PHP data 三大核心文件

common.php

<?php
/**
 * 提示信息
 * $msg 待提示的消息
 * $url 待跳转的链接,为空则返回
 * $icon 这里主要有两个，5和6，代表两种表情（哭和笑）
 * $time 弹出维持时间（单位秒）
 */
function prompt($msg='',$url='',$icon='6',$time=3){
    $str='<!DOCTYPE html><html><head><meta charset="utf-8"><meta name="viewport" content="width=device-width, initial-scale=1, maximum-scale=1"><title>提示信息</title></head><body>';
    $str.='<link rel="stylesheet" href="/_/_js/layui/css/layui.css">';
    $str.='<script type="text/javascript" src="/_/_js/layui/layui.js"></script>';
    $str.='<script type="text/javascript" src="/_/_js/jquery-1.10.1.min.js"></script>';
    if($url==''){
        $str.='<script type="text/javascript">$(function(){layer.msg("'.$msg.'",{icon:'.$icon.',time:'.($time*1000).'});setTimeout(function(){window.history.back();},'.($time*1000).')});</script>';
    }else{
        $str.='<script type="text/javascript">$(function(){layer.msg("'.$msg.'",{icon:'.$icon.',time:'.($time*1000).'});setTimeout(function(){self.location.href="'.$url.'";},'.($time*1000).')});</script>';
    }
    $str.='</body></html>';
    return $str;
}

/**
 * 过滤HTML
 * 去掉左右空格和转换单双引号
 */
function filterHTML($str){
    return htmlspecialchars(trim($str),ENT_QUOTES);
}

/**
 * 过滤SQL
 * 可使用本函数来预防数据库攻击
 */
function filterSQL($conn,$str){
    return mysqli_real_escape_string($conn,trim($str));
}

/**
 * 过滤空格 标签  SQL
 */
function filterTagSQL($conn,$str){
    return mysqli_real_escape_string($conn,strip_tags(trim($str)));
}

/**
 * 过滤生成描述
 */
function filterDesc($conn,$str){
    return mysqli_real_escape_string($conn,mb_substr(str_replace(array(" ","　","\t","\n","\r"),array("","","","",""),strip_tags($str)),0,250, 'utf-8'));
}

/**
 * 编码
 */
function enstr($str){
    return urlencode(base64_encode(trim($str)));
}

/**
 * 解码
 */
function destr($str){
    return base64_decode(urldecode($str));
}

/**
 * 字符串转数组，根据空格或换行符分割
 */
function strtoarr($str){
    $val = preg_replace("/\s+\r\n/is", ' ', trim($str));
    $val = preg_replace('/\s+\r/is', ' ', $val);
    $val = preg_replace('/\s+\n/is', ' ', $val);
    $val = preg_replace('/\s(?=\s)/','\\1',$val);
    $arr = explode(' ',$val);
    return $arr;
}

/**
 * 字符串转数组，根据换行符分割
 */
function strtoarrEol($str){
    $arr = explode(PHP_EOL,trim($str));
    return $arr;
}

/**
 * 字符串转数组转字符串，根据空格或换行符分割再换行符重组字符串
 */
function strtostr($str){
    $val = preg_replace("/\s+\r\n/is", ' ', htmlspecialchars(trim($str),ENT_QUOTES));
    $val = preg_replace('/\s+\r/is', ' ', $val);
    $val = preg_replace('/\s+\n/is', ' ', $val);
    $val = preg_replace('/\s(?=\s)/','\\1',$val);
    $arr = explode(' ',$val);
    $str2 = implode(PHP_EOL, $arr);
    return $str2;
}

/**
 * 将字符串生成四位数的小写字母及数字
 */
function strpad($str){
    $str = preg_replace('/[^a-zA-Z0-9]/', '', $str);
    $str = substr(strtolower($str), 0, 4);
    return str_pad($str, 4, '0', STR_PAD_LEFT);
}

config.php

<?php
if(isset($_SESSION['id']) && isset($_SESSION['sessid'])){
    $session_id = session_id();
    $sql = "SELECT id FROM u11 WHERE id='{$_SESSION['id']}' AND sessid='$session_id' ORDER BY id DESC LIMIT 1";
    $rows = mysqli_num_rows(sqlQuery($conn,$sql));
    if($rows == 0){
        mysqli_close($conn);
        echo prompt('对不起，你的帐号在其他地方登陆了！','/login.php',5,3);
        exit;
    }
}else{
    mysqli_close($conn);
    echo prompt('请登陆你的账号密码！','/login.php',5,3);
    exit;
}


/**
 * 全局变量，以$se开头
 */
//SESSION 全局变量
$titlebar = '未定义标题';
$seid = $_SESSION['id'];
$secname= $_SESSION['cname'];
$seuname = $_SESSION['uname'];
$seroleId = $_SESSION['role_id'];
$sebondId = $_SESSION['bond_id'];

//默认用户设置的全局变量
$sqlse = "SELECT isside, iscol, allwidth, pagenum, ning, nend, pai FROM u11aa WHERE id=$seid LIMIT 1";
$resse=sqlGetOne($conn,$sqlse);
$seisside = $resse['isside'];
$seiscol = $resse['iscol'];
$seallwidth = $resse['allwidth'];
$sepagenum = $resse['pagenum'];
$sening= $resse['ning'];
$senend= $resse['nend'];
$sepai = $resse['pai'];

//默认样式的全局变量
$setextCss = '';
$seissideCss = '';
$seiscolCss = '';
if($seisside!=1&&is_numeric($seisside)){
    $setextCss = "<style type='text/css'>.t-container { max-width: {$seallwidth}px !important;} .m-foot{max-width: {$seallwidth}px !important;} .t-sidebar{ display: none !important;} </style>";
    $seissideCss = 'layui-col-md12';
}else{
    $setextCss = "<style type='text/css'>.t-container { max-width: {$seallwidth}px !important;} .m-foot{max-width: {$seallwidth}px !important;}</style>";
    $seissideCss = 'layui-col-md9';

}
if($seiscol!=2&&is_numeric($seiscol)){
    $seiscolCss = 'layui-col-md12';
}else{
    $seiscolCss = 'layui-col-md6';
}

database.php

<?php
header('Content-Type: text/html; charset=utf-8');

//安全设置
if (!defined ('CHAOYI')){
	exit ('非法操作');
}

//转换硬路径常量
define ('ROOT', $_SERVER['DOCUMENT_ROOT'].'/_/');

$dbhost = "127.0.0.1"; // 数据库服务器地址
$dbuser = "icba"; // 数据库用户名
$dbpwd = "m599123"; // 数据库密码
$dbname = "icba"; // 数据库名

// 创建连接
global $conn;
$conn = mysqli_connect($dbhost, $dbuser, $dbpwd, $dbname);
 
 // 检查连接
if ($conn->connect_error) {
    die("连接失败: " . $conn->connect_error);
}

function sqlQuery($conn,$sql){
	if(! $result = mysqli_query($conn,$sql)){$conn->close();exit('SQL执行失败');}
	return $result;
}

function sqlGetOne($conn,$sql){
	return mysqli_fetch_array(sqlQuery($conn,$sql),MYSQLI_ASSOC);
}

//函数执行某个针对数据库的查询
//$result=mysqli_query($conn,$sql);

//从结果集中取得一行作为关联数组
//$result = mysqli_fetch_array(mysqli_query($conn,$sql),MYSQLI_ASSOC);

// 释放结果集
//mysqli_free_result($result);

//关闭连接
//$conn->close();
//mysqli_close($conn);