%@LANGUAGE="VBSCRIPT"%>
<%
' *** Edit Operations: declare variables
'----------------------------------------------
'----------------------------------------------
discussion_password = "weldreality"
password_error = "Invalid Password. Please try again."
'----------------------------------------------
'----------------------------------------------
MM_editAction = CStr(Request("URL"))
If (Request.QueryString <> "") Then
MM_editAction = MM_editAction & "?" & Request.QueryString
End If
' boolean to abort record edit
MM_abortEdit = false
' query string to execute
MM_editQuery = ""
%>
<%
' *** Insert Record: set variables
If (CStr(Request("MM_insert")) <> "") Then
MM_editConnection = MM_Discussion_STRING
MM_editTable = "tblReply"
MM_editRedirectUrl = "default.asp"
MM_fieldsStr = "Email|value|Name|value|Subject|value|Comments|value|Post|value"
MM_columnsStr = "txtReplyEmail|',none,''|txtReplyName|',none,''|txtReplySubject|',none,''|txtReplyBody|',none,''|numPostIDFK|none,none,NULL"
' create the MM_fields and MM_columns arrays
MM_fields = Split(MM_fieldsStr, "|")
MM_columns = Split(MM_columnsStr, "|")
' set the form values
For i = LBound(MM_fields) To UBound(MM_fields) Step 2
MM_fields(i+1) = CStr(Request.Form(MM_fields(i)))
Next
' append the query string to the redirect URL
If (MM_editRedirectUrl <> "" And Request.QueryString <> "") Then
If (InStr(1, MM_editRedirectUrl, "?", vbTextCompare) = 0 And Request.QueryString <> "") Then
MM_editRedirectUrl = MM_editRedirectUrl & "?" & Request.QueryString
Else
MM_editRedirectUrl = MM_editRedirectUrl & "&" & Request.QueryString
End If
End If
End If
%>
<%
' *** Insert Record: construct a sql insert statement and execute it
if request("password") = discussion_password then
If (CStr(Request("MM_insert")) <> "") Then
' create the sql insert statement
MM_tableValues = ""
MM_dbValues = ""
For i = LBound(MM_fields) To UBound(MM_fields) Step 2
FormVal = MM_fields(i+1)
MM_typeArray = Split(MM_columns(i+1),",")
Delim = MM_typeArray(0)
If (Delim = "none") Then Delim = ""
AltVal = MM_typeArray(1)
If (AltVal = "none") Then AltVal = ""
EmptyVal = MM_typeArray(2)
If (EmptyVal = "none") Then EmptyVal = ""
If (FormVal = "") Then
FormVal = EmptyVal
Else
If (AltVal <> "") Then
FormVal = AltVal
ElseIf (Delim = "'") Then ' escape quotes
FormVal = "'" & Replace(FormVal,"'","''") & "'"
Else
FormVal = Delim + FormVal + Delim
End If
End If
If (i <> LBound(MM_fields)) Then
MM_tableValues = MM_tableValues & ","
MM_dbValues = MM_dbValues & ","
End if
MM_tableValues = MM_tableValues & MM_columns(i)
MM_dbValues = MM_dbValues & FormVal
Next
MM_editQuery = "insert into " & MM_editTable & " (" & MM_tableValues & ") values (" & MM_dbValues & ")"
If (Not MM_abortEdit) Then
' execute the insert
Set MM_editCmd = Server.CreateObject("ADODB.Command")
MM_editCmd.ActiveConnection = MM_editConnection
MM_editCmd.CommandText = MM_editQuery
MM_editCmd.Execute
MM_editCmd.ActiveConnection.Close
If (MM_editRedirectUrl <> "") Then
Response.Redirect(MM_editRedirectUrl)
End If
End If
End If
else
discussion_error = password_error
end if
%>
<%
set rcdReply = Server.CreateObject("ADODB.Recordset")
rcdReply.ActiveConnection = MM_Discussion_STRING
rcdReply.Source = "SELECT * FROM tblReply"
rcdReply.CursorType = 0
rcdReply.CursorLocation = 2
rcdReply.LockType = 3
rcdReply.Open()
rcdReply_numRows = 0
%>
<%
Dim rcdPosts__varPostID
rcdPosts__varPostID = "1"
if (Request.QueryString("PostID") <> "") then rcdPosts__varPostID = Request.QueryString("PostID")
%>
<%
set rcdPosts = Server.CreateObject("ADODB.Recordset")
rcdPosts.ActiveConnection = MM_Discussion_STRING
rcdPosts.Source = "SELECT txtPostSubject FROM tblPosts WHERE numPostID = " + Replace(rcdPosts__varPostID, "'", "''") + ""
rcdPosts.CursorType = 0
rcdPosts.CursorLocation = 2
rcdPosts.LockType = 3
rcdPosts.Open()
rcdPosts_numRows = 0
%>
Ed Craig's WeldReality.com
<%
rcdReply.Close()
%>
<%
rcdPosts.Close()
%>