if(!ereg("(^[0-9a-zA-Z]{4,}$)", $passwd)) {
echo("");
exit;
}
########## µ¥ÀÌÅͺ£À̽º¿¡ ¿¬°áÇÑ´Ù. ###########
include "../includes/dbconn.inc";
$$allow_delete_thread = 0;
######### »èÁ¦ÇϰíÀÚ ÇÏ´Â ±ÛÀÌ ´äº¯±ÛÀ» Çϳª¶óµµ ´Þ°í ÀÖÀ¸¸é »èÁ¦ÇÒ ¼ö ¾øµµ·Ï ÇÑ´Ù. ##########
if(!$allow_delete_thread) {
$query = "SELECT thread FROM pds WHERE fid = $fid AND length(thread) = length('$thread')+1 AND locate('$thread',thread) = 1 ORDER BY thread DESC LIMIT 1";
$result = mysql_query($query,$dbconn);
if(!$result) {
echo("");
exit;
}
$rows = mysql_num_rows($result);
if($rows) {
echo("");
exit;
}
}
########## °ü¸®ÀÚ·Î ÀÎÁõµÈ °æ¿ì ¸ðµç ±ÛÀ» »èÁ¦ÇÒ ¼ö ÀÖ´Ù. ##########
if($admin) {
########## ÀÚ·á°¡ µî·ÏµÇ¾î ÀÖÀ» °æ¿ì ÀÚ·áµµ ÇÔ²² »èÁ¦ÇÑ´Ù. ##########
$query = "select userfile from pds where fid = $fid AND thread = '$thread'";
$result = mysql_query($query, $dbconn);
$my_userfile = mysql_result($result,0,0);
$savedir = "data";
if($my_userfile != "") {
unlink($savedir."/".$my_userfile);
rmdir($savedir."/".substr($my_userfile,0,strrpos($my_userfile,"/")+1));
}
$query = "DELETE FROM pds WHERE fid = $fid AND thread = '$thread'";
$result = mysql_query($query,$dbconn);
if (!$result) {
echo("");
exit;
}
echo ("");
}else {
########## ÇØ´ç°Ô½Ã¹°ÀÇ ¾ÏÈ£°ªÀ» »Ì¾Æ³½´Ù. ##########
$result = mysql_query("SELECT passwd FROM pds WHERE fid = $fid AND thread = '$thread'",$dbconn);
if (!$result) {
echo("");
exit;
}
$real_pass = mysql_result($result,0,0);
########## »ç¿ëÀÚ°¡ ÀÔ·ÂÇÑ ¾ÏÈ£¹®ÀÚ¿À» ¾ÏÈ£ÈÇÑ´Ù. ##########
$result = mysql_query("SELECT password('$passwd')",$dbconn);
if (!$result) {
echo("");
exit;
}
$user_pass = mysql_result($result,0,0);
########## °Ô½Ã¹°ÀÇ ¾ÏÈ£¿Í »ç¿ëÀÚ°¡ ÀÔ·ÂÇÑ ¾ÏÈ£°¡ °°À¸¸é °Ô½Ã¹°À» »èÁ¦ÇÑ´Ù. ##########
if (!strcmp($real_pass,$user_pass)) {
########## ÀÚ·á°¡ µî·ÏµÇ¾î ÀÖÀ» °æ¿ì ÀÚ·áµµ ÇÔ²² »èÁ¦ÇÑ´Ù. ##########
$query = "select userfile from pds where fid = $fid AND thread = '$thread'";
$result = mysql_query($query, $dbconn);
if (!$result) {
echo("");
exit;
}
$my_userfile = mysql_result($result,0,0);
$savedir = "data";
if($my_userfile != "") {
unlink($savedir."/".$my_userfile);
rmdir($savedir."/".substr($my_userfile,0,strrpos($my_userfile,"/")+1));
}
$query = "DELETE FROM pds WHERE fid = $fid AND thread = '$thread'";
$result = mysql_query($query,$dbconn);
if (!$result) {
echo("");
exit;
}
echo ("");
}else {
echo("");
exit;
}
}
?>