当前位置: 首页 > 图文教程 > 网络编程 > PHP > 基于mysql的论坛(7)

PHP
php中如何避免sql注入攻击
半个汉字变问号,求解决办法
如何利用php来截取一段中文字符串而不出现乱码
php中文汉字替换与模式匹配的问题
如何生成静态html
提供一个最简单的购物车
如何用php作linux自动执行脚本?
phpsocket技术研究
PHP FRAMEWORK
如何将php作为shell脚本语言使用
用php实现pop3邮件的收取
浅析php中实现多线程
新身份证校验位算法
页面压缩gzip的运用
使cookie实现跨域名
PHP 验证码登陆校验
php中的面向对象和面向过程
php套接字编程
基于php的聊天室编程思想
实例学习php之投票程序

PHP 中的 基于mysql的论坛(7)


出处:互联网   整理: 软晨网(RuanChen.com)   发布: 2009-09-13   浏览: 123 ::
收藏到网摘: n/a

# sendmsg.php
<?php
require "func.php";
if ($b1) {
if (is_user_exits($fromname) and check_user_password($fromname,$password)) {
sendmsg();
echo "成功!<br><form method="POST"><input type="button" value=" 关闭窗口 " name="B1" onclick="window.close()"></form>";
}
else {
$founderr=1;
echo "用户名/密码错误!";
}
}
else {
?>
<html>
<head>
<title>发送留言</title>
<meta http-equiv="Content-Type" content="text/html; charset=gb2312">
<link rel="stylesheet" type="text/css" href="css/index.css">
</head>
<body bgcolor="#eeeeee">
<form method="post" action="<?php echo $php_self;?>">
<table width="98%" border="1" cellspacing="0" cellpadding="0" bordercolorlight="#000000" bordercolordark="#FFFFFF">
<tr align="center">
<td colspan="2">给 <a href="userinfo.php?name=<?php echo $name;?>" target="_blank"><?php echo $name;?></a>
发送留言</td>
</tr>
<tr>
<td align="right" width="27%">您的用户名:</td>
<td width="73%">
<input type="text" name="fromname" size="17" maxlength="16" value="<?php echo $jl_forum[name];?>">
* </td>
</tr>
<tr>
<td align="right" width="27%">您的密码:</td>
<td width="73%">
<input type="password" name="password" size="17" maxlength="16">
* </td>
</tr>
<tr>
<td align="right" width="27%" valign="top">内容:</td>
<td width="73%">
<textarea name="cont" wrap="VIRTUAL" cols="40" rows="3"></textarea>
<input type="hidden" name="toname" value="<?php echo $name;?>">
<br>
<input type="submit" name="b1" value="发送">
<input type="button" name="Submit" value="取消" onclick="window.close()">
</td>
</tr>
</table>
</form>
</body>
</html>
<?php
}
?>
###############
# setup.php
# 此为初始化程序,只在上传后第一次执行,之后必须delete,以免出错
#################
<?php
require "func.php";
echo "<h1>初始化数据库</h1><br><br>";
echo "建立数据库连接...ok!<br>";
echo "建立表 boardinfo...";
$sql="CREATE TABLE boardinfo (name varchar(50) NOT NULL, chinesename varchar(50) NOT NULL)";
mysql_query($sql) or die("错误");
echo "ok!<br>";
echo "建立表 user...";
$sql="CREATE TABLE user (id int(11) NOT NULL auto_increment, name varchar(50) NOT NULL, sex varchar(6), realname varchar(20), password varchar(16) NOT NULL, address varchar(40), oicq varchar(10), homepage varchar(50), score int(11), phone varchar(20), email varchar(50), regtime varchar(20), qm text, slaveboard varchar(50), PRIMARY KEY (id))";
mysql_query($sql) or die("错误");
echo "ok!<br>";
echo "建立表 message... ";
$sql="create table message (id int(11) NOT NULL auto_increment, name varchar(50), fromname varchar(50), writetime varchar(20), cont longtext, PRIMARY KEY(id))";
mysql_query($sql) or die("错误");
echo "ok!<br>";
echo "初始化版面 “个人电脑”...";
create_board_table('computer','个人电脑');
echo "ok!<br><br>";
echo "<h2>设置完毕!</h2>";
echo "<br><br>冷情疯子(电脑疯子)";
?>
## userinfo.php
<html>
<head>
<title>用户信息</title>
<meta http-equiv="Content-Type" content="text/html; charset=gb2312">
<link rel="stylesheet" type="text/css" href="css/index.css">
</head>
<body bgcolor="#FFFFFF" background="image/bg.gif">
<?php include "header.php";
if (!isset($name)) {
?>
<form method="post" action="<?php echo $php_self;?>">
<table width="90%" border="1" cellspacing="0" cellpadding="1" align="center" bordercolorlight="#CCCCCC" bordercolordark="#FFFFFF">
<tr align="center">
<td>请输入欲察看的用户名</td>
</tr>
<tr align="center">
<td>
<input type="text" name="name" size="18" maxlength="16">
</td>
</tr>
<tr align="center">
<td>
<input type="submit" name="b1" value="察看资料">
</td>
</tr>
</table>
</form>
<?php
}
else {
require "func.php";
if (is_user_exits($name)) {
$sql="select * from user where name='$name'";
$sql_result=mysql_query($sql);
$row=mysql_fetch_array($sql_result);
?>
<br>
<table width="90%" border="1" cellspacing="0" cellpadding="1" align="center" bordercolorlight="#CCCCCC" bordercolordark="#FFFFFF">
<tr>
<td><b>详细资料</b></td>
</tr>
<tr>
<td>用户名:<?php echo $row[name];?></td>
</tr>
<tr>
<td>真实姓名:<?php echo $row[realname];?></td>
</tr>
<tr>
<td>性别:<?php echo $row[sex];?></td>
</tr>
<tr>
<td>地址:<?php echo $row[address];?></td>
</tr>
<tr>
<td>电话:<?php echo $row[phone];?></td>
</tr>
<tr>
<td>OICQ:<?php echo $row[oicq];?></td>
</tr>
<tr>
<td>Email:<a href="mailto:<?php echo $row[email];?>"><?php echo $row[email];?></a></td>
</tr>
<tr>
<td>主页:<a href="<?php echo $row[homepage];?>" target="_blank"><?php echo $row[homepage];?></a></td>
</tr>
<tr>
<td>注册时间:<?php echo $row[regtime];?></td>
</tr>
<tr>
<td>目前积分:<?php echo $row[score];?></td>
</tr>
</table>
<br>
<?php
}
else {
echo "请输入正确合法存在的用户名称";
}
}
include "footer.php";?>
</body>
</html>
# viewmsg.php
<?php
require "func.php";
if (is_user_exits($jl_forum[name]) and check_user_password($jl_forum[name],$jl_forum[password])) {
if (isset($job)) {
if (is_this_user($id)) {
delmsg($id);
}
}
$name=$jl_forum[name];
$sql="select * from message where name='$name'";
$sql_result=mysql_query($sql);
$sum=mysql_num_rows($sql_result);
?>
<html>
<head>
<title>察看留言</title>
<meta http-equiv="Content-Type" content="text/html; charset=gb2312">
<link rel="stylesheet" type="text/css" href="css/index.css">
<script language="javascript">
function sendmsg(name){ window.open("sendmsg.php?name="+name,"","height=200,width=500,resizable=yes,scrollbars=yes,status=no,toolbar=no,menubar=no,location=no");
}
</script>
</head>
<body bgcolor="#FFFFFF" background="image/bg.gif">
<p>您目前共有 <b><?php echo $sum;?></b> 条留言</p>
<table width="98%" border="1" cellspacing="0" cellpadding="0" bordercolorlight="#CCCCCC" bordercolordark="#FFFFFF">
<?php
while ($sql_row=mysql_fetch_array($sql_result)) {
?>
<tr bgcolor="#eeeeee">
<td><a href="javascript:sendmsg('<?php echo $sql_row[fromname];?>')"><?php echo $sql_row[fromname];?></a>
于 <?php echo $sql_row[writetime];?> <a href="<?php echo "$php_self?job=del&id=$sql_row[id]";?>">删除</a></td>
</tr>
<tr>
<td><?php echo $sql_row[cont];?></td>
</tr>
<tr>
<td> </td>
</tr>
<?php
}
?>
</table>
<p> </p>
</body>
</html>
<?php
}
else {
show_error(4);
}
?>