5 post.php(提交留言页面)
<?
require_once("header.php");
?>
<div id="input">
<form method="post" action="input.php" name="form1">
<h1>提交留言</h1>
<p>姓名 :<input type="text" name="name" size="20" class="y" /> </p>
<p>性别 :<input name="sex" type="radio" value="男" checked/> 帅锅 <input type="radio" name="sex" value="女"/> 美女</p>
<p>Q Q :<input type="text" name="qq" class="y" /> (可选填)</p>
<p>Email:<input type="text" name="email" class="y" /> (可选填)</p>
<p>留言内容:</p>
<p><textarea name="info" rows="5" cols="40"></textarea></p>
<p class="cen">
<input type="submit" value="偶填好了" />
<input type="reset" value="偶要重写">
</p>
<p class="cen1">银子留言板 Version 1.0</p>
</form>
</div>
</body>
</html>
6 input.php(插入留言)
<?php
require_once("conn.php");
$username = $_POST['name'];
$sex = $_POST['sex'];
$qq = $_POST['qq'];
$email = $_POST['email'];
$info = $_POST['info'];
if (strrpos($username,"<")!==false || strrpos($username,">")!==false||strrpos($username,"@")!==false||strrpos($username,"\"")!==false||strrpos($username,"'")!==false||strrpos($username,"_")!==false)
{
echo "<script>alert('名称不能有特殊字符!');location.href='post.php';</script>";
exit();
}
if (!ereg("^[0-9]{0,}$",$qq))//用正则检查QQ格式
{
echo "<script>alert('OICQ信息有错误!必须是数字!');location.href='post.php';</script>";
exit();
}
if($email)
{//如果填写了邮箱就用正则检查邮箱格式
if (!ereg("^[a-zA-Z0-9_\-\.]+@[a-zA-Z0-9\-]+\.[a-zA-Z0-9\-\.]+$",$email))
{
echo "<script>alert('email格式不正确!');location.href='post.php';</script>";
exit();
}
}
if(!$username)
{
echo "<script>alert('名称不能为空哦!');location.href='post.php';</script>";
exit();
}
elseif(!$info)
{
echo "<script>alert('留言不能为空哦!');location.href='post.php';</script>";
exit();
}
else
{
$ip = getenv('REMOTE_ADDR');//获取客户端IP地址
$sql = "insert into lo (username,sex,qq,email,info,ip,submit_time) values ('$username','$sex','$qq','$email','$info','$ip',NOW())";
$result = mysql_query($sql);
mysql_close();
echo "<script>alert('提交成功!返回首页');location.href='index.php';</script>";
}
?>
7 update.php(修改留言页)
<?php
session_start();
require_once('conn.php');
require_once('header.php');
if($_SESSION["key"]==1)
{
$id = $_GET['id'];
$sql = "select * from lo where id= ".$id;
$result = mysql_query($sql);
$row = mysql_fetch_array($result);
?>
<div id="update">
<form action="updatepost.php?wuleying&id=<?= $row[0] ?>" method="post">
<h1>修改留言</h1>
<p>姓名:<input type="text" value="<?= $row[1]?>" name="name" class="y"></input></p>
<p>留言:</p>
<p><textarea name="info" rows="5" cols="35"><?= $row[5] ?></textarea></p>
<p class="cen"><input type="submit" value="偶要修改" /></p>
<p class="cen1">银子留言板 Version 1.0</p>
</form>
<div>
<?php
}
else
{
header('location:index.php');
}
?>
8 updatepost(修改提交页)
<?php
require_once('conn.php');
$username = $_POST['name'];
$info = $_POST['info'];
$id = $_GET['id'];
//echo $id;
$sql = "update lo set username= '".$username."',info='".$info."' where id=".$id;
mysql_query($sql);
echo "<script>alert('修改成功!');location.href='index.php';</script>";
?>
9 delete.php(删除留言页)
<?php
session_start();
require_once('conn.php');
$id=$_GET['id'];
if($_SESSION["key"]==1)
{
$sql = "delete from lo where id=".$id;
mysql_query($sql);
echo "<script>location.href='index.php'</script>";
}
else
{
header('location:index.php');
}
?>
10 admin.php(管理登录页)
<?php
require_once('conn.php');
require_once('header.php');
?>
<div id="admin">
<form method="post" action="adminpost.php">
<h1>管理员登录</h1>
<p>姓名 : <input type="text" name="name" size="20" class="y" /> </p>
<p>密码 : <input type="password" name="password" size="20" class="y" /> </p>
<p class="cen"><input type="submit" value="管理员登录" /></p>
<p class="cen1">银子留言板 Version 1.0</p>
</form>
</div>
11 adminpost.php(管理验证页)
<?php
session_start();
require_once('conn.php');
$name = $_POST['name'];
$password = $_POST['password'];
$sql = "select * from admin where name='".$name."'";
$result = mysql_query($sql);
$num = mysql_num_rows($result);
if (strrpos($name,"<")!==false || strrpos($name,">")!==false||strrpos($name,"@")!==false||strrpos($name,"\"")!==false||strrpos($name,"'")!==false||strrpos($name,"_")!==false)
{
echo "<script>alert('不能有特殊字符!');location.href='admin.php';</script>";
}
if($num)
{//如果用户存在,就检查密码是否正确
$rs = mysql_fetch_array($result);
if($rs[2]!=$password)
{
echo "<script>alert('密码不正确,请确认后输入!');location.href='admin.php';</script>";
}
else
{//用户名,密码都正确,注册SESSION变量,然后跳转到首页
$_SESSION["key"]=1;
echo "<script>alert('登录成功!');location.href='index.php';</script>";
}
}
else
{//如果没有这个用户
echo "<script>alert('没有这个用户,请确认后输入!');location.href='admin.php';</script>";
}
?>
12 adminexit.php(退出管理页)
<?php
session_start();
$_SESSION["key"] = 0;//使SESSION不为1,0为游客,1为管理员
header('location:index.php');
?>
只是些基本的东东,像MD5加密,UBB,表情图片,添加管理员账号,回复留言(-_!!)等我都没加上去,有兴趣的同学可以完善下,不足的地方请指出^_^
管理员账号:wuleying 密码:123456
wuleying_gbook.rar
文章评论
共有 位脚本之家网友发表了评论我来说两句