querymodify.jsp

bbs核心内容简介及原代码和数据库基于JSP2.0的论坛系统

<%@ page contentType="text/html; charset=gb2312" language="java" import="java.sql.*" errorPage="" %>
<jsp:useBean id="yy" scope="page" class="yy.jdbc"/>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=gb2312" />
<title>无标题文档</title>
</head>

<body>
<%!String Is_Edit,Is_Delete,S_UserName,S_UserClass,Edit_Id,Delete_Id,sql,Board_Id,Note_Title,Note_Content,Note_Icon,Note_Sign;%>
<%
Is_Edit="0";
Is_Delete="0";
//判断用户是否登陆
if(session.getValue("UserName")==null){
response.sendRedirect("err.jsp?id=5");
}else{
Connection con=yy.getConn();
Statement stmt=con.createStatement(ResultSet.TYPE_SCROLL_INSENSITIVE,ResultSet.CONCUR_READ_ONLY);
ResultSet rs=-null;
Board_Id=request.getParameter("fid");
Edit_Id=request.getParameter("editid");
Delete_Id=request.getParameter("deleteid");
Note_Id=request.getParameter("noteid");
Note_Title=request.getParameter("title");
Note_Title=yy.ex_chinese(Note_Title)
Note_Content=request.getParameter("content");
Note_Content=yy.ex_chinese(Note_Content);
Note_Icon=request.getParameter("icon");
Note_Sign=request.getParameter("signid");
//判断用户级别
if(session.getValue("UserClass").equals("系统管理员"))
{
Is_Edit="1";
Is_Delete="1";
}else if(session.getValue("UserClass").equals("版主"))
{
out.println("ok");
sql="select Forum_Id from Forum where Manager_Name='"+session.getValue("UserName")+"'";
rs=stmt.executeQuery(sql);
rs.last();
if(rs.getRow()>0)
{
if(Board_Id.equals(rs.getString("Forum_Id"))){
Is_Edit="1";
Is_Delete="1";
}
}

}else{
sql="select * from Card where Card_Id="+Edit_Id+"and Card_Author='"+session.getValue("UserName")+"'";
rs=stmt.executeQuery(sql);
rs.last();
if(rs.getRow()>0)
Is_Delete="1";
}
if((Is_Edit.equals("1")&&(Delete_Id==null)))
{
//编辑帖子时的数据更新
sql="update Card set Card_name='"+Note_Title+"',Card_Content='"+Note_Content+"',Show_Sign="+Note_Sign+",Card_Image='"+Note_Icon+"'where Card_Id="+Edit_Id;
stmt.executeUpdate(sql);
//重定向到shownote.jsp页
response.sendRedirect("shownote.jsp?fid="+Board_Id+"&noteid="+Note_Id);
}else if(Is_Delete.equals("0")&&(Edit_Id!=null))
response.sendRedirect("err.jsp?id=6");
if(Is_Delete.equals("1")&&(Edit_Id!=null)){
//删除回复时的数据更新
sql="Delete from Card where Card_Id="+Delete_Id;
stmt.executeUpdate(sql);
out.println("<html><meta http-equiv='refresh' content='1;url=board.jsp?fid="+Board_Id+"'></html>");
//重定向到board.jsp页
response.sendRedirect("board.jsp?fid="+Board_Id);

}
else if(Is_Edit.equals("0")&&(Delete_Id!=null))
response.sendRedirect("err.jsp?id=7");
}
%>
</body>
</html>