homker
diff --git a/‎apply.htm
+42 b/‎apply.htm
+42
diff --git a/‎apply_back.php
+27 b/‎apply_back.php
+27
diff --git a/‎bg.htm
+73 b/‎bg.htm
+73
diff --git a/‎bg.php
+42 b/‎bg.php
+42
diff --git a/‎config.yaml
+4 b/‎config.yaml
+4
diff --git a/‎conn.php
+135 b/‎conn.php
+135
diff --git a/‎footer.php
+4 b/‎footer.php
+4
diff --git a/‎head.php
+15 b/‎head.php
+15
diff --git a/‎index.htm
+43 b/‎index.htm
+43
@@ -0,0 +1,42 @@
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml">
+<head>
+<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
+<title>用户注册</title>
+<style type="text/css">
+	form{margin:0 auto; margin-top:100px; width:269px; height:88px;}
+	span{margin-left:45px; width:114px; height:22px;}
+	legend{font-size:24px;}
+</style>
+</head>
+
+<body>
+ <form action="login.php"; name="apply" method="post" id="form" onsubmit="return chenck();">
+ 	<fieldset>
+	<legend>用户注册</legend>
+            用户名:<input id="usename" type="text" name="applyname"/><br />
+            密&nbsp;&nbsp;码:<input id="password" type="password" name="applyword" /><br />
+            &nbsp;<input id="login" type="submit" value="注册" name="apply" />
+            &nbsp;<input id="reset" type="reset" value="重置" />
+    </fieldset>
+          </form>
+          <center style="margin-top:50px;">Designed by Homker</center>
+</body>
+</html>
+<script type="text/javascript">
+	function chenck()
+	{
+		if(apply.applyname.value=="")
+			{
+				alert("用户名不得为空");
+				apply.applyname.focus();
+				return false
+			}
+		if(apply.applyword.value=="")
+		{
+			alert("密码不得为空");
+			apply.applyword.focus();
+			return false
+		}
+	}
+</script>
@@ -0,0 +1,27 @@
+<?php
+	include 'conn.php';
+	if(@$_POST['apply'])
+	{
+		//echo "this is a test";
+		$applyname=$_POST['applyname'];
+		$applyword=$_POST['applyword'];
+		$applycheck= new check($conn,$applyname,$applyword);
+		switch ($applycheck->cc) {
+			case '1':
+				{
+					//echo "this is a test";
+					$dbname="login";
+					$applyin=new db($dbname);
+					$value=array('LoginName'=>$applyname,'PassWord'=>$applyword,'Access'=>2);
+					if($result=$applyin->insert($value)) echo "注册成功";
+					else echo "you are fail~!";
+				}
+				break;
+			default:
+				echo "<script language=\"javascript\">alert('用户名被占用');</script>";break;
+				break;
+		}
+
+	}
+
+?>
@@ -0,0 +1,73 @@
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml">
+<head>
+<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
+<title>后台操作</title>
+<style type="text/css">
+	.floatl{float:left;}
+	.floatr{float:right;}
+	.clear{clear:both;}
+	.title{ padding-left:100px; margin-top:5px;}
+	.width{ width:350px;}
+	.margintop{ margin-top:10px;}
+	.marginleft{ margin-left:50px;}
+	.marginleft_s{ margin-left:10px;}
+	.marginright{ margin-right:300px;}
+		.submit{ margin:10px 0 0 500px;}
+		textarea{width:490px; height:50px;}
+	.content{ margin:0 auto; width:908px;}
+	li{list-style: none;}
+		p{font-size:20px;}
+		div{font-size: 14px;}
+		.backcontent{width: 473px;}
+      .top{ position:fixed; border:1px solid black; text-decoration: none; top:500px; left:1200px;}
+</style>
+</head>
+
+<body>
+	<?php include 'head.php' ?>
+   <a href="#top" class="top"> top </a>
+   <!--查看留言部分-->
+   <div class="content margintop">
+   <fieldset>
+   		<legend>查看话题</legend>
+        <div class="session">
+        		<?php 
+                	$bgstcontent=$bglist->fetch();
+        			while($result=mysql_fetch_array($bgstcontent))
+        			{
+                    $ID=$result['ID'];
+                    $IDs="ContentID=$ID";
+        		?>
+        		<fieldset>
+            		<legend><?php echo $result['UName']?>说：</legend>
+                	<p><?php echo $result['Title']?></p>
+                	<div class="marginright floatl marginleft"><?php echo $result['Content']?></div>
+                	<span class="submit">回帖数<?php echo $click=$result['Click']?></span><span class="marginleft">时间：<?php echo $result['Time']?></span>
+                    <a class="marginleft_s" href="?ID=<?php echo $ID ?>">删除</a>
+            	</fieldset>
+            	<ul>
+            		<?php
+            		//var_dump($sscontent);
+                    $value="*";
+                    $bgsscontent=$bgsession->fetch($value,$IDs);
+            		while($sresult=mysql_fetch_array($bgsscontent))
+            		{
+                    	$SID=$sresult['ID'];
+            		?>
+            		<li>
+            			<span><?php echo $sresult['UserName']?>说：<?php echo $sresult['Content']?></span>
+                         <a class="floatr marginleft_s" href="?SID=<?php echo $SID ?>">删除</a>
+                        <span class="floatr"><?php echo $sresult['Time']?></span>
+                       
+            		</li>
+            		<?php } ?>
+            	</ul>
+              <?php } ?>
+        </div>
+   </fieldset>
+   </div>
+   <!--发表留言部分-->
+   <?php include 'footer.php' ?>
+</body>
+</html>
@@ -0,0 +1,42 @@
+<?php
+include 'conn.php';
+if (@$_COOKIE['cookie']=='fy') 
+{
+	if (@$_SESSION['rt']=='1') 
+	{
+		$list="list";
+        $session="session";
+		$bglist=new db($list);
+		$bgsession=new db($session);
+		include 'bg.htm';
+		if (@$_GET['ID']) 
+		{
+			$lcondition="ID=$ID";
+			$scondition="ContentID=$ID";
+			if($bglist->del($lcondition)&&$bgsession->del($scondition))
+				echo "<script language=\"javascript\">alert('删除成功');location.href='bg.php';</script>";
+		}
+		if (@$_GET['SID']) 
+		{
+			$scondition="ID=$SID";
+			if($bgsession->del($scondition))
+				echo "<script language=\"javascript\">alert('删除成功');location.href='bg.php';</script>";;
+		}
+	}
+	else
+	{
+		echo "<script language=\"javascript\">
+			alert('这个页面不是谁想看就能看的，小样去找管理员拿权限');
+			location.href='list.php';
+		</script>";
+	}
+}
+else
+{
+	echo "<script language=\"javascript\">
+			alert('请先行登入');
+			location.href='index.htm';
+		</script>";
+}
+
+?>
@@ -0,0 +1,4 @@
+---
+name: homker
+version: 1
+...
@@ -0,0 +1,135 @@
+<?php
+	header("Content-type:text/html;charset=utf-8");
+	date_default_timezone_set('PRC');
+	session_start();
+         /*         连接到数据库           */
+	$conn=mysql_connect(SAE_MYSQL_HOST_M.':'.SAE_MYSQL_PORT,SAE_MYSQL_USER,SAE_MYSQL_PASS)or die("无法连接到服务器");
+	$db=mysql_select_db(SAE_MYSQL_DB,$conn);
+	$query=mysql_query("set names 'utf8'");
+	if(@$_GET['out'])
+	{
+		setcookie("cookie","ann");
+		echo "<script language=\"javascript\">location.href='index.htm';</script>";
+	}
+ 		/*             规范提交到数据库的html代码            */
+	   function htmlcode($contents)
+	   {
+	   	$contents= str_replace("/n" , "<br/>", str_replace(" ","&nbsp;",$contents));
+	   	return $contents;
+	   }
+
+ /*             建立一个可以写入数据和读出数据的类            */
+
+	   class db
+	   {
+	   		public $dbname;
+	   		public $query;
+	   		public $array;
+	   		public $order="ID";
+	   		public function __construct($dbname)
+	   		{
+	   			$this->dbname=$dbname;
+	   		}
+	   		public function insert($dataArray) 
+	   		{
+        		$field = "";
+        		$value = "";
+        		if( !is_array($dataArray) || count($dataArray)<=0) 
+        		{
+            		$this->halt('没有要插入的数据');
+            		return false;
+        		} 
+        		while(list($key,$val)=each($dataArray)) 
+        		{
+            		$field .="$key,";
+            		$value .="'$val',";
+        		}
+        		$field = substr( $field,0,-1);
+        		$value = substr( $value,0,-1);
+        		$sql = "insert into $this->dbname($field) values($value)";
+        		$this->query=mysql_query($sql);
+        		return $this->query;
+    		}
+
+
+	   		/*public function insert($value)
+	   		{
+
+	   			foreach ($value as $key => $value) 
+	   			{
+
+	   			}
+	   			 echo "INSERT INTO $this->dbname($key)values('$value')";
+	   			
+	   			//}
+	   			$this->query=mysql_query($sql);
+	   			return $this->query;
+	   		}*/
+                   
+	   		public function fetch($dbfield="*",$ID="1",$order="ID ASC")
+	   		{
+	   			$sql="SELECT $dbfield FROM $this->dbname WHERE $ID ORDER BY $order";
+	   			$this->query=mysql_query($sql);
+	   			return $this->query;
+	   		}
+
+	   		public function del($condition)
+	   		{
+	   			$sql="DELETE FROM $this->dbname WHERE $condition ";
+	   			$this->query=mysql_query($sql);
+	   			return $this->query;
+	   		}
+	   		public function update($set,$condition)
+	   		{
+	   			$sql="UPDATE $this->dbname SET $set WHERE $condition";
+	   			$this->query=mysql_query($sql);
+	   			return $this->query;
+
+	   		}
+	   		public function inchenck($usename,$content,$field="Content")
+  			{
+  				$sql="SELECT $field FROM $this->dbname WHERE $usename AND $field LIKE '%$content%'";
+  				$this->query=mysql_query($sql);
+  				$row=mysql_num_rows($this->query);
+  				if ($row>=3) return false;
+  				else return true;
+  			}
+	   };
+
+	   /*******************权限认证*****************************/
+	    class check
+	    {
+	    	public $cc;
+		function __construct($conn,$usename,$password)//密码验证
+ 	 		{
+  				$sql = "select * from login";
+  				$result = mysql_query($sql,$conn);
+  				$num = mysql_num_rows($result);
+    			$flag=0;
+  				while ($row = mysql_fetch_array($result))
+  				{
+  					if (($usename == @$row['LoginName'])&&($password == @$row['PassWord']))
+  					{
+  						$_SESSION['un'] = @$row['LoginName'];
+  						$_SESSION['rt'] =  @$row['Access'];
+						return ($this->cc=0); break;
+  					}
+  					elseif ($row['LoginName']!=$usename)
+  					{
+  						$flag++;
+  						if($flag==$num)
+  						{ 
+  							return ($this->cc=1);
+  						}
+  					}
+  					elseif((@$row['LoginName']==$usename)&&(@$row['PassWord']!=$password))
+  					{
+  						return ($this->cc=2);
+  		    			break;
+  					}
+  				}
+  			}
+  		}
+/////////////////////////////////////////the end of php
+////////////////////////////////////////power by homker
+
@@ -0,0 +1,4 @@
+<div  class="footer">
+<hr/>
+<center style="margin-top:25px;">Designed by Homker</center>
+</div>
@@ -0,0 +1,15 @@
+<?php
+
+	$usename=$_SESSION['un'];
+?>
+<div class="header">
+	<span name="top" style="float:left">留言板扩展模型</span>
+	<div>
+		<span style="position:fixed; width:100%; left:1150px;">
+			<a href="personal.php"><?php echo $usename ?></a>,你好&#9;
+			<a class="backlist" href="list.php">回到列表</a>
+			<a href="?out='login'">退出</a>
+		</span>
+	</div>
+<hr style="clear:both;"/>
+</div>
@@ -0,0 +1,43 @@
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml">
+<head>
+<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
+<title>用户登入</title>
+<style type="text/css">
+	form{margin:0 auto; margin-top:100px; width:269px; height:88px;}
+	span{margin-left:45px; width:114px; height:22px;}
+	legend{font-size:24px;}
+</style>
+</head>
+
+<body>
+ <form action="login.php"; method="post" id="form" name="login" onsubmit="return chenck();">
+ 	<fieldset>
+	<legend>登入验证</legend>
+            用户名:<input id="usename" type="text" name="usename"/><br />
+            密&nbsp;&nbsp;码:<input id="password" type="password" name="password" /><br />
+            <input id="login" type="submit" value="登入" name="login" />
+            <input id="reset" type="reset" value="重置" />
+            <a href="apply.htm">注册</a>
+    </fieldset>
+          </form>
+<center style="margin-top:50px;">Designed by Homker</center>
+</body>
+</html>
+<script type="text/javascript">
+	function chenck()
+	{
+		if(login.usename.value=="")
+			{
+				alert("用户名不得为空");
+				login.usename.focus();
+				return false;
+			}
+		if(login.password.value=="")
+		{
+			alert("密码不得为空");
+			login.password.focus();
+			return false;
+		}
+	}
+</script>