KCAPTCHA 캡챠 플러그인 추가

plugin/kcaptcha/_common.php

@@ -0,0 +1,3 @@
+<?php
+include_once('../../common.php');
+?>

plugin/kcaptcha/captcha.lib.php

@@ -0,0 +1,3 @@
+<?php
+require(dirname(__FILE__).'/kcaptcha.lib.php');
+?>

plugin/kcaptcha/kcaptcha.js

@@ -0,0 +1,91 @@
+$(function(){
+    $("#captcha_reload").bind("click", function(){
+        $.ajax({
+            type: 'POST',
+            url: g5_captcha_url+'/kcaptcha_session.php',
+            cache: false,
+            async: false,
+            success: function(text) {
+                $('#captcha_img').attr('src', g5_captcha_url+'/kcaptcha_image.php?t=' + (new Date).getTime());
+            }
+        });
+    }).trigger("click");
+
+    var mp3_url = "";
+    $("#captcha_mp3").click(function(){
+        $("body").css("cursor", "wait");
+
+        $.ajax({
+            type: 'POST',
+            url: g5_captcha_url+'/kcaptcha_mp3.php',
+            cache: false,
+            async: false,
+            success: function(url) {
+                if (url) {
+                    mp3_url = url + "?t="+new Date().getTime();
+                }
+            }
+        });
+
+        var html5use = false;
+        var html5audio = document.createElement("audio");
+        if (html5audio.canPlayType && html5audio.canPlayType("audio/mpeg")) {
+            var wav = new Audio(mp3_url);
+            wav.id = "mp3_audio";
+            wav.autoplay = true;
+            wav.controls = false;
+            wav.autobuffer = false;
+            wav.loop = false;
+            
+            if ($("#mp3_audio").length) $("#mp3_audio").remove();
+            $("#captcha_mp3").after(wav);
+
+            html5use = true;
+        } 
+        
+        if (!html5use) {
+            var object = '<object id="mp3_object" classid="clsid:22d6f312-b0f6-11d0-94ab-0080c74c7e95" height="0" width="0" style="width:0; height:0;">';
+            object += '<param name="AutoStart" value="1" />';
+            object += '<param name="Volume" value="0" />';
+            object += '<param name="PlayCount" value="1" />';
+            object += '<param name="FileName" value="' + mp3_url + '" />';
+            object += '<embed id="mp3_embed" src="' + mp3_url + '" autoplay="true" hidden="true" volume="100" type="audio/x-wav" style="display:inline;" />';
+            object += '</object>';
+            if ($("#mp3_object").length) 
+                $("#mp3_object").remove();
+            $("#captcha_mp3").after(object);
+        }
+        
+        $("body").css("cursor", "default");
+        return false;
+
+    }).css('cursor', 'pointer');
+});
+
+// 출력된 캡챠이미지의 키값과 입력한 키값이 같은지 비교한다.
+function chk_captcha()
+{
+    var captcha_result = false;
+    var captcha_key = document.getElementById('captcha_key');
+    $.ajax({
+        type: 'POST',
+        url: g5_captcha_url+'/kcaptcha_result.php',
+        data: {
+            'captcha_key': captcha_key.value 
+        },
+        cache: false,
+        async: false,
+        success: function(text) {
+            captcha_result = text;
+        }
+    });
+
+    if (!captcha_result) {
+        alert('글자가 틀렸거나 입력 횟수가 넘었습니다.\n\n새로고침을 클릭하여 다시 입력해 주십시오.');
+        captcha_key.select();
+        captcha_key.focus();
+        return false;
+    }
+
+    return true;
+}

plugin/kcaptcha/kcaptcha.lib.php

@@ -0,0 +1,278 @@
+<?php
+
+# KCAPTCHA PROJECT VERSION 1.2.6
+
+# Automatic test to tell computers and humans apart
+
+# Copyright by Kruglov Sergei, 2006, 2007, 2008
+# www.captcha.ru, www.kruglov.ru
+
+# System requirements: PHP 4.0.6+ w/ GD
+
+# KCAPTCHA is a free software. You can freely use it for building own site or software.
+# If you use this software as a part of own sofware, you must leave copyright notices intact or add KCAPTCHA copyright notices to own.
+# As a default configuration, KCAPTCHA has a small credits text at bottom of CAPTCHA image.
+# You can remove it, but I would be pleased if you left it. ;)
+
+# See kcaptcha_config.php for customization
+
+class KCAPTCHA{
+
+	// generates keystring and image
+	function image(){
+        require(dirname(__FILE__).'/kcaptcha_config.php');
+
+		$fonts=array();
+		$fontsdir_absolute=dirname(__FILE__).'/'.$fontsdir;
+		if ($handle = opendir($fontsdir_absolute)) {
+			while (false !== ($file = readdir($handle))) {
+				if (preg_match('/\.png$/i', $file)) {
+					$fonts[]=$fontsdir_absolute.'/'.$file;
+				}
+			}
+		    closedir($handle);
+		}	
+	
+		$alphabet_length=strlen($alphabet);
+		
+		do{
+            /*
+			// generating random keystring
+			while(true){
+				$this->keystring='';
+				for($i=0;$i<$length;$i++){
+					$this->keystring.=$allowed_symbols{mt_rand(0,strlen($allowed_symbols)-1)};
+				}
+				if(!preg_match('/cp|cb|ck|c6|c9|rn|rm|mm|co|do|cl|db|qp|qb|dp|ww/', $this->keystring)) break;
+			}
+            */
+
+			$font_file=$fonts[mt_rand(0, count($fonts)-1)];
+			$font=imagecreatefrompng($font_file);
+			imagealphablending($font, true);
+			$fontfile_width=imagesx($font);
+			$fontfile_height=imagesy($font)-1;
+			$font_metrics=array();
+			$symbol=0;
+			$reading_symbol=false;
+
+			// loading font
+			for($i=0;$i<$fontfile_width && $symbol<$alphabet_length;$i++){
+				$transparent = (imagecolorat($font, $i, 0) >> 24) == 127;
+
+				if(!$reading_symbol && !$transparent){
+					$font_metrics[$alphabet{$symbol}]=array('start'=>$i);
+					$reading_symbol=true;
+					continue;
+				}
+
+				if($reading_symbol && $transparent){
+					$font_metrics[$alphabet{$symbol}]['end']=$i;
+					$reading_symbol=false;
+					$symbol++;
+					continue;
+				}
+			}
+
+			$img=imagecreatetruecolor($width, $height);
+			imagealphablending($img, true);
+			$white=imagecolorallocate($img, 255, 255, 255);
+			$black=imagecolorallocate($img, 0, 0, 0);
+
+			imagefilledrectangle($img, 0, 0, $width-1, $height-1, $white);
+
+			// draw text
+			$x=1;
+			for($i=0;$i<strlen($this->keystring);$i++){
+				$m=$font_metrics[$this->keystring{$i}];
+
+				$y=mt_rand(-$fluctuation_amplitude, $fluctuation_amplitude)+($height-$fontfile_height)/2+2;
+
+				if($no_spaces){
+					$shift=0;
+					if($i>0){
+						$shift=10000;
+						for($sy=7;$sy<$fontfile_height-20;$sy+=1){
+							for($sx=$m['start']-1;$sx<$m['end'];$sx+=1){
+				        		$rgb=imagecolorat($font, $sx, $sy);
+				        		$opacity=$rgb>>24;
+								if($opacity<127){
+									$left=$sx-$m['start']+$x;
+									$py=$sy+$y;
+									if($py>$height) break;
+									for($px=min($left,$width-1);$px>$left-12 && $px>=0;$px-=1){
+						        		$color=imagecolorat($img, $px, $py) & 0xff;
+										if($color+$opacity<190){
+											if($shift>$left-$px){
+												$shift=$left-$px;
+											}
+											break;
+										}
+									}
+									break;
+								}
+							}
+						}
+						if($shift==10000){
+							$shift=mt_rand(4,6);
+						}
+
+					}
+				}else{
+					$shift=1;
+				}
+				imagecopy($img, $font, $x-$shift, $y, $m['start'], 1, $m['end']-$m['start'], $fontfile_height);
+				$x+=$m['end']-$m['start']-$shift;
+			}
+		}while($x>=$width-10); // while not fit in canvas
+
+		$center=$x/2;
+
+		// credits. To remove, see configuration file
+		$img2=imagecreatetruecolor($width, $height+($show_credits?12:0));
+		$foreground=imagecolorallocate($img2, $foreground_color[0], $foreground_color[1], $foreground_color[2]);
+		$background=imagecolorallocate($img2, $background_color[0], $background_color[1], $background_color[2]);
+		imagefilledrectangle($img2, 0, 0, $width-1, $height-1, $background);		
+		imagefilledrectangle($img2, 0, $height, $width-1, $height+12, $foreground);
+		$credits=empty($credits)?$_SERVER['HTTP_HOST']:$credits;
+		imagestring($img2, 2, $width/2-imagefontwidth(2)*strlen($credits)/2, $height-2, $credits, $background);
+
+		// periods
+		$rand1=mt_rand(750000,1200000)/10000000;
+		$rand2=mt_rand(750000,1200000)/10000000;
+		$rand3=mt_rand(750000,1200000)/10000000;
+		$rand4=mt_rand(750000,1200000)/10000000;
+		// phases
+		$rand5=mt_rand(0,31415926)/10000000;
+		$rand6=mt_rand(0,31415926)/10000000;
+		$rand7=mt_rand(0,31415926)/10000000;
+		$rand8=mt_rand(0,31415926)/10000000;
+		// amplitudes
+		$rand9=mt_rand(330,420)/110;
+		$rand10=mt_rand(330,450)/110;
+
+		//wave distortion
+
+		for($x=0;$x<$width;$x++){
+			for($y=0;$y<$height;$y++){
+                if ($wave) {
+                    $sx=$x+(sin($x*$rand1+$rand5)+sin($y*$rand3+$rand6))*$rand9-$width/2+$center+1;
+                    $sy=$y+(sin($x*$rand2+$rand7)+sin($y*$rand4+$rand8))*$rand10;
+                }
+                else {
+                    $sx=$x-$width/2+$center+1;
+                    $sy=$y+(sin($x*$rand2+$rand7)+sin($y*$rand4+$rand8))*1.5;
+                }
+
+				if($sx<0 || $sy<0 || $sx>=$width-1 || $sy>=$height-1){
+					continue;
+				}else{
+					$color=imagecolorat($img, $sx, $sy) & 0xFF;
+					$color_x=imagecolorat($img, $sx+1, $sy) & 0xFF;
+					$color_y=imagecolorat($img, $sx, $sy+1) & 0xFF;
+					$color_xy=imagecolorat($img, $sx+1, $sy+1) & 0xFF;
+				}
+
+				if($color==255 && $color_x==255 && $color_y==255 && $color_xy==255){
+					continue;
+				}else if($color==0 && $color_x==0 && $color_y==0 && $color_xy==0){
+					$newred=$foreground_color[0];
+					$newgreen=$foreground_color[1];
+					$newblue=$foreground_color[2];
+				}else{
+					$frsx=$sx-floor($sx);
+					$frsy=$sy-floor($sy);
+					$frsx1=1-$frsx;
+					$frsy1=1-$frsy;
+
+					$newcolor=(
+						$color*$frsx1*$frsy1+
+						$color_x*$frsx*$frsy1+
+						$color_y*$frsx1*$frsy+
+						$color_xy*$frsx*$frsy);
+
+					if($newcolor>255) $newcolor=255;
+					$newcolor=$newcolor/255;
+					$newcolor0=1-$newcolor;
+
+					$newred=$newcolor0*$foreground_color[0]+$newcolor*$background_color[0];
+					$newgreen=$newcolor0*$foreground_color[1]+$newcolor*$background_color[1];
+					$newblue=$newcolor0*$foreground_color[2]+$newcolor*$background_color[2];
+				}
+
+				imagesetpixel($img2, $x, $y, imagecolorallocate($img2, $newred, $newgreen, $newblue));
+			}
+		}
+		
+		header('Expires: Mon, 26 Jul 1997 05:00:00 GMT'); 
+		header('Cache-Control: no-store, no-cache, must-revalidate'); 
+		header('Cache-Control: post-check=0, pre-check=0', FALSE); 
+		header('Pragma: no-cache');
+		
+		if(function_exists("imagejpeg")){
+			header("Content-Type: image/jpeg");
+			imagejpeg($img2, null, $jpeg_quality);
+		}else if(function_exists("imagegif")){
+			header("Content-Type: image/gif");
+			imagegif($img2);
+		}else if(function_exists("imagepng")){
+			header("Content-Type: image/x-png");
+			imagepng($img2);
+		}
+	}
+
+	// returns keystring
+	function getKeyString(){
+		return $this->keystring;
+	}
+
+    function setKeyString($str){
+        $this->keystring = $str;
+	}
+}
+
+
+// 캡챠 HTML 코드 출력
+function captcha_html($class="captcha")
+{
+    $html .= "\n".'<script>var g5_captcha_url  = "'.G5_CAPTCHA_URL.'";</script>';
+    $html .= "\n".'<script>var g5_captcha_path = "'.G5_CAPTCHA_PATH.'";</script>';
+    $html .= "\n".'<script src="'.G5_CAPTCHA_URL.'/kcaptcha.js"></script>';
+    $html .= "\n".'<fieldset id="sir_captcha" class="'.$class.'">';
+    $html .= "\n".'<legend>자동등록방지</legend>';
+    $html .= "\n".'<img src="#" alt="" id="captcha_img">';
+    $html .= "\n".'<button type="button" id="captcha_mp3"><span></span>숫자음성듣기</button>';
+    $html .= "\n".'<button type="button" id="captcha_reload"><span></span>새로고침</button>';
+    $html .= '<input type="text" name="captcha_key" id="captcha_key" required class="captcha_box sir_inp sir_irq" size="6" maxlength="6">';
+    $html .= "\n".'</fieldset>';
+    $html .= "\n".'<span class="sir_finfo1">자동등록방지 숫자를 순서대로 입력하세요.</span>';
+    return $html;
+}
+
+
+// 캡챠 사용시 자바스크립트에서 입력된 캡챠를 검사함
+function chk_captcha_js()
+{
+    return "if (!chk_captcha()) return false;\n";
+}
+
+
+// 세션에 저장된 캡챠값과 $_POST 로 넘어온 캡챠값을 비교
+function chk_captcha()
+{
+    $captcha_count = (int)get_session('ss_captcha_count');
+    if ($captcha_count > 5) {
+        return false;
+    }
+
+    if (!isset($_POST['captcha_key'])) return false;
+    if (!trim($_POST['captcha_key'])) return false;
+    if ($_POST['captcha_key'] != get_session('ss_captcha_key')) {
+        $_SESSION['ss_captcha_count'] = $captcha_count + 1;
+        $sql = " insert _error set er_datetime = NOW(), er_ip = '{$_SERVER['REMOTE_ADDR']}', er_user_agent = '{$_SERVER['HTTP_USER_AGENT']}', er_request = 'POST(".$_POST['captcha_key'].')!=SESSION('.get_session('ss_captcha_key').")' ";
+        sql_query($sql);
+        return false;
+    }
+    return true;
+}
+?>

plugin/kcaptcha/kcaptcha_config.php

@@ -0,0 +1,42 @@
+<?php
+
+# KCAPTCHA configuration file
+
+$alphabet = "0123456789abcdefghijklmnopqrstuvwxyz"; # do not change without changing font files!
+
+# symbols used to draw CAPTCHA
+$allowed_symbols = "0123456789"; #digits
+//$allowed_symbols = "23456789abcdeghkmnpqsuvxyz"; #alphabet without similar symbols (o=0, 1=l, i=j, t=f)
+
+# folder with fonts
+$fontsdir = 'fonts';	
+
+# CAPTCHA string length
+//$length = mt_rand(5,6); # random 5 or 6
+$length = 6;
+
+# CAPTCHA image size (you do not need to change it, whis parameters is optimal)
+$width = 120;
+$height = 60;
+
+# symbol's vertical fluctuation amplitude divided by 2
+$fluctuation_amplitude = 5;
+
+# increase safety by prevention of spaces between symbols
+$no_spaces = false;
+
+# show credits
+$show_credits = false; # set to false to remove credits line. Credits adds 12 pixels to image height
+$credits = 'www.captcha.ru'; # if empty, HTTP_HOST will be shown
+
+# CAPTCHA image colors (RGB, 0-255)
+$foreground_color = array(0, 0, 0);
+$background_color = array(255, 255, 255);
+//$foreground_color = array(mt_rand(0,100), mt_rand(0,100), mt_rand(0,100));
+//$background_color = array(mt_rand(200,255), mt_rand(200,255), mt_rand(200,255));
+
+# JPEG quality of CAPTCHA image (bigger is better quality, but larger file size)
+$jpeg_quality = 90;
+
+$wave = true;
+?>

plugin/kcaptcha/kcaptcha_image.php

@@ -0,0 +1,11 @@
+<?php
+include_once("_common.php");
+//error_reporting (E_ALL);
+include('captcha.lib.php');
+
+//session_start();
+$captcha = new KCAPTCHA();
+$captcha->setKeyString(get_session("ss_captcha_key"));
+$captcha->getKeyString();
+$captcha->image();
+?>

plugin/kcaptcha/kcaptcha_mp3.php

@@ -0,0 +1,44 @@
+<?php
+include_once("_common.php");
+
+function make_mp3()
+{
+    global $g4, $config;
+
+    $number = get_session("ss_captcha_key");
+
+    if ($number == "") return;
+    if ($number == get_session("ss_captcha_save")) return;
+
+    $mp3s = array();
+    for($i=0;$i<strlen($number);$i++){
+        $file = G5_CAPTCHA_PATH.'/mp3/'.$config['cf_captcha_mp3'].'/'.$number[$i].'.mp3';
+        $mp3s[] = $file;
+    }
+
+    $ip = sprintf("%u", ip2long($_SERVER['REMOTE_ADDR']));
+    $mp3_file = 'data/cache/kcaptcha-'.$ip.'_'.G5_SERVER_TIME.'.mp3';
+
+    $contents = '';
+    foreach ($mp3s as $mp3) {
+        $contents .= file_get_contents($mp3);
+    }
+
+    file_put_contents(G5_PATH.'/'.$mp3_file, $contents);
+
+    // 지난 캡챠 파일 삭제
+    if (rand(0,10) == 0) {
+        foreach (glob(G5_PATH.'/data/cache/kcaptcha-*.mp3') as $file) {
+            if (filemtime($file) + 86400 < $g4['server_time']) {
+                unset($file);
+            }
+        }
+    }
+
+    set_session("ss_captcha_save", $number);
+
+    return G5_URL.'/'.$mp3_file;
+}
+
+echo make_mp3();
+?>

plugin/kcaptcha/kcaptcha_result.php

@@ -0,0 +1,13 @@
+<?
+// 캡챠 세션값과 비교하여 맞는지? 틀린지? 결과값을 출력합니다.
+include_once("_common.php");
+//header("Content-Type: text/html; charset=$g4[charset]");
+
+$count = (int)get_session("ss_captcha_count");
+if ($count >= 5) { // 설정값 이상이면 자동등록방지 입력 문자가 맞아도 오류 처리
+    echo false;
+} else {
+    set_session("ss_captcha_count", $count + 1);
+    echo (get_session("ss_captcha_key") == $_POST['captcha_key']) ? true : false;
+}
+?>

plugin/kcaptcha/kcaptcha_session.php

@@ -0,0 +1,19 @@
+<?
+include_once("_common.php");
+header("Content-Type: text/html; charset=$g4[charset]");
+require(dirname(__FILE__).'/kcaptcha_config.php');
+include('captcha.lib.php');
+
+while(true){
+    $keystring='';
+    for($i=0;$i<$length;$i++){
+        $keystring.=$allowed_symbols{mt_rand(0,strlen($allowed_symbols)-1)};
+    }
+    if(!preg_match('/cp|cb|ck|c6|c9|rn|rm|mm|co|do|cl|db|qp|qb|dp|ww/', $keystring)) break;
+}
+
+set_session("ss_captcha_count", 0);
+set_session("ss_captcha_key", $keystring);
+$captcha = new KCAPTCHA();
+$captcha->setKeyString(get_session("ss_captcha_key"));
+?>