|
|
@@ -35,7 +35,11 @@ class apiAction extends ActionNot
|
|
|
$this->adminid = (int)$this->request('adminid', $this->adminid);
|
|
|
$this->adminname = '';
|
|
|
$boss = (M == 'login|api');
|
|
|
- if(!$boss){
|
|
|
+
|
|
|
+ // 是否验证
|
|
|
+ $is_check = $this->request('ischeck') == null ? true : (bool)$this->request('ischeck');
|
|
|
+
|
|
|
+ if(!$boss && $is_check){
|
|
|
if($this->isempt($this->token))$this->showreturn('','token invalid', 199);
|
|
|
$lodb = m('login');
|
|
|
$onto = $lodb->getone("`uid`='$this->adminid' and `token`='$this->token' and `online`=1");
|
