您現(xiàn)在的位置： 365建站網(wǎng) > 365文章 > [原創(chuàng)]uchome登陸機(jī)制分析

[原創(chuàng)]uchome登陸機(jī)制分析

文章來源：365jz.com 點(diǎn)擊數(shù)：1081 更新時(shí)間：2009-09-21 11:06 參與評(píng)論

嘿嘿,我的獨(dú)立博客對應(yīng)的地址:http://imzc.net/show-102-1.html

uchome_ROOT/為uchome的根目錄
第一步:
定位到uchome_ROOT/source/do_login.php,找到如下函數(shù):

PHP代碼

//同步獲取用戶源
if(!$passport = getpassport($username, $password)) {
showmessage('login_failure_please_re_login', 'do.php?ac='.$_SCONFIG['login_action']);
}

上示函數(shù)便是登陸的第一步處理函數(shù),再次定位:

uchome_ROOT/source/function_common.php,找到如下函數(shù):

PHP代碼

至此,我們可以發(fā)現(xiàn)現(xiàn)在開始和uc_client相關(guān)函數(shù)關(guān)聯(lián)了.我們進(jìn)入uc_client文件夾,開始分析,定位至:uchome_ROOT/uc_client/client.php

PHP代碼

/**
* 用戶登陸檢查
*
* @param string $username 用戶名/uid
* @param string $password 密碼
* @param int $isuid 是否為uid
* @param int $checkques 是否使用檢查安全問答
* @param int $questionid 安全提問
* @param string $answer 安全提問答案
* @return array (uid/status, username, password, email)
數(shù)組第一項(xiàng)
1 : 成功
-1 : 用戶不存在,或者被刪除
-2 : 密碼錯(cuò)
*/
function uc_user_login($username, $password, $isuid = 0, $checkques = 0, $questionid = '', $answer = '') {
$isuid = intval($isuid);
//define('UC_API_FUNC', UC_CONNECT == 'mysql' ? 'uc_api_mysql' : 'uc_api_post');
$return = call_user_func(UC_API_FUNC, 'user', 'login', array('username'=>$username, 'password'=>$password, 'isuid'=>$isuid, 'checkques'=>$checkques, 'questionid'=>$questionid, 'answer'=>$answer));
return UC_CONNECT == 'mysql' ? $return : uc_unserialize($return);
}

因?yàn)槭莔ysql,故,UC_API_FUNC的值為uc_api_mysql,通過call_user_func()函數(shù),將參數(shù)傳給uc_api_mysql(),下面進(jìn)入最關(guān)鍵的函數(shù)了:

uchome_ROOT/uc_client/client.php => uc_api_mysql()

PHP代碼

/**
* MYSQL 方式取指定的模塊和動(dòng)作的數(shù)據(jù)
*
* @param string $model 請求的模塊
* @param string $action 請求的動(dòng)作
* @param string $args 參數(shù)（會(huì)加密的方式傳送）
* @return mix
*/
function uc_api_mysql($model, $action, $args=array()) {
//$model = 'user',$action= 'login',
//$args = Array ( [username] => test2 [password] => test [isuid] => 0 [checkques] => 0 [questionid] => [answer] => )
global $uc_controls;
if(empty($uc_controls[$model])) {
//UC_ROOT uc_client/
include_once UC_ROOT.'./lib/db.class.php';
include_once UC_ROOT.'./model/base.php';
include_once UC_ROOT."./control/$model.php";
eval("\$uc_controls['$model'] = new {$model}control();");
//uc_client/control/user.php,usercontrol()類(繼承至base基類)實(shí)例化
}
if($action{0} != '_') {
$args = uc_addslashes($args, 1, TRUE);
$action = 'on'.$action;//onlogin,usercontrol()中的方法,可以考慮改造此函數(shù)以實(shí)現(xiàn)預(yù)定功能
$uc_controls[$model]->input = $args;//base.php,base基類的方法
//return Array ( [0] => 3 [1] => test2 [2] => test [3] => test@12.com [4] => 0 )
return $uc_controls[$model]->$action($args);//返回預(yù)定數(shù)組,供調(diào)用函數(shù)分析
} else {
return '';
}
}

我們看看usercontrol類的onlogin()方法:

uchome_ROOT/uc_client/control/user.php

PHP代碼

//note public 外部接口登陸接口
function onlogin() {
$this->init_input();
$isuid = $this->input('isuid');
$username = $this->input('username');
$password = $this->input('password');
$checkques = $this->input('checkques');
$questionid = $this->input('questionid');
$answer = $this->input('answer');
if($isuid) {
$user = $_ENV['user']->get_user_by_uid($username);
} else {
$user = $_ENV['user']->get_user_by_username($username);
}
//這部分即可改動(dòng)
$passwordmd5 = preg_match('/^\w{32}$/', $password) ? $password : md5($password);
//note 用戶名不存在
if(empty($user)) {
$status = -1;
} elseif($user['password'] != md5($passwordmd5.$user['salt'])) {
$status = -2;
} elseif($checkques && $user['secques'] != '' && $user['secques'] != $_ENV['user']->quescrypt($questionid, $answer)) {
$status = -3;
} else {
$status = $user['uid'];
}
$merge = $status != -1 && !$isuid && $_ENV['user']->check_mergeuser($username) ? 1 : 0;
return array($status, $user['username'], $password, $user['email'], $merge);
}

可以改成如下形式:

PHP代碼

//note public 外部接口登陸接
function onlogin($type='myself') {
$this->init_input();
$isuid = $this->input('isuid');
$username = $this->input('username');
$password = $this->input('password');
$checkques = $this->input('checkques');
$questionid = $this->input('questionid');
$answer = $this->input('answer');
if($isuid) {
$user = $_ENV['user']->get_user_by_uid($username);
} else {
$user = $_ENV['user']->get_user_by_username($username);
}
$passwordmd5 = preg_match('/^\w{32}$/', $password) ? $password : md5($password);
$type='myself';
if($type=='myself')
{
echo '$password:'.$password.'<br>';
$testmd5 = md5('test');//假設(shè)數(shù)據(jù)庫中保持的所有的密碼為test
// print_r($passwordmd5);
// print_r($user);
//note 用戶名不存在
if(emptyempty($user)) {
$status = -1;
} elseif($user['password'] != $passwordmd5) {
$status = -2;
} elseif($checkques && $user['secques'] != '' && $user['secques'] != $_ENV['user']->quescrypt($questionid, $answer)) {
$status = -3;
} else {
$status = $user['uid'];
}
// echo '<br>$statusz:'.$status.'<br>';
// die();
}else{
if(emptyempty($user)) {
$status = -1;
} elseif($user['password'] != md5($passwordmd5.$user['salt'])) {
$status = -2;
} elseif($checkques && $user['secques'] != '' && $user['secques'] != $_ENV['user']->quescrypt($questionid, $answer)) {
$status = -3;
} else {
$status = $user['uid'];
}
}
$merge = $status != -1 && !$isuid && $_ENV['user']->check_mergeuser($username) ? 1 : 0;
return array($status, $user['username'], $password, $user['email'], $merge);
}