webadmin.php

/home/mjc1/public_html/html/millennium/pointbuynow.php

<?php include_once("./_common2.php"); ?>
<?php

// HTTPS Ã¼Å© ¹× URL ¸®ÅÏ
if(!isset($_SERVER["HTTPS"])) {
header('Location: https://'.$_SERVER["HTTP_HOST"].$_SERVER['REQUEST_URI']);
}

?>
<?

    if($sso!=''){
        /*function decrypt($string, $key) {
          $result = '';
          $string = base64_decode($string);
          for($i=0; $i<strlen($string); $i++) {
            $char = substr($string, $i, 1);
            $keychar = substr($key, ($i % strlen($key))-1, 1);
            $char = chr(ord($char)-ord($keychar));
            $result.=$char;
          }
          return $result;
        }

        $month = date("m",time());
        $day = date("d",time());
        $key = "m{$month}j{$day}";
        $id = decrypt($sso,$key);
        include("../../manage/category/common.php");

        $sql = "select * from member where Mid = '$id' ";
        $res = mysql_query($sql);
        $info = mysql_fetch_array($res);
        if($info['Mid']!=''){

            $datetime = time()-(10);
            $sql = "select count(*) as cnt from sso_easybill where id = '$id' and datetime > '$datetime' ";
            $res = mysql_query($sql);
            $info = mysql_fetch_array($res);
            if($info['cnt']>'0'){
                setcookie("USERID", $USERID,time()+3600);
                $_COOKIE['USERID'] = $USERID;
                $login_ok = "Y";
            }
        }*/
    }

    if( !isset($_COOKIE['USERID']) || $_COOKIE['USERID'] == "" ) { //20130902 ¼öÁ¤
        if (!isset($telArr)) $telArr = ""; //20130917
        if (!isset($hpArr)) $hpArr = "";
?>

<script>
    location.href = "./logingo.php?menu=1";
</script>

<?     
        exit(0); //20130905 ¼öÁ¤
    }
?>


<? include("./Page/common/header.php");//¸®´º¾ó °ü·Ã Çì´õ º¯°æ include("./Page/common/buy_header.php");?>

<?
    
function filter_SQL($content){
    $content = str_replace("&", "&amp", $content); 
    $content = str_replace("<", "&lt", $content);  
    $content = str_replace(">", "&gt", $content);  
    $content = str_replace("'", "&apos", $content);   
    $content = str_replace("\"", "&quot", $content);  
    $content = str_replace("\r", "", $content);
    $content = str_replace("'", "", $content);   
    $content = str_replace('"', "", $content);  
    $content = str_replace("--", "", $content);
    $content = str_replace(";", "", $content);
    $content = str_replace("%", "", $content);
    //$content = str_replace("+", "", $content); // »ó´ãºÐ¾ß ¼±ÅÃ¿¡¼ +°¡ µé¾î°¡±â¶§¹®¿¡ ÄÚ¸àÆ®
    $content = str_replace("script", "", $content);
    $content = str_replace("alert", "", $content);
    $content = str_replace("cookie", "", $content);
    $content = SQL_Injection($content);
    return $content;
}

function SQL_Injection($get_Str) { 
    $Str =  preg_replace("/(select|union|insert|update|delete|drop|\"|\'|#|\/\*|\*\/|\\\|\;)/i","", $get_Str);
    return $Str;
}
    
    //if (!isset($tel1Arr)) $tel1Arr = ""; //20130909
    //if (!isset($MhpArr)) $MhpArr = ""

    $ProductCode = "point";
    $tempTime   =  Time();

    /*20130902 ¼öÁ¤ $memberRow['Mid'] $memberRow['Mname'] $memberRow['Mcompany'] $memberRow['Madd'] $memberRow['Memail']*/
    $postArr_0 = "";
    $postArr_1 = "";

    $telArr_0 = "";
    $telArr_1 = "";
    $telArr_2 = "";

    $hpArr_0 = "";
    $hpArr_1 = "";
    $hpArr_2 = "";

    $memberRow_Mid = "";
    $memberRow_Mname = "";
    $memberRow_Mcompany = "";
    $memberRow_Madd = "";
    $memberRow_Memail = "";

    //È¸¿øÀÏ °æ¿ì
    if( isset($_COOKIE['USERID']) && $_COOKIE['USERID'] !== ""){ 
        $memberQry       =  " select * from member WHERE Mid = '$_COOKIE[USERID]' ";
        $memberResult    =    mysql_query($memberQry);
        $memberRow       =    mysql_fetch_array($memberResult);

        $memberRow_Mid = filter_SQL($memberRow['Mid']);
        $memberRow_Mname = filter_SQL($memberRow['Mname']);
        $memberRow_Mcompany = filter_SQL($memberRow['Mcompany']); 
        $memberRow_Madd = filter_SQL($memberRow['Madd']); 
        $memberRow_Memail = filter_SQL($memberRow['Memail']); 


        $postArr         =    explode("-",filter_SQL($memberRow['Maddnum']));
        $telArr          =    explode("-",filter_SQL($memberRow['Mtel1']));
        $hpArr           =    explode("-",filter_SQL($memberRow['Mhp']));

        $postArr_0 = $postArr[0];
        if (count($postArr) > 1) $postArr_1 = $postArr[1];

        $telArr_0 = $telArr[0];
        if (count($telArr) > 1) $telArr_1 = $telArr[1];
        if (count($telArr) > 2) $telArr_2 = $telArr[2];

        $hpArr_0 = $hpArr[0];
        if (count($hpArr) > 1) $hpArr_1 = $hpArr[1];
        if (count($hpArr) > 2) $hpArr_2 = $hpArr[2];

    }

   if(isset($_COOKIE['USERID']) && $_COOKIE['USERID'] !== "")  { $idCode  =  $_COOKIE['USERID']; }
   else {   $idCode  =  "GUEST"; }
?>
<!-- ¹Ù·Î°áÁ¦ ÅØ½ºÆ® »èÁ¦ -->
<script> 
function clear_text(){ 

     if( frmAGS_pay.ProductNm.value == "¹Ù·Î°áÁ¦"){
        
        var str=""; 
        var bb=document.getElementById("ProductNm"); 
        
        bb.value = str;

    }
} 
</script>


<!--ÇÒÀÎ¸Þ½ÃÁö ÆË¾÷-->
<SCRIPT LANGUAGE="JavaScript"> 
function DCMessage(siteURL) 
{ 
   var win = window.open( siteURL, 'newWin', 'status=no,toolbar=no,scrollbars=no,resizable=no,width=450,height=480' ); 
  document.forms.search.action = siteURL; 
  document.forms.search.target = 'newWin'; 
  document.forms.search.submit(); 
}
</SCRIPT>
<SCRIPT LANGUAGE="JavaScript">
function BUYMessage(siteURL) 
{ 
   var win = window.open( siteURL, 'newWin', 'status=no,toolbar=no,scrollbars=no,resizable=no,width=478,height=500' ); 
  document.forms.search.action = siteURL; 
  document.forms.search.target = 'newWin'; 
  document.forms.search.submit(); 
}
</SCRIPT>

<SCRIPT LANGUAGE="JavaScript"> 
function DCcs(siteURL) 
{ 
   var win = window.open( siteURL, 'newWin', 'status=no,toolbar=no,scrollbars=no,resizable=no,width=540,height=450' ); 
  document.forms.search.action = siteURL; 
  document.forms.search.target = 'newWin'; 
  document.forms.search.submit(); 
}
</SCRIPT>
<!-- ÇÒÀÎ¹Þ±â ½ºÅ©¸³Æ® -->
<!-- <script>
function DCMessage(){
    alert(" ÀÎÅÍ³Ý¹ðÅ·(¹«ÅëÀåÀÔ±ÝÆ÷ÇÔ) ¶Ç´Â Æù¹ðÅ·À»                               \n\n ÀÌ¿ëÇÏ¿© °áÁ¦ÇØ ÁÖ½Ã¸é 3,000¿ø ÇÒÀÎµË´Ï´Ù. [¿ëÁö»óÇ° Á¦¿Ü] \n\n \n ¡Ø °áÁ¦°èÁÂ : ³óÇù 093-02-307376 (¿¹±ÝÁÖ:Á¤ÀÏ¿µ ¹ÌÁø¼ÒÇÁÆ®) \n\n                    ±¹¹Î 337101-04-154613 (¿¹±ÝÁÖ:Á¤ÀÏ¿µ ¹ÌÁø¼ÒÇÁÆ®) \n\n \n À§ °èÁÂ·Î 3,000¿ø ÇÒÀÎµÈ ±Ý¾×À» ÀÔ±Ý ÈÄ ´ç»ç·Î ÀüÈ ÁÖ¼¼¿ä. \n\n \n                         TEL : 1566-8680");
}
</script> -->

<script>
function Enable_Flag(form)
{
        form.Flag.value = "enable"
}

function Disable_Flag(form)
{
        form.Flag.value = "disable"
}

 
  function postSearch(){
   
    window.open("../../manage/postSearch.php","","width=450,height=380,scrollbars=yes");
   
   }
  function postSearch2(){
   
    window.open("../../manage/postSearch_doro.php","","width=450,height=380,scrollbars=yes");
   
   }   
 
 function SetNum(obj){
    val =  obj.value;
    re  =  /[^0-9]/gi;
    obj.value = val.replace(re,"");
}

function commaSplit(srcNumber) {        
    var txtNumber = '' + srcNumber;
    //¿©±â¼ ºÎÅÍ 3ÀÚ¸®¸¶´Ù ÄÞ¸¶¸¦ Âï¾î ÁØ´Ù.
    var rxSplit = new RegExp('([0-9])([0-9][0-9][0-9][,.])');
    var arrNumber = txtNumber.split('.');
    arrNumber[0] += '.';
    do {
        arrNumber[0] = arrNumber[0].replace(rxSplit, '$1,$2');
    } while (rxSplit.test(arrNumber[0]));

           if (arrNumber.length > 1) {
           return arrNumber.join('');
           }else {
          
           return arrNumber[0].split('.')[0];
           }
}

 function priceChk(k){
   
   var  r_price    =  eval(k) ; 
   frmAGS_pay.Amt.value   =  r_price;
    var t  = commaSplit(r_price);
   text_price.innerHTML =  "<b>" + t + "</b> ¿ø" ;
     
   }
 
   function commaSplit(srcNumber) {        
    var txtNumber = '' + srcNumber;
    //¿©±â¼ ºÎÅÍ 3ÀÚ¸®¸¶´Ù ÄÞ¸¶¸¦ Âï¾î ÁØ´Ù.
    var rxSplit = new RegExp('([0-9])([0-9][0-9][0-9][,.])');
    var arrNumber = txtNumber.split('.');
    arrNumber[0] += '.';
    do {
        arrNumber[0] = arrNumber[0].replace(rxSplit, '$1,$2');
    } while (rxSplit.test(arrNumber[0]));

           if (arrNumber.length > 1) {
           return arrNumber.join('');
           }else {
          
           return arrNumber[0].split('.')[0];
           }
}

 function changeform(MoneyValue) { 
     frmAGS_pay.Amt.value = MoneyValue;
  if(MoneyValue == '11000') { 
    document.getElementById('v_point').value = '10,000'; //ÄÞ¸¶ º¸ÀÌ±âÀ§ÇÑ ±Ý¾×
    document.getElementById('f_point').value = '10000'; 
    document.getElementById('f_price').value = '11000';
  }
  if(MoneyValue == '33000') { 
    document.getElementById('v_point').value = '30,900';
    document.getElementById('f_point').value = '30900'; 
    document.getElementById('f_price').value = '33000'; 
  }
  if(MoneyValue == '55000') { 
    document.getElementById('v_point').value = '52,500'; 
    document.getElementById('f_point').value = '52500'; 
    document.getElementById('f_price').value = '55000'; 
  }
  if(MoneyValue == '110000') { 
    document.getElementById('v_point').value = '108,000'; 
    document.getElementById('f_point').value = '108000'; 
    document.getElementById('f_price').value = '110000'; 
  }
  if(MoneyValue == '220000') { 
    document.getElementById('v_point').value = '220,000'; 
    document.getElementById('f_point').value = '220000'; 
    document.getElementById('f_price').value = '220000'; 
  }
    var  total = commaSplit(MoneyValue);
    dis_totalPrice.innerHTML = "°áÁ¦±Ý¾× : &nbsp;<b>" + total + "</b> ¿ø&nbsp;&nbsp;&nbsp;" ;
}
//°èÁÂÀÌÃ¼
  function Settle2(c, Pcode){

    if( frmAGS_pay.formText[1].checked == true){
        alert('°³ÀÎÁ¤º¸ Ãë±Þ¹æÄ§¿¡ µ¿ÀÇ ÇÏ¼Å¾ß ÇÕ´Ï´Ù.');
        return ;
    }
    
   if( frmAGS_pay.Mname.value == ""){
     alert("ÀÌ¸§À» ÀÔ·ÂÇØ ÁÖ¼¼¿ä");
     frmAGS_pay.Mname.focus();
     return false;
     }
  /*if( frmAGS_pay.Madd.value == ""){
     alert("ÁÖ¼Ò¸¦ ÀÔ·ÂÇØ ÁÖ¼¼¿ä");
     frmAGS_pay.Madd.focus();
     return false;
     }   
  if( frmAGS_pay.tel1.value == "" || frmAGS_pay.tel2.value == "" || frmAGS_pay.tel3.value == ""){
     alert("¿¬¶ôÃ³¸¦ ÀÔ·ÂÇØ ÁÖ¼¼¿ä");
     frmAGS_pay.tel1.focus();
     return false;
     }*/
 
  if( frmAGS_pay.f_price.value == "" || frmAGS_pay.Amt.value  == "" ){
    frmAGS_pay.Mmoney.focus();
     alert("°áÁ¦ÇÏ½Ç ±Ý¾×À» ÀÔ·ÂÇÏ¼¼¿ä");
     return false;
    }
  if( frmAGS_pay.Mname2.value == ""){
     alert("ÀÔ±ÝÀÚ¸íÀ» ÀÔ·ÂÇØ ÁÖ¼¼¿ä");
     frmAGS_pay.Mname2.focus();
     return false;
     }     
  if( frmAGS_pay.bank.value == ""){
     alert("ÀÔ±ÝÇÒ ÀºÇàÀ» ¼±ÅÃÇØ ÁÖ¼¼¿ä");
     frmAGS_pay.bank.focus();
     return false;
     }     


  frmAGS_pay.ProductCode.value = Pcode;

  frmAGS_pay.OrdNo.value       =   "POINT-<?=$idCode;?>-"+frmAGS_pay.ProductCode.value+"-<?=$tempTime;?>";  
  frmAGS_pay.UserId.value      =    "<?=$idCode;?>";
  frmAGS_pay.OrdNm.value       =   frmAGS_pay.Mname.value;  
  frmAGS_pay.OrdComp.value     =   frmAGS_pay.Mcompany.value;  
  //frmAGS_pay.OrdPhone.value    =   frmAGS_pay.tel1.value+"-"+frmAGS_pay.tel2.value+"-"+frmAGS_pay.tel3.value;
  //frmAGS_pay.UserEmail.value   =   frmAGS_pay.Memail.value;
  frmAGS_pay.RcpNm.value       =   frmAGS_pay.Mname.value;
  //frmAGS_pay.RcpPhone.value    =   frmAGS_pay.tel1.value+"-"+frmAGS_pay.tel2.value+"-"+frmAGS_pay.tel3.value;
  //frmAGS_pay.DlvAddr.value     =   frmAGS_pay.Madd.value;
  //frmAGS_pay.DlvPost.value     =   frmAGS_pay.post1.value+"-"+frmAGS_pay.post2.value;
  frmAGS_pay.ProductCode.value =   frmAGS_pay.ProductCode.value;

  if(confirm("À§ ÀÛ¼ºÇÏ½Å ³»¿ëÀ¸·Î ÃæÀü½ÅÃ» ÇÏ½Ã°Ú½À´Ï±î? \n\nÀÔ·ÂÇÏ½Å ÀÔ±ÝÀÚ¸í°ú ¼Û±ÝÀÚ¸íÀÌ ´Ù¸¥ °æ¿ì¿¡´Â \n\nÈ®ÀÎÀüÈ ÁÖ½Ã±â ¹Ù¶ø´Ï´Ù. 1566-8680")){

    document.frmAGS_pay.action="./Order_Tpoint_Process.php";
    document.frmAGS_pay.submit();
     
     }
 }
</script>
<style>
    .subContents h1,.subContents h2,.subContents h3 ,.subContents h4, .subContents a,.subContents p,.subContents div,.subContents label,.subContents span, .subContents em, .subContents button, .subContents th, .subContents td{font-weight:600;}
    .wrap {width: 100% !important;min-width:1600px;}
    .select_width { width:100%;}
    .contents {margin: 70px auto 50px !important;width:1920px !important;max-width:1920px;position:relative;}
    .subContents {float:none !important; width: 1200px !important; margin: auto;}
    .asideMenu {float:none !important; position: absolute;width: 216px;left: 100px;}
    .section {width:1200px !important;}
    .blue {color:#012D6A !important;}
    .pointTitle {width: 1200px !important;}
    .pointTitle img {display:block;}
    .policy {text-align:center; margin: 30px auto;border-top:none !important;}
    .policy::after{clear:both;}
    .policy h3 {height: 35px;color: #012D6A;font-size: 18px;line-height: 35px;cursor: pointer;transform: skew(-0.1deg);margin-bottom: 10px;}
    .policy h3 span {padding:0px 28px;}
    .policy textarea {font-size:13px;width:1170px !important;height:134px;padding:10px;resize:vertical;background: #FFFFFF 0% 0% no-repeat padding-box;box-shadow: -1px -1px 6px rgba(0, 0, 0, 0.4);border: 1px solid #FFFFFF;border-radius: 5px;margin-right:0 !important;margin-left:3px;}
    .policy .policyAgree {width:inherit !important;float:right !important;font-size:16px !important;color:#012D6A;}
    .policy label {color:#012D6A !important;font-size:16px !important;}
    .privacy_link {width: 250px !important;height: 26px !important; margin: auto !important;background-color: #012D6A; border-radius:5px;font-size: 14px !important;text-align: center !important;line-height:28px;margin-bottom:14px !important;}
    .privacy_link a {width: 250px !important;height: 26px !important;background: #012D6A;font-size:14px;color:#fff;}

    .buyNoticeBox {width:350px !important; height:inherit !important;margin:auto;border: 1px solid #cecece !important;}
    .buyNoticeBox p {line-height:1.5;font-weight:400;}
    .buySection {width: 1200px !important;margin-top: 20px;font-size: 13px;border-top: 1px solid #dcdcdc;}
    .buySection th, .buySection td {font-size:16px;font-weight:500;transform:skew(-0.1deg);border:none;padding:0 8px !important;}
    .buySection th {color:#012D6A;background:none;text-align:center;}
    .buySection tr {border:none;height:52px;}
    .buySection .priceTd {text-align:right !important;}
    .buySection .label {color:#707070;margin-left:12px;font-size:14px;}
    .buySection input, .buySection select {font-size:12px;padding:10px !important;;border: 1px solid #CCCCCC !important;margin-right:12px;height:auto !important;}
    .buySection input[type=radio]{min-width:inherit;margin-right:8px;}
    .tel_box {min-width:100px !important;}
    .s_btn {background: #012D6A !important;font-size:14px;color:#fff !important;border-radius:5px !important;padding:10px 43px !important;cursor:pointer;}
    .s_btn a {padding:10px 43px;}
    .s_btn a:hover{color:#fff;}
    .buySection td.pointPrice {padding-right: 15px;text-align: right;color: #fff;font-size: 16px !important;font-weight: 600;background:#012D6A;}

    .optionTable {width: 950px !important;margin: 10px 0;font-size: 13px;border: 1px solid #cecece !important;}
    .optionTable th {background:#eaeaea;}
    .optionTable td.gray {background: #f8f8f8;border-top:1px solid #eaeaea;border-bottom:1px solid #eaeaea;}
    .cmt_class {width:250px !important;}
    .optionTableText {color:#555555;}
    .optionTableBtn {color:#fff !important;background:#012D6A !important;padding:3px 4px !important;border-radius:5px;}

    .productLink {margin: 50px auto !important;text-align: center;width: 710px;}
</style>

    <div class="wrap">

        <div class="contents">
            <div class="asideMenu">
                <? include("./Page/buy/leftNavi.html"); ?>
            </div><!-- //leftNavi -->

            <div class="subContents">
                <h1>
                    <img src="./img/titlebar/pointbuynow.jpg" alt="Æ÷ÀÎÆ®ÃæÀü">
                    <p>
                        <span class="home"><a href="intro.php">Home</a></span>
                        <span class="depth">></span>
                        <span class="depth1">Á¦Ç°±¸¸Å</span>
                        <span class="depth">></span>
                        <span class="depth2">Æ÷ÀÎÆ®ÃæÀü</span>
                    </p>
                </h1>

                <div class="section">
                <form name="frmAGS_pay" id='frmAGS_pay' method=post >

                    <div class="pointTitle">
                        <p><img src="./img/buy/top_text_point_01.jpg" alt="¼ºñ½º»ç¿ë¿¡ ÇÊ¿äÇÑ Æ÷ÀÎÆ®¸¦ ÃæÀüÇÒ ¼ö ÀÖ½À´Ï´Ù."></p>
                        <p><img src="./img/buy/top_text_point_02.jpg" alt="ÀÎÅÍ³Ý¹ðÅ·, ¹«ÅëÀåÀÔ±Ý, Ä«µå°áÁ¦"></p>
                        <p><img src="./img/buy/top_text_point_03.jpg" alt="°èÁÂ·Î ¼Û±ÝÇÏ½Å °æ¿ì 30ºÐ °æ°ú ÈÄ ÀüÀÚ¼¼±Ý°è»ê¼ ¹ß±ÞÀÌ °¡´ÉÇÕ´Ï´Ù.(±Ù¹«½Ã°£±âÁØ)"></p>
                        <p class="pointTitleTel"><img src="./img/buy/top_text_tel.jpg" alt="°áÁ¦¹®ÀÇ : 02-401-5121"></p>
                        <p><img src="./img/buy/top_text_point_04.jpg" alt="ÃæÀüµÈ Æ÷ÀÎÆ®´Â È¯ºÒÀÌ ºÒ°¡ÇÏ´Ï ½ÅÁßÈ÷ ½ÅÃ»ÇØÁÖ¼¼¿ä~"></p>
                    </div>

                    <p class="pointNotice"><img src="./img/buy/pointbuynow.jpg"></p>

                    <div class="policy">
                        <h3 style="cursor:inherit;margin-top:0;margin-bottom:0;" class="joinAgree_tit">°³ÀÎÁ¤º¸ ¼öÁý ¹× ÀÌ¿ëµ¿ÀÇ</h3>
                        <p style="text-align: center;font-size:14px;color: #012D6A;height:35px;line-height:35px;">ÀÚ¼¼ÇÑ ³»¿ëÀº '°³ÀÎÁ¤º¸Ãë±Þ¹æÄ§'À» Âü°íÇØÁÖ¼¼¿ä.</p>
                        <div class="privacy_link"><a href="./privacy.php" target='_blank'>°³ÀÎÁ¤º¸Ãë±Þ¹æÄ§ ÀÚ¼¼È÷ º¸±â</a></div>

                        <? include("./privacy_text.html"); ?>
                        
                        <p class="policyAgree center">
                            <span>°³ÀÎÁ¤º¸ ¼öÁý ¹× ÀÌ¿ëµ¿ÀÇ</span>
                            <input type="radio" name="formText" id="formText1" value="1"><label for="formText1"> µ¿ÀÇÇÔ</label>
                            <input type="radio" name="formText" id="formText2" value="2" checked> <label for="formText2">µ¿ÀÇ¾ÈÇÔ</label>
                        </p>
                    </div><!-- //policy -->

                    <div class="buyNotice">
<!--                         <h2><img src="./img/common/card.jpg" alt="¼Û±Ý, Ä«µå°áÁ¦"></h2> -->
                        <h3 style="font-size:18px;color: #012D6A;text-align:center;">¼Û±Ý/Ä«µå°áÁ¦</h3>
                        <div class="buyNoticeBox">
                            <p>
                                Ä«µå°áÁ¦ ÈÄ ³ªÀÌ½ºÆäÀÌ¸ÕÃ÷ÀÇ <em class="blue bold">¿µ¼öÁõÀÌ ¹ß±Þ</em>µË´Ï´Ù.<br>
                                ±Ù¹«½Ã°£ ¿Ü °áÁ¦ÇÏ½Å °æ¿ì <em class="blue bold">±Ù¹«½Ã°£¿¡ ÀüÈ</em>ÁÖ¼¼¿ä.<br>
                                ºü¸¥Ã³¸®¸¦ À§ÇÏ¿© <em class="orange bold">ÀÎÅÍ³Ý¹ðÅ·(¹«ÅëÀåÀÔ±Ý)</em>À» <em class="orange bold">±ÇÀå</em>ÇÕ´Ï´Ù.<br>
                                <em class="orange bold">Æ÷ÀÎÆ®°áÁ¦´Â È¯ºÒ</em>ÀÌ <em class="orange bold">ºÒ°¡</em>ÇÏ´Ï ½ÅÁßÈ÷ ÇÏ½Ê½Ã¿À.
                            </p>
                        </div>
                    </div><!-- //policy -->


                    <table class="buySection">
                        <caption><span class="red">*</span>´Â ÇÊ¼ö Ç×¸ñÀÔ´Ï´Ù.</caption>

<?    //mysql_close;
    include("../../manage/category/subpointcommon.php");                        
    $userid = $_COOKIE['USERID']; 
    $sbsql = "SELECT * FROM cust_cash WHERE id = '$userid'";
    $sbresult = mysql_query($sbsql);
    $sbrow = mysql_fetch_array($sbresult);
    
    $curpoint = $sbrow['curpoint'];
?>

                        <tr> 
                            <th width="160">ÀÜ¿©Æ÷ÀÎÆ®</th>
                            <td colspan="3">
                                <span class="red"> <b><?=number_format($curpoint)?></b> <img src="./img/common/pointicon.gif" alt="Æ÷ÀÎÆ®¾ÆÀÌÄÜ">
                                </span>
                                <span style="padding-left:20px;">
                                    <a href="mypagepoint.php"><img src="./img/common/pointuselist.png" alt="Æ÷ÀÎÆ®»ç¿ë³»¿ªÁ¶È¸"></a>
                                </span>
                            </td>
                        </tr>
                        <tr> 
                            <th><span class="red">*</span>°áÁ¦±Ý¾×(VatÆ÷ÇÔ)</th>
                            <td colspan="3">
                                <select name='Mmoney' onchange='changeform(this.value);'>
                                    <option value=0 >°áÁ¦±Ý¾×</option>
                                    <option value=11000 >11,000¿ø</option>
                                    <option value=33000 >33,000¿ø</option>
                                    <option value=55000 >55,000¿ø</option>
                                    <option value=110000 >110,000¿ø</option>
                                    <option value=220000 >220,000¿ø</option>
                                </select>
                                <input name="f_price" id="f_price" type="hidden" class="log" size="15" maxlength="20" style='IME-MODE: disabled'  onChange="priceChk(this.value);" onkeypress='SetNum(this)' onblur='SetNum(this)' readonly>ÃæÀü 
                                <input name="v_point" id="v_point" type="text" class="log" style="width:60px;height:20px;line-height:20px;" readonly>
                                <input name="f_point" id="f_point" type="hidden" class="log" size="10" maxlength="10">Æ÷ÀÎÆ® (Vat±Ý¾× °øÁ¦ÈÄ ÃæÀüµË´Ï´Ù)
                            </td>
                        </tr>
                        <tr> 
                            <th>°áÁ¦ »óÇ°¸í</th>
                            <td colspan="3"><b>Æ÷ÀÎÆ®ÃæÀü</b></td>
                        </tr>
                        <tr> 
                            <td colspan="6" class="pointPrice"><div id='dis_totalPrice'></div></td>
                        </tr>  
                        <tr> 
                            <th><span class="red">*</span>ÃæÀü ¾ÆÀÌµð</th>
                            <td colspan="3">
                                <input type="text" name="Mid" size="15" maxlength="20" value="<?=$memberRow_Mid?>" readonly>
                            </td>
                        </tr>
                        <tr> 
                            <th><span class="red">*</span>¼º¸í</th>
                            <td>
                                <input name="Mname" type="text" value='<?=$memberRow_Mname;?>' size="15" maxlength="20">
                            </td>
                        </tr>
                        <tr>
                            <th>»óÈ£¸í</th>
                            <td>
                                <input name="Mcompany" type="text" value="<?=$memberRow_Mcompany;?>" size="26" maxlength="20">
                            </td>
                        </tr>
<?if(1==2){?>
                        <tr> 
                            <th><span class="red">*</span>ÁÖ¼Ò</th>
                            <td class="addr" colspan="3">
                                <input name="post1" id="post1" value='<?=$postArr_0;?>' type="text" size="3" maxlength="3"> -
                                <input name="post2" id="post2" type="text" value='<?=$postArr_1;?>' size="3" maxlength="3">
                                <!--img src="./img/mypage/post_bt.jpg" Onclick="postSearch2();" style='cursor:pointer;' alt="¿ìÆí¹øÈ£Ã£±â"-->
                                <br />
                                <input name="Madd" id="Madd" type="text" value='<?=$memberRow_Madd;?>' size="60" maxlength="70">
                            </td>
                        </tr>
                        <tr>  
                            <th><span class="red">*</span>ÀÏ¹ÝÀüÈ</th>
                            <td class="blue" colspan="3">
                                <input name="tel1" value='<?=$telArr_0;?>' type="text" size="3" maxlength="3"> - 
                                <input name="tel2" type="text" value='<?=$telArr_1;?>' size="4" maxlength="4"> - 
                                <input name="tel3" type="text" value='<?=$telArr_2;?>' size="4" maxlength="4"> (ÀÏ¹ÝÀüÈ¹øÈ£¸¦ ÀÔ·ÂÇØ ÁÖ¼¼¿ä)
                            </td>
                        </tr>
                        <tr> 
                            <th>ÈÞ´ëÀüÈ</th>
                            <td colspan="3">
                                <input name="hp1" value='<?=$hpArr_0;?>' type="text" size="3" maxlength="3"> - 
                                <input name="hp2" type="text" value='<?=$hpArr_1;?>' size="4" maxlength="4"> - 
                                <input name="hp3" type="text" value='<?=$hpArr_2;?>' size="4" maxlength="4"> (ÈÞ´ëÀüÈ¹øÈ£¸¦ ÀÔ·ÂÇØ ÁÖ¼¼¿ä)</td>
                        </tr>
                        <tr> 
                            <th>ÀüÀÚ¿ìÆí</th>
                            <td colspan="3">
                                <input name="Memail" type="text" value='<?=$memberRow_Memail;?>' size="60" maxlength="70">
                            </td>
                        </tr>
<?}?>
                        <tr> 
                            <th>Àü´Þ»çÇ×</th>
                            <td colspan="3">
                                <input name="SendItem" type="text" size="60" maxlength="80">
                            </td>
                        </tr>
                        <tr> 
                            <td colspan="6"><font class="blue"><b>¡Ø ¾Æ·¡´Â ´ç»ç°èÁÂ·Î Á÷Á¢ ¼Û±ÝÇÏ½Ç °æ¿ì ÀÔ·ÂÇØÁÖ¼¼¿ä.(½Å¿ëÄ«µå °áÁ¦/¿Â¶óÀÎ ÀÌÃ¼½Ã ÀÔ·Â ºÒÇÊ¿ä.)</b></font></td>
                        </tr>  
                        <tr> 
                            <th><span class="red">*</span>ÀÔ±ÝÀÚ¸í</th>
                            <td colspan="5">
                                <input name="Mname2" type="text" value='<?=$memberRow_Mname;?>' size="15" maxlength="20">
                                <font class="red">(¹Ýµå½Ã ÀÔ±ÝÀÚ¸í°ú µ¿ÀÏÇØ¾ß ÇÕ´Ï´Ù)</font>
                            </td>
                        </tr>
                        <tr> 
                            <th><span class="red">*</span>ÀÔ±ÝÀºÇà¸í</th>
                            <td colspan="5">
                                <select name="bank" class="bank">
                                    <option value="">¼±ÅÃ</option>
                                    <option value="2">³óÇù 093-02-307376<!--301-0170-9544-01--></option>
                                    <option value="1">±¹¹ÎÀºÇà 337101-04-154613<!-- 337101-04-154613     803901-01-443842 --></option>
                                </select>
                            </td>
                        </tr>
                        <tr> 
                            <th>¿¹±ÝÁÖ</th>
                            <td colspan="5">Á¤ÀÏ¿µ (¿¥Á¦ÀÌ¼ÒÇÁÆ®)</td>
                        </tr>
<?php
    $mode_inc="point_info";
    include("order_card_inc.php");
?>
                    </table> 

                    <p class="buySectionBtn">
                        <a onClick="Settle2('noBook', 'point');" target='_blank'><img src="./img/buy/remit_bt.png" alt="°èÁÂ¼Û±Ý"></a>
                        <a onClick="nicepayStart();"><img src="./img/buy/credit_bt.png" alt="½Å¿ëÄ«µå °áÁ¦"></a>
                        <a onClick="BUYMessage('./pop_buy.php');" target='_blank'><img src="./img/buy/online_bt.png" alt="¹«ÅëÀåÀÔ±Ý"></a>
                    </p>

                </div><!-- //section -->

            </div><!-- //subContents -->

        </div><!-- //contents -->
    </div><!-- //wrap -->


<? include("./Page/common/footer.php"); ?>

<input type=hidden name=Flag value="">                <!-- ½ºÅ©¸³Æ®°áÁ¦»ç¿ë±¸ºÐÇÃ·¡±× -->
<!--<input TYPE="hidden" NAME="Mname2" value='<?=$memberRow_Mname;?>'>-->
<INPUT TYPE="hidden" NAME="Amt"> <!-- ÁÖ¹® ±Ý¾× -->


 <!-- ¹ÌÁø Àü¼Û Á¤º¸ -->
<INPUT TYPE="hidden" NAME="Job">
<INPUT TYPE="hidden" NAME="StoreId" value="mijinsoft3">
<!--<INPUT TYPE="hidden" NAME="StoreId" value="aegis"> -->
<INPUT TYPE="hidden" NAME="StoreNm" value="¹ÌÁøSoft">
<INPUT TYPE="hidden" NAME="OrdNo"> <!-- ÁÖ¹® ¹øÈ£ -->
<INPUT TYPE="hidden" NAME="ProdNm" value='[Æ÷ÀÎÆ®ÃæÀü]'> <!-- »óÇ°¸í -->
<INPUT TYPE="hidden" NAME="UserId"> <!-- È¸¿ø ¾ÆÀÌµð -->
<INPUT TYPE="hidden" NAME="OrdNm" value='<?=$memberRow_Mname;?>'> <!-- ÁÖ¹®ÀÚ¸í -->
<INPUT TYPE="hidden" NAME="OrdComp"> <!-- »óÈ£ -->
<INPUT TYPE="hidden" NAME="OrdPhone"> <!-- ÁÖ¹®ÀÚÀüÈ¹øÈ£ -->
<INPUT TYPE="hidden" NAME="UserEmail"> <!-- ÁÖ¹®ÀÚÀÌ¸ÞÀÏ -->
<INPUT TYPE="hidden" NAME="RcpNm"> <!-- ¼ö½ÅÀÚ¸í -->
<INPUT TYPE="hidden" NAME="RcpPhone"> <!-- ¼ö½ÅÀÚ ÀüÈ¹øÈ£ -->
<INPUT TYPE="hidden" NAME="DlvAddr"> <!-- ¼ö½ÅÀÚÁÖ¼Ò -->
<INPUT TYPE="hidden" NAME="DlvPost"> <!-- ¿ìÆí¹øÈ£ -->
<INPUT TYPE="hidden" NAME="MallUrl" value="http://www.mijinsoft.co.kr">
<INPUT TYPE="hidden" NAME="MallPage" value="/AGS_VirAcctResult.php">    <!-- °¡»ó°èÁÂ ÀÔ±ÝÈ®ÀÎ Ã³¸®-->
<INPUT TYPE="hidden" NAME="Remark">
<INPUT TYPE="hidden" NAME="SendItemDetail"> <!-- Àü´Þ»çÇ× -->

<input type=hidden name='ProductCode' value='<?=$ProductCode;?>'>

<!--  ¹ÌÁø Àü¼Û Á¤º¸ ³¡-->
<!-- JavaScript ¿¡¼ °ªÀ» ¼³Á¤ÇÏ´Â Hidden ÇÊµå -->

<!-- ¿Ã´õ°ÔÀÌÆ® ÇÃ·¯±×ÀÎ¿¡¼ »ç¿ëÇÏ´Â Hidden ÇÊµå -->
<input type="hidden" name="ags_logoimg_url" maxlength="200" value="./img/mjlogo.gif">
</form>

<?
    include("../manage/category/Ordercommon.php");

    // $lgu_platform, $lgu_mid º¯¼ö´Â ./Page/common/buy_header.php ÆÄÀÏ ¾È¿¡ ¸í½ÃµÊ 
    $merchantKey = $nice_key; // »óÁ¡Å°
    $MID         = $nice_mid; // »óÁ¡¾ÆÀÌµð
    $goodsName = "[¹Ù·Î°áÁ¦]"; // °áÁ¦»óÇ°¸í
    $price       = "1001"; // °áÁ¦»óÇ°±Ý¾×
    $buyerName   = "mjsoft"; // ±¸¸ÅÀÚ¸í
    $buyerEmail  = ""; // ±¸¸ÅÀÚ¸ÞÀÏÁÖ¼Ò        
    $moid        = "mjsoft_".time(); // »óÇ°ÁÖ¹®¹øÈ£                     
    $returnURL   = "https://{$_SERVER['HTTP_HOST']}/nice/payResult.php"; // °á°úÆäÀÌÁö(Àý´ë°æ·Î) - ¸ð¹ÙÀÏ °áÁ¦Ã¢ Àü¿ë

    $cont = json_encode($od_info);

    /*
    *******************************************************
    * <ÇØ½¬¾ÏÈ£È> (¼öÁ¤ÇÏÁö ¸¶¼¼¿ä)
    * SHA-256 ÇØ½¬¾ÏÈ£È´Â °Å·¡ À§º¯Á¶¸¦ ¸·±âÀ§ÇÑ ¹æ¹ýÀÔ´Ï´Ù. 
    *******************************************************
    */ 
    $ediDate = date("YmdHis");
    $hashString = bin2hex(hash('sha256', $ediDate.$MID.$price.$merchantKey, true));
?>

<script src="https://pg-web.nicepay.co.kr/v3/common/js/nicepay-pgweb.js" type="text/javascript"></script>
<script type="text/javascript">

//°áÁ¦Ã¢ ÃÖÃÊ ¿äÃ»½Ã ½ÇÇàµË´Ï´Ù.
function nicepayStart(){

    if(frmAGS_pay.formText[1].checked == true){
        alert('°³ÀÎÁ¤º¸ Ãë±Þ¹æÄ§¿¡ µ¿ÀÇ ÇÏ¼Å¾ß ÇÕ´Ï´Ù.');
        return;
    }
    if(frmAGS_pay.Mname.value == ""){
        alert("ÀÌ¸§À» ÀÔ·ÂÇØ ÁÖ¼¼¿ä");
        frmAGS_pay.Mname.focus();
        return;
    }
    /*if(frmAGS_pay.Madd.value == ""){
        alert("ÁÖ¼Ò¸¦ ÀÔ·ÂÇØ ÁÖ¼¼¿ä");
        frmAGS_pay.Madd.focus();
        return;
    }   
    if(frmAGS_pay.tel1.value == "" || frmAGS_pay.tel2.value == "" || frmAGS_pay.tel3.value == ""){
        alert("¿¬¶ôÃ³¸¦ ÀÔ·ÂÇØ ÁÖ¼¼¿ä");
        frmAGS_pay.tel1.focus();
        return;
    }*/

    if(frmAGS_pay.f_price.value == ""){
        frmAGS_pay.f_price.focus();
        alert("°áÁ¦ÇÏ½Ç ±Ý¾×À» ÀÔ·ÂÇÏ¼¼¿ä");
        return;
    }

    v_oid = "Direct-<?=$idCode;?>-<?=$tempTime;?>"; // ÁÖ¹®¹øÈ£
    v_Mname = filter_check($("#frmAGS_pay input[name='Mname']").val()); // ÀÌ¸§
    v_Mcompany = filter_check($("#frmAGS_pay input[name='Mcompany']").val()); // È¸»ç¸í
    /*v_tel1 = filter_check($("#frmAGS_pay input[name='tel1']").val()); // ÀüÈ¹øÈ£
    v_tel2 = filter_check($("#frmAGS_pay input[name='tel2']").val()); // ÀüÈ¹øÈ£
    v_tel3 = filter_check($("#frmAGS_pay input[name='tel3']").val()); // ÀüÈ¹øÈ£
    v_hp1 = filter_check($("#frmAGS_pay input[name='hp1']").val()); // ÈÞ´ëÀüÈ
    v_hp2 = filter_check($("#frmAGS_pay input[name='hp2']").val()); // ÈÞ´ëÀüÈ
    v_hp3 = filter_check($("#frmAGS_pay input[name='hp3']").val()); // ÈÞ´ëÀüÈ
    v_Madd = filter_check($("#frmAGS_pay input[name='Madd']").val()); // ÁÖ¼Ò
    v_post1 = filter_check($("#frmAGS_pay input[name='post1']").val()); // ¿ìÆí¹øÈ£
    v_post2 = filter_check($("#frmAGS_pay input[name='post2']").val()); // ¿ìÆí¹øÈ£
    v_Memail = filter_check($("#frmAGS_pay input[name='Memail']").val()); // ¸ÞÀÏÁÖ¼Ò*/
    v_f_price = filter_check($("#frmAGS_pay select[name='Mmoney'] option:selected").val()); // °áÁ¦±Ý¾×
    v_f_point = filter_check($("#frmAGS_pay input[name='f_point']").val()); // ÃæÀü Æ÷ÀÎÆ®
    v_SendItem = filter_check($("#frmAGS_pay input[name='SendItem']").val()); // Àü´Þ»çÇ×

    $("#payForm input[name='Moid']").val(v_oid);
    $("#payForm input[name='BuyerName']").val(v_Mname);
    $("#payForm input[name='Amt']").val(parseInt(v_f_price));
    //$("#payForm input[name='BuyerTel']").val(v_tel1);
    //$("#payForm input[name='BuyerEmail']").val(v_Memail);
    $("#payForm input[name='Mcompany']").val(v_Mcompany);
    /*$("#payForm input[name='tel1']").val(v_tel1);
    $("#payForm input[name='tel2']").val(v_tel2);
    $("#payForm input[name='tel3']").val(v_tel3);
    $("#payForm input[name='hp1']").val(v_hp1);
    $("#payForm input[name='hp2']").val(v_hp2);
    $("#payForm input[name='hp3']").val(v_hp3);
    $("#payForm input[name='Madd']").val(v_Madd);
    $("#payForm input[name='post1']").val(v_post1);
    $("#payForm input[name='post2']").val(v_post2);*/
    $("#payForm input[name='SendItem']").val(v_SendItem);
    $("#payForm input[name='Mname']").val(v_Mname);
    //$("#payForm input[name='Memail']").val(v_Memail);
    $("#payForm input[name='f_point']").val(parseInt(v_f_point));

    // ±Ý¾×ÀÌ À¯µ¿ÀûÀÌ±â ¶§¹®¿¡ Hash°ªÀ» »õ·Î ¹Þ¾Æ¿Â´Ù.
    var form_data = $("#payForm").serialize();
    $.ajax({type:"post", url:"/nice/ajax_get_hash.php",data:form_data, dataType : "xml", 
        success:function(xml){    
            var v_isok = $(xml).find("isok").text();
            var v_hashori = $(xml).find("hashori").text();
            var v_hashmd = $(xml).find("hashmd").text();
            var v_msg = $(xml).find("msg").text();
            if(v_isok=='Y'){
                $("#payForm input[name='SignData']").val(v_hashmd);
                goPay(document.payForm);
            } else {
                alert(v_msg);
            }

        },
        error:function(rtn,status,error){ alert(error); }
    });
}

//[PC °áÁ¦Ã¢ Àü¿ë]°áÁ¦ ÃÖÁ¾ ¿äÃ»½Ã ½ÇÇàµË´Ï´Ù. <<'nicepaySubmit()' ÀÌ¸§ ¼öÁ¤ ºÒ°¡´É>>
function nicepaySubmit(){
    document.payForm.submit();
}

//[PC °áÁ¦Ã¢ Àü¿ë]°áÁ¦Ã¢ Á¾·á ÇÔ¼ö <<'nicepayClose()' ÀÌ¸§ ¼öÁ¤ ºÒ°¡´É>>
function nicepayClose(){
    alert("°áÁ¦°¡ Ãë¼Ò µÇ¾ú½À´Ï´Ù");
}

/*
 * ÇÊÅÍ
 */
function filter_check(val) {
    var expText = /[&<>"']/g;
    var expText2 = /[;]/g;

    val = val.replace(/&/g, "&amp;");
    val = val.replace(/</g, "&lt;");
    val = val.replace(/>/g, "&gt;");
    val = val.replace(/"/g, "&quot;");
    val = val.replace(/'/g, "&apos;");
    val = val.replace(/(;|%)/g, "");
    val = val.replace(/(script|alert|cookie)/gi, "");
    val = val.replace(/(select|union|insert|update|delete|drop|#|\/\*|\*\/|\\)/gi, "");

    return val;
}

</script>

<form name="payForm" id="payForm" method="post" action="Order_point_Process_nice.php">
    <input type="hidden" name="PayMethod" value="CARD,BANK,VBANK">
    <input type="hidden" name="GoodsName" value="<?php echo $goodsName; ?>">
    <input type="hidden" name="Amt" value="<?php echo $price; ?>">
    <input type="hidden" name="MID" value="<?php echo $MID; ?>">
    <input type="hidden" name="Moid" value="<?php echo $moid; ?>">
    <input type="hidden" name="BuyerName" value="<?php echo $buyerName; ?>">
    <input type="hidden" name="BuyerEmail" value="<?php echo $buyerEmail; ?>">
    <input type="hidden" name="BuyerTel" value="<?php echo $buyerTel; ?>">
    <input type="hidden" name="ReturnURL" value="<?php echo $returnURL; ?>">
    <input type="hidden" name="TransType" value="0"/>
    <input type="hidden" name="CharSet" value="UTF-8"/>
    <input type="hidden" name="EdiDate" value="<?php echo $ediDate; ?>"/>
    <input type="hidden" name="SignData" value="<?php echo $hashString; ?>"/>

    <input type="hidden" name="Mcompany" value="">
    <input type="hidden" name="post1" value="">
    <input type="hidden" name="post2" value="">
    <input type="hidden" name="Madd" value="">
    <input type="hidden" name="hp1" value="">
    <input type="hidden" name="hp2" value="">
    <input type="hidden" name="hp3" value="">
    <input type="hidden" name="SendItem" value="">
    <input type="hidden" name="UserId" value="<?php echo $idCode; ?>">
    <input type="hidden" name="Mname" value="">
    <input type="hidden" name="tel1" value="">
    <input type="hidden" name="tel2" value="">
    <input type="hidden" name="tel3" value="">
    <input type="hidden" name="Memail" value="">
    <input type="hidden" name="f_point" value="">
</form>