<% /********************************************************************************** 프로그램명 : popup_board_modify.jsp 프로그램설명 : 집계문서에관한 공지 글 쓰기 작 성 자 : 강 원 중 작 성 일 : 2004. 06.07 최신변경일 : 2005. 05.11 ***********************************************************************************/ %> <%@ page contentType="text/html; charset=UTF-8"%> <%@ page import="java.util.Map.Entry"%> <%@ page import="java.util.List"%> <%@ page import="kr.co.kihyun.text.html.ServletUtil"%> <%@ page import="kr.co.kihyun.lang.MInteger"%> <%@ page import="kr.co.kihyun.beans.user.HttpSSOLogin" import="kr.co.kihyun.lang.MLong" import="javax.jdo.PersistenceManager" import="javax.jdo.Transaction" import="javax.jdo.Transaction" import="kr.co.kihyun.beans.entity.util.*" import="kr.co.kihyun.beans.entity.TotDoc" import="kr.co.kihyun.beans.entity.Board"%> <%@ include file="/totsys/common/inc/sec/secure.inc.jsp"%> <% PersistenceManager pm = new MPersistenceManager(PMF.get().getPersistenceManager()); Transaction tx = pm.currentTransaction(); try{ /*********** User HttpSSOLogin check ***********/ if(!HttpSSOLogin.isLogin(request)){ String connURL="opener.location='/totsys/login/login.jsp';"; out.println(ServletUtil.getJavaScript(connURL)); out.println(ServletUtil.getJavaScript("window.close();")); return; } /********** session내의 userId **********/ String usID = HttpSSOLogin.getLoginID(request); /****** Parameter ******/ Long docID = MLong.parseLong(request.getParameter("docID"),null); Long boardID = MLong.parseLong(request.getParameter("boardID"),null); String strPage = clearXSS(request.getParameter("strPage"),""); String findOption = clearXSS(request.getParameter("findOption"),""); String findWord = clearXSS(request.getParameter("findWord"),""); tx.begin(); /****** Doc list data get ******/ TotDoc totDoc = pm.getObjectById(TotDoc.class, docID); String docName = totDoc.getName(); String regID = totDoc.getUser(pm).getId(); /****** 본인 유무 처리 ******/ boolean isManager = false; if(usID.equals(regID)){ isManager = true; } /*********** Board View vlaues ***********/ Board board = null; String boardTitle = ""; String boardContents = ""; String usrFilenames = ""; String svrFilenames = ""; String boardGroupID = ""; int fileCount = 0; board = boardID == null ? null : pm.getObjectById(Board.class, boardID); boardTitle = board.getTitle(); boardContents=board.getContents(); for (Entry> entry : board.getAttachments().entrySet()) { usrFilenames += entry.getKey() + ";"; svrFilenames += entry.getKey() + ";"; } fileCount = board.getAttachments().size(); boardGroupID = board.getCategory().getId(); tx.rollback(); session.setAttribute("modifyTargetURI", "opener.location='/totsys/total/doc_view.jsp?docID="+docID+"&strPage="+strPage+"&findOption="+findOption+"&findWord="+findWord+"'"); %> 공지사항-변경


[<%= docName %> ]

제 목
내 용	<%= boardContents %>
파일첨부

<% }catch(Exception ex){ //38.오류메세지를 통한 정보 노출(getMessage)_CWE-209 : Update by YOUNGJUN,CHO ex.printStackTrace(); //out.println(ex);//앤개 //out.println("

Can't contact servlet runner

Message : "+ex.getMessage()+""); //out.println(""); //================================================ }finally{ if(tx.isActive()) tx.rollback(); pm.close(); } %>