Modificare il file:
\Admin\hitProd-OLD.asp
<%@LANGUAGE="VBSCRIPT" CODEPAGE="1252"%> <!--#include file="ecommerce.asp" --> <% ' *** Edit Operations: declare variables Dim MM_editAction Dim MM_abortEdit Dim MM_editQuery Dim MM_editCmd Dim MM_editConnection Dim MM_editTable Dim MM_editRedirectUrl Dim MM_editColumn Dim MM_recordId Dim MM_fieldsStr Dim MM_columnsStr Dim MM_fields Dim MM_columns Dim MM_typeArray Dim MM_formVal Dim MM_delim Dim MM_altVal Dim MM_emptyVal Dim MM_i MM_editAction = CStr(Request.ServerVariables("SCRIPT_NAME")) If (Request.QueryString <> "") Then MM_editAction = MM_editAction & "?" & Server.HTMLEncode(Request.QueryString) End If ' boolean to abort record edit MM_abortEdit = false ' query string to execute MM_editQuery = "" %> <% ' *** Update Record: set variables If (CStr(Request("MM_update")) = "form1" And CStr(Request("MM_recordId")) <> "") Then MM_editConnection = MM_ecommerce_STRING MM_editTable = "Prodotti" MM_editColumn = "ID" MM_recordId = "" + Request.Form("MM_recordId") + "" MM_editRedirectUrl = "" ' *** VERSIONE ORIGINALE ' *** MM_fieldsStr = "nome|value|descrizione|value|prezzo|value|foto|value|marca|value|classe|value|codice|value|prenotato|value|disp|value" --> MM_fieldsStr = "Cod|value|nome|value|descrizione|value|prezzo|value|foto|value|marca|value|prenotato|value|classe|value|disp|value" MM_columnsStr = "Cod|',none,''|Nome|',none,''|Descrizione|',none,''|Prezzo|none,none,NULL|Foto|',none,''|Marca|',none,''|Prenotato|',none,''|Classe|',none,''|Dispo|',none,''" ' create the MM_fields and MM_columns arrays MM_fields = Split(MM_fieldsStr, "|") MM_columns = Split(MM_columnsStr, "|") ' set the form values For MM_i = LBound(MM_fields) To UBound(MM_fields) Step 2 MM_fields(MM_i+1) = CStr(Request.Form(MM_fields(MM_i))) Next ' append the query string to the redirect URL If (MM_editRedirectUrl <> "" And Request.QueryString <> "") Then If (InStr(1, MM_editRedirectUrl, "?", vbTextCompare) = 0 And Request.QueryString <> "") Then MM_editRedirectUrl = MM_editRedirectUrl & "?" & Request.QueryString Else MM_editRedirectUrl = MM_editRedirectUrl & "&" & Request.QueryString End If End If End If %> <% ' *** Update Record: construct a sql update statement and execute it If (CStr(Request("MM_update")) <> "" And CStr(Request("MM_recordId")) <> "") Then ' create the sql update statement MM_editQuery = "update " & MM_editTable & " set " For MM_i = LBound(MM_fields) To UBound(MM_fields) Step 2 MM_formVal = MM_fields(MM_i+1) MM_typeArray = Split(MM_columns(MM_i+1),",") MM_delim = MM_typeArray(0) If (MM_delim = "none") Then MM_delim = "" MM_altVal = MM_typeArray(1) If (MM_altVal = "none") Then MM_altVal = "" MM_emptyVal = MM_typeArray(2) If (MM_emptyVal = "none") Then MM_emptyVal = "" If (MM_formVal = "") Then MM_formVal = MM_emptyVal Else If (MM_altVal <> "") Then MM_formVal = MM_altVal ElseIf (MM_delim = "'") Then ' escape quotes MM_formVal = "'" & Replace(MM_formVal,"'","''") & "'" Else MM_formVal = MM_delim + MM_formVal + MM_delim End If End If If (MM_i <> LBound(MM_fields)) Then MM_editQuery = MM_editQuery & "," End If MM_editQuery = MM_editQuery & MM_columns(MM_i) & " = " & MM_formVal Next MM_editQuery = MM_editQuery & " where " & MM_editColumn & " = " & MM_recordId If (Not MM_abortEdit) Then ' execute the update Set MM_editCmd = Server.CreateObject("ADODB.Command") MM_editCmd.ActiveConnection = MM_editConnection MM_editCmd.CommandText = MM_editQuery MM_editCmd.Execute MM_editCmd.ActiveConnection.Close If (MM_editRedirectUrl <> "") Then Response.Redirect(MM_editRedirectUrl) End If End If End If %> <% ' *** Restrict Access To Page: Grant or deny access to this page MM_authorizedUsers="" MM_authFailedURL="login.asp" MM_grantAccess=false If Session("MM_UsernameDaMaSOFTLista") <> "" Then If (true Or CStr(Session("MM_UserAuthorization"))="") Or _ (InStr(1,MM_authorizedUsers,Session("MM_UserAuthorization"))>=1) Then MM_grantAccess = true End If End If If Not MM_grantAccess Then MM_qsChar = "?" If (InStr(1,MM_authFailedURL,"?") >= 1) Then MM_qsChar = "&" MM_referrer = Request.ServerVariables("URL") if (Len(Request.QueryString()) > 0) Then MM_referrer = MM_referrer & "?" & Request.QueryString() MM_authFailedURL = MM_authFailedURL & MM_qsChar & "accessdenied=" & Server.URLEncode(MM_referrer) Response.Redirect(MM_authFailedURL) End If %> <% Dim prodotto__MMColParam prodotto__MMColParam = "1" If (Request.QueryString("IDp") <> "") Then prodotto__MMColParam = Request.QueryString("IDp") End If %> <% Dim prodotto Dim prodotto_numRows Set prodotto = Server.CreateObject("ADODB.Recordset") prodotto.ActiveConnection = MM_ecommerce_STRING prodotto.Source = "SELECT * FROM Prodotti WHERE ID = " + Replace(prodotto__MMColParam, "'", "''") + "" prodotto.CursorType = 0 prodotto.CursorLocation = 2 prodotto.LockType = 1 prodotto.Open() prodotto_numRows = 0 %> <% Dim marc Dim marc_numRows Set marc = Server.CreateObject("ADODB.Recordset") marc.ActiveConnection = MM_ecommerce_STRING marc.Source = "SELECT * FROM Marca" marc.CursorType = 0 marc.CursorLocation = 2 marc.LockType = 1 marc.Open() marc_numRows = 0 %> <% Dim cat Dim cat_numRows Set cat = Server.CreateObject("ADODB.Recordset") cat.ActiveConnection = MM_ecommerce_STRING cat.Source = "SELECT * FROM Classe" cat.CursorType = 0 cat.CursorLocation = 2 cat.LockType = 1 cat.Open() cat_numRows = 0 %> <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd"> <html> <head> <title>Lista di Nascite - Amministrazione</title> <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"> <link href="../CSS/style.css" rel="stylesheet" type="text/css"> <script language="javascript"> function controlla() { document.onkeypress = keyhandler; } function keyhandler(e) { if (document.layers){ Key = e.which; }else{ Key = window.event.keyCode; } if(Key==44){ window.event.keyCode=46; //alert(Key); } } function controllaNo() { document.onkeypress = keyhandlerq; } function keyhandlerq(e) { if (document.layers){ Key = e.which; }else{ Key = window.event.keyCode; } if(Key==46){ window.event.keyCode=46; //alert(Key); } } //--></script> <script language="JavaScript" type="text/JavaScript"> <!-- function MM_goToURL() { //v3.0 var i, args=MM_goToURL.arguments; document.MM_returnValue = false; for (i=0; i<(args.length-1); i+=2) eval(args[i]+".location='"+args[i+1]+"'"); } function MM_findObj(n, d) { //v4.01 var p,i,x; if(!d) d=document; if((p=n.indexOf("?"))>0&&parent.frames.length) { d=parent.frames[n.substring(p+1)].document; n=n.substring(0,p);} if(!(x=d[n])&&d.all) x=d.all[n]; for (i=0;!x&&i<d.forms.length;i++) x=d.forms[i][n]; for(i=0;!x&&d.layers&&i<d.layers.length;i++) x=MM_findObj(n,d.layers[i].document); if(!x && d.getElementById) x=d.getElementById(n); return x; } function MM_validateForm() { //v4.0 var i,p,q,nm,test,num,min,max,errors='',args=MM_validateForm.arguments; for (i=0; i<(args.length-2); i+=3) { test=args[i+2]; val=MM_findObj(args[i]); if (val) { nm=val.name; if ((val=val.value)!="") { if (test.indexOf('isEmail')!=-1) { p=val.indexOf('@'); if (p<1 || p==(val.length-1)) errors+='- '+nm+' must contain an e-mail address.\n'; } else if (test!='R') { num = parseFloat(val); if (isNaN(val)) errors+='- '+nm+' può contenere solo numeri.\n'; if (test.indexOf('inRange') != -1) { p=test.indexOf(':'); min=test.substring(8,p); max=test.substring(p+1); if (num<min || max<num) errors+='- '+nm+' must contain a number between '+min+' and '+max+'.\n'; } } } else if (test.charAt(0) == 'R') errors += '- '+nm+' is required.\n'; } } if (errors) alert('I campi segnati con *\n\nsono obbligatori!\n\n------------\n\nIl campo Prezzo non può\n\ncontenere caratteri!'); document.MM_returnValue = (errors == ''); } //--> </script> </head> <body> <div align="center" class="Stile1"> <p>Modifica di <strong><%=(prodotto.Fields.Item("Nome").Value)%></strong>: <br> <br> <input name="Submit2" type="button" style="font-family: Verdana; font-size: 10px; border: 1px solid #C0C0C0" onClick="MM_goToURL('parent','proList.asp?campo=<%=Request.QueryString("campo")%>&cosa=<%=Request.QueryString("cosa")%>');return document.MM_returnValue" value="Indietro"> </p> <p> </p> <form action="<%=MM_editAction%>" method="POST" name="form1" onSubmit="MM_validateForm('nome','','R','prezzo','','RisNum','codice','','R','descrizione','','R');return document.MM_returnValue"> <table border="0" class="Stile3"> <tr> <td><div align="right">*Cod:</div></td> <td><div align="left"> <input name="cod" type="text" id="cod" style="font-family: Verdana; font-size: 10px; border: 1px solid #C0C0C0" value="<%=(prodotto.Fields.Item("Cod").Value)%>" size="20"> </div></td> </tr> <tr> <td width="141"><div align="right">*Articolo:</div></td> <td width="250"><div align="left"> <input name="nome" type="text" id="nome" style="font-family: Verdana; font-size: 10px; border: 1px solid #C0C0C0" value="<%=(prodotto.Fields.Item("Nome").Value)%>" size="20"> </div></td> </tr> <tr> <td><div align="right">*Descrizione:</div></td> <td><div align="left"> <textarea name="descrizione" cols="40" rows="6" id="descrizione" style="font-family: Verdana; font-size: 10px; border: 1px solid #C0C0C0"><%=(prodotto.Fields.Item("Descrizione").Value)%></textarea> </div></td> </tr> <tr> <td><div align="right">*Prezzo:</div></td> <td><div align="left"> <input name="prezzo" type="text" id="prezzo" style="font-family: Verdana; font-size: 10px; border: 1px solid #C0C0C0" onFocus="controlla()" onBlur="controllaNo()" value="<%=(prodotto.Fields.Item("Prezzo").Value)%>" size="20"> </div></td> </tr> <tr> <td><div align="right">Foto:(nome.est) </div></td> <td><div align="left"> <input name="foto" type="text" id="foto" style="font-family: Verdana; font-size: 10px; border: 1px solid #C0C0C0" value="<%=(prodotto.Fields.Item("Foto").Value)%>" size="20"> </div></td> </tr> <tr> <td><div align="right">*Lista:</div></td> <td><div align="left"> <select name="marca" id="marca" style="font-family: Verdana; font-size: 10px; border: 1px solid #C0C0C0"> <% While (NOT marc.EOF) %> <option value="<%=(marc.Fields.Item("nomeM").Value)%>" <%If (Not isNull((prodotto.Fields.Item("Marca").Value))) Then If (CStr(marc.Fields.Item("nomeM").Value) = CStr((prodotto.Fields.Item("Marca").Value))) Then Response.Write("SELECTED") : Response.Write("")%> ><%=(marc.Fields.Item("nomeM").Value)%></option> <% marc.MoveNext() Wend If (marc.CursorType > 0) Then marc.MoveFirst Else marc.Requery End If %> </select> </div></td> </tr> <tr> <td> <p align="right">Prenotato da:</td> <td> <input name="prenotato" id="prenotato" style="font-family: Verdana; font-size: 10px; border: 1px solid #C0C0C0; float:left" value="<%=(prodotto.Fields.Item("prenotato").Value)%>" size="50"></td> </tr> <tr> <td><div align="right">*Classe:</div></td> <td><div align="left"> <select name="classe" id="classe" style="font-family: Verdana; font-size: 10px; border: 1px solid #C0C0C0"> <% While (NOT cat.EOF) %> <option value="<%=(cat.Fields.Item("Nclasse").Value)%>" <%If (Not isNull((prodotto.Fields.Item("Classe").Value))) Then If (CStr(cat.Fields.Item("Nclasse").Value) = CStr((prodotto.Fields.Item("Classe").Value))) Then Response.Write("SELECTED") : Response.Write("")%> ><%=(cat.Fields.Item("Nclasse").Value)%></option> <% cat.MoveNext() Wend If (cat.CursorType > 0) Then cat.MoveFirst Else cat.Requery End If %> </select> </div></td> </tr> <tr> <td><div align="right">Disponibilità:</div></td> <td><div align="left">No <input <%If (CStr((prodotto.Fields.Item("Dispo").Value)) = CStr("N")) Then Response.Write("checked=""checked""") : Response.Write("")%> name="disp" type="radio" value="N"> Si <input <%If (CStr((prodotto.Fields.Item("Dispo").Value)) = CStr("Y")) Then Response.Write("checked=""checked""") : Response.Write("")%> name="disp" type="radio" value="Y" > </div></td> </tr> <tr> <td><div align="right"></div></td> <td><div align="left"> <br> <input type="submit" name="Submit" value="Modifica" style="font-family: Verdana; font-size: 10px; border: 1px solid #C0C0C0"> </div></td> </tr> </table> <input type="hidden" name="MM_update" value="form1"> <input type="hidden" name="MM_recordId" value="<%= prodotto.Fields.Item("ID").Value %>"> </form> <p> </p> </div> </body> </html> <% prodotto.Close() Set prodotto = Nothing %> <% marc.Close() Set marc = Nothing %> <% cat.Close() Set cat = Nothing %>
[
Íàçàä
]