방명록의 비밀글 기능 오류 수정

git-svn-id: http://xe-core.googlecode.com/svn/sandbox@3015 201d5d3c-b55e-5fd7-737f-ddc643e51545
2026-01-30 00:29:58 +09:00 · 2007-11-20 03:09:17 +00:00 · 2007-11-20 03:09:17 +00:00 · a6b8d82036
commit a6b8d82036
parent d0bc8a4b9f
2 changed files with 9 additions and 10 deletions
--- a/modules/guestbook/guestbook.controller.php
+++ b/modules/guestbook/guestbook.controller.php
@ -212,23 +212,23 @@
         **/
        function procGuestbookVerificationPassword() {
            // 비밀번호와 문서 번호를 받음
-            $password = md5(Context::get('password'));
-
+            $password = Context::get('password');
            $document_srl = Context::get('document_srl');
            $comment_srl = Context::get('comment_srl');

+            $oMemberModel = &getModel('member');
+
            // comment_srl이 있을 경우 댓글이 대상
            if($comment_srl) {
                // 문서번호에 해당하는 글이 있는지 확인
                $oCommentModel = &getModel('comment');
-                $data = $oCommentModel->getComment($comment_srl);
-                if(!$data) return new Object(-1, 'msg_invalid_request');
+                $oComment = $oCommentModel->getComment($comment_srl);
+                if(!$oComment->isExists()) return new Object(-1, 'msg_invalid_request');

                // 문서의 비밀번호와 입력한 비밀번호의 비교
-                if($data->password != $password) return new Object(-1, 'msg_invalid_password');
+                if(!$oMemberModel->isValidPassword($oComment->get('password'),$password)) return new Object(-1, 'msg_invalid_password');

-                $oCommentController = &getController('comment');
-                $oCommentController->addGrant($comment_srl);
+                $oComment->setGrant();
            } else {
                // 문서번호에 해당하는 글이 있는지 확인
                $oDocumentModel = &getModel('document');
@ -236,7 +236,7 @@
                if(!$oDocument->isExists()) return new Object(-1, 'msg_invalid_request');

                // 문서의 비밀번호와 입력한 비밀번호의 비교
-                if($oDocument->get('password') != $password) return new Object(-1, 'msg_invalid_password');
+                if(!$oMemberModel->isValidPassword($oDocument->get('password'),$password)) return new Object(-1, 'msg_invalid_password');

                $oDocument->setGrant();
            }
--- a/modules/guestbook/skins/default/list.html
+++ b/modules/guestbook/skins/default/list.html
@ -43,14 +43,13 @@
            <div class="clear"></div>

            <div class="documentContent">
-                <!--@if($oDocument->isSecret() && !$oDocument->isGranted())-->
+                <!--@if($document->isSecret() && !$document->isGranted())-->
                    <!--%import("filter/input_password.xml")-->
                    <strong>{$lang->msg_is_secret}</strong>
                    <form action="./" method="get" onsubmit="return procFilter(this, input_password)">
                    <input type="hidden" name="mid" value="{$mid}" />
                    <input type="hidden" name="page" value="{$page}" />
                    <input type="hidden" name="document_srl" value="{$document->get('document_srl')}" />
-                    <input type="hidden" name="document_srl" value="{$document->get('document_srl')}" />
                    <div class="inputPassword">
                        <input type="password" name="password" class="inputTypeText" /><span class="button"><input type="submit" value="{$lang->cmd_input}" accesskey="s" /></span>
                    </div>