Browse Source

移除多余验证码

tags/6.2.0
tianya 1 year ago
parent
commit
baa198aaf2
4 changed files with 0 additions and 325 deletions
  1. +0
    -126
      src/theme/plus/car.htm
  2. +0
    -184
      src/theme/plus/carbuyaction.htm
  3. +0
    -6
      src/user/edit_baseinfo.php
  4. +0
    -9
      src/user/templets/edit_baseinfo.htm

+ 0
- 126
src/theme/plus/car.htm View File

@@ -1,126 +0,0 @@
<!DOCTYPE html>
<html>
<head>
<meta charset="{dede:global name='cfg_soft_lang'/}">
<meta name="viewport" content="width=device-width,initial-scale=1,shrink-to-fit=no">
<title>订单号{dede:var.carts.orders_id/}-购物车-<?php echo $cfg_webname;?></title>
<link rel="stylesheet" href="{dede:global.cfg_cmsurl/}/static/web/css/bootstrap.min.css">
<link rel="stylesheet" href="{dede:global.cfg_cmsurl/}/static/web/font/css/font-awesome.min.css">
<link rel="stylesheet" href="{dede:global.cfg_cmsurl/}/static/web/css/style.css">
<script src="{dede:global.cfg_cmsurl/}/static/web/js/jquery.min.js"></script>
</head>
<body>
<?php pasterTempletDiy('top.htm');?>
<div class="container py-3">
<div class="row">
<div class="col-md-12">
<h4 class="mb-3">购物车:{dede:var.carts.orders_id/}订单号</h4>
<div id="errorChickCookie"></div>
<form id="form1" name="form1" method="post" action="posttocar.php">
<input id="dopost" name="do" type="hidden" value="del">
<table width="100%" cellpadding="0" cellspacing="0" class="table trlist">
<thead>
<tr>
<td colspan="6">商品列表</td>
</tr>
</thead>
<tbody>
<tr>
<th>选择</th>
<th>编号</th>
<th>名称</th>
<th>数量</th>
<th>单价(元)</th>
<th>操作</th>
</tr>
{dede:array.Items}
<tr>
<td><input type="checkbox" name="ids[]" value="{dede:value.id/}"></td>
<td>{dede:value.id/}</td>
<td><a href="view.php?aid={dede:value.id/}" target="_bank">{dede:value.title/}</a></td>
<td>
<input name="buynum{dede:value.id/}" type="text" id="buynum{dede:value.id/}" value="{dede:value.buynum/}" size="5" maxlength="5">
<small>{dede:value.units/}</small>
</td>
<td>{dede:value.price/}</td>
<td><a href="posttocar.php?do=del&ids={dede:value.id/}">删除</a></td>
</tr>
{/dede:array}
</tbody>
<tfoot>
<tr>
<td colspan="6" align="right">
<div style="float:left">共 <span class="text-danger">{dede:var.carts.cart_count/}</span> 件商品,合计: <span class='text-danger'>{dede:var.carts.price_count/}</span> 元</div>
<div style="float:right">
<!--<input type="button" value="打印购物车" class="btn-2" onclick="printPage(1)"/>-->
<input type="button" value="更新订单号" class="btn btn-success" onClick="makeCarId()">
<input type="button" value="删除已选定" class="btn btn-success" onClick="DelPost()">
<input type="button" value="清空" onClick="if (confirm('确定清空购物车中的商品吗')){ location='posttocar.php?do=clear' }" class="btn btn-success">
<input onclick="ChangePost()" type="button" value="更新数量" class="btn btn-success">
<input type="button" value="下一步" onclick="location='carbuyaction.php'" class="btn btn-success">
</div>
</td>
</tr>
</tfoot>
</table>
</form>
</div>
</div>
</div>
<?php pasterTempletDiy('foot.htm');?>
<!--购物车列表操作javascript请不要随意改动-->
<script>
//遍历checkbox使之全选中或反选
function CheckAll() {
for (var i = 0; i < document.form1.elements.length; i++) {
var e = document.form1.elements[i];
e.checked == true ? e.checked = false : e.checked = true;
}
}
//改变表单dopost值为:update后submit提交表单
function ChangePost() {
CheckAll();
document.getElementById("dopost").value = 'update';
document.form1.submit();
}
//改变表单dopost值为:del后submit提交表单
function DelPost() {
document.getElementById("dopost").value = 'del';
document.form1.submit();
}
//AJAX产生一个新的订单编号
function makeCarId() {
$.ajax({
type: "POST",
url: "car.php",
data: "dopost=makeid",
dataType: 'text',
success: function(result) {
$("#carId").html(result);
}
});
}
//Print Page
function printPage(oper) {
if (oper < 10) {
bdhtml = window.document.body.innerHTML; //获取当前页的网页代码
sprnstr = "<!--startprint" + oper + "-->"; //设置打印开始区域
eprnstr = "<!--endprint" + oper + "-->"; //设置打印结束区域
prnhtml = bdhtml.substring(bdhtml.indexOf(sprnstr) + 18); //从开始代码向后取html
prnhtml = prnhtml.substring(0, prnhtml.indexOf(eprnstr)); //从结束代码向前取html
window.document.body.innerHTML = prnhtml;
window.print();
window.document.body.innerHTML = bdhtml;
} else {
window.print();
}
}
</script>
<script>
if (!navigator.cookieEnabled) {
$('#errorChickCookie').html('您浏览器的cookie功能被禁用,请启用此功能');
$('.buycar').hide();
}
</script>
</body>
</html>

+ 0
- 184
src/theme/plus/carbuyaction.htm View File

@@ -1,184 +0,0 @@
<!DOCTYPE html>
<html>
<head>
<meta charset="{dede:global name='cfg_soft_lang'/}">
<meta name="viewport" content="width=device-width,initial-scale=1,shrink-to-fit=no">
<title>下单购买{dede:var.carts.orders_id/}-购物车-<?php echo $cfg_webname;?></title>
<link rel="stylesheet" href="{dede:global.cfg_cmsurl/}/static/web/css/bootstrap.min.css">
<link rel="stylesheet" href="{dede:global.cfg_cmsurl/}/static/web/font/css/font-awesome.min.css">
<link rel="stylesheet" href="{dede:global.cfg_cmsurl/}/static/web/css/style.css">
<script src="{dede:global.cfg_cmsurl/}/static/web/js/jquery.min.js"></script>
</head>
<body>
<?php pasterTempletDiy('top.htm');?>
<div class="container py-3">
<div class="row">
<div class="col-md-12">
<h4 class="mb-3">商品购买</h4>
<?php if (!$cfg_ml->IsLogin()){?>
<table cellpadding="0" cellspacing="0" class="table">
<tr>
<td class="btn-danger">欢迎来到本网站,请 <a href="../user/login.php?gourl=<?php echo urlencode(GetCurUrl());?>">登录</a> 或 <a href="../user/index_do.php?fmdo=user&dopost=regnew">注册</a></td>
</tr>
</table>
<?php }?>
<form id="fixupformid" name="fixupform" action="carbuyaction.php" method="post">
<input name="do" type="hidden" value="clickout">
<table cellpadding="0" cellspacing="0" class="table">
<tr>
<td class="thisclass">下单购买</td>
<td>买家付款</td>
<td>确认收货</td>
<td>交易结束 </td>
</tr>
</table>
<table width="100%" cellpadding="0" cellspacing="0" class="table">
<thead>
<tr>
<td colspan="6">确认订单信息</td>
</tr>
</thead>
<tbody>
<tr>
<td width="180">订单id</td>
<td>{dede:var.carts.orders_id/}</td>
</tr>
<tr>
<td width="180">订单价格</td>
<td><strong id="priceCount">{dede:var.carts.price_count/}</strong> 元</td>
</tr>
<tr>
<td width="180">商品总数</td>
<td>{dede:var.carts.cart_count/}件</td>
</tr>
<tr>
<td width="180">状态</td>
<td>下单</td>
</tr>
</tbody>
</table>
<table width="100%" cellpadding="0" cellspacing="0" class="table">
<thead>
<tr>
<td colspan="6">配送方式</td>
</tr>
</thead>
<tbody>
{dede:array.shops_deliveryarr}
<tr>
<td width="10%"><input type="radio" name="pid" value="{dede:value.pid/}">
</td>
<td width="90%">
<p>{dede:value.dname/} <span class="fc-f90">手续费:{dede:value.price/}元</span> <small>{dede:value.des/}.</small></p>
</td>
</tr>
{/dede:array}
</tbody>
</table>
<table width="100%" cellpadding="0" cellspacing="0" class="table">
<thead>
<tr>
<td colspan="8">支付方式</td>
</tr>
</thead>
<tbody>
<tr>
<td></td>
<td align="center" valign="middle" style="vertical-align:middle;">名称</td>
<td align="center">描述</td>
<td align="center">手续费</td>
</tr>
{dede:array.shops_paymentarr}
<tr onMouseMove="javascript:this.bgColor='#f8f8f8';" onMouseOut="javascript:this.bgColor='#ffffff';">
<td width="10%" align="right" style="vertical-align:middle"><input type="radio" name="paytype" value="{dede:value.id/}"></td>
<td width="20%" valign="middle" style="vertical-align:middle">{dede:value.name/}</td>
<td width="60%">{dede:value.description/}</td>
<td width="10%" align="center"> <span class="fc-f60">{dede:value.fee/}元</span></td>
</tr>
{/dede:array}
</tbody>
</table>
<table width="100%" cellpadding="0" cellspacing="0" class="table">
<thead>
<tr>
<td colspan="6">确认订单信息</td>
</tr>
</thead>
<tbody>
<tr>
<td width="180">街道地址</td>
<td>
<input name="address" id="address" type="text" size="50">
<span class="red">*</span>
<small>请填写街道地址,不能为空!</small>
</td>
</tr>
<tr>
<td width="180">收货人</td>
<td>
<input name="postname" id="postname" type="text" size="20">
<span class="red">*</span><small>请填写收货人姓名</small>
</td>
</tr>
<tr>
<td width="180">E-Mail</td>
<td>
<input name="email" id="email" type="text" size="30">
<small>可选,联系您的电子邮箱</small>
</td>
</tr>
<tr>
<td width="180">手机/电话</td>
<td><input name="tel" id="tel" type="text" size="30">
<span class="red">*</span><small>请填写可以联系到您的电话</small>
</td>
</tr>
<tr>
<td width="180">邮编</td>
<td>
<input name="zip" id="zip" type="text" size="30">
<span class="red">*</span><small>请填写格式如:300030</small>
</td>
</tr>
</tbody>
</table>
<table width="100%" cellpadding="0" cellspacing="0" class="table">
<thead>
<tr>
<td colspan="6">确认订单信息</td>
</tr>
</thead>
<tbody>
<tr>
<td width="180">购买留言</td>
<td>
<textarea name="des" id="des" cols="50" rows="5"></textarea>
<p><small>请在购买留言中填写您对商品的特殊要求,如“我要红色的小码”(100个字以内)</small></p>
</td>
</tr>
<tr>
<td width="180">验证码</td>
<td>
<input name="validate" type="text" id="vdcode2" size="10" class="text-uppercase">
<img src="../apps/vdimgck.php" onclick="this.src=this.src+'?'" title="验证码">
</td>
</tr>
</tbody>
<tfoot>
<tr>
<td colspan="2"><button type="submit" class="btn btn-success">确认下单</button></td>
</tr>
</tfoot>
</table>
</form>
</div>
</div>
</div>
<?php pasterTempletDiy('foot.htm');?>
<script>
function vdimgck() {
document.getElementById("vdimgck_img").src = '../apps/vdimgck.php?' + Math.random();
}
</script>
</body>
</html>

+ 0
- 6
src/user/edit_baseinfo.php View File

@@ -14,14 +14,8 @@ $pwd2 = (empty($pwd2)) ? "" : $pwd2;
$row = $dsql->GetOne("SELECT * FROM `#@__member` WHERE mid='".$cfg_ml->M_ID."'");
$face = $row['face'];
if ($dopost == 'save') {
$svali = GetCkVdValue();
//校验CSRF
CheckCSRF();
if (strtolower($vdcode) != $svali || $svali == '') {
ReSETVdValue();
ShowMsg('验证码错误', '-1');
exit();
}
if (function_exists('password_hash') && !empty($row['pwd_new'])) {
if (!is_array($row) || !password_verify($oldpwd, $row['pwd_new'])) {
ShowMsg('您输入的旧密码错误或没填写,不允许修改资料', '-1');


+ 0
- 9
src/user/templets/edit_baseinfo.htm View File

@@ -95,15 +95,6 @@
<label><input type="radio" name="sex" value="保密" <?php if ($row['sex']=='保密') echo " checked='checked' ";?>> 保密</label>
</div>
</div>
<div class="form-group row">
<label for="iptValidate" class="col-sm-2 col-form-label">验证码</label>
<div class="col-sm-10">
<div class="input-group">
<input name="vdcode" placeholder="请输入验证码" type="text" class="form-control text-uppercase" id="iptValidate">
<img src="<?php echo $cfg_cmsurl;?>/apps/vdimgck.php" id="validateimg" onclick="this.src='<?php echo $cfg_cmsurl;?>/apps/vdimgck.php?'+new Date().getTime()+Math.round(Math.random() * 10000)" title="验证码">
</div>
</div>
</div>
<div class="form-group row">
<div class="col-sm-10"><button type="submit" class="btn btn-success">保存</button></div>
</div>


Loading…
Cancel
Save