搜索
 找回密码
 加入

ASP&PHP更名程序...

wxm750218 2009-1-4 17:42:56 318
返回列表 发新帖
wxm750218

DMM DUGA XCREAM SOKMIL等日本PPV站视频代购

ASP代码
  1. <!--#include file="conn.asp"-->
  2. <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
  3. <html xmlns="http://www.w3.org/1999/xhtml">
  4. <head>
  5. <meta http-equiv="Content-Type" content="text/html; charset=gb2312" />
  6. <title>人物角色名称修改</title>
  7. <link href="css.css" rel="stylesheet" type="text/css" />
  8. <script language="javascript">
  9. function check1()
  10. {
  11. if (form1.username.value==''||form1.rusername.value==''||form1.strid.value==''||form1.psw.value=='')
  12. {
  13. alert('error!');
  14. return false;
  15. }
  16. else
  17. {
  18. if(form1.rusername.value.length>10)
  19. {
  20. alert('太长了!');
  21. return false;
  22. }
  23. else

  25. return true;
  26. }
  27. }
  28. </script>
  29. <%
  30. if request.Form("submit")<>"" then
  31. strid=TRIM(Request.Form("strid"))
  32. psw=TRIM(Request.Form("psw"))
  33. username=TRIM(Request.Form("username"))
  34. rusername=TRIM(Request.Form("rusername"))
  35. if len(rusername)>10 then
  36. Response.write("<script>alert('输入的角色名太长了!');window.history.back();</script>")
  37. Response.End()
  38. end if

  40. '==========
  41. Sql="Select * from Account_char where strAccountID='"& strid &"' and (strcharID1='"& username &"' or strcharID2='"& username &"' or strcharID3='"& username &"')"
  42. set ors=conn.execute(Sql)
  43. if ors.eof then
  44. Response.write("<script>alert('输入的信息不正确!');window.history.back();</script>")
  45. Response.End()
  46. end if
  47. Sql="Select * from TB_USER where strAccountid='"& strid &"' and strpasswd='"& psw &"'"
  48. set ors=conn.execute(Sql)
  49. if ors.eof then
  50. Response.write("<script>alert('输入的密码不正确!');window.history.back();</script>")
  51. Response.End()
  52. end if

  54. '===============
  55. Sql="Select * from USERDATA where struserID='" & username & "'"
  56. set ors=conn.Execute(Sql)
  57. if ors.eof then
  58. Response.write("<script>alert('输入的角色名有误!');window.history.back();</script>")
  59. Response.End()
  60. end if
  61. if ors("knights")<>0 then
  62. Response.write("<script>alert('该角色未退出骑士团!');window.history.back();</script>")
  63. Response.End()
  64. end if
  65. ors.close
  66. set ors=nothing
  67. Sql="Select * from userdata where struserID='"& rusername &"'"
  68. set ors=conn.Execute(Sql)
  69. if not ors.eof then
  70. Response.write("<script>alert('输入的新角色名已经存在!');window.history.back();</script>")
  71. Response.End()
  72. end if
  73. ors.close
  74. set ors=nothing

  76. Sql="Select * from namechanges where newname='"& username &"'"
  77. set ors=conn.Execute(Sql)
  78. if not ors.eof then
  79. Response.write("<script>alert('一个角色只能修改一次!');window.history.back();</script>")
  80. Response.End()
  81. end if
  82. ors.close
  83. set ors=nothing


  86. Sql="insert into namechanges (newname)values ('"& rusername &"')"
  87. conn.Execute(Sql)


  90. Sql="update ACCOUNT_CHAR set strCharID1='"& rusername &"' where strCharID1='"& username &"'"
  91. conn.execute(Sql)
  92. Sql="update ACCOUNT_CHAR set strCharID2='"& rusername &"' where strCharID2='"& username &"'"
  93. conn.execute(Sql)
  94. Sql="update ACCOUNT_CHAR set strCharID3='"& rusername &"' where strCharID3='"& username &"'"
  95. conn.execute(Sql)
  96. Sql="update USERDATA set strUserID='"& rusername &"' where strUserID='"& username &"'"
  97. conn.Execute(Sql)
  98. Response.write("<script>alert('角色名修改成功!');</script>")
  99. end if

  101. %>
  102. <body>
  103. <table width="100%" border="0" cellspacing="0" cellpadding="0">

  105. <tr>
  106. <td> </td>
  107. </tr>
  108. <tr>
  109. <td><form id="form1" name="form1" method="post" action="">
  110. <table width="500" border="0" align="center" cellpadding="0" cellspacing="0">
  111. <tr>
  112. <td>帐号:</td>
  113. <td><input name="strid" type="text" id="strid" /></td>
  114. </tr>
  115. <tr>
  116. <td> </td>
  117. <td> </td>
  118. </tr>
  119. <tr>
  120. <td>密码:</td>
  121. <td><input name="psw" type="text" id="psw" /></td>
  122. </tr>
  123. <tr>
  124. <td> </td>
  125. <td> </td>
  126. </tr>
  127. <tr>
  128. <td>原角色名称: </td>
  129. <td><input name="username" type="text" id="username" /></td>
  130. </tr>
  131. <tr>
  132. <td> </td>
  133. <td> </td>
  134. </tr>
  135. <tr>
  136. <td>新角色名称:</td>
  137. <td><input name="rusername" type="text" id="rusername" /></td>
  138. </tr>
  139. <tr>
  140. <td> </td>
  141. <td>(不要含有特殊符号,修改前保证人物已经下线,并没有团)</td>
  142. </tr>
  143. <tr>
  144. <td> </td>
  145. <td> </td>
  146. </tr>
  147. <tr>
  148. <td> </td>
  149. <td><input type="submit" name="Submit" value="提交" /></td>
  150. </tr>
  151. </table>
  152. </form></td>
  153. </tr>
  154. <tr>
  155. <td> </td>
  156. </tr>
  157. <tr>
  158. <td> </td>
  159. </tr>
  160. <tr>
  161. <td> </td>
  162. </tr>
  163. <tr>
  164. <td><div align="center"></div></td>
  165. </tr>
  166. </table>
  167. </body>
  168. </html>
复制代码
PHP更名:
  1. <?php
  2. include('./include/anti_inject.php');
  3. ?>
  4. <?php
  5. //$link=mssql_connect($servername,$dbuser,$dbpass);
  6. //mssql_select_db($dbname,$link);
  7. $connect = odbc_connect("$dbname", "$dbuser", "$dbpass") or die("Sql Servera baglanilamiyor, odbc_error()");
  8. ?>

  10. <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
  11. <html xmlns="http://www.w3.org/1999/xhtml">
  12. <head>
  13. <title>Knightonline-角色更名系统</title>
  14. <script language="javascript">
  15. function check1()
  16. {
  17. if (form1.username.value==''||form1.rusername.value==''||form1.strid.value==''||form1.psw.value=='')
  18. {
  19. alert('error!');
  20. return false;
  21. }
  22. else
  23. {
  24. if(form1.rusername.value.length>10)
  25. {
  26. alert('您输入的新角色名超过10个字符的限制,请重新输入!');
  27. return false;
  28. }
  29. else

  31. return true;
  32. }
  33. }
  34. </script>
  35. <?php
  36. if($_POST["Submit"]!="")
  37. {
  38. $strid=trim($_POST["strid"]);
  39. $psw=trim($_POST["psw"]);
  40. $username=trim($_POST["username"]);
  41. $rusername=trim($_POST["rusername"]);

  43. $strid = test($strid);
  44. $psw = test($psw);
  45. $username = test($username);
  46. $rusername = test($rusername);

  48. if(!($strid && $psw && $username && $rusername)){
  49.         echo "<script>alert('请不要非法注入!');</script>";
  50.         echo '<meta http-equiv="refresh" content="0" />';
  51.         die();
  52. }
  53. //必须包含中文
  54. if(!preg_match('/[^\x00-\x80]/',$rusername)){
  55.         echo "<script>alert('必须包含中文!');</script>";
  56.         echo '<meta http-equiv="refresh" content="0" />';
  57.         die();
  58. }

  60. if(strlen($rusername)>10)
  61.         {
  62.         echo "<script>alert('输入的角色名太长了!');</script>";
  63.         echo '<meta http-equiv="refresh" content="0" />';
  64.         die();
  65.         }
  66. //------------------------------------------------------------

  68. $sql="Select * from currentuser where strACCOUNTID='".$strid."' ";

  70. $result=odbc_exec($connect,$sql) or die("error");
  71. $num=odbc_fetch_row($result);

  73. if($num==true)
  74.         {
  75. echo "<script>alert('该帐号未退出游戏!');</script>";
  76. echo '<meta http-equiv="refresh" content="0" />';
  77. die();
  78. }

  80. //--------------------------------------------------------------------------
  81. $sql="Select * from Account_char where strAccountID='".$strid."' and (strcharID1='".$username."' or strcharID2='".$username."' or strcharID3='".$username."')";

  83. $result=odbc_exec($connect,$sql) or die("error");
  84. $num=odbc_fetch_row($result);

  86. if($num==false)
  87.         {
  88. echo "<script>alert('输入的信息不正确!');</script>";
  89. echo '<meta http-equiv="refresh" content="0" />';
  90. die();
  91. }
  92. $sql="Select * from TB_USER where strAccountid='".$strid."' and strpasswd='".$psw."'";

  94. $result=odbc_exec($connect,$sql) or die("error");
  95. $num=odbc_fetch_row($result);

  97. if($num==false)
  98.         {
  99. echo "<script>alert('输入的密码不正确!');</script>";
  100. echo '<meta http-equiv="refresh" content="0" />';
  101. die();
  102.         }

  104. //===============
  105. $sql="Select * from USERDATA where struserID='".$username."'";

  107. $result=odbc_exec($connect,$sql) or die("error");
  108. $num=odbc_fetch_row($result);

  110. if($num==false)
  111.         {
  112. echo "<script>alert('输入的角色名有误!');</script>";
  113. echo '<meta http-equiv="refresh" content="0" />';
  114. die();

  116.         }
  117.         $knights=odbc_result($result,"knights");

  119. if($knights!="0")
  120.         {
  121. echo "<script>alert('该角色未退出骑士团!');</script>";
  122. echo '<meta http-equiv="refresh" content="0" />';
  123. die();
  124.         }else{


  127. $sql="Select * from userdata where struserID='".$rusername."'";

  129. $result=odbc_exec($connect,$sql) or die("error");
  130. $num=odbc_fetch_row($result);

  132. $name2=odbc_result($result,"struserID");

  134. if($name2!="")
  135.         {
  136. echo "<script>alert('输入的新角色名已经存在!');</script>";
  137. echo '<meta http-equiv="refresh" content="0" />';
  138. die();

  140.         }

  142. $sql="Select * from namechanges where newname='".$username."'";
  143. $result=odbc_exec($connect,$sql) or die("error");
  144. $num=odbc_fetch_row($result);

  146. if($num==true)
  147.         {
  148. echo "<script>alert('一个角色只能修改一次!');</script>";
  149. echo '<meta http-equiv="refresh" content="0" />';
  150. die();
  151.         }
  152. $sql="insert into namechanges (newname,oldname)values ('".$rusername."','".$username."')";
  153. odbc_exec($connect,$sql);


  156. $sql="update ACCOUNT_CHAR set strCharID1='".$rusername."' where strCharID1='".$username."'";
  157. odbc_exec($connect,$sql);
  158. $sql="update ACCOUNT_CHAR set strCharID2='".$rusername."' where strCharID2='".$username."'";
  159. odbc_exec($connect,$sql);
  160. $sql="update ACCOUNT_CHAR set strCharID3='".$rusername."' where strCharID3='".$username."'";
  161. odbc_exec($connect,$sql);
  162. $sql="update USERDATA set strUserID='".$rusername."' where strUserID='".$username."'";

  164. odbc_exec($connect,$sql);

  166. echo "<script>alert('角色名修改成功!');</script>";
  167. echo '<meta http-equiv="refresh" content="0;URL=index.php" />';
  168. die();


  171.         }


  174. }
  175. ?>            
  176. <form id="form1" name="form1" method="post" action="">
  177.       <div align="right"><strong>帐号: </strong></div>
  178.     </div></td>
  179.     <td width="50%"><input type="TEXT" name="strid" maxlength="12" id="strid" /></td>
  180.   </tr>
  181.   <tr>
  182.     <td>
  183.       <div align="right"><strong>密码 : </strong></div>
  184.     </div></td>
  185.     <td><input type="PASSWORD" name="psw"  maxlength="21" id="psw"/></td>
  186.   </tr>
  187.   <tr>
  188.     <td>
  189.       <div align="right"><strong>原角色名 : </strong></div>
  190.     </div></td>
  191.         <td><input type="text" name="username"  maxlength="10" id="username"/></td>
  192.         </tr>
  193.   <tr>
  194.            <td>
  195.              <div align="right"><strong>新角色名: </strong></div>
  196.            </div></td>
  197.         <td><input type="text" name="rusername" maxlength="10" id="rusername" /></td>
  198.         </tr>
  199.   <tr>
  200.     <td> </td>
  201.     <td><input type="submit" name="Submit" value="提交" />
  202.       
  203.   <label>
  204.   <input type="reset" name="button" id="button" value="重置" />
  205.   </label></td>
  206.   </tr>
  207. </FORM>
  208.    骑士在线更名系统<br /><br />
  209.     提示:每个角色只能更名一次,请勿做无谓的尝试,新角色名必须含有中文名称<br />
  210.                更名前请确保:要修改名字的帐号已经下线,要更改的角色没有加入团
  211.                            
  212.   
复制代码

举报

随机推荐

0 回复

B Color Image Link Quote Code Smilies
高级模式
游客
返回
发布新主题
wxm750218
积分
480 		主题
81 		精华
0
作者最近主题
内容均来自互联网如侵犯您的权利请邮件:[email protected] 鄂ICP备07001904号