MYSQL存储过程实现用户登录

其他 2018-10-28 11:09:15 阅读次数: 0

MYSQL存储过程实现用户登录

CREATE DEFINER=`root`@`%` PROCEDURE `uc_session_login`(
    IN `_email` VARCHAR(50),
    IN `_pwdmd5` CHAR(32)
)
LANGUAGE SQL
NOT DETERMINISTIC
CONTAINS SQL
SQL SECURITY DEFINER
COMMENT ''
BEGIN
    #密钥表
    DECLARE _keyid INT(10)UNSIGNED;
    DECLARE _secretkey CHAR(32);
    #登录表
    DECLARE _uid INT(10)UNSIGNED;
    DECLARE _username VARCHAR(50);
    DECLARE _password CHAR(32);
    DECLARE _salt CHAR(6);
    #地址记录表
    DECLARE _failedlogins INT(10)UNSIGNED;
    #与字段无关的输入
    DECLARE failedlogins_max INT(10)UNSIGNED DEFAULT 1;#密码错误次数上限
    DECLARE failedlogins_timeout INT(10)UNSIGNED DEFAULT 2;#时间范围内清零计数
    DECLARE failedlogins_unlocktime INT(10)UNSIGNED DEFAULT 10;#密码错误次数超限后锁定时间
    DECLARE secretkey2 VARCHAR(32)DEFAULT IFNULL(@secretkey2,'');
    DECLARE useripaddress VARCHAR(39)DEFAULT@ipaddress;
    #与字段无关的输出
    DECLARE json JSON DEFAULT'{}';
    loop0:LOOP
        #首先判断IP地址是否已被禁止尝试密码
        DELETE FROM uc_session_ipaddress WHERE beforedel<CURRENT_TIMESTAMP();#删除较早的IP
        SELECT failedlogins INTO _failedlogins FROM uc_session_ipaddress WHERE ipaddress=useripaddress;
        IF _failedlogins>failedlogins_max THEN
            SELECT -11 AS errno,'您尝试密码错误过多,请稍候再试' AS message;
            LEAVE loop0;
        END IF;
        SELECT uid,username,`password`,salt INTO _uid,_username,_password,_salt FROM uc_members WHERE email=_email;
        IF ISNULL(_uid) THEN SELECT -1 AS errno,'您输入的E-Mail尚未注册' AS message;LEAVE loop0;END IF;
        IF MD5(CONCAT(_pwdmd5,_salt))<>_password THEN
            SELECT -2 AS errno,'您输入的密码错误' AS message;
            INSERT INTO uc_session_log(uid,ipaddress,errno,error)VALUES(_uid,useripaddress,-2,'登录密码错误');
            IF ISNULL(_failedlogins) THEN
                INSERT INTO uc_session_ipaddress(ipaddress,failedlogins,beforedel)VALUES(useripaddress,1,TIMESTAMPADD(SECOND,failedlogins_timeout,CURRENT_TIMESTAMP()));
            ELSE
                UPDATE uc_session_ipaddress SET failedlogins=_failedlogins+1,beforedel=TIMESTAMPADD(SECOND,failedlogins_unlocktime,CURRENT_TIMESTAMP()) WHERE ipaddress=useripaddress;
            END IF;
            LEAVE loop0;
        END IF;
        #登录校验已通过,开始取得secretkey并出hmac
        SELECT id,secretkey INTO _keyid,_secretkey FROM uc_session_key WHERE started<CURRENT_TIMESTAMP() AND expired>CURRENT_TIMESTAMP() ORDER BY expired DESC LIMIT 1;
        IF ISNULL(_keyid) OR ISNULL(_secretkey) THEN SELECT -3 AS errno,'secretkey获取失败' AS message;LEAVE loop0;END IF;
        SET json=JSON_SET(json,'$.logintime',UNIX_TIMESTAMP(CURRENT_TIMESTAMP(6)));
        SET json=JSON_SET(json,'$.loginip',useripaddress);
        SET json=JSON_SET(json,'$.uid',_uid);
        SET json=JSON_SET(json,'$.email',_email);
        SET json=JSON_SET(json,'$.username',_username);
        SET json=JSON_SET(json,'$.password',_password);
        SET json=JSON_SET(json,'$.salt',_salt);
        SELECT json,_keyid AS keyid,uc_session_hmacsha1(CONCAT(_secretkey,secretkey2),json)AS hmacsha1;
        INSERT INTO uc_session_log(uid,ipaddress,errno,error)VALUES(_uid,useripaddress,0,'登录成功');
        LEAVE loop0;
    END LOOP;
END

猜你喜欢

转载自www.cnblogs.com/xiangxisheng/p/9864281.html
今日推荐
《美国对全球网络空间安全与发展的威胁和破坏》报告发布
火速冲上 GitHub 热榜 —— 开源编程语言、框架哪有这么可爱?
北京人形机器人创新中心发布全球首个纯电驱拟人奔跑的全尺寸人形机器人“天工”
LFOSSA 源来如此公开课 | 掌握云原生未来:CNCF 认证全面攻略与备考秘籍
周排行
让自己的头脑极度开放
CentOS 6.5(x64) 和Redhat6.5操作系误删libc
高可用注册中心
【日记】12.28/【题解】AtCoder AGC041
XML(5)_XML 约束_DTD
Java集合Map(四)
树梅派安装桌面环境教程
pipenv 的 使用和安装
小程序白屏问题和内存研究
C语言简单选择排序
每日归档
更多
2024-05-02(0)
2024-05-01(4)
2024-04-30(1)
2024-04-29(40)
2024-04-28(0)
2024-04-27(56)
2024-04-26(39)
2024-04-25(22)
2024-04-24(36)
2024-04-23(26)

代码天地 © 2018 codetd.com

境外服务器   最新电视剧2022