From ceee6e7c3fa05d869a2ee3c4bfda5a034670f448 Mon Sep 17 00:00:00 2001
From: shinn-lancelot <945226793@qq.com>
Date: Sat, 25 Aug 2018 13:55:48 +0800
Subject: [PATCH] =?UTF-8?q?1.=20=E5=AE=8C=E5=96=84=E5=90=8E=E5=8F=B0?=
 =?UTF-8?q?=E5=8A=9F=E8=83=BD=EF=BC=8C=E9=AA=8C=E8=AF=81=E6=96=87=E4=BB=B6?=
 =?UTF-8?q?=E3=80=81=E5=AE=89=E5=85=A8=E5=9F=9F=E5=90=8D=E5=8A=9F=E8=83=BD?=
 =?UTF-8?q?=E5=AE=8C=E6=88=90?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 .gitignore                   |   3 +-
 admin.php                    |   7 +-
 asset/image/back.png         | Bin 0 -> 43005 bytes
 common/addSafeDomainName.php |  47 +++++
 common/clearDomainName.php   |  51 +++++
 common/clearVerify.php       |  35 ++++
 common/loginHandle.php       |  32 +--
 common/verifyHandle.php      |   9 +
 login.php                    |   5 +-
 manageDomainName.php         | 296 +++++++++++++++++++++++++++
 manageVerify.php             | 293 ++++++++++++++++++++++++++
 safeDomainName.php           | 386 +++++++++++++++++++++++++++++++++++
 verify.php                   |  41 ++--
 13 files changed, 1163 insertions(+), 42 deletions(-)
 create mode 100644 asset/image/back.png
 create mode 100644 common/addSafeDomainName.php
 create mode 100644 common/clearDomainName.php
 create mode 100644 common/clearVerify.php
 create mode 100644 manageDomainName.php
 create mode 100644 manageVerify.php
 create mode 100644 safeDomainName.php
diff --git a/.gitignore b/.gitignore
index 0ef04d1..3da3316 100644
--- a/.gitignore
+++ b/.gitignore
@@ -2,4 +2,5 @@
 .DS_Store
 /.cache
 /.vscode
-*.txt
\ No newline at end of file
+*.txt
+domainName.json
\ No newline at end of file
diff --git a/admin.php b/admin.php
index 762a908..2d61d5f 100644
--- a/admin.php
+++ b/admin.php
@@ -164,12 +164,12 @@
                 <div class="logo"></div>
                 <a href="./verify.php">
                     <div class="btn btn-size">
-                        <p>添加微信公众号授权登录txt验证内容</p>
+                        <p>添加微信公众号授权登录域名验证文件内容</p>
                     </div>
                 </a>
-                <a href="">
+                <a href="./safeDomainName.php">
                     <div class="btn btn-size">
-                        <p>添加接口允许域名</p>
+                        <p>添加接口调用安全域名</p>
                     </div>
                 </a>
                 <a href="">
@@ -214,7 +214,6 @@
                 } else {
                     logoutState = 1;
                 }
-
             } else {
                 console.log(xhr.readyState);
             }
diff --git a/asset/image/back.png b/asset/image/back.png
new file mode 100644
index 0000000000000000000000000000000000000000..420c18c3a51c47f80e52c7fae897157028683f3d
GIT binary patch
literal 43005
zcmeHQ30zF;`#)2mqGXLoQ{mco_eZwuaYI6~rw}TIiY&>#D@#a<a3!){l!&f1A~*Xj
z6rxK~mP%Uuzt1rz(=;<p8t%CNc|V`iIq!Sk<@r9}_j%ssoH?zu7}!@!Q%{p&7_EM0
zy)1E_K!<vHhT&Cs{`+}EG+fL^%w(8~)#%_c+qTzY7|j7wdiJ!inC$H8Jae+M3%_5_
zo_v=X&XcA%PGp$b@c~0-S#Qj)*)=hHVr8oy4>FE!aa_n48HcJz>x|f?vw<1EM5n6h
zrKKx0t*Y0kvfXUh#YJ~D%>q_D-PtJIzWb^bBUcX_-QkVF!{8J1=cK2l<=)Rdld?S}
zFV^E`Wv?n#8?Jw`Ybw*xa%pFi2L|4Q%r0Jy^iru|mZZklc@cBozT72-$x!u}?df`?
zTORMQGo!+|+-*_6>Xj#-7e`n$9M169Gf75OQ!4U&EScyQL!+xR(Y2T(L;jec$!ua6
zM~`_ujF|me%<B*Rx|U-eglv4M%RJasH$<IT%VYc+^{uaBdYZ8rw$QSfO4NB~XQ-)B
z3$>_2Jg*Ta+w@iOiY&*tue0{4Y-+=J`Soaao#A&-VS3i9c0-kKuDY|;t#e5s<6M@8
zoAH>a7~dOPe!JDSdbsajdb8eTBt12JdfxG9kMX*VbtY*f8*Sg>Z(PkRMb$jE62s`_
z#Qj;&p_@<2i{vLSCZ#y0f4H=(z#+rgsH@@I#DX(xRMZ%qfj86R$31_3Pu1lL?}*zu
zhmcWBycIJ!F=tHM1dW{|HUFBEv)ZFWo@u?nAdBeE`gJucR!nPP8x+~<+3K#J+dgql
zTJ4#Iy9EhzGMMSxO#Kc<?OvQeef%`{Lze4OV$^!Ho|c_rTySOSg8X%j<DRxVI=Wen
zRd20VhFcg7xZ-ija(yqutG-XGzFg4et-<Dejg7Okn9yZ|q6VI<a3aPr%JU6RWwo~T
zEqBJ$^L_I*dKK3*I`-|_cw{ro#&bE|rcHUwjV*hgG0d5NYK`8vN!R?cI>YqZxv<HR
z?iDKiSv@pLd;6dIXQFgf#+UD9TB&|iXPqA9lfCL{2G!c!z4p*3lLu-ij;QMGtg`Ki
z&hbB6chE{nsycdMs*7%Un_7YAYn@r9q1HWGz1ny~lND8L*F7+bRoC@fr)D(Xtlb8$
zJ^Ys|st-206g^{)N=T2X>&KWGziU3DddIb+O+Wc0MDyFM%3F1&Z|hA9j}2D6qvB?I
zYM+7Ls>?fP#<{kuJjQGDE{8b1<Mq0Do!k{1_uD^iuFU*Z>+HPZT5C^Q^Y{4CYnJ!6
zS!u1;@Jda)=hp45yxZI9TmR3!MxCg@@#*UIRaSddd#yfpiOzY)MLs@#t<9}_?rZSc
z_;}R__2C+em$W|ri_yk?gN`?tQ#I$}Y+I9~KGuCg8@@5DXBgOE>@V8Y#%(mKuYGkx
z@<2_)20m^2RqW?rmSEO=&yYP`Z|O|gZr(7}$LZ?hWc6cSq5LiD!+a|H4BC);^+Ix3
zb(2dgo|<dys&BbxQ`P?MCw6<T_WO=DJ^Xg=AABPu@Q(Wa6(&1I_H)|lZqahc@{nrn
z+_p8i;a{_7%%0}E@BX!Iiv5)A$t_>HMrb@*T(9?*zqZ_R_@~0ll$VP?%&MfdOl$EK
zGuuYB9cs_59b7A{c1u6=z2$Ci@rxeX>VBI#e)d}{Z*?AK-6X5Yyc+ATRrNLTwet1!
zP1!$m*vw(w?t1L6IP}1<$_K_;&EMN+*dG?pLNxBwJa9Kef7t1eUk}Av&a(8jxH)*-
z?z7|a7k#qRI<{<SpPkFhb`P}+yIgy%Va>~JCcd@qac_o|YHBlwtpjXF9m{!b?p`jp
zj(f|w=0keU+&?LF()vjOFQ(t%X<t5?l+p3;?fqj7W3^)EHdk%lt@+V=Qx8r$=y~ve
z@pIzO#@nXNNUNEa8lUdw5?~t8EFjaw$t2rNBjVSH!4XR%65MXS>U!HQ)#If`=Cw@i
zmyhE5W;%V?ovHgO{a$*U!T(ydQ~%YcwqxrKb{W@w?EZ1sIwd?VW66_!RbnPbtiL#U
zcU-^Szl1k@v)uk!``Nl(CxtrKwGD0ec;Z8c&f{&Tv`N@=anGgXvyE?Ta@aO0BJTKY
z*X!4#n>`GD5PJ3Xx{i0ZI|PnD`}diIytPYz@4fv}|JA>)zOp%f^SqdHn+I&p4&7?i
z)yl&v)9QX`zk8!oo25G48}4XPXSjbQe-r<hllu<(AH3-9@03{mX?5?$w;E>-nHJyr
zb>3^u*V|r~PwSX9KC3~NQ`SxW>vgN@-|OVsY2FN1x9jeXE@x8rJZX0!<YLH$m&5Jr
z*ayuFc;8-k?{7XaRkyfr(H-IxyefFwjyW;D&-LC!+&XbPbGQF#|Az<vcDnQEdY4P{
z59AJL;a}(Km<wIfyMM^YwthPO`m=yw|KRiQeNtMEbssxoY;I(|L4Ry-7<jLhQ*^?`
zQAv?8b8SqzcA5Ao_N8jq%UxA=%-OO0?B26RiCxYbd*1W(^Q@2;nA_=7OuqNWb5A_p
z)qFd!oDJ_!-g92$LcN85s5+<`sQIb=UZH)twdGEiZ&|5pjUJUWv_=@r*ytRk`>sxo
zUE7ED&9=qWxTYRZV`QCAt*$pTuXnG?x@9-j6LmbD_vV<tyna%BMN(hK72yU`YWwNt
z%&*?KNt^vGUJX7z#C5uBcC&k-$s=;@BiFt44q0=mQ^M4fGu-V%r#f0X+P(G<_X^)1
zzHs*PkG<b+sp?v-zDC;0<ckk3c3Jssrb>$Awzk`ow+-FwYIo@Q!(FFzU%ZTs37pk=
zMEemw^ExcuT6N2@ZqFC<dswurHRyTpv;q3n-YxN8I;i*AU2As@J{lI@zw?F{0am_Q
z9UgU>-}BStWrO;-U2dx}$g-)&`q~>#8NVN3)$88l(3^ix|GRm|P1`qZ-)*TiW%Kc-
z_gjTE3L7-3Y155b$sRA9uGQJN{91Ohan8*52{jy-n#b)vZh6Q;yQX=|eNAVNsx@kM
zxLKsx$UAKlCl$QPF|N3%=DbLsBNpLD{&)~Rd&Ju$qjSAa*EC)|M0Zw;)?+LqCd{6a
zach3e<d|cd^DUlQTMm0S)#Ks2b(V{7{r-E;ri+HR^9|W_HD=nO4<k?6)fn$PVOaXq
zEq6y*Eoh?aJ1*2Ebl;(mNBV@ncshLGxV!T*J)Gj>ANLQtmX>Okx+is7X!eM6hx<oP
z?SA*KWf@ur>%3k2yv{hM{*PUQ=1k38cjNetYd2Kek8htg>iWshgm*!|?#`MMuwYD#
zRsO*PVQ2qt7=Q2Fqgiv`YcJNX(dlverq^dqG@U)%A+q=U%xSmYEPCXvXIm%Y+zZb~
z;eBTfx)kU=_xHIKvU;bdPIYy5e0ccWxnmkmmcOp8XJ+E^+~3PN-al>ItP?IHn`oc!
z{`}8h68FxV`^@5>px6r!FWgA<TM(A1o@(aN^p?pvx6tOhopyE!icJ4!&F%pGvHE?_
zhJE%-Z~e^9?Mi#^;ek5?8g+S_le}o-v)~EAfdK=%b-CmB&?DPC&(C4Z;4zW*J#Pkf
z({+7g9yTuf>ifqj-eWS(xO_0mwoPad_S?ZOhr0Cjbjg2Wc6gL?>cs4rwBel(xqcXs
z+9@vm_JU7SqwdbU|M7l{F*`gW(=WfS6E>~kqq^Y@A~HX^XQk=R(tKn7aLgR<*@yGa
z#^=AP@Tu~v1;-1HPK<I&`e+knbMwN8%IVq~%L5BGeZIZ?$*sQE``$I~W4zWoz`&r6
zmR{t$39%cW1Ro2ocJrF2)n|{?nFmr5^PlGacGEiVK}N-#)i=)_@(6i9BmF?gVUsJy
zR}9X?dUScaH}7C<!u<5`^oYbOkp_N^@=OaX-p75iyAu4@pzN+G^9u4>W-oc4+u+uY
zwwP`5?aV9(FwC3=4CA$!VRAm>{E}hZS~1Kk8-_92$}qal8^&Gg!!Q9&`t|BQbT*GU
zsxmO2_xUrj3c`yQFPKlCJ~8?E`HZTnDpOEUz@E#OFVEDjU7O3slvoHk*;<W^jCfqB
zk_r`yAyXk9k5^crT)A>QeSLkdA@Sk?OJM;O6%`)glUnHG$B%^tkeL-<YN5xE9~TyY
zcs#VikandOB9#lbM4}Op5(^PeLYQJvu&qpmh+HA<O@Q_Sq$)zBN3a-CNCSmFaypkv
zE-3*ATTmu)2?yl|CN1>6O!U11t|ex^%A&8mHYq8Ifh<gJZZ6wv0gP20K!)OasG*@D
zTd+_*aRt!KDyY&81*W0EMk*n#Kug^Ji!xQLSdpizt4o(s3$VzESq%*hMrr|$QD}gb
zKx%=U95Qp5+UL(h)YQ}tk;)_%;A%$xC}ix80<4ZD7Jv#rlR5=0u-%#B6)IFHbOyz=
z#EC?OkePz?0z{mUXhb<rY72q_tW@-e0x<A6|5QvQp#qeb)fioHJyB`_>WQQX^g>?U
zx^<}>)>>*ka|=s-N&51aIv4p$B7&NwK;}k)Y64K<>*L7x8vqC4Y=e%+-V^>)mPUr7
zqJ6@Z(KUxzIQ?51DGww$!j;f9xnV-jb#USPrD_D7rjRAB66zOpO=>JtBf_1Hs~nZm
z=#fmkQTXOYggrT16aE0rS~TiP21lVxji4gxPAY6oLVw86aF3Oo8bFl2OGv0;&N_sO
zeDzquiNal&&~OzA<#`V-wB^<aXD8x#LF3zTU~lXTC*O>OYlMtZfJj^qYXf!Nlv^WE
z6KC<o8WSElgj8EHC!$EWMhF#Mle6L~R99E$>FMcl(XZ!68b(<XEs};)(i3$jVdq7~
zDUAYkD+-#Lnrt5Q6o${|vuVPA%G?MC2MzJQOCylBP+ufDbjXu8k|GUIBOq%G{QVxf
z77pL4u3`;<pAA6bEIhB{8Y*=o5-c+sjdY}LSLQ}gNihVFHVZzcBK5{HHzJ_{h72S-
zJDZ(BmZ=e_=rtt9R)5iebROAAnHz!GUx0+2i&oDLCM=(2ZUhZ%g|zmf4Is`oK>of=
zji5VD$;->zEZP7W92#ba#WFRLn3!mS3h)@CXn@)%u)d2LC{rUeJVM%H-4zW~#_^7j
z01*SEMbt%(6c%4pGQ=brBh7Kd%_cZ?$)yp_)kE51h)6iOHUibu#DPtTqJa>VSzR0w
z(m!-<3NFqSZH67ZiWp<5IT2}u>UTs#?0QkSF=4kNk4DG=2A~03;YR2hU75!TRjS^_
z6%we6t(V4h#L0e4*aV?Jm=p2jf`pqmprK+8lMItOgIti1@PrPPikrjU!AhvP5J2`)
zqA^NR7uN`(f_e&Vh>##nz7q*fbzDQV=*4oI5jR_5f~t*uEf$U_W{Q(jqrfd)>6+Lk
z{c(Zf!hw^9(uDI-T;$#rsG|eA@M+jZADr3Ikj{KDGe#;e8va!v0Jj4GY(#|u$d$M^
z`)2^+4B>r50f@!{WCTpF*q(uCK8pWnMtY*nGvWjhO@pJF1t6=$%}GV`Qv62&(M4DJ
zN1Om+(hdWJCGCOH#;ZaAp(QcR5vZ@16ksb!$YaPk6NLc+;R_wKG!W#?Xt~L4dn*hO
z01&(PBMuB$V4rZ1@CpM2W5|7gXe3TxF=^^>u{pHgLETRwfWQV0Lr@Db!ir1k2msME
zwIu)w0R+N$f`x_Rq!mrWRBSr(`jFAnh^`PoAjnW?@_?wY;^GiI80jMk08L*M1&A?(
zxddUpJU0?2dC@d|<V~g|VIZ_LqX0u^!AY_an!3`)8Af(Ce@TD7X+XsGhD>7vH4YGJ
zIG}?sj3^Wk(k5xSG=Rv}QW=E<LfR%RV?Zm1;}gYY2u}gTfbuCs*CHV(2!OEH_|pV{
z?sAb5&L_Z*IhFrcZA1bP78n2wgOK}60K(ozJznsF3&jnHKg8He0K#Ed3_$a^h_o|+
z^vBo|Mhp=ss$XG%aE6WUb`&56N&~{(0|0#hVV@={91u=O0D6dPV=gZ347*{snZElt
zB1_le7~up45biP$7hj%BaVZkc@Ni=HX2fOxrU9`mKsbP~hmzJSp8-UL|8MW2Z~}AM
z;}{W57X?I0qUWGAv83at0U}^mA3&dKX=zo5@M#2|JXmRfFg<>Wd{C<XMJlCHi~?QL
z{vVyWKoW2PU8Bf7VOl5;-RA-jHO88kUgt`rIw&tKSSawnNB{axKy)B{Itg6~0oR#7
zBM?;xPOgj%oRJVKKNTYoxS0DQFtlw=I}#KWx@%DvMfWKNf|XqG2R6hSpF#tH)}?|F
zV95uVngH@f7@(x<AMUjvh%6vjc>$z4fUrJU5&$m!M+3=3!}PO3seuTC17qJ!P{gkF
z4AR$?iU2nWgpQ65YwQxAQ;DhMhcE)~bQ1=Sx8q9=0Kx+hb{|!tfWSMQf%x=rq{M&)
zNfpfBGpbanqF6wnUD~CyE)fAT0B}P*L`<NCh(ZB@Y~JWjF0z1tcj}B;;w1oKcjgoc
zh&w>6lm!IVwN_x`08L304Tudu?2rWn@=XU2A8u}?NI-sraK~i<0sC2lF6Bl$4T=V&
zExO2cSwH|RyH!tl6%7a<AQEK(fjm(F(w)nzNI<j!;w>jw3Fmw0PEBd_=7K^1p)~_Q
ze3gomPW<^5K(G&36b?u!o-NP<ygY!g5ETXp`go}xkU)BNk)%*Ss85%I3EC~8b$J1S
zR~R592u9%2JbTjsfR8jzC=?I~^cDhXi?`*XsmMp~S-&9wiUy=LJXCB^aV5rX;7&UN
zAqs@zw2jDhGjZ;>a^=eG=3i;H8%wpYf^fY7CPJe4MQ?;b=>7@`goJ`7$HGp6ipnfL
zhWvgwCJT2hs^ed0goL2IUkK(3VOEP5zi2AT%ma%{sVsFTg#tpN0>~-=aw{sf_!tI2
z8vqDWNFbzHj3;|=9wlD<VyV3VBvRoRA%SR@1KK9z?_Er6F$n<D1m*54jE#_t91uFA
zi`~GvjTqUBCBeq3!&#(JH>2>cxL*=l(t{otv`iat0%R(vi=8zq91wwvm1#?qzyJt4
zkyJ<^0s&=RpRiyQ7D#Ep(7FUK`Le$c5#A2^?o$+LHbPxXIB+%~oF?uXU<zP&stOB)
zoC4geOjCY<d5NPIx38s8jL<8k6u^{BV374THnCgK-mgLefq*javY<Pj0&p`$1wuP5
z4FD(}M~MM>cL0bj%^GM1z~}QzEJGPewH_&rv2$IE8i8<h>VV@4U6d41b}<f5MFm3g
z55RG(Bp`GjO0&nYO%WMk<;NUrG8oz-3mD{CgkS9~kR|Vr>{_fm)aBr6JppE+Gy%be
z9gaYSWrToG02p6@nJNwp#-Ii8UW)*PQFtH(06;<j$VwOtx}GlvMn^2#*rmcx0fYcR
z^MB&hm9D|SVSunCCVn~~V1$^t3*j^HwnHa!x!(eWu^f2tsLU2mYLg{!KZ>QiBo)oo
zNn+tZ=_EBMVe<&z<F4tRq(DndszY3WW{M?KUXp>%-14+oCWfhvHY1R)8S-3)X6dcv
zG?J47l_i<zd5Un`d>Kb=wh|fsC<(!L$v`4~<g16MzMy!r+o4EjpC~8^5!H|&E-woa
zHv)(@NtT7-&lhhfI+C?0Eksm9h?j*Bnp=PfiSr6E%@roWVmxsyE=<6M(q%yj-%1FI
z&cU%1M_B@`-6!A(q)L>8KndSK$V9lFZDnCWv@8g@gS5kjhK8P^_sSCguMg_9vZh~n
ze^~>SMN@*ZG^SwJYBD;7AB`yn1_pAd^=lRXRYGXLhF*Uw_C>X?&`WnEAYut-UGs?u
zI%w9VbXm}&6qjX)0h^u!)-Rp9rRPSSJ75*I`1Kb{1ma3UgjFVn5ZYS~Lmm_1d}Y1H
zIB^QQITqNu{Rl$n=Xgp@yn5D;+`?qnd8Cob!^rrk!J{qZ1;{oOF_r7H<3Ve146
z3&3G3Pa;s?ORQ7+VSJz;h_D|oM;iM|gpv@+gwSU2{BQ00;>tnk1+WJCa6=doKm)dt
z5D`t$3`Qh~{UW7Eo>E0g`B3}>^!@;HgY;-zNr(jBFGPsUU-T#q8&JF#NLWagK(7KQ
z2@%ZWNg?6_2r<RI6S!C6&o0H47ner8ABv|HyFC$3`&vpupbb(2x3CgJNMk7LB+~iF
zD$no->a+kMn3#R}WWACQfqEqnQWHeb8{0Cy4=F2CsP8%sGt|w#J4vodNeEnpa1bGc
zzRN|fNv5}Kh3hHd`YDuehPLjLt0EUgWGD%d@(35R8v1t(qlh3mhWDszFpfx4KGm%x
zM4(+#hUhbON&^wAFow9vnFvz64Vn((>Qxc~ZAf~_fs_OiTtUWaPGJJx%6vk7^KdLB
zw?u)fUr7j*A&w9zYAl{b2XTsGwI+u@sLv18IN;1Op(I3%QiTb@ZTd}IIL==`oh7DB
zX_G(zz0NrTM;4Xkh*lCp+7JmK#2881P!3IDW&Mb*NG%ehS8>Mz^%nV9yOI!z`ugg!
zFu<C?I*1gRe#a}NO3_<UNEm{8-*7ji5kh(BzVJ+o(#V=hyD-G7K!poh+V`S*`FuWA
zC%5ojAK?lH)u9+a4sc47m*l9AKH6c6<0DtMIG083(S0Q$0!7fYmjY&3Q_!n6bIM~A
z<?sjft;OMvstS~Zh*7BUpiascUWZT|q|gsQ7Sgpm1FUg6T%-?K0#`R#C<TfuEkvLQ
zVM18#2-4xkwxUPVk6O57d7N{hcx%*oh$>SO0wqYZ5KiMn0<47H<U_A6&40$=swnCF
z3K<50kZ8)Nv=D*1ND-1Oga{#@Pk9h%ntTG+odreZa)Pzo$4rX8_mQM@Sx{*y2;m6e
zgBY4B%lgl7xN=g@sP8<E{-`^Xb7RyQ{@+b|zkv`|u~62pD0>nSxxINPU~E6?9ZuIu
zLIfJ26A>livV`t_QI;TqzKBTMBy!z)f%{s6I^D=xNETV2ssHo~Ljo(~7$S)fF5L!o
z?cgHvI-}0%IDC|Z$ZjE`x|jKDuA&7c#WBmH7viiip0HnjrNN)9mpT*D+4T$e=AzO<
z#As14C~trwok(eN3|XkV59+(5Bt%53G~h}KL;^Qc0x7}h(X<ehl)cpHsE?+|^lxty
zloldTpR9xkvX=)jG$ZR-YVAuY079ZM{`CVn8A_KWqlJj*lm4CiX{5CfNiS>kFi5ea
z$%%3d5u-|BmnC`|giumT9Q5m{x)hN|03kFr-hlrR<jhUif6C_}q&zuIdkgg{10h^q
za$&TFk?X6dcrn`*W7t~m_v(B;pKDJp=kNM}>R%>=QxL7p_i+(9o%4ZhG>!-mQuyRj
z9(Dic3879wdsc8~t~g}+)U6DPRT9D}i4@FDd$~03EEq$$D0>#okMUp?^2zks-XawV
zBB*Z$4sY(B(q)yA5KfUGWe3Qy;o{QHf<b*HeiA*K26Jver!q=H<U|N56FprOv!*|w
z@P1@TqJfBjy9)vlHgrvSXqKfUL`YMll(M)ip{m$RQZzy}SPZ?;*N#oZAGC8CKZ72O
zMJj!mm<>uoI86whzY`%`3ynd{Vtl-eUIb4hvV?aHeh4A-5yTBEE?vwTe111c)vx!!
KUWa<vEc!qFnIT*N

literal 0
HcmV?d00001

diff --git a/common/addSafeDomainName.php b/common/addSafeDomainName.php
new file mode 100644
index 0000000..7903a05
--- /dev/null
+++ b/common/addSafeDomainName.php
@@ -0,0 +1,47 @@
+<?php
+
+if (strtolower($_SERVER['REQUEST_METHOD']) == 'post') {
+    $res['code'] = 0;
+    $res['message'] = '提交失败！';
+
+    session_start();
+    $user = isset($_SESSION['wop_admin_user']) ? $_SESSION['wop_admin_user'] : '';
+    if (empty($user)) {
+        $res['code'] = -1;
+        $res['message'] = '登陆过期！';
+        echo json_encode($res);
+        exit();
+    }
+
+    $domainName = strip_tags(trim($_POST['domain_name']));
+
+    if (empty($domainName)) {
+        echo json_encode($res);
+        exit();
+    }
+
+    $domainNameArr = array();
+    $file = './domainName.json';
+    if (file_exists($file)) {
+        $domainNameArr = json_decode(file_get_contents($file), true);
+    }
+
+    $hasDomainName = false;
+    if (count($domainNameArr)) {
+        foreach ($domainNameArr as $key=>$value) {
+            if ($value == $domainName) {
+                $hasDomainName = true;
+                break;
+            }
+        }
+    }
+
+    if (!$hasDomainName) {
+        array_unshift($domainNameArr, $domainName);
+        file_put_contents('./domainName.json', json_encode($domainNameArr));
+    }
+
+    $res['code'] = 1;
+    $res['message'] = '提交成功！';
+    echo json_encode($res);
+}
\ No newline at end of file
diff --git a/common/clearDomainName.php b/common/clearDomainName.php
new file mode 100644
index 0000000..42a3096
--- /dev/null
+++ b/common/clearDomainName.php
@@ -0,0 +1,51 @@
+<?php
+
+if (strtolower($_SERVER['REQUEST_METHOD']) == 'post') {
+    $res['code'] = 0;
+    $res['message'] = '移除失败！';
+
+    session_start();
+    $user = isset($_SESSION['wop_admin_user']) ? $_SESSION['wop_admin_user'] : '';
+    if (empty($user)) {
+        $res['code'] = -1;
+        $res['message'] = '登陆过期！';
+        echo json_encode($res);
+        exit();
+    }
+
+    $domainName = strip_tags(trim($_POST['domain_name']));
+
+    if (empty($domainName)) {
+        echo json_encode($res);
+        exit();
+    }
+
+    $domainNameArr = array();
+    $file = './domainName.json';
+    if (file_exists($file)) {
+        $domainNameArr = json_decode(file_get_contents($file), true);
+    }
+
+    $hasDomainName = false;
+    if (count($domainNameArr)) {
+        foreach ($domainNameArr as $key=>$value) {
+            if ($value == $domainName) {
+                $hasDomainName = true;
+                unset($domainNameArr[$key]);
+                break;
+            }
+        }
+    }
+
+    if (!$hasDomainName) {
+        $res['message'] = '域名不存在!';
+        echo json_encode($res);
+        exit();
+    }
+
+    file_put_contents('./domainName.json', json_encode($domainNameArr));
+
+    $res['code'] = 1;
+    $res['message'] = '移除成功！';
+    echo json_encode($res);
+}
\ No newline at end of file
diff --git a/common/clearVerify.php b/common/clearVerify.php
new file mode 100644
index 0000000..253321f
--- /dev/null
+++ b/common/clearVerify.php
@@ -0,0 +1,35 @@
+<?php
+
+if (strtolower($_SERVER['REQUEST_METHOD']) == 'post') {
+    $res['code'] = 0;
+    $res['message'] = '移除失败！';
+
+    session_start();
+    $user = isset($_SESSION['wop_admin_user']) ? $_SESSION['wop_admin_user'] : '';
+    if (empty($user)) {
+        $res['code'] = -1;
+        $res['message'] = '登陆过期！';
+        echo json_encode($res);
+        exit();
+    }
+
+    $verify = strip_tags(trim($_POST['verify']));
+
+    if (empty($verify)) {
+        echo json_encode($res);
+        exit();
+    }
+
+    $file = $_SERVER['DOCUMENT_ROOT'] . '/' . $verify;
+    if (!file_exists($file)) {
+        $res['message'] = '验证文件不存在!';
+        echo json_encode($res);
+        exit();
+    }
+
+    unlink($file);
+
+    $res['code'] = 1;
+    $res['message'] = '移除成功！';
+    echo json_encode($res);
+}
\ No newline at end of file
diff --git a/common/loginHandle.php b/common/loginHandle.php
index 1007f43..98c6857 100644
--- a/common/loginHandle.php
+++ b/common/loginHandle.php
@@ -19,21 +19,29 @@
 
     // 密码盐
     $salt = md5('shinn_lancelot');
-    $res = json_decode(file_get_contents('./user.json'), true);
+
+    $userArr = array();
+    $file = './user.json';
+    if (file_exists($file)) {
+        $userArr = json_decode(file_get_contents('./user.json'), true);
+    }
+
     $hasUser = false;
-    foreach ($res as $key=>$value) {
-        if ($value['user'] == $user) {
-            $hasUser = true;
-            if ($value['password'] == md5($password . $salt)) {
-                session_start();
-                $_SESSION['wop_admin_user'] = $user;
+    if (count($userArr) > 0) {
+        foreach ($userArr as $key=>$value) {
+            if ($value['user'] == $user) {
+                $hasUser = true;
+                if ($value['password'] == md5($password . $salt)) {
+                    session_start();
+                    $_SESSION['wop_admin_user'] = $user;
 
-                $res['code'] = 1;
-                $res['message'] = '登录成功！';
-            } else {
-                $res['message'] = '密码错误！';
+                    $res['code'] = 1;
+                    $res['message'] = '登录成功！';
+                } else {
+                    $res['message'] = '密码错误！';
+                }
+                break;
             }
-            break;
         }
     }
     if (!$hasUser) {
diff --git a/common/verifyHandle.php b/common/verifyHandle.php
index d8dda76..41f4e48 100644
--- a/common/verifyHandle.php
+++ b/common/verifyHandle.php
@@ -4,6 +4,15 @@
     $res['code'] = 0;
     $res['message'] = '提交失败！';
 
+    session_start();
+    $user = isset($_SESSION['wop_admin_user']) ? $_SESSION['wop_admin_user'] : '';
+    if (empty($user)) {
+        $res['code'] = -1;
+        $res['message'] = '登陆过期！';
+        echo json_encode($res);
+        exit();
+    }
+
     $filePrefix = 'MP_verify_';
     $callBackUrl = $_SERVER['HTTP_HOST'];
 
diff --git a/login.php b/login.php
index de12615..fadf21f 100644
--- a/login.php
+++ b/login.php
@@ -206,12 +206,12 @@
                 <div class="input-box">
                     <i class="icon icon-user"></i>
                     <input type="text" class="field" name="user" id="user" value="" placeholder="用户名">
-                    <i class="icon icon-clear"></i>
+                    <i class="icon icon-clear" title="移除"></i>
                 </div>
                 <div class="input-box">
                     <i class="icon icon-password"></i>
                     <input type="password" class="field" name="password" id="password" value="" placeholder="密码">
-                    <i class="icon icon-clear"></i>
+                    <i class="icon icon-clear" title="移除"></i>
                 </div>
                 <div class="field disable" id="login_btn">
                     <p>登录</p>
@@ -275,7 +275,6 @@
                 } else {
                     loginState = 1;
                 }
-
             } else {
                 console.log(xhr.readyState);
             }
diff --git a/manageDomainName.php b/manageDomainName.php
new file mode 100644
index 0000000..5848dc9
--- /dev/null
+++ b/manageDomainName.php
@@ -0,0 +1,296 @@
+<?php
+
+    session_start();
+    $user = isset($_SESSION['wop_admin_user']) ? $_SESSION['wop_admin_user'] : '';
+    empty($user) && header('Location: ./login.php');
+
+    $domainNameArr = array();
+    $file = './common/domainName.json';
+    if (file_exists($file)) {
+        $domainNameArr = json_decode(file_get_contents($file), true);
+    }
+
+?>
+
+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <meta charset="UTF-8">
+    <meta name="viewport"
+          content="width=device-width, initial-scale=1.0, maximum-scale=1.0, minimum-scale=1.0, user-scalable=no">
+    <meta http-equiv="X-UA-Compatible" content="ie=edge">
+    <title>添加接口调用安全域名</title>
+    <link rel="shortcut icon" href="./asset/image/favicon.ico">
+    <link rel="stylesheet" href="./asset/css/reset.css">
+    <style>
+        @media screen and (max-width: 640px) {
+            .icon-clear {
+                background: url("./asset/image/clear.png") no-repeat center / contain;
+                top: 2.5vw;
+                right: 2.5vw;
+                cursor: pointer;
+            }
+            .user-size, .logout-size {
+                height: 4vw;
+                line-height: 4vw;
+                font-size: 3vw;
+                margin-left: 2vw;
+                display: inline-block;
+                vertical-align: top;
+                overflow: hidden;
+            }
+            .back {
+                width: 4vw;
+                height: 4vw;
+                background: url("./asset/image/back.png") no-repeat center / contain;
+                float: left;
+                display: inline-block;
+                vertical-align: top;
+                cursor: pointer;
+            }
+            .list {
+                margin: 8vw 2vw 0;
+                max-height: calc(100vh - 6vw);
+                overflow: auto;
+            }
+            .list > li:first-child {
+                border-top: 1px solid #dddddd;
+            }
+            .list > li {
+                width: 100%;
+                height: 10vw;
+                line-height: 10vw;
+                font-size: 5vw;
+                box-sizing: border-box;
+                padding-right: 10vw;
+                position: relative;
+                overflow: hidden;
+                text-overflow: ellipsis;
+                white-space: nowrap;
+                color: #6b6b6b;
+                border-bottom: 1px solid #dddddd;
+            }
+            .list .no-domain-name {
+                text-align: center;
+                padding: 0;
+                font-size: 5vw;
+            }
+        }
+
+        @media screen and (min-width: 640px) {
+            .icon-clear {
+                background: url("./asset/image/clear.png") no-repeat center / contain;
+                top: calc(640px * 0.025);
+                right: calc(640px * 0.025);
+                cursor: pointer;
+            }
+            .user-size, .logout-size {
+                height: calc(640px * 0.04);
+                line-height: calc(640px * 0.04);
+                font-size: calc(640px * 0.03);
+                margin-left: 2vw;
+                display: inline-block;
+                vertical-align: top;
+                overflow: hidden;
+            }
+            .back {
+                width: calc(640px * 0.04);
+                height: calc(640px * 0.04);
+                background: url("./asset/image/back.png") no-repeat center / contain;
+                float: left;
+                display: inline-block;
+                vertical-align: top;
+                cursor: pointer;
+            }
+            .list {
+                margin: calc(640px * 0.08) 2vw 0;
+                max-height: calc(100vh - 640px * 0.06);
+                overflow: auto;
+            }
+            .list > li:first-child {
+                border-top: 1px solid #dddddd;
+            }
+            .list > li {
+                width: 100%;
+                height: calc(640px * 0.1);
+                line-height: calc(640px * 0.1);
+                font-size: calc(640px * 0.05);
+                box-sizing: border-box;
+                padding-right: calc(640px * 0.1);
+                position: relative;
+                overflow: hidden;
+                text-overflow: ellipsis;
+                white-space: nowrap;
+                color: #6b6b6b;
+                border-bottom: 1px solid #dddddd;
+            }
+            .list .no-domain-name {
+                text-align: center;
+                padding: 0;
+                font-size: calc(640px * 0.05);
+            }
+        }
+
+        .wrapper {
+            width: 100vw;
+            height: 100vh;
+        }
+
+        .container {
+            margin: 0 auto;
+            width: 100%;
+            max-width: 640px;
+            height: 100vh;
+            overflow: hidden;
+            position: relative;
+        }
+
+        .user-box {
+            width: 100%;
+            padding: 0 2vw;
+            box-sizing: border-box;
+            text-align: right;
+            position: absolute;
+            top: 2vw;
+            left: 0;
+            z-index: 100;
+            font-size: 0;
+        }
+
+        .user {
+            color: #36a82e;
+        }
+
+        .logout-btn {
+            color: #ddd;
+            text-decoration: underline;
+            cursor: pointer;
+        }
+
+        .box {
+            width: 100%;
+            height: auto;
+            position: absolute;
+            top: 50%;
+            left: 50%;
+            z-index: 10;
+            transform: translate(-50%, -50%);
+            -webkit-transform: translate(-50%, -50%);
+        }
+
+        .icon {
+            position: absolute;
+            width: 5vw;
+            height: 5vw;
+            max-width: calc(640px * 0.05);
+            max-height: calc(640px * 0.05);
+        }
+    </style>
+</head>
+<body>
+<div class="wrapper">
+    <div class="container">
+        <div class="user-box">
+            <a href="./safeDomainName.php"><div class="back" title="返回"></div></a>
+            <p class="user user-size"><?php echo $user; ?></p>
+            <p class="logout-btn logout-size">退出登录</p>
+        </div>
+        <div class="box">
+            <ul class="list">
+                <?php
+                    if (count($domainNameArr) > 0) {
+                        foreach ($domainNameArr as $key=>$value) {
+                            echo '<li>
+                                 ' . $value .'
+                                    <i class="icon icon-clear" data-value="' . $value . '" title="移除安全域名"></i>
+                            </li>';
+                        }
+                    } else {
+                        echo '<li class="no-domain-name">暂无安全域名</li>';
+                    }
+                ?>
+            </ul>
+        </div>
+    </div>
+</div>
+
+<script>
+    var xhr = '',
+        responseObj = '',
+        clearIconObjs = document.getElementsByClassName('icon-clear'),
+        loginoutBtnObj = document.getElementsByClassName('logout-btn')[0],
+        logoutState = 1,
+        clearState = 1;
+
+    if (window.ActiveXObject) {
+        xhr = new ActiveXObject("Microsoft.XMLHTTP");
+    } else if (window.XMLHttpRequest) {
+        xhr = new XMLHttpRequest();
+    }
+
+    var logout = function(e) {
+        e.preventDefault();
+        if (logoutState != 1) {
+            return;
+        }
+        logoutState = 0;
+
+        xhr.open('post', './common/logoutHandle.php', true);
+        xhr.setRequestHeader('Content-type','application/x-www-form-urlencoded');
+        xhr.send('');
+        xhr.onreadystatechange = function() {
+            if (xhr.readyState == 4) {
+                responseObj = JSON.parse(xhr.response);
+                alert(responseObj.message);
+                if (responseObj.code == 1) {
+                    setTimeout(function() {
+                        window.location.href = './login.php';
+                    }, 500);
+                } else {
+                    logoutState = 1;
+                }
+            } else {
+                console.log(xhr.readyState);
+            }
+        }
+    }
+
+    loginoutBtnObj.addEventListener('click', function(e) {
+        confirm('你确定要退出吗？') && logout(e);
+    });
+
+    var clearFunc = function (e, obj) {
+        e.preventDefault();
+        if (clearState != 1) {
+            return;
+        }
+        clearState = 0;
+        var value = obj.getAttribute('data-value');
+        xhr.open('post', './common/clearDomainName.php', true);
+        xhr.setRequestHeader('Content-type','application/x-www-form-urlencoded');
+        xhr.send('domain_name=' + value);
+        xhr.onreadystatechange = function() {
+            if (xhr.readyState == 4) {
+                responseObj = JSON.parse(xhr.response);
+                alert(responseObj.message);
+                responseObj.code == 1 && obj.parentElement.parentElement.removeChild(obj.parentElement);
+                responseObj.code == -1 && setTimeout(function() {
+                    window.location.href = './login.php';
+                }, 500);
+                if (responseObj.code != -1) {
+                    clearState = 1;
+                }
+            } else {
+                console.log(xhr.readyState);
+            }
+        }
+    }
+
+    for (var i = 0; i < clearIconObjs.length; i++) {
+        clearIconObjs[i].addEventListener('click', function(e) {
+            confirm('你确定要移除吗？') && clearFunc(e, this);
+        });
+    }
+</script>
+</body>
+</html>
\ No newline at end of file
diff --git a/manageVerify.php b/manageVerify.php
new file mode 100644
index 0000000..7460877
--- /dev/null
+++ b/manageVerify.php
@@ -0,0 +1,293 @@
+<?php
+
+    session_start();
+    $user = isset($_SESSION['wop_admin_user']) ? $_SESSION['wop_admin_user'] : '';
+    empty($user) && header('Location: ./login.php');
+
+    $verifyArr = array();
+    $verifyArr = glob('MP_verify_*.txt');
+
+?>
+
+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <meta charset="UTF-8">
+    <meta name="viewport"
+          content="width=device-width, initial-scale=1.0, maximum-scale=1.0, minimum-scale=1.0, user-scalable=no">
+    <meta http-equiv="X-UA-Compatible" content="ie=edge">
+    <title>添加接口调用安全域名</title>
+    <link rel="shortcut icon" href="./asset/image/favicon.ico">
+    <link rel="stylesheet" href="./asset/css/reset.css">
+    <style>
+        @media screen and (max-width: 640px) {
+            .icon-clear {
+                background: url("./asset/image/clear.png") no-repeat center / contain;
+                top: 2.5vw;
+                right: 2.5vw;
+                cursor: pointer;
+            }
+            .user-size, .logout-size {
+                height: 4vw;
+                line-height: 4vw;
+                font-size: 3vw;
+                margin-left: 2vw;
+                display: inline-block;
+                vertical-align: top;
+                overflow: hidden;
+            }
+            .back {
+                width: 4vw;
+                height: 4vw;
+                background: url("./asset/image/back.png") no-repeat center / contain;
+                float: left;
+                display: inline-block;
+                vertical-align: top;
+                cursor: pointer;
+            }
+            .list {
+                margin: 8vw 2vw 0;
+                max-height: calc(100vh - 6vw);
+                overflow: auto;
+            }
+            .list > li:first-child {
+                border-top: 1px solid #dddddd;
+            }
+            .list > li {
+                width: 100%;
+                height: 10vw;
+                line-height: 10vw;
+                font-size: 5vw;
+                box-sizing: border-box;
+                padding-right: 10vw;
+                position: relative;
+                overflow: hidden;
+                text-overflow: ellipsis;
+                white-space: nowrap;
+                color: #6b6b6b;
+                border-bottom: 1px solid #dddddd;
+            }
+            .list .no-verify {
+                text-align: center;
+                padding: 0;
+                font-size: 5vw;
+            }
+        }
+
+        @media screen and (min-width: 640px) {
+            .icon-clear {
+                background: url("./asset/image/clear.png") no-repeat center / contain;
+                top: calc(640px * 0.025);
+                right: calc(640px * 0.025);
+                cursor: pointer;
+            }
+            .user-size, .logout-size {
+                height: calc(640px * 0.04);
+                line-height: calc(640px * 0.04);
+                font-size: calc(640px * 0.03);
+                margin-left: 2vw;
+                display: inline-block;
+                vertical-align: top;
+                overflow: hidden;
+            }
+            .back {
+                width: calc(640px * 0.04);
+                height: calc(640px * 0.04);
+                background: url("./asset/image/back.png") no-repeat center / contain;
+                float: left;
+                display: inline-block;
+                vertical-align: top;
+                cursor: pointer;
+            }
+            .list {
+                margin: calc(640px * 0.08) 2vw 0;
+                max-height: calc(100vh - 640px * 0.06);
+                overflow: auto;
+            }
+            .list > li:first-child {
+                border-top: 1px solid #dddddd;
+            }
+            .list > li {
+                width: 100%;
+                height: calc(640px * 0.1);
+                line-height: calc(640px * 0.1);
+                font-size: calc(640px * 0.05);
+                box-sizing: border-box;
+                padding-right: calc(640px * 0.1);
+                position: relative;
+                overflow: hidden;
+                text-overflow: ellipsis;
+                white-space: nowrap;
+                color: #6b6b6b;
+                border-bottom: 1px solid #dddddd;
+            }
+            .list .no-verify {
+                text-align: center;
+                padding: 0;
+                font-size: calc(640px * 0.05);
+            }
+        }
+
+        .wrapper {
+            width: 100vw;
+            height: 100vh;
+        }
+
+        .container {
+            margin: 0 auto;
+            width: 100%;
+            max-width: 640px;
+            height: 100vh;
+            overflow: hidden;
+            position: relative;
+        }
+
+        .user-box {
+            width: 100%;
+            padding: 0 2vw;
+            box-sizing: border-box;
+            text-align: right;
+            position: absolute;
+            top: 2vw;
+            left: 0;
+            z-index: 100;
+            font-size: 0;
+        }
+
+        .user {
+            color: #36a82e;
+        }
+
+        .logout-btn {
+            color: #ddd;
+            text-decoration: underline;
+            cursor: pointer;
+        }
+
+        .box {
+            width: 100%;
+            height: auto;
+            position: absolute;
+            top: 50%;
+            left: 50%;
+            z-index: 10;
+            transform: translate(-50%, -50%);
+            -webkit-transform: translate(-50%, -50%);
+        }
+
+        .icon {
+            position: absolute;
+            width: 5vw;
+            height: 5vw;
+            max-width: calc(640px * 0.05);
+            max-height: calc(640px * 0.05);
+        }
+    </style>
+</head>
+<body>
+<div class="wrapper">
+    <div class="container">
+        <div class="user-box">
+            <a href="./verify.php"><div class="back" title="返回"></div></a>
+            <p class="user user-size"><?php echo $user; ?></p>
+            <p class="logout-btn logout-size">退出登录</p>
+        </div>
+        <div class="box">
+            <ul class="list">
+                <?php
+                    if (count($verifyArr) > 0) {
+                        foreach ($verifyArr as $key=>$value) {
+                            echo '<li>
+                                 ' . $value .'
+                                    <i class="icon icon-clear" data-value="' . $value . '" title="移除验证文件"></i>
+                            </li>';
+                        }
+                    } else {
+                        echo '<li class="no-verify">暂无验证文件</li>';
+                    }
+                ?>
+            </ul>
+        </div>
+    </div>
+</div>
+
+<script>
+    var xhr = '',
+        responseObj = '',
+        clearIconObjs = document.getElementsByClassName('icon-clear'),
+        loginoutBtnObj = document.getElementsByClassName('logout-btn')[0],
+        logoutState = 1,
+        clearState = 1;
+
+    if (window.ActiveXObject) {
+        xhr = new ActiveXObject("Microsoft.XMLHTTP");
+    } else if (window.XMLHttpRequest) {
+        xhr = new XMLHttpRequest();
+    }
+
+    var logout = function(e) {
+        e.preventDefault();
+        if (logoutState != 1) {
+            return;
+        }
+        logoutState = 0;
+
+        xhr.open('post', './common/logoutHandle.php', true);
+        xhr.setRequestHeader('Content-type','application/x-www-form-urlencoded');
+        xhr.send('');
+        xhr.onreadystatechange = function() {
+            if (xhr.readyState == 4) {
+                responseObj = JSON.parse(xhr.response);
+                alert(responseObj.message);
+                if (responseObj.code == 1) {
+                    setTimeout(function() {
+                        window.location.href = './login.php';
+                    }, 500);
+                } else {
+                    logoutState = 1;
+                }
+            } else {
+                console.log(xhr.readyState);
+            }
+        }
+    }
+
+    loginoutBtnObj.addEventListener('click', function(e) {
+        confirm('你确定要退出吗？') && logout(e);
+    });
+
+    var clearFunc = function (e, obj) {
+        e.preventDefault();
+        if (clearState != 1) {
+            return;
+        }
+        clearState = 0;
+        var value = obj.getAttribute('data-value');
+        xhr.open('post', './common/clearVerify.php', true);
+        xhr.setRequestHeader('Content-type','application/x-www-form-urlencoded');
+        xhr.send('verify=' + value);
+        xhr.onreadystatechange = function() {
+            if (xhr.readyState == 4) {
+                responseObj = JSON.parse(xhr.response);
+                alert(responseObj.message);
+                responseObj.code == 1 && obj.parentElement.parentElement.removeChild(obj.parentElement);
+                responseObj.code == -1 && setTimeout(function() {
+                    window.location.href = './login.php';
+                }, 500);
+                if (responseObj.code != -1) {
+                    clearState = 1;
+                }
+            } else {
+                console.log(xhr.readyState);
+            }
+        }
+    }
+
+    for (var i = 0; i < clearIconObjs.length; i++) {
+        clearIconObjs[i].addEventListener('click', function(e) {
+            confirm('你确定要移除吗？') && clearFunc(e, this);
+        });
+    }
+</script>
+</body>
+</html>
\ No newline at end of file
diff --git a/safeDomainName.php b/safeDomainName.php
new file mode 100644
index 0000000..36b0176
--- /dev/null
+++ b/safeDomainName.php
@@ -0,0 +1,386 @@
+<?php
+
+    session_start();
+    $user = isset($_SESSION['wop_admin_user']) ? $_SESSION['wop_admin_user'] : '';
+    empty($user) && header('Location: ./login.php');
+
+?>
+
+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <meta charset="UTF-8">
+    <meta name="viewport"
+          content="width=device-width, initial-scale=1.0, maximum-scale=1.0, minimum-scale=1.0, user-scalable=no">
+    <meta http-equiv="X-UA-Compatible" content="ie=edge">
+    <title>添加接口调用安全域名</title>
+    <link rel="shortcut icon" href="./asset/image/favicon.ico">
+    <link rel="stylesheet" href="./asset/css/reset.css">
+    <style>
+        @media screen and (max-width: 640px) {
+            .field {
+                display: flex;
+                align-items: center;
+                justify-content: center;
+                width: 100%;
+                height: 10vw;
+                margin: 3vw auto 0;
+                padding: 0 10vw;
+                box-sizing: border-box;
+                text-align: center;
+                font-size: 4vw;
+                border: 0;
+                overflow: hidden;
+                white-space: nowrap;
+                text-overflow: ellipsis;
+            }
+            .icon-clear {
+                background: url("./asset/image/clear.png") no-repeat center / contain;
+                top: 2.5vw;
+                right: 2.5vw;
+                cursor: pointer;
+            }
+            .user-size, .logout-size {
+                height: 4vw;
+                line-height: 4vw;
+                font-size: 3vw;
+                margin-left: 2vw;
+                display: inline-block;
+                vertical-align: top;
+                overflow: hidden;
+            }
+            .logo {
+                margin: 0 auto 10vw;
+                width: 30vw;
+                height: 30vw;
+                background: url("./asset/image/oauth_proxy.png") no-repeat center / contain;
+            }
+            .home {
+                width: 4vw;
+                height: 4vw;
+                background: url("./asset/image/home.png") no-repeat center / contain;
+                float: left;
+                display: inline-block;
+                vertical-align: top;
+                cursor: pointer;
+            }
+        }
+
+        @media screen and (min-width: 640px) {
+            .field {
+                display: flex;
+                align-items: center;
+                justify-content: center;
+                width: 100%;
+                height: calc(640px * 0.1);
+                margin: calc(640px * 0.03) auto 0;
+                padding: 0 calc(640px * 0.1);
+                box-sizing: border-box;
+                text-align: center;
+                font-size: calc(640px * 0.04);
+                border: 0;
+                overflow: hidden;
+                white-space: nowrap;
+                text-overflow: ellipsis;
+            }
+            .icon-clear {
+                background: url("./asset/image/clear.png") no-repeat center / contain;
+                top: calc(640px * 0.025);
+                right: calc(640px * 0.025);
+                cursor: pointer;
+            }
+            .user-size, .logout-size {
+                height: calc(640px * 0.04);
+                line-height: calc(640px * 0.04);
+                font-size: calc(640px * 0.03);
+                margin-left: 2vw;
+                display: inline-block;
+                vertical-align: top;
+                overflow: hidden;
+            }
+            .logo {
+                margin: 0 auto calc(640px * 0.1);
+                width: calc(640px * 0.3);
+                height: calc(640px * 0.3);
+                background: url("./asset/image/oauth_proxy.png") no-repeat center / contain;
+            }
+            .home {
+                width: calc(640px * 0.04);
+                height: calc(640px * 0.04);
+                background: url("./asset/image/home.png") no-repeat center / contain;
+                float: left;
+                display: inline-block;
+                vertical-align: top;
+                cursor: pointer;
+            }
+        }
+
+        .wrapper {
+            width: 100vw;
+            height: 100vh;
+        }
+
+        .container {
+            margin: 0 auto;
+            width: 100%;
+            max-width: 640px;
+            height: 100vh;
+            overflow: hidden;
+            position: relative;
+        }
+
+        .user-box {
+            width: 100%;
+            padding: 0 2vw;
+            box-sizing: border-box;
+            text-align: right;
+            position: absolute;
+            top: 2vw;
+            left: 0;
+            z-index: 100;
+            font-size: 0;
+        }
+
+        .user {
+            color: #36a82e;
+        }
+
+        .logout-btn {
+            color: #ddd;
+            text-decoration: underline;
+            cursor: pointer;
+        }
+
+        .box {
+            width: 100%;
+            height: auto;
+            position: absolute;
+            top: 50%;
+            left: 50%;
+            z-index: 10;
+            transform: translate(-50%, -50%);
+            -webkit-transform: translate(-50%, -50%);
+        }
+
+        #form {
+            margin: 0 2vw;
+        }
+
+        #domain_name {
+            background: transparent;
+            border-bottom: 1px solid #eee;
+        }
+
+        #submit_btn, .manage-domain-name {
+            color: #fff;
+            background: #36a82e;
+            cursor: pointer;
+            border-radius: 3px;
+            -moz-user-select: none;
+            -o-user-select:none;
+            -webkit-user-select:none;
+            -ms-user-select:none;
+            user-select: none;
+        }
+
+        #submit_btn p, .manage-domain-name p {
+            width: 100%;
+            overflow: hidden;
+            white-space: nowrap;
+            text-overflow: ellipsis;
+        }
+
+        .input-box {
+            position: relative;
+        }
+
+        .disable {
+            background: #ddd !important;
+            cursor: not-allowed !important;
+        }
+
+        .line {
+            border-bottom: 1px solid #36a82e !important;
+        }
+
+        .icon {
+            position: absolute;
+            width: 5vw;
+            height: 5vw;
+            max-width: calc(640px * 0.05);
+            max-height: calc(640px * 0.05);
+            display: none;
+        }
+    </style>
+</head>
+<body>
+<div class="wrapper">
+    <div class="container">
+        <div class="user-box">
+            <a href="./admin.php"><div class="home" title="管理页"></div></a>
+            <p class="user user-size"><?php echo $user; ?></p>
+            <p class="logout-btn logout-size">退出登录</p>
+        </div>
+        <div class="box">
+            <div class="logo"></div>
+            <form id="form">
+                <div class="input-box">
+                    <input type="text" class="field" name="domain_name" id="domain_name" value="" placeholder="请填写接口调用安全域名">
+                    <i class="icon icon-clear" title="移除"></i>
+                </div>
+                <div class="field disable" id="submit_btn">
+                    <p>提交</p>
+                </div>
+                <a href="./manageDomainName.php">
+                    <div class="field manage-domain-name">
+                        <p>管理接口调用安全域名</p>
+                    </div>
+                </a>
+            </form>
+        </div>
+    </div>
+</div>
+
+<script>
+    var submitBtnObj = document.getElementById('submit_btn'),
+        domainNameObj = document.getElementById('domain_name'),
+        xhr = '',
+        domainName = '',
+        responseObj = '',
+        submitState = 1,
+        submitBtnClass = '',
+        domainNameClass = '',
+        clearIconObj = document.getElementsByClassName('icon-clear')[0],
+        formObj = document.getElementById('form'),
+        loginoutBtnObj = document.getElementsByClassName('logout-btn')[0],
+        logoutState = 1;
+
+    if (window.ActiveXObject) {
+        xhr = new ActiveXObject("Microsoft.XMLHTTP");
+    } else if (window.XMLHttpRequest) {
+        xhr = new XMLHttpRequest();
+    }
+
+    var submitFunc = function (e) {
+        e.preventDefault();
+        if (submitState != 1) {
+            return;
+        }
+        submitState = 0;
+
+        domainName = domainNameObj.value;
+        if (domainName == '') {
+            alert('请填写接口调用安全域名！');
+            return;
+        }
+
+        xhr.open('post', './common/addSafeDomainName.php', true);
+        xhr.setRequestHeader('Content-type','application/x-www-form-urlencoded');
+        xhr.send('domain_name=' + domainName);
+        xhr.onreadystatechange = function() {
+            if (xhr.readyState == 4) {
+                responseObj = JSON.parse(xhr.response);
+                alert(responseObj.message);
+                responseObj.code == 1 && clearFunc();
+                responseObj.code == -1 && setTimeout(function() {
+                    window.location.href = './login.php';
+                }, 500);
+                if (responseObj.code != -1) {
+                    submitState = 1;
+                }
+            } else {
+                console.log(xhr.readyState);
+            }
+        }
+    }
+
+    var logout = function(e) {
+        e.preventDefault();
+        if (logoutState != 1) {
+            return;
+        }
+        logoutState = 0;
+
+        xhr.open('post', './common/logoutHandle.php', true);
+        xhr.setRequestHeader('Content-type','application/x-www-form-urlencoded');
+        xhr.send('');
+        xhr.onreadystatechange = function() {
+            if (xhr.readyState == 4) {
+                responseObj = JSON.parse(xhr.response);
+                alert(responseObj.message);
+                if (responseObj.code == 1) {
+                    setTimeout(function() {
+                        window.location.href = './login.php';
+                    }, 500);
+                } else {
+                    logoutState = 1;
+                }
+            } else {
+                console.log(xhr.readyState);
+            }
+        }
+    }
+
+    var clearFunc = function (e) {
+        domainNameObj.value = '';
+        domainName = '';
+        submitBtnClass = submitBtnObj.getAttribute('class');
+        if (submitBtnClass == 'field') {
+            submitBtnObj.setAttribute('class', 'field disable');
+        }
+        clearIconObj.style.display = 'none';
+        submitBtnObj.removeEventListener('click', submitFunc);
+    }
+
+    loginoutBtnObj.addEventListener('click', function(e) {
+        confirm('您确定要退出吗？') && logout(e);
+    });
+
+    domainNameObj.addEventListener('input', function (e) {
+        submitBtnObj.removeEventListener('click', submitFunc);
+        domainName = domainNameObj.value;
+        submitBtnClass = submitBtnObj.getAttribute('class');
+        if (domainName.length > 0) {
+            if (submitBtnClass == 'field disable') {
+                submitBtnObj.setAttribute('class', 'field');
+            }
+            clearIconObj.style.display = 'block';
+            submitBtnObj.addEventListener('click', submitFunc);
+        } else {
+            if (submitBtnClass == 'field') {
+                submitBtnObj.setAttribute('class', 'field disable');
+            }
+            clearIconObj.style.display = 'none';
+            submitBtnObj.removeEventListener('click', submitFunc);
+        }
+    });
+
+    domainNameObj.addEventListener('focusin', function (e) {
+        domainNameClass = domainNameObj.getAttribute('class');
+        if (domainNameClass == 'field') {
+            domainNameObj.setAttribute('class', 'field line');
+        }
+    });
+
+    domainNameObj.addEventListener('focusout', function (e) {
+        domainNameClass = domainNameObj.getAttribute('class');
+        if (domainNameClass == 'field line') {
+            domainNameObj.setAttribute('class', 'field');
+        }
+    });
+
+    clearIconObj.addEventListener('click', clearFunc);
+
+    formObj.addEventListener('keydown', function (e) {
+        domainName = domainNameObj.value;
+        if (e.keyCode == 13) {
+            if (domainName.length > 0) {
+                submitFunc(e);
+            } else {
+                e.preventDefault();
+            }
+        }
+    });
+</script>
+</body>
+</html>
\ No newline at end of file
diff --git a/verify.php b/verify.php
index abcb1d1..1fa413b 100644
--- a/verify.php
+++ b/verify.php
@@ -13,7 +13,7 @@
     <meta name="viewport"
           content="width=device-width, initial-scale=1.0, maximum-scale=1.0, minimum-scale=1.0, user-scalable=no">
     <meta http-equiv="X-UA-Compatible" content="ie=edge">
-    <title>微信授权回调域名验证操作</title>
+    <title>添加微信公众号授权登录域名验证文件内容</title>
     <link rel="shortcut icon" href="./asset/image/favicon.ico">
     <link rel="stylesheet" href="./asset/css/reset.css">
     <style>
@@ -170,14 +170,8 @@
             background: transparent;
             border-bottom: 1px solid #eee;
         }
-        /*#txt:hover {*/
-            /*border-bottom: 1px solid #36a82e;*/
-        /*}*/
-        /*#txt:active {*/
-            /*border-bottom: 1px solid #36a82e;*/
-        /*}*/
-
-        #submit_btn,#copy {
+
+        #submit_btn, #copy, .manage-verify {
             color: #fff;
             background: #36a82e;
             cursor: pointer;
@@ -188,14 +182,8 @@
             -ms-user-select:none;
             user-select: none;
         }
-        /*#submit_btn:hover {*/
-            /*opacity: 0.8;*/
-        /*}*/
-        /*#submit_btn:active {*/
-            /*opacity: 1;*/
-        /*}*/
-
-        #submit_btn p,#copy p {
+
+        #submit_btn p, #copy p {
             width: 100%;
             overflow: hidden;
             white-space: nowrap;
@@ -229,7 +217,7 @@
 <div class="wrapper">
     <div class="container">
         <div class="user-box">
-            <a href="./admin.php"><div class="home"></div></a>
+            <a href="./admin.php"><div class="home" title="管理页"></div></a>
             <p class="user user-size"><?php echo $user; ?></p>
             <p class="logout-btn logout-size">退出登录</p>
         </div>
@@ -238,11 +226,16 @@
             <form id="form">
                 <div class="input-box">
                     <input type="text" class="field" name="txt" id="txt" value="" autocomplete="off" placeholder="请填写微信授权回调域名验证文件内容">
-                    <i class="icon icon-clear"></i>
+                    <i class="icon icon-clear" title="移除"></i>
                 </div>
                 <div class="field disable" id="submit_btn">
                     <p>提交</p>
                 </div>
+                <a href="./manageVerify.php">
+                    <div class="field manage-verify">
+                        <p>管理微信授权回调域名验证文件</p>
+                    </div>
+                </a>
                 <div class="field" id="copy">
                     <p>复制微信授权回调域名</p>
                 </div>
@@ -293,8 +286,13 @@
             if (xhr.readyState == 4) {
                 responseObj = JSON.parse(xhr.response);
                 alert(responseObj.message);
-                submitState = 1;
-                clearFunc();
+                responseObj.code == 1 && clearFunc();
+                responseObj.code == -1 && setTimeout(function() {
+                    window.location.href = './login.php';
+                }, 500);
+                if (responseObj.code != -1) {
+                    submitState = 1;
+                }
             } else {
                 console.log(xhr.readyState);
             }
@@ -322,7 +320,6 @@
                 } else {
                     logoutState = 1;
                 }
-
             } else {
                 console.log(xhr.readyState);
             }
