  <?php
// +----------------------------------------------------------------------
// | ThinkPHP [ WE CAN DO IT JUST THINK ]
// +----------------------------------------------------------------------
// | Copyright (c) 2006-2016 http://thinkphp.cn All rights reserved.
// +----------------------------------------------------------------------
// | Licensed ( http://www.apache.org/licenses/LICENSE-2.0 )
// +----------------------------------------------------------------------
// | Author: liu21st <liu21st@gmail.com>
// +----------------------------------------------------------------------

ini_set('session.cookie_lifetime', 2592000);
ini_set('session.gc_probability', 0);
ini_set('session.gc_divisor', 2592000);
ini_set('session.gc_maxlifetime', 2592000);
ini_set('session.cache_expire', 2592000);

if ($_SERVER['HTTP_HOST'] == 'qhnyjt.qhjurenwl.com') {
  exit(header('Location:' . $_SERVER['REQUEST_URI']));
}
if ($_SERVER['HTTP_HOST'] == 'qhnyjt.com') {
  exit(header('Location:' . $_SERVER['REQUEST_URI']));
}

ini_set('session.cookie_httponly', 1);

// 获取当前请求的协议（HTTP 或 HTTPS）
$protocol = (isset($_SERVER['HTTPS']) && $_SERVER['HTTPS'] !== 'off') ? "https" : "http";
// 获取当前请求的主机名（包括端口号，如果有的话）
$host = $_SERVER['HTTP_HOST'];
// 构造完整的 URL
$fullUrl = $protocol . "://" . $host;

// 允许所有域进行跨域请求
header("Access-Control-Allow-Origin: *");
// 允许的HTTP请求方法
header("Access-Control-Allow-Methods: *");
// 允许的HTTP请求头
header("Access-Control-Allow-Headers: *");
header("Access-Control-Allow-Credentials: true");
if (isset($_SERVER['REQUEST_METHOD']) && $_SERVER['REQUEST_METHOD'] == 'OPTIONS') {
  exit();
}

$pfa = array_merge(
  ['/.', './', '\/', '/\\', '\'', '`', '\\', '/*', '*/'],
  ['md5(', 'eval', 'file_put_contents', 'phpinfo', 'whoami'],
  ['call_user_func_array', 'request_method', 'vars'],
  ['<?php', '<?', '?>', '</', '$', ',),'],
  ['javascript', 'com_', 'com.', 'version', 'think', 'debug'],
  ['?s=', '&s=', '=ls', '404.html'],
  ['.json', '.xml', '.html', '.gz', '.tar', '.tgz', '.rar', '.txt', '.log', '.jsp'],
  ['cmd', 'java', '.bak', '.swp', '.sh', '.ini']
);

if (!empty($_SERVER['HTTP_USER_AGENT'])) {
  $ua = $ua1 = strtolower($_SERVER['HTTP_USER_AGENT']);
  $ua1 = str_replace(['client', 'bot', 'X11; U; Linux', '$', '{', '}'], '', $ua1);
  if ($ua != $ua1) {
    header("Content-Security-Policy:default-src 'none';script-src 'self' " . $fullUrl . ";img-src 'self' " . $fullUrl . ";style-src 'self' " . $fullUrl . ";frame-src 'self';connect-src 'self' " . $fullUrl . ";font-src 'self';media-src 'self';frame-ancestors 'self';form-action 'self';");
    echo 1;
    exit();
  }
}

if (!empty($_SERVER['REQUEST_URI'])) {
  // 找到隐藏文件漏洞修复
  if (mb_strpos($_SERVER['REQUEST_URI'], '/.') === 0) {
    header("Content-Security-Policy:default-src 'none';script-src 'self' " . $fullUrl . ";img-src 'self' " . $fullUrl . ";style-src 'self' " . $fullUrl . ";frame-src 'self';connect-src 'self' " . $fullUrl . ";font-src 'self';media-src 'self';frame-ancestors 'self';form-action 'self';");
    echo 2;
    exit();
  }

  $ru = $ru1 = strtolower($_SERVER['REQUEST_URI']);
  $ru1 = str_replace($pfa, '', $ru1);
  if ($ru != $ru1) {
    header("Content-Security-Policy:default-src 'none';script-src 'self' " . $fullUrl . ";img-src 'self' " . $fullUrl . ";style-src 'self' " . $fullUrl . ";frame-src 'self';connect-src 'self' " . $fullUrl . ";font-src 'self';media-src 'self';frame-ancestors 'self';form-action 'self';");
    echo 3;
    exit();
  }

  $ru_arr = explode('?', $_SERVER['REQUEST_URI']);
  $ru_tmp = reset($ru_arr);
  if (pathinfo($ru_tmp, PATHINFO_EXTENSION)) {
    header("Content-Security-Policy:default-src 'none';script-src 'self' " . $fullUrl . ";img-src 'self' " . $fullUrl . ";style-src 'self' " . $fullUrl . ";frame-src 'self';connect-src 'self' " . $fullUrl . ";font-src 'self';media-src 'self';frame-ancestors 'self';form-action 'self';");
    echo 4;
    exit();
  }
}

// 注入漏洞修复
$arr = $arr1 = strtolower(stripslashes(htmlspecialchars_decode(html_entity_decode(stripslashes(urldecode(http_build_query($_REQUEST)))))));
// 过滤字符串
$arr1 = preg_replace("/<\?php.*\?>|<script.*<\/script>|SELECT \* FROM \w+|System\.out\.println\('.*'\);/is", "", $arr1);
// 过滤字符串
$arr1 = preg_replace('/(union|str|where|from)\s*\(/is', '', $arr1);
// 匹配SQL代码
$arr1 = preg_replace('/\b(INSERT|UPDATE|DROP|ALTER)\b/is', '', $arr1);
// 匹配PHP代码
$arr1 = preg_replace('/<\?php|<\?|\?>|<\?=/is', '', $arr1);
// 匹配Java代码
$arr1 = preg_replace('/\b(class|import|public|private|protected|static|void|new)\b/is', '', $arr1);
// 匹配HTML标签
$arr1 = preg_replace('/<[^>]*>/is', '', $arr1);
// 过滤危险字符
$arr1 = str_replace($pfa, '', $arr1);
// 去除HTML标签
$arr1 = strip_tags($arr1);
// 注入漏洞修复
if ($arr != $arr1 && !$_FILES) {
  header("Content-Security-Policy:default-src 'none';script-src 'self' " . $fullUrl . ";img-src 'self' " . $fullUrl . ";style-src 'self' " . $fullUrl . ";frame-src 'self';connect-src 'self' " . $fullUrl . ";font-src 'self';media-src 'self';frame-ancestors 'self';form-action 'self';");
  echo 5;
  exit();
}

// [ 应用入口文件 ]

// 定义应用目录
define('APP_PATH', __DIR__ . '/../yunqikds_app/');
// 加载框架引导文件
require __DIR__ . '/../yunqikds_thinkphp/start.php';