php 图片验证码用javascript验证-PHP Tutorial-php.cn

Home

Backend Development

PHP Tutorial

php 图片验证码用javascript验证

WBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWB

Jun 23, 2016 pm 02:19 PM

本帖最后由 cyyjm 于 2013-08-15 11:48:37 编辑

现在我的图片验证是交到后台验证，感觉影响查询速度。如何交给javascript验证？
php生成页面代码如下：

<?php session_start(); //生成验证码图片 Header("Content-type: image/PNG"); $im = imagecreate(44,18); // 画一张指定宽高的图片 $back = ImageColorAllocate($im, 245,245,245); // 定义背景颜色 imagefill($im,0,0,$back); //把背景颜色填充到刚刚画出来的图片中 $vcodes = ""; srand((double)microtime()*1000000); //生成4位数字 for($i=0;$i<4;$i++){ $font = ImageColorAllocate($im, rand(100,255),rand(0,100),rand(100,255)); // 生成随机颜色 $authnum=rand(1,9); $vcodes.=$authnum; imagestring($im, 5, 2+$i*10, 1, $authnum, $font); } $_SESSION['VCODE'] = $vcodes; for($i=0;$i<100;$i++) //加入干扰象素 { $randcolor = ImageColorallocate($im,rand(0,255),rand(0,255),rand(0,255)); imagesetpixel($im, rand()%70 , rand()%30 , $randcolor); // 画像素点函数 } ImagePNG($im); ImageDestroy($im); ?>

前台样式：

		 <form name="form1" method="post" action="719.php" >			   <p><label>电脑编号：</label><input name="username" type="text" size="20"></p>			   <p class="prmt"><label>用户密码：</label><input name="pass" type="password" size="20">  <input type="submit" name="Submit" value="查 询"></p>			   <p class="prmt"><label>验 证 码：</label><input name="ask" type="text" size="6"><img  src="/static/imghwm/default1.png"  data-src="muth.php"  class="lazy"  id="refresh"  onclick="document.getElementById('refresh')."/ alt="php 图片验证码用javascript验证" ></p>		</form>

这样，后台里就能通过开启session_start();并与$_SESSION['VCODE']判断验证码是否正确。
我如何能够通过javascript做验证，而不需要php后台来验证。

回复讨论(解决方案)

通过javascript验证可以轻松的绕过或者说破解,不建议

一切用户能操作的验证都是不靠谱的

那这样？先跳到中间页面，这个页面就只进行验证码判断，如果正确，再跳转到页面输出结果，否则，给出提示，回到原来那里输入页面？

sesssion 保存在服务端，前台如何能获取得到？

通过javascript做验证???
那要验证码干什么？

我通过js验证，只是不想用户又再点多一下，跳回来只是为了再输入正确的验证码，直接就在点表单的时候就验证了。

我有点看明白了楼主你是提交的时候把验证码用户名密码一起提交的并且之前没有判断验证码是否正确,所以担心输错了又要重新输入用户名密码

一般这里采用ajax来做,当验证码输入框失去焦点后,获取输入的内容传递到后台进行对比,如果正确就在输入框右边打个勾反制则打个X提示验证码错误.

输入正确后再一起提交到后台进行下一步的处理.

对
那我该怎么做呢？我什么都只是懂一点点

首先你得先了解一下 ajax 更便捷的是从jquery的ajax学起 20分钟内就能见效

http://www.baidu.com/s?wd=jquery+ajax 今天我也在纠结别的问题不能帮你写全套代码了...

ajax完破

前面也遇到这个问题，后台判断验证码觉得麻烦。想用js，可是得不到验证码，后来想到把session中的验证码放到一个隐藏的标签里面，再用js。真心不好使啊，获得的验证码是上一次的，或者是刷新之前的，总是滞后，后来放弃了。

前面也遇到这个问题，后台判断验证码觉得麻烦。想用js，可是得不到验证码，后来想到把session中的验证码放到一个隐藏的标签里面，再用js。真心不好使啊，获得的验证码是上一次的，或者是刷新之前的，总是滞后，后来放弃了。
这个问题仔细想想就知道是什么原因了，你表单中隐藏标签中的值是页面初始化的值，而给用户看到的图形验证码的值是又新生成的，并且重新设置了验证码session值，所以是滞后一步。楼主的问题就像前面网友说使用ajax发起判断，具体的触发方式，我觉得是按键弹起的时候，加上验证码当时输入的长度来合理的触发ajax事件。
比如4位长的验证码，按键弹起时判断长度，到了4长度就ajax判断输入正确没有。

Statement

The content of this article is voluntarily contributed by netizens, and the copyright belongs to the original author. This site does not assume corresponding legal responsibility. If you find any content suspected of plagiarism or infringement, please contact admin@php.cn

What data can be stored in a PHP session?May 02, 2025 am 12:17 AM

PHPsessionscanstorestrings,numbers,arrays,andobjects.1.Strings:textdatalikeusernames.2.Numbers:integersorfloatsforcounters.3.Arrays:listslikeshoppingcarts.4.Objects:complexstructuresthatareserialized.

How do you start a PHP session?May 02, 2025 am 12:16 AM

TostartaPHPsession,usesession_start()atthescript'sbeginning.1)Placeitbeforeanyoutputtosetthesessioncookie.2)Usesessionsforuserdatalikeloginstatusorshoppingcarts.3)RegeneratesessionIDstopreventfixationattacks.4)Considerusingadatabaseforsessionstoragei

What is session regeneration, and how does it improve security?May 02, 2025 am 12:15 AM

Session regeneration refers to generating a new session ID and invalidating the old ID when the user performs sensitive operations in case of session fixed attacks. The implementation steps include: 1. Detect sensitive operations, 2. Generate new session ID, 3. Destroy old session ID, 4. Update user-side session information.

What are some performance considerations when using PHP sessions?May 02, 2025 am 12:11 AM

PHP sessions have a significant impact on application performance. Optimization methods include: 1. Use a database to store session data to improve response speed; 2. Reduce the use of session data and only store necessary information; 3. Use a non-blocking session processor to improve concurrency capabilities; 4. Adjust the session expiration time to balance user experience and server burden; 5. Use persistent sessions to reduce the number of data read and write times.

How do PHP sessions differ from cookies?May 02, 2025 am 12:03 AM

PHPsessionsareserver-side,whilecookiesareclient-side.1)Sessionsstoredataontheserver,aremoresecure,andhandlelargerdata.2)Cookiesstoredataontheclient,arelesssecure,andlimitedinsize.Usesessionsforsensitivedataandcookiesfornon-sensitive,client-sidedata.

How does PHP identify a user's session?May 01, 2025 am 12:23 AM

PHPidentifiesauser'ssessionusingsessioncookiesandsessionIDs.1)Whensession_start()iscalled,PHPgeneratesauniquesessionIDstoredinacookienamedPHPSESSIDontheuser'sbrowser.2)ThisIDallowsPHPtoretrievesessiondatafromtheserver.

What are some best practices for securing PHP sessions?May 01, 2025 am 12:22 AM

The security of PHP sessions can be achieved through the following measures: 1. Use session_regenerate_id() to regenerate the session ID when the user logs in or is an important operation. 2. Encrypt the transmission session ID through the HTTPS protocol. 3. Use session_save_path() to specify the secure directory to store session data and set permissions correctly.

Where are PHP session files stored by default?May 01, 2025 am 12:15 AM

PHPsessionfilesarestoredinthedirectoryspecifiedbysession.save_path,typically/tmponUnix-likesystemsorC:\Windows\TemponWindows.Tocustomizethis:1)Usesession_save_path()tosetacustomdirectory,ensuringit'swritable;2)Verifythecustomdirectoryexistsandiswrita

See all articles