0, 'message' => ''); $json = new JSON; $mobile = trim($_POST['mobile']); $old_log = ''; if(file_exists("request.log")){ $old_log = file_get_contents("request.log"); } $log = "ip=".real_ip()." mobile=".$mobile." time=".date('Y-m-d H:i:s',time())."\r\n"; $new_log = $old_log.$log; file_put_contents("request.log",$new_log); $denied_log = ''; if(file_exists("denied.log")){ $denied_log = file_get_contents("denied.log"); } $ip_array = explode(",", $denied_log); if(in_array(real_ip(), $ip_array)) { $result['error'] = 6; $result['message'] = '频率过快'; die($json->encode($result)); } $count = $db->getOne("SELECT COUNT(id) FROM " . $ecs->table('verifycode') ." WHERE getip='" . real_ip() . "' AND dateline>'" . gmtime() ."'-120"); if ($count >= 5 && !stristr($denied_log, $_G['clientip'])) { $log = real_ip().","; $new_log = $denied_log.$log; file_put_contents("denied.log",$new_log); $result['error'] = 6; $result['message'] = '频率过快'; die($json->encode($result)); } if ($_REQUEST['step'] == 'getverifycode') { require(dirname(__FILE__) . '/send.php'); //require(dirname(__FILE__) . '/includes/lib_sms.php'); /* 是否开启手机短信验证 */ if($_CFG['sms_register'] == '0') { $result['error'] = 1; $result['message'] = '客户注册发送手机验证码未开启'; die($json->encode($result)); } /* 提交的手机号是否正确 */ //if (!ismobile($mobile)) // { // $result['error'] = 2; // $result['message'] = '手机号不正确'; // die($json->encode($result)); // } /* 提交的手机号是否已经注册帐号 */ $sql = "SELECT COUNT(user_id) FROM " . $ecs->table('users') ." WHERE mobile_phone = '$mobile'"; if ($db->getOne($sql) > 0) { $result['error'] = 3; $result['message'] = '手机号已经被注册，请重新输入！'; die($json->encode($result)); } /* 获取验证码请求是否获取过 */ $sql = "SELECT COUNT(id) FROM " . $ecs->table('verifycode') ." WHERE status=1 AND getip='" . real_ip() . "' AND dateline>'" . gmtime() ."'-"."60"; if ($db->getOne($sql) > 0) { $result['error'] = 4; $result['message'] = '每个ip每120秒只能获取一次验证码'; die($json->encode($result)); } $shuzi = "0123456789"; $verifycode = mc_random(6,$shuzi); $smarty->assign('user_mobile', $mobile); $smarty->assign('verify_code', $verifycode); $content = '您好，您的验证码'.$verifycode.';'; /* 发送注册手机短信验证 */ $ret = sendSMS($mobile, $content); $db->query("delete from ".$ecs->table('verifycode')." where mobile='$mobile'"); //插入获取验证码数据记录 $sql = "INSERT INTO " . $ecs->table('verifycode') . "(mobile, getip, verifycode, dateline) VALUES ('" . $mobile . "', '" . real_ip() . "', '$verifycode', '" . gmtime() ."')"; $db->query($sql); $result['error'] = 0; $result['message'] = '发送手机验证码成功'; die($json->encode($result)); // } // else // { // $result['error'] = 5; // $result['message'] = '发送手机验证码失败'; // die($json->encode($result)); // } } function mc_random($length,$char_str = 'abcdefghijklmnopqrstuvwxyz0123456789'){ $hash=''; $chars = $char_str; $max=strlen($chars); for($i=0;$i<$length;$i++){ $hash .=substr($chars,(rand(0,1000)%$max),1); } return $hash; } ?>