session_id("dext5editor");
session_start();
/**
* @File : login_excute.php
* @Function : 관리자 시스템 로그인 페이지
* @Author : Dext5 Editor 개발팀
* @Created : 2013.09.13
* @UpdateHistory
* ===================================
* Revision 1.0 2013.09.13 Dext5 Editor 개발팀 최초작성
* ===================================
* Copyright(c) 2013 by RAONWIZ Corp. All Rights Reserved.
*/
include "common_function.php";
$id = nullCheck($_REQUEST["id"]);
$password = nullCheck($_REQUEST["password"]);
$xml_path = realpath('../../config/dext_editor.xml');
$xml_string = file_get_contents($xml_path);
$xml = simplexml_load_string($xml_string);
$product_key = $xml->license->product_key;
$save_password = "******";
$txt_path = realpath($product_key . '.txt');
if (is_file($txt_path)) {
$txt_string = file_get_contents($txt_path);
$save_password = $txt_string;
}
$result = "";
$message = "";
if ($id != "admin") {
$result = "1";
$message = "아이디가 일치하지 않습니다.";
//Check for nullness
function nullCheck($string, $item)
{
global $errors;
if (empty($string)) {
$error++;
echo '<p class="error">No ' . $item . ' detected.</p>';
}
}
//performing the check
nullCheck($clientid, 'Client ID');
nullCheck($clientname, 'Client Name');
nullCheck($prjqual, 'Quality');
nullCheck($prjprice, 'Price');
nullCheck($prjpages, 'Pags');
nullCheck($prjlayout, 'Layout');
if ($errors === 0) {
echo 'Run Query';
$exptype = $prjqual . ' ' . $prjtype . ' PC';
$expnotes = "Pages: {$prjpages}." . "\r\n";
$expnotes .= "Layout: {$prjlayout}." . "\r\n";
$expnotes .= "--- Client Notes ---" . "\r\n";
$expnotes .= "{$prjnotes}" . "\r\n";
$expnotes .= "--- Admin Notes ---" . "\r\n";
$newprjqry = "INSERT INTO tbl_projects (\n\t\t\t\t\t\t\t\t\tclientname,\n\t\t\t\t\t\t\t\t\tclientid,\n\t\t\t\t\t\t\t\t\ttype,\n\t\t\t\t\t\t\t\t\tprice,\n\t\t\t\t\t\t\t\t\tadminid,\n\t\t\t\t\t\t\t\t\tadminname,\n\t\t\t\t\t\t\t\t\tstage,\n\t\t\t\t\t\t\t\t\tnotes,\n\t\t\t\t\t\t\t\t\tfinished,\n\t\t\t\t\t\t\t\t\tfinishday,\n\t\t\t\t\t\t\t\t\tfinishmonth,\n\t\t\t\t\t\t\t\t\tfinishyear,\n\t\t\t\t\t\t\t\t\twlength\n\t\t\t\t\t\t\t\t) VALUES (\n\t\t\t\t\t\t\t\t\t'{$clientname}',\n\t\t\t\t\t\t\t\t\t'{$clientid}',\n\t\t\t\t\t\t\t\t\t'Website',\n\t\t\t\t\t\t\t\t\t'{$prjprice}',\n\t\t\t\t\t\t\t\t\t'0',\n\t\t\t\t\t\t\t\t\t'',\n\t\t\t\t\t\t\t\t\t'0',\n\t\t\t\t\t\t\t\t\t'{$expnotes}',\n\t\t\t\t\t\t\t\t\t'0',\n\t\t\t\t\t\t\t\t\t'0',\n\t\t\t\t\t\t\t\t\t'0',\n\t\t\t\t\t\t\t\t\t'0',\n\t\t\t\t\t\t\t\t\t'0'\n\t\t\t\t\t\t\t\t)";
if (mysql_query($newprjqry)) {
echo '<p> The Website has been listed.</p>';
}
}
} else {
echo '<form action="/newwebsite.php" method="post">
if ($stmt != null) {
mysqli_stmt_bind_param($stmt, "i", $charid);
mysqli_stmt_execute($stmt);
mysqli_stmt_bind_result($stmt, $bookid, $title);
while (mysqli_stmt_fetch($stmt)) {
array_push($bookids, htmlspecialchars($bookid));
array_push($booktitles, htmlspecialchars($title));
}
$out = $out . showAddBooksForm($charid, $cname, $bookids, $booktitles);
mysqli_stmt_close($stmt);
}
break;
case 8:
nullCheck($charid);
nullCheck($cname);
nullCheck($bookid);
connect($db);
$bookids = array();
$booktitles = array();
$bookid = mysqli_real_escape_string($db, $bookid);
$charid = mysqli_real_escape_string($db, $charid);
$cname = mysqli_real_escape_string($db, $cname);
$stmt = mysqli_prepare($db, "insert into appears set appearsid='', bookid=?,characterid=?");
try {
if ($stmt != null) {
mysqli_stmt_bind_param($stmt, "ii", $bookid, $charid);
mysqli_stmt_execute($stmt);
mysqli_stmt_close($stmt);
}
} catch (Exception $e) {
print "<b>Some error Occured while inserting";
$source_viewtype = nullCheck($_req[source_viewtype]); $user_css_url = nullCheck($_req[user_css_url]); $xhtml_value = nullCheck($_req[xhtml_value]); $view_mode_auto_height = nullCheck($_req[view_mode_auto_height]); $system_title = nullCheck($_req[system_title]); $table_auto_adjust = nullCheck($_req[table_auto_adjust]); $develop_langage = nullCheck($_req[develop_langage]); $handler_url = nullCheck($_req[handler_url]); $server_domain = nullCheck($_req[server_domain]); $to_save_path_url = nullCheck($_req[to_save_path_url]); $save_foldername_rule = nullCheck($_req[save_foldername_rule]); $save_filename_rule = nullCheck($_req[save_filename_rule]); $image_convert_format = nullCheck($_req[image_convert_format]); $image_convert_width = nullCheck($_req[image_convert_width]); $image_convert_height = nullCheck($_req[image_convert_height]); $image_auto_fit = nullCheck($_req[image_auto_fit]); $xml_code .= "\n"; $xml_code = "<?xml version=\"1.0\" encoding=\"utf-8\" ?>\n"; $xml_code .= "<dext5>\n"; $xml_code .= "<license>\n"; $xml_code .= "<product_key>" . $product_key . "</product_key>\n"; $xml_code .= "<license_key>" . $license_key . "</license_key>\n"; $xml_code .= "<plugin_use>" . $plugin_use . "</plugin_use>\n"; $xml_code .= "<mime_use>" . $mime_use . "</mime_use>\n"; //$xml_code .= "<license_plugin>".$license_plugin."</license_plugin>\n"; //$xml_code .= "<plugin_version>".$plugin_version."</plugin_version>\n"; $xml_code .= "<print_preview>" . $print_preview . "</print_preview>\n"; $xml_code .= "<print_header>" . $print_header . "</print_header>\n"; $xml_code .= "<print_footer>" . $print_footer . "</print_footer>\n"; $xml_code .= "</license>\n"; $xml_code .= "<xss_protection>\n";
<?php
/**
* @File : login_excute.php
* @Function : 관리자 시스템 로그인 페이지
* @Author : Dext5 Editor 개발팀
* @Created : 2013.09.13
* @UpdateHistory
* ===================================
* Revision 1.0 2013.09.13 Dext5 Editor 개발팀 최초작성
* ===================================
* Copyright(c) 2013 by RAONWIZ Corp. All Rights Reserved.
*/
include "common_function.php";
$password = nullCheck($_REQUEST["password"]);
$new_pw = nullCheck($_REQUEST["new_pw"]);
$xml_path = realpath('../../config/dext_editor.xml');
$xml_string = file_get_contents($xml_path);
$xml = simplexml_load_string($xml_string);
$product_key = $xml->license->product_key;
$save_password = "******";
$txt_path = realpath($product_key . '.txt');
if (is_file($txt_path)) {
$txt_string = file_get_contents($txt_path);
$save_password = $txt_string;
}
$result = "";
$message = "";
if ($password != $save_password) {
$result = "2";
$message = "비밀번호가 일치하지 않습니다.";
nullCheck($clientname, 'Client Name');
nullCheck($prjtype, 'Type');
nullCheck($prjqual, 'Quality');
nullCheck($prjprice, 'Price');
nullCheck($prjos, 'Operating System');
nullCheck($prjcpu, 'CPU');
nullCheck($prjgpu, 'GPU');
nullCheck($prjram, 'RAM');
nullCheck($prjosdisk, 'OS Drive');
nullCheck($prjstdisk, 'Storage Drive');
nullCheck($prjnetwork, 'network');
nullCheck($prjbluetooth, 'bluetooth');
nullCheck($prjwebcam, 'webcam');
nullCheck($prjheadset, 'headset');
nullCheck($prjmonitor, 'monitor');
nullCheck($prjspeakers, 'speakers');
if ($errors === 0) {
echo 'Run Query';
$exptype = $prjqual . ' ' . $prjtype . ' PC';
$expnotes = "CPU: {$prjcpu}." . "\r\n";
$expnotes .= "GPU: {$prjgpu}." . "\r\n";
$expnotes .= "RAM: {$prjram} GB." . "\r\n";
$expnotes .= "OS: {$prjos}." . "\r\n";
$expnotes .= "OS Drive: {$prjosdisk}." . "\r\n";
$expnotes .= "Storage: {$prjstdisk}." . "\r\n";
$expnotes .= "Network: {$prjcnetwork}." . "\r\n";
$expnotes .= "WebCam: {$prjwebcam}." . "\r\n";
$expnotes .= "Headset: {$prjheadset}." . "\r\n";
$expnotes .= "Monitor: {$prjmonitor}." . "\r\n";
$expnotes .= "Speakers: {$prjspeakers}." . "\r\n";
$expnotes .= "--- Client Notes ---" . "\r\n";
