0

我自己有一个小脚本,可以检查用户提供的链接的有效性,使其可以安全地存储在数据库中(至少更安全)并确认它是指向 facebook 的链接。

现在我想为另一个链接推出此代码,并在需要时更改参数,以便这些网站上的人用户配置文件的链接起作用,有点我不想再复制和粘贴代码 5 次,然后尝试调整 Ajax使用它,如果有更好的方法来解决这个问题。

这是我的代码,可以在 www.vwrx_project.co.uk/test.php 看到。它希望只接受 facebook.com/(something here) 。

链接检查器.php

<?php

function check_url($dirty_url) {
//remove anything before facebook.com using strstr() 
//clean url leaving alphanumerics : / . only -  required to remove facebook link format with /#!/
$clean_url = strstr(preg_replace('#[^a-z0-9:/.?=]#i', '', $dirty_url), 'facebook.com'); 

$parsed_url = parse_url("http://www.".$clean_url); //parse url to get brakedown of components

$safe_host = $parsed_url['host']; // safe host direct from parse_url

// str_replace to switch any // to a / inside the returned path - required due to preg_replace process above
$safe_path = str_replace("//", "/", ($parsed_url['path']));

if ($parsed_url['host'] == 'www.facebook.com' && $parsed_url['path'] != '' && $parsed_url['path'] != '/') {
    echo "<a href=\"http://$safe_host$safe_path\" alt=\"facebook\" target=\"_new\">Facebook</a>";
} else if ($parsed_url['host'] == 'www.facebook.com' && $parsed_url['path'] == '') {
    echo "missing_profile1";
} else if ($parsed_url['host'] == 'www.facebook.com' && $parsed_url['path'] == '/') {
    echo "missing_profile2";
} else {            
    echo "invalid_url";
}
}
?>

测试.php

<?php
include_once ("includes/check_login_status.php");
include_once ("includes/link_checker.php");

// AJAX CALLS THIS LOGIN CODE TO EXECUTE
if(isset($_POST["L"])){
$dirty_url = $_POST["L"]; //user supplied link
//$dirty_url = "http://www.facebook.com/profile.php?id=4"; 
    // if $dirty_url is blank
if($dirty_url == ""){
    echo "no link supplied";
    exit();     
} else {
    check_url($dirty_url);
}
exit();
}
?>

<html>
<head>
<title>testing</title>
<script type="text/javascript" src="js/main.js"></script>
<script src="js/main.js"></script>
<script src="js/ajax.js"></script>
<script>

function emptyElement(x){
_(x).innerHTML = "";
}

function cleanURL(){
var user_url = _("user_link").value;
var func = _("hidden").value;
if(user_url == ""){
        _("status").innerHTML = "Please provide a link before clicking submit";
    } else {
        _("submitbtn").style.display = "none";
        _("status").innerHTML = 'please wait ...';
        var ajax = ajaxObj("POST", "test.php");
        ajax.onreadystatechange = function() {
            if(ajaxReturn(ajax) == true) {
                if(ajax.responseText == "no link supplied"){
                    _("status").innerHTML = "Submitted blank form data.";
                    _("submitbtn").style.display = "block";
                } else if(ajax.responseText == "invalid_url"){
                    _("status").innerHTML = "The url supplied is invalid";
                    _("submitbtn").style.display = "block";
                } else if(ajax.responseText == "missing_profile1"){
                    _("status").innerHTML = "Please supply a link to your profile";
                    _("submitbtn").style.display = "block";
                } else if(ajax.responseText == "missing_profile2"){
                _("status").innerHTML = "Please supply a link to your profile";
                _("submitbtn").style.display = "block";
            } else{
                _("status").innerHTML = ajax.responseText;
            }
        }
    }
    ajax.send("L="+user_url);
}
}
</script>
</head>
<body>
    <p id="status"></p>

 <form id="linkform" onSubmit="return false;">
    <input type="text" id="user_link">
    <input type="hidden" id="hidden" value="Facebook">
    <button id="submitbtn" onClick="cleanURL()">Submit</button>
</form>

4

1 回答 1

1

为什么不添加一个附加参数,即您要允许的网站?

function check_url($dirty_url, $websiteURL)

然后更新您的函数以使用$websiteURL变量而不是硬编码的“facebook.com”

然后,当您想要几个不同的网址时,您可以这样做

check_url($dirty_url, 'facebook.com');

或者

check_url($dirty_url, 'twitter.com');

或者您是否希望能够在单个功能中检查多个站点?例如 facebook.com 和 twitter.com

于 2014-07-15T16:15:57.820 回答