📄 subjectmanage.asp
字号:
<%@LANGUAGE="VBSCRIPT"%>
<!--#include file="StudentConn.asp" -->
<!--#include file="CheckLogin.asp"-->
<%
MM_editAction = CStr(Request("URL"))
MM_abortEdit = false
MM_editQuery = ""
%>
<%
MM_flag="MM_insert"
If (CStr(Request(MM_flag)) <> "") Then
strSubject=Request("Subject") & ""
if Instr(strSubject,"!")>0 or Instr(strSubject,"@")>0 or Instr(strSubject,"#")>0 or Instr(strSubject,"$")>0 or Instr(strSubject,"%")>0 or Instr(strSubject,"^")>0 or Instr(strSubject,"&")>0 or Instr(strSubject,"*")>0 or Instr(strSubject,"(")>0 or Instr(strSubject,")")>0 or Instr(strSubject,"-")>0 or Instr(strSubject,"=")>0 or Instr(strSubject,"\")>0 or Instr(strSubject,",")>0 or Instr(strSubject,".")>0 or Instr(strSubject,"/")>0 or Instr(strSubject,"?")>0 or Instr(strSubject,"<")>0 or Instr(strSubject,">")>0 or Instr(strSubject,"[")>0 or Instr(strSubject,"]")>0 or Instr(strSubject,"{")>0 or Instr(strSubject,"}")>0 or Instr(strSubject,"|")>0 or Instr(strSubject,"+")>0 or Instr(strSubject,"~")>0 or Lcase(strSubject)="as" then
Response.Redirect "SubjectManage.asp?Err=Char"
end if
MM_dupKeyRedirect="SubjectManage.asp"
MM_rsKeyConnection=MM_StudentConn_STRING
MM_dupKeyUsernameValue = CStr(Request.Form("Subject"))
MM_dupKeySQL="SELECT SubjectName FROM Subject WHERE SubjectName='" & MM_dupKeyUsernameValue & "'"
MM_adodbRecordset="ADODB.Recordset"
set MM_rsKey=Server.CreateObject(MM_adodbRecordset)
MM_rsKey.ActiveConnection=MM_rsKeyConnection
MM_rsKey.Source=MM_dupKeySQL
MM_rsKey.CursorType=0
MM_rsKey.CursorLocation=2
MM_rsKey.LockType=3
MM_rsKey.Open
If Not MM_rsKey.EOF Or Not MM_rsKey.BOF Then
MM_qsChar = "?"
If (InStr(1,MM_dupKeyRedirect,"?") >= 1) Then MM_qsChar = "&"
MM_dupKeyRedirect = MM_dupKeyRedirect & MM_qsChar & "Err=Exist"
Response.Redirect(MM_dupKeyRedirect)
End If
MM_rsKey.Close
End If
%>
<%
if (CStr(Request("MM_delete")) = "form2") Then
MM_editConnection = MM_StudentConn_STRING
MM_editTable = "Subject"
MM_editColumn = "ID"
MM_recordId = "" + Request.Form("Subject") + ""
MM_editRedirectUrl = "SubjectManage.asp"
If (MM_editRedirectUrl <> "" And Request.QueryString <> "") Then
If (InStr(1, MM_editRedirectUrl, "?", vbTextCompare) = 0 And Request.QueryString <> "") Then
MM_editRedirectUrl = MM_editRedirectUrl & "?" & Request.QueryString
Else
MM_editRedirectUrl = MM_editRedirectUrl & "&" & Request.QueryString
End If
End If
End If
%>
<%
If (CStr(Request("MM_insert")) = "form1") Then
MM_editConnection = MM_StudentConn_STRING
MM_editTable = "Subject"
MM_editRedirectUrl = "SubjectManage.asp"
MM_fieldsStr = "Subject|value"
MM_columnsStr = "SubjectName|',none,''"
MM_fields = Split(MM_fieldsStr, "|")
MM_columns = Split(MM_columnsStr, "|")
For i = LBound(MM_fields) To UBound(MM_fields) Step 2
MM_fields(i+1) = CStr(Request.Form(MM_fields(i)))
Next
MM_tableValues = ""
MM_dbValues = ""
For i = LBound(MM_fields) To UBound(MM_fields) Step 2
FormVal = MM_fields(i+1)
MM_typeArray = Split(MM_columns(i+1),",")
Delim = MM_typeArray(0)
If (Delim = "none") Then Delim = ""
AltVal = MM_typeArray(1)
If (AltVal = "none") Then AltVal = ""
EmptyVal = MM_typeArray(2)
If (EmptyVal = "none") Then EmptyVal = ""
If (FormVal = "") Then
FormVal = EmptyVal
Else
If (AltVal <> "") Then
FormVal = AltVal
ElseIf (Delim = "'") Then
FormVal = "'" & Replace(FormVal,"'","''") & "'"
Else
FormVal = Delim + FormVal + Delim
End If
End If
If (i <> LBound(MM_fields)) Then
MM_tableValues = MM_tableValues & ","
MM_dbValues = MM_dbValues & ","
End if
MM_tableValues = MM_tableValues & MM_columns(i)
MM_dbValues = MM_dbValues & FormVal
Next
MM_editQuery = "insert into " & MM_editTable & " (" & MM_tableValues & ") values (" & MM_dbValues & ")"
If (Not MM_abortEdit) Then
Set MM_editCmd = Server.CreateObject("ADODB.Command")
MM_editCmd.ActiveConnection = MM_editConnection
MM_editCmd.CommandText = MM_editQuery
MM_editCmd.Execute
MM_editCmd.ActiveConnection.Close
If (MM_editRedirectUrl <> "") Then
Response.Redirect(MM_editRedirectUrl)
End If
End If
End If
%>
<%
If (CStr(Request("MM_delete")) <> "") Then
MM_editQuery = "delete from " & MM_editTable & " where " & MM_editColumn & " = " & MM_recordId
If (Not MM_abortEdit) Then
Set MM_editCmd = Server.CreateObject("ADODB.Command")
MM_editCmd.ActiveConnection = MM_editConnection
MM_editCmd.CommandText = MM_editQuery
MM_editCmd.Execute
MM_editCmd.ActiveConnection.Close
If (MM_editRedirectUrl <> "") Then
Response.Redirect(MM_editRedirectUrl)
End If
End If
End If
%>
<%
set Recordset1 = Server.CreateObject("ADODB.Recordset")
Recordset1.ActiveConnection = MM_StudentConn_STRING
Recordset1.Source = "SELECT * FROM Subject ORDER BY ID ASC"
Recordset1.CursorType = 0
Recordset1.CursorLocation = 2
Recordset1.LockType = 3
Recordset1.Open()
Recordset1_numRows = 0
%>
<%
Dim Repeat1__numRows
Repeat1__numRows = -1
Dim Repeat1__index
Repeat1__index = 0
Recordset1_numRows = Recordset1_numRows + Repeat1__numRows
%>
<%
Dim Repeat2__numRows
Dim Repeat2__index
Repeat2__numRows = -1
Repeat2__index = 0
Recordset2_numRows = Recordset2_numRows + Repeat2__numRows
%>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML>
<HEAD>
<TITLE>月库项目管理</TITLE>
<META http-equiv=Content-Type content="text/html; charset=gb2312">
<META content="MSHTML 6.00.2600.0" Name=GENERATOR>
<link href="home.css" rel="stylesheet" type="text/css">
<script language="JavaScript">
function checktest(){
var strSubjectName=document.form1.Subject.value;
if(strSubjectName=="")
{
alert("项目名不能为空!");
document.form1.Subject.focus();
return false;
}
}
</script>
</HEAD>
<BODY text=#000000 bgColor=#f7f7ff leftMargin=0 topMargin=0>
<% if Request("Err")="Char" Then %>
<script language="JavaScript" type="text/JavaScript">
alert("项目名称中含有“!@#$^&*()-+=,./?<>[]{}\|~“等非法字符,操作被取消!");
</script>
<%
end if
if Request("Err")="Exist" Then
%>
<script language="JavaScript" type="text/JavaScript">
alert("数据库中已存在此项目名称,操作被取消!");
</script>
<% End If %>
<!--#include file="TestManage_Top.asp"-->
<TABLE width="760" border=0 align="center" cellPadding=0 cellSpacing=0>
<TR>
<TD align="center" bgcolor="f7f7ff">
<form Name="form1" onSubmit="return checktest()" method="POST" action="<%=MM_editAction%>">
<br><br><span class="littletitle"><b>添加新项目:</b></span><font color="#FF0000"><b>
<input name="Subject" type="text" size="10">
<input type="submit" name="Submit" value="添加">
<input type="hidden" name="MM_insert" value="form1">
</b></font>
</form>
<span class="title"><strong>已有的工资项目</strong></span><br>
<br>
<% If Not Recordset1.EOF Or Not Recordset1.BOF Then %>
<% response.Write "<table border='1' cellspacing='0' cellpadding='3' bordercolor='#ccccff' style='border-collapse:collapse'><tr>"
i = 1
Recordset1.MoveFirst
While (Not Recordset1.EOF)
Response.write "<td Width='50' Align='Center'>" & Recordset1.Fields.Item("SubjectName").Value & "</td>"
if (i)>0 and (i mod 8 =0) then response.write "</tr><tr>"
Recordset1.MoveNext
i=i+1
Wend
If (Recordset1.CursorType > 0) Then
Recordset1.MoveFirst
Else
Recordset1.Requery
End If
response.Write "</tr></table>"
%>
<form name="form2" method="POST" action="<%=MM_editAction%>">
<span class="littletitle"><b>删除已有的项目:</b></span>
<select name="Subject">
<%
intTemp = 0
While (NOT Recordset1.EOF)
intTemp=intTemp+1
%>
<option value="<%=(Recordset1.Fields.Item("ID").Value)%>" selected><%=(Recordset1.Fields.Item("SubjectName").Value)%></option>
<%
Recordset1.MoveNext()
Wend
If (Recordset1.CursorType > 0) Then
Recordset1.MoveFirst
Else
Recordset1.Requery
End If
%>
</select>
<% if intTemp>0 then %>
<input name="Submit" type="submit" value="删除">
<input type="hidden" name="MM_delete" value="form2">
<% end if %>
</form>
<br>
<% End If %>
<% If Recordset1.EOF And Recordset1.BOF Then %>
<p align="center">找不到任何项目,请添加项目!<br>
<br>
</p>
<% End If %>
</td>
</TR>
</TABLE>
<table width="760" border="0" align="center" cellpadding="0" cellspacing="0">
<tr>
<td>
<Iframe src="CopyRight.asp" width="760" height="100" marginheight="0" marginwidth="0" scrolling="NO" frameborder="0" name="CopyRight"></iframe>
</td>
</tr>
</table></BODY>
</HTML>
<%
Recordset1.Close()
Set Recordset1=Nothing
%>⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -