makecoder
diff --git a/‎.gitignore
Lines changed: 0 additions & 1 deletion b/‎.gitignore
Lines changed: 0 additions & 1 deletion
diff --git a/‎composer.json
Lines changed: 0 additions & 5 deletions b/‎composer.json
Lines changed: 0 additions & 5 deletions
diff --git a/‎script/get_latest_version.php
Lines changed: 16 additions & 0 deletions b/‎script/get_latest_version.php
Lines changed: 16 additions & 0 deletions
diff --git a/‎server/apps/classes/Api.php
Lines changed: 21 additions & 0 deletions b/‎server/apps/classes/Api.php
Lines changed: 21 additions & 0 deletions
diff --git a/‎server/apps/configs/disabled.php
Lines changed: 7 additions & 0 deletions b/‎server/apps/configs/disabled.php
Lines changed: 7 additions & 0 deletions
diff --git a/‎server/apps/configs/sms.php
Lines changed: 5 additions & 0 deletions b/‎server/apps/configs/sms.php
Lines changed: 5 additions & 0 deletions
diff --git a/‎server/apps/controllers/Api.php
Lines changed: 7 additions & 7 deletions b/‎server/apps/controllers/Api.php
Lines changed: 7 additions & 7 deletions
diff --git a/‎server/apps/controllers/Page.php
Lines changed: 55 additions & 20 deletions b/‎server/apps/controllers/Page.php
Lines changed: 55 additions & 20 deletions
diff --git a/‎server/apps/controllers/Person.php
Lines changed: 28 additions & 6 deletions b/‎server/apps/controllers/Person.php
Lines changed: 28 additions & 6 deletions
diff --git a/‎server/apps/controllers/Wiki.php
Lines changed: 23 additions & 5 deletions b/‎server/apps/controllers/Wiki.php
Lines changed: 23 additions & 5 deletions
@@ -4,7 +4,6 @@
 /web/static/uploads/
 /.idea/
 *.log
-/web/index.html
 /server/cache
 /server/libs
 /ssl/www.swoole.com.key
 
@@ -0,0 +1,16 @@
+<?php
+define('ROOT', dirname(__DIR__));
+require ROOT . '/server/config.php';
+
+$curl = new \Swoole\Client\CURL();
+$html = $curl->get('https://gitee.com/swoole/swoole/tags', null, 30);
+if ($html and preg_match('#/swoole/swoole/tree/v(1\.\d+\.\d+)#i', $html, $match))
+{
+    $version1 = $match[1];
+    Swoole::$php->redis->set('swoole:latest:version1', $version1);
+}
+if ($html and preg_match('#/swoole/swoole/tree/v(2\.\d+\.\d+)#i', $html, $match))
+{
+    $version2 = $match[1];
+    Swoole::$php->redis->set('swoole:latest:version2', $version2);
+}
@@ -40,6 +40,16 @@ static function badUser($uid)
         return $banInfo->get();
     }
 
+    /**
+     * 是否验证过手机号码
+     */
+    static function isVerified($uid)
+    {
+        $user = table('user_login')->get($uid);
+
+        return $user->exist() and $user->mobile_verification;
+    }
+
     static function updateAvatarUrl(&$user, $https = false)
     {
         if (empty($user['avatar']))
@@ -55,4 +65,15 @@ static function updateAvatarUrl(&$user, $https = false)
             $user['avatar'] = 'https'.substr($user['avatar'], 4);
         }
     }
+
+    static function isAdmin($wiki_project_id, $uid)
+    {
+        $proj = table('wiki_project')->get(intval($wiki_project_id))->get();
+        if (!empty($proj['owner']))
+        {
+            return _string($proj['owner'])->split(',')->contains($uid);
+        }
+
+        return false;
+    }
 }
@@ -0,0 +1,7 @@
+<?php
+return array(
+    'cms' => '*',
+    'mblog' => '*',
+    'ask' => '*',
+    'page' => 'cms_index',
+);
@@ -0,0 +1,5 @@
+<?php
+return array(
+    'appid' => '1400054999',
+    'appkey' => '25b90bde481708f337dc05e5998f3e23',
+);
@@ -29,11 +29,7 @@ function getLoginInfo()
 
             if (!empty($_GET['prid']))
             {
-                $proj = table('wiki_project')->get(intval($_GET['prid']))->get();
-                if (!empty($proj['owner']))
-                {
-                    $user['admin'] = (new Swoole\StringObject($proj['owner']))->split(',')->contains($user['id']);
-                }
+                $user['admin'] = App\Api::isAdmin($_GET['prid'], $user['id']);
             }
 
             return $this->json($user);
@@ -43,15 +39,19 @@ function getLoginInfo()
 
     function delComment()
     {
-        if (empty($_COOKIE['PHPSESSID']))
+        if (empty($_COOKIE['PHPSESSID']) or empty($_POST['prid']))
         {
-            return $this->json([], 403);
+            return $this->json([], 103);
         }
         $this->session->start();
         if (empty($_SESSION['user']))
         {
             return $this->json(['login' => $this->config['user']['login_url']], 403);
         }
+        if (!App\Api::isAdmin($_POST['prid'], $_SESSION['user']['id']))
+        {
+            return $this->json([], 1002);
+        }
         if (empty($_POST['id']))
         {
             return $this->json(null, 1001);
 
@@ -56,17 +56,28 @@ function callback_weibo()
             //不存在，则插入数据库
             if (!$u->exist())
             {
-                $user['username'] = $username;
-                $user['nickname'] = $userinfo['name'];
-                $user['avatar'] = $userinfo['avatar_large'];
-                $user['blog'] = $userinfo['url'];
-                list($user['province'], $user['city']) = explode(' ', $userinfo['location']);
-                //插入到表中
-                $user['id'] = $model->put($user);
-                $uid = $user['id'];
+                $u =  $model->get($username, 'qq_uid');
+                if (!$u->exist())
+                {
+                    $user['username'] = $username;
+                    $user['nickname'] = $userinfo['name'];
+                    $user['avatar'] = $userinfo['avatar_large'];
+                    $user['blog'] = $userinfo['url'];
+                    $user['lastlogin'] = Swoole\Tool::now();
+                    $user['lastip'] = $this->request->getClientIP();
+                    list($user['province'], $user['city']) = explode(' ', $userinfo['location']);
+                    //插入到表中
+                    $user['id'] = $model->put($user);
+                    $uid = $user['id'];
+                }
+                else
+                {
+                    goto update;
+                }
             }
             else
             {
+                update:
                 $u->nickname = $userinfo['name'];
                 $u->avatar = $userinfo['avatar_large'];
                 $u->blog = $userinfo['url'];
@@ -138,27 +149,40 @@ function callback_qq()
             {
                 throw new Exception("QQ登录出错了");
             }
+
             $u = $model->get($username, 'username');
             //不存在，则插入数据库
             if (!$u->exist())
             {
-                $user['username'] = $username;
-                $user['nickname'] = $userinfo['nickname'];
-                $user['avatar'] = $userinfo['figureurl_2'];
-                $user['birth_year'] = $userinfo['year'];
-                $user['province'] = $userinfo['province'];
-                $user['city'] = $userinfo['city'];
-                $user['sex'] = $userinfo['gender'] == '男' ? 1 : 2;
-                //插入到表中
-                $user['id'] = $model->put($user);
-                $uid = $user['id'];
+                $u =  $model->get($username, 'qq_uid');
+                if (!$u->exist())
+                {
+                    $user['qq_uid'] = $username;
+                    $user['nickname'] = $userinfo['nickname'];
+                    $user['avatar'] = $userinfo['figureurl_2'];
+                    $user['birth_year'] = $userinfo['year'];
+                    $user['province'] = $userinfo['province'];
+                    $user['city'] = $userinfo['city'];
+                    $user['sex'] = $userinfo['gender'] == '男' ? 1 : 2;
+                    $user['lastlogin'] = Swoole\Tool::now();
+                    $user['lastip'] = $this->request->getClientIP();
+                    //插入到表中
+                    $user['id'] = $model->put($user);
+                    $uid = $user['id'];
+                }
+                else
+                {
+                    goto update;
+                }
             }
             else
             {
+                update:
                 $u->nickname = $userinfo['nickname'];
                 $u->avatar = $userinfo['figureurl_2'];
                 $u->province = $userinfo['province'];
                 $u->city = $userinfo['city'];
+                $u->qq_uid = $username;
                 $u->save();
                 $user = $u->get();
                 $uid = $user['id'];
@@ -247,7 +271,18 @@ function detail()
 		$this->swoole->tpl->display('page_news_detail.html');
 	}
 
-	function index()
+    function index()
+    {
+        if (_string($_SERVER['HTTP_ACCEPT_LANGUAGE'])->startWith('en') and
+            !_string($_SERVER['HTTP_REFER'])->contains('swoole.co.uk')
+        )
+        {
+            $this->http->redirect('https://www.swoole.co.uk/');
+        }
+        $this->display();
+    }
+
+	function cms_index()
 	{
         if (empty($_GET['p']) or $_GET['p'] == 'index')
         {
@@ -352,7 +387,7 @@ function login()
 
     function logout()
     {
-        $this->http->setcookie('uname', '', null, '/', 'swoole.com');
+        $this->http->setcookie('uname', '');
         $this->user->logout();
         $this->swoole->http->redirect('/page/login/');
     }
 
@@ -1,6 +1,7 @@
 <?php
 namespace App\Controller;
 use Swoole;
+use ZenAPI\Exception;
 
 class Person extends \App\UserBase
 {
@@ -408,10 +409,31 @@ function mobile_verify()
         }
         if ($_POST)
         {
-            $this->validate($_POST, array(
-                'mobile' => 'required|mobile',
-                'smscode' => 'required|int'
-            ));
+            try
+            {
+                $this->validate($_POST, array(
+                    'mobile' => 'required|mobile',
+                    'smscode' => 'required|int'
+                ));
+            }
+            catch (\Exception $e)
+            {
+                $this->assign('msg', ['code' => 5000, 'message' => $e->getMessage()]);
+                goto display;
+            }
+
+            if (strlen($_POST['mobile']) != 11)
+            {
+                $this->assign('msg', ['code' => 1001, 'message' => '错误的手机号码，必须为11位有效号码']);
+                goto display;
+            }
+
+            $userTable = table('user_login');
+            if ($userTable->exists(['mobile' => trim($_POST['mobile']), 'mobile_verification' => 1]))
+            {
+                $this->assign('msg', ['code' => 4003, 'message' => "手机号码 [{$_POST['mobile']}] 已绑定其他用户。"]);
+                goto display;
+            }
 
             $table = table('user_smscode');
             $data = $table->gets([
@@ -421,12 +443,12 @@ function mobile_verify()
             ]);
             if (empty($data))
             {
-                $this->assign('msg', $this->message(4001, '错误的验证码'));
+                $this->assign('msg',['code' => 4001, 'message' => '错误的短信验证码']);
                 goto display;
             }
             if ($data['verified'])
             {
-                $this->assign('msg', $this->message(4002, '该手机号码已验证过，无需再次验证'));
+                $this->assign('msg', ['code' => 4002, 'message' => '该手机号码已验证过，无需再次验证']);
                 goto display;
             }
             $table->set($data[0]['id'], ['verified' => 1]);
 
@@ -308,6 +308,26 @@ function edit()
             return "您已被列入黑名单，请联系管理员。<br />操作时间：{$info['created_time']}<br />原因：{$info['remarks']}";
         }
 
+        if (!App\Api::isVerified($uid))
+        {
+            $this->assign('error', 1);
+            $this->assign('info', '您的手机号码尚未验证通过，暂时无法参与编辑。请验证手机号码后重试。');
+            $this->assign('links', [
+                [
+                    'url' => '/person/mobile_verify/',
+                    'text' => '立即验证手机号码',
+                    'type' => 'success',
+                ],
+                [
+                    'url' => '/wiki/page/'.$_GET['id'].'.html',
+                    'text' => '取消并返回',
+                    'type' => 'warning',
+                ],
+            ]);
+            $this->display('include/page.php');
+            return;
+        }
+
         $id = (int)$_GET['id'];
         $_cont = model('WikiContent');
         $_tree = model('WikiTree');
@@ -363,7 +383,8 @@ function edit()
                 //更新节点
                 $node->update_uid = $uid;
                 $node->text = $cont->title;
-
+                //增加版本号
+                $cont->version = intval($cont->version) + 1;
                 //写入历史记录
                 $_historyTable = table('wiki_history');
                 $_historyTable->put(array(
@@ -384,9 +405,6 @@ function edit()
                         'chrono' => time()
                     ]);
                 }
-                //增加版本号
-                $cont->version = intval($cont->version) + 1;
-
                 //更新缓存
                 App\Content::clearCache($node->id);
                 if (!$node->save())
@@ -429,7 +447,7 @@ function edit()
                 }
                 $cont->id = $node->_current_id;
                 $cont->uptime = time();
-                $cont->version = 1;
+                $cont->version = 0;
                 //写入历史记录
                 $_historyTable = table('wiki_history');
                 $_historyTable->put(array(
Original file line number	Diff line number	Diff line change
`@@ -29,11 +29,7 @@ function getLoginInfo()`
`29`	`29`
`30`	`30`	`if (!empty($_GET['prid']))`
`31`	`31`	`{`
`32`		`- $proj = table('wiki_project')->get(intval($_GET['prid']))->get();`
`33`		`- if (!empty($proj['owner']))`
`34`		`- {`
`35`		`- $user['admin'] = (new Swoole\StringObject($proj['owner']))->split(',')->contains($user['id']);`
`36`		`- }`
	`32`	`+ $user['admin'] = App\Api::isAdmin($_GET['prid'], $user['id']);`
`37`	`33`	`}`
`38`	`34`
`39`	`35`	`return $this->json($user);`
`@@ -43,15 +39,19 @@ function getLoginInfo()`
`43`	`39`
`44`	`40`	`function delComment()`
`45`	`41`	`{`
`46`		`- if (empty($_COOKIE['PHPSESSID']))`
	`42`	`+ if (empty($_COOKIE['PHPSESSID']) or empty($_POST['prid']))`
`47`	`43`	`{`
`48`		`- return $this->json([], 403);`
	`44`	`+ return $this->json([], 103);`
`49`	`45`	`}`
`50`	`46`	`$this->session->start();`
`51`	`47`	`if (empty($_SESSION['user']))`
`52`	`48`	`{`
`53`	`49`	`return $this->json(['login' => $this->config['user']['login_url']], 403);`
`54`	`50`	`}`
	`51`	`+ if (!App\Api::isAdmin($_POST['prid'], $_SESSION['user']['id']))`
	`52`	`+ {`
	`53`	`+ return $this->json([], 1002);`
	`54`	`+ }`
`55`	`55`	`if (empty($_POST['id']))`
`56`	`56`	`{`
`57`	`57`	`return $this->json(null, 1001);`