<%
mcompanyPermit=Request.Form("companyPermit")
Response.Write(mcompanyPermit)
mdivisionPermit=Request.Form("divisionPermit")
Response.Write(mdivisionPermit)
mcompanyPermit=Request.Form("companyPermit")
Response.Write(mcompanyPermit)
mdivisionPermit=Request.Form("divisionPermit")
Response.Write(mdivisionPermit)
mPassword=Request.Form("password")
Response.Write(mPassword)
User=Request.Form("User")
mtableAction=Request.Form("tableAction")
Response.Write(User)
response.expires=-1
Set OBJdbConnection=Server.CreateObject("ADODB.Connection")
OBJdbConnection.Open "DSN=menu;UID=userName;PWD=userPassword;Database=dataBaseName"
Set SQLStmt =Server.CreateObject("ADODB.Command")
Set RS = Server.CreateObject ("ADODB.Recordset")
q=ucase(User)
q=User
if q<>"" then
SQLStmt.CommandText = "select * from users where userid='" & q &"'"
SQLStmt.CommandType = 1
Set SQLStmt.ActiveConnection = OBJdbConnection
RS.Open SQLStmt
Response.Write(User)
if not RS.EOF then
if mtableAction="delete" then
stat="delete from users where userid='" & q &"';"
else
stat="update users set divisionPermit='"&mdivisionPermit&"',companyPermit='"&mcompanyPermit&"',password='"&_
mPassword&"' where userid='" & q &"';"
end if
else
stat="insert into users (userid,password,divisionPermit,companyPermit) values ('" &_
q & "','"&mPassword&"',"&"'"&mdivisionPermit&"',"&"'"&mcompanyPermit&"');"
end if
Response.Write(stat)
OBJdbConnection.Execute(stat)
Response.Redirect "useradd.asp"
end if
%>
<!DOCTYPE html>
<html>
<head>
</head>
<body style="height:20px">
<input type="button" value="Return" onClick="history.go(-1);return true;">
</body>
</html>
沒有留言:
張貼留言