PHP 验证登陆类分享
更新时间:2015年03月13日 15:13:37 投稿:hebedich
本文给大家介绍的是用php实现的用户登录与验证的一段代码,没有把登录和数据库查询分开,有需要的朋友,可以参考学习下
简单的登录类,没有把登录和数据库查询分开
复制代码 代码如下:
/*
* 例子
*
* $Auth=new Auth();
* $Auth->login("123@123.com","123");
* $Auth->logout();
* echo $r->init();
*
**/
验证登陆类
复制代码 代码如下:
<?php
/*
*
* @ID: 验证登陆类
*
* @class: Auth.class.php
*
* @auther: 欣儿
*
* @time: 2015/03/12
*
* @web: http://my.oschina.net/xinger
*
**/
class Auth {
//外部设置
//cookie设置
var $cookie_time;// 7200
var $cookie_where;// '/'
var $cookie_domain;// 'yourweb.com'
var $cookie_secure;// 1和0
//数据库设置
var $select_uid;// 'uid'
var $select_table;// 'user'
var $select_usersname;// 'email'
var $select_password;// 'password'
//盐
var $salt;// "12332"
var $guest_name;// 'Guest'
//用户获取值
var $user_id;
var $username;
var $ok;
var $pre;// 'auth_'
var $depr;// '-'
//内部变量
private $pre_username;
private $pre_password;
public function __construct($config=array()){
$this->set($config);
$this->pre_username=sha1(md5($this->pre.'username'));
$this->pre_password=sha1(md5($this->pre.'password'));
}
public function set($config){
$this->cookie_time = isset($config['cookie_time'])?$config['cookie_time']: 7200;
$this->cookie_where = isset($config['cookie_where'])?$config['cookie_where']:'/';
$this->cookie_domain = isset($config['cookie_domain'])?$config['cookie_domain']:'';
$this->cookie_secure = isset($config['cookie_secure'])?$config['cookie_secure']:'';
$this->select_uid = isset($config['select_uid'])?$config['select_uid']:'uid';
$this->select_table = isset($config['select_table'])?$config['select_table']:'table';
$this->select_usersname = isset($config['select_usersname'])?$config['select_usersname']:'user_name';
$this->select_password = isset($config['select_password'])?$config['select_password']:'password';
$this->salt = isset($config['salt'])?$config['salt']:'sghsdghsdg';//
$this->guest_name = isset($config['guest_name'])?$config['guest_name']:'Guest';//
$this->pre = isset($config['auth'])?$config['auth']:'auth_';
$this->depr = isset($config['depr'])?$config['depr']:'-';
}
//
public function init(){
$this->user_id = 0;
$this->username = $this->guest_name;
$this->ok = false;
if(!$this->check_session()){
$this->check_cookie();
}
return $this->ok;
}
//验证SESSION
private function check_session(){
if(!empty($_SESSION[$this->pre_username])&&!empty($_SESSION[$this->pre_password])){
return $this->check($_SESSION[$this->pre_username],$_SESSION[$this->pre_password]);
} else {
return false;
}
}
//验证COOKIE
private function check_cookie(){
if(!empty($_COOKIE[$this->pre_username])&&!empty($_COOKIE[$this->pre_password])){
return $this->check($_COOKIE[$this->pre_username],$_COOKIE[$this->pre_password]);
} else {
return false;
}
}
//登陆
public function login($username,$password){
$sql = "select ".$this->select_uid." from ".$this->select_table." where ".$this->select_usersname."='$username' and ".$this->select_password."='$password'";
$result = mysql_query($sql);
$rows = mysql_num_rows($sql);
if($rows==1){
$this->user_id = mysql_result($result,0,0);
$this->username = $username;
$this->ok = true;
$username = $username.$this->depr.$this->get_ip();
$user_name = $this->encrypt($username,'E',$this->salt);
$_SESSION[$this->pre_username]=$user_name;
$_SESSION[$this->pre_password]=md5(md5($password,$this->salt));
setcookie($this->pre_username,$user_name,time()+$this->cookie_time,$this->cookie_where,$this->cookie_domain,$this->cookie_secure);
setcookie($this->pre_password,md5(md5($password,$this->salt)),time()+$this->cookie_time,$this->cookie_where,$this->cookie_domain,$this->cookie_secure);
return true;
}
return false;
}
//验证
private function check($username,$password){
$user_name = $this->encrypt($username,'D',$this->salt);
$name = explode($this->depr, $user_name);
$username = $name[0];
$ip = isset($name[1]) ? $name[1] : NULL;
if($ip !== $this->get_ip()) return false;
static $vars = array();
if(!empty($vars)&&is_array($vars)&&isset($vars[$username.$password])){
$this->user_id = $vars['user_id'];
$this->username = $vars['username'];
$this->ok = $vars['ok'];
return true;
}
$sql = "select ".$this->select_uid.",".$this->select_password." from ".$this->select_table." where ".$this->select_usersname."='$username'";
$query = mysql_query($sql);
$result = mysql_fetch_array($query);
$row = mysql_num_rows($sql);
if($row == 1){
$db_password=$result[$this->select_password];
if(md5(md5($db_password,$this->salt)) == $password){
$this->user_id = $vars['user_id'] = $result[$this->select_uid];
$this->username = $vars['username'] = $username;
$this->ok = $vars['ok'] = true;
$vars[$username.$password] = md5($username.$password);
return true;
}
}
return false;
}
//退出
public function logout(){
$this->user_id = 0;
$this->username = $this->guest_name;
$this->ok = false;
$_SESSION[$this->pre_username]="";
$_SESSION[$this->pre_password]="";
setcookie($this->pre_username,"",time()-$this->cookie_time,$this->cookie_where,$this->cookie_domain,$this->cookie_secure);
setcookie($this->pre_password,"",time()-$this->cookie_time,$this->cookie_where,$this->cookie_domain,$this->cookie_secure);
}
//加密
public function encrypt($string,$operation,$key='') {
$key=md5($key);
$key_length=strlen($key);
$string=$operation=='D'?base64_decode($string):substr(md5($string.$key),0,8).$string;
$string_length=strlen($string);
$rndkey=$box=array();
$result='';
for($i=0;$i<=255;$i++)
{
$rndkey[$i]=ord($key[$i%$key_length]);
$box[$i]=$i;
}
for($j=$i=0;$i<256;$i++)
{
$j=($j+$box[$i]+$rndkey[$i])%256;
$tmp=$box[$i];
$box[$i]=$box[$j];
$box[$j]=$tmp;
}
for($a=$j=$i=0;$i<$string_length;$i++)
{
$a=($a+1)%256;
$j=($j+$box[$a])%256;
$tmp=$box[$a];
$box[$a]=$box[$j];
$box[$j]=$tmp;
$result.=chr(ord($string[$i])^($box[($box[$a]+$box[$j])%256]));
}
if($operation=='D')
{
if(substr($result,0,8)==substr(md5(substr($result,8).$key),0,8))
{
return substr($result,8);
}
else
{
return'';
}
}
else
{
return str_replace('=','',base64_encode($result));
}
}
public function get_ip() {
return $_SERVER['REMOTE_ADDR'];
}
}
?>
以上就是本文的全部内容了,希望大家能够喜欢。
相关文章
获取远程网页内容的php代码,做小偷采集程序的程序经常用得到,现在用curl的比较多。2011-06-06
相比于ThinkPHP3.0版本对数组方式的查询条件会进行安全过滤而不支持字符串条件的安全过滤的情况,ThinkPHP3.1版本则增加了对条件字符串进行预处理的支持,让ORM的安全性更加得以保证。这篇文章主要介绍了ThinkPHP3.1的查询条件预处理,需要的朋友可以参考下2014-06-06
这篇文章主要介绍了Smarty中调用FCKeditor的方法,对比常见的错误方法讲述了Smarty中调用FCKeditor的实现过程,是非常实用的技巧,需要的朋友可以参考下2014-10-10
这篇文章主要介绍了如何在PHP中生成随机数,文中代码非常详细,对大家的学习有很大帮助,感兴趣的朋友可以参考下2020-06-06
本篇文章主要介绍了详解php用curl调用接口方法,get和post两种方式,小编觉得挺不错的,现在分享给大家,也给大家做个参考。一起跟随小编过来看看吧2017-01-01
这篇文章主要介绍了php读取纯真ip数据库显示详细信息的使用示例,大家参考使用吧2014-01-01
PHP用swoole+websocket和redis实现web一对一聊天
这篇文章主要介绍了PHP用swoole+websocket和redis实现web一对一聊天,文中通过示例代码介绍的非常详细,对大家的学习或者工作具有一定的参考学习价值,需要的朋友们下面随着小编来一起学习学习吧2019-11-11
这篇文章主要介绍了php Calender(日历)代码,有需要的朋友可以参考一下2014-01-01
这篇文章主要介绍了ThinkPHP的R方法,需要的朋友可以参考下2014-06-06
这篇文章主要介绍了php中字符串和整数比较的操作方法,本文给大家介绍的非常详细,具有一定的参考借鉴价值,需要的朋友可以参考下2019-06-06
最新评论