Home Explore Help
Register Sign In
qianda
/
hebei-chengben-car
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: ba40f1176c
Branches Tags
hebei-chengben-...
/
static
/
plugins
/
ueditor1_4_3
/
php
/
controller.php

controller.php 4.8 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129 
  1. <?php
    2. 

  2. header("Access-Control-Allow-Origin: *");//允许跨域
    3. 

  3. header('Access-Control-Allow-Headers: X-Requested-With,X_Requested_With'); //设置允许的跨域header
    4. 

  4. //date_default_timezone_set("Asia/chongqing");
    5. 

  5. error_reporting(E_ERROR);
    6. 

  6. header("Content-Type: text/html; charset=utf-8");
    7. 

  7. if(isset($_GET['auth_key'])){
    8. 

  8.     define('AUTH_KEY',urldecode($_GET['auth_key']));
    9. 

  9. }
    10. 

  10. else
    11. 

  11. {
    12. 

  12.     exit("缺少解密秘钥");
    13. 

  13. }
    14. 

  14. if(isset($_GET['base_path']))define('BASE_PATH',decode_path($_GET['base_path'],'DECODE'));
    15. 

  15. if(isset($_GET['app_path']))define('APP_PATH',decode_path($_GET['app_path'],'DECODE'));
    16. 

  16. if(isset($_GET['upload_path']))define('UPLOAD_PATH',decode_path($_GET['upload_path'],'DECODE'));
    17. 

  17. $config = require_once  BASE_PATH.'config'.DIRECTORY_SEPARATOR.'config.php';
    18. 

  18. require BASE_PATH . 'vendor/autoload.php';
    19. 

  19. require BASE_PATH . 'vendor/yiisoft/yii2/Yii.php';
    20. 

  20. require_once  BASE_PATH.'common'.DIRECTORY_SEPARATOR.'functions'.DIRECTORY_SEPARATOR.'global.php';
    21. 

  21. require_once  BASE_PATH.'common'.DIRECTORY_SEPARATOR.'functions'.DIRECTORY_SEPARATOR.'cus.php';
    22. 

  22. require_once  BASE_PATH.'common'.DIRECTORY_SEPARATOR.'functions'.DIRECTORY_SEPARATOR.'dir.php';
    23. 

  23. defined('MYIP') or define('MYIP',ip());
    24. 

  24. $domain = require_config('domain.php');
    25. 

  25. define('COOKIE_DOMAIN', $domain['cookie_domain']);//定义cookie全局域
    26. 

  26. define('WAP_URL', $domain['wap_url']);//WAP站域名
    27. 

  27. define('WEB_URL', $domain['web_url']);//站点域名
    28. 

  28. define('UPLOAD_DOMAIN', $domain['upload_domain']);//附件域名
    29. 

  29. $config = array_merge_recursive(require_config('web.php'), $config);
    30. 

  30. defined('UPLOAD_URL') or define('UPLOAD_URL',$config['params']['uploadUrl']);
    31. 

  31. //主机协议
    32. 

  32. define('SITE_PROTOCOL', isset($_SERVER['SERVER_PORT']) && $_SERVER['SERVER_PORT'] == '443' ? 'https://' : 'http://');
    33. 

  33. new yii\web\Application($config);
    34. 

  34. $ueditorConfig = $config['ueditor'];
    35. 

  35. $CONFIG = json_decode(preg_replace("/\/\*[\s\S]+?\*\//", "", file_get_contents("config.json")), true);
    36. 

  36. if(is_array($ueditorConfig))foreach($ueditorConfig as $key=>$value)//获取自定义配置
    37. 

  37. {
    38. 

  38.     if(strpos($value,'|'))
    39. 

  39.     {
    40. 

  40.         $temp = explode('|',$value);
    41. 

  41.         $temp = ".".join('|.',$temp);
    42. 

  42.         $temp = explode('|',$temp);
    43. 

  43.         $CONFIG[$key] = $temp;
    44. 

  44.     }
    45. 

  45.     else
    46. 

  46.     {
    47. 

  47.         $CONFIG[$key] = $value;
    48. 

  48.     }
    49. 

  49. }
    50. 

  50. $action = $_GET['action'];
    51. 

  51. switch ($action) {
    52. 

  52.     case 'config':
    53. 

  53.         $result =  json_encode($CONFIG);
    54. 

  54.         break;
    55. 

  55.     /* 上传图片 */
    56. 

  56.     case 'uploadimage':
    57. 

  57.         /* 上传涂鸦 */
    58. 

  58.     case 'uploadscrawl':
    59. 

  59.         /* 上传视频 */
    60. 

  60.     case 'uploadvideo':
    61. 

  61.         /* 上传文件 */
    62. 

  62.     case 'uploadfile':
    63. 

  63.         $result = include("action_upload.php");
    64. 

  64.         break;
    65. 

  65.     /* 列出图片 */
    66. 

  66.     case 'listimage':
    67. 

  67.         $result = include("action_list.php");
    68. 

  68.         break;
    69. 

  69.     /* 列出文件 */
    70. 

  70.     case 'listfile':
    71. 

  71.         $result = include("action_list.php");
    72. 

  72.         break;
    73. 

  73.     /* 抓取远程文件 */
    74. 

  74.     case 'catchimage':
    75. 

  75.         $result = include("action_crawler.php");
    76. 

  76.         break;
    77. 

  77.     default:
    78. 

  78.         $result = json_encode(array(
    79. 

  79.             'state'=> '请求地址出错'
    80. 

  80.         ));
    81. 

  81.         break;
    82. 

  82. }
    83. 

  83. 

  84. /* 输出结果 */
    85. 

  85. if (isset($_GET["callback"])) {
    86. 

  86.     if (preg_match("/^[\w_]+$/", $_GET["callback"])) {
    87. 

  87.         echo htmlspecialchars($_GET["callback"]) . '(' . $result . ')';
    88. 

  88.     } else {
    89. 

  89.         echo json_encode(array(
    90. 

  90.             'state'=> 'callback参数不合法'
    91. 

  91.         ));
    92. 

  92.     }
    93. 

  93. } else {
    94. 

  94.     echo $result;
    95. 

  95. }
    96. 

  96. 

  97. /**
    98. 

  98.  * 字符串加密、解密函数
    99. 

  99.  * @param	string	$txt		字符串
    100. 

  100.  * @param	string	$operation	ENCODE为加密,DECODE为解密,可选参数,默认为ENCODE,
    101. 

  101.  * @param	string	$key		密钥:数字、字母、下划线
    102. 

  102.  * @param	string	$expiry		过期时间
    103. 

  103.  * @return	string
    104. 

  104.  *
    105. 

  105.  */
    106. 

  106. function decode_path($string, $operation = 'ENCODE', $key = '', $expiry = 0) {
    107. 

  107.     $key_length = 4;
    108. 

  108.     $key = md5($key != '' ? $key : AUTH_KEY);
    109. 

  109.     $fixedkey = md5($key);
    110. 

  110.     $egiskeys = md5(substr($fixedkey, 16, 16));
    111. 

  111.     $runtokey = $key_length ? ($operation == 'ENCODE' ? substr(md5(microtime(true)), -$key_length) : substr($string, 0, $key_length)) : '';
    112. 

  112.     $keys = md5(substr($runtokey, 0, 16) . substr($fixedkey, 0, 16) . substr($runtokey, 16) . substr($fixedkey, 16));
    113. 

  113.     $string = $operation == 'ENCODE' ? sprintf('%010d', $expiry ? $expiry + time() : 0).substr(md5($string.$egiskeys), 0, 16) . $string : base64_decode(substr($string, $key_length));
    114. 

  114. 

  115.     $i = 0; $result = '';
    116. 

  116.     $string_length = strlen($string);
    117. 

  117.     for ($i = 0; $i < $string_length; $i++){
    118. 

  118.         $result .= chr(ord($string{$i}) ^ ord($keys{$i % 32}));
    119. 

  119.     }
    120. 

  120.     if($operation == 'ENCODE') {
    121. 

  121.         return $runtokey . str_replace('=', '', base64_encode($result));
    122. 

  122.     } else {
    123. 

  123.         if((substr($result, 0, 10) == 0 || substr($result, 0, 10) - time() > 0) && substr($result, 10, 16) == substr(md5(substr($result, 26).$egiskeys), 0, 16)) {
    124. 

  124.             return substr($result, 26);
    125. 

  125.         } else {
    126. 

  126.             return '';
    127. 

  127.         }
    128. 

  128.     }
    129. 

  129. }
    130.