HEX
Server: nginx/1.28.1
System: Linux 10-41-63-61 6.8.0-31-generic #31-Ubuntu SMP PREEMPT_DYNAMIC Sat Apr 20 00:40:06 UTC 2024 x86_64
User: www (1001)
PHP: 7.4.33
Disabled: passthru,exec,system,putenv,chroot,chgrp,chown,shell_exec,popen,proc_open,pcntl_exec,ini_alter,ini_restore,dl,openlog,syslog,readlink,symlink,popepassthru,pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,imap_open,apache_setenv
$ pwd: /www/wwwroot/www.luckcjtw.com/
Upload Files
File: /www/wwwroot/www.luckcjtw.com/draw.php
<?PHP
set_time_limit(0);
header('Content-Type: text/html; charset=UTF-8');

//获取活动ID
$nGameId = (int)$_REQUEST["game_id"];

//获取抽奖用户/编码
$nUsercode = trim($_REQUEST["usercode"]);


#加载系统配置文件 该文件只包含各种系统配置项
require "./include/config.h";
#加载公共函数 主要是一些工具函数
require "./include/functions.php";
#开启数据库连接
$db  = tools::get_db();
$db_ = clone $db;


    //获取活动ID
    $nGameId = (int)$_REQUEST["game_id"];

    //若无活动ID,则返回错误
    if ( $nGameId <= 0 ) {
        echo json_encode(array("status"=>0,"msg"=>"參數錯誤")); exit;
    //有活动ID,则判断活动是否结束
    } else {
        #获取 活动信息
        $sSql = "SELECT * FROM gift_game WHERE status = 1 AND game_id = ".$nGameId;
        $db->query( $sSql );
        $aGameInfo = $row = $db->next_row();
        if ( (int)$row["game_id"] <= 0 ) {
            echo json_encode(array("status"=>0,"msg"=>"活動已結束")); exit;
        }
    }


    //获取抽奖用户/代码
    $sUsercode = trim($_REQUEST["usercode"]);

    //若无抽奖代码,则返回错误
    if ( $sUsercode == "" ) {
        echo json_encode(array("status"=>0,"msg"=>"參數錯誤")); exit;
    //有抽奖代码,则判断是否正确
    } else {
        #获取 抽奖用户信息
        $sSql = "SELECT * FROM gift_draw_log WHERE usercode = '".$sUsercode."' AND game_id = ".$nGameId;
        $db->query( $sSql );
        $aDrawInfo = $db->next_row();

        #是否具有抽奖资格
        if ( (int)$aDrawInfo["auto_id"] <= 0 ) {
            echo json_encode(array("status"=>0,"msg"=>"抱歉!您暫無抽獎資格。")); exit;
        }

        #是否已抽过奖
        if ( $aDrawInfo["draw_time"] != "0000-00-00 00:00:00" ) {
            echo json_encode(array("status"=>0,"msg"=>"您已參與過抽獎,獎品是【".$aDrawInfo["item_name"]."】。")); exit;
        }

        #是否特定用户
        if ( $aDrawInfo["type"] == "1" ) {

            #获取特定奖品信息
            $sSql = "SELECT * FROM gift_items WHERE game_id = '".$nGameId."' AND item_id = '".$aDrawInfo["item_id"]."'";
            $db->query( $sSql );
            $aGiftInfo = $db->next_row();

            #更新抽奖结果记录
            $sSql = "UPDATE gift_draw_log SET item_name = '".$aGiftInfo["item_name"]."',draw_time = '".date("Y-m-d H:i:s")."' WHERE game_id = '".$nGameId."' AND usercode = '".$sUsercode."' ";
            $db->query( $sSql );

            //exit("特定奖品:".$aDrawInfo["item_id"]."-".$aDrawInfo["item_name"]);
            echo json_encode(array("status"=>1,"msg"=>$aGiftInfo["orderby"],"desc"=>$aGiftInfo["item_name"])); exit;
        }

        #普通用户随机返回固定奖品
        //if ( $aDrawInfo["type"] == "1" ) {

            #随机获取一个固定奖品
            $sSql = "SELECT * FROM gift_items WHERE game_id = '".$nGameId."' AND is_force = 1 ORDER BY rand() LIMIT 1";
            $db->query( $sSql );
            $aGiftInfo = $db->next_row();

            #更新抽奖结果记录
            $sSql = "UPDATE gift_draw_log SET item_id = '".$aGiftInfo["item_id"]."',item_name = '".$aGiftInfo["item_name"]."',draw_time = '".date("Y-m-d H:i:s")."' WHERE game_id = '".$nGameId."' AND usercode = '".$sUsercode."' ";
            $db->query( $sSql );


            //exit("固定奖品:".$aGiftInfo["item_id"]."-".$aGiftInfo["item_name"]);
            echo json_encode(array("status"=>1,"msg"=>$aGiftInfo["orderby"],"desc"=>$aGiftInfo["item_name"])); exit;
        //}

    }

?>
@ Telegram