[問題]正確管道重新登入MOD

文章由 **jeffyuan** » 2006-01-14 01:30

請問我有架一個購物網
網上有個商品討論區~即PHPBB論壇
但近日發現很多人直接把論壇加入我的最愛
不經由購物網連結登入~如此主力的購物網便失去加入PHPBB論壇討論區的意義了
我記得有看過別的論壇也是加在購物網內~若單獨把論壇連結加入我的最愛
會出現:您並不是由正確管道登入請由正確管道重新登入
也就是必須重購物網連結登入論壇
不知有無此類MOD~替購物網增加曝光率

文章由 **Kill** » 2006-01-14 07:31

這要從cPanel下手

文章由 **~倉木麻衣~** » 2006-01-14 08:37

也可以利用Javascript
例如判斷是否是從tw.yahoo.com連過來的
只要在overall_header.tpl的</head>之前加上這段程式碼\r

代碼: 選擇全部

<Script Language="javascript">
	re = /tw\.yahoo\.com/;
	if (!re.test(document.referrer)) {
		alert('非法連結');
		window.location="http://tw.yahoo.com";
	}
</Script>

或是用PHP也可以
#
#--------[ OPEN ]----------------
#
ncludes/page_header.php

#
#--------[ FIND ]----------------
#

代碼: 選擇全部

$template->pparse('overall_header');

#
#--------[ BEFORE, ADD ]----------------
#

代碼: 選擇全部

if ( !preg_match("/tw\.yahoo\.com/i",$HTTP_SERVER_VARS['HTTP_REFERER']) )
{
	header ("Location: http://tw.yahoo.com/");
}

#
#--------[ SAVE/CLOSE FILE ]----------------
#
# EoM

代碼: 選擇全部

if ( !preg_match("/tw\.yahoo\.com/i",$HTTP_SERVER_VARS['HTTP_REFERER']) )
{
	header ("Location: http://tw.yahoo.com/");
}

也可以換成

代碼: 選擇全部

if ( ($pos = strpos($HTTP_SERVER_VARS['HTTP_REFERER'], "tw.yahoo.com")) !== false)
{
	header ("Location: http://tw.yahoo.com/");
}

不過, 請注意大小寫

文章由 **jeffyuan** » 2006-01-14 11:52

我的購物網網址:www.j-kst.com
論壇:http://www.j-kst.com/phpBB2/index.php
我因如何更改呢?
抱歉~我看不太懂?

文章由 **~倉木麻衣~** » 2006-01-14 14:11

把上例中的/tw\.yahoo\.com/換成你購物網站的網址就好了
上例中, 「/tw\.yahoo\.com/」這句是正規表示式裡的比對樣本(pattern)
document.referrer及$HTTP_SERVER_VARS['HTTP_REFERER']可取得文件的參照頁面(或稱來源頁面)
re.test(document.referrer)及preg_match("/tw\.yahoo\.com/i",$HTTP_SERVER_VARS['HTTP_REFERER']) 是用來測試來源頁面是否符合比對樣本

文章由 **jeffyuan** » 2006-01-14 17:19

~倉木麻衣~ 寫:也可以利用Javascript
例如判斷是否是從tw.yahoo.com連過來的
只要在overall_header.tpl的</head>之前加上這段程式碼\r
代碼: 選擇全部
<Script Language="javascript">
	re = /tw\.yahoo\.com/;
	if (!re.test(document.referrer)) {
		alert('非法連結');
		window.location="http://tw.yahoo.com";
	}
</Script>
或是用PHP也可以
#
#--------[ OPEN ]----------------
#
ncludes/page_header.php

#
#--------[ FIND ]----------------
#
代碼: 選擇全部
$template->pparse('overall_header');
#
#--------[ BEFORE, ADD ]----------------
#
代碼: 選擇全部
if ( !preg_match("/tw\.yahoo\.com/i",$HTTP_SERVER_VARS['HTTP_REFERER']) )
{
	header ("Location: http://tw.yahoo.com/");
}
#
#--------[ SAVE/CLOSE FILE ]----------------
#
# EoM
代碼: 選擇全部
if ( !preg_match("/tw\.yahoo\.com/i",$HTTP_SERVER_VARS['HTTP_REFERER']) )
{\r
	header ("Location: http://tw.yahoo.com/");
}
也可以換成
代碼: 選擇全部
if ( ($pos = strpos($HTTP_SERVER_VARS['HTTP_REFERER'], "tw.yahoo.com")) !== false)
{
	header ("Location: http://tw.yahoo.com/");
}
不過, 請注意大小寫

修改完~的確必須經由購物網進入論壇
但確發生論壇登入時跳回購物網~無法登入

文章由 **~倉木麻衣~** » 2006-01-14 17:39

jeffyuan 寫:修改完~的確必須經由購物網進入論壇
但確發生論壇登入時跳回購物網~無法登入

\r
會嗎?
我剛才測過用javascript或preg_match的方式
登入後都不會被導回參照頁

你可以試看看直接連結
http://sabcat.php2h.com/phpBB218/
測試帳號/密碼: test/test

不過, 倒是忘了一件事
修改個人資料或註冊等等會自動將頁面導回論壇首頁的動作都會被視為非法來源

文章由 **jeffyuan** » 2006-01-14 18:21

</script>

<Script Language="javascript">
re = /www\.j-kst\.com/;
if (!re.test(document.referrer)) {
alert('非法連結');
window.location="http://www.j-kst.com";
}
</Script>
登入都無法登入說
帳號:test
密碼:test

可以讓註冊or修改個人資料BUG改掉嗎?

文章由 **~倉木麻衣~** » 2006-01-14 18:30

我這邊正在測另一種方式
不過, 得先確認一下你購物網站的index.php內容
麻煩打包一下並提供下載點吧

文章由 **jeffyuan** » 2006-01-14 19:02

我沒空間可放下載檔
我用貼上的方式

代碼: 選擇全部

<?php
/*
  $Id: index.php,v 1.1.1.1 2003/08/14 07:58:31 nickle Exp $

  osCommerce, Open Source E-Commerce Solutions
  http://www.oscommerce.com

  Copyright (c) 2003 osCommerce

  Released under the GNU General Public License
*/

  require('includes/application_top.php');

// the following cPath references come from application_top.php
  $category_depth = 'top';
  if (isset($cPath) && tep_not_null($cPath)) {
    $categories_products_query = tep_db_query("select count(*) as total from " . TABLE_PRODUCTS_TO_CATEGORIES . " where categories_id = '" . (int)$current_category_id . "'");
    $cateqories_products = tep_db_fetch_array($categories_products_query);
    if ($cateqories_products['total'] > 0) {
      $category_depth = 'products'; // display products
    } else {
      $category_parent_query = tep_db_query("select count(*) as total from " . TABLE_CATEGORIES . " where parent_id = '" . (int)$current_category_id . "'");
      $category_parent = tep_db_fetch_array($category_parent_query);
      if ($category_parent['total'] > 0) {
        $category_depth = 'nested'; // navigate through the categories
      } else {
        $category_depth = 'products'; // category has no products, but display the 'no products' message
      }
    }
  }

  require(DIR_WS_LANGUAGES . $language . '/' . FILENAME_DEFAULT);
?>
<!doctype html public "-//W3C//DTD HTML 4.01 Transitional//EN">
<html <?php echo HTML_PARAMS; ?>>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=<?php echo CHARSET; ?>"> 
<title><?php echo TITLE; ?></title>
<base href="<?php echo (($request_type == 'SSL') ? HTTPS_SERVER : HTTP_SERVER) . DIR_WS_CATALOG; ?>">
<link rel="stylesheet" type="text/css" href="stylesheet.css">
</head>
<body marginwidth="0" marginheight="0" topmargin="0" bottommargin="0" leftmargin="0" rightmargin="0">
<!-- header //-->
<?php require(DIR_WS_INCLUDES . 'header.php'); ?>
<!-- header_eof //-->

<!-- body //-->
<table border="0" width="100%" cellspacing="3" cellpadding="3">
  <tr>
    <td width="<?php echo BOX_WIDTH; ?>" valign="top"><table border="0" width="<?php echo BOX_WIDTH; ?>" cellspacing="0" cellpadding="2">
<!-- left_navigation //-->
<?php require(DIR_WS_INCLUDES . 'column_left.php'); ?>
<!-- left_navigation_eof //-->
    </table></td>
<!-- body_text //-->
<?php
  if ($category_depth == 'nested') {
    $category_query = tep_db_query("select cd.categories_name, c.categories_image from " . TABLE_CATEGORIES . " c, " . TABLE_CATEGORIES_DESCRIPTION . " cd where c.categories_id = '" . (int)$current_category_id . "' and cd.categories_id = '" . (int)$current_category_id . "' and cd.language_id = '" . (int)$languages_id . "'");
    $category = tep_db_fetch_array($category_query);
?>
    <td width="100%" valign="top"><table border="0" width="100%" cellspacing="0" cellpadding="0">
      <tr>
        <td><table border="0" width="100%" cellspacing="0" cellpadding="0">
          <tr>
            <td class="pageHeading"><?php echo HEADING_TITLE; ?></td>
            <td class="pageHeading" align="right"><?php echo tep_image(DIR_WS_IMAGES . $category['categories_image'], $category['categories_name'], HEADING_IMAGE_WIDTH, HEADING_IMAGE_HEIGHT); ?></td>
          </tr>
        </table></td>
      </tr>
      <tr>
        <td><?php echo tep_draw_separator('pixel_trans.gif', '100%', '10'); ?></td>
      </tr>
      <tr>
        <td><table border="0" width="100%" cellspacing="0" cellpadding="2">
          <tr>
            <td><table border="0" width="100%" cellspacing="0" cellpadding="2">
              <tr>
<?php
    if (isset($cPath) && strpos('_', $cPath)) {
// check to see if there are deeper categories within the current category
      $category_links = array_reverse($cPath_array);
      for($i=0, $n=sizeof($category_links); $i<$n; $i++) {
        $categories_query = tep_db_query("select count(*) as total from " . TABLE_CATEGORIES . " c, " . TABLE_CATEGORIES_DESCRIPTION . " cd where c.parent_id = '" . (int)$category_links[$i] . "' and c.categories_id = cd.categories_id and cd.language_id = '" . (int)$languages_id . "'");
        $categories = tep_db_fetch_array($categories_query);
        if ($categories['total'] < 1) {
          // do nothing, go through the loop
        } else {
          $categories_query = tep_db_query("select c.categories_id, cd.categories_name, c.categories_image, c.parent_id from " . TABLE_CATEGORIES . " c, " . TABLE_CATEGORIES_DESCRIPTION . " cd where c.parent_id = '" . (int)$category_links[$i] . "' and c.categories_id = cd.categories_id and cd.language_id = '" . (int)$languages_id . "' order by sort_order, cd.categories_name");
          break; // we've found the deepest category the customer is in
        }
      }
    } else {
      $categories_query = tep_db_query("select c.categories_id, cd.categories_name, c.categories_image, c.parent_id from " . TABLE_CATEGORIES . " c, " . TABLE_CATEGORIES_DESCRIPTION . " cd where c.parent_id = '" . (int)$current_category_id . "' and c.categories_id = cd.categories_id and cd.language_id = '" . (int)$languages_id . "' order by sort_order, cd.categories_name");
    }

    $number_of_categories = tep_db_num_rows($categories_query);

    $rows = 0;
    while ($categories = tep_db_fetch_array($categories_query)) {
      $rows++;
      $cPath_new = tep_get_path($categories['categories_id']);
      $width = (int)(100 / MAX_DISPLAY_CATEGORIES_PER_ROW) . '%';
      echo '                <td align="center" class="smallText" width="' . $width . '" valign="top"><a href="' . tep_href_link(FILENAME_DEFAULT, $cPath_new) . '">' . tep_image(DIR_WS_IMAGES . $categories['categories_image'], $categories['categories_name'], SUBCATEGORY_IMAGE_WIDTH, SUBCATEGORY_IMAGE_HEIGHT) . '<br>' . $categories['categories_name'] . '</a></td>' . "
";
      if ((($rows / MAX_DISPLAY_CATEGORIES_PER_ROW) == floor($rows / MAX_DISPLAY_CATEGORIES_PER_ROW)) && ($rows != $number_of_categories)) {
        echo '              </tr>' . "
";
        echo '              <tr>' . "
";
      }
    }

// needed for the new products module shown below
    $new_products_category_id = $current_category_id;
?>
              </tr>
            </table></td>
          </tr>
          <tr>
            <td><?php echo tep_draw_separator('pixel_trans.gif', '100%', '10'); ?></td>
          </tr>
          <tr>
            <td><?php include(DIR_WS_MODULES . FILENAME_NEW_PRODUCTS); ?></td>
          </tr>
        </table></td>
      </tr>
    </table></td>
<?php
  } elseif ($category_depth == 'products' || isset($HTTP_GET_VARS['manufacturers_id'])) {
// create column list
    $define_list = array('PRODUCT_LIST_MODEL' => PRODUCT_LIST_MODEL,
                         'PRODUCT_LIST_NAME' => PRODUCT_LIST_NAME,
                         'PRODUCT_LIST_MANUFACTURER' => PRODUCT_LIST_MANUFACTURER,
                         'PRODUCT_LIST_PRICE' => PRODUCT_LIST_PRICE,
                         'PRODUCT_LIST_QUANTITY' => PRODUCT_LIST_QUANTITY,
                         'PRODUCT_LIST_WEIGHT' => PRODUCT_LIST_WEIGHT,
                         'PRODUCT_LIST_IMAGE' => PRODUCT_LIST_IMAGE,
                         'PRODUCT_LIST_BUY_NOW' => PRODUCT_LIST_BUY_NOW);

    asort($define_list);

    $column_list = array();
    reset($define_list);
    while (list($key, $value) = each($define_list)) {
      if ($value > 0) $column_list[] = $key;
    }

    $select_column_list = '';

    for ($i=0, $n=sizeof($column_list); $i<$n; $i++) {
      switch ($column_list[$i]) {
        case 'PRODUCT_LIST_MODEL':
          $select_column_list .= 'p.products_model, ';
          break;
        case 'PRODUCT_LIST_NAME':
          $select_column_list .= 'pd.products_name, ';
          break;
        case 'PRODUCT_LIST_MANUFACTURER':
          $select_column_list .= 'm.manufacturers_name, ';
          break;
        case 'PRODUCT_LIST_QUANTITY':
          $select_column_list .= 'p.products_quantity, ';
          break;
        case 'PRODUCT_LIST_IMAGE':
          $select_column_list .= 'p.products_image, ';
          break;
        case 'PRODUCT_LIST_WEIGHT':
          $select_column_list .= 'p.products_weight, ';
          break;
      }
    }

// show the products of a specified manufacturer
    if (isset($HTTP_GET_VARS['manufacturers_id'])) {
      if (isset($HTTP_GET_VARS['filter_id']) && tep_not_null($HTTP_GET_VARS['filter_id'])) {
// We are asked to show only a specific category
        $listing_sql = "select " . $select_column_list . " p.products_id, p.manufacturers_id, p.products_price, p.products_tax_class_id, IF(s.status, s.specials_new_products_price, NULL) as specials_new_products_price, IF(s.status, s.specials_new_products_price, p.products_price) as final_price from " . TABLE_PRODUCTS . " p, " . TABLE_PRODUCTS_DESCRIPTION . " pd, " . TABLE_MANUFACTURERS . " m, " . TABLE_PRODUCTS_TO_CATEGORIES . " p2c left join " . TABLE_SPECIALS . " s on p.products_id = s.products_id where p.products_status = '1' and p.manufacturers_id = m.manufacturers_id and m.manufacturers_id = '" . (int)$HTTP_GET_VARS['manufacturers_id'] . "' and p.products_id = p2c.products_id and pd.products_id = p2c.products_id and pd.language_id = '" . (int)$languages_id . "' and p2c.categories_id = '" . (int)$HTTP_GET_VARS['filter_id'] . "'";
      } else {
// We show them all
        $listing_sql = "select " . $select_column_list . " p.products_id, p.manufacturers_id, p.products_price, p.products_tax_class_id, IF(s.status, s.specials_new_products_price, NULL) as specials_new_products_price, IF(s.status, s.specials_new_products_price, p.products_price) as final_price from " . TABLE_PRODUCTS . " p, " . TABLE_PRODUCTS_DESCRIPTION . " pd, " . TABLE_MANUFACTURERS . " m left join " . TABLE_SPECIALS . " s on p.products_id = s.products_id where p.products_status = '1' and pd.products_id = p.products_id and pd.language_id = '" . (int)$languages_id . "' and p.manufacturers_id = m.manufacturers_id and m.manufacturers_id = '" . (int)$HTTP_GET_VARS['manufacturers_id'] . "'";
      }
    } else {
// show the products in a given categorie
      if (isset($HTTP_GET_VARS['filter_id']) && tep_not_null($HTTP_GET_VARS['filter_id'])) {
// We are asked to show only specific catgeory
        $listing_sql = "select " . $select_column_list . " p.products_id, p.manufacturers_id, p.products_price, p.products_tax_class_id, IF(s.status, s.specials_new_products_price, NULL) as specials_new_products_price, IF(s.status, s.specials_new_products_price, p.products_price) as final_price from " . TABLE_PRODUCTS . " p, " . TABLE_PRODUCTS_DESCRIPTION . " pd, " . TABLE_MANUFACTURERS . " m, " . TABLE_PRODUCTS_TO_CATEGORIES . " p2c left join " . TABLE_SPECIALS . " s on p.products_id = s.products_id where p.products_status = '1' and p.manufacturers_id = m.manufacturers_id and m.manufacturers_id = '" . (int)$HTTP_GET_VARS['filter_id'] . "' and p.products_id = p2c.products_id and pd.products_id = p2c.products_id and pd.language_id = '" . (int)$languages_id . "' and p2c.categories_id = '" . (int)$current_category_id . "'";
      } else {
// We show them all
        $listing_sql = "select " . $select_column_list . " p.products_id, p.manufacturers_id, p.products_price, p.products_tax_class_id, IF(s.status, s.specials_new_products_price, NULL) as specials_new_products_price, IF(s.status, s.specials_new_products_price, p.products_price) as final_price from " . TABLE_PRODUCTS_DESCRIPTION . " pd, " . TABLE_PRODUCTS . " p left join " . TABLE_MANUFACTURERS . " m on p.manufacturers_id = m.manufacturers_id, " . TABLE_PRODUCTS_TO_CATEGORIES . " p2c left join " . TABLE_SPECIALS . " s on p.products_id = s.products_id where p.products_status = '1' and p.products_id = p2c.products_id and pd.products_id = p2c.products_id and pd.language_id = '" . (int)$languages_id . "' and p2c.categories_id = '" . (int)$current_category_id . "'";
      }
    }

    if ( (!isset($HTTP_GET_VARS['sort'])) || (!ereg('[1-8][ad]', $HTTP_GET_VARS['sort'])) || (substr($HTTP_GET_VARS['sort'], 0, 1) > sizeof($column_list)) ) {
      for ($i=0, $n=sizeof($column_list); $i<$n; $i++) {
        if ($column_list[$i] == 'PRODUCT_LIST_NAME') {
          $HTTP_GET_VARS['sort'] = $i+1 . 'a';
          $listing_sql .= " order by pd.products_name";
          break;
        }
      }
    } else {
      $sort_col = substr($HTTP_GET_VARS['sort'], 0 , 1);
      $sort_order = substr($HTTP_GET_VARS['sort'], 1);
      $listing_sql .= ' order by ';
      switch ($column_list[$sort_col-1]) {
        case 'PRODUCT_LIST_MODEL':
          $listing_sql .= "p.products_model " . ($sort_order == 'd' ? 'desc' : '') . ", pd.products_name";
          break;
        case 'PRODUCT_LIST_NAME':
          $listing_sql .= "pd.products_name " . ($sort_order == 'd' ? 'desc' : '');
          break;
        case 'PRODUCT_LIST_MANUFACTURER':
          $listing_sql .= "m.manufacturers_name " . ($sort_order == 'd' ? 'desc' : '') . ", pd.products_name";
          break;
        case 'PRODUCT_LIST_QUANTITY':
          $listing_sql .= "p.products_quantity " . ($sort_order == 'd' ? 'desc' : '') . ", pd.products_name";
          break;
        case 'PRODUCT_LIST_IMAGE':
          $listing_sql .= "pd.products_name";
          break;
        case 'PRODUCT_LIST_WEIGHT':
          $listing_sql .= "p.products_weight " . ($sort_order == 'd' ? 'desc' : '') . ", pd.products_name";
          break;
        case 'PRODUCT_LIST_PRICE':
          $listing_sql .= "final_price " . ($sort_order == 'd' ? 'desc' : '') . ", pd.products_name";
          break;
      }
    }
?>
    <td width="100%" valign="top"><table border="0" width="100%" cellspacing="0" cellpadding="0">
      <tr>
        <td><table border="0" width="100%" cellspacing="0" cellpadding="0">
          <tr>
            <td class="pageHeading"><?php echo HEADING_TITLE; ?></td>
<?php
// optional Product List Filter
    if (PRODUCT_LIST_FILTER > 0) {
      if (isset($HTTP_GET_VARS['manufacturers_id'])) {
        $filterlist_sql = "select distinct c.categories_id as id, cd.categories_name as name from " . TABLE_PRODUCTS . " p, " . TABLE_PRODUCTS_TO_CATEGORIES . " p2c, " . TABLE_CATEGORIES . " c, " . TABLE_CATEGORIES_DESCRIPTION . " cd where p.products_status = '1' and p.products_id = p2c.products_id and p2c.categories_id = c.categories_id and p2c.categories_id = cd.categories_id and cd.language_id = '" . (int)$languages_id . "' and p.manufacturers_id = '" . (int)$HTTP_GET_VARS['manufacturers_id'] . "' order by cd.categories_name";
      } else {
        $filterlist_sql= "select distinct m.manufacturers_id as id, m.manufacturers_name as name from " . TABLE_PRODUCTS . " p, " . TABLE_PRODUCTS_TO_CATEGORIES . " p2c, " . TABLE_MANUFACTURERS . " m where p.products_status = '1' and p.manufacturers_id = m.manufacturers_id and p.products_id = p2c.products_id and p2c.categories_id = '" . (int)$current_category_id . "' order by m.manufacturers_name";
      }
      $filterlist_query = tep_db_query($filterlist_sql);
      if (tep_db_num_rows($filterlist_query) > 1) {
        echo '            <td align="center" class="main">' . tep_draw_form('filter', FILENAME_DEFAULT, 'get') . TEXT_SHOW . '&nbsp;';
        if (isset($HTTP_GET_VARS['manufacturers_id'])) {
          echo tep_draw_hidden_field('manufacturers_id', $HTTP_GET_VARS['manufacturers_id']);
          $options = array(array('id' => '', 'text' => TEXT_ALL_CATEGORIES));
        } else {
          echo tep_draw_hidden_field('cPath', $cPath);
          $options = array(array('id' => '', 'text' => TEXT_ALL_MANUFACTURERS));
        }
        echo tep_draw_hidden_field('sort', $HTTP_GET_VARS['sort']);
        while ($filterlist = tep_db_fetch_array($filterlist_query)) {
          $options[] = array('id' => $filterlist['id'], 'text' => $filterlist['name']);
        }
        echo tep_draw_pull_down_menu('filter_id', $options, (isset($HTTP_GET_VARS['filter_id']) ? $HTTP_GET_VARS['filter_id'] : ''), 'onchange="this.form.submit()"');
        echo '</form></td>' . "
";
      }
    }

// Get the right image for the top-right
    $image = DIR_WS_IMAGES . 'table_background_list.gif';
    if (isset($HTTP_GET_VARS['manufacturers_id'])) {
      $image = tep_db_query("select manufacturers_image from " . TABLE_MANUFACTURERS . " where manufacturers_id = '" . (int)$HTTP_GET_VARS['manufacturers_id'] . "'");
      $image = tep_db_fetch_array($image);
      $image = $image['manufacturers_image'];
    } elseif ($current_category_id) {
      $image = tep_db_query("select categories_image from " . TABLE_CATEGORIES . " where categories_id = '" . (int)$current_category_id . "'");
      $image = tep_db_fetch_array($image);
      $image = $image['categories_image'];
    }
?>
            <td align="right"><?php echo tep_image(DIR_WS_IMAGES . $image, HEADING_TITLE, HEADING_IMAGE_WIDTH, HEADING_IMAGE_HEIGHT); ?></td>
          </tr>
        </table></td>
      </tr>
      <tr>
        <td><?php echo tep_draw_separator('pixel_trans.gif', '100%', '10'); ?></td>
      </tr>
      <tr>
        <td><?php include(DIR_WS_MODULES . FILENAME_PRODUCT_LISTING); ?></td>
      </tr>
    </table></td>
<?php
  } else { // default page
?>
    <td width="100%" valign="top"><table border="0" width="100%" cellspacing="0" cellpadding="0">
      <tr>
        <td><table border="0" width="100%" cellspacing="0" cellpadding="0">
          <tr>
            <td class="pageHeading"><?php echo HEADING_TITLE; ?></td>
            <td class="pageHeading" align="right"><?php echo tep_image(DIR_WS_IMAGES . 'table_background_default.gif', HEADING_TITLE, HEADING_IMAGE_WIDTH, HEADING_IMAGE_HEIGHT); ?></td>
          </tr>
        </table></td>
      </tr>
      <tr>
        <td><?php echo tep_draw_separator('pixel_trans.gif', '100%', '10'); ?></td>
      </tr>
      <tr>
        <td><table border="0" width="100%" cellspacing="0" cellpadding="0">
          <tr>
            <td class="main"><?php echo tep_customer_greeting(); ?></td>
          </tr>
          <tr>
            <td><?php echo tep_draw_separator('pixel_trans.gif', '100%', '10'); ?></td>
          </tr>
          <tr>
            <td class="main"><?php echo TEXT_MAIN; ?></td>
          </tr>
          <tr>
            <td><?php echo tep_draw_separator('pixel_trans.gif', '100%', '10'); ?></td>
          </tr>
          <tr>
            <td><?php include(DIR_WS_MODULES . FILENAME_NEW_PRODUCTS); ?></td>
          </tr>
<?php
    include(DIR_WS_MODULES . FILENAME_UPCOMING_PRODUCTS);
?>
        </table></td>
      </tr>
    </table></td>
<?php
  }
?>
<!-- body_text_eof //-->
    <td width="<?php echo BOX_WIDTH; ?>" valign="top"><table border="0" width="<?php echo BOX_WIDTH; ?>" cellspacing="0" cellpadding="2">
<!-- right_navigation //-->
<?php require(DIR_WS_INCLUDES . 'column_right.php'); ?>
<!-- right_navigation_eof //-->
    </table></td>
  </tr>
</table>
<!-- body_eof //-->

<!-- footer //-->
<?php require(DIR_WS_INCLUDES . 'footer.php'); ?>
<!-- footer_eof //-->
<br>
</body>
</html>
<?php require(DIR_WS_INCLUDES . 'application_bottom.php'); ?>

文章由 **~倉木麻衣~** » 2006-01-14 19:57

嗯, 看起來應該是不會去衝突到\r

先來說你之前的問題好了
我想你應該還是一樣不太了解那個javascript的運作方式
re=xxxx; 這行是你要限制的來源
以你的例子來說是要限制從購物站台過來, 所以是要打www\.j-kst\.com
但你卻打成了www\.j-kst\\.com/phpBB2/.index.php(這邊我記不得了, 大概是這個樣子)

ok, 現在先把之前的作法忘掉
我打算用session table來做管制\r
先到資料庫裡執行這段SQL

代碼: 選擇全部

ALTER TABLE `phpbb_sessions` ADD `session_visited` TINYINT( 1 ) NULL DEFAULT '0'

其中的phpbb_請換成你的資料表首(prefix)

#
#--------[ OPEN ]----------------
#
includes/page_header.php

#
#--------[ FIND ]----------------
#

代碼: 選擇全部

$template->pparse('overall_header');

#
#--------[ BEFORE, ADD ]----------------
#

代碼: 選擇全部

if ( !$userdata['session_visited'] ) 
{ 
   header ("Location: http://www.j-kst.com/"); 
}

#
#--------[ OPEN ]----------------
#
購物站台底下的index.php

#
#--------[ FIND ]----------------
#

代碼: 選擇全部

require('includes/application_top.php');

#
#--------[ BEFORE, ADD ]----------------
#
# 請依實際狀況修改$phpbb_root_path的值\r

代碼: 選擇全部

// 
define('IN_PHPBB', true);
$phpbb_root_path = 'phpBB2/';
include($phpbb_root_path . 'extension.inc');
include($phpbb_root_path . 'common.'.$phpEx);

//
// Set page ID for session management
//
$userdata = session_pagestart($user_ip, PAGE_LOGIN);
init_userprefs($userdata);
//
// End session management
//

//
// Update session_visited
//
$sql = "UPDATE " . SESSIONS_TABLE . " SET session_visited = 1 WHERE session_id = '" . $userdata['session_id'] . "'";
if ( !($result = $db->sql_query($sql)) )
{
	message_die(GENERAL_ERROR, 'Error upating session row fetch', '', __LINE__, __FILE__, $sql);
}
$db->sql_freeresult($result);

#
#--------[ SAVE/CLOSE ALL FILE ]----------------
#
# EoM

小測了一下, 以經沒有之前幾篇提到的問題
但是使用者者登出會跳轉回購物站台是正常狀況
因為登出後, 它的session_visited就變成0(應該說它之前的session記錄就被移除了)

文章由 **jeffyuan** » 2006-01-14 20:19

一堆亂碼說

可以不更改購物往程式的情況下(只更改phpbb)
達成此功能嗎?
因購物往程式關聯較多
改錯一步驟便全掛了

文章由 **~倉木麻衣~** » 2006-01-14 20:22

一堆亂碼= =?

我並沒有去改你購物車的架構
我只是在裡頭呼叫phpBB的東西來取得userdata

文章由 **jeffyuan** » 2006-01-14 21:54

對阿~可是執行時卻無法正常運作說\r
論壇連結點進去出現錯誤訊息\r
Warning: main(phpBB2/extension.inc): failed to open stream: No such file or directory in c:\appserv\www\catalog\index.php on line 15

Warning: main(phpBB2/extension.inc): failed to open stream: No such file or directory in c:\appserv\www\catalog\index.php on line 15

Warning: main(): Failed opening 'phpBB2/extension.inc' for inclusion (include_path='.;c:\php4\pear') in c:\appserv\www\catalog\index.php on line 15

Warning: main(phpBB2/common.): failed to open stream: No such file or directory in c:\appserv\www\catalog\index.php on line 16

Warning: main(phpBB2/common.): failed to open stream: No such file or directory in c:\appserv\www\catalog\index.php on line 16

Warning: main(): Failed opening 'phpBB2/common.' for inclusion (include_path='.;c:\php4\pear') in c:\appserv\www\catalog\index.php on line 16

Fatal error: Call to undefined function: session_pagestart() in c:\appserv\www\catalog\index.php on line 21

文章由 **~倉木麻衣~** » 2006-01-14 22:02

所以我有寫這段呀
#
#--------[ BEFORE, ADD ]----------------
#
# 請依實際狀況修改$phpbb_root_path的值