rel=<span>"</span><span>stylesheet</span><span>"</span> type=<span>"</span><span>text/css</span><span>"</span> href=<span>"</span><span>public/front/css/1/basic.css</span><span>"</span> />
<link rel=<span>"</span><span>stylesheet</span><span>"</span> type=<span>"</span><span>text/css</span><span>"</span> href=<span>"</span><span>public/front/css/1/<?php echo SCRIPT?>.css<span>"</span> />
Copy after login

5.2 Create registration page register.html

<span>参数请求为:
    请求注册页
        P</span>=<span>front
        C</span>=<span>fRegister
        A</span>=show
Copy after login

The code is:

<div id=<span>"</span><span>register</span><span>"</span>>
        <h2>会员注册</h2>
        <form method=<span>"</span><span>post</span><span>"</span> action=<span>"</span><span>post.php</span><span>"</span>>
            <dl>
                <dt>请认真填写一下内容</dt>
                <dd><span>
                    用 户 名:</span><input type=<span>"</span><span>text</span><span>"</span> name=<span>"</span><span>username</span><span>"</span> <span>class</span>=<span>"</span><span>text</span><span>"</span> />(*<span>必填,至少两位)
                </span></dd>
                <dd><span>
                    密 码:</span><input type=<span>"</span><span>password</span><span>"</span> name=<span>"</span><span>password</span><span>"</span> <span>class</span>=<span>"</span><span>text</span><span>"</span> />(*<span>必填,至少六位)
                </span></dd>
                <dd><span>
                    确认密码:</span><input type=<span>"</span><span>password</span><span>"</span> name=<span>"</span><span>notpassword</span><span>"</span> <span>class</span>=<span>"</span><span>text</span><span>"</span> />(*<span>必填,同上)
                </span></dd>
                <dd><span>
                    密码提示:</span><input type=<span>"</span><span>text</span><span>"</span> name=<span>"</span><span>passt</span><span>"</span> <span>class</span>=<span>"</span><span>text</span><span>"</span> />(*<span>必填,至少两位)
                </span></dd>
                <dd><span>
                    密码回答:</span><input type=<span>"</span><span>text</span><span>"</span> name=<span>"</span><span>passd</span><span>"</span> <span>class</span>=<span>"</span><span>text</span><span>"</span> />(*<span>必填,至少两位)
                </span></dd>
                <dd><span>
                    性 别:</span><input type=<span>"</span><span>radio</span><span>"</span> name=<span>"</span><span>sex</span><span>"</span> value=<span>"</span><span>男</span><span>"</span> <span>checked</span>=<span>"</span><span>checked</span><span>"</span> /><span>男
                    </span><input type=<span>"</span><span>radio</span><span>"</span> name=<span>"</span><span>sex</span><span>"</span> value=<span>"</span><span>女</span><span>"</span> /><span>女
                </span></dd>
                <dd <span>class</span>=<span>"</span><span>face</span><span>"</span>>
                    <img src=<span>"</span><span>public/front/face/m01.gif</span><span>"</span> alt=<span>"</span><span>头像选择</span><span>"</span><span>
                        onclick</span>=<span>"</span><span>javascript:window.open('face.php','face','width=400,height=400,top=0,left=0')</span><span>"</span> />
                </dd>
                <dd><span>
                    电子邮件:</span><input type=<span>"</span><span>text</span><span>"</span> name=<span>"</span><span>email</span><span>"</span> <span>class</span>=<span>"</span><span>text</span><span>"</span> />
                </dd>
                <dd><span>
                    Q Q :</span><input type=<span>"</span><span>text</span><span>"</span> name=<span>"</span><span>qq</span><span>"</span> <span>class</span>=<span>"</span><span>text</span><span>"</span> />
                </dd>
                <dd><span>
                    主页地址:</span><input type=<span>"</span><span>text</span><span>"</span> name=<span>"</span><span>url</span><span>"</span> <span>class</span>=<span>"</span><span>text</span><span>"</span> value=<span>"</span><span>http://</span><span>"</span> />
                </dd>
                <dd><span>
                    验 证 码:</span><input type=<span>"</span><span>text</span><span>"</span> name=<span>"</span><span>yzm</span><span>"</span> <span>class</span>=<span>"</span><span>text yzm</span><span>"</span> />
                </dd>
                <dd>
                    <input type=<span>"</span><span>submit</span><span>"</span> <span>class</span>=<span>"</span><span>submit</span><span>"</span> value=<span>"</span><span>注册</span><span>"</span> />
                </dd>
            </dl>
        </form>
    </div>
Copy after login

5.3 Click on the avatar to pop up the avatar selection box:

<img src=<span>"</span><span>public/front/face/m01.gif</span><span>"</span> alt=<span>"</span><span>头像选择</span><span>"</span><span>
                        onclick</span>=<span>"</span><span>javascript:window.open('face.php','face','width=400,height=400,top=0,left=0')</span><span>"</span> />
Copy after login

This page stores 64 avatar pages, which can be listed through an array loop

<?php <span>foreach</span> (range(<span>1</span>,<span>9</span>) <span>as</span> $number) {?>
<dd><img src=<span>"</span><span>face/m0<?php echo $number?>.gif<span>"</span> /></dd>
<?php }?>
Copy after login

6. Submit data
To submit data to this page, you must make a name-value pair to determine whether the data has been submitted.

?action=<span>register
也可以设计一个隐藏字段来做名值对
</span><<span>input
type</span>=<span>"</span><span>hidden</span><span>"</span><span>
name</span>=<span>"</span><span>action</span><span>"</span><span>
value</span>=<span>"</span><span>register</span><span>"</span>
/>
Copy after login

6.1 Check the verification code
The purpose of the verification code is to prevent malicious registration and some form forgery cross-site attacks.
The verification code is stored in the session, which can be used to determine whether the current form is submitted. After refreshing once, the verification code changes with
, which can also prevent multiple malicious registrations.

<span>if</span> (!($_POST[<span>'</span><span>yzm</span><span>'</span>] == $_SESSION[<span>'</span><span>code</span><span>'</span><span>])) {
_alert_back(</span><span>'</span><span>验证码有误,请重新输入!</span><span>'</span><span>);
}</span>
Copy after login

6.2. Accept data

<span>设计变量,将数据提交出来赋值给变量
$_username
</span>=<span>
$_POST[</span><span>'</span><span>username</span><span>'</span><span>];
也可以通过一个数组来存放提交过来的值
$_clean
</span>=<span>
array();
$_clean[</span><span>'</span><span>username</span><span>'</span><span>]
</span>=<span>
$_POST[</span><span>'</span><span>username</span><span>'</span>]
Copy after login

6.3 Various restrictions and filtering

<span>1.首先,必须去掉两边的空格
$_string </span>= trim($_string);
Copy after login

<span>2.其次长度限制
</span><span>if</span> (mb_strlen($_string,<span>'</span><span>utf-8</span><span>'</span>) < $_min_num || mb_strlen($_string,<span>'</span><span>utf-8</span><span>'</span>) > $_max_num)
Copy after login

<span>3.敏感字符限制
$_char_pattern </span>= <span>'</span><span>/[<>\'\"\ \ ]/</span><span>'</span><span>;
</span><span>if</span> (preg_match($_char_pattern,$_string)) {}
Copy after login

<span>4.敏感用户名限制
$_mg[</span><span>0</span>] = <span>'</span><span>22</span><span>'</span><span>;
$_mg[</span><span>1</span>] = <span>'</span><span>11</span><span>'</span><span>;
$_mg[</span><span>2</span>] = <span>'</span><span>33</span><span>'</span><span>;
</span><span>foreach</span> ($_mg <span>as</span><span> $value) {
$_mg_string .</span>= <span>'</span><span>[</span><span>'</span>.$value.<span>'</span><span>]</span><span>'</span>.<span>'</span><span>\n</span><span>'</span><span>;
}
</span><span>if</span><span> (in_array($_string,$_mg)) {
_alert_back($_mg_string.</span><span>'</span><span>以上敏感用户名不得注册!</span><span>'</span><span>);
}</span>
Copy after login

<span>5.转义输入,有效防止SQL 注入问题
</span><span>//</span><span>mysql_escape_string();
</span><span>//</span><span>addslashes()</span>
<span>return</span> mysql_real_escape_string($_string); <span>//</span><span>这个mysql_是需要连接数据库的</span>
Copy after login

The above introduces the PHP message system (2), including the relevant content. I hope it will be helpful to friends who are interested in PHP tutorials.

Related labels:
source:php.cn
Statement of this Website
The content of this article is voluntarily contributed by netizens, and the copyright belongs to the original author. This site does not assume corresponding legal responsibility. If you find any content suspected of plagiarism or infringement, please contact admin@php.cn
Popular Tutorials
More>
Latest Downloads
More>
Web Effects
Website Source Code
Website Materials
Front End Template