File Manager
Back to List
| Current Directory: ~/
Editing: cowork_res.asp
Full path: C:\ict\ICT\cowork_res.asp
Permissions: rwx
Write test: File appears not directly writable
Current process identity: IIS APPPOOL\DefaultAppPool
<!--#INCLUDE FILE="ConnectDB.asp"--> <!--#include file="chk_login.asp"--> <% pern=session("username") per="2" tb="research" sqlnc="select * from tb_permission where id_staff='"&pern&"' and tb_edit='"&per&"' and tb_name='"&tb&"'" set orsnc=server.createobject("adodb.recordset") orsnc.open sqlnc,conn,1,3 if not orsnc.eof then %> <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"> <html><!-- InstanceBegin template="/Templates/ict.dwt" codeOutsideHTMLIsLocked="false" --> <head> <!-- InstanceBeginEditable name="doctitle" --> <title>�к����ʹ�����͡�ú�����</title> <!-- InstanceEndEditable --> <meta http-equiv="Content-Type" content="text/html; charset=windows-874"> <!-- InstanceBeginEditable name="head" --><!-- InstanceEndEditable --> <link href="bsri2006.css" rel="stylesheet" type="text/css"> <link href="image/favicon.ico" rel="shortcut icon" type="image/x-icon"> </head> <body leftmargin="0" topmargin="0" marginwidth="0" marginheight="0"> <table width="100%" border="0"> <tr> <td colspan="2"><div align="right"><img src="Image/head1.gif" width="800" height="61"></div></td> </tr> <tr> <td colspan="2" background="Image/bghead1.gif"><div align="right"><font size="2" face="MS Sans Serif, Tahoma, sans-serif"><strong>| <a href="http://www.swu.ac.th" target=_blank>SWU</a> | <a href="http://bsri.swu.ac.th" target=_blank>BSRI</a> |<a href="chaPW.asp"><strong>Change Password</strong></a>|<a href="log_out.asp">Log Out </a></strong></font>|</div></td> </tr> <tr> <td width="20%" align="left" valign="top" bgcolor="#FFCCCC"><!-- InstanceBeginEditable name="EditRegion5" --><!--#include file="chk_menu.asp"--><!-- InstanceEndEditable --></td> <td width="77%" align="left" valign="top"><!-- InstanceBeginEditable name="EditRegion3" --> <div align="center"> <p>��м���Ԩ��<br> ��������ͧ <% id=request("id") sqln="select * from research where id_contact='"&id&"'" set orsn=server.createobject("adodb.recordset") orsn.open sqln,conn,1,3 if not orsn.eof then response.write orsn("research_t") response.write "<br>"&orsn("research_e") '���仹���繡�����͡��Ҽ���Ԩ���͡�� ����������������� �·�������� ���ա���������� ���͡���仴��� response.write "[<a href=detail_research.asp?id="&id&">"&id&"</a>]" %> </p> <table width="70%" border="1"> <tr> <td width="59%" align="center" valign="top"><form name="form2" method="post" action="add_cowork_res.asp"> <table width="100%" border="1"> <tr> <td colspan="2"><div align="center">���������Źѡ�Ԩ��</div></td> </tr> <tr> <td>����</td> <td><select name="id_lecturer"> <option>===����===</option> <% set orsl=server.createobject("adodb.recordset") sqll="select * from lecturer order by name_lec" orsl.open sqll,Conn,1,3 if not orsl.eof then orsl.movefirst do while not orsl.eof response.write "<option value="&orsl("id_lecturer")&"1"&">"&orsl("name_lec")&" "&orsl("sur_lec")&" </option>" s_value1="1" orsl.movenext loop end if %> <option>===��¹͡===</option> <% set orso=server.createobject("adodb.recordset") sqlo="select * from other_lec order by firstname" orso.open sqlo,Conn,1,3 if not orso.eof then orso.movefirst do while not orso.eof response.write "<option value="&orso("id_other_lec")&"2"&">"&orso("firstname")&" "&orso("lastname")&" </option>" s_value2="2" orso.movenext loop end if %> <option>---���˹�ҷ��---</option> <% statusdel="1" set orsst=server.createobject("adodb.recordset") sqlst="select * from staff where statusdel='1' order by name_st " orsst.open sqlst,Conn,1,3 if not orsst.eof then orsst.movefirst do while not orsst.eof response.write "<option value="&orsst("id_staff")&"3"&">"&orsst("name_st")&" "&orsst("sur_st")&" </option>" s_value3="3" orsst.movenext loop end if %> </select> </td> </tr> <tr> <td>���˹�</td> <td><select name="position_res"> <% set orspr=server.createobject("adodb.recordset") sqlpr="select * from position_res" orspr.open sqlpr,Conn,1,3 if not orspr.eof then orspr.movefirst do while not orspr.eof response.write "<option value="&orspr("id_position_res")&">"&orspr("position_res")&" </option>" orspr.movenext loop end if %> </select></td> </tr> <tr> <td>�Ѵ��ǹ</td> <td><input name="proportion" type="text" id="proportion" size="8" maxlength="3"> %</td> </tr> <tr> <td>�ӴѺ���</td> <td><input name="id_level" type="text" size="10"></td> </tr> <tr> <td><div align="left">Contact</div></td> <td><input type="text" name="id" readonly value=<%=id%>></td> </tr> <tr> <td colspan="2"><div align="center"> <INPUT TYPE="hidden" value=<%=s_value1%> NAME="s_value1"> <INPUT TYPE="hidden" value=<%=s_value2%> NAME="s_value2"> <INPUT TYPE="hidden" value=<%=s_value3%> NAME="s_value3"> <input type="submit" name="Submit2" value="Submit"> </div></td> </tr> </table> </form> </td> <td width="41%" bgcolor="#FFFFCC"><form name="form1" method="post" action="add_other_reser.asp"> <table width="100%" border="1"> <tr> <td colspan="2"><div align="center">�����ѡ�Ԩ����¹͡</div></td> </tr> <tr> <td> <table width="100%" border="1"> <tr> <td width="67%"><div align="right">���˹����</div></td> <td width="33%"><input name="oname" type="text" id="oname"></td> </tr> <tr> <td height="29"><div align="right">�ӹ�˹��</div></td> <td><input name="bfname" type="text" id="bfname"></td> </tr> <tr> <td><div align="right">����</div></td> <td><input name="firstname" type="text" id="firstname"></td> </tr> <tr> <td><div align="right">ʡ��</div></td> <td><input name="lastname" type="text" id="lastname"></td> </tr> <tr> <td><div align="right">�ѧ�Ѵ </div></td> <td><input name="ori" type="text" id="ori"></td> </tr> <tr> <td><div align="right">Contact</div></td> <td><input type="text" name="id" readonly value=<%=id%>></td> </tr> </table> </td> </tr> <tr> <td colspan="2"><div align="center"> <input type="submit" name="Submit" value="Submit"> </div></td> </tr> </table></form> <br></td> </tr> <tr> <td colspan="2" align="center" valign="top" bgcolor="#CCFFFF">��ª��ѡ�Ԩ��<br> <% sqlall="select * from cowork_res where id_contact='"&id&"' order by id_level" set orsall=server.CreateObject("adodb.recordset") orsall.open sqlall,conn,1,3 if not orsall.eof then %> <br> <table width="100%" border="1"> <tr> <td><div align="center"><strong>�ӴѺ���</strong></div></td> <td><div align="center"><strong>����-ʡ��</strong></div></td> <td><div align="center"><strong>���˹�</strong></div></td> <td><div align="center"><strong>�Ѵ��ǹ�ҹ�Ԩ��</strong></div></td> <td><div align="center"><strong>Action</strong></div></td> </tr> <% orsall.movefirst do while not orsall.eof 's_value=orsall("source_c") response.write "<tr><td>"&orsall("id_level") response.Write "<td>" s_value=orsall("source_c") if s_value="1" then sqlch="select * from lecturer where id_lecturer='"&orsall("id_lecturer")&"'" set orsch=server.CreateObject("adodb.recordset") orsch.open sqlch,conn,1,3 if not orsch.eof then response.Write orsch("name_lec")&" "&orsch("sur_lec") end if elseif s_value="2" then sqlch2="select * from other_lec where id_other_lec='"&orsall("id_lecturer")&"'" set orsch2=server.CreateObject("adodb.recordset") orsch2.open sqlch2,conn,1,3 if not orsch2.eof then response.Write orsch2("firstname")&" "&orsch2("lastname") end if else sqls="select * from staff where id_staff='"&orsall("id_lecturer")&"'" set orss=server.CreateObject("adodb.recordset") orss.open sqls,conn,1,3 if not orss.eof then response.Write orss("name_st")&" "&orss("sur_st") end if end if 'response.Write orsall("id_lecturer") response.Write "<td>" sqlp="select * from position_res where id_position_res='"&orsall("id_position_res")&"'" set orsp=server.CreateObject("adodb.recordset") orsp.open sqlp,conn,1,3 if not orsp.eof then response.write orsp("position_res") end if ' response.Write orsall("id_position_res") response.Write "<td>" response.write orsall("proportion") response.Write "<td>" %> [<a href=del_cowork_res.asp?id=<%=orsall("id_contact")%>&id_l=<%=orsall("id_lecturer")%> onClick="return confirm('�����Ҩ�ź?');">Del</a>] <% orsall.movenext loop %> </table> <% else response.write "No Data" end if %> </td> </tr> </table> <p> </p> <p> <% end if %> </p> </div> <!-- InstanceEndEditable --></td> </tr> <tr> <td colspan="2" background="Image/bghead1.gif">Contact Admin:: wassanaw@swu.ac.th tel.02-649-5000 ext 17600</td> </tr> </table> </body> <!-- InstanceEnd --></html> <% else %> <SCRIPT LANGUAGE="JavaScript"> <% response.write "window.location.href='index.html';" %> --> </SCRIPT> <% end if %>