<%@ page contentType="text/html; charset=UTF-8"%> <%@ page import="kr.co.kihyun.lang.MString"%> <%@ page import="kr.co.kihyun.lang.Encoder"%> <%@ page import="kr.co.kihyun.moumi.MoumiConfig"%> <%@ page import="kr.co.kihyun.text.html.ServletUtil"%> <%@ page import="kr.co.kihyun.beans.user.HttpSSOLogin"%> <%@ page import="java.net.URLEncoder" import="java.net.URLDecoder" import="java.util.Date" import="java.text.SimpleDateFormat" import="kr.co.kihyun.util.MDate" import="kr.co.kihyun.lang.MLong" import="kr.co.kihyun.lang.MString" import="kr.co.kihyun.moumi.Moumi" import="kr.co.kihyun.moumi.MoumiUtil" import="kr.co.kihyun.beans.user.HttpSSOLogin" import="kr.co.kihyun.beans.user.UserGroup" import="kr.co.kihyun.beans.user.User" import="kr.co.kihyun.beans.user.UserGroupList" import="kr.co.kihyun.beans.user.Dept" import="kr.co.kihyun.lang.Encoder" import="kr.co.kihyun.beans.entity.MUser" import="java.util.List" import="javax.jdo.PersistenceManager" import="javax.jdo.Transaction" import="kr.co.kihyun.beans.entity.*" import="kr.co.kihyun.beans.entity.util.*" import="kr.co.kihyun.beans.entity.UserPart" import="java.util.HashMap" import="java.util.Map" import="kr.co.kihyun.moumi.Moumi" import="kr.co.kihyun.beans.user.MultiCheck" import="kr.co.kihyun.beans.user.DeptAdd" %> <%@ include file="/totsys/common/inc/sec/secure.inc.jsp"%> <% PersistenceManager pm = new MPersistenceManager(PMF.get().getPersistenceManager()); Transaction tx = pm.currentTransaction(); try { /** * ********** Parameter *********** */ String strPage = clearXSS(request.getParameter("strPage"), ""); String findOption = clearXSS(MString.checkNull(request.getParameter("findOption")), ""); String findWord = clearXSS(Encoder.toJava(request.getParameter("findWord")), ""); String userID = clearXSS(Encoder.toJava(request.getParameter("userID")), ""); String returnSysAuth = clearXSS(Encoder.toJava(request.getParameter("sysAuth")), ""); /** * *** user Login check **************** */ if (!HttpSSOLogin.isLogin(request)) { String connURL = "parent.location='/totsys/login/login.jsp';"; out.println(ServletUtil.getJavaScript(connURL)); return; } /** * ******** session내의 userId ********* */ String usID = HttpSSOLogin.getLoginID(request); int systemAuth = HttpSSOLogin.getSysAuth(request); tx.begin(); /** * ********** User values *********** */ MUser mUser = pm.getObjectById(MUser.class, userID); String passwd = mUser.getPassword(); String userName = mUser.getName(pm); String email = mUser.getEmail(); String phone = mUser.getPhone(); SysAuth sysAuth = mUser.getSysAuth(); String deptID = mUser.getUpperDept(pm).getId(); String deptName = mUser.getUpperDept(pm).getName(); String dutyName = mUser.getDutyName(); Long priority = mUser.getPriority(); String sDualPostYn = mUser.getDualPostYn(); //2014.08.19 Add by KWON,HAN String sModYn = mUser.getModYn(); //2014.08.19 Add by KWON,HAN String sOrignDept = mUser.getOrignDeptId(); String tmpAuth = sysAuth.toString(); tmpAuth = tmpAuth.replace(" ", ""); String[] sDeptID; String[] sDeptName; String sDualPostDeptName = ""; String[] sOriginDeptFlag; Integer count = 0; DeptAdd dept = new DeptAdd(); int grade = dept.getGrade(userID, deptID); //2:초등학교 int foundation = dept.getFoundation(userID, deptID); //2:공립 MultiCheck mc = new MultiCheck(); mc.IdCheck(userID); count = mc.getCount(); sDeptName = mc.getDeptName(); sDeptID = mc.getDeptID(); sOriginDeptFlag = mc.getOrignDeptFlag(); tx.rollback(); %> <%=MoumiConfig.getTitle()%> <%@ include file="/totsys/common/inc/buttom/buttom.jsp"%>
">
사용자변경
<% if ((grade == 2 || grade == 1) && foundation == 2) { //2:초등학교 AND 2:공립 %> <%}%>
말머리  ID  <%= MString.checkNull(userID)%>
글머리  <%=MoumiConfig.getMessageBundle().getString("moumi.message.tot_doc.userName")%>  <%= MString.checkNull(userName)%> (<%=tmpAuth%>)
글머리  <%=Moumi.getMessageBundle().getString("moumi.message.totsys.login.user.popup_dept_jsp.dual_post")%><%=Moumi.getMessageBundle().getString("moumi.message.doc.Devision")%> <%-- <%=deptName%> (현소속)--%> <% String orignDept = ""; for(int i=0; i <%=MString.checkNull(sDeptName[i])%><%=orignDept%> <%}else{%> <%=MString.checkNull(sDeptName[i])%><%=orignDept%> <%}%> <%}%>
글머리  <%=MoumiConfig.getMessageBundle().getString("moumi.message.tot_doc.devision")%>(<%=MoumiConfig.getMessageBundle().getString("moumi.message.statistics.school")%>)  <%= MString.checkNull(deptName)%>
글머리  <%=MoumiConfig.getMessageBundle().getString("moumi.message.tot_doc.telNumber")%>  
  E-MAIL  
  현재권한  <%= sysAuth.toString()%>
  권한수정 <% // 6 SUB_TOTADM("부서관리자"), 5 REPOADM("학교관리자")를 추가하였고 조건절 수정함 by wonseok Lee 20171010 if (tmpAuth.equals(sysAuth.TOTPER.toString())) { returnSysAuth = "2"; } else if (tmpAuth.equals(sysAuth.REPOADM.toString())) { returnSysAuth = "5"; } else if (tmpAuth.equals(sysAuth.SUB_TOTADM.toString())) { returnSysAuth = "6"; } else if (tmpAuth.equals(sysAuth.SUB_SYSADM.toString())) { returnSysAuth = "7"; } else if (tmpAuth.equals(sysAuth.SYSADM.toString())) { returnSysAuth = "9"; } //9 SYSADM("시스템관리자") //7 SUB_SYSADM("기관시스템관리자") //6 SUB_TOTADM("부서관리자") //5 REPOADM("학교관리자") //2 TOTPER("일반사용자") //9 SYSADM("시스템관리자") 이면 모든 등급을 다 보여주며 모든 등급으로의 권한수정이 가능하다. if (HttpSSOLogin.getSysAuth(request) == Moumi.SYSADM) { if (returnSysAuth.equals("9")) { %> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.sysadm")%> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.coporation_system_adm")%> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.coporation_totDoc_adm")%>
<%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.upper_totper")%> <% } else if (returnSysAuth.equals("7")) { %> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.sysadm")%> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.coporation_system_adm")%> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.coporation_totDoc_adm")%>
<%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.upper_totper")%> <% } else if (returnSysAuth.equals("6")) { %> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.sysadm")%> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.coporation_system_adm")%> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.coporation_totDoc_adm")%>
<%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.upper_totper")%> <% } else if (returnSysAuth.equals("5")) { %> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.sysadm")%> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.coporation_system_adm")%> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.coporation_totDoc_adm")%>
<%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.upper_totper")%> <% } else { %> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.sysadm")%> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.coporation_system_adm")%> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.coporation_totDoc_adm")%>
<%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.upper_totper")%> <% } } //7 SUB_SYSADM("기관시스템관리자") 이면 9 SYSADM("시스템관리자")외에는 다 수정가능하다. else if (HttpSSOLogin.getSysAuth(request) == Moumi.SUB_SYSADM) { if (returnSysAuth.equals("9")) { %> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.sysadm")%> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.coporation_system_adm")%> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.coporation_totDoc_adm")%>
<%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.upper_totper")%> <% } else if (returnSysAuth.equals("7")) { %> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.sysadm")%> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.coporation_system_adm")%> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.coporation_totDoc_adm")%>
<%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.upper_totper")%> <% } else if (returnSysAuth.equals("6")) { %> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.sysadm")%> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.coporation_system_adm")%> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.coporation_totDoc_adm")%>
<%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.upper_totper")%> <% } else if (returnSysAuth.equals("5")) { %> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.sysadm")%> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.coporation_system_adm")%> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.coporation_totDoc_adm")%>
<%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.upper_totper")%> <% } else { %> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.sysadm")%> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.coporation_system_adm")%> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.coporation_totDoc_adm")%>
<%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.upper_totper")%> <% } } //6 SUB_TOTADM("부서관리자") 이면 9 SYSADM("시스템관리자"), 7 SUB_SYSADM("기관시스템관리자"), 5 REPOADM("기관시스템관리자") 외에는 다 수정가능하다. else if (HttpSSOLogin.getSysAuth(request) == Moumi.SUB_TOTADM) { if (returnSysAuth.equals("9")) { %> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.sysadm")%> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.coporation_system_adm")%> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.coporation_totDoc_adm")%>
<%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.upper_totper")%> <% } else if (returnSysAuth.equals("7")) { %> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.sysadm")%> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.coporation_system_adm")%> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.coporation_totDoc_adm")%>
<%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.upper_totper")%> <% } else if (returnSysAuth.equals("6")) { %> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.sysadm")%> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.coporation_system_adm")%> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.coporation_totDoc_adm")%>
<%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.upper_totper")%> <% } else if (returnSysAuth.equals("5")) { %> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.sysadm")%> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.coporation_system_adm")%> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.coporation_totDoc_adm")%>
<%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.upper_totper")%> <% } else { %> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.sysadm")%> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.coporation_system_adm")%> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.coporation_totDoc_adm")%>
<%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.upper_totper")%> <% } } //5 REPOADM("학교관리자") 이면 9 SYSADM("시스템관리자"), 7 SUB_SYSADM("기관시스템관리자"),6 SUB_TOTADM("부서관리자") 외에는 다 수정가능하다. else if (HttpSSOLogin.getSysAuth(request) == Moumi.REPOADM) { if (returnSysAuth.equals("9")) { %> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.sysadm")%> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.coporation_system_adm")%> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.coporation_totDoc_adm")%>
<%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.upper_totper")%> <% } else if (returnSysAuth.equals("7")) { %> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.sysadm")%> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.coporation_system_adm")%> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.coporation_totDoc_adm")%>
<%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.upper_totper")%> <% } else if (returnSysAuth.equals("6")) { %> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.sysadm")%> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.coporation_system_adm")%> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.coporation_totDoc_adm")%>
<%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.upper_totper")%> <% } else if (returnSysAuth.equals("5")) { %> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.sysadm")%> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.coporation_system_adm")%> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.coporation_totDoc_adm")%>
<%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.upper_totper")%> <% } else { %> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.sysadm")%> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.coporation_system_adm")%> <%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.coporation_totDoc_adm")%>
<%=Moumi.getMessageBundle().getString("moumi.message.tot_doc.upper_totper")%> <% } } %>
   <%=Moumi.getMessageBundle().getString("moumi.message.totsys.sysadm.user.user_view_jsp.establish")%> <%=Moumi.getMessageBundle().getString("moumi.message.grade.pre")%>  <%=Moumi.getMessageBundle().getString("moumi.message.totsys.login.user.popup_dept_jsp.dual_post")%> <% if (sDualPostYn.equals("Y")) { %> 가능 불가능 <% } else { %> 가능 불가능 <%}%>
  자료이관 <% if (systemAuth == SysAuth.SYSADM.ordinal() || systemAuth == SysAuth.SUB_SYSADM.ordinal()) { if (sModYn.equals("Y")) { %> 대상자 대상자아님 <% } else { %> 대상자 대상자아님 <%} } else { if (sModYn.equals("Y")) { %>  대상자입니다 <% } else { %>  대상자가 아닙니다. <% } } %>
<% } catch (Exception ex) { //38.오류메세지를 통한 정보 노출(getMessage)_CWE-209 : Update by YOUNGJUN,CHO ex.printStackTrace(); //out.println(ex); //out.println("

Can't contact servlet runner



Message : " + ex.getMessage() + ""); //out.println(""); //================================================ } finally { if (tx.isActive()) { tx.rollback(); } pm.close(); } %>