1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
|
<?
include("./_common.php");
include("category/common.php");
$adm_info = admin_member_info();
if(!($adm_info['admin_id']=='csh' || $adm_info['admin_id']=='osm' || $adm_info['admin_id']=='psw' || $adm_info['admin_id']=='mijin' || $adm_info['admin_id']=='hjw' || $adm_info['admin_id']=='gyu')){
echo "<script>alert('Á¢±ÙÇÏ½Ç ±ÇÇÑÀÌ ¾ø½À´Ï´Ù.'); window.history.go(-1);</script>"; exit;
}
if( $mode == "insert"){
$pwd1 = $admin_passwd;
$pwd_alpha = preg_replace("/[^A-Za-z]/","",$pwd1);
$pwd_num = preg_replace("/[^0-9]/","",$pwd1);
if(strlen($pwd_alpha)==0 || strlen($pwd_num)==0){
echo "<script>alert('ºñ¹Ð¹øÈ£´Â ¿µ¹®ÀÚ+¼ýÀÚÁ¶ÇÕÀ¸·Î ÀÔ·ÂÇØÁֽñ⠹ٶø´Ï´Ù.');window.history.go(-1);</script>"; exit;
}
if(strlen($pwd1)<10 || strlen($pwd1)>15){
echo "<script>alert('ºñ¹Ð¹øÈ£´Â 10ÀÚ¸®~15ÀÚ¸®¸¦ ÀÔ·ÂÇØÁֽñ⠹ٶø´Ï´Ù.');window.history.go(-1);</script>"; exit;
}
if(preg_match("/{$admin_id}/",$pwd1,$matchs)){
echo "<script>alert('ºñ¹Ð¹øÈ£¿¡ ¾ÆÀ̵𰡠Æ÷ÇԵǾî ÀÖ½À´Ï´Ù. ´Ù¸¥ºñ¹Ð¹øÈ£¸¦ ÀÔ·ÂÇϽñ⠹ٶø´Ï´Ù. : {$matchs[0]}');window.history.go(-1);</script>"; exit;
}
if(preg_match("/qwer/",$pwd1,$matchs)){
echo "<script>alert('ºñ¹Ð¹øÈ£¿¡ ¼øÂ÷¹®ÀÚ°¡ ÀÖ½À´Ï´Ù. ´Ù¸¥ºñ¹Ð¹øÈ£¸¦ ÀÔ·ÂÇϽñ⠹ٶø´Ï´Ù. : {$matchs[0]}');window.history.go(-1);</script>"; exit;
}
if(preg_match("/1234/",$pwd1,$matchs)){
echo "<script>alert('ºñ¹Ð¹øÈ£¿¡ ¼øÂ÷¹øÈ£°¡ ÀÖ½À´Ï´Ù. ´Ù¸¥ºñ¹Ð¹øÈ£¸¦ ÀÔ·ÂÇϽñ⠹ٶø´Ï´Ù. : {$matchs[0]}');window.history.go(-1);</script>"; exit;
}
$admin_passwd2 = sha1($admin_passwd);
$rgst_dttm = date("Y-m-d H:i:s",time());
$psn_rwed = "";
if($psn_r=='1'){ $psn_rwed .= "1"; } else { $psn_rwed .= "0"; }
if($psn_w=='1'){ $psn_rwed .= "1"; } else { $psn_rwed .= "0"; }
if($psn_e=='1'){ $psn_rwed .= "1"; } else { $psn_rwed .= "0"; }
if($psn_d=='1'){ $psn_rwed .= "1"; } else { $psn_rwed .= "0"; }
if($psn_auth=='0'){ $psn_rwed = "0000"; }
$insertQry = " insert into admin values
('$admin_id', '', '$admin_passwd2','','".date("Ymd",time())."', '$admin_name', '$admin_team',
'$rgst_dttm' ,'0','$psn_auth', '$psn_rwed','$ext_ip')";
mysql_query($insertQry);
$sel = "select * from admin where admin_id = '$admin_id' ";
$result = mysql_query($sel);
$row = mysql_fetch_array($result);
admin_psn_log($admin_id,$old_info, $row); // °èÁ¤½Å±Ô
?>
<script>
parent.location.href = 'adminBoard.php?menu=<?=$menu?>&sub=<?=$sub?>';
</script>
<?
}
if($mode == "edit" && $admin_id !== ""){
$sel = "select * from admin where admin_id = '$admin_id' ";
$old_info = mysql_fetch_array(mysql_query($sel));
if($admin_passwd!=''){
$admin_passwd2 = sha1($admin_passwd);
$pwd1 = $admin_passwd;
$sql = "select * from admin where admin_id = '{$admin_id}' ";
$res = mysql_query($sql);
$info = mysql_fetch_array($res);
$old_password = $info['admin_passwd2'];
if($old_password==$admin_passwd2){
echo "<script>alert('ÀÌÀüÆнº¿öµå¿Í µ¿ÀÏÇÕ´Ï´Ù.');window.history.go(-1);</script>"; exit;
}
$pwd_alpha = preg_replace("/[^A-Za-z]/","",$pwd1);
$pwd_num = preg_replace("/[^0-9]/","",$pwd1);
if(strlen($pwd_alpha)==0 || strlen($pwd_num)==0){
echo "<script>alert('ºñ¹Ð¹øÈ£´Â ¿µ¹®ÀÚ+¼ýÀÚÁ¶ÇÕÀ¸·Î ÀÔ·ÂÇØÁֽñ⠹ٶø´Ï´Ù.');window.history.go(-1);</script>"; exit;
}
if(strlen($pwd1)<10 || strlen($pwd1)>15){
echo "<script>alert('ºñ¹Ð¹øÈ£´Â 10ÀÚ¸®~15ÀÚ¸®¸¦ ÀÔ·ÂÇØÁֽñ⠹ٶø´Ï´Ù.');window.history.go(-1);</script>"; exit;
}
if(preg_match("/{$admin_id}/",$pwd1,$matchs)){
echo "<script>alert('ºñ¹Ð¹øÈ£¿¡ ¾ÆÀ̵𰡠Æ÷ÇԵǾî ÀÖ½À´Ï´Ù. ´Ù¸¥ºñ¹Ð¹øÈ£¸¦ ÀÔ·ÂÇϽñ⠹ٶø´Ï´Ù. : {$matchs[0]}');window.history.go(-1);</script>"; exit;
}
if(preg_match("/qwer/",$pwd1,$matchs)){
echo "<script>alert('ºñ¹Ð¹øÈ£¿¡ ¼øÂ÷¹®ÀÚ°¡ ÀÖ½À´Ï´Ù. ´Ù¸¥ºñ¹Ð¹øÈ£¸¦ ÀÔ·ÂÇϽñ⠹ٶø´Ï´Ù. : {$matchs[0]}');window.history.go(-1);</script>"; exit;
}
if(preg_match("/1234/",$pwd1,$matchs)){
echo "<script>alert('ºñ¹Ð¹øÈ£¿¡ ¼øÂ÷¹øÈ£°¡ ÀÖ½À´Ï´Ù. ´Ù¸¥ºñ¹Ð¹øÈ£¸¦ ÀÔ·ÂÇϽñ⠹ٶø´Ï´Ù. : {$matchs[0]}');window.history.go(-1);</script>"; exit;
}
$add_update = " admin_passwd = '', admin_passwd2 = '$admin_passwd2', admin_passwd2_old = '$old_password', admin_passdate = '".date("Ymd")."', ";
}
$psn_rwed = "";
if($psn_r=='1'){ $psn_rwed .= "1"; } else { $psn_rwed .= "0"; }
if($psn_w=='1'){ $psn_rwed .= "1"; } else { $psn_rwed .= "0"; }
if($psn_e=='1'){ $psn_rwed .= "1"; } else { $psn_rwed .= "0"; }
if($psn_d=='1'){ $psn_rwed .= "1"; } else { $psn_rwed .= "0"; }
if($psn_auth=='0'){ $psn_rwed = "0000"; }
$updateQry = " update admin SET
$add_update
admin_name = '$admin_name',
admin_team = '$admin_team',
psn_auth = '$psn_auth',
psn_rwed = '$psn_rwed',
ext_ip = '$ext_ip'
WHERE admin_id = '$admin_id'
";
mysql_query($updateQry);
$sel = "select * from admin where admin_id = '$admin_id' ";
$new_info = mysql_fetch_array(mysql_query($sel));
admin_psn_log($admin_id,$old_info, $new_info); // ±ÇÇÑ º¯°æ
?>
<script>
//parent.location.href = 'develBoardMody.php?menu=<?=$menu?>&sub=<?=$sub?>&uid=<?=$uid;?>';
alert("¼öÁ¤ µÇ¾ú½À´Ï´Ù.");
parent.location.href = 'adminBoard.php?menu=<?=$menu?>&sub=<?=$sub?>';
</script>
<?
}
if($exCode == "alldel"){
for ($i = 0; $i < count( $develForm ); $i++) {
$sel = "select * from admin where admin_id = '$develForm[$i]' ";
$row = mysql_fetch_array(mysql_query($sel));
$alldel = " delete from admin where admin_id = '$develForm[$i]' ";
MYSQL_QUERY($alldel);
admin_psn_log($develForm[$i],$row, $new_info); // °èÁ¤ ¸»¼Ò
}
?>
<script>
parent.location.href = 'adminBoard.php?menu=<?=$menu?>&sub=<?=$sub?>';
</script>
<?
}
?>
|