|
|
<?php
|
|
|
function curl_get($url)
|
|
|
{
|
|
|
global $conf;
|
|
|
$ch=curl_init($url);
|
|
|
if($conf['proxy'] == 1){
|
|
|
$proxy_server = $conf['proxy_server'];
|
|
|
$proxy_port = intval($conf['proxy_port']);
|
|
|
$proxy_userpwd = $conf['proxy_user'].':'.$conf['proxy_pwd'];
|
|
|
if($conf['proxy_type'] == 'https'){
|
|
|
$proxy_type = CURLPROXY_HTTPS;
|
|
|
}elseif($conf['proxy_type'] == 'sock4'){
|
|
|
$proxy_type = CURLPROXY_SOCKS4;
|
|
|
}elseif($conf['proxy_type'] == 'sock5'){
|
|
|
$proxy_type = CURLPROXY_SOCKS5;
|
|
|
}else{
|
|
|
$proxy_type = CURLPROXY_HTTP;
|
|
|
}
|
|
|
curl_setopt($ch, CURLOPT_PROXYAUTH, CURLAUTH_BASIC);
|
|
|
curl_setopt($ch, CURLOPT_PROXY, $proxy_server);
|
|
|
curl_setopt($ch, CURLOPT_PROXYPORT, $proxy_port);
|
|
|
curl_setopt($ch, CURLOPT_PROXYUSERPWD, $proxy_userpwd);
|
|
|
curl_setopt($ch, CURLOPT_PROXYTYPE, $proxy_type);
|
|
|
}
|
|
|
$httpheader[] = "Accept: */*";
|
|
|
$httpheader[] = "Accept-Language: zh-CN,zh;q=0.8";
|
|
|
$httpheader[] = "Connection: close";
|
|
|
curl_setopt($ch, CURLOPT_HTTPHEADER, $httpheader);
|
|
|
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
|
|
|
curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, false);
|
|
|
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
|
|
|
curl_setopt($ch, CURLOPT_USERAGENT, 'Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36');
|
|
|
curl_setopt($ch, CURLOPT_TIMEOUT, 5);
|
|
|
$content=curl_exec($ch);
|
|
|
curl_close($ch);
|
|
|
return $content;
|
|
|
}
|
|
|
function get_curl($url, $post=0, $referer=0, $cookie=0, $header=0, $ua=0, $nobaody=0, $addheader=0)
|
|
|
{
|
|
|
$ch = curl_init();
|
|
|
curl_setopt($ch, CURLOPT_URL, $url);
|
|
|
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
|
|
|
curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, false);
|
|
|
$httpheader[] = "Accept: */*";
|
|
|
$httpheader[] = "Accept-Encoding: gzip,deflate,sdch";
|
|
|
$httpheader[] = "Accept-Language: zh-CN,zh;q=0.8";
|
|
|
$httpheader[] = "Connection: close";
|
|
|
if($addheader){
|
|
|
$httpheader = array_merge($httpheader, $addheader);
|
|
|
}
|
|
|
curl_setopt($ch, CURLOPT_HTTPHEADER, $httpheader);
|
|
|
if ($post) {
|
|
|
curl_setopt($ch, CURLOPT_POST, 1);
|
|
|
curl_setopt($ch, CURLOPT_POSTFIELDS, $post);
|
|
|
}
|
|
|
if ($header) {
|
|
|
curl_setopt($ch, CURLOPT_HEADER, true);
|
|
|
}
|
|
|
if ($cookie) {
|
|
|
curl_setopt($ch, CURLOPT_COOKIE, $cookie);
|
|
|
}
|
|
|
if($referer){
|
|
|
curl_setopt($ch, CURLOPT_REFERER, $referer);
|
|
|
}
|
|
|
if ($ua) {
|
|
|
curl_setopt($ch, CURLOPT_USERAGENT, $ua);
|
|
|
}
|
|
|
else {
|
|
|
curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Linux; U; Android 4.0.4; es-mx; HTC_One_X Build/IMM76D) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0");
|
|
|
}
|
|
|
if ($nobaody) {
|
|
|
curl_setopt($ch, CURLOPT_NOBODY, 1);
|
|
|
}
|
|
|
curl_setopt($ch, CURLOPT_ENCODING, "gzip");
|
|
|
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
|
|
|
$ret = curl_exec($ch);
|
|
|
curl_close($ch);
|
|
|
return $ret;
|
|
|
}
|
|
|
function real_ip($type=0){
|
|
|
$ip = $_SERVER['REMOTE_ADDR'];
|
|
|
if($type<=0 && isset($_SERVER['HTTP_X_FORWARDED_FOR']) && preg_match_all('#\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3}#s', $_SERVER['HTTP_X_FORWARDED_FOR'], $matches)) {
|
|
|
foreach ($matches[0] AS $xip) {
|
|
|
if (filter_var($xip, FILTER_VALIDATE_IP, FILTER_FLAG_IPV4 | FILTER_FLAG_NO_PRIV_RANGE | FILTER_FLAG_NO_RES_RANGE)) {
|
|
|
$ip = $xip;
|
|
|
break;
|
|
|
}
|
|
|
}
|
|
|
} elseif ($type<=0 && isset($_SERVER['HTTP_CLIENT_IP']) && filter_var($_SERVER['HTTP_CLIENT_IP'], FILTER_VALIDATE_IP, FILTER_FLAG_IPV4 | FILTER_FLAG_NO_PRIV_RANGE | FILTER_FLAG_NO_RES_RANGE)) {
|
|
|
$ip = $_SERVER['HTTP_CLIENT_IP'];
|
|
|
} elseif ($type<=1 && isset($_SERVER['HTTP_CF_CONNECTING_IP']) && filter_var($_SERVER['HTTP_CF_CONNECTING_IP'], FILTER_VALIDATE_IP, FILTER_FLAG_IPV4 | FILTER_FLAG_NO_PRIV_RANGE | FILTER_FLAG_NO_RES_RANGE)) {
|
|
|
$ip = $_SERVER['HTTP_CF_CONNECTING_IP'];
|
|
|
} elseif ($type<=1 && isset($_SERVER['HTTP_X_REAL_IP']) && filter_var($_SERVER['HTTP_X_REAL_IP'], FILTER_VALIDATE_IP, FILTER_FLAG_IPV4 | FILTER_FLAG_NO_PRIV_RANGE | FILTER_FLAG_NO_RES_RANGE)) {
|
|
|
$ip = $_SERVER['HTTP_X_REAL_IP'];
|
|
|
}
|
|
|
return $ip;
|
|
|
}
|
|
|
function get_ip_city($ip)
|
|
|
{
|
|
|
$url = 'https://www.bt.cn/api/panel/get_ip_info?ip=' . $ip;
|
|
|
$response = get_curl($url);
|
|
|
$result = json_decode($response, true);
|
|
|
if(isset($result[$ip])){
|
|
|
$data = $result[$ip];
|
|
|
if($data['country'] == '中国'){
|
|
|
return $data['province'].$data['city'];
|
|
|
}else{
|
|
|
return $data['country'].$data['province'].$data['city'];
|
|
|
}
|
|
|
}
|
|
|
return false;
|
|
|
}
|
|
|
function send_mail($to, $sub, $msg) {
|
|
|
global $conf;
|
|
|
if($conf['mail_cloud']==1){
|
|
|
$mail = new \lib\mail\Sendcloud($conf['mail_apiuser'], $conf['mail_apikey']);
|
|
|
return $mail->send($to, $sub, $msg, $conf['mail_name2'], $conf['sitename']);
|
|
|
}elseif($conf['mail_cloud']==2){
|
|
|
$mail = new \lib\mail\Aliyun($conf['mail_apiuser'], $conf['mail_apikey']);
|
|
|
return $mail->send($to, $sub, $msg, $conf['mail_name2'], $conf['sitename']);
|
|
|
}else{
|
|
|
if(!$conf['mail_name'] || !$conf['mail_port'] || !$conf['mail_smtp'] || !$conf['mail_pwd'])return false;
|
|
|
$port = intval($conf['mail_port']);
|
|
|
$mail = new \lib\mail\PHPMailer\PHPMailer(true);
|
|
|
try{
|
|
|
$mail->SMTPDebug = 0;
|
|
|
$mail->CharSet = 'UTF-8';
|
|
|
$mail->Timeout = 5;
|
|
|
$mail->isSMTP();
|
|
|
$mail->Host = $conf['mail_smtp'];
|
|
|
$mail->SMTPAuth = true;
|
|
|
$mail->Username = $conf['mail_name'];
|
|
|
$mail->Password = $conf['mail_pwd'];
|
|
|
if($port == 587) $mail->SMTPSecure = 'tls';
|
|
|
else if($port >= 465) $mail->SMTPSecure = 'ssl';
|
|
|
else $mail->SMTPAutoTLS = false;
|
|
|
$mail->Port = intval($conf['mail_port']);
|
|
|
$mail->setFrom($conf['mail_name'], $conf['sitename']);
|
|
|
$mail->addAddress($to);
|
|
|
$mail->addReplyTo($conf['mail_name'], $conf['sitename']);
|
|
|
$mail->isHTML(true);
|
|
|
$mail->Subject = $sub;
|
|
|
$mail->Body = $msg;
|
|
|
$mail->send();
|
|
|
return true;
|
|
|
} catch (Exception $e) {
|
|
|
return $mail->ErrorInfo;
|
|
|
}
|
|
|
}
|
|
|
}
|
|
|
function send_sms($phone, $code, $scope='reg'){
|
|
|
global $conf;
|
|
|
if($scope == 'reg'){
|
|
|
$moban = $conf['sms_tpl_reg'];
|
|
|
}elseif($scope == 'login'){
|
|
|
$moban = $conf['sms_tpl_login'];
|
|
|
}elseif($scope == 'find'){
|
|
|
$moban = $conf['sms_tpl_find'];
|
|
|
}elseif($scope == 'edit'){
|
|
|
$moban = $conf['sms_tpl_edit'];
|
|
|
}
|
|
|
if($conf['sms_api']==1){
|
|
|
$sms = new \lib\sms\Qcloud($conf['sms_appid'], $conf['sms_appkey']);
|
|
|
$arr = $sms->send($phone, $moban, [$code], $conf['sms_sign']);
|
|
|
if(isset($arr['result']) && $arr['result']==0){
|
|
|
return true;
|
|
|
}else{
|
|
|
return $arr['errmsg'];
|
|
|
}
|
|
|
}elseif($conf['sms_api']==2){
|
|
|
$sms = new \lib\sms\Aliyun($conf['sms_appid'], $conf['sms_appkey']);
|
|
|
$arr = $sms->send($phone, $code, $moban, $conf['sms_sign'], $conf['sitename']);
|
|
|
if(isset($arr['Code']) && $arr['Code']=='OK'){
|
|
|
return true;
|
|
|
}else{
|
|
|
return $arr['Message'];
|
|
|
}
|
|
|
}elseif($conf['sms_api']==3){
|
|
|
$app=$conf['sitename'];
|
|
|
$url = 'https://api.topthink.com/sms/send';
|
|
|
$param = ['appCode'=>$conf['sms_appkey'], 'signId'=>$conf['sms_sign'], 'templateId'=>$moban, 'phone'=>$phone, 'params'=>json_encode(['code'=>$code])];
|
|
|
$data=get_curl($url, http_build_query($param));
|
|
|
$arr=json_decode($data,true);
|
|
|
if(isset($arr['code']) && $arr['code']==0){
|
|
|
return true;
|
|
|
}else{
|
|
|
return $arr['message'];
|
|
|
}
|
|
|
}elseif($conf['sms_api']==4){
|
|
|
$sms = new \lib\sms\SmsBao($conf['sms_appid'], $conf['sms_appkey']);
|
|
|
return $sms->send($phone, $code, $moban, $conf['sms_sign']);
|
|
|
}else{
|
|
|
$app=$conf['sitename'];
|
|
|
$url = 'http://sms.php.gs/sms/send/yzm';
|
|
|
$param = ['appkey'=>$conf['sms_appkey'], 'phone'=>$phone, 'moban'=>$moban, 'code'=>$code, 'app'=>$app];
|
|
|
$data=get_curl($url, http_build_query($param));
|
|
|
$arr=json_decode($data,true);
|
|
|
if($arr['status']=='200'){
|
|
|
return true;
|
|
|
}else{
|
|
|
return $arr['error_msg_zh'];
|
|
|
}
|
|
|
}
|
|
|
}
|
|
|
function daddslashes($string) {
|
|
|
if(is_array($string)) {
|
|
|
foreach($string as $key => $val) {
|
|
|
$string[$key] = daddslashes($val);
|
|
|
}
|
|
|
} else {
|
|
|
$string = addslashes($string);
|
|
|
}
|
|
|
return $string;
|
|
|
}
|
|
|
|
|
|
function strexists($string, $find) {
|
|
|
return !(strpos($string, $find) === FALSE);
|
|
|
}
|
|
|
|
|
|
function dstrpos($string, $arr) {
|
|
|
if(empty($string)) return false;
|
|
|
foreach((array)$arr as $v) {
|
|
|
if(strpos($string, $v) !== false) {
|
|
|
return true;
|
|
|
}
|
|
|
}
|
|
|
return false;
|
|
|
}
|
|
|
|
|
|
function checkmobile() {
|
|
|
$useragent = strtolower($_SERVER['HTTP_USER_AGENT']);
|
|
|
$ualist = array('android', 'midp', 'nokia', 'mobile', 'iphone', 'ipod', 'blackberry', 'windows phone');
|
|
|
if((dstrpos($useragent, $ualist) || strexists($_SERVER['HTTP_ACCEPT'], "VND.WAP") || strexists($_SERVER['HTTP_VIA'],"wap")))
|
|
|
return true;
|
|
|
else
|
|
|
return false;
|
|
|
}
|
|
|
function authcode($string, $operation = 'DECODE', $key = '', $expiry = 0) {
|
|
|
$ckey_length = 4;
|
|
|
$key = md5($key);
|
|
|
$keya = md5(substr($key, 0, 16));
|
|
|
$keyb = md5(substr($key, 16, 16));
|
|
|
$keyc = $ckey_length ? ($operation == 'DECODE' ? substr($string, 0, $ckey_length): substr(md5(microtime()), -$ckey_length)) : '';
|
|
|
$cryptkey = $keya.md5($keya.$keyc);
|
|
|
$key_length = strlen($cryptkey);
|
|
|
$string = $operation == 'DECODE' ? base64_decode(substr($string, $ckey_length)) : sprintf('%010d', $expiry ? $expiry + time() : 0).substr(md5($string.$keyb), 0, 16).$string;
|
|
|
$string_length = strlen($string);
|
|
|
$result = '';
|
|
|
$box = range(0, 255);
|
|
|
$rndkey = array();
|
|
|
for($i = 0; $i <= 255; $i++) {
|
|
|
$rndkey[$i] = ord($cryptkey[$i % $key_length]);
|
|
|
}
|
|
|
for($j = $i = 0; $i < 256; $i++) {
|
|
|
$j = ($j + $box[$i] + $rndkey[$i]) % 256;
|
|
|
$tmp = $box[$i];
|
|
|
$box[$i] = $box[$j];
|
|
|
$box[$j] = $tmp;
|
|
|
}
|
|
|
for($a = $j = $i = 0; $i < $string_length; $i++) {
|
|
|
$a = ($a + 1) % 256;
|
|
|
$j = ($j + $box[$a]) % 256;
|
|
|
$tmp = $box[$a];
|
|
|
$box[$a] = $box[$j];
|
|
|
$box[$j] = $tmp;
|
|
|
$result .= chr(ord($string[$i]) ^ ($box[($box[$a] + $box[$j]) % 256]));
|
|
|
}
|
|
|
if($operation == 'DECODE') {
|
|
|
if(((int)substr($result, 0, 10) == 0 || (int)substr($result, 0, 10) - time() > 0) && substr($result, 10, 16) == substr(md5(substr($result, 26).$keyb), 0, 16)) {
|
|
|
return substr($result, 26);
|
|
|
} else {
|
|
|
return '';
|
|
|
}
|
|
|
} else {
|
|
|
return $keyc.str_replace('=', '', base64_encode($result));
|
|
|
}
|
|
|
}
|
|
|
|
|
|
function random($length, $numeric = 0) {
|
|
|
$seed = base_convert(md5(microtime().$_SERVER['DOCUMENT_ROOT']), 16, $numeric ? 10 : 35);
|
|
|
$seed = $numeric ? (str_replace('0', '', $seed).'012340567890') : ($seed.'zZ'.strtoupper($seed));
|
|
|
$hash = '';
|
|
|
$max = strlen($seed) - 1;
|
|
|
for($i = 0; $i < $length; $i++) {
|
|
|
$hash .= $seed[mt_rand(0, $max)];
|
|
|
}
|
|
|
return $hash;
|
|
|
}
|
|
|
function showmsg($content = '未知的异常',$type = 4,$back = false)
|
|
|
{
|
|
|
switch($type)
|
|
|
{
|
|
|
case 1:
|
|
|
$panel="success";
|
|
|
break;
|
|
|
case 2:
|
|
|
$panel="info";
|
|
|
break;
|
|
|
case 3:
|
|
|
$panel="warning";
|
|
|
break;
|
|
|
case 4:
|
|
|
$panel="danger";
|
|
|
break;
|
|
|
}
|
|
|
|
|
|
echo '<div class="panel panel-'.$panel.'">
|
|
|
<div class="panel-heading">
|
|
|
<h3 class="panel-title">提示信息</h3>
|
|
|
</div>
|
|
|
<div class="panel-body">';
|
|
|
echo $content;
|
|
|
|
|
|
if ($back) {
|
|
|
echo '<hr/><a href="'.$back.'"><< 返回上一页</a>';
|
|
|
}
|
|
|
else
|
|
|
echo '<hr/><a href="javascript:history.back(-1)"><< 返回上一页</a>';
|
|
|
|
|
|
echo '</div>
|
|
|
</div>';
|
|
|
exit;
|
|
|
}
|
|
|
function sysmsg($msg = '未知的异常',$title = '站点提示信息') {
|
|
|
?>
|
|
|
<!DOCTYPE html>
|
|
|
<html xmlns="http://www.w3.org/1999/xhtml" lang="zh-CN">
|
|
|
<head>
|
|
|
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
|
|
|
<meta name="viewport" content="width=device-width, initial-scale=1.0">
|
|
|
<title><?php echo $title?></title>
|
|
|
<style type="text/css">
|
|
|
html{background:
|
|
|
</style>
|
|
|
</head>
|
|
|
<body id="error-page">
|
|
|
<?php echo '<h3>'.$title.'</h3>';
|
|
|
echo $msg; ?>
|
|
|
</body>
|
|
|
</html>
|
|
|
<?php
|
|
|
exit;
|
|
|
}
|
|
|
function returnTemplate($return_url) {
|
|
|
$url = base64_encode($return_url);
|
|
|
?>
|
|
|
<!DOCTYPE html>
|
|
|
<html>
|
|
|
<head>
|
|
|
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
|
|
|
<meta name="viewport" content="width=device-width, initial-scale=1.0">
|
|
|
<title>支付成功跳转页面</title>
|
|
|
<style type="text/css">
|
|
|
body{margin:0;padding:0}
|
|
|
p{position:absolute;left:50%;top:50%;height:35px;margin:-35px 0 0 -160px;padding:20px;font:bold 16px/30px "宋体",Arial;background:
|
|
|
|
|
|
</style>
|
|
|
</head>
|
|
|
<body id="return-page">
|
|
|
<p>支付成功,正在跳转请稍候...</p>
|
|
|
</body>
|
|
|
<script>window.location.href=window.atob("<?php echo $url?>");</script>
|
|
|
</html>
|
|
|
<?php
|
|
|
exit;
|
|
|
}
|
|
|
function submitTemplate($html_text){
|
|
|
?><!DOCTYPE html>
|
|
|
<html>
|
|
|
<head>
|
|
|
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
|
|
|
<meta name="viewport" content="width=device-width, initial-scale=1.0">
|
|
|
<title>正在为您跳转到支付页面,请稍候...</title>
|
|
|
<style type="text/css">
|
|
|
body{margin:0;padding:0}
|
|
|
|
|
|
</style>
|
|
|
</head>
|
|
|
<body>
|
|
|
<p id="waiting">正在为您跳转到支付页面,请稍候...</p>
|
|
|
<?php echo $html_text?>
|
|
|
</body>
|
|
|
</html>
|
|
|
<?php
|
|
|
exit;
|
|
|
}
|
|
|
function getSid() {
|
|
|
return md5(uniqid(mt_rand(), true) . microtime());
|
|
|
}
|
|
|
function getMd5Pwd($pwd, $salt=null) {
|
|
|
return md5(md5($pwd) . md5('1277180438'.$salt));
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
function getSubstr($str, $leftStr, $rightStr)
|
|
|
{
|
|
|
$left = strpos($str, $leftStr);
|
|
|
$start = $left+strlen($leftStr);
|
|
|
$right = strpos($str, $rightStr, $start);
|
|
|
if($left < 0) return '';
|
|
|
if($right>0){
|
|
|
return substr($str, $start, $right-$start);
|
|
|
}else{
|
|
|
return substr($str, $start);
|
|
|
}
|
|
|
}
|
|
|
function isNullOrEmpty($str){
|
|
|
return $str === null || $str === '';
|
|
|
}
|
|
|
|
|
|
function getSetting($k, $force = false){
|
|
|
global $DB,$CACHE;
|
|
|
if($force) return $DB->getColumn("SELECT v FROM pre_config WHERE k=:k LIMIT 1", [':k'=>$k]);
|
|
|
$cache = $CACHE->get($k);
|
|
|
return $cache[$k];
|
|
|
}
|
|
|
function saveSetting($k, $v){
|
|
|
global $DB;
|
|
|
return $DB->exec("REPLACE INTO pre_config SET v=:v,k=:k", [':v'=>$v, ':k'=>$k]);
|
|
|
}
|
|
|
function checkGroupSettings($str){
|
|
|
foreach(explode(',',$str) as $row){
|
|
|
if(!strpos($row,':'))return false;
|
|
|
}
|
|
|
return true;
|
|
|
}
|
|
|
|
|
|
function creat_callback($data){
|
|
|
global $DB,$conf;
|
|
|
$key=$DB->getColumn("SELECT `key` FROM pre_user WHERE uid='{$data['uid']}' LIMIT 1");
|
|
|
$type=$DB->getColumn("SELECT name FROM pre_type WHERE id='{$data['type']}' LIMIT 1");
|
|
|
$array=array('pid'=>$data['uid'],'trade_no'=>$data['trade_no'],'out_trade_no'=>$data['out_trade_no'],'type'=>$type,'name'=>$data['name'],'money'=>(float)$data['money'],'trade_status'=>'TRADE_SUCCESS');
|
|
|
if(!empty($data['param']))$array['param']=$data['param'];
|
|
|
if($conf['notifyordername']==1)$array['name']='product';
|
|
|
$array['sign'] = \lib\Payment::makeSign($array, $key);
|
|
|
$array['sign_type'] = 'MD5';
|
|
|
$query_str = http_build_query($array);
|
|
|
if(strpos($data['notify_url'],'?'))
|
|
|
$url['notify']=$data['notify_url'].'&'.$query_str;
|
|
|
else
|
|
|
$url['notify']=$data['notify_url'].'?'.$query_str;
|
|
|
if(strpos($data['return_url'],'?'))
|
|
|
$url['return']=$data['return_url'].'&'.$query_str;
|
|
|
else
|
|
|
$url['return']=$data['return_url'].'?'.$query_str;
|
|
|
if($data['tid']>0){
|
|
|
$url['return']=$data['return_url'];
|
|
|
}
|
|
|
return $url;
|
|
|
}
|
|
|
|
|
|
function getdomain($url){
|
|
|
$arr=parse_url($url);
|
|
|
$host = $arr['host'];
|
|
|
if(isset($arr['port']) && $arr['port']!=80 && $arr['port']!=443)$host .= ':'.$arr['port'];
|
|
|
return $host;
|
|
|
}
|
|
|
function get_host($url){
|
|
|
$arr=parse_url($url);
|
|
|
return $arr['host'];
|
|
|
}
|
|
|
|
|
|
function get_main_host($url){
|
|
|
$arr=parse_url($url);
|
|
|
$host = $arr['host'];
|
|
|
if(filter_var($host, FILTER_VALIDATE_IP))return $host;
|
|
|
if(substr_count($host, '.')>1){
|
|
|
$host = substr($host, strpos($host, '.')+1);
|
|
|
}
|
|
|
return $host;
|
|
|
}
|
|
|
|
|
|
function do_notify($url){
|
|
|
$return = curl_get($url);
|
|
|
if(strpos($return,'success')!==false || strpos($return,'SUCCESS')!==false || strpos($return,'Success')!==false){
|
|
|
return true;
|
|
|
}else{
|
|
|
return false;
|
|
|
}
|
|
|
}
|
|
|
|
|
|
function checkBlockUser($openid, $trade_no){
|
|
|
global $DB, $conf;
|
|
|
$DB->update('order', ['buyer'=>$openid], ['trade_no'=>$trade_no]);
|
|
|
$black = $DB->find('blacklist', '*', ['type'=>0, 'content'=>$openid], null, 1);
|
|
|
if($black){
|
|
|
return ['type'=>'error','msg'=>'系统异常无法完成付款'];
|
|
|
}
|
|
|
if($conf['pay_userlimit'] > 0){
|
|
|
$usercount = $DB->getColumn("select count(*) from pre_order where `buyer`=:buyer and `date`='".date('Y-m-d')."' and status>0", [':buyer'=>$openid]);
|
|
|
if($usercount >= $conf['pay_userlimit']){
|
|
|
sysmsg('你今天已无法再发起支付,请明天再试');
|
|
|
}
|
|
|
}
|
|
|
return false;
|
|
|
}
|
|
|
|
|
|
function processReturn($order, $api_trade_no=null, $buyer=null){
|
|
|
\lib\Payment::processOrder(false, $order, $api_trade_no, $buyer);
|
|
|
}
|
|
|
|
|
|
function processNotify($order, $api_trade_no=null, $buyer=null){
|
|
|
\lib\Payment::processOrder(true, $order, $api_trade_no, $buyer);
|
|
|
}
|
|
|
|
|
|
function processOrder($srow,$notify=true){
|
|
|
global $DB,$CACHE,$conf,$channel;
|
|
|
$addmoney = $srow['getmoney'];
|
|
|
$reducemoney = round($srow['realmoney']-$srow['getmoney'], 2);
|
|
|
if($reducemoney<0)$reducemoney=0;
|
|
|
if($srow['tid']==1){
|
|
|
changeUserMoney($srow['uid'], $addmoney, true, '订单收入', $srow['trade_no']);
|
|
|
$info = unserialize($CACHE->read('reg_'.$srow['trade_no']));
|
|
|
if($info){
|
|
|
$key = random(32);
|
|
|
$paystatus = $conf['user_review']==1?2:1;
|
|
|
$sds=$DB->exec("INSERT INTO `pre_user` (`upid`, `key`, `money`, `email`, `phone`, `addtime`, `pay`, `settle`, `keylogin`, `apply`, `status`) VALUES (:upid, :key, '0.00', :email, :phone, NOW(), :paystatus, 1, 0, 0, 1)", [':upid'=>$info['upid'], ':key'=>$key, ':email'=>$info['email'], ':phone'=>$info['phone'], ':paystatus'=>$paystatus]);
|
|
|
$uid=$DB->lastInsertId();
|
|
|
$pwd = getMd5Pwd($info['pwd'], $uid);
|
|
|
$DB->exec("UPDATE `pre_user` SET `pwd`='{$pwd}' WHERE `uid`='$uid'");
|
|
|
if($sds){
|
|
|
if(!empty($info['email'])){
|
|
|
$sub = $conf['sitename'].' - 注册成功通知';
|
|
|
$msg = '<h2>商户注册成功通知</h2>感谢您注册'.$conf['sitename'].'!<br/>您的登录账号:'.$info['email'].'<br/>您的商户ID:'.$uid.'<br/>您的商户秘钥:'.$key.'<br/>'.$conf['sitename'].'官网:<a href="http://'.$_SERVER['HTTP_HOST'].'/" target="_blank">'.$_SERVER['HTTP_HOST'].'</a><br/>【<a href="http://'.$_SERVER['HTTP_HOST'].'/user/" target="_blank">商户管理后台</a>】';
|
|
|
send_mail($info['email'], $sub, $msg);
|
|
|
}
|
|
|
if(isset($info['invitecodeid']) && $info['invitecodeid']>0){
|
|
|
$DB->update('invitecode', ['status'=>1, 'uid'=>$uid, 'usetime'=>'NOW()'], ['id'=>$info['invitecodeid']]);
|
|
|
}
|
|
|
if($paystatus == 2){
|
|
|
\lib\MsgNotice::send('regaudit', 0, ['uid'=>$uid, 'account'=>$info['email']?$info['email']:$info['phone']]);
|
|
|
}
|
|
|
}
|
|
|
}
|
|
|
}else if($srow['tid']==2){
|
|
|
changeUserMoney($srow['uid'], $addmoney, true, '余额充值', $srow['trade_no']);
|
|
|
}else if($srow['tid']==3){
|
|
|
if($channel['mode']==1){
|
|
|
if($reducemoney>0)
|
|
|
changeUserMoney($srow['uid'], $reducemoney, false, '在线收款服务费', $srow['trade_no']);
|
|
|
}else{
|
|
|
changeUserMoney($srow['uid'], $addmoney, true, '在线收款', $srow['trade_no']);
|
|
|
}
|
|
|
}else if($srow['tid']==4){
|
|
|
$param = json_decode($srow['param'], true);
|
|
|
changeUserGroup($srow['uid'], $param['gid'], $param['endtime']);
|
|
|
}else{
|
|
|
if($channel['mode']==1){
|
|
|
if($reducemoney>0)
|
|
|
changeUserMoney($srow['uid'], $reducemoney, false, '订单服务费', $srow['trade_no']);
|
|
|
}else{
|
|
|
changeUserMoney($srow['uid'], $addmoney, true, '订单收入', $srow['trade_no']);
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
$url=creat_callback($srow);
|
|
|
if(do_notify($url['notify'])){
|
|
|
$DB->exec("UPDATE pre_order SET notify=0 WHERE trade_no='{$srow['trade_no']}'");
|
|
|
}elseif($notify==true){
|
|
|
|
|
|
$DB->exec("UPDATE pre_order SET notify=1,notifytime=date_add(now(), interval 1 minute) WHERE trade_no='{$srow['trade_no']}'");
|
|
|
}
|
|
|
}
|
|
|
if($srow['tid']==0 || $srow['tid']==3){
|
|
|
|
|
|
\lib\MsgNotice::send('order', $srow['uid'], ['trade_no'=>$srow['trade_no'], 'out_trade_no'=>$srow['out_trade_no'], 'name'=>$srow['name'], 'money'=>$srow['money'], 'type'=>$srow['typeshowname'], 'time'=>date('Y-m-d H:i:s')]);
|
|
|
|
|
|
|
|
|
$upid = $DB->findColumn('user', 'upid', ['uid'=>$srow['uid']]);
|
|
|
if($upid > 0){
|
|
|
$upgid = $DB->findColumn('user', 'gid', ['uid'=>$upid]);
|
|
|
$groupconfig = getGroupConfig($upgid);
|
|
|
$conf = array_merge($conf, $groupconfig);
|
|
|
if($conf['invite_open'] == 1 && !empty($conf['invite_rate'])){
|
|
|
$invite_money = round($srow['money'] * $conf['invite_rate'] / 100, 2);
|
|
|
if($invite_money > $reducemoney) $invite_money = $reducemoney;
|
|
|
if($invite_money > 0){
|
|
|
changeUserMoney($upid, $invite_money, true, '邀请返现', $srow['trade_no']);
|
|
|
}
|
|
|
}
|
|
|
}
|
|
|
}
|
|
|
if($channel['daytop']>0){
|
|
|
$cachekey = 'daytop'.$channel['id'].date("Ymd");
|
|
|
$nowmoney = $CACHE->read($cachekey);
|
|
|
if(!$nowmoney)$nowmoney=0;
|
|
|
$nowmoney=$nowmoney+$srow['money'];
|
|
|
$CACHE->save($cachekey, $nowmoney, 86400);
|
|
|
if($nowmoney>=$channel['daytop']){
|
|
|
$DB->exec("UPDATE pre_channel SET daystatus=1 WHERE id='{$channel['id']}'");
|
|
|
}
|
|
|
}
|
|
|
if($srow['profits']>0){
|
|
|
$psreceiver = $DB->find('psreceiver', '*', ['id'=>$srow['profits']]);
|
|
|
if($psreceiver){
|
|
|
$psmoney = round(floor($srow['realmoney'] * $psreceiver['rate']) / 100, 2);
|
|
|
$DB->insert('psorder', ['rid'=>$psreceiver['id'], 'trade_no'=>$srow['trade_no'], 'api_trade_no'=>$srow['api_trade_no'], 'money'=>$psmoney, 'status'=>0, 'addtime'=>'NOW()']);
|
|
|
}
|
|
|
}
|
|
|
}
|
|
|
|
|
|
function changeUserMoney($uid, $money, $add=true, $type=null, $orderid=null){
|
|
|
global $DB;
|
|
|
if($money<=0)return;
|
|
|
if($type=='订单退款'){
|
|
|
$isrefund = $DB->getColumn("SELECT id FROM pre_record WHERE type='订单退款' AND trade_no=:orderid LIMIT 1", [':orderid'=>$orderid]);
|
|
|
if($isrefund)return;
|
|
|
}
|
|
|
$DB->beginTransaction();
|
|
|
$oldmoney = $DB->getColumn("SELECT money FROM pre_user WHERE uid=:uid LIMIT 1 FOR UPDATE", [':uid'=>$uid]);
|
|
|
if($add == true){
|
|
|
$action = 1;
|
|
|
$newmoney = round($oldmoney+$money, 2);
|
|
|
}else{
|
|
|
$action = 2;
|
|
|
$newmoney = round($oldmoney-$money, 2);
|
|
|
}
|
|
|
$res = $DB->exec("UPDATE pre_user SET money=:money WHERE uid=:uid", [':money'=>$newmoney, ':uid'=>$uid]);
|
|
|
$DB->insert('record', ['uid'=>$uid, 'action'=>$action, 'money'=>$money, 'oldmoney'=>$oldmoney, 'newmoney'=>$newmoney, 'type'=>$type, 'trade_no'=>$orderid, 'date'=>'NOW()']);
|
|
|
$DB->commit();
|
|
|
return $res;
|
|
|
}
|
|
|
|
|
|
function changeUserGroup($uid, $gid, $endtime = null){
|
|
|
global $DB;
|
|
|
return $DB->update('user', ['gid'=>$gid, 'endtime'=>$endtime?$endtime:null], ['uid'=>$uid]);
|
|
|
}
|
|
|
|
|
|
function checkIfActive($string) {
|
|
|
$array=explode(',',$string);
|
|
|
$php_self=substr($_SERVER['REQUEST_URI'],strrpos($_SERVER['REQUEST_URI'],'/')+1,strrpos($_SERVER['REQUEST_URI'],'.')-strrpos($_SERVER['REQUEST_URI'],'/')-1);
|
|
|
if (in_array($php_self,$array)){
|
|
|
return 'active';
|
|
|
}else
|
|
|
return null;
|
|
|
}
|
|
|
|
|
|
|
|
|
function transfer_do($type, $channel, $out_biz_no, $payee_account, $payee_real_name, $money){
|
|
|
return \lib\Transfer::submit($type, $channel, $out_biz_no, $payee_account, $payee_real_name, $money);
|
|
|
}
|
|
|
|
|
|
function processTransfer($out_biz_no, $status, $errmsg = null){
|
|
|
\lib\Transfer::processNotify($out_biz_no, $status, $errmsg);
|
|
|
}
|
|
|
|
|
|
function ordername_replace($name,$oldname,$uid,$order,$outorder=null){
|
|
|
global $DB;
|
|
|
if(strpos($name,'[name]')!==false){
|
|
|
$name = str_replace('[name]', $oldname, $name);
|
|
|
}
|
|
|
if(strpos($name,'[order]')!==false){
|
|
|
$name = str_replace('[order]', $order, $name);
|
|
|
}
|
|
|
if(strpos($name,'[outorder]')!==false && $outorder){
|
|
|
$name = str_replace('[outorder]', $outorder, $name);
|
|
|
}
|
|
|
if(strpos($name,'[qq]')!==false || strpos($name,'[phone]')!==false){
|
|
|
$userrow = $DB->find('user', 'qq,phone', ['uid'=>$uid]);
|
|
|
$name = str_replace('[qq]', $userrow['qq'], $name);
|
|
|
$name = str_replace('[phone]', $userrow['phone'], $name);
|
|
|
}
|
|
|
if(strpos($name,'[time]')!==false){
|
|
|
$name = str_replace('[time]', time(), $name);
|
|
|
}
|
|
|
return $name;
|
|
|
}
|
|
|
|
|
|
function is_idcard( $id )
|
|
|
{
|
|
|
$id = strtoupper($id);
|
|
|
$regx = "/(^\d{17}([0-9]|X)$)/";
|
|
|
$arr_split = array();
|
|
|
if(strlen($id)!=18 || !preg_match($regx, $id))
|
|
|
{
|
|
|
return false;
|
|
|
}
|
|
|
$regx = "/^(\d{6})+(\d{4})+(\d{2})+(\d{2})+(\d{3})([0-9]|X)$/";
|
|
|
@preg_match($regx, $id, $arr_split);
|
|
|
$dtm_birth = $arr_split[2] . '/' . $arr_split[3]. '/' .$arr_split[4];
|
|
|
if(!strtotime($dtm_birth))
|
|
|
{
|
|
|
return false;
|
|
|
}
|
|
|
else
|
|
|
{
|
|
|
|
|
|
|
|
|
$arr_int = array(7, 9, 10, 5, 8, 4, 2, 1, 6, 3, 7, 9, 10, 5, 8, 4, 2);
|
|
|
$arr_ch = array('1', '0', 'X', '9', '8', '7', '6', '5', '4', '3', '2');
|
|
|
$sign = 0;
|
|
|
for ( $i = 0; $i < 17; $i++ )
|
|
|
{
|
|
|
$b = (int) $id[$i];
|
|
|
$w = $arr_int[$i];
|
|
|
$sign += $b * $w;
|
|
|
}
|
|
|
$n = $sign % 11;
|
|
|
$val_num = $arr_ch[$n];
|
|
|
if ($val_num != substr($id,17, 1))
|
|
|
{
|
|
|
return false;
|
|
|
}
|
|
|
else
|
|
|
{
|
|
|
return true;
|
|
|
}
|
|
|
}
|
|
|
}
|
|
|
|
|
|
function checkRefererHost(){
|
|
|
if(!$_SERVER['HTTP_REFERER'])return false;
|
|
|
$url_arr = parse_url($_SERVER['HTTP_REFERER']);
|
|
|
$http_host = $_SERVER['HTTP_HOST'];
|
|
|
if(strpos($http_host,':'))$http_host = substr($http_host, 0, strpos($http_host, ':'));
|
|
|
return $url_arr['host'] === $http_host;
|
|
|
}
|
|
|
function randFloat($min=0, $max=1){
|
|
|
return $min + mt_rand()/mt_getrandmax() * ($max-$min);
|
|
|
}
|
|
|
|
|
|
function check_cert($idcard, $name, $phone){
|
|
|
global $conf;
|
|
|
$appcode = $conf['cert_appcode'];
|
|
|
$url = 'http://phone3.market.alicloudapi.com/phonethree';
|
|
|
$post = ['idcard'=>$idcard, 'phone'=>$phone, 'realname'=>$name];
|
|
|
$data = get_curl($url.'?'.http_build_query($post), 0,0,0,0,0,0, ['Authorization: APPCODE '.$appcode, 'Content-Type: application/x-www-form-urlencoded; charset=UTF-8']);
|
|
|
$arr=json_decode($data,true);
|
|
|
if(array_key_exists('code',$arr) && $arr['code']==200){
|
|
|
return ['code'=>0, 'msg'=>$arr['msg']];
|
|
|
}elseif(array_key_exists('msg',$arr)){
|
|
|
return ['code'=>-1, 'msg'=>$arr['msg']];
|
|
|
}else{
|
|
|
return ['code'=>-2, 'msg'=>'返回结果解析失败'];
|
|
|
}
|
|
|
}
|
|
|
function check_corp_cert($companyName, $creditNo, $legalPerson){
|
|
|
global $conf;
|
|
|
$appcode = $conf['cert_appcode2'];
|
|
|
$url = 'http://companythree.shumaidata.com/companythree/check';
|
|
|
$post = ['companyName'=>$companyName, 'creditNo'=>$creditNo, 'legalPerson'=>$legalPerson];
|
|
|
$data = get_curl($url.'?'.http_build_query($post), 0, 0,0,0,0,0, ['Authorization: APPCODE '.$appcode, 'Content-Type: application/x-www-form-urlencoded; charset=UTF-8']);
|
|
|
$arr=json_decode($data,true);
|
|
|
if(array_key_exists('code',$arr) && $arr['code']==200){
|
|
|
if($arr['data']['result']==0){
|
|
|
return ['code'=>0, 'msg'=>$arr['data']['desc']];
|
|
|
}else{
|
|
|
return ['code'=>-1, 'msg'=>$arr['data']['desc']=='不一致'?'公司与法人信息不一致':$arr['data']['desc']];
|
|
|
}
|
|
|
}elseif(array_key_exists('msg',$arr)){
|
|
|
return ['code'=>-1, 'msg'=>$arr['msg']];
|
|
|
}else{
|
|
|
return ['code'=>-2, 'msg'=>'返回结果解析失败'];
|
|
|
}
|
|
|
}
|
|
|
function show_cert_type($certtype){
|
|
|
if($certtype == 1){
|
|
|
return '企业实名认证';
|
|
|
}else{
|
|
|
return '个人实名认证';
|
|
|
}
|
|
|
}
|
|
|
function show_cert_method($certmethod){
|
|
|
if($certmethod == 1){
|
|
|
return '微信快捷认证';
|
|
|
}elseif($certmethod == 2){
|
|
|
return '手机号三要素认证';
|
|
|
}elseif($certmethod == 3){
|
|
|
return '人工审核认证';
|
|
|
}else{
|
|
|
return '支付宝快捷认证';
|
|
|
}
|
|
|
}
|
|
|
|
|
|
function randomFloat($min = 0, $max = 1) {
|
|
|
$num = $min + mt_rand() / mt_getrandmax() * ($max - $min);
|
|
|
return sprintf("%.2f",$num);
|
|
|
}
|
|
|
|
|
|
function wx_get_access_token($appid, $secret) {
|
|
|
global $DB;
|
|
|
$row = $DB->getRow("SELECT id FROM pre_weixin WHERE appid='{$appid}' LIMIT 1");
|
|
|
if($row) return $row['id'];
|
|
|
return false;
|
|
|
}
|
|
|
|
|
|
function wxminipay_jump_scheme($wid, $orderid){
|
|
|
global $conf, $order, $siteurl;
|
|
|
if($conf['wxminipay_path']) {
|
|
|
$path = $conf['wxminipay_path'];
|
|
|
$query = 'orderid='.$orderid.'&sign='.md5(SYS_KEY.$orderid.SYS_KEY);
|
|
|
}else{
|
|
|
$jump_url = $siteurl.'pay/wxminipay/'.$orderid.'/';
|
|
|
$path = 'pages/pay/pay';
|
|
|
$query = 'money='.$order['realmoney'].'&url='.$jump_url;
|
|
|
}
|
|
|
$wechat = new \lib\wechat\WechatAPI($wid);
|
|
|
return $wechat->generate_scheme($path, $query);
|
|
|
}
|
|
|
|
|
|
function checkDomain($domain){
|
|
|
if(empty($domain) || !preg_match('/^[-$a-z0-9_*.]{2,512}$/i', $domain) || (stripos($domain, '.') === false) || substr($domain, -1) == '.' || substr($domain, 0 ,1) == '.' || substr($domain, 0 ,1) == '*' && substr($domain, 1 ,1) != '.' || substr_count($domain, '*')>1 || strpos($domain, '*')>0 || strlen($domain)<4) return false;
|
|
|
return true;
|
|
|
}
|
|
|
|
|
|
|
|
|
function combinepay_submoneys($money){
|
|
|
global $conf;
|
|
|
if(!$conf['wxcombine_open'] || !$conf['wxcombine_minmoney']) return false;
|
|
|
if($money >= intval($conf['wxcombine_minmoney']*100)){
|
|
|
$subnum = 3;
|
|
|
$submoney = intval($money/$subnum);
|
|
|
while($submoney > intval($conf['wxcombine_submoney']*100)){
|
|
|
$subnum++;
|
|
|
$submoney = intval($money/$subnum);
|
|
|
if($subnum==50)break;
|
|
|
}
|
|
|
$submoneys = [];
|
|
|
for($i=0;$i<$subnum;$i++){
|
|
|
$submoneys[] = $submoney;
|
|
|
}
|
|
|
$mod = $money%$subnum;
|
|
|
if($mod > 0){
|
|
|
for($i=0;$i<$mod;$i++){
|
|
|
$submoneys[$i] += 1;
|
|
|
}
|
|
|
}
|
|
|
return $submoneys;
|
|
|
}
|
|
|
return false;
|
|
|
}
|
|
|
|
|
|
function get_invite_code($uid){
|
|
|
$str = (string)$uid;
|
|
|
$tmp = '';
|
|
|
for($i=0;$i<strlen($str);$i++){
|
|
|
$tmp.=substr($str,$i,1) ^ substr(SYS_KEY,$i,1);
|
|
|
}
|
|
|
return str_replace('=','',base64_encode($tmp));
|
|
|
}
|
|
|
|
|
|
function get_invite_uid($code){
|
|
|
$str = base64_decode($code);
|
|
|
$tmp = '';
|
|
|
for($i=0;$i<strlen($str);$i++){
|
|
|
$tmp.=substr($str,$i,1) ^ substr(SYS_KEY,$i,1);
|
|
|
}
|
|
|
return $tmp;
|
|
|
}
|
|
|
|
|
|
function currency_convert($from, $to, $amount){
|
|
|
$param = [
|
|
|
'from' => $from,
|
|
|
'to' => $to,
|
|
|
'amount' => $amount
|
|
|
];
|
|
|
$url = 'https://api.exchangerate.host/convert?'.http_build_query($param);
|
|
|
$data = get_curl($url);
|
|
|
$arr = json_decode($data, true);
|
|
|
if($arr['success']===true){
|
|
|
return $arr['result'];
|
|
|
}else{
|
|
|
throw new Exception('汇率转换失败');
|
|
|
}
|
|
|
}
|
|
|
|
|
|
function checkPayVerifyOpen($pid){
|
|
|
global $DB, $conf, $clientip;
|
|
|
if($conf['pay_verify'] == 3) return true;
|
|
|
elseif($conf['pay_verify'] == 2){
|
|
|
$uid_arr = explode('|', $conf['pay_verify_check_uid']);
|
|
|
if(in_array($pid, $uid_arr)) return true;
|
|
|
}
|
|
|
elseif($conf['pay_verify'] == 1){
|
|
|
$second = intval($conf['pay_verify_check_second']);
|
|
|
$count = intval($conf['pay_verify_check_count']);
|
|
|
$sucrate = floatval($conf['pay_verify_check_rate']);
|
|
|
if($second>0 || $count>0 || $sucrate>0){
|
|
|
$total_num=$DB->getColumn("SELECT count(*) FROM pre_order WHERE uid='$pid' AND addtime>=DATE_SUB(NOW(), INTERVAL {$second} SECOND)");
|
|
|
$succ_num=$DB->getColumn("SELECT count(*) FROM pre_order WHERE uid='$pid' AND addtime>=DATE_SUB(NOW(), INTERVAL {$second} SECOND) AND status>0");
|
|
|
if($total_num >= $count){
|
|
|
$succ_rate = round($succ_num * 100 / $total_num, 2);
|
|
|
if($succ_rate < $sucrate){
|
|
|
return true;
|
|
|
}
|
|
|
}
|
|
|
}
|
|
|
$ipcheck = intval($conf['pay_verify_check_ip']);
|
|
|
if($ipcheck>0){
|
|
|
$orders = $DB->getAll("SELECT status FROM pre_order WHERE `ip`='$clientip' AND addtime>=DATE_SUB(NOW(), INTERVAL 3600 SECOND) ORDER BY addtime DESC LIMIT {$ipcheck}");
|
|
|
$fail_num = 0;
|
|
|
foreach($orders as $row){
|
|
|
if($row['status'] == 0) $fail_num++;
|
|
|
}
|
|
|
if($fail_num>=$ipcheck){
|
|
|
return true;
|
|
|
}
|
|
|
}
|
|
|
}
|
|
|
return false;
|
|
|
}
|
|
|
|
|
|
function showPayVerifyPage($defend_key, $query_arr){
|
|
|
global $conf, $cdnpublic;
|
|
|
if($conf['pay_verify_type'] == 0){
|
|
|
$key = time().$defend_key.rand(111111,999999);
|
|
|
include PAYPAGE_ROOT.'verify_jump.php';
|
|
|
}elseif($conf['pay_verify_type'] == 1){
|
|
|
include PAYPAGE_ROOT.'verify_invisible.php';
|
|
|
}elseif($conf['pay_verify_type'] == 2){
|
|
|
include PAYPAGE_ROOT.'verify_slide.php';
|
|
|
}
|
|
|
exit;
|
|
|
}
|
|
|
|
|
|
function getDefendKey($pid, $trade_no){
|
|
|
return md5(SYS_KEY.$pid.'_'.$trade_no.SYS_KEY);
|
|
|
}
|
|
|
|
|
|
|
|
|
function verify_captcha($user_id = 'public'){
|
|
|
global $conf, $clientip;
|
|
|
$GtSdk = new \lib\GeetestLib($conf['captcha_id'], $conf['captcha_key']);
|
|
|
$data = array(
|
|
|
'user_id' => $user_id,
|
|
|
'client_type' => "web",
|
|
|
'ip_address' => $clientip
|
|
|
);
|
|
|
if ($_SESSION['gtserver'] == 1) {
|
|
|
return $GtSdk->success_validate($_POST['geetest_challenge'], $_POST['geetest_validate'], $_POST['geetest_seccode'], $data);
|
|
|
}else{
|
|
|
return $GtSdk->fail_validate($_POST['geetest_challenge'],$_POST['geetest_validate'],$_POST['geetest_seccode']);
|
|
|
}
|
|
|
}
|
|
|
|
|
|
|
|
|
function verify_captcha4(){
|
|
|
if(!isset($_POST['captcha_id']) || !isset($_POST['lot_number']) || !isset($_POST['pass_token']) || !isset($_POST['gen_time']) || !isset($_POST['captcha_output'])) return false;
|
|
|
$real_ip = real_ip();
|
|
|
$url = 'http://gt4.geetest.com/demov4/demo/login';
|
|
|
$param = ['captcha_id'=>$_POST['captcha_id'], 'lot_number'=>$_POST['lot_number'], 'pass_token'=>$_POST['pass_token'], 'gen_time'=>$_POST['gen_time'], 'captcha_output'=>$_POST['captcha_output']];
|
|
|
$referer = 'http://gt4.geetest.com/demov4/invisible-bind-zh.html';
|
|
|
$httpheader[] = "X-Real-IP: ".$real_ip;
|
|
|
$httpheader[] = "X-Forwarded-For: ".$real_ip;
|
|
|
$data = get_curl($url.'?'.http_build_query($param),0,$referer,0,0,0,0,$httpheader);
|
|
|
$arr = json_decode($data, true);
|
|
|
if(isset($arr['result']) && $arr['result'] == 'success'){
|
|
|
return true;
|
|
|
}
|
|
|
return false;
|
|
|
}
|
|
|
|
|
|
function getGroupConfig($gid){
|
|
|
global $DB;
|
|
|
$input_key = ['settle_rate', 'transfer_rate', 'invite_rate'];
|
|
|
$grouprow=$DB->getRow("SELECT config FROM pre_group WHERE gid='{$gid}' LIMIT 1");
|
|
|
if(!$grouprow)$grouprow=$DB->getRow("SELECT config FROM pre_group WHERE gid=0 LIMIT 1");
|
|
|
$config = [];
|
|
|
if(!$grouprow) return $config;
|
|
|
if($grouprow['config']){
|
|
|
$arr = json_decode($grouprow['config'], true);
|
|
|
foreach($arr as $key=>$value){
|
|
|
if(in_array($key, $input_key) && !isNullOrEmpty($value) || !in_array($key, $input_key) && $value>0){
|
|
|
if($key == 'settle_type') $value = $value-1;
|
|
|
$config[$key] = $value;
|
|
|
}
|
|
|
}
|
|
|
}
|
|
|
return $config;
|
|
|
}
|
|
|
|
|
|
function get_alipay_userid(){
|
|
|
global $conf;
|
|
|
if($conf['login_alipay']==0) throw new Exception('未开启支付宝快捷登录');
|
|
|
$channel = \lib\Channel::get($conf['login_alipay']);
|
|
|
if(!$channel) throw new Exception('当前支付通道信息不存在');
|
|
|
$alipay_config = require(PLUGIN_ROOT.$channel['plugin'].'/inc/config.php');
|
|
|
try{
|
|
|
$oauth = new \Alipay\AlipayOauthService($alipay_config);
|
|
|
if(isset($_GET['auth_code'])){
|
|
|
$result = $oauth->getToken($_GET['auth_code']);
|
|
|
if(!empty($result['user_id'])){
|
|
|
$user_id = $result['user_id'];
|
|
|
$user_type = 'userid';
|
|
|
}else{
|
|
|
$user_id = $result['open_id'];
|
|
|
$user_type = 'openid';
|
|
|
}
|
|
|
return [$user_type, $user_id];
|
|
|
}else{
|
|
|
$redirect_uri = (is_https() ? 'https://' : 'http://') . $_SERVER['HTTP_HOST'] . $_SERVER['REQUEST_URI'];
|
|
|
$oauth->oauth($redirect_uri);
|
|
|
}
|
|
|
}catch(Exception $e){
|
|
|
throw new Exception('支付宝快捷登录失败!'.$e->getMessage());
|
|
|
}
|
|
|
}
|
|
|
|
|
|
function getBankCardInfo($cardno){
|
|
|
$url = 'http://api.cccyun.cc/bankcard.php?cardno='.$cardno;
|
|
|
$data = get_curl($url);
|
|
|
$arr = json_decode($data, true);
|
|
|
if(isset($arr['code']) && $arr['code']==0){
|
|
|
return $arr['data'];
|
|
|
}else{
|
|
|
throw new Exception($arr['msg']?$arr['msg']:'银行卡信息查询失败');
|
|
|
}
|
|
|
} |
