%
Response.Buffer = true
Response.Expires = -1
Response.ExpiresAbsolute = Now() -2
Response.AddHeader "pragma", "no-cache"
Response.AddHeader "cache-control", "private"
Response.CacheControl = "no-cache"
if Session("name") = "" OR Session("uid") = "" then
Response.Redirect("login.asp")
else
struserID = Session("uid")
strUserName = Session("name")
strUserName = uCase(Left(strUserName,1)) & lCase(Mid(strUserName ,2))
strMedlems_ID = Session("Medlems_ID")
strMedlemsnummer = Session("Medlemsnummer")
strEPost = Session("epost")
Dim rs
Dim rs_cmd
Dim rs_numRows
Set rs_cmd = Server.CreateObject ("ADODB.Command")
rs_cmd.ActiveConnection = MM_rsconn_STRING
rs_cmd.CommandText = "SELECT * FROM SVFKFordon WHERE Fordons_ID = " & request.QueryString("Fordons_ID") & " AND Medlems_ID = " & strMedlems_ID
rs_cmd.Prepared = true
Set rs = rs_cmd.Execute
rs_numRows = 0
If rs.EOF then
rs.close
set rs=nothing
Response.write("
Du har inte rättigheter att visa denna post!.
Ditt konto är nu inaktiverat!
")
Call dbOpen(conn)
loggusername = Session("name")
loggmedlemsid = Session("Medlems_ID")
Ip = Request.Servervariables("REMOTE_ADDR")
systemmessage = "fordondetail.asp?Fordons_ID=" & request.querystring("Fordons_ID") & "&Medlems_ID=" & strMedlems_ID & " userID = " & struserID
Conn.Execute("Insert Into SVFKLogg(Ip, username, Medlems_ID, systemmessage) Values('"& ip &"', '"& loggusername &"', '"& loggmedlemsid &"', '"& systemmessage &"')")
Conn.Execute("UPDATE SVFKuTB SET active='5' WHERE userID=" & CInt(struserID) & " AND Medlems_ID='" & strMedlems_ID & "'")
Session("uid") = ""
Session("name")=""
Session("Medlems_ID") = ""
Session("Medlemsnummer") = ""
Call dbClose(conn)
Response.AddHeader "Refresh", "5;URL=default.asp"
else
Dim MM_editAction
MM_editAction = CStr(Request.ServerVariables("SCRIPT_NAME"))
If (Request.QueryString <> "") Then
MM_editAction = MM_editAction & "?" & Server.HTMLEncode(Request.QueryString)
End If
' boolean to abort record edit
Dim MM_abortEdit
MM_abortEdit = false
%>
<%
' IIf implementation
Function MM_IIf(condition, ifTrue, ifFalse)
If condition = "" Then
MM_IIf = ifFalse
Else
MM_IIf = ifTrue
End If
End Function
%>
<%
If (CStr(Request("MM_update")) = "form1") Then
If (Not MM_abortEdit) Then
' execute the update
Dim MM_editCmd
Set MM_editCmd = Server.CreateObject ("ADODB.Command")
MM_editCmd.ActiveConnection = MM_rsconn_STRING
MM_editCmd.CommandText = "UPDATE SVFKFordon SET Kategori = ?, Bilmarke = ?, Modell = ?, Arsmodell = ?, Notering = ?, Medlemsnummer = ? WHERE Fordons_ID = " & request.querystring("Fordons_ID") & " AND Medlems_ID = " & strMedlems_ID
MM_editCmd.Prepared = true
MM_editCmd.Parameters.Append MM_editCmd.CreateParameter("param1", 202, 1, 50, Request.Form("Kategori")) ' adVarWChar
MM_editCmd.Parameters.Append MM_editCmd.CreateParameter("param2", 202, 1, 50, Request.Form("Bilmarke")) ' adVarWChar
MM_editCmd.Parameters.Append MM_editCmd.CreateParameter("param3", 202, 1, 50, Request.Form("Modell")) ' adVarWChar
MM_editCmd.Parameters.Append MM_editCmd.CreateParameter("param4", 202, 1, 50, Request.Form("Arsmodell")) ' adVarWChar
MM_editCmd.Parameters.Append MM_editCmd.CreateParameter("param5", 202, 1, 100, Request.Form("Notering")) ' adVarWChar
MM_editCmd.Parameters.Append MM_editCmd.CreateParameter("param7", 5, 1, -1, MM_IIF(strMedlemsnummer, strMedlemsnummer, null)) ' adDouble
MM_editCmd.Execute
MM_editCmd.ActiveConnection.Close
newFordonData = "Kategori: " & Request.Form("Kategori") & _
" Bilmärke: " & Request.Form("Bilmarke") & _
" Modell: " & Request.Form("Modell") & _
" Årsmodell: " & Request.Form("Arsmodell") & _
" Notering: " & Request.Form("Notering")
loggusername = Session("name")
loggmedlemsid = Session("Medlems_ID")
Ip = Request.Servervariables("REMOTE_ADDR")
systemmessage = "OLD Fordon DATA: " & Request.Form("oldfordon")
systemmessage2 = "NEW Fordon DATA: " & newFordonData
Set Cmd = Server.CreateObject ("ADODB.Command")
Cmd.ActiveConnection = MM_rsconn_STRING
Cmd.CommandText = "Insert Into SVFKLogg(Ip, username, Medlems_ID, systemmessage, systemmessage2) VALUES (?, ?, ?, ?, ?)"
Cmd.Prepared = true
Cmd.Parameters.Append Cmd.CreateParameter("param1", 202, 1, 50, ip) ' adVarWChar
Cmd.Parameters.Append Cmd.CreateParameter("param2", 202, 1, 50, loggusername) ' adVarWChar
Cmd.Parameters.Append Cmd.CreateParameter("param3", 202, 1, 50, loggmedlemsid) ' adVarWChar
Cmd.Parameters.Append Cmd.CreateParameter("param4", 201, 1, 65535, systemmessage) ' adVarWChar
Cmd.Parameters.Append Cmd.CreateParameter("param5", 201, 1, 65535, systemmessage2) ' adVarWChar
Cmd.Execute
Cmd.ActiveConnection.Close
Response.Redirect("default.asp")
End If
End If
%>
<%
Set rs_cmd = Server.CreateObject ("ADODB.Command")
rs_cmd.ActiveConnection = MM_rsconn_STRING
rs_cmd.CommandText = "SELECT * FROM SVFKFordon WHERE Fordons_ID = " & request.querystring("Fordons_ID") & " AND Medlems_ID = " & strMedlems_ID
rs_cmd.Prepared = true
Set rs = rs_cmd.Execute
rs_numRows = 0
oldFordonData = "Kategori: " & rs.Fields.Item("Kategori").Value & _
" Bilmärke: " & rs.Fields.Item("Bilmarke").Value & _
" Modell: " & rs.Fields.Item("Modell").Value & _
" Årsmodell: " & rs.Fields.Item("Arsmodell").Value & _
" Notering: " & rs.Fields.Item("Notering").Value
%>
SVFK db Online - Redigera fordonsdetaljer
<%
rs.Close()
Set rs = Nothing
end if
end if
%>