要求
1)实现Email形式的注册功能和相应的登录功能;
2)实现忘记密码时的密码找回功能;
3)存在数据库中的密码不能以明文形式存放,即建议在浏览器端发送请求前,调用js代码对用户的密码做md5加密
分析
第3)点较简单,重点学习一波email接收验证码。
网上粗略了解了一下,PHP自带mail()函数可实现邮件的收发,但在php5.3版本后需开启本地email服务器才能使用。
所以搭建了hmailserver服务,具体参考:
mysql+hmailServer+roundcubemail整合开发(一)
文件拓扑
代码及演示
<!DOCTYPE html> <html> <head> <meta charset="UTF-8"> <title>web实验2</title> <script type="text/javascript" src="function.js"></script> <script type="text/javascript" src="md5.js"></script> </head> <body> <form name="fm1" action="index.php" method="post" onsubmit="return IsEmpty()"> <div style="text-align: center;"> <h1>登录页面 </h1><br><br><br> <input type="text" name="user" placeholder="帐号" id="usr"/> <select name="mail"> <option value="@163.com">@163.com</option> <option value="@126.com">@126.com</option> <option value="@hdu.edu.cn">@hdu.edu.cn</option> </select> </br><input type="password" name="password_plain" placeholder="密码" id="pwd"/> <input type=hidden name="password_md5" id="pwd1" /> <a href="resetpwd.php">忘记密码?</a> </br> <input type="submit" name="submit" value="登录" onclick="enCodePWD()"/> <button onclick="location.href='register.php'" type="button">注册</button> </div> </form> </body> </html>
当登录为空
亦或
<!DOCTYPE html> <html> <html> <head> <meta charset="UTF-8"> <title>web实验2</title> <script type="text/javascript" src="function.js"></script> <script type="text/javascript" src="md5.js"></script> </head> <body> <form name="fm1" action="" method="post" onsubmit="return IsEmpty()"> <div style="text-align: center;"> <h1>注册页面 </h1><br><br><br>* <input type="text" name="user" placeholder="帐号" id="usr"/> <select name="mail"> <option value="@163.com">@163.com</option> <option value="@126.com">@126.com</option> <option value="@hdu.edu.cn">@hdu.edu.cn</option> </select> </br>* <input type="password" name="password_plain" placeholder="密码" id="pwd"/> <input type=hidden name="password_md5" id="pwd1" /> </br> * <input type="text" name="code" placeholder="验证码" id="cd"/> <button type="submit" name="bttn" value="1" onclick="IsEmpty()">点击获取验证码</button> </br> <input type="submit" name="submit" value="注册" onclick="enCodePWD()"/> </div> </form> </body> </html> <?php $servername = "localhost";$usernm = "root";$passwd = "root";$dbname = "test"; @$c_user=@$_POST['user'].@$_POST['mail'];@$c_password=@$_POST['password_md5']; if((@$_POST['submit'] || @$_POST['bttn']) && $_POST['user'] && $_POST['password_plain']){ // 创建连接 $conn = mysqli_connect($servername, $usernm, $passwd, $dbname); // 检测连接 if (!$conn) { die("连接失败: ".mysqli_connect_error()); } else{ @$sql = "SELECT * FROM client where user='".$c_user."'"; $result = mysqli_query($conn, $sql); //检错 if (!$result) { printf("Error: %s ", mysqli_error($conn)); exit(); } //查询用户是否存在 if (mysqli_num_rows($result)) { echo '<script>alert("用户已存在!");history.go(-1);</script>'; } else{ if(@$_POST['bttn']) include_once("reqcode.php"); else include_once("reg.php"); } $conn->close(); } } ?>
先判断账号/密码是否为空/合法
没输入验证码就注册
注册用户已存在
否则
登录邮箱接收验证码
验证码有效时间1分钟
成功注册,3s后自动跳转login.php
<!DOCTYPE html> <html> <html> <head> <meta charset="UTF-8"> <title>web实验2</title> <script type="text/javascript" src="function.js"></script> <script type="text/javascript" src="md5.js"></script> </head> <body> <form name="fm1" action="" method="post"> <div style="text-align: center;"> <h1>更改密码 </h1><br><br><br>* <input type="text" name="user" placeholder="帐号" id="usr"/> <select name="mail"> <option value="@163.com">@163.com</option> <option value="@126.com">@126.com</option> <option value="@hdu.edu.cn">@hdu.edu.cn</option> </select> </br>* <input type="password" name="password_plain" placeholder="新密码" id="pwd"/> <br>* <input type="password" name="password_cfm" placeholder="确认密码" onblur="return confirm_pwd()" id="pwd2"/></input> <input type=hidden name="password_md5" id="pwd1" /> </br> * <input type="text" name="code" placeholder="验证码" id="cd"/> <button type="submit" name="bttn" value="1" onclick="IsEmpty()">点击获取验证码</button> </br> <input type="submit" name="submit" value="提交" onclick="enCodePWD()"/> </div> </form> </body> </html> <?php $servername = "localhost";$usernm = "root";$passwd = "root";$dbname = "test"; @$c_user=@$_POST['user'].@$_POST['mail'];@$c_password=@$_POST['password_md5']; if((@$_POST['submit'] || @$_POST['bttn']) && $_POST['user'] && $_POST['password_plain'] && $_POST['password_cfm']){ // 创建连接 $conn = mysqli_connect($servername, $usernm, $passwd, $dbname); // 检测连接 if (!$conn) { die("连接失败: ".mysqli_connect_error()); } else{ @$sql = "SELECT * FROM client where user='".$c_user."'"; $result = mysqli_query($conn, $sql); //查询用户是否存在 if (mysqli_num_rows($result)) { if(@$_POST['bttn']) include_once("reqcode.php"); else include_once("chng.php"); } else{ echo '<script>alert("用户不存在!");history.go(-1);</script>'; } $conn->close(); } } ?>
确认密码不一致
成功修改
(其他演示同注册页面)
<?php $servername = "localhost";$usernm = "root";$passwd = "root";$dbname = "test"; if(@$_POST['submit']){ $c_user=$_POST['user'].$_POST['mail'];$c_password=$_POST['password_md5']; } // 创建连接 $conn = mysqli_connect($servername, $usernm, $passwd, $dbname); // 检测连接 if (!$conn) { die("连接失败: ".mysqli_connect_error()); } else{ @$sql = "SELECT * FROM client where user='".$c_user."' and "."password='".$c_password."'"; $result = mysqli_query($conn, $sql); //检错 if (!$result) { printf("Error: %s ", mysqli_error($conn)); exit(); } //查询成功 if (mysqli_num_rows($result)) { //输出数据 $row = mysqli_fetch_assoc($result); $username=$row["user"]; echo "Welcome~:".$username."<br>"."Ur password~:".$row["password"]; } else{ echo '<script>alert("用户名或密码错误!");history.go(-1);</script>'; } $conn->close(); } ?>
<?php session_start(); $rd = rand(100000,999999); $to = $c_user; $subject = "验证码"; $message = $rd; $from = "server@test4fun.cn"; $headers = "From: $from"; if(mail($to,$subject,$message,$headers)){ echo "<br><br><div style='text-align: center;'>:)<br>验证码已发送至邮箱:".$c_user."<br>注册密码:".$_POST['password_plain']."<br>请注意查收!!!</div>"; } setcookie('rd', $rd, time()+5*60);//验证码 setcookie('tm', time(), time()+5*60);//验证码失效时间的起始时间戳 ?>
<?php //检测验证码是否为空 if(!$_POST['code']){ echo '<script>alert("验证码为空!");history.go(-1);</script>'; exit(); } //验证码失效时间为60秒 if (time() - @$_COOKIE['tm'] < 60){ if ($_POST['code'] == $_COOKIE["rd"]) { @$sqli = "INSERT INTO client (user,password) VALUES ('".$c_user."','".$c_password."')"; $result = mysqli_query($conn, $sqli); if ($result) { header('refresh:3; url=login.php'); echo "<br><br><div style='text-align: center;'>):<br>注册成功,请登录!</div>";; } } else{ echo "<br><br><div style='text-align: center;'>:(<br>验证码错误!</div>"; } } else{ echo "<br><br><div style='text-align: center;'>:(<br>验证码已过期!</div>"; } ?>
<?php //检测验证码是否为空 if(!$_POST['code']){ echo '<script>alert("验证码为空!");history.go(-1);</script>'; exit(); } //验证码失效时间为60秒 if (time() - @$_COOKIE['tm'] < 60){ if ($_POST['code'] == $_COOKIE["rd"]) { @$sqli = "UPDATE client SET password = '".$c_password."' WHERE user = '".$c_user."'"; $result = mysqli_query($conn, $sqli); if ($result) { header('refresh:3; url=login.php'); echo "<br><br><div style='text-align: center;'>):<br>密码修改成功,请登录!</div>";; } } else{ echo "<br><br><div style='text-align: center;'>:(<br>验证码错误!</div>"; } } else{ echo "<br><br><div style='text-align: center;'>:(<br>验证码已过期!</div>"; } ?>
//md5加密密码 function enCodePWD(){ document.getElementById('pwd1').value=md5(document.getElementById('pwd').value); } function IsEmpty(){ var usr = document.getElementById("usr"); //判断用户名是否为空 if(usr.value==""){ alert(":( 用户名不能为空!"); return false; } //判断用户名是否合法 if(/^[a-zA-Z0-9]{6,14}$/.test(usr.value) != true){ alert(":( 用户名不合法!"); return false; } var passwd = document.getElementById("pwd"); //判断密码是否为空 if(passwd.value==""){ alert(":( 密码不能为空!"); return false; } return true; } function confirm_pwd(){ var passwd = document.getElementById("pwd"); var passwd_cfm = document.getElementById("pwd2"); if(passwd.value != passwd_cfm.value){ alert("密码不一致"); passwd_cfm.value = ""; return false; } return true; } /* var wait=11; function renew_btn(){ var btn=document.getElementById("btn"); if(wait == 0){ btn.removeAttribute("disabled"); btn.innerHTML="重新获取验证码"; wait=60; } else{ if(wait == 11){ alert("验证码已发送至你的邮箱,请尽快查收~!"); } btn.setAttribute("disabled", true); if(wait<10){ btn.innerHTML=" 重新发送(0"+wait+") "; } else{ btn.innerHTML=" 重新发送("+wait+") "; } wait--; setTimeout(function(){renew_btn()},1000) } } */
!function(n){"use strict";function t(n,t){var r=(65535&n)+(65535&t);return(n>>16)+(t>>16)+(r>>16)<<16|65535&r}function r(n,t){return n<<t|n>>>32-t}function e(n,e,o,u,c,f){return t(r(t(t(e,n),t(u,f)),c),o)}function o(n,t,r,o,u,c,f){return e(t&r|~t&o,n,t,u,c,f)}function u(n,t,r,o,u,c,f){return e(t&o|r&~o,n,t,u,c,f)}function c(n,t,r,o,u,c,f){return e(t^r^o,n,t,u,c,f)}function f(n,t,r,o,u,c,f){return e(r^(t|~o),n,t,u,c,f)}function i(n,r){n[r>>5]|=128<<r%32,n[14+(r+64>>>9<<4)]=r;var e,i,a,d,h,l=1732584193,g=-271733879,v=-1732584194,m=271733878;for(e=0;e<n.length;e+=16)i=l,a=g,d=v,h=m,g=f(g=f(g=f(g=f(g=c(g=c(g=c(g=c(g=u(g=u(g=u(g=u(g=o(g=o(g=o(g=o(g,v=o(v,m=o(m,l=o(l,g,v,m,n[e],7,-680876936),g,v,n[e+1],12,-389564586),l,g,n[e+2],17,606105819),m,l,n[e+3],22,-1044525330),v=o(v,m=o(m,l=o(l,g,v,m,n[e+4],7,-176418897),g,v,n[e+5],12,1200080426),l,g,n[e+6],17,-1473231341),m,l,n[e+7],22,-45705983),v=o(v,m=o(m,l=o(l,g,v,m,n[e+8],7,1770035416),g,v,n[e+9],12,-1958414417),l,g,n[e+10],17,-42063),m,l,n[e+11],22,-1990404162),v=o(v,m=o(m,l=o(l,g,v,m,n[e+12],7,1804603682),g,v,n[e+13],12,-40341101),l,g,n[e+14],17,-1502002290),m,l,n[e+15],22,1236535329),v=u(v,m=u(m,l=u(l,g,v,m,n[e+1],5,-165796510),g,v,n[e+6],9,-1069501632),l,g,n[e+11],14,643717713),m,l,n[e],20,-373897302),v=u(v,m=u(m,l=u(l,g,v,m,n[e+5],5,-701558691),g,v,n[e+10],9,38016083),l,g,n[e+15],14,-660478335),m,l,n[e+4],20,-405537848),v=u(v,m=u(m,l=u(l,g,v,m,n[e+9],5,568446438),g,v,n[e+14],9,-1019803690),l,g,n[e+3],14,-187363961),m,l,n[e+8],20,1163531501),v=u(v,m=u(m,l=u(l,g,v,m,n[e+13],5,-1444681467),g,v,n[e+2],9,-51403784),l,g,n[e+7],14,1735328473),m,l,n[e+12],20,-1926607734),v=c(v,m=c(m,l=c(l,g,v,m,n[e+5],4,-378558),g,v,n[e+8],11,-2022574463),l,g,n[e+11],16,1839030562),m,l,n[e+14],23,-35309556),v=c(v,m=c(m,l=c(l,g,v,m,n[e+1],4,-1530992060),g,v,n[e+4],11,1272893353),l,g,n[e+7],16,-155497632),m,l,n[e+10],23,-1094730640),v=c(v,m=c(m,l=c(l,g,v,m,n[e+13],4,681279174),g,v,n[e],11,-358537222),l,g,n[e+3],16,-722521979),m,l,n[e+6],23,76029189),v=c(v,m=c(m,l=c(l,g,v,m,n[e+9],4,-640364487),g,v,n[e+12],11,-421815835),l,g,n[e+15],16,530742520),m,l,n[e+2],23,-995338651),v=f(v,m=f(m,l=f(l,g,v,m,n[e],6,-198630844),g,v,n[e+7],10,1126891415),l,g,n[e+14],15,-1416354905),m,l,n[e+5],21,-57434055),v=f(v,m=f(m,l=f(l,g,v,m,n[e+12],6,1700485571),g,v,n[e+3],10,-1894986606),l,g,n[e+10],15,-1051523),m,l,n[e+1],21,-2054922799),v=f(v,m=f(m,l=f(l,g,v,m,n[e+8],6,1873313359),g,v,n[e+15],10,-30611744),l,g,n[e+6],15,-1560198380),m,l,n[e+13],21,1309151649),v=f(v,m=f(m,l=f(l,g,v,m,n[e+4],6,-145523070),g,v,n[e+11],10,-1120210379),l,g,n[e+2],15,718787259),m,l,n[e+9],21,-343485551),l=t(l,i),g=t(g,a),v=t(v,d),m=t(m,h);return[l,g,v,m]}function a(n){var t,r="",e=32*n.length;for(t=0;t<e;t+=8)r+=String.fromCharCode(n[t>>5]>>>t%32&255);return r}function d(n){var t,r=[];for(r[(n.length>>2)-1]=void 0,t=0;t<r.length;t+=1)r[t]=0;var e=8*n.length;for(t=0;t<e;t+=8)r[t>>5]|=(255&n.charCodeAt(t/8))<<t%32;return r}function h(n){return a(i(d(n),8*n.length))}function l(n,t){var r,e,o=d(n),u=[],c=[];for(u[15]=c[15]=void 0,o.length>16&&(o=i(o,8*n.length)),r=0;r<16;r+=1)u[r]=909522486^o[r],c[r]=1549556828^o[r];return e=i(u.concat(d(t)),512+8*t.length),a(i(c.concat(e),640))}function g(n){var t,r,e="";for(r=0;r<n.length;r+=1)t=n.charCodeAt(r),e+="0123456789abcdef".charAt(t>>>4&15)+"0123456789abcdef".charAt(15&t);return e}function v(n){return unescape(encodeURIComponent(n))}function m(n){return h(v(n))}function p(n){return g(m(n))}function s(n,t){return l(v(n),v(t))}function C(n,t){return g(s(n,t))}function A(n,t,r){return t?r?s(t,n):C(t,n):r?m(n):p(n)}"function"==typeof define&&define.amd?define(function(){return A}):"object"==typeof module&&module.exports?module.exports=A:n.md5=A}(this);