登录 注册
开源 企业版 高校版 私有云 Gitee AI NEW
扫描微信二维码支付
取消
支付完成
Watch
不关注 关注所有动态 仅关注版本发行动态 关注但不提醒动态
1 Star 0 Fork 0

junphine/webim

代码 Issues 0 Pull Requests 0 Wiki 统计 流水线
服务
加入 Gitee
与超过 1200万 开发者一起发现、参与优秀开源项目,私有仓库也完全免费 :)
免费加入
文件
克隆/下载
client.php 6.33 KB
一键复制 编辑 原始数据 按行查看 历史
九尾银狐 提交于 2020-10-24 15:38 . no commit message
123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193
<?php

/*

 * This file is a part of Mibew Messenger.

 *

 * Copyright 2005-2015 the original author or authors.

 *

 * Licensed under the Apache License, Version 2.0 (the "License");

 * you may not use this file except in compliance with the License.

 * You may obtain a copy of the License at

 *

 *     http://www.apache.org/licenses/LICENSE-2.0

 *

 * Unless required by applicable law or agreed to in writing, software

 * distributed under the License is distributed on an "AS IS" BASIS,

 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

 * See the License for the specific language governing permissions and

 * limitations under the License.

 */



require_once('libs/common.php');

require_once('libs/chat.php');

require_once('libs/operator.php');

require_once('libs/groups.php');

require_once('libs/expand.php');

require_once('libs/captcha.php');

require_once('libs/notify.php');



loadsettings();

if($settings['enablessl'] == "1" && $settings['forcessl'] == "1") {

	if(!is_secure_request()) {

		$requested = $_SERVER['PHP_SELF'];

		if($_SERVER['REQUEST_METHOD'] == 'GET' && $_SERVER['QUERY_STRING']) {

			header("Location: ".get_app_location(true,true)."/client.php?".$_SERVER['QUERY_STRING']);

		} else {

			die("only https connections are handled");

		} 		

		exit;

	}

}



if( !isset($_GET['token']) || !isset($_GET['thread']) ) {



	$thread = NULL;

	if( isset($_SESSION['threadid']) ) {

		$thread = reopen_thread($_SESSION['threadid']);

	}



	if( !$thread ) {

		$groupid = "";

		$groupname = "";

		if($settings['enablegroups'] == '1') {

			$groupid = verifyparam( "group", "/^\d{1,10}$/", "");

			if($groupid) {

				$group = group_by_id($groupid);

				if(!$group) {

					$groupid = "";

				} else {

					$groupname = get_group_name($group);

				}

			}

		}



		$visitor = visitor_from_request();

		

		if(isset($_POST['survey']) && $_POST['survey'] == 'on') {

			$firstmessage = getparam("message");

			$info = getparam("info");

			$email = getparam("email");

			$referrer = urldecode(getparam("referrer"));

			if ($settings["surveyaskcaptcha"] == "1") {

				$captcha = getparam('captcha');

				$original = isset($_SESSION["mibew_captcha"])

					? $_SESSION["mibew_captcha"]

					: "";

				$survey_captcha_failed = empty($original)

					|| empty($captcha)

					|| $captcha != $original;

				unset($_SESSION['mibew_captcha']);

			}



			if($settings['usercanchangename'] == "1" && isset($_POST['name'])) {

				$newname = getparam("name");

				if($newname != $visitor['name']) {

					$data = strtr(base64_encode(myiconv($mibew_encoding,"utf-8",$newname)), '+/=', '-_,');

					setcookie($namecookie, $data, time()+60*60*24*365);

					$visitor['name'] = $newname;

				}

			}

		} else {

			$firstmessage = NULL;

			$info = getgetparam('info');

			$email = getgetparam('email');

			$referrer = isset($_GET['url']) ? $_GET['url'] :

				(isset($_SERVER['HTTP_REFERER']) ? $_SERVER['HTTP_REFERER'] : "");

			if(isset($_GET['referrer']) && $_GET['referrer']) {

				$referrer .= "\n".$_GET['referrer'];

			}

		}



		if(!has_online_operators($groupid)) {

			$page = array();

			setup_logo();

			setup_leavemessage($visitor['name'],$email,$firstmessage,$groupid,$groupname,$info,$referrer,can_show_captcha());

			expand("styles", getchatstyle(), "leavemessage.tpl");

			exit;

		}



		$show_survey = $settings['enablepresurvey'] == '1'

			&& (

			    !(isset($_POST['survey']) && $_POST['survey'] == 'on')

			    || ($settings["surveyaskcaptcha"] == "1" && !empty($survey_captcha_failed))

			);

		if($show_survey) {

			$page = array();

			setup_logo();

			if (!empty($survey_captcha_failed)) {

			    $errors[] = getlocal('errors.captcha');

			}

			setup_survey($visitor['name'], $email, $groupid, $info, $referrer, can_show_captcha());

			expand("styles", getchatstyle(), "survey.tpl");

			exit;

		}



		$remoteHost = get_remote_host();

		$userbrowser = $_SERVER['HTTP_USER_AGENT'];



		$link = connect();

		if(!check_connections_from_remote($remoteHost, $link)) {

			mysql_close($link);

			die("number of connections from your IP is exceeded, try again later");

		}

		$thread = create_thread($groupid,$visitor['name'], $remoteHost, $referrer,$current_locale,$visitor['id'], $userbrowser,$state_loading,$link);

		$_SESSION['threadid'] = $thread['threadid'];



		// Store own thread ids to restrict access for other people

		if (!isset($_SESSION['own_threads'])) {

			$_SESSION['own_threads'] = array();

		}

		$_SESSION['own_threads'][] = $thread['threadid'];



		if( $referrer ) {

			post_message_($thread['threadid'],$kind_for_agent,getstring2('chat.came.from',array($referrer),true),$link);

		}

		post_message_($thread['threadid'],$kind_info,getstring('chat.wait', true),$link);

		if($email) {

			post_message_($thread['threadid'],$kind_for_agent,getstring2('chat.visitor.email',array($email),true),$link);

		}

		if($info) {

			post_message_($thread['threadid'],$kind_for_agent,getstring2('chat.visitor.info',array($info),true),$link);

		}

		if($firstmessage) {

			$postedid = post_message_($thread['threadid'],$kind_user,$firstmessage,$link,$visitor['name']);

			if ($postedid) {

				commit_thread( $thread['threadid'], array('shownmessageid' => intval($postedid)), $link);

			}

		}

		notify_operators($thread, $firstmessage, $link);

		mysql_close($link);

	}

	$threadid = $thread['threadid'];

	$token = $thread['ltoken'];

	$level = get_remote_level($_SERVER['HTTP_USER_AGENT']);

	$chatstyle = verifyparam( "style", "/^\w+$/", "");

	header("Location: $mibewroot/client.php?thread=$threadid&token=$token&level=$level".($chatstyle ? "&style=$chatstyle" : ""));

	exit;

}



$token = verifyparam( "token", "/^\d{1,10}$/");

$threadid = verifyparam( "thread", "/^\d{1,10}$/");

$level = verifyparam( "level", "/^(ajaxed|simple|old)$/");



// We have to check that the thread is owned by the user.

$is_own_thread = isset($_SESSION['own_threads']) && in_array($threadid, $_SESSION['own_threads']);



$thread = thread_by_id($threadid);

if( !$thread || !isset($thread['ltoken']) || $token != $thread['ltoken'] || !$is_own_thread ) {

	die("wrong thread");

}



setup_chatview_for_user($thread, $level);



$pparam = verifyparam( "act", "/^(mailthread)$/", "default");

if( $pparam == "mailthread" ) {

	expand("styles", getchatstyle(), "mail.tpl");

} else if( $level == "ajaxed" ) {

	expand("styles", getchatstyle(), "chat.tpl");

} else if( $level == "simple" ) {

	expand("styles", getchatstyle(), "chatsimple.tpl");

} else if( $level == "old" ) {

	expand("styles", getchatstyle(), "nochat.tpl");

}



?>
Loading...
马建仓 AI 助手
尝试更多
代码解读
代码找茬
代码优化
PHP
1
https://gitee.com/junphine/webim.git
git@gitee.com:junphine/webim.git
junphine
webim
webim
master
点此查找更多帮助

搜索帮助

Git 命令在线学习 如何在 Gitee 导入 GitHub 仓库
Git 仓库基础操作
企业版和社区版功能对比
SSH 公钥设置
如何处理代码冲突
仓库体积过大,如何减小?
如何找回被删除的仓库数据
Gitee 产品配额说明
GitHub仓库快速导入Gitee及同步更新
什么是 Release(发行版)
将 PHP 项目自动发布到 packagist.org
评论
仓库举报
回到顶部