代码如下:
<?php //开启session session_start(); //如果有提交标识 if(isset($_GET['action']) && $_GET['action'] === 'save'){ //如果有session且跟传过来的值一样才算提交 if(isset($_SESSION['__open_auth']) && isset($_POST['auth']) && $_SESSION['__open_auth'] == $_POST['auth']){ print_r($_POST); $_SESSION['__open_auth'] = null;//清空 } else { //走起 header("location: post.php"); } exit(); } //授权 $auth = $_SESSION['__open_auth'] = time(); ?> <!doctype html> <html> <head> <meta charset="UTF-8"> <title>post</title> </head> <body> <form action="post.php?action=save" method="post"> <ul> <li> <input type="hidden" name="auth" value="<?php echo $auth;?>"> <input type="text" name="userName"> </li> <li> <input type="password" name="userpass"> </li> <li> <input type="submit" value="走起"> </li> <li> <?php echo time(); ?> </li> </ul> </form> </body> </html>