get_one("select a.*,b.name type_name from tb_user a, tb_user_type b where a.type_id = b.id and (cellphone = '{$cellphone}' or username='{$cellphone}') and a.enabled not in (0, -99)");
if(!$row) return null;
if(is_jdpw2($row['password'])) {
$row['jdmm'] = 1;
} else {
$row['jdmm'] = 0;
}
$row1 = $db->get_one("select * from tb_config where class = 'ONLY_CASH_AREA'");
$cash_fund = 0;
if($row1) {
$v = trim($row1['value'], ",");
if(in_array($row['area_id'], explode(',', $v))) $cash_fund = 1;
}
$row['cash_fund'] = $cash_fund;
return $row;
}
if($act == 'login') {
$cellphone = trim($_POST['cellphone']);
$password = trim($_POST['password']);
$yzm = trim($_POST['yzm']);
if($cellphone == '' || $password == '' || $yzm == '') exit;
@session_start();
if($yzm != strtolower($_SESSION['ftyzm'])) {
$_SESSION['ftyzm'] = '';
echoRs(0, '验证码错误!');
}
$_SESSION['ftyzm'] = '';
$user = get_user_by_phone2($cellphone);
if($user) {
$uid = $user['id'];
if($user['enabled'] == -1) {
echoRs(0, '账号被锁,请通过忘记密码或联系管理员重置登录密码!');
}
if($user['enabled'] != 1) {
echoRs(0, '帐号或密码错误');
}
if (md5($user['password'].$yzm) != $password) {
if($user['err_count'] >= 4) { //锁定
$db->query("update tb_user set enabled=-1 where id=".$uid);
echoRs(0, '密码不正确,账号被锁,请通过忘记密码或联系管理员重置登录密码!');
}
$db->query("update tb_user set err_count=err_count+1 where id=".$uid);
echoRs(0, '帐号或密码错误');
}
$db->query("update tb_user set err_count=0 where id=".$uid);
$token = md5(uniqid());
$set = "token='{$token}', ip='".$_SERVER['REMOTE_ADDR']."', login_time='".time()."', data='".addslashes(json_encode($user))."', expire_time='".(time()+86400)."'";
$row = $db->get_one("select * from tb_session where uid=".$uid);
if($row) {
$db->query("update tb_session set {$set} where uid=".$uid);
} else {
$db->query("insert into tb_session set {$set}, uid=".$uid);
}
unset($user['password']);
unset($user['weixin_openid']);
unset($user['yixin_openid']);
$user['token'] = $token;
$db->query("update tb_user set worker_id=0 where id=".$uid);
echoRs(1, 'ok', array('user' => $user, 'target' => 'fs'));
}
echoRs(0, '帐号或密码错误');
exit;
}
$cinfo = $_GET['cinfo'];
if($cinfo) {
$cinfo = unserialize(gzuncompress(base64_decode($cinfo)));
if($cinfo) {
setcookie("cellphone", $cinfo['cellphone'], time()+86400*365, "/m");
setcookie("password", $cinfo['password'], time()+86400*365, "/m");
setcookie("remember", $cinfo['remember'], time()+86400*365, "/m");
gredirect("login.php");
exit;
}
}
?>
点餐平台
" />
" />