From 8574981ee47e7cb3b01ebb9a2736790910090d63 Mon Sep 17 00:00:00 2001
From: XiaoLFeng <gm@x-lf.cn>
Date: Fri, 26 May 2023 23:15:33 +0800
Subject: [PATCH] =?UTF-8?q?=E4=BF=AE=E5=A4=8D=E9=80=BB=E8=BE=91=E6=BC=8F?=
 =?UTF-8?q?=E6=B4=9E?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 public/api/auth/registerCheck/index.php | 30 +++++++++++++++----------
 1 file changed, 18 insertions(+), 12 deletions(-)

diff --git a/public/api/auth/registerCheck/index.php b/public/api/auth/registerCheck/index.php
index 8f02c68..9e582e0 100644
--- a/public/api/auth/registerCheck/index.php
+++ b/public/api/auth/registerCheck/index.php
@@ -41,30 +41,36 @@
                     $AResult_Code = Sql::SELECT("SELECT * FROM `index`.`xf_email_verify` WHERE `code`='{$GetData['code']}'");
                     // check sql data not empty
                     if ($AResult_Code['output'] = "Success") {
-                        if ($_COOKIE['user'] == $AResult_Code['data']->uid) {
-                            // update this user info in sql (update xf_user.email_verify)
-                            if (Sql::UPDATE("UPDATE `index`.xf_user SET `email_verify`=1 WHERE `uid`='{$_COOKIE['user']}'")) {
-                                // delete the email_verify
-                                if (Sql::DELETE("DELETE FROM `index`.xf_email_verify WHERE `id`='{$AResult_Code['data']->id}'")) {
-                                    Normal::Output(200);
+                        // check this verify code have effective
+                        if ($AResult_Code['data']->time + $Array_ConfigData['Mail']['ExpDate'] > time()) {
+                            if ($_COOKIE['user'] == $AResult_Code['data']->uid) {
+                                // update this user info in sql (update xf_user.email_verify)
+                                if (Sql::UPDATE("UPDATE `index`.xf_user SET `email_verify`=1 WHERE `uid`='{$_COOKIE['user']}'")) {
+                                    // delete the email_verify
+                                    if (Sql::DELETE("DELETE FROM `index`.xf_email_verify WHERE `id`='{$AResult_Code['data']->id}'")) {
+                                        Normal::Output(200);
+                                    } else {
+                                        Normal::Output(303);
+                                    }
                                 } else {
-                                    Normal::Output(303);
+                                    Normal::Output(302);
                                 }
                             } else {
-                                Normal::Output(302);
+                                Normal::CustomOutput("codeNotYour", 403, "这个验证码不是你");
                             }
                         } else {
-                            Normal::CustomOutput("CodeNotYour", 403, "这个验证码不是你");
+                            Sql::DELETE("DELETE FROM `index`.xf_email_verify WHERE `id`='{$AResult_Code['data']->id}'");
+                            Normal::CustomOutput("codeIsDisEffective", 403, "验证码已过期");
                         }
                     } else {
                         // SqlSelectFail__CodeEmpty
-                        Normal::Output(301, null, "CodeEmpty");
+                        Normal::Output(301, null, "codeEmpty");
                     }
                 } else {
-                    Normal::CustomOutput("CodeFormat", 403, "激活码格式错误");
+                    Normal::CustomOutput("codeFormat", 403, "激活码格式错误");
                 }
             } else {
-                Normal::CustomOutput("NoCode", 403, "请提供激活码");
+                Normal::CustomOutput("noCode", 403, "请提供激活码");
             }
         } else {
             // userFormat