当前位置: 首页 > 图文教程 > 网络编程 > PHP > 基于mysql的论坛(7)

PHP
详细讲解PHP编程中分页显示的制作
PHP开发技巧:PHP关于图像颜色的操作
PHP程序安全基础:手工php注入总结
PHP动态网页程序中常用的表单验证类
用PHP程序实现支持页面后退的两种方法
PHP代码:基本数据结构和php内置函数
php实现图片远程采集(PHP采集)
巧用PHP记录搜索引擎蜘蛛访问网站的足迹
PHP的常用的几大模板引擎
PHP采集图片实例(PHP采集)
用PHP读取RSS内容,实现与BLOG的同步
php生成静态页面的方法(简单,实用)
PHP+CSS实现打印简单数据报表功能
PHP制作简单的内容采集器实例教程
技巧:使用PHP中的字符串函数
PHP文件或目录权限检查函数
PHP实例——PHP创建动态图像
PHP自定义的加密和解密程序
轻松实现php代码防注入,保护代码安全!
PHP与MySQL中的SQL注入式漏洞

PHP 中的 基于mysql的论坛(7)


出处:互联网   整理: 软晨网(RuanChen.com)   发布: 2009-09-13   浏览: 77 ::
收藏到网摘: n/a

# sendmsg.php
<?php
require "func.php";
if ($b1) {
if (is_user_exits($fromname) and check_user_password($fromname,$password)) {
sendmsg();
echo "成功!<br><form method="POST"><input type="button" value=" 关闭窗口 " name="B1" onclick="window.close()"></form>";
}
else {
$founderr=1;
echo "用户名/密码错误!";
}
}
else {
?>
<html>
<head>
<title>发送留言</title>
<meta http-equiv="Content-Type" content="text/html; charset=gb2312">
<link rel="stylesheet" type="text/css" href="css/index.css">
</head>
<body bgcolor="#eeeeee">
<form method="post" action="<?php echo $php_self;?>">
<table width="98%" border="1" cellspacing="0" cellpadding="0" bordercolorlight="#000000" bordercolordark="#FFFFFF">
<tr align="center">
<td colspan="2">给 <a href="userinfo.php?name=<?php echo $name;?>" target="_blank"><?php echo $name;?></a>
发送留言</td>
</tr>
<tr>
<td align="right" width="27%">您的用户名:</td>
<td width="73%">
<input type="text" name="fromname" size="17" maxlength="16" value="<?php echo $jl_forum[name];?>">
* </td>
</tr>
<tr>
<td align="right" width="27%">您的密码:</td>
<td width="73%">
<input type="password" name="password" size="17" maxlength="16">
* </td>
</tr>
<tr>
<td align="right" width="27%" valign="top">内容:</td>
<td width="73%">
<textarea name="cont" wrap="VIRTUAL" cols="40" rows="3"></textarea>
<input type="hidden" name="toname" value="<?php echo $name;?>">
<br>
<input type="submit" name="b1" value="发送">
<input type="button" name="Submit" value="取消" onclick="window.close()">
</td>
</tr>
</table>
</form>
</body>
</html>
<?php
}
?>
###############
# setup.php
# 此为初始化程序,只在上传后第一次执行,之后必须delete,以免出错
#################
<?php
require "func.php";
echo "<h1>初始化数据库</h1><br><br>";
echo "建立数据库连接...ok!<br>";
echo "建立表 boardinfo...";
$sql="CREATE TABLE boardinfo (name varchar(50) NOT NULL, chinesename varchar(50) NOT NULL)";
mysql_query($sql) or die("错误");
echo "ok!<br>";
echo "建立表 user...";
$sql="CREATE TABLE user (id int(11) NOT NULL auto_increment, name varchar(50) NOT NULL, sex varchar(6), realname varchar(20), password varchar(16) NOT NULL, address varchar(40), oicq varchar(10), homepage varchar(50), score int(11), phone varchar(20), email varchar(50), regtime varchar(20), qm text, slaveboard varchar(50), PRIMARY KEY (id))";
mysql_query($sql) or die("错误");
echo "ok!<br>";
echo "建立表 message... ";
$sql="create table message (id int(11) NOT NULL auto_increment, name varchar(50), fromname varchar(50), writetime varchar(20), cont longtext, PRIMARY KEY(id))";
mysql_query($sql) or die("错误");
echo "ok!<br>";
echo "初始化版面 “个人电脑”...";
create_board_table('computer','个人电脑');
echo "ok!<br><br>";
echo "<h2>设置完毕!</h2>";
echo "<br><br>冷情疯子(电脑疯子)";
?>
## userinfo.php
<html>
<head>
<title>用户信息</title>
<meta http-equiv="Content-Type" content="text/html; charset=gb2312">
<link rel="stylesheet" type="text/css" href="css/index.css">
</head>
<body bgcolor="#FFFFFF" background="image/bg.gif">
<?php include "header.php";
if (!isset($name)) {
?>
<form method="post" action="<?php echo $php_self;?>">
<table width="90%" border="1" cellspacing="0" cellpadding="1" align="center" bordercolorlight="#CCCCCC" bordercolordark="#FFFFFF">
<tr align="center">
<td>请输入欲察看的用户名</td>
</tr>
<tr align="center">
<td>
<input type="text" name="name" size="18" maxlength="16">
</td>
</tr>
<tr align="center">
<td>
<input type="submit" name="b1" value="察看资料">
</td>
</tr>
</table>
</form>
<?php
}
else {
require "func.php";
if (is_user_exits($name)) {
$sql="select * from user where name='$name'";
$sql_result=mysql_query($sql);
$row=mysql_fetch_array($sql_result);
?>
<br>
<table width="90%" border="1" cellspacing="0" cellpadding="1" align="center" bordercolorlight="#CCCCCC" bordercolordark="#FFFFFF">
<tr>
<td><b>详细资料</b></td>
</tr>
<tr>
<td>用户名:<?php echo $row[name];?></td>
</tr>
<tr>
<td>真实姓名:<?php echo $row[realname];?></td>
</tr>
<tr>
<td>性别:<?php echo $row[sex];?></td>
</tr>
<tr>
<td>地址:<?php echo $row[address];?></td>
</tr>
<tr>
<td>电话:<?php echo $row[phone];?></td>
</tr>
<tr>
<td>OICQ:<?php echo $row[oicq];?></td>
</tr>
<tr>
<td>Email:<a href="mailto:<?php echo $row[email];?>"><?php echo $row[email];?></a></td>
</tr>
<tr>
<td>主页:<a href="<?php echo $row[homepage];?>" target="_blank"><?php echo $row[homepage];?></a></td>
</tr>
<tr>
<td>注册时间:<?php echo $row[regtime];?></td>
</tr>
<tr>
<td>目前积分:<?php echo $row[score];?></td>
</tr>
</table>
<br>
<?php
}
else {
echo "请输入正确合法存在的用户名称";
}
}
include "footer.php";?>
</body>
</html>
# viewmsg.php
<?php
require "func.php";
if (is_user_exits($jl_forum[name]) and check_user_password($jl_forum[name],$jl_forum[password])) {
if (isset($job)) {
if (is_this_user($id)) {
delmsg($id);
}
}
$name=$jl_forum[name];
$sql="select * from message where name='$name'";
$sql_result=mysql_query($sql);
$sum=mysql_num_rows($sql_result);
?>
<html>
<head>
<title>察看留言</title>
<meta http-equiv="Content-Type" content="text/html; charset=gb2312">
<link rel="stylesheet" type="text/css" href="css/index.css">
<script language="javascript">
function sendmsg(name){ window.open("sendmsg.php?name="+name,"","height=200,width=500,resizable=yes,scrollbars=yes,status=no,toolbar=no,menubar=no,location=no");
}
</script>
</head>
<body bgcolor="#FFFFFF" background="image/bg.gif">
<p>您目前共有 <b><?php echo $sum;?></b> 条留言</p>
<table width="98%" border="1" cellspacing="0" cellpadding="0" bordercolorlight="#CCCCCC" bordercolordark="#FFFFFF">
<?php
while ($sql_row=mysql_fetch_array($sql_result)) {
?>
<tr bgcolor="#eeeeee">
<td><a href="javascript:sendmsg('<?php echo $sql_row[fromname];?>')"><?php echo $sql_row[fromname];?></a>
于 <?php echo $sql_row[writetime];?> <a href="<?php echo "$php_self?job=del&id=$sql_row[id]";?>">删除</a></td>
</tr>
<tr>
<td><?php echo $sql_row[cont];?></td>
</tr>
<tr>
<td> </td>
</tr>
<?php
}
?>
</table>
<p> </p>
</body>
</html>
<?php
}
else {
show_error(4);
}
?>