PageRenderTime 27ms CodeModel.GetById 7ms RepoModel.GetById 0ms app.codeStats 0ms

/tuandaohang/System/Libraries/SP_Auth.php

http://phpfor.googlecode.com/
PHP | 148 lines | 96 code | 24 blank | 28 comment | 17 complexity | 5e789a364aab199f940210f8cfdf5980 MD5 | raw file
    

  1. <?php
    2. 

  2. 

  3. class SP_Auth {
    4. 

  4. 

  5.     var $LOGIN_FLAG = false;
    6. 

  6.     
    7. 

  7.     var $M_info = NULL;
    8. 

  8. 

  9.     var $db;
    10. 

  10.     
    11. 

  11.     function SP_Auth() {
    12. 

  12.         
    13. 

  13.         $tmpconfig =& Loader::config();
    14. 

  14.         $this->config = $tmpconfig['auth'];
    15. 

  15. 

  16.         $this->db =& Loader::database('db');
    17. 

  17. 

  18.         if(isset($_COOKIE[$this->config['cookie_name']])){
    19. 

  19. 

  20.             $auth = $this->authcode(
    21. 

  21.                 $_COOKIE[$this->config['cookie_name']],
    22. 

  22.                 'DECODE', 
    23. 

  23.                 md5($this->config['auth_key'].$_SERVER['HTTP_USER_AGENT'])
    24. 

  24.             );
    25. 

  25. 

  26.             $auth = explode("\t",$auth);
    27. 

  27.             $uid = isset($auth[1])?$auth[1]:0;
    28. 

  28.             $upass = isset($auth[0])?$auth[0]:'';
    29. 

  29. 

  30.             $this->db->select($this->config['db_table'],'*',$this->config['db_uid']."='$uid'");
    31. 

  31.             $member_info = $this->db->getRow();
    32. 

  32. 

  33.             if(!$member_info){
    34. 

  34.                 $this->LOGIN_FLAG = false;
    35. 

  35.             }else{
    36. 

  36.                 if($member_info[$this->config['db_upass']] == $upass){    
    37. 

  37.                     $this->LOGIN_FLAG = true;
    38. 

  38.                     $this->M_info = $member_info;
    39. 

  39.                 }else{
    40. 

  40.                     $this->LOGIN_FLAG = false;
    41. 

  41.                 }
    42. 

  42.             }
    43. 

  43.         }else{
    44. 

  44.             $this->LOGIN_FLAG = false;
    45. 

  45.         }
    46. 

  46.     }
    47. 

  47.     
    48. 

  48.     /**
    49. 

  49.      * ????????
    50. 

  50.      *
    51. 

  51.      * @return Bool
    52. 

  52.      */
    53. 

  53.     function isLogedin() {
    54. 

  54.         return $this->LOGIN_FLAG;
    55. 

  55.     }
    56. 

  56.     
    57. 

  57.     /**
    58. 

  58.      * ??????
    59. 

  59.      *
    60. 

  60.      * @param String $key
    61. 

  61.      * @param String $default
    62. 

  62.      * @return String
    63. 

  63.      */
    64. 

  64.     function getInfo($key,$default = '') {
    65. 

  65.         return isset ($this->M_info["$key"]) ? $this->M_info["$key"] : $default;
    66. 

  66.     }
    67. 

  67.     
    68. 

  68.     /**
    69. 

  69.      * ??????
    70. 

  70.      *
    71. 

  71.      * @param String $loginname
    72. 

  72.      * @param String $password
    73. 

  73.      * @param String $expire_time
    74. 

  74.      * @return Bool
    75. 

  75.      */
    76. 

  76.     function setLogin($loginname,$password,$expire_time = 0){
    77. 

  77. 

  78.         $this->db->select($this->config['db_table'],'*',$this->config['db_loginname']."='$loginname'");
    79. 

  79. 

  80.         $member_info = $this->db->getRow();
    81. 

  81. 

  82.         if($member_info && $member_info[$this->config['db_upass']] == $password){
    83. 

  83. 

  84.             $this->LOGIN_FLAG = true;
    85. 

  85. 

  86.             $this->M_info = $member_info;
    87. 

  87.             
    88. 

  88.             $my_auth = $this->authcode(
    89. 

  89.                 $password."\t".$member_info[$this->config['db_uid']],
    90. 

  90.                 'ENCODE',
    91. 

  91.                 md5($this->config['auth_key'].$_SERVER['HTTP_USER_AGENT'])
    92. 

  92.             );
    93. 

  93.             
    94. 

  94.             setcookie($this->config['cookie_name'],$my_auth,$expire_time,$this->config['cookie_path'],$this->config['cookie_domain']);
    95. 

  95.             return true;
    96. 

  96.         }else{
    97. 

  97.             return false;
    98. 

  98.         }
    99. 

  99.     }
    100. 

  100. 

  101.     function clearLogin(){
    102. 

  102.         setcookie($this->config['cookie_name'],'',- 86400 * 365,$this->config['cookie_path'],$this->config['cookie_domain']);
    103. 

  103.     }
    104. 

  104. 

  105.     /**
    106. 

  106.      * ????
    107. 

  107.      *
    108. 

  108.      * @param String $string
    109. 

  109.      * @param String $operation
    110. 

  110.      * @param String $key
    111. 

  111.      * @return String
    112. 

  112.      */
    113. 

  113.     function authcode($string, $operation, $key) {
    114. 

  114.         $key = md5 ( $key );
    115. 

  115.         $key_length = strlen ( $key );
    116. 

  116.         $string = $operation == 'DECODE' ? base64_decode ( $string ) : substr ( md5 ( $string . $key ), 0, 8 ) . $string;
    117. 

  117.         $string_length = strlen ( $string );
    118. 

  118.         $rndkey = $box = array ();
    119. 

  119.         $result = '';
    120. 

  120.         for($i = 0; $i <= 255; $i ++) {
    121. 

  121.             $rndkey [$i] = ord ( $key [$i % $key_length] );
    122. 

  122.             $box [$i] = $i;
    123. 

  123.         }
    124. 

  124.         for($j = $i = 0; $i < 256; $i ++) {
    125. 

  125.             $j = ($j + $box [$i] + $rndkey [$i]) % 256;
    126. 

  126.             $tmp = $box [$i];
    127. 

  127.             $box [$i] = $box [$j];
    128. 

  128.             $box [$j] = $tmp;
    129. 

  129.         }
    130. 

  130.         for($a = $j = $i = 0; $i < $string_length; $i ++) {
    131. 

  131.             $a = ($a + 1) % 256;
    132. 

  132.             $j = ($j + $box [$a]) % 256;
    133. 

  133.             $tmp = $box [$a];
    134. 

  134.             $box [$a] = $box [$j];
    135. 

  135.             $box [$j] = $tmp;
    136. 

  136.             $result .= chr ( ord ( $string [$i] ) ^ ($box [($box [$a] + $box [$j]) % 256]) );
    137. 

  137.         }
    138. 

  138.         if ($operation == 'DECODE') {
    139. 

  139.             if (substr ( $result, 0, 8 ) == substr ( md5 ( substr ( $result, 8 ) . $key ), 0, 8 )) {
    140. 

  140.                 return substr ( $result, 8 );
    141. 

  141.             } else {
    142. 

  142.                 return '';
    143. 

  143.             }
    144. 

  144.         } else {
    145. 

  145.             return str_replace ( '=', '', base64_encode ( $result ) );
    146. 

  146.         }
    147. 

  147.     }
    148. 

  148. }
    149.