Home Explore Help
Register Sign In
Apq
/
loveway-php
mirror of https://github.com/unknown-o/loveway-php.git
1
0
Fork 0
Files Issues 0 Wiki
Tree: 0b0a35223a
Branches Tags
loveway-php
/
api
/
admin.php

admin.php 2.3 KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950 
  1. <?php
    2. 

  2. header('content-type:application/json');
    3. 

  3. session_start();
    4. 

  4. include('../config.php');
    5. 

  5. include('../includes/function.php');
    6. 

  6. switch ($_POST['mode']) {
    7. 

  7.     case "login":
    8. 

  8.         $timestamp = $_POST['timestamp'];
    9. 

  9.         if ($_SESSION['vcode'] != md5($_POST['vcode'] . $VERIFICATION_KEY) && $IMAGE_VERIFICATION) {
    10. 

  10.             exit('{"code":-1,"msg":"抱歉,人机验证失败","result":""}');
    11. 

  11.         }
    12. 

  12.         if ($timestamp - time() > 60 || time() - $timestamp > 60) {
    13. 

  13.             exit('{"code":-2,"msg":"请求失败!请检查您的系统时间!"}');
    14. 

  14.         }
    15. 

  15.         if ($_POST['username'] == $ADMIN_USER && $_POST['password'] == $ADMIN_PASS) {
    16. 

  16.             setcookie("loveway_token", md5($ADMIN_USER . $ADMIN_PASS . 'KAGAMINE WORLD!' . date('Y-m-d', time())), time() + 3600, '/');
    17. 

  17.             exit('{"code":1,"msg":"登录成功!"}');
    18. 

  18.         } else {
    19. 

  19.             exit('{"code":-1,"msg":"登录失败!用户名或密码错误!"}');
    20. 

  20.         }
    21. 

  21.     case "updateConfig":
    22. 

  22.         if ($_COOKIE['loveway_token'] == md5($ADMIN_USER . $ADMIN_PASS . 'KAGAMINE WORLD!' . date('Y-m-d', time()))) {
    23. 

  23.             $pdo = pdoConnect();
    24. 

  24.             $stmt = $pdo->prepare("UPDATE `loveway_config` SET `value`=? WHERE (`name`= ? )");
    25. 

  25.             $stmt->bindValue(1, $_POST['value']);
    26. 

  26.             $stmt->bindValue(2, $_POST['name']);
    27. 

  27.             if ($stmt->execute()) {
    28. 

  28.                 exit('{"code":1,"msg":"操作成功!"}');
    29. 

  29.             } else {
    30. 

  30.                 exit('{"code":-3,"msg":"操作失败![UPDATE DATABASE]失败!"}');
    31. 

  31.             }
    32. 

  32.         } else {
    33. 

  33.             exit('{"code":-2,"msg":"校验登录token失败!"}');
    34. 

  34.         }
    35. 

  35.     case "delete":
    36. 

  36.         if ($_COOKIE['loveway_token'] == md5($ADMIN_USER . $ADMIN_PASS . 'KAGAMINE WORLD!' . date('Y-m-d', time()))) {
    37. 

  37.             $pdo = pdoConnect();
    38. 

  38.             $stmt = $pdo->prepare("DELETE FROM `loveway_data` WHERE `id` = ? ");
    39. 

  39.             $stmt->bindValue(1, $_POST['id']);
    40. 

  40.             if ($stmt->execute()) {
    41. 

  41.                 exit('{"code":1,"msg":"删除成功!"}');
    42. 

  42.             } else {
    43. 

  43.                 exit('{"code":-3,"msg":"操作失败![DELETE DATABASE]失败!"}');
    44. 

  44.             }
    45. 

  45.         } else {
    46. 

  46.             exit('{"code":-2,"msg":"校验登录token失败!"}');
    47. 

  47.         }
    48. 

  48.     default:
    49. 

  49.         exit('{"code":-5,"msg":"缺失参数!"}');
    50. 

  50. }
    51.