total_admin_edit.asp

1.多种查询方式

<%@ LANGUAGE="VBScript"%>
<% response.buffer=true %>
<%const title="用户信息修改"%>
<!--#include file=../data/myPrg.asp-->
<!--#include file=../data/connect.asp-->
<!--#include file=../data/username.inc-->
<%
sp = split(session("username"),";")   
UserFlag = sp(1)
UserCompanyid = sp(0)
User = sp(2) 

if UserFlag > 1 then
	call closedatabase
	Response.End 
end if
dim curaction, curid, bedit, founderr, errmsg
curaction = request("action")
curid = request("id")
curid = replace(curid,"'","")
bedit = false
founderr = false
if curaction = "edit" then
	bedit = true
end if
dim sql
'删除记录
if cstr(request("action2")) = "admindelete" then
	if not isnumeric(request("id")) then
		call closedatabase
		Response.Write "<script language=javascript>"
		Response.Write "alert(""id必须为整数！"");history.go(-1);"
		Response.Write "</script>"
		Response.End
	end if
	sql = "delete from users where id = "& request("id") &" "
	conn.execute(sql)
	if err.number <> 0 then
		call closedatabase
		response.write "无法保存,数据库操作出错:" + err.description
		Response.End 
	end if
end if
 
%>
<html>
<head>
<meta http-equiv="Content-Type"content="text/html; charset=gb_2312-80">
<meta name="GENERATOR" content="Microsoft FrontPage Express 2.0">

<title><%=title%></title>
<link rel=stylesheet type=text/css href=../data/forum.css>
<script language="javascript">
function confirmDel(id,username){
if ( confirm("你确定要删除用户名为 "+username+" 的用户记录吗？")) {
window.location.href = "total_admin_edit.asp?action2=admindelete&companyid=<%=UserCompanyid%>&id=" + id;
  }
}
</script>
</head>
<body topmargin="0">

<% 
'on error resume next
Showtitle(title)
'取出用户名，所在公司，及权限标志

'修改记录
if curaction = "editsave" then
	if trim(request("username")) = "" or trim(request("password")) = ""  then
		founderr = true
		errmsg = "<p><font color=red>请填写完整用户名称和密码！</font></p>"
	end if
	if founderr then
		call closedatabase
		response.write errmsg
		Response.End 
	else
	
		set rs7=server.CreateObject("ADODB.recordset")
		username = trim(request.form("username"))
		username = replace(username,"'","’")
		username = replace(username,";","；")
		password = trim(Request.Form("password"))
		password = replace(password,"'","’")
		

			sql = "select user_companyid from users where id = "&curid&""
			set rs_users2 = conn.execute(sql)
			if not rs_users2.eof then
				sql = "select * from users where  username = '" & username &"' and id <> " + curid
					rs7.open sql,conn,3,2
				if rs7.eof then
					sql= "update users set username = '"&username&"',password = '"&password&"' where id = "&curid&""		
					conn.execute(sql)
					if err.number <> 0 then
						response.write "无法保存,数据库操作出错:" + err.description
					else
						response.write "<center>记录已经更新到数据库。</center>"
					end if
				else
					response.write "<center><font color=red>该用户名称已存在！</font></center>"
				end if
				rs7.close
				set rs7 = nothing
			else
				rs_user2.close
				set rs_user2 = nothing
				call closedatabase
				Response.Write "<script language=javascript>"
				Response.Write "alert(""无此用户名或权限不够，更多事宜，请与管理员联系!"");history.back();"
				Response.Write "</script>"
				Response.End 
			end if
			rs_users2.close
			set rs_user2 = nothing	
		end if
end if
dim rs, rs1, sql1, strtype, strvalue
set rs8=server.CreateObject("ADODB.recordset")

	sql = "select * from users  where flag = 2 order by id desc"
rs8.open sql, conn, 3, 2
if err.number <> 0 then
	rs8.Close
	set rs8 = nothing
	call closedatabase
	response.write "数据库操作失败："&err.description & "<br>"
	Response.Write "错误程序：" & Err.Source & "<br>"
	Response.End 
		else
		if rs8.eof and rs8.bof then
			response.write "没有记录"
		else
		
 %>

<table border='1' width=80% align='center' cellspacing='0' cellpadding='0' bordercolorlight='#000000'bordercolordark='#FFFFFF'bgcolor='#DADBFC'>
<tr>
 <td colspan=4 align=center bgcolor=red><b><font color=yellow> 用户信息一览</font></b></td>
</tr>
<tr bgcolor=#0000A0>
<td align=center><font color=white>用户名</font></td>
<td align=center><font color=white>密码</font></td>
<td align=center><font color=white>操作</font></td></tr>
<% 
dim curpage, i
if request("page")="" then
  	curpage = 1
else
	curpage = clng(request("page"))
end if

rs8.pagesize = 5
rs8.absolutepage = curpage
for i = 1 to rs8.pagesize
    flag = rs8("flag")
	%>
<tr>
<td align=center><%= rs8("username") %></td>
<td align=center><%= rs8("password") %></td>
<td align=center>
<a href='total_admin_edit.asp?action=edit&id=<%= rs8("id") %>&page=<%=curpage%>&username=<%=rs8("username")%>'>编辑</a>|
<a href="javascript:confirmDel('<%= rs8("id") %>','<%=rs8("username")%>')">删除</a>
</td></tr>
<% rs8.movenext
if rs8.eof then
	i = i + 1
	exit for
end if
next %>
</table>
<%		
		response.write "<p align=center>"
		response.write "第" + cstr(curpage) + "页/总" + cstr(rs8.pagecount) + "页 "
		response.write "本页" + cstr(i-1) + "条/总" + cstr(rs8.recordcount) + "条 "
		if curpage = 1 then 
			response.write "首页 前页 "
		else
			response.write "<a href='total_admin_edit.asp?" + strtype + "=" + cstr(strvalue) + "&page=1'>首页</a> <a href='total_admin_edit.asp?" + strtype + "=" + cstr(strvalue) + "&page=" + cstr(curpage-1) + "'>前页</a> "
		end if
		if  curpage = rs8.pagecount then
			response.write "后页 末页"
		else
			response.write "<a href='total_admin_edit.asp?" + strtype + "=" + cstr(strvalue) + "&page=" + cstr(curpage+1) + "'>后页</a> <a href='total_admin_edit.asp?" + strtype + "=" + cstr(strvalue) + "&page=" + cstr(rs8.pagecount) + "'>末页</a>"
		end if
	End If
	
end if 
rs8.close
set rs8 = nothing
 %>
<hr size=1>
<% 
if bedit then

	sql = "select username,password,flag,user_companyid from users where id = "&curid&""
	set rs_users = conn.execute(sql)
	if not rs_users.eof then
 %>
<form action="total_admin_edit.asp" method="POST">
<p align=center><b>编辑：</b></p>
<table align=center cellspacing="0" cellpadding="2" border="0">
<tr>
    <td width="25%"><b>用户名：</b></td>
    <td width="75%">
    
    <input type="Text"  name="username" size="30" value='<%response.write rs_users("username")%>' maxlength=20 onkeydown="javascript:if(event.keyCode==13)event.keyCode=9">**</td>
	
</tr>
<tr>
    <td width="25%"><b>用户密码：</b></td>
    <td width="75%">
   
    <input type="Text"  name="password" size="30" value='<%response.write rs_users("password")%>' maxlength=20 onkeydown="javascript:if(event.keyCode==13)event.keyCode=9">**</td>
	
</tr>
 
<tr><td align=center colspan="2">
<input type="Hidden" name="action" value='editsave'>
<input type="Hidden" name="id" value='<%= cstr(curid) %>'>
<input type="Hidden" name=<%= strtype %> value=<%= strvalue %>>
<input class=buttonface type="Submit" name="btnsave" value="修改">
<input  class=buttonface type="Reset" value="取消"></td></tr>
</table>

</form>
<% 
	else
		Response.Write "<center><font color=red>无此用户，请跟管理员联系！</font></center>" 
	End If
	rs_users.close
	set rs_users = nothing
end if

'end if

%>
<!--#include file=../data/copyright.asp-->
<%
call closedatabase
%>
</body>
</html>