previewitem.asp

asp开发 asp开发 asp开发 asp开发

<!-- #include file="auctionlib.asp" -->
<%
sUserName    = Request.Form("UserName")
sPassword    = Request.Form("Password")
sTitle       = Request.Form("Title")
iCat         = Request.Form("Category")
iDays        = FVal(Request.Form("Days"))
sImageURL    = Request.Form("ImageURL")
sDescription = Request.Form("Description")
iStartingBid = FVal(Request.Form("StartBid"))
iIncrement   = FVal(Request.Form("Increment"))
dCloseDate   = DateAdd("d", iDays, NOW) 

Call OpenDBConn
Call DoPageHeader

If iDays <= iMaxAuctionDays Then
	regSQL = ""
	regSQL = regSQL & "SELECT COUNT(*) as Total FROM Registration WHERE username = " & SQLStr(sUserName) & " AND password = " & SQLStr(sPassword) & " "
		Set regRS = GobjConnect.Execute(regSQL)
			If regRS.Fields("Total") = 1 then
				
				ValSQL = ""
				ValSQL =ValSQL & "SELECT * FROM Registration WHERE username = " & SQLStr(sUserName) & " AND password = " & SQLStr(sPassword) & " "
				set valRS = GobjConnect.Execute(ValSQL)
				If valRS.Fields("Validated") = true Then
					'Response.Write("Validated<BR>")
					Call InsertAd
				Else
					'Response.Write("Not Validated<BR>")
					Call PostDenied
				End If
				
			Else
				Call PostDenied
			End If
Else
	Response.Write("<SMALL><CENTER>对不起! 拍卖时间最长的期限为 " & iMaxAuctionDays & " 天<BR>")
	Response.Write("请在浏览器中单击 ""<B>后退</B>"" 按钮继续<BR></CENTER></SMALL>")
End If


Sub InsertAd
	userSQL = ""
	userSQL = userSQL & "SELECT * FROM registration WHERE "
	userSQL = userSQL & "username = " & SQLStr(sUserName) & " AND password = " & SQLStr(sPassword)
	Set UserRS = GobjConnect.Execute(userSQL)	
	
			
		Response.Write("<P><CENTER><BIG><BIG>预览拍卖物资料</BIG></BIG><BR>")
		Response.Write("<SMALL>如果没有问题请单击下方的[发送]按钮<BR>")
		Response.Write("如果有任何问题请在浏览器中单击 ""<B>后退</B>"" 按钮进行修改</CENTER><BR><CENTER>")
		Response.Write("<TABLE BORDER=0 WIDTH=550 CELLSPACING=""0"" CELLPADDING=""3"">") 
		Response.Write("<TR bgcolor=""" & linecolor & """><TD COLSPAN=""3""> </TD></TR>")
		Response.Write("<TR bgcolor=""" & topcolor & """><TD COLSPAN=""3"" VALIGN=""bottom""><BIG>" & sTitle & "</BIG></TD></TR>")
		Response.Write("<TR bgcolor=""" & topcolor & """><TD><B><SMALL>目前的拍卖价: " & FormatCurrency(iStartingBid, 2) & "</SMALL></B>")
		Response.Write("<BR><SMALL><B>拍卖结束日期: " & dCloseDate & " </SMALL></B></TD>")
		Response.Write("<TD><SMALL><SMALL><B>位置: </B> " & UserRS.Fields("city") & ", " & UserRS.Fields("state") & "<BR>")
		Response.Write("<B>拍卖物所有者: </B> <A HREF = ""mailto:" & UserRS.fields("Email") & chr(34) & ">" & UserRS.Fields("UserName") & "</A><BR>")
		Response.Write("</SMALL></SMALL></TD>")
		Response.Write("<TD>&nbsp;</TD></TR>")
		Response.Write("<TR bgcolor=" & chr(34) & linecolor & chr(34) & "><TD COLSPAN=""3""> </TD></TR>")
		Response.Write("<TR><TD valign=""top"" height=""50"" COLSPAN=""3"">")
					
		Response.Write("<SMALL>" & sDescription & "<P><P></SMALL></TD></TR>")

			'Check for image
				If LEN(TRIM(sImageURL)) > 0 Then
					Response.Write("<TR><TD colspan=""3""><CENTER><IMG BORDER=""0"" SRC=" & chr(34) & sImageURL & chr(34) & "></CENTER></TD></TR>")
				End If 
		Response.Write("<TR><TD valign=""top"" height=""50"" COLSPAN=""3"">")			
		Response.Write("<BIG>下一次出价 - " & FormatCurrency((iStartingBid + iIncrement), 2) & " </TD></TR>")
				
		Response.Write("<FORM METHOD=""POST"" ACTION=""postitem.asp"">")
		Response.Write("<TR><TD COLSPAN=""3""><HR>")
		Response.Write("<INPUT TYPE=""HIDDEN"" NAME=""UserName"" Value=""" & sUserName & """>")
		Response.Write("<INPUT TYPE=""HIDDEN"" NAME=""Password"" Value=""" & sPassword & """>")
		Response.Write("<INPUT TYPE=""HIDDEN"" NAME=""Title"" Value=""" & sTitle & """>")
		Response.Write("<INPUT TYPE=""HIDDEN"" NAME=""Category"" Value=""" & iCat & """>")
		Response.Write("<INPUT TYPE=""HIDDEN"" NAME=""Days"" Value=""" & iDays & """>")
		Response.Write("<INPUT TYPE=""HIDDEN"" NAME=""ImageURL"" Value=""" & sImageURL & """>")
		Response.Write("<INPUT TYPE=""HIDDEN"" NAME=""Description"" Value=""" & sDescription & """>")
		Response.Write("<INPUT TYPE=""HIDDEN"" NAME=""StartBid"" Value=""" & iStartingBid & """>")
		Response.Write("<INPUT TYPE=""HIDDEN"" NAME=""Increment"" Value=""" & iIncrement & """>")
		Response.Write("<INPUT TYPE=""SUBMIT"" VALUE=""发送""></TD><TD COLSPAN=""2"">&nbsp;</TD>")
		Response.Write("</TABLE>")
		
End Sub


Sub PostDenied
	Response.Write("<FONT FACE =" & chr(34) & sFont & chr(34) & "><CENTER>")
	Response.Write("对不起!  您的用户名和密码有错误<BR>")
	Response.Write("请在浏览器中单击 ""<B>后退</B>"" 按钮再试一次<BR>")
	Response.Write("如果您尚未注册， <A HREF=""register.asp"">单击这里</A> 注册成为会员<BR>")
	Response.Write("如果您不是会员，就没有权限提供拍卖物<BR>")
	Response.Write("<BR>")


End Sub

Call DoPageFooter
Call CloseDBConn

%>