如何用Php编写注册后Email激活的验证代码

来源:http://blog.hao909.com/%E5%A6%82%E4%BD%95%E7%94%A8php%E7%BC%96%E5%86%99%E6%B3%A8%E5%86%8C%E5%90%8Eemail%E6%BF%80%E6%B4%BB%E7%9A%84%E9%AA%8C%E8%AF%81%E4%BB%A3%E7%A0%81/

通过使用Email验证激活的方法,可以有效的帮你阻止恶意的Spam和注册机器人的访问。
php编写注册后Email验证激活的步骤非常简单,相信几分钟之内你就能学会。
总共需两个页面,register.php 和 verify.php

1. 用户注册表格 register.php

01 <html>
02 <body>
03   <form action="register.php" method="post" name="register">
04      用户名:<input type="text" name="username" />
05      密码:<input type="password" name="password" />
06      电子邮件:<input type="text" name="email" />
07      <input type="submit" value="注册" />
08   </form>
09 </body>
10 </html>

2. 创建用户数据表格 Users

01 CREATE TABLE IF NOT EXISTS `users` (
02   `id` int(11) NOT NULL auto_increment,
03   `status` varchar(20) NOT NULL,
04   `username` varchar(20) NOT NULL,
05   `password` varchar(20) NOT NULL,
06   `email` varchar(20) NOT NULL,
07   `activationkey` varchar(100) NOT NULL,
08   PRIMARY KEY  (`id`),
09   UNIQUE KEY `username` (`username`),
10   UNIQUE KEY `email` (`email`),
11   UNIQUE KEY `activationkey` (`activationkey`)
12 ) ENGINE=MyISAM  DEFAULT CHARSET=latin1 AUTO_INCREMENT=9 ;

3. 创建验证码 用户注册信息存入数据表

我们使用状态‘verify’ 来表示尚未激活的用户。

1 $activationKey =  mt_rand() . mt_rand() . mt_rand() . mt_rand() . mt_rand();
2  
3 $username = mysql_real_escape_string($_POST[username]);
4 $password = mysql_real_escape_string($_POST[password]);
5  
6 $email = mysql_real_escape_string($_POST[email]);
7  
8 $sql="INSERT INTO users (username, password, email, activationkey, status) VALUES ('$username', '$password', '$email', '$activationKey', 'verify')";

4. 发送验证码

01 echo "An email has been sent to $_POST[email] with an activation key. Please check your mail to complete registration.";
02  
03 ##Send activation Email
04  
05 $to      = $_POST[email];
06 $subject = " YOURWEBSITE.com Registration";
07 $message = "Welcome to our website!\r\rYou, or someone using your email address, has completed registration at YOURWEBSITE.com. You can complete registration by clicking the following link:\rhttp://www.YOURWEBSITE.com/verify.php?$activationKey\r\rIf this is an error, ignore this email and you will be removed from our mailing list.\r\rRegards,\ YOURWEBSITE.com Team";
08  
09 $headers = 'From: noreply@ YOURWEBSITE.com' . "\r\n" .
10  
11     'Reply-To: noreply@ YOURWEBSITE.com' . "\r\n" .
12  
13     'X-Mailer: PHP/' . phpversion();
14  
15 mail($to, $subject, $message, $headers);

5. 验证激活代码 verify.php

如果验证码相同,则激活用户。

01 $queryString = $_SERVER['QUERY_STRING'];
02  
03 $query = "SELECT * FROM users";
04 $result = mysql_query($query) or die(mysql_error());
05  
06 while($row = mysql_fetch_array($result)){
07  
08     if ($queryString == $row["activationkey"]){
09        echo "Congratulations!" . $row["username"] . " is now the proud new owner of a YOURWEBSITE.com account.";
10        $sql="UPDATE users SET activationkey = '', status='activated' WHERE (id = $row[id])";
11         
12        if (!mysql_query($sql)) {
13           die('Error: ' . mysql_error());
14        }
15         
16         // 到这里,用户已经完全激活了账号,你可以将页面跳转到登陆后的界面了
17  
18     }
19   } // end of while
posted @ 2013-03-11 17:13  hasayaki  阅读(553)  评论(0编辑  收藏  举报