分享自定义的几个PHP功能函数
最近不是在折腾论坛嘛,各种类各种函数,原创一些,从别人那儿qiang过来一些,在此分享出来,希望有朋友能用的到~
注意:部分函数可能不够完善,由此造成的漏洞风险自担~
提交过滤
function filter($text)
{
//完全过滤注释
$text = preg_replace(\'/<!--?.*-->/\', \'\', $text);
//完全过滤js
$text = preg_replace(\'/<script?.*\\/script>/\', \'\', $text);
//过滤危险的属性,如:过滤on事件lang js
while (preg_match(\'/(<[^><]+)( lang|action|background|codebase|dynsrc|lowsrc)[^><]+/i\', $text, $mat)) {
$text = str_replace($mat[0], $mat[1], $text);
}
while (preg_match(\'/(<[^><]+)(window\\.|javascript:|js:|about:|file:|document\\.|vbs:|cookie)([^><]*)/i\', $text, $mat)) {
$text = str_replace($mat[0], $mat[1] . $mat[3], $text);
}
//过滤多余html
$text = preg_replace(\'/<\\/?(html|head|meta|link|base|basefont|body|bgsound|script|form|iframe|frame|frameset|applet|id|ilayer|layer|name|script|xml)[^><]*>/i\', \'\', $text);
//反转换
$text = str_replace(\'[\', \'<\', $text);
$text = str_replace(\']\', \'>\', $text);
$text = str_replace(\'|\', \'\"\', $text);
return $text;
}
提交过滤2
function stripslashes_array(&$array)
{
while (list($key, $var) = each($array)) {
if ($key != \'argc\' && $key != \'argv\' && (strtoupper($key) != $key || \'\' . intval($key) == \"$key\")) {
if (is_string($var)) {
$array[$key] = stripslashes($var);
}
if (is_array($var)) {
$array[$key] = stripslashes_array($var);
}
}
}
return $array;
}
字符串截取(这个是emlog里提出来的,其实也就是substr的增强版)
function subString($strings, $start, $length)
{
if (function_exists(\'mb_substr\') && function_exists(\'mb_strlen\')) {
$sub_str = mb_substr($strings, $start, $length, \'utf8\');
return mb_strlen($sub_str, \'utf8\') < mb_strlen($strings, \'utf8\') ? $sub_str . \'...\' : $sub_str;
}
$str = substr($strings, $start, $length);
$char = 0;
for ($i = 0; $i < strlen($str); $i++) {
if (ord($str[$i]) >= 128)
$char++;
}
$str2 = substr($strings, $start, $length + 1);
$str3 = substr($strings, $start, $length + 2);
if ($char % 3 == 1) {
if ($length <= strlen($strings)) {
$str3 = $str3 .= \'...\';
}
return $str3;
}
if ($char % 3 == 2) {
if ($length <= strlen($strings)) {
$str2 = $str2 .= \'...\';
}
return $str2;
}
if ($char % 3 == 0) {
if ($length <= strlen($strings)) {
$str = $str .= \'...\';
}
return $str;
}
}
IP地址匿名化(最后一位替换为星号)
function AnonymousIP()
{
$ip = GetIP();
if ($ip == \"Unknown\") {
$removed_ip = \"未知用户\";
}
if (strpos($ip, \":\")) {
$removed_ip = \"IPv6用户\";
} else {
$reg1 = \'/((?:\\d+\\.){3})\\d+/\';
$reg2 = \'~(\\d+)\\.(\\d+)\\.(\\d+)\\.(\\d+)~\';
$removed_ip = preg_replace($reg1, \"\\\\1*\", $ip);
}
return $removed_ip;
}
获取客户端IP地址
function GetIP()
{
if (@$_SERVER[\"HTTP_X_FORWARDED_FOR\"])
$ip = $_SERVER[\"HTTP_X_FORWARDED_FOR\"];
else if (@$_SERVER[\"HTTP_CLIENT_IP\"])
$ip = $_SERVER[\"HTTP_CLIENT_IP\"];
else if (@$_SERVER[\"REMOTE_ADDR\"])
$ip = $_SERVER[\"REMOTE_ADDR\"];
else if (@getenv(\"HTTP_X_FORWARDED_FOR\"))
$ip = getenv(\"HTTP_X_FORWARDED_FOR\");
else if (@getenv(\"HTTP_CLIENT_IP\"))
$ip = getenv(\"HTTP_CLIENT_IP\");
else if (@getenv(\"REMOTE_ADDR\"))
$ip = getenv(\"REMOTE_ADDR\");
else
$ip = \"Unknown\";
return $ip;
}
字符串加密(支持中文)
function dencrypt($string, $isEncrypt = true, $key = \"youdian\")
{
if (!isset($string{0}) || !isset($key{0})) {
return false;
}
$dynKey = $isEncrypt ? hash(\'sha1\', microtime(true)) : substr($string, 0, 40);
$fixedKey = hash(\'sha1\', $key);
$dynKeyPart1 = substr($dynKey, 0, 20);
$dynKeyPart2 = substr($dynKey, 20);
$fixedKeyPart1 = substr($fixedKey, 0, 20);
$fixedKeyPart2 = substr($fixedKey, 20);
$key = hash(\'sha1\', $dynKeyPart1 . $fixedKeyPart1 . $dynKeyPart2 . $fixedKeyPart2);
$string = $isEncrypt ? $fixedKeyPart1 . $string . $dynKeyPart2 : (isset($string{339}) ? gzuncompress(base64_decode(substr($string, 40))) : base64_decode(substr($string, 40)));
$n = 0;
$result = \'\';
$len = strlen($string);
for ($n = 0; $n < $len; $n++) {
$result .= chr(ord($string{$n}) ^ ord($key{$n % 40}));
}
return $isEncrypt ? $dynKey . str_replace(\'=\', \'\', base64_encode($n > 299 ? gzcompress($result) : $result)) : substr($result, 20, -20);
}
检查字符串是否包含中文
function CheckChinese($string)
{
if (preg_match(\"/[\\x7f-\\xff]/\", $string)) {
return true;
} else {
return false;
}
}
隐藏文件真实路径
function FileHeaderJump($file)
{
header(\'Content-Description: File Transfer\');
header(\'Content-Type: application/octet-stream\');
header(\'Content-Disposition: attachment; filename=\' . basename($file));
header(\'Content-Transfer-Encoding: binary\');
header(\'Expires: 0\');
header(\'Cache-Control: must-revalidate, post-check=0, pre-check=0\');
header(\'Pragma: public\');
header(\'Content-Length: \' . filesize($file));
ob_clean();
flush();
readfile($file);
exit;
}
生成随机字符串,自定义长度
function CreateRandomString($length)
{
$chars = \'abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789\';
$password = \"\";
for ($i = 0; $i < $length; $i++) {
$password .= $chars[mt_rand(0, strlen($chars) - 1)];
}
return $password;
}
本文地址:https://www.stayed.cn/item/6831
转载请注明出处。
本站部分内容来源于网络,如侵犯到您的权益,请 联系我
我的博客
人生若只如初见,何事秋风悲画扇。
我的标签
随笔档案
- 2024-02(2)
- 2023-06(1)
- 2023-05(1)
- 2023-04(14)
- 2023-03(3)
- 2023-01(6)
- 2022-12(5)
- 2022-11(5)
- 2022-07(2)
- 2022-06(4)
- 2022-05(3)
- 2022-03(1)
- 2021-12(6)
- 2021-11(1)
- 2021-10(3)
- 2021-09(5)
- 2021-07(5)
- 2021-02(2)
- 2021-01(7)
- 2020-12(18)
- 2020-11(14)
- 2020-10(12)
- 2020-09(10)
- 2020-08(22)
- 2020-07(2)
- 2020-06(1)
- 2020-04(5)
- 2020-03(9)
- 2020-02(7)
- 2020-01(9)
- 2019-12(8)
- 2019-11(10)
- 2019-10(11)
- 2019-09(17)
- 2019-08(16)
- 2019-07(6)
- 2019-06(3)
- 2019-04(1)
- 2019-03(8)
- 2019-02(5)
- 2019-01(1)
- 2018-11(2)
- 2018-10(3)
- 2018-09(1)
- 2018-08(3)
- 2018-07(3)
- 2018-06(7)
- 2018-04(4)
- 2018-03(5)
- 2018-02(4)
- 2018-01(22)
- 2017-12(3)
- 2017-11(5)
- 2017-10(15)
- 2017-09(26)
- 2017-08(1)
- 2017-07(3)