MessInputController.class.php
1.79 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
<?php
/**
* Created by PhpStorm.
* User: Dell
* Date: 2018/9/3
* Time: 17:57
*/
namespace Api\Controller\Message;
use Common\Model\MessagesModel;
class MessInputController extends \Api\Controller\AbstractController
{
/**
* 是否需要登录
*
* @var bool
*/
protected $_require_login = false;
public function Index_post()
{
session_start();
$data = $this->checkFields( I('post.') );
if( !$data ){
$this->_result = "数据验证失败";
die;
}
$messagesModel = new MessagesModel();
$messagesModel->m_uid = $_SESSION['userid'];
$messagesModel->m_title = $data['title'];
$messagesModel->m_content = $data['message'];
$messagesModel->m_ip = $_SERVER['REMOTE_ADDR'];
//$this->_result = "您已留言成功,请等待审核。";
}
/**
* 验证提交参数字段合法性
*
* @param array $postData
* @return bool
*/
private function checkFields($postData = [])
{
$parrent = "/\ |\/|\~|\!|\@|\#|\\$|\%|\^|\&|\*|\(|\)|\_|\+|\{|\}|\:|\<|\>|\?|\[|\]|\,|\.|\/|\;|\\' | \`|\-|\=|\\\|\|/";
$data = [];
if( empty($postData['title']) || strlen($postData['title'])>80 ){
$this->_result = "标题不能为空且标题长度必须小于80。";
return false;
}else{
$data['title'] = preg_replace( $parrent, "", $postData['title']);
}
if( empty($postData['message']) || strlen($postData['message'])>500 ){
$this->_result = "留言内容不能为空且长度必须小于500。";
return false;
}else{
$data['message'] = preg_replace( $parrent, "", $postData['message'] );
}
return $data;
}
}