uwuzu v1.4.15 Funium

2026-06-04 19:14:41 +00:00 · 2025-03-15 18:38:49 +09:00
parent bc8b6cd800
commit 8b7604a90a
31 changed files with 524 additions and 321 deletions
@@ -1,12 +1,20 @@
 <?php
+header('Content-Type: application/json');
 require('../db.php');
 require('../function/function.php');
 blockedIP($_SERVER['REMOTE_ADDR']);

-if (safetext(isset($_POST['uniqid'])) && safetext(isset($_POST['userid'])) && safetext(isset($_POST['account_id']))) {
+if (safetext(isset($_POST['uniqid'])) && safetext(isset($_POST['userid'])) && safetext(isset($_POST['account_id'])) && safetext(isset($_COOKIE['loginkey']))) {
    $postUniqid = safetext($_POST['uniqid']);
    $userId = safetext($_POST['userid']);
    $loginid = safetext($_POST['account_id']);
+    $loginkey = safetext($_COOKIE['loginkey']);
+
+    $is_login = uwuzuUserLoginCheck($loginid, $loginkey, "user");
+    if ($is_login === false) {
+        echo json_encode(['success' => false, 'error' => '認証に失敗しました。(AUTH_INVALID)']);
+        exit;
+    }

    try {
        $option = array(