大家都知道,验证码在网站注册,登录以及很多的时候都是必备的功能。没有了验证码,网站的安全性在很大程度上就受到了威胁。所以说,验证码是网站开发过程中不可或缺的一个功能,验证码的效果直接影响到网站的安全性。(这里博主也顺便吐槽一下,验证码这功能着实蛋疼,动不动就要输个验证码,看着真心烦。前段时间12306还出了个动态验证码,尼玛我想说全宿舍没有人能输入正确。只希望赶快出个替代性的功能,结束这个操蛋功能,我想没几个用户喜欢整天对着验证码吧)。好了,废话不说了。
先用思维导图理清整体思路:
在auth.php中使用GD库进行画图,布置验证码背景,将随机生成的字符串添加到背景中,同时将字符串存到session中,保证在任何页面中都可以抠出这验证码。在form.html中写个简单的登录表格,重点是有验证码环节,用
标签加载auth.php中的验证码。然后将数据提交到submit.php页面。在submit.php中,首先进行验证码验证(这里不讨论username和password),看session中存的字符串和form.html提交上来的验证码的字符串是否相同,在这里之前为了不区分大小写,一律将字符串转为小写。若字符串相同,则进行页面跳转。若不同则返回登录页面。
<?phpheader ("content-type:text/html;charset=utf-8");//开启sessionsession_start();//准备画布$im=imagecreatetruecolor(50,25);//准备涂料$black=imagecolorallocate($im,0,0,0);$gray=imagecolorallocate($im,200,200,200);//背景填充imagefill($im,0,0,$gray);//文字居中$x=(50-10*4)/2;$y=(25-5)/2+5;//准备文字$arr=array_merge(range(0,9),range('a','z'),range('A','Z'));shuffle($arr);$str=implode(array_slice($arr,0,4));//把$str放入session中,方便所有页面中调用$_SESSION['vstr']=$str;$file="fonts/simsun.ttc";imagettftext($im,10,0,$x,$y,$black,$file,$str);//输出到浏览器上或保存起来header("content-type:image/png");imagepng($im);//关闭画布imagedestory($im);?> (1)header头部前面不能够有任何的输出
(2)在使用session之前必须开启session
2.form.html <meta charset="utf-8"> <title>登录</title> <style> table{ border-collapse:collapse; } img{ margin-top:5px; } </style> <h2 id="用户登录页面">用户登录页面</h2> <hr>
(2)尽量保证文本框和验证码的协调
3.submit.php<?phpheader ("content-type:text/html;charset=utf-8");session_start();$code=strtolower($_POST['vcode']);$str=strtolower($_SESSION['vstr']); if($code==$str){ //页面跳转 echo "<script>location='http://www.baidu.com'";}else{ echo "<script>alert('验证码输入错误');</script>"; echo "<a href="form.html">返回登录页面</a>"; }?> (1)使用strtolower()将字符串全部转为小写,就免去了验证码区分大小写的麻烦过程。 (2)使用if语句进行判断两个字符串相等是否为true。
(3)里面加了一点js的东西,在<script>location=''</script>的引号中添加需要跳转的地址,就能直接跳转。当然用header()也行,但是header()前面不能有输出,局限性太大。最好还是用js。
How to make PHP applications fasterMay 12, 2025 am 12:12 AMTomakePHPapplicationsfaster,followthesesteps:1)UseOpcodeCachinglikeOPcachetostoreprecompiledscriptbytecode.2)MinimizeDatabaseQueriesbyusingquerycachingandefficientindexing.3)LeveragePHP7 Featuresforbettercodeefficiency.4)ImplementCachingStrategiessuc
PHP Performance Optimization Checklist: Improve Speed NowMay 12, 2025 am 12:07 AMToimprovePHPapplicationspeed,followthesesteps:1)EnableopcodecachingwithAPCutoreducescriptexecutiontime.2)ImplementdatabasequerycachingusingPDOtominimizedatabasehits.3)UseHTTP/2tomultiplexrequestsandreduceconnectionoverhead.4)Limitsessionusagebyclosin
PHP Dependency Injection: Improve Code TestabilityMay 12, 2025 am 12:03 AMDependency injection (DI) significantly improves the testability of PHP code by explicitly transitive dependencies. 1) DI decoupling classes and specific implementations make testing and maintenance more flexible. 2) Among the three types, the constructor injects explicit expression dependencies to keep the state consistent. 3) Use DI containers to manage complex dependencies to improve code quality and development efficiency.
PHP Performance Optimization: Database Query OptimizationMay 12, 2025 am 12:02 AMDatabasequeryoptimizationinPHPinvolvesseveralstrategiestoenhanceperformance.1)Selectonlynecessarycolumnstoreducedatatransfer.2)Useindexingtospeedupdataretrieval.3)Implementquerycachingtostoreresultsoffrequentqueries.4)Utilizepreparedstatementsforeffi
Simple Guide: Sending Email with PHP ScriptMay 12, 2025 am 12:02 AMPHPisusedforsendingemailsduetoitsbuilt-inmail()functionandsupportivelibrarieslikePHPMailerandSwiftMailer.1)Usethemail()functionforbasicemails,butithaslimitations.2)EmployPHPMailerforadvancedfeatureslikeHTMLemailsandattachments.3)Improvedeliverability
PHP Performance: Identifying and Fixing BottlenecksMay 11, 2025 am 12:13 AMPHP performance bottlenecks can be solved through the following steps: 1) Use Xdebug or Blackfire for performance analysis to find out the problem; 2) Optimize database queries and use caches, such as APCu; 3) Use efficient functions such as array_filter to optimize array operations; 4) Configure OPcache for bytecode cache; 5) Optimize the front-end, such as reducing HTTP requests and optimizing pictures; 6) Continuously monitor and optimize performance. Through these methods, the performance of PHP applications can be significantly improved.
Dependency Injection for PHP: a quick summaryMay 11, 2025 am 12:09 AMDependencyInjection(DI)inPHPisadesignpatternthatmanagesandreducesclassdependencies,enhancingcodemodularity,testability,andmaintainability.Itallowspassingdependencieslikedatabaseconnectionstoclassesasparameters,facilitatingeasiertestingandscalability.
Increase PHP Performance: Caching Strategies & TechniquesMay 11, 2025 am 12:08 AMCachingimprovesPHPperformancebystoringresultsofcomputationsorqueriesforquickretrieval,reducingserverloadandenhancingresponsetimes.Effectivestrategiesinclude:1)Opcodecaching,whichstorescompiledPHPscriptsinmemorytoskipcompilation;2)DatacachingusingMemc
Hot AI Tools
Undresser.AI Undress
AI-powered app for creating realistic nude photos
AI Clothes Remover
Online AI tool for removing clothes from photos.
Undress AI Tool
Undress images for free
Clothoff.io
AI clothes remover
Video Face Swap
Swap faces in any video effortlessly with our completely free AI face swap tool!
Hot Article
Hot Tools
SublimeText3 Chinese version
Chinese version, very easy to use
mPDF
mPDF is a PHP library that can generate PDF files from UTF-8 encoded HTML. The original author, Ian Back, wrote mPDF to output PDF files "on the fly" from his website and handle different languages. It is slower than original scripts like HTML2FPDF and produces larger files when using Unicode fonts, but supports CSS styles etc. and has a lot of enhancements. Supports almost all languages, including RTL (Arabic and Hebrew) and CJK (Chinese, Japanese and Korean). Supports nested block-level elements (such as P, DIV),
SecLists
SecLists is the ultimate security tester's companion. It is a collection of various types of lists that are frequently used during security assessments, all in one place. SecLists helps make security testing more efficient and productive by conveniently providing all the lists a security tester might need. List types include usernames, passwords, URLs, fuzzing payloads, sensitive data patterns, web shells, and more. The tester can simply pull this repository onto a new test machine and he will have access to every type of list he needs.
MinGW - Minimalist GNU for Windows
This project is in the process of being migrated to osdn.net/projects/mingw, you can continue to follow us there. MinGW: A native Windows port of the GNU Compiler Collection (GCC), freely distributable import libraries and header files for building native Windows applications; includes extensions to the MSVC runtime to support C99 functionality. All MinGW software can run on 64-bit Windows platforms.
SAP NetWeaver Server Adapter for Eclipse
Integrate Eclipse with SAP NetWeaver application server.
