<%
FUNCTION fixQuotes( theString )
fixQuotes = REPLACE( theString, "'", "''" )
END FUNCTION
' Get the Form Variables
addProduct = TRIM( Request( "addProduct" ) )
updateProduct = TRIM( Request( "updateProduct" ) )
deleteProduct = TRIM( Request( "deleteProduct" ) )
productID = TRIM( Request( "productID" ) )
productName = TRIM( Request( "productName" ) )
productPrice_AUD = TRIM( Request( "productPrice_AUD" ))
productPrice_USD = TRIM( Request( "productPrice_USD" ))
productPrice_EUR = TRIM( Request( "productPrice_EUR" ))
productPrice_GBP = TRIM( Request( "productPrice_GBP" ))
productPrice_JPY = TRIM( Request( "productPrice_JPY" ))
productPrice_CAD = TRIM( Request( "productPrice_CAD" ))
productPicture = TRIM( Request( "productPicture" ) )
productCategory = TRIM( Request( "productCategory" ) )
productBriefDesc = TRIM( Request( "productBriefDesc" ) )
productFullDesc = TRIM( Request( "productFullDesc" ) )
productStatus = TRIM( Request( "productStatus" ) )
productLink = TRIM( Request( "productLink" ) )
productOrderby = TRIM( Request( "productOrderby" ) )
' Assign Default Values
IF productName = "" THEN
productName = "?????"
END IF
IF productPrice_AUD = "" or NOT isNUMERIC( productPrice_AUD ) THEN
productPrice_AUD = 0
END IF
IF productPrice_USD = "" or NOT isNUMERIC( productPrice_USD) THEN
productPrice_USD= 0
END IF
IF productPrice_EUR = "" or NOT isNUMERIC( productPrice_EUR ) THEN
productPrice_EUR = 0
END IF
IF productPrice_GBP = "" or NOT isNUMERIC( productPrice_GBP ) THEN
productPrice_GBP = 0
END IF
IF productPrice_JPY = "" or NOT isNUMERIC( productPrice_JPY ) THEN
productPrice_JPY = 0
END IF
IF productPrice_CAD = "" or NOT isNUMERIC( productPrice_CAD ) THEN
productPrice_CAD = 0
END IF
IF productPicture = "" THEN
productPicture = "?????"
END IF
IF productCategory = "" THEN
productCategory = "?????"
END IF
IF productBriefDesc = "" THEN
productBriefDesc = "?????"
END IF
IF productFullDesc = "" THEN
productFullDesc = "?????"
END IF
IF productLink = "" THEN
productLink = "?"
END IF
IF productOrderby = "" THEN
productOrderby = "999"
END IF
' Open Database Connection Server.MapPath(".")
dbPath = "E:/hshome/webcaddy/database/storedbexchange.mdb"
Set Con = Server.CreateObject("ADODB.Connection")
Con.Open "PROVIDER=MICROSOFT.JET.OLEDB.4.0;DATA SOURCE=" & dbPath
%>
Manage Products
<%
' Add New Product
IF addProduct <> "" THEN
sqlString = "INSERT INTO Products " &_
"( product_name, product_price_AUD,product_price_USD,product_price_EUR," &_
"product_price_GBP,product_price_JPY,product_price_CAD, product_picture, " &_
"product_category, product_briefdesc, product_fulldesc, " &_
"product_link, product_orderby, product_status ) VALUES ( " &_
" '" & productName & "', " &_
cCur( productPrice_AUD) & ", " &_
cCur( productPrice_USD) & ", " &_
cCur( productPrice_EUR) & ", " &_
cCur( productPrice_GBP) & ", " &_
cCur( productPrice_JPY) & ", " &_
cCur( productPrice_CAD) & ", " &_
" '" & productPicture & "', " &_
" '" & productCategory & "', " &_
" '" & productBriefDesc & "', " &_
" '" & productFullDesc & "', " &_
" '" & productLink & "', " &_
" '" & productOrderby & "', " &_
productStatus & " )"
Con.Execute sqlString
%>
|
<%=productName%> was added to the database
|
<%
END IF
' Update Product
IF updateProduct <> "" THEN
sqlString = "UPDATE Products SET " &_
"product_name='" & fixQuotes( productName ) & "'," &_
"product_price_AUD=" & cCUR( productPrice_AUD ) & "," &_
"product_price_USD=" & cCUR( productPrice_USD ) & "," &_
"product_price_EUR=" & cCUR( productPrice_EUR ) & "," &_
"product_price_GBP=" & cCUR( productPrice_GBP ) & "," &_
"product_price_JPY=" & cCUR( productPrice_JPY ) & "," &_
"product_price_CAD=" & cCUR( productPrice_CAD ) & "," &_
"product_picture='" & fixQuotes( productPicture ) & "'," &_
"product_category='" & fixQuotes( productCategory ) & "'," &_
"product_briefdesc='" & fixQuotes( productBriefDesc ) & "'," &_
"product_fulldesc='" & fixQuotes( productFullDesc ) & "'," &_
"product_link='" & fixQuotes( productLink ) & "'," &_
"product_orderby='" & fixQuotes( productOrderby ) & "'," &_
"product_status=" & productStatus & " WHERE " &_
"product_id=" & productID
Con.Execute sqlString
%>
|
<%=productName%> was updated in the database
|
<%
END IF
' Delete Product
IF deleteProduct <> "" THEN
sqlString = "DELETE FROM Products WHERE " &_
"product_id=" & productID
Con.Execute sqlString
%>
|
<%=productName%> was delete from the database
|
<%
END IF
%>
|
Manage Products
|
<%
sqlString = "SELECT product_id, product_name FROM Products " &_
"ORDER BY product_name"
SET RS = Con.Execute( sqlString )
WHILE NOT RS.EOF
%>
|
">
<%=RS( "product_name" )%> |
<%
RS.MoveNext
WEND
%>
|
|
Add Product
|