|
|
|
|
²ÀÁö / 2001-10-05 / ¿ÀÈÄ 12:07:03 / 147.6.140.128
Á¶È¸¼ö : 154
|
[Áú¹®] °³ÀÎÁ¤º¸¼öÁ¤¿¡¼ ¹ú·¹ Á» Àâ¾ÆÁÖ¼¼¿ä. |
¿À·£¸¸À̱º¿ä..
<form action="login_next.asp?num=<%=logid%>" name="login" method="post">
¿¡¼ method°¡ post¹æ½ÄÀε¥, ¾×¼ÇÀ» ÃëÇÒ ÆäÀÌÁö Çü½ÄÀÌ get¹æ½ÄÀ¸·Î µÇ¾î ÀÖ±º¿ä..
<form action="login_next.asp" name="login" method="post">
<input type="hidden" name="num" value="<%=logid%>">
·Î º¯°æÇÏ¿© º¸¼Å¿ä..
ÁÁÀº °á°ú ÀÖ±æ..
> ³¯¾¾°¡ ¹«Ã´À̳ª ½Î´ÃÇÕ´Ï´Ù.
> °í¼ö´ÔµéÀÇ ÁöÀû ºÎŹÇÕ´Ï´Ù.
>
> [mem_login.asp]
> ID ¿Í PW¸¦ ÀÔ·ÂÇÏ°í
>
> [login_ok.asp]
> ·Î±×ÀÎÀ» ó¸®ÇÏ¿©
>
> [default.asp]
> ¿©±â¼ Á¢¼ÓÀ» ¾Ë·Á ÁÝ´Ï´Ù.
> <font size="2"><%=session("uid")%></B> ´Ô!</font>
> .....ȯ¿µÇÕ´Ï´Ù.
>
> ±×·±´ÙÀ½ °³ÀÎÁ¤º¸¼öÁ¤À» Ŭ¸¯ÇÒ·Á°í Çϴµ¥ ¿©±â¼ ¿¡·¯¹ß»ý
>
> ±âÁ¸¿¡ ÀÖ´ø [login.asp]À» [re_login.asp]·Î ÆÄÀϸíÀ» º¯°æ¿´´Âµ¥
> re_login.asp¿¡´Â id/pw/È®ÀÎ/ȸ¿ø°¡ÀÔ ¹Û¿¡ ¾ø½À´Ï´Ù.
>
> default.asp¿¡ Á¢¼ÓÇß´ø id·Î ȸ¿ø¼öÁ¤ µé¾î°¡¸é
>
> ´Ù½ÃÇѹø ¹¯´Â [re_login.asp] È®Àο¡¼ [login_next.asp]¿¡¼ ³Ñ¾î°¡Áú ¾Ê³×¿ä.
>
> ¿¡·¯´Â ºê¶ó¿ìÀú¿¡¼ http://new/sub/login_next.asp?num= ÀÌ ºÎºÐ¸¸ ³ªÅ¸³ª°í
>
> ÇÏ´Ü¿¡´Â ¾Æ¹«°Íµµ ¾ø³×¿ä.
>
> ¿ì¿Õ ¼¼¼ÇÀ» ¸øÀ⳪ºÁ¿ä.. ¿À´Ã ÀÌ°Å¶óµµ ³¡³»¾ß Çϴµ¥....
>
>
>
> [re_login.asp]
>
> <!-------------------¿©±âºÎÅÍ login form½ÃÀÛ ----------------------->
> <% logid = Request.QueryString("num") %> ====== 1 line ===========
> .....
> <form action="login_next.asp?num=<%=logid%>" name="login" method="post">
> <table width="206" cellspacing="0" cellpadding="0" border="0">
>
>
> [login_next.asp]
> <%
> Response.Buffer = true
>
> uid = Request.Form("uid")
> pass_wd = Request.Form("passwd")
> num = Request.QueryString("num")
> authority = left(num,1)
>
> If pass_wd="" or uid="" then
> %>
> <script language="javascript">
> <!--
> alert("Ç׸ñÁß ºü¶ß¸° °ÍÀÌ ÀÖ½À´Ï´Ù.");
> history.back();
> //-->
> </script>
> <%
> Response.End
> End if
>
> Conn = Application("DBConn")
> Sql = "SELECT uid, passwd FROM members WHERE uid = '" & uid & "'"
> Set Rs = Server.CreateObject("ADODB.Recordset")
> Rs.open sql, Conn, 1
>
> If Rs.EOF then
> %>
> <script language="javascript">
> <!--
> alert("Á¸ÀçÇÏÁö ¾Ê´Â ȸ¿ø IDÀÔ´Ï´Ù.");
> history.back();
> //-->
> </script>
> <%
> Response.End
> Else
> uid = Rs(0)
> pwd = Rs(1)
>
> If pwd <> pass_wd then
> %>
> <script language="javascript">
> <!--
> alert("ºñ¹Ð¹øÈ£°¡ Ʋ¸³´Ï´Ù.");
> history.back();
> //-->
> </script>
> <%
> Response.End
> End if
> End if
>
> response.cookies("user_id") = uid
>
> Select Case num
> Case "a"
> urlPath = "modify.asp?uid="+uid
> %>
> <script language=javascript>
> opener.parent.right.location.replace("<%=urlPath%>") ;
> self.close();
> </script>
> <%
> Case "b"
> urlPath = "right_member3.asp?uid="+uid
> %>
> <script language=javascript>
> opener.parent.right.location.replace("<%=urlPath%>") ;
> self.close();
> </script>
> <%
> Case "c"
> urlPath = "right_member3.asp?uid="+uid
> %>
> <script language=javascript>
> opener.opener.parent.right.location.replace("<%=urlPath%>") ;
> opener.window.close();
> self.close();
> </script>
> <%
> Case "d"
> urlPath = "../menu9.html"
> %>
> <script language=javascript>
> opener.opener.parent.location.replace("<%=urlPath%>") ;
> opener.window.close();
> self.close();
> </script>
>
> <%
> Case "f"
> urlPath = ""
> %>
> <script language=javascript>
> self.close();
> </script>
>
> <%
> Case Else
> urlPath = "../main.asp"
> End Select
> %>
>
>
> ¿øÀÎ Á» °¡¸£ÃÄ ÁÖ¼¼¿ä.
>
>
>
>
>
-----------------------------------------------------------
|
|
|
|