Inicio Explorar Ayuda
Registro Iniciar sesión
mo0647
/
echajoa
1
0
Fork 0
Archivos Incidencias 0 Pull Requests 0 Wiki
Árbol: 34ab4db5bc
Ramas Etiquetas
echajoa
/
mypage
/
dealer_proc.php

dealer_proc.php 36 KB
Histórico Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091929394959697989910010110210310410510610710810911011111211311411511611711811912012112212312412512612712812913013113213313413513613713813914014114214314414514614714814915015115215315415515615715815916016116216316416516616716816917017117217317417517617717817918018118218318418518618718818919019119219319419519619719819920020120220320420520620720820921021121221321421521621721821922022122222322422522622722822923023123223323423523623723823924024124224324424524624724824925025125225325425525625725825926026126226326426526626726826927027127227327427527627727827928028128228328428528628728828929029129229329429529629729829930030130230330430530630730830931031131231331431531631731831932032132232332432532632732832933033133233333433533633733833934034134234334434534634734834935035135235335435535635735835936036136236336436536636736836937037137237337437537637737837938038138238338438538638738838939039139239339439539639739839940040140240340440540640740840941041141241341441541641741841942042142242342442542642742842943043143243343443543643743843944044144244344444544644744844945045145245345445545645745845946046146246346446546646746846947047147247347447547647747847948048148248348448548648748848949049149249349449549649749849950050150250350450550650750850951051151251351451551651751851952052152252352452552652752852953053153253353453553653753853954054154254354454554654754854955055155255355455555655755855956056156256356456556656756856957057157257357457557657757857958058158258358458558658758858959059159259359459559659759859960060160260360460560660760860961061161261361461561661761861962062162262362462562662762862963063163263363463563663763863964064164264364464564664764864965065165265365465565665765865966066166266366466566666766866967067167267367467567667767867968068168268368468568668768868969069169269369469569669769869970070170270370470570670770870971071171271371471571671771871972072172272372472572672772872973073173273373473573673773873974074174274374474574674774874975075175275375475575675775875976076176276376476576676776876977077177277377477577677777877978078178278378478578678778878979079179279379479579679779879980080180280380480580680780880981081181281381481581681781881982082182282382482582682782882983083183283383483583683783883984084184284384484584684784884985085185285385485585685785885986086186286386486586686786886987087187287387487587687787887988088188288388488588688788888989089189289389489589689789889990090190290390490590690790890991091191291391491591691791891992092192292392492592692792892993093193293393493593693793893994094194294394494594694794894995095195295395495595695795895996096196296396496596696796896997097197297397497597697797897998098198298398498598698798898999099199299399499599699799899910001001100210031004100510061007100810091010101110121013101410151016101710181019102010211022102310241025102610271028102910301031103210331034103510361037103810391040104110421043104410451046104710481049105010511052 
  1. <?php
    2. 

  2. 

  3. 	include $_SERVER["DOCUMENT_ROOT"].'/common/lib/comm.php';
    4. 

  4. 

  5. 	$table_name = "dealer_master";
    6. 

  6. 

  7. 	$PageNo = trim(avoid_crack($_REQUEST["PageNo"]));
    8. 

  8. 

  9. 	$mode = trim(avoid_crack($_POST["mode"]));
    10. 

  10. 

  11. 	$cd_dealer  = trim(avoid_crack($_POST["cd_dealer"]));
    12. 

  12. 	$cd_dealerid  = trim(avoid_crack($_POST["cd_dealerid"]));
    13. 

  13. 	$cd_dealer_p  = trim(avoid_crack($_POST["cd_dealer_p"]));
    14. 

  14. 	$nm_pass  = trim(avoid_crack($_POST["nm_pass"]));
    15. 

  15. 	$ds_type  = trim(avoid_crack($_POST["ds_type"]));
    16. 

  16. 	$ds_usertype  = trim(avoid_crack($_POST["ds_usertype"]));
    17. 

  17. 	$ds_level  = trim(avoid_crack($_POST["ds_level"]));
    18. 

  18. 	$nm_company  = trim(avoid_crack($_POST["nm_company"]));
    19. 

  19. 	$nm_name  = trim(avoid_crack($_POST["nm_name"]));
    20. 

  20. 	$nm_birth  = trim(avoid_crack($_POST["nm_birth"]));
    21. 

  21. 	$nm_tel_01  = trim(avoid_crack($_POST["nm_tel_01"]));
    22. 

  22. 	$nm_tel_02  = trim(avoid_crack($_POST["nm_tel_02"]));
    23. 

  23. 	$nm_tel_03  = trim(avoid_crack($_POST["nm_tel_03"]));
    24. 

  24. 	$nm_hp_01  = trim(avoid_crack($_POST["nm_hp_01"]));
    25. 

  25. 	$nm_hp_02  = trim(avoid_crack($_POST["nm_hp_02"]));
    26. 

  26. 	$nm_hp_03  = trim(avoid_crack($_POST["nm_hp_03"]));
    27. 

  27. 	$nm_fax_01  = trim(avoid_crack($_POST["nm_fax_01"]));
    28. 

  28. 	$nm_fax_02  = trim(avoid_crack($_POST["nm_fax_02"]));
    29. 

  29. 	$nm_fax_03  = trim(avoid_crack($_POST["nm_fax_03"]));
    30. 

  30. 	$nm_email  = trim(avoid_crack($_POST["nm_email"]));
    31. 

  31. 	$nm_zip  = trim(avoid_crack($_POST["nm_zip"]));
    32. 

  32. 	$nm_addr  = trim(avoid_crack($_POST["nm_addr"]));
    33. 

  33. 	$nm_addr_sub  = trim(avoid_crack($_POST["nm_addr_sub"]));
    34. 

  34. 	$nm_etc_01  = trim(avoid_crack($_POST["nm_etc_01"]));
    35. 

  35. 	$nm_etc_02  = trim(avoid_crack($_POST["nm_etc_02"]));
    36. 

  36. 	$nm_etc_03  = trim(avoid_crack($_POST["nm_etc_03"]));
    37. 

  37. 	$ds_status  = trim(avoid_crack($_POST["ds_status"]));
    38. 

  38. 	$nm_company_biz  = trim(avoid_crack($_POST["nm_company_biz"]));
    39. 

  39. 	$nm_name_biz  = trim(avoid_crack($_POST["nm_name_biz"]));
    40. 

  40. 	$nm_no_biz  = trim(avoid_crack($_POST["nm_no_biz"]));
    41. 

  41. 	$nm_date_biz  = trim(avoid_crack($_POST["nm_date_biz"]));
    42. 

  42. 	$nm_type_biz  = trim(avoid_crack($_POST["nm_type_biz"]));
    43. 

  43. 	$nm_condition_biz  = trim(avoid_crack($_POST["nm_condition_biz"]));
    44. 

  44. 	$nm_tel_biz_01  = trim(avoid_crack($_POST["nm_tel_biz_01"]));
    45. 

  45. 	$nm_tel_biz_02  = trim(avoid_crack($_POST["nm_tel_biz_02"]));
    46. 

  46. 	$nm_tel_biz_03  = trim(avoid_crack($_POST["nm_tel_biz_03"]));
    47. 

  47. 	$nm_hp_biz_01  = trim(avoid_crack($_POST["nm_hp_biz_01"]));
    48. 

  48. 	$nm_hp_biz_02  = trim(avoid_crack($_POST["nm_hp_biz_02"]));
    49. 

  49. 	$nm_hp_biz_03  = trim(avoid_crack($_POST["nm_hp_biz_03"]));
    50. 

  50. 	$nm_fax_biz_01  = trim(avoid_crack($_POST["nm_fax_biz_01"]));
    51. 

  51. 	$nm_fax_biz_02  = trim(avoid_crack($_POST["nm_fax_biz_02"]));
    52. 

  52. 	$nm_fax_biz_03  = trim(avoid_crack($_POST["nm_fax_biz_03"]));
    53. 

  53. 	$nm_email_biz  = trim(avoid_crack($_POST["nm_email_biz"]));
    54. 

  54. 	$nm_zip_biz  = trim(avoid_crack($_POST["nm_zip_biz"]));
    55. 

  55. 	$nm_addr_biz  = trim(avoid_crack($_POST["nm_addr_biz"]));
    56. 

  56. 	$nm_addr_sub_biz  = trim(avoid_crack($_POST["nm_addr_sub_biz"]));
    57. 

  57. 	$ds_company_bp1 = trim(avoid_crack($_POST["ds_company_bp1"]));
    58. 

  58. 	$ds_branch1 = trim(avoid_crack($_POST["ds_branch1"]));
    59. 

  59. 	$ds_company_bp2 = trim(avoid_crack($_POST["ds_company_bp2"]));
    60. 

  60. 	$ds_branch2 = trim(avoid_crack($_POST["ds_branch2"]));
    61. 

  61. 	$ds_company_bp3 = trim(avoid_crack($_POST["ds_company_bp3"]));
    62. 

  62. 	$ds_branch3 = trim(avoid_crack($_POST["ds_branch3"]));
    63. 

  63. //	$nm_area  = trim(avoid_crack($_POST["nm_area"]));
    64. 

  64. if ($mode == "UpdateDealer"){
    65. 

  65. 	$nm_area  = trim(avoid_crack(implode(",",$_POST["nm_area"])));
    66. 

  66. }else{
    67. 

  67. 	$nm_area  = trim(avoid_crack($_POST["nm_area"]));
    68. 

  68. }
    69. 

  69. 	$nm_title  = trim(avoid_crack($_POST["nm_title"]));
    70. 

  70. 	$nm_file  = trim(avoid_crack($_POST["nm_file"]));
    71. 

  71. 	$nm_etc  = trim(avoid_crack($_POST["nm_etc"]));
    72. 

  72. 	$dt_insert  = trim(avoid_crack($_POST["dt_insert"]));
    73. 

  73. 	$nm_insert  = trim(avoid_crack($_POST["nm_insert"]));
    74. 

  74. 	$dt_update  = trim(avoid_crack($_POST["dt_update"]));
    75. 

  75. 	$nm_update  = trim(avoid_crack($_POST["nm_update"]));
    76. 

  76. 	$ds_delind  = trim(avoid_crack($_POST["ds_delind"]));
    77. 

  77. 

  78. 	$cd_sale  = trim(avoid_crack($_POST["cd_sale"]));
    79. 

  79. 	$nm_price  = trim(avoid_crack($_POST["nm_price"]));
    80. 

  80. 	$nm_score_postscript  = trim(avoid_crack($_POST["nm_score_postscript"]));
    81. 

  81. 	$nm_cont_postscript  = trim(avoid_crack($_POST["nm_cont_postscript"]));
    82. 

  82. 

  83. //	$cd_procid = $_SESSION[admin_cd_dealerid];
    84. 

  84. 

  85. 

  86. //	$PageNo = trim(avoid_crack($_POST["PageNo"]));
    87. 

  87. 

  88. 	$upload_path =  $_SERVER['DOCUMENT_ROOT'].UPLOAD_PATH."dealer/";
    89. 

  89. 

  90. 	switch($mode) {
    91. 

  91. 	//저장하기
    92. 

  92. 	case "Add" :
    93. 

  93. 

  94. 		$s_cd_dealer = $_SESSION[s_cd_dealer];
    95. 

  95. 

  96. 		$_whereis = " ds_delind='N' And ds_type='D1' And cd_dealer_p = '". $s_cd_dealer . "'";
    97. 

  97. 

  98. 		$table_name = " dealer_master ";
    99. 

  99. 

  100. 		$cnt = $dbCon->getOneDAO("count(*)",$table_name, $_whereis, 1);
    101. 

  101. 		if($cnt>=5) {
    102. 

  102. 			AlertBack("부 관리자는 5명 까지 등록 가능합니다.");
    103. 

  103. 			die();
    104. 

  104. 		}
    105. 

  105. 

  106. 		if (is_uploaded_file($_FILES['nm_file']['tmp_name'])) {
    107. 

  107. 			if($_FILES['nm_file']['size'] > 0 ){
    108. 

  108. 				$upload_file_name = upload($_FILES['nm_file'],$upload_path."nm_file/", 800, array('gif',  'jpeg', 'jpg','png','bmp' ,'ttif'));
    109. 

  109. 				if($upload_file_name==false){
    110. 

  110. 					AlertBack("첨부파일 업로드 실패 하였습니다.");
    111. 

  111. 					die();
    112. 

  112. 				}
    113. 

  113. 			}
    114. 

  114. 		}
    115. 

  115. 

  116. 		$_fields = Array(
    117. 

  117. 				"cd_dealerid" => $cd_dealerid
    118. 

  118. 				, "cd_dealer_p" => $s_cd_dealer
    119. 

  119. 				, "nm_pass" => $nm_pass
    120. 

  120. 				, "ds_type" => $ds_type
    121. 

  121. 				, "ds_usertype" => $ds_usertype
    122. 

  122. 				, "ds_level" => $ds_level
    123. 

  123. 				, "nm_company" => $nm_company
    124. 

  124. 				, "nm_name" => $nm_name
    125. 

  125. 				, "nm_birth" => $nm_birth
    126. 

  126. 				, "nm_tel_01" => $nm_tel_01
    127. 

  127. 				, "nm_tel_02" => $nm_tel_02
    128. 

  128. 				, "nm_tel_03" => $nm_tel_03
    129. 

  129. 				, "nm_hp_01" => $nm_hp_01
    130. 

  130. 				, "nm_hp_02" => $nm_hp_02
    131. 

  131. 				, "nm_hp_03" => $nm_hp_03
    132. 

  132. 				, "nm_fax_01" => $nm_fax_01
    133. 

  133. 				, "nm_fax_02" => $nm_fax_02
    134. 

  134. 				, "nm_fax_03" => $nm_fax_03
    135. 

  135. 				, "nm_email" => $nm_email
    136. 

  136. 				, "nm_zip" => $nm_zip
    137. 

  137. 				, "nm_addr" => $nm_addr
    138. 

  138. 				, "nm_addr_sub" => $nm_addr_sub
    139. 

  139. 				, "nm_etc_01" => $nm_etc_01
    140. 

  140. 				, "nm_etc_02" => $nm_etc_02
    141. 

  141. 				, "nm_etc_03" => $nm_etc_03
    142. 

  142. 				, "ds_status" => $ds_status
    143. 

  143. 				, "nm_company_biz" => $nm_company_biz
    144. 

  144. 				, "nm_name_biz" => $nm_name_biz
    145. 

  145. 				, "nm_no_biz" => $nm_no_biz
    146. 

  146. 				, "nm_date_biz" => $nm_date_biz
    147. 

  147. 				, "nm_type_biz" => $nm_type_biz
    148. 

  148. 				, "nm_condition_biz" => $nm_condition_biz
    149. 

  149. 				, "nm_tel_biz_01" => $nm_tel_biz_01
    150. 

  150. 				, "nm_tel_biz_02" => $nm_tel_biz_02
    151. 

  151. 				, "nm_tel_biz_03" => $nm_tel_biz_03
    152. 

  152. 				, "nm_hp_biz_01" => $nm_hp_biz_01
    153. 

  153. 				, "nm_hp_biz_02" => $nm_hp_biz_02
    154. 

  154. 				, "nm_hp_biz_03" => $nm_hp_biz_03
    155. 

  155. 				, "nm_fax_biz_01" => $nm_fax_biz_01
    156. 

  156. 				, "nm_fax_biz_02" => $nm_fax_biz_02
    157. 

  157. 				, "nm_fax_biz_03" => $nm_fax_biz_03
    158. 

  158. 				, "nm_email_biz" => $nm_email_biz
    159. 

  159. 				, "nm_zip_biz" => $nm_zip_biz
    160. 

  160. 				, "nm_addr_biz" => $nm_addr_biz
    161. 

  161. 				, "nm_addr_sub_biz" => $nm_addr_sub_biz
    162. 

  162. 				, "ds_company_bp1" => $ds_company_bp1
    163. 

  163. 				, "ds_branch1" => $ds_branch1
    164. 

  164. 				, "ds_company_bp2" => $ds_company_bp2
    165. 

  165. 				, "ds_branch2" => $ds_branch2
    166. 

  166. 				, "ds_company_bp3" => $ds_company_bp3
    167. 

  167. 				, "ds_branch3" => $ds_branch3
    168. 

  168. 				, "nm_area" => $nm_area
    169. 

  169. 				, "nm_title" => $nm_title
    170. 

  170. 				, "nm_file" => $upload_file_name
    171. 

  171. 				, "nm_etc" => $nm_etc
    172. 

  172. 				, "dt_insert" => now()
    173. 

  173. 				, "nm_insert" => $nm_insert
    174. 

  174. 				, "dt_update" => now()
    175. 

  175. 				, "nm_update" => $nm_update
    176. 

  176. 				, "ds_delind" =>  "N"
    177. 

  177. 			);
    178. 

  178. 

  179. 		$result  = $dbCon->insertDAO($_fields,$table_name);
    180. 

  180. //echo $result;
    181. 

  181. //echo "<BR>";
    182. 

  182. 		$cd_dealer  = mysql_insert_id();
    183. 

  183. 

  184. 		$sqlPwd="UPDATE dealer_master set nm_pass = password('".$nm_pass."'), cd_dealer_p = '".$s_cd_dealer."' where cd_dealer = '".$cd_dealer."'";
    185. 

  185. 		$result  = $dbCon->query($sqlPwd);
    186. 

  186. //echo $result;
    187. 

  187. //echo "<BR>";
    188. 

  188. //exit;
    189. 

  189. 		if ($result) {
    190. 

  190. 			AlertRedirect("등록에 성공 하였습니다.","dealer_manager.php");
    191. 

  191. 		}else{
    192. 

  192. 			AlertBack("등록 실패 하였습니다.");
    193. 

  193. 		}
    194. 

  194. 

  195. 	break;
    196. 

  196. 

  197. 	//수정하기
    198. 

  198. 	case "Update":
    199. 

  199. 

  200. 		if (is_uploaded_file($_FILES['nm_file']['tmp_name'])) {
    201. 

  201. 			if($_FILES['nm_file']['size'] > 0 ){
    202. 

  202. 				$upload_file_name = upload($_FILES['nm_file'],$upload_path."nm_file/", 800, array('gif',  'jpeg', 'jpg','png','bmp' ,'ttif'));
    203. 

  203. 				if($upload_file_name==false){
    204. 

  204. 					AlertBack("첨부파일 업로드 실패 하였습니다.");
    205. 

  205. 					die();
    206. 

  206. 				}
    207. 

  207. 			}
    208. 

  208. 		}
    209. 

  209. 

  210. 		if ($upload_file_name == ""){
    211. 

  211. 		$_fields = Array(
    212. 

  212. 				 "nm_company" => $nm_company
    213. 

  213. 				, "nm_name" => $nm_name
    214. 

  214. 				, "nm_birth" => $nm_birth
    215. 

  215. 				, "nm_tel_01" => $nm_tel_01
    216. 

  216. 				, "nm_tel_02" => $nm_tel_02
    217. 

  217. 				, "nm_tel_03" => $nm_tel_03
    218. 

  218. 				, "nm_hp_01" => $nm_hp_01
    219. 

  219. 				, "nm_hp_02" => $nm_hp_02
    220. 

  220. 				, "nm_hp_03" => $nm_hp_03
    221. 

  221. 				, "nm_fax_01" => $nm_fax_01
    222. 

  222. 				, "nm_fax_02" => $nm_fax_02
    223. 

  223. 				, "nm_fax_03" => $nm_fax_03
    224. 

  224. 				, "nm_email" => $nm_email
    225. 

  225. 				, "nm_zip" => $nm_zip
    226. 

  226. 				, "nm_addr" => $nm_addr
    227. 

  227. 				, "nm_addr_sub" => $nm_addr_sub
    228. 

  228. 				, "nm_etc_01" => $nm_etc_01
    229. 

  229. 				, "nm_etc_02" => $nm_etc_02
    230. 

  230. 				, "nm_etc_03" => $nm_etc_03
    231. 

  231. 				, "ds_status" => $ds_status
    232. 

  232. 				, "nm_company_biz" => $nm_company_biz
    233. 

  233. 				, "nm_name_biz" => $nm_name_biz
    234. 

  234. 				, "nm_no_biz" => $nm_no_biz
    235. 

  235. 				, "nm_date_biz" => $nm_date_biz
    236. 

  236. 				, "nm_type_biz" => $nm_type_biz
    237. 

  237. 				, "nm_condition_biz" => $nm_condition_biz
    238. 

  238. 				, "nm_tel_biz_01" => $nm_tel_biz_01
    239. 

  239. 				, "nm_tel_biz_02" => $nm_tel_biz_02
    240. 

  240. 				, "nm_tel_biz_03" => $nm_tel_biz_03
    241. 

  241. 				, "nm_hp_biz_01" => $nm_hp_biz_01
    242. 

  242. 				, "nm_hp_biz_02" => $nm_hp_biz_02
    243. 

  243. 				, "nm_hp_biz_03" => $nm_hp_biz_03
    244. 

  244. 				, "nm_fax_biz_01" => $nm_fax_biz_01
    245. 

  245. 				, "nm_fax_biz_02" => $nm_fax_biz_02
    246. 

  246. 				, "nm_fax_biz_03" => $nm_fax_biz_03
    247. 

  247. 				, "nm_email_biz" => $nm_email_biz
    248. 

  248. 				, "nm_zip_biz" => $nm_zip_biz
    249. 

  249. 				, "nm_addr_biz" => $nm_addr_biz
    250. 

  250. 				, "nm_addr_sub_biz" => $nm_addr_sub_biz
    251. 

  251. //				, "ds_company_bp1" => $ds_company_bp1
    252. 

  252. //				, "ds_branch1" => $ds_branch1
    253. 

  253. //				, "ds_company_bp2" => $ds_company_bp2
    254. 

  254. //				, "ds_branch2" => $ds_branch2
    255. 

  255. //				, "ds_company_bp3" => $ds_company_bp3
    256. 

  256. //				, "ds_branch3" => $ds_branch3
    257. 

  257. 				, "nm_area" => $nm_area
    258. 

  258. 				, "nm_title" => $nm_title
    259. 

  259. 				,
    260. 

  260. //				"dt_insert" => now(),
    261. 

  261. //				"nm_insert" => $cd_procid,
    262. 

  262. 				"dt_update" => now(),
    263. 

  263. 				"nm_update" => $cd_procid,
    264. 

  264. 			);
    265. 

  265. 		}else{
    266. 

  266. 		$_fields = Array(
    267. 

  267. 				 "nm_company" => $nm_company
    268. 

  268. 				, "nm_name" => $nm_name
    269. 

  269. 				, "nm_birth" => $nm_birth
    270. 

  270. 				, "nm_tel_01" => $nm_tel_01
    271. 

  271. 				, "nm_tel_02" => $nm_tel_02
    272. 

  272. 				, "nm_tel_03" => $nm_tel_03
    273. 

  273. 				, "nm_hp_01" => $nm_hp_01
    274. 

  274. 				, "nm_hp_02" => $nm_hp_02
    275. 

  275. 				, "nm_hp_03" => $nm_hp_03
    276. 

  276. 				, "nm_fax_01" => $nm_fax_01
    277. 

  277. 				, "nm_fax_02" => $nm_fax_02
    278. 

  278. 				, "nm_fax_03" => $nm_fax_03
    279. 

  279. 				, "nm_email" => $nm_email
    280. 

  280. 				, "nm_zip" => $nm_zip
    281. 

  281. 				, "nm_addr" => $nm_addr
    282. 

  282. 				, "nm_addr_sub" => $nm_addr_sub
    283. 

  283. 				, "nm_etc_01" => $nm_etc_01
    284. 

  284. 				, "nm_etc_02" => $nm_etc_02
    285. 

  285. 				, "nm_etc_03" => $nm_etc_03
    286. 

  286. 				, "ds_status" => $ds_status
    287. 

  287. 				, "nm_company_biz" => $nm_company_biz
    288. 

  288. 				, "nm_name_biz" => $nm_name_biz
    289. 

  289. 				, "nm_no_biz" => $nm_no_biz
    290. 

  290. 				, "nm_date_biz" => $nm_date_biz
    291. 

  291. 				, "nm_type_biz" => $nm_type_biz
    292. 

  292. 				, "nm_condition_biz" => $nm_condition_biz
    293. 

  293. 				, "nm_tel_biz_01" => $nm_tel_biz_01
    294. 

  294. 				, "nm_tel_biz_02" => $nm_tel_biz_02
    295. 

  295. 				, "nm_tel_biz_03" => $nm_tel_biz_03
    296. 

  296. 				, "nm_hp_biz_01" => $nm_hp_biz_01
    297. 

  297. 				, "nm_hp_biz_02" => $nm_hp_biz_02
    298. 

  298. 				, "nm_hp_biz_03" => $nm_hp_biz_03
    299. 

  299. 				, "nm_fax_biz_01" => $nm_fax_biz_01
    300. 

  300. 				, "nm_fax_biz_02" => $nm_fax_biz_02
    301. 

  301. 				, "nm_fax_biz_03" => $nm_fax_biz_03
    302. 

  302. 				, "nm_email_biz" => $nm_email_biz
    303. 

  303. 				, "nm_zip_biz" => $nm_zip_biz
    304. 

  304. 				, "nm_addr_biz" => $nm_addr_biz
    305. 

  305. 				, "nm_addr_sub_biz" => $nm_addr_sub_biz
    306. 

  306. //				, "ds_company_bp1" => $ds_company_bp1
    307. 

  307. //				, "ds_branch1" => $ds_branch1
    308. 

  308. //				, "ds_company_bp2" => $ds_company_bp2
    309. 

  309. //				, "ds_branch2" => $ds_branch2
    310. 

  310. //				, "ds_company_bp3" => $ds_company_bp3
    311. 

  311. //				, "ds_branch3" => $ds_branch3
    312. 

  312. 				, "nm_area" => $nm_area
    313. 

  313. 				, "nm_title" => $nm_title
    314. 

  314. 				, "nm_file" => $upload_file_name
    315. 

  315. 				,
    316. 

  316. //				"dt_insert" => now(),
    317. 

  317. //				"nm_insert" => $cd_procid,
    318. 

  318. 				"dt_update" => now(),
    319. 

  319. 				"nm_update" => $cd_procid,
    320. 

  320. 			);
    321. 

  321. 		}
    322. 

  322. 

  323. 		$result  = $dbCon->updateDAO($_fields,$table_name,"cd_dealer='".$cd_dealer."'");
    324. 

  324. 

  325. 

  326. 		 if($_POST["nm_pass"]){
    327. 

  327. 

  328. 			$sqlPwd="UPDATE dealer_master set nm_pass = password('".$nm_pass."')  where cd_dealer = '".$cd_dealer."'";
    329. 

  329. 			$result  = $dbCon->query($sqlPwd);
    330. 

  330. 		 }
    331. 

  331. 

  332. 		if ($result) {
    333. 

  333. 			AlertRedirect("수정 성공 하였습니다.","dealer_manager.php");
    334. 

  334. 		}else{
    335. 

  335. 			AlertBack("수정 실패 하였습니다.");
    336. 

  336. 		}
    337. 

  337. 	break;
    338. 

  338. 

  339. 	//수정하기
    340. 

  340. 	case "UpdateDealer":
    341. 

  341. 

  342. 		if (is_uploaded_file($_FILES['nm_file']['tmp_name'])) {
    343. 

  343. 			if($_FILES['nm_file']['size'] > 0 ){
    344. 

  344. 				$upload_file_name = upload($_FILES['nm_file'],$upload_path."nm_file/", 800, array('gif',  'jpeg', 'jpg','png','bmp' ,'ttif'));
    345. 

  345. 				if($upload_file_name==false){
    346. 

  346. 					AlertBack("첨부파일 업로드 실패 하였습니다.");
    347. 

  347. 					die();
    348. 

  348. 				}
    349. 

  349. 			}
    350. 

  350. 		}
    351. 

  351. 

  352. 		if ($upload_file_name == ""){
    353. 

  353. 		$_fields = Array(
    354. 

  354. 				 "nm_company" => $nm_company
    355. 

  355. 				, "nm_name" => $nm_name
    356. 

  356. 				, "nm_birth" => $nm_birth
    357. 

  357. 				, "nm_tel_01" => $nm_tel_01
    358. 

  358. 				, "nm_tel_02" => $nm_tel_02
    359. 

  359. 				, "nm_tel_03" => $nm_tel_03
    360. 

  360. 				, "nm_hp_01" => $nm_hp_01
    361. 

  361. 				, "nm_hp_02" => $nm_hp_02
    362. 

  362. 				, "nm_hp_03" => $nm_hp_03
    363. 

  363. 				, "nm_fax_01" => $nm_fax_01
    364. 

  364. 				, "nm_fax_02" => $nm_fax_02
    365. 

  365. 				, "nm_fax_03" => $nm_fax_03
    366. 

  366. 				, "nm_email" => $nm_email
    367. 

  367. 				, "nm_zip" => $nm_zip
    368. 

  368. 				, "nm_addr" => $nm_addr
    369. 

  369. 				, "nm_addr_sub" => $nm_addr_sub
    370. 

  370. 				, "nm_etc_01" => $nm_etc_01
    371. 

  371. 				, "nm_etc_02" => $nm_etc_02
    372. 

  372. 				, "nm_etc_03" => $nm_etc_03
    373. 

  373. //				, "ds_status" => $ds_status
    374. 

  374. 				, "nm_company_biz" => $nm_company_biz
    375. 

  375. 				, "nm_name_biz" => $nm_name_biz
    376. 

  376. 				, "nm_no_biz" => $nm_no_biz
    377. 

  377. 				, "nm_date_biz" => $nm_date_biz
    378. 

  378. 				, "nm_type_biz" => $nm_type_biz
    379. 

  379. 				, "nm_condition_biz" => $nm_condition_biz
    380. 

  380. 				, "nm_tel_biz_01" => $nm_tel_biz_01
    381. 

  381. 				, "nm_tel_biz_02" => $nm_tel_biz_02
    382. 

  382. 				, "nm_tel_biz_03" => $nm_tel_biz_03
    383. 

  383. 				, "nm_hp_biz_01" => $nm_hp_biz_01
    384. 

  384. 				, "nm_hp_biz_02" => $nm_hp_biz_02
    385. 

  385. 				, "nm_hp_biz_03" => $nm_hp_biz_03
    386. 

  386. 				, "nm_fax_biz_01" => $nm_fax_biz_01
    387. 

  387. 				, "nm_fax_biz_02" => $nm_fax_biz_02
    388. 

  388. 				, "nm_fax_biz_03" => $nm_fax_biz_03
    389. 

  389. 				, "nm_email_biz" => $nm_email_biz
    390. 

  390. 				, "nm_zip_biz" => $nm_zip_biz
    391. 

  391. 				, "nm_addr_biz" => $nm_addr_biz
    392. 

  392. 				, "nm_addr_sub_biz" => $nm_addr_sub_biz
    393. 

  393. //				, "ds_company_bp1" => $ds_company_bp1
    394. 

  394. //				, "ds_branch1" => $ds_branch1
    395. 

  395. //				, "ds_company_bp2" => $ds_company_bp2
    396. 

  396. //				, "ds_branch2" => $ds_branch2
    397. 

  397. //				, "ds_company_bp3" => $ds_company_bp3
    398. 

  398. //				, "ds_branch3" => $ds_branch3
    399. 

  399. 				, "nm_area" => $nm_area
    400. 

  400. 				, "nm_title" => $nm_title
    401. 

  401. 				,
    402. 

  402. //				"dt_insert" => now(),
    403. 

  403. //				"nm_insert" => $cd_procid,
    404. 

  404. 				"dt_update" => now(),
    405. 

  405. 				"nm_update" => $cd_procid,
    406. 

  406. 			);
    407. 

  407. 		}else{
    408. 

  408. 		$_fields = Array(
    409. 

  409. 				 "nm_company" => $nm_company
    410. 

  410. 				, "nm_name" => $nm_name
    411. 

  411. 				, "nm_birth" => $nm_birth
    412. 

  412. 				, "nm_tel_01" => $nm_tel_01
    413. 

  413. 				, "nm_tel_02" => $nm_tel_02
    414. 

  414. 				, "nm_tel_03" => $nm_tel_03
    415. 

  415. 				, "nm_hp_01" => $nm_hp_01
    416. 

  416. 				, "nm_hp_02" => $nm_hp_02
    417. 

  417. 				, "nm_hp_03" => $nm_hp_03
    418. 

  418. 				, "nm_fax_01" => $nm_fax_01
    419. 

  419. 				, "nm_fax_02" => $nm_fax_02
    420. 

  420. 				, "nm_fax_03" => $nm_fax_03
    421. 

  421. 				, "nm_email" => $nm_email
    422. 

  422. 				, "nm_zip" => $nm_zip
    423. 

  423. 				, "nm_addr" => $nm_addr
    424. 

  424. 				, "nm_addr_sub" => $nm_addr_sub
    425. 

  425. 				, "nm_etc_01" => $nm_etc_01
    426. 

  426. 				, "nm_etc_02" => $nm_etc_02
    427. 

  427. 				, "nm_etc_03" => $nm_etc_03
    428. 

  428. //				, "ds_status" => $ds_status
    429. 

  429. 				, "nm_company_biz" => $nm_company_biz
    430. 

  430. 				, "nm_name_biz" => $nm_name_biz
    431. 

  431. 				, "nm_no_biz" => $nm_no_biz
    432. 

  432. 				, "nm_date_biz" => $nm_date_biz
    433. 

  433. 				, "nm_type_biz" => $nm_type_biz
    434. 

  434. 				, "nm_condition_biz" => $nm_condition_biz
    435. 

  435. 				, "nm_tel_biz_01" => $nm_tel_biz_01
    436. 

  436. 				, "nm_tel_biz_02" => $nm_tel_biz_02
    437. 

  437. 				, "nm_tel_biz_03" => $nm_tel_biz_03
    438. 

  438. 				, "nm_hp_biz_01" => $nm_hp_biz_01
    439. 

  439. 				, "nm_hp_biz_02" => $nm_hp_biz_02
    440. 

  440. 				, "nm_hp_biz_03" => $nm_hp_biz_03
    441. 

  441. 				, "nm_fax_biz_01" => $nm_fax_biz_01
    442. 

  442. 				, "nm_fax_biz_02" => $nm_fax_biz_02
    443. 

  443. 				, "nm_fax_biz_03" => $nm_fax_biz_03
    444. 

  444. 				, "nm_email_biz" => $nm_email_biz
    445. 

  445. 				, "nm_zip_biz" => $nm_zip_biz
    446. 

  446. 				, "nm_addr_biz" => $nm_addr_biz
    447. 

  447. 				, "nm_addr_sub_biz" => $nm_addr_sub_biz
    448. 

  448. //				, "ds_company_bp1" => $ds_company_bp1
    449. 

  449. //				, "ds_branch1" => $ds_branch1
    450. 

  450. //				, "ds_company_bp2" => $ds_company_bp2
    451. 

  451. //				, "ds_branch2" => $ds_branch2
    452. 

  452. //				, "ds_company_bp3" => $ds_company_bp3
    453. 

  453. //				, "ds_branch3" => $ds_branch3
    454. 

  454. 				, "nm_area" => $nm_area
    455. 

  455. 				, "nm_title" => $nm_title
    456. 

  456. 				, "nm_file" => $upload_file_name
    457. 

  457. 				,
    458. 

  458. //				"dt_insert" => now(),
    459. 

  459. //				"nm_insert" => $cd_procid,
    460. 

  460. 				"dt_update" => now(),
    461. 

  461. 				"nm_update" => $cd_procid,
    462. 

  462. 			);
    463. 

  463. 		}
    464. 

  464. 

  465. 		$result  = $dbCon->updateDAO($_fields,$table_name,"cd_dealer='".$cd_dealer."'");
    466. 

  466. 

  467. 

  468. 		 if($_POST["nm_pass"]){
    469. 

  469. 			$sqlPwd="UPDATE dealer_master set nm_pass = password('".$nm_pass."')  where cd_dealer = '".$cd_dealer."'";
    470. 

  470. 			$result  = $dbCon->query($sqlPwd);
    471. 

  471. 		 }
    472. 

  472. 

  473. 		if ($result) {
    474. 

  474. 			AlertRedirect("수정 성공 하였습니다.","dealer_modify.php");
    475. 

  475. 		}else{
    476. 

  476. 			AlertBack("수정 실패 하였습니다.");
    477. 

  477. 		}
    478. 

  478. 	break;
    479. 

  479. 

  480. 	//입찰하기
    481. 

  481. 	case "Tender" :
    482. 

  482. 

  483. 		$s_cd_dealerid = $_SESSION['s_cd_dealerid'];
    484. 

  484. 		$s_nm_email = $_SESSION['s_nm_email'];
    485. 

  485. 		$s_nm_name = $_SESSION['s_nm_name'];
    486. 

  486. 		$s_nm_hp = $_SESSION['s_nm_hp'];
    487. 

  487. 		$s_ds_type = $_SESSION['s_ds_type'];
    488. 

  488. 		$s_cd_dealer = $_SESSION['s_cd_dealer'];
    489. 

  489. 		$s_cd_dealer_p = $_SESSION['s_cd_dealer_p'];
    490. 

  490. 		$s_nm_area = $_SESSION['s_nm_area'];
    491. 

  491. 

  492. 		$sql = "insert into tender_master(cd_sale,  cd_user,  cd_dealer,  cd_dealer_p,  ds_type,  ds_usertype,  nm_name,  nm_tel,  nm_hp,  nm_email,  nm_price,  nm_cont,  ds_status,  dt_insert,  nm_insert,  dt_update,  nm_update,  ds_delind) SELECT  cd_sale,  cd_user,  $s_cd_dealer cd_dealer,  $s_cd_dealer_p cd_dealer_p,  ds_type,  '$s_ds_type' ds_usertype,  '$s_nm_name' nm_name,  '' nm_tel,  '$s_nm_hp' nm_hp,  '$s_nm_email' nm_email,  $nm_price nm_price, '' nm_cont,  'A0' ds_status,  now() dt_insert,  $s_cd_dealer nm_insert,  now() dt_update,  $s_cd_dealer nm_update,  'N' ds_delind FROM sale_master where cd_sale = '".$cd_sale."'";
    493. 

  493. 

  494. 		$result  = $dbCon->query($sql);
    495. 

  495. 

  496. 		if ($result) {
    497. 

  497. 			AlertRedirect("입찰 되었습니다.","dealer_tender_view.php?cd_sale=$cd_sale&ds_status_sale=E0&ds_status=E0");
    498. 

  498. 

  499. 		 }else{
    500. 

  500. 			AlertRedirect("입찰 실패하였습니다.","dealer_tender_view.php?cd_sale=$cd_sale&ds_status_sale=E0&ds_status=E0");
    501. 

  501. 		 }
    502. 

  502. 	break;
    503. 

  503. 

  504. 

  505. 	//입찰수정하기
    506. 

  506. 	case "TenderModify" :
    507. 

  507. 

  508. 		$s_cd_dealer_p = $_SESSION['s_cd_dealer_p'];
    509. 

  509. 		$s_ds_type = $_SESSION['s_ds_type'];
    510. 

  510. 

  511. 		$cd_sale = trim(avoid_crack($_POST["cd_sale"]));
    512. 

  512. 		$cd_tender = trim(avoid_crack($_POST["cd_tender"]));
    513. 

  513. 		$nm_price = trim(avoid_crack($_POST["nm_price"]));
    514. 

  514. 		$ListPageNo = trim(avoid_crack($_REQUEST["ListPageNo"]));
    515. 

  515. 

  516. 

  517. 		$cd_tender_sql = "select cd_tender, nm_modify_cnt
    518. 

  518. 							, (select ds_status from sale_master s where s.cd_sale = t.cd_sale) as sale_ds_status
    519. 

  519. 							, (select getRemainTime(".LIMIT_TIME_TENDER.", s.dt_approve, now()) from sale_master s where s.cd_sale = t.cd_sale) as time_limit_tender
    520. 

  520. 								from tender_master t
    521. 

  521. 									where t.ds_delind ='N'
    522. 

  522. 										and t.cd_sale = '$cd_sale'
    523. 

  523. 										and t.cd_dealer_p = '$s_cd_dealer_p'
    524. 

  524. 										limit 1";
    525. 

  525. 		// echo $cd_tender_sql;
    526. 

  526. 		// exit;
    527. 

  527. 		$cd_tender_row = mysql_fetch_array(mysql_query($cd_tender_sql));
    528. 

  528. 

  529. 		if($s_ds_type != "D1") {
    530. 

  530. 			AlertBack("부관리자만 입찰 수정 할 수 있습니다.");
    531. 

  531. 		}
    532. 

  532. 		if($cd_tender_row[sale_ds_status] != "E0") {
    533. 

  533. 			AlertBack("입찰중인건만 입찰 수정 할 수 있습니다.");
    534. 

  534. 		}
    535. 

  535. 		if(empty($cd_tender_row[cd_tender])) {
    536. 

  536. 			AlertBack("입찰참여내역이 있는건만 입찰 수정 할 수 있습니다.");
    537. 

  537. 		}
    538. 

  538. 		if($cd_tender_row[nm_modify_cnt] > 2) {
    539. 

  539. 			AlertBack("입찰수정은 최대 3번까지만 가능합니다.");
    540. 

  540. 		}
    541. 

  541. 

  542. 		if($cd_tender_row[time_limit_tender] == "0분") {
    543. 

  543. 			AlertBack("입찰가능시간에만 수정할 수 있습니다.");
    544. 

  544. 		}
    545. 

  545. 		if($_SESSION[s_ds_status_p] != "Z0") {
    546. 

  546. 			AlertBack("승인되지 않은 사용자는 입찰 수정 할 수 없습니다");
    547. 

  547. 		}
    548. 

  548. 

  549. 

  550. 		$sql = "update tender_master set
    551. 

  551. 					nm_price = '$nm_price'
    552. 

  552. 					, nm_modify_cnt = nm_modify_cnt + 1
    553. 

  553. 				where cd_sale = '".$cd_sale."'
    554. 

  554. 					and cd_tender = '".$cd_tender_row['cd_tender']."'
    555. 

  555. 					and cd_dealer_p = '$s_cd_dealer_p'  ";
    556. 

  556. 

  557. 		$result  = $dbCon->query($sql);
    558. 

  558. 

  559. 		if ($result) {
    560. 

  560. 			AlertRedirect("입찰 수정 되었습니다.","dealer_tender_view.php?cd_sale=$cd_sale&ds_status_sale=E0&ds_status=F0&ListPageNo=$ListPageNo");
    561. 

  561. 

  562. 		 }else{
    563. 

  563. 			 AlertBack("입찰 수정 실패하였습니다.");
    564. 

  564. 		 }
    565. 

  565. 	break;
    566. 

  566. 

  567. 	//낙찰하기
    568. 

  568. 	case "TenderSuccess" :
    569. 

  569. 

  570. 		$cd_sale = trim(avoid_crack($_POST["cd_sale"]));
    571. 

  571. 		$cd_tender = trim(avoid_crack($_POST["cd_tender"]));
    572. 

  572. 		$nm_price = trim(avoid_crack($_POST["nm_price"]));
    573. 

  573. 

  574. 		$sql="update tender_master
    575. 

  575. 				set
    576. 

  576. 					ds_status = 'Z0'
    577. 

  577. 					, dt_update = now()
    578. 

  578. 					, nm_update = '$cd_userid'
    579. 

  579. 				WHERE  cd_tender = $cd_tender";
    580. 

  580. 

  581. 		$result  = mysql_query($sql,$connect);
    582. 

  582. 

  583. 

  584. 		$sql="update sale_master
    585. 

  585. 				set
    586. 

  586. 					ds_status = 'Z0'
    587. 

  587. 					, nm_price = '$nm_price'
    588. 

  588. 					, dt_update = now()
    589. 

  589. 					, dt_success = now()
    590. 

  590. 					, nm_update = '$cd_userid'
    591. 

  591. 				WHERE  cd_sale = $cd_sale";
    592. 

  592. 

  593. 		$result  = mysql_query($sql,$connect);
    594. 

  594. 

  595. 		$table_name = " car_master a
    596. 

  596. 						inner join sale_master f on (a.cd_car = f.cd_car)
    597. 

  597. 						left outer join car_model b on (a.cd_model = b.cd_model)
    598. 

  598. 						left outer join car_grade c on (a.cd_grade = c.cd_grade)
    599. 

  599. 						left outer join car_brand d on (a.cd_brand = d.cd_brand)
    600. 

  600. 						left outer join car_model_sub e on (a.cd_model_sub = e.cd_model_sub)";
    601. 

  601. 		$_whereis = "  f.cd_sale = '".$cd_sale."' ";
    602. 

  602. 		$col = $dbCon->selectDAO(" a.cd_brand, a.cd_model, a.cd_grade, b.nm_model, c.nm_grade, d.nm_brand, e.nm_model_sub, f.nm_hp, f.nm_name, a.nm_mileage, f.ds_area, a.nm_regdate_yyyy, a.nm_regdate_mm", $table_name, $_whereis);
    603. 

  603. 

  604. 		$senderKey = "4856a5e128f9289082c884d066f1df198cbb1165";
    605. 

  605. 		$tmpltCode = "complete";
    606. 

  606. 		$resMethod = "PUSH";
    607. 

  607. 		$cur_date = date('Y-m-d H:i:s');
    608. 

  608. 

  609. 

  610. 		$master_sql = "insert into kakao_biztalk set
    611. 

  611. 	                        status = 0
    612. 

  612. 	                        , senderKey = '".$senderKey."'
    613. 

  613. 	                        , tmpltCode = '".$tmpltCode."'
    614. 

  614. 	                        , resMethod = '".$resMethod."'
    615. 

  615. 	                        , send_date = '".$cur_date."'
    616. 

  616. 	                ";
    617. 

  617. 

  618. 	    $master_res = mysql_query($master_sql);
    619. 

  619. 	    $cd_talk = mysql_insert_id();
    620. 

  620. 

  621. 

  622.         //최고 입찰 금액을 가져옴
    623. 

  623.         $r = mysql_query("SELECT t.*, d.nm_company nm_company_dealer, d.nm_name nm_name_dealer, s.ds_status ds_status_sale
    624. 

  624.                             , d1.nm_name nm_name_dealer1
    625. 

  625.                                 FROM dealer_master d
    626. 

  626.                                 inner join tender_master t on (d.cd_dealer = t.cd_dealer_p and t.cd_sale = $cd_sale and t.ds_delind='N' and t.cd_tender = '$cd_tender')
    627. 

  627.                                 inner join dealer_master d1 on (t.cd_dealer = d1.cd_dealer)
    628. 

  628.                                 inner join sale_master s on (t.cd_sale = s.cd_sale)
    629. 

  629.                             ORDER BY cast(t.nm_price as unsigned) desc, t.cd_tender desc
    630. 

  630.                             LIMIT 1");
    631. 

  631. 

  632.         $dealer = mysql_fetch_array($r);
    633. 

  633. 		$contents = $dealer[nm_company_dealer]."님
    634. 

  634. 

  635. $col[nm_brand] $col[nm_model] $col[nm_grade] $col[nm_mileage]km
    636. 

  636. 

  637. $col[nm_regdate_yyyy]년 $col[nm_regdate_mm]월
    638. 

  638. 

  639. 매물이 낙찰 되었습니다.
    640. 

  640. 

  641. 유프로 관리페이지에 접속하셔서 차량정보를
    642. 

  642. 확인하세요!";
    643. 

  643. 

  644. 		// $contents = $col['nm_brand'].' '.$col['nm_model'].' '.$col['nm_grade'].' '.$col['nm_mileage'].'km';
    645. 

  645. 

  646.         //발송 대기 상태로 변경
    647. 

  647.         $recipient_sql = "INSERT INTO kakao_biztalk_recipient set
    648. 

  648.                                 cd_talk = '".$cd_talk."'
    649. 

  649.                                 , phone = '".$dealer[nm_hp]."'
    650. 

  650.                                 , status = '0'
    651. 

  651.                                 , contents = '".$contents."'
    652. 

  652.         ";
    653. 

  653.         // echo $recipient_sql;
    654. 

  654.         mysql_query($recipient_sql);
    655. 

  655. 

  656. 	    //발송대기 상태로 변경
    657. 

  657. 	    mysql_query("update kakao_biztalk set status = '1' where cd_talk = '".$cd_talk."' ");
    658. 

  658. 

  659. 		if ($result) {
    660. 

  660. 			AlertRedirect("낙찰하기 성공하였습니다.","sell_view.php?cd_sale=$cd_sale&ds_status_sale=Z0&ds_status=Z0");
    661. 

  661. 

  662. 		 }else{
    663. 

  663. 			AlertRedirect("낙찰하기 실패하였습니다.","sell_view.php?cd_sale=$cd_sale&ds_status_sale=Z0&ds_status=Z0");
    664. 

  664. 		 }
    665. 

  665. 	break;
    666. 

  666. 

  667. 	//낙찰하기 Nomember
    668. 

  668. 	case "TenderSuccessNomember" :
    669. 

  669. 

  670. 		$cd_sale = trim(avoid_crack($_POST["cd_sale"]));
    671. 

  671. 		$cd_tender = trim(avoid_crack($_POST["cd_tender"]));
    672. 

  672. 		$nm_price = trim(avoid_crack($_POST["nm_price"]));
    673. 

  673. 

  674. 		$nm_name = trim(avoid_crack($_POST["nm_name"]));
    675. 

  675. 		$nm_hp = trim(avoid_crack($_POST["nm_hp"]));
    676. 

  676. 		$nm_number = trim(avoid_crack($_POST["nm_number"]));
    677. 

  677. 

  678. 		$sql="update tender_master
    679. 

  679. 				set
    680. 

  680. 					ds_status = 'Z0'
    681. 

  681. 					, dt_update = now()
    682. 

  682. 					, nm_update = '$cd_userid'
    683. 

  683. 				WHERE  cd_tender = $cd_tender";
    684. 

  684. 

  685. 		$result  = mysql_query($sql,$connect);
    686. 

  686. 

  687. 

  688. 		$sql="update sale_master
    689. 

  689. 				set
    690. 

  690. 					ds_status = 'Z0'
    691. 

  691. 					, nm_price = '$nm_price'
    692. 

  692. 					, dt_update = now()
    693. 

  693. 					, nm_update = '$cd_userid'
    694. 

  694. 				WHERE  cd_sale = $cd_sale";
    695. 

  695. 

  696. 		$result  = mysql_query($sql,$connect);
    697. 

  697. 

  698. 		if ($result) {
    699. 

  699. 			AlertRedirect("낙찰하기 성공하였습니다.","/sell/sell_view_nomember.php?nm_name=$nm_name&nm_hp=$nm_hp&nm_number=$nm_number&ds_status_sale=Z0&ds_status=Z0");
    700. 

  700. 

  701. 		 }else{
    702. 

  702. 			AlertRedirect("낙찰하기 실패하였습니다.","/sell/sell_view_nomember.php?nm_name=$nm_name&nm_hp=$nm_hp&nm_number=$nm_number&ds_status_sale=Z0&ds_status=Z0");
    703. 

  703. 		 }
    704. 

  704. 	break;
    705. 

  705. 

  706. 	//Contract Step 1
    707. 

  707. 	case "ContractStep1" :
    708. 

  708. 

  709. 		$cd_sale = trim(avoid_crack($_POST["cd_sale"]));
    710. 

  710. //		$cd_tender = trim(avoid_crack($_POST["cd_tender"]));
    711. 

  711. 		$ds_status_contract_step1 = trim(avoid_crack($_POST["ds_status_contract_step1"]));
    712. 

  712. 

  713. 		$sql="update sale_master
    714. 

  714. 				set
    715. 

  715. 					ds_status_contract_step1 = '$ds_status_contract_step1'
    716. 

  716. 					, dt_update = now()
    717. 

  717. 					, nm_update = '$cd_userid'
    718. 

  718. 				WHERE  cd_sale = $cd_sale";
    719. 

  719. 

  720. 		$result  = $dbCon->query($sql);
    721. 

  721. 

  722. 		if ($result) {
    723. 

  723. 			AlertRedirect("등록 되었습니다.","dealer_tender_view2.php?cd_sale=$cd_sale");
    724. 

  724. 		}else{
    725. 

  725. 			AlertRedirect("등록 실패하였습니다.","dealer_tender_view2.php?cd_sale=$cd_sale");
    726. 

  726. 		}
    727. 

  727. 	break;
    728. 

  728. 

  729. 	//Contract Step 2
    730. 

  730. 	case "ContractStep2" :
    731. 

  731. 

  732. 		$cd_sale = trim(avoid_crack($_POST["cd_sale"]));
    733. 

  733. //		$cd_tender = trim(avoid_crack($_POST["cd_tender"]));
    734. 

  734. 		$nm_contract_date = trim(avoid_crack($_POST["nm_contract_date"]));
    735. 

  735. 		$ds_status_contract_step2 = "Y";
    736. 

  736. 

  737. 		$sql="update sale_master
    738. 

  738. 				set
    739. 

  739. 					ds_status_contract_step2 = '$ds_status_contract_step2'
    740. 

  740. 					, nm_contract_date = '$nm_contract_date'
    741. 

  741. 					, dt_update = now()
    742. 

  742. 					, nm_update = '$cd_userid'
    743. 

  743. 				WHERE  cd_sale = $cd_sale";
    744. 

  744. 

  745. 		$result  = $dbCon->query($sql);
    746. 

  746. 

  747. 		if ($result) {
    748. 

  748. 			AlertRedirect("등록 되었습니다.","dealer_tender_view2.php?cd_sale=$cd_sale");
    749. 

  749. 		}else{
    750. 

  750. 			AlertRedirect("등록 실패하였습니다.","dealer_tender_view2.php?cd_sale=$cd_sale");
    751. 

  751. 		}
    752. 

  752. 	break;
    753. 

  753. 

  754. 	//Contract Step 3
    755. 

  755. 	case "ContractStep3" :
    756. 

  756. 

  757. 		$cd_sale = trim(avoid_crack($_POST["cd_sale"]));
    758. 

  758. //		$cd_tender = trim(avoid_crack($_POST["cd_tender"]));
    759. 

  759. 		$ds_status_contract = trim(avoid_crack($_POST["ds_status_contract"]));
    760. 

  760. 		$nm_price_final = trim(avoid_crack($_POST["nm_price_final"]));
    761. 

  761. 		$nm_contract_cont_final = trim(avoid_crack($_POST["nm_contract_cont_final"]));
    762. 

  762. 		$nm_contract_fail_reason = trim(avoid_crack($_POST["nm_contract_fail_reason"]));
    763. 

  763. 		$ds_status_contract_step3 = "Y";
    764. 

  764. 

  765. 		if (is_uploaded_file($_FILES['nm_file_chk1']['tmp_name'])) {
    766. 

  766. 			if($_FILES['nm_file_chk1']['size'] > 0 ){
    767. 

  767. 				$upload_file_name_chk1 = upload($_FILES['nm_file_chk1'],$upload_path."contract_step/".$cd_sale."_detail", 800, array('gif',  'jpeg', 'jpg','png','bmp' ,'ttif'));
    768. 

  768. 				if($upload_file_name_chk1==false){
    769. 

  769. 					AlertBack("첨부파일 업로드 실패 하였습니다.");
    770. 

  770. 					die();
    771. 

  771. 				}
    772. 

  772. 			}
    773. 

  773. 		}
    774. 

  774. 

  775. 		if (is_uploaded_file($_FILES['nm_file_chk2']['tmp_name'])) {
    776. 

  776. 			if($_FILES['nm_file_chk2']['size'] > 0 ){
    777. 

  777. 				$upload_file_name_chk2 = upload($_FILES['nm_file_chk2'],$upload_path."contract_step/".$cd_sale."_detail", 800, array('gif',  'jpeg', 'jpg','png','bmp' ,'ttif'));
    778. 

  778. 				if($upload_file_name_chk2==false){
    779. 

  779. 					AlertBack("첨부파일 업로드 실패 하였습니다.");
    780. 

  780. 					die();
    781. 

  781. 				}
    782. 

  782. 			}
    783. 

  783. 		}
    784. 

  784. 

  785. 		if (is_uploaded_file($_FILES['nm_file_chk3']['tmp_name'])) {
    786. 

  786. 			if($_FILES['nm_file_chk3']['size'] > 0 ){
    787. 

  787. 				$upload_file_name_chk3 = upload($_FILES['nm_file_chk3'],$upload_path."contract_step/".$cd_sale."_detail", 800, array('gif',  'jpeg', 'jpg','png','bmp' ,'ttif'));
    788. 

  788. 				if($upload_file_name_chk3==false){
    789. 

  789. 					AlertBack("첨부파일 업로드 실패 하였습니다.");
    790. 

  790. 					die();
    791. 

  791. 				}
    792. 

  792. 			}
    793. 

  793. 		}
    794. 

  794. 

  795. 		if (is_uploaded_file($_FILES['nm_file_chk4']['tmp_name'])) {
    796. 

  796. 			if($_FILES['nm_file_chk4']['size'] > 0 ){
    797. 

  797. 				$upload_file_name_chk4 = upload($_FILES['nm_file_chk4'],$upload_path."contract_step/".$cd_sale."_detail", 800, array('gif',  'jpeg', 'jpg','png','bmp' ,'ttif'));
    798. 

  798. 				if($upload_file_name_chk4==false){
    799. 

  799. 					AlertBack("첨부파일 업로드 실패 하였습니다.");
    800. 

  800. 					die();
    801. 

  801. 				}
    802. 

  802. 			}
    803. 

  803. 		}
    804. 

  804. 

  805. 		if (is_uploaded_file($_FILES['nm_file_chk5']['tmp_name'])) {
    806. 

  806. 			if($_FILES['nm_file_chk5']['size'] > 0 ){
    807. 

  807. 				$upload_file_name_chk5 = upload($_FILES['nm_file_chk5'],$upload_path."contract_step/".$cd_sale."_detail", 800, array('gif',  'jpeg', 'jpg','png','bmp' ,'ttif'));
    808. 

  808. 				if($upload_file_name_chk5==false){
    809. 

  809. 					AlertBack("첨부파일 업로드 실패 하였습니다.");
    810. 

  810. 					die();
    811. 

  811. 				}
    812. 

  812. 			}
    813. 

  813. 		}
    814. 

  814. 

  815. 		$sql="update sale_master
    816. 

  816. 				set
    817. 

  817. 					ds_status_contract_step3 = '$ds_status_contract_step3'
    818. 

  818. 					, ds_status_contract = '$ds_status_contract'
    819. 

  819. 					, nm_price_final = '$nm_price_final'
    820. 

  820. 					, nm_contract_cont_final = '$nm_contract_cont_final'
    821. 

  821. 					, nm_contract_fail_reason = '$nm_contract_fail_reason'
    822. 

  822. 					, nm_file_chk1 = case when '$upload_file_name_chk1' = '' then nm_file_chk1 else '$upload_file_name_chk1' end
    823. 

  823. 					, nm_file_chk2 = case when '$upload_file_name_chk2' = '' then nm_file_chk2 else '$upload_file_name_chk2' end
    824. 

  824. 					, nm_file_chk3 = case when '$upload_file_name_chk3' = '' then nm_file_chk3 else '$upload_file_name_chk3' end
    825. 

  825. 					, nm_file_chk4 = case when '$upload_file_name_chk4' = '' then nm_file_chk4 else '$upload_file_name_chk4' end
    826. 

  826. 					, nm_file_chk5 = case when '$upload_file_name_chk5' = '' then nm_file_chk5 else '$upload_file_name_chk5' end
    827. 

  827. 					, dt_update = now()
    828. 

  828. 					, nm_update = '$cd_userid'
    829. 

  829. 				WHERE  cd_sale = $cd_sale";
    830. 

  830. //echo $sql;
    831. 

  831. //exit;
    832. 

  832. 		$result  = $dbCon->query($sql);
    833. 

  833. 

  834. 		if ($result) {
    835. 

  835. 			AlertRedirect("등록 되었습니다.","dealer_tender_view2.php?cd_sale=$cd_sale");
    836. 

  836. 		}else{
    837. 

  837. 			AlertRedirect("등록 실패하였습니다.","dealer_tender_view2.php?cd_sale=$cd_sale");
    838. 

  838. 		}
    839. 

  839. 	break;
    840. 

  840. 

  841. 	//Contract Step 4
    842. 

  842. 	case "ContractStep4" :
    843. 

  843. 

  844. 		$cd_sale = trim(avoid_crack($_POST["cd_sale"]));
    845. 

  845. //		$cd_tender = trim(avoid_crack($_POST["cd_tender"]));
    846. 

  846. 		$ds_status_contract_step4 = "Y";
    847. 

  847. 

  848. 		if (is_uploaded_file($_FILES['nm_file_trading']['tmp_name'])) {
    849. 

  849. 			if($_FILES['nm_file_trading']['size'] > 0 ){
    850. 

  850. 				$upload_file_name_trading = upload($_FILES['nm_file_trading'],$upload_path."contract_step/".$cd_sale."_detail", 800, array('gif',  'jpeg', 'jpg','png','bmp' ,'ttif'));
    851. 

  851. 				if($upload_file_name_trading==false){
    852. 

  852. 					AlertBack("첨부파일 업로드 실패 하였습니다.");
    853. 

  853. 					die();
    854. 

  854. 				}
    855. 

  855. 			}
    856. 

  856. 		}
    857. 

  857. 

  858. 		if (is_uploaded_file($_FILES['nm_file_performance']['tmp_name'])) {
    859. 

  859. 			if($_FILES['nm_file_performance']['size'] > 0 ){
    860. 

  860. 				$upload_file_name_performance = upload($_FILES['nm_file_performance'],$upload_path."contract_step/".$cd_sale."_detail", 800, array('gif',  'jpeg', 'jpg','png','bmp' ,'ttif'));
    861. 

  861. 				if($upload_file_name_performance==false){
    862. 

  862. 					AlertBack("첨부파일 업로드 실패 하였습니다.");
    863. 

  863. 					die();
    864. 

  864. 				}
    865. 

  865. 			}
    866. 

  866. 		}
    867. 

  867. 

  868. 		if (is_uploaded_file($_FILES['nm_file_postscript']['tmp_name'])) {
    869. 

  869. 			if($_FILES['nm_file_postscript']['size'] > 0 ){
    870. 

  870. 				$upload_file_name_postscript = upload($_FILES['nm_file_postscript'],$upload_path."contract_step/".$cd_sale."_detail", 800, array('gif',  'jpeg', 'jpg','png','bmp' ,'ttif'));
    871. 

  871. 				if($upload_file_name_postscript==false){
    872. 

  872. 					AlertBack("첨부파일 업로드 실패 하였습니다.");
    873. 

  873. 					die();
    874. 

  874. 				}
    875. 

  875. 			}
    876. 

  876. 		}
    877. 

  877. 

  878. 

  879. 		$sql="update sale_master
    880. 

  880. 				set
    881. 

  881. 					ds_status_contract_step4 = '$ds_status_contract_step4'
    882. 

  882. 					, nm_file_trading = case when '$upload_file_name_trading' = '' then nm_file_trading else '$upload_file_name_trading' end
    883. 

  883. 					, nm_file_performance = case when '$upload_file_name_performance' = '' then nm_file_performance else '$upload_file_name_performance' end
    884. 

  884. 					, nm_file_postscript = case when '$upload_file_name_postscript' = '' then nm_file_postscript else '$upload_file_name_postscript' end
    885. 

  885. 					, ds_status = case when ds_status_contract = 'Z0' and ds_status_contract_step1 = 'Y' and ds_status_contract_step2 = 'Y' and ds_status_contract_step3 = 'Y' and ds_status_contract_step4 = 'Y' then 'ZS' else ds_status end
    886. 

  886. 					, dt_update = now()
    887. 

  887. 					, nm_update = '$cd_userid'
    888. 

  888. 				WHERE  cd_sale = $cd_sale";
    889. 

  889. 

  890. 		$result  = $dbCon->query($sql);
    891. 

  891. 

  892. 		if ($result) {
    893. 

  893. 			AlertRedirect("등록 되었습니다.","dealer_tender_view2.php?cd_sale=$cd_sale");
    894. 

  894. 		}else{
    895. 

  895. 			AlertRedirect("등록 실패하였습니다.","dealer_tender_view2.php?cd_sale=$cd_sale");
    896. 

  896. 		}
    897. 

  897. 	break;
    898. 

  898. 

  899. 	//후기쓰기
    900. 

  900. 	case "WritePostscript" :
    901. 

  901. 

  902. 		$cd_sale = trim(avoid_crack($_POST["cd_sale"]));
    903. 

  903. 		$nm_score_postscript = trim(avoid_crack($_POST["nm_score_postscript"]));
    904. 

  904. 		$nm_cont_postscript = trim(avoid_crack($_POST["nm_cont_postscript"]));
    905. 

  905. 

  906. 		$sql="update sale_master
    907. 

  907. 				set
    908. 

  908. 					nm_score_postscript = '$nm_score_postscript'
    909. 

  909. 					, nm_cont_postscript = '$nm_cont_postscript'
    910. 

  910. 					, dt_update = now()
    911. 

  911. 					, nm_update = '$cd_userid'
    912. 

  912. 				WHERE  cd_sale = $cd_sale";
    913. 

  913. 

  914. 		$result  = $dbCon->query($sql);
    915. 

  915. 

  916. 		if ($result) {
    917. 

  917. 			AlertRedirect("등록 되었습니다.","sell_view2.php?cd_sale=$cd_sale");
    918. 

  918. 		}else{
    919. 

  919. 			AlertRedirect("등록 실패하였습니다.","sell_view2.php?cd_sale=$cd_sale");
    920. 

  920. 		}
    921. 

  921. 	break;
    922. 

  922. 

  923. 	//후기쓰기	Nomember
    924. 

  924. 	case "WritePostscriptNomember" :
    925. 

  925. 

  926. 		$cd_sale = trim(avoid_crack($_POST["cd_sale"]));
    927. 

  927. 		$nm_score_postscript = trim(avoid_crack($_POST["nm_score_postscript"]));
    928. 

  928. 		$nm_cont_postscript = trim(avoid_crack($_POST["nm_cont_postscript"]));
    929. 

  929. 

  930. 		$nm_name = trim(avoid_crack($_POST["nm_name"]));
    931. 

  931. 		$nm_hp = trim(avoid_crack($_POST["nm_hp"]));
    932. 

  932. 		$nm_number = trim(avoid_crack($_POST["nm_number"]));
    933. 

  933. 

  934. 		$sql="update sale_master
    935. 

  935. 				set
    936. 

  936. 					nm_score_postscript = '$nm_score_postscript'
    937. 

  937. 					, nm_cont_postscript = '$nm_cont_postscript'
    938. 

  938. 					, dt_update = now()
    939. 

  939. 					, dt_success = now()
    940. 

  940. 					, nm_update = '$cd_userid'
    941. 

  941. 				WHERE  cd_sale = $cd_sale";
    942. 

  942. 

  943. 		$result  = $dbCon->query($sql);
    944. 

  944. 

  945. 		if ($result) {
    946. 

  946. 			AlertRedirect("등록 성공하였습니다.","/sell/sell_view_nomember.php?nm_name=$nm_name&nm_hp=$nm_hp&nm_number=$nm_number&ds_status_sale=Z0&ds_status=Z0");
    947. 

  947. 

  948. 		 }else{
    949. 

  949. 			AlertRedirect("등록 실패하였습니다.","/sell/sell_view_nomember.php?nm_name=$nm_name&nm_hp=$nm_hp&nm_number=$nm_number&ds_status_sale=Z0&ds_status=Z0");
    950. 

  950. 		 }
    951. 

  951. 	break;
    952. 

  952. 

  953. 	//Contract Step Error
    954. 

  954. 	case "ContractStepError" :
    955. 

  955. 

  956. 		$cd_sale = trim(avoid_crack($_POST["cd_sale"]));
    957. 

  957. //		$cd_tender = trim(avoid_crack($_POST["cd_tender"]));
    958. 

  958. 		$nm_cont_tender_error = trim(avoid_crack($_POST["nm_cont_tender_error"]));
    959. 

  959. 		$ds_status_contract_step1 = "N";
    960. 

  960. 

  961. 		$sql="update sale_master
    962. 

  962. 				set
    963. 

  963. 					ds_status = 'ZE'
    964. 

  964. 					, ds_status_contract_step1 = '$ds_status_contract_step1'
    965. 

  965. 					, nm_cont_tender_error = '$nm_cont_tender_error'
    966. 

  966. 					, dt_update = now()
    967. 

  967. 					, nm_update = '$cd_userid'
    968. 

  968. 				WHERE  cd_sale = $cd_sale";
    969. 

  969. 

  970. 		$result  = $dbCon->query($sql);
    971. 

  971. 

  972. 		if ($result) {
    973. 

  973. 			AlertRedirect("등록 되었습니다.","dealer_tender_view2.php?cd_sale=$cd_sale");
    974. 

  974. 		}else{
    975. 

  975. 			AlertRedirect("등록 실패하였습니다.","dealer_tender_view2.php?cd_sale=$cd_sale");
    976. 

  976. 		}
    977. 

  977. 	break;
    978. 

  978. 

  979. 	//삭제하기
    980. 

  980. 	case "Delete" :
    981. 

  981. 

  982. 		$_fields = Array(
    983. 

  983. 					"ds_delind"=>"Y",
    984. 

  984. 					"dt_update" => now(),
    985. 

  985. 					"nm_update" => $cd_procid
    986. 

  986. 				);
    987. 

  987. 

  988. 		$result  = $dbCon->updateDAO($_fields,$table_name,"cd_dealer='".$cd_dealer."'");
    989. 

  989. 

  990. 

  991. 		if ($result) {
    992. 

  992. 

  993. 			AlertRedirect("삭제 되었습니다.","list.php?PageNo=$PageNo");
    994. 

  994. 

  995. 		 }else{
    996. 

  996. 			AlertRedirect("삭제 실패하였습니다.","list.php?PageNo=$PageNo");
    997. 

  997. 		 }
    998. 

  998. 	break;
    999. 

  999. 

  1000. 	case "IdChk":
    1001. 

  1001. 

  1002. 		$_whereis = "  cd_dealerid = '". $cd_dealerid . "'";
    1003. 

  1003. 

  1004. 		$cnt = $dbCon->getOneDAO("count(*)",$table_name, $_whereis, 1);
    1005. 

  1005. 		if($cnt==0) {
    1006. 

  1006. 			echo("Y");
    1007. 

  1007. 			exit;
    1008. 

  1008. 		} else {
    1009. 

  1009. 			echo("N");
    1010. 

  1010. 			exit;
    1011. 

  1011. 		}
    1012. 

  1012. 	break;
    1013. 

  1013. 

  1014. 	case "IdSearch":
    1015. 

  1015. 

  1016. 		$_whereis = " ds_delind='N' And nm_name = '". $nm_name . "' AND nm_email = '". $nm_email . "'";
    1017. 

  1017. 

  1018. 		$userid = $dbCon->getOneDAO("cd_dealerid",$table_name, $_whereis, 1);
    1019. 

  1019. 		if($userid) {
    1020. 

  1020. 			echo($userid);
    1021. 

  1021. 			exit;
    1022. 

  1022. 		} else {
    1023. 

  1023. 			echo("");
    1024. 

  1024. 			exit;
    1025. 

  1025. 		}
    1026. 

  1026. 	break;
    1027. 

  1027. 

  1028. 	case "PwSearch":
    1029. 

  1029. 

  1030. 		$_whereis = " ds_delind='N' And cd_dealerid = '".$cd_dealerid."' And nm_name = '". $nm_name . "' AND nm_email = '". $nm_email . "'";
    1031. 

  1031. 

  1032. 		$userid = $dbCon->getOneDAO("cd_dealer",$table_name, $_whereis, 1);
    1033. 

  1033. 		if($userid) {
    1034. 

  1034. 			$new_passwd = generatePassword(8);
    1035. 

  1035. 

  1036. 			$sqlPwd="UPDATE dealer_master set nm_pass = password('".$new_passwd."')  where cd_dealer = '".$userid."'";
    1037. 

  1037. 			$result  = $dbCon->query($sqlPwd);
    1038. 

  1038. 

  1039. 			echo($new_passwd);
    1040. 

  1040. 			exit;
    1041. 

  1041. 		} else {
    1042. 

  1042. 			echo("");
    1043. 

  1043. 			exit;
    1044. 

  1044. 		}
    1045. 

  1045. 	break;
    1046. 

  1046. 

  1047. 	default :
    1048. 

  1048. 		AlertBack("지정되지않은 요청입니다");
    1049. 

  1049. 	break;
    1050. 

  1050. }
    1051. 

  1051. mysql_close($connect);
    1052. 

  1052. ?>
    1053.