File Manager
Back to List
| Current Directory: ~/
Editing: detail_research.asp.bak
Full path: C:\ict\ICT\detail_research.asp.bak
Permissions: rwx
Write test: File appears not directly writable
Current process identity: IIS APPPOOL\DefaultAppPool
<%response.cachecontrol="private"%> <!--#INCLUDE FILE="ConnectDB.asp"--> <!--#include file="chk_login.asp"--> <% pern=session("username") per="2" tb="research" sqlnc="select * from tb_permission where id_staff='"&pern&"' and tb_edit='"&per&"' and tb_name='"&tb&"'" set orsnc=server.createobject("adodb.recordset") orsnc.open sqlnc,conn,1,3 ' if not orsnc.eof then %> <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"> <html><!-- InstanceBegin template="/Templates/ICT.dwt" codeOutsideHTMLIsLocked="false" --> <head> <!-- InstanceBeginEditable name="doctitle" --> <title>�к����ʹ�����͡�ú�����</title> <!-- InstanceEndEditable --> <meta http-equiv="Content-Type" content="text/html; charset=windows-874"> <!-- InstanceBeginEditable name="head" --><!-- InstanceEndEditable --> <link href="bsri2006.css" rel="stylesheet" type="text/css"> <link href="image/favicon.ico" rel="shortcut icon" type="image/x-icon"> </head> <body leftmargin="0" topmargin="0" marginwidth="0" marginheight="0"> <table width="100%" border="0"> <tr> <td colspan="2"><div align="right"><img src="Image/head1.gif" width="800" height="61"></div></td> </tr> <tr> <td colspan="2" background="Image/bghead1.gif"><div align="right"><font size="2" face="MS Sans Serif, Tahoma, sans-serif"><strong>| <a href="http://www.swu.ac.th" target=_blank>SWU</a> | <a href="http://bsri.swu.ac.th" target=_blank>BSRI</a> |<a href="chaPW.asp"><strong>Change Password</strong></a>|<a href="log_out.asp">Log Out </a></strong></font>|</div></td> </tr> <tr> <td width="20%" align="left" valign="top" bgcolor="#FFCCCC"><!-- InstanceBeginEditable name="EditRegion5" --><!--#include file="chk_menu.asp"--><!-- InstanceEndEditable --></td> <td width="77%" align="left" valign="top"><!-- InstanceBeginEditable name="EditRegion3" --> <div align="center"> <p><strong>�ҹ�Ԩ��ʶҺѹ�Ԩ�¾ĵԡ�����ʵ��</strong> <% id=request("id") sql="select * from research where id_contact='"&id&"'" set ors=server.createobject("adodb.recordset") ors.open sql,conn,1,3 if not ors.eof then %> </p> <%if not orsnc.eof then%> <p>[<a href="cowork_res.asp?id=<%=ors("id_contact")%>">��м���Ԩ��Edit</a>][<a href="num_term_res_form.asp?id=<%=ors("id_contact")%>">�ӹǹ�Թ�Ǵ(����ѭ��)Edit</a>][<a href="extratime_res_form.asp?id=<%=ors("id_contact")%>">�������Ҷ֧�ѹ �� ��</a> ][<a href="attachment_file.asp?id=<%=ors("id_contact")%>">�͡���ṺEdit</a>][<a href="add_no_res_form.asp?id=<%=ors("id_contact")%>">�ӴѺ�����ʶҺѹ�͡���</a>][<a href="add_isbn_form.asp?id=<%=ors("id_contact")%>">ISBN</a>][<a href="reportprogress_res_form.asp?id=<%=ors("id_contact")%>">��§ҹ��������˹��</a>]<br><%end if%> <% group=ors("id_type_res") groupc="2" if group=groupc then %> [<a href="sub_res.asp?id=<%=id%>">�ç�������</a>] <%end if%></p> <table width="100%" border="1" cellspacing="0" bgcolor="#99ccff"> <tr> <td><%if not orsnc.eof then%><a href="add_no_res_form.asp?id=<%=ors("id_contact")%>">�ӴѺ���(���������)</a><%else%>�ӴѺ���(���������)<%end if%> </td> <td><%=ors("id_research")%> �ӹǹ������� -<%=ors("printnum")%>- ���� </td> </tr> <tr> <td bgcolor="#FFFFFF"><%if not orsnc.eof then%><a href="add_isbn_form.asp?id=<%=ors("id_contact")%>">ISBN</a><%else%>ISBN<%end if%></td> <td bgcolor="#FFFFFF"><%=ors("isbn_no")%></td> </tr> <tr> <td width="152">�Ţ����ѭ��</td> <td width="411"><%=ors("id_researchr")%></td> </tr> <tr> <td bgcolor="#FFFFFF">������(�/�)</td> <td bgcolor="#FFFFFF"><%=ors("id_type_res")%> <% sqlt="select * from type_res where id_type_res='"&ors("id_type_res")&"'" set orst=server.CreateObject("adodb.recordset") orst.open sqlt,conn,1,3 if not orst.eof then response.write orst("type_res") end if %> </td> </tr> <tr> <td>����������</td> <td><%=ors("research_t")%></td> </tr> <tr> <td bgcolor="#FFFFCC">���������ѧ���</td> <td bgcolor="#FFFFCC"><%=ors("research_e")%></td> </tr> <tr> <td><%if not orsnc.eof then%><a href="reportprogress_res_form.asp?id=<%=ors("id_contact")%>">ʶҹз����Թ���</a><%else%>ʶҹд��Թ���<%end if%></td> <td><%'=ors("id_status_res")%> <% sqlcst="select * from reportprogress_res where id_contact='"&id&"' order by id_status_res" set orscst=server.CreateObject("adodb.recordset") orscst.open sqlcst,conn,1,3 if not orscst.eof then orscst.movelast id_status_res=orscst("id_status_res") response.write "[" response.write orscst("d_report")&"-"&orscst("m_report")&"-"&orscst("y_report") response.write "]" else id_status_res=ors("id_status_res") end if %> <% ' response.write id_status_res sqlsta="select * from status_research where id_status_res='"&id_status_res&"'" set orssta=server.createobject("adodb.recordset") orssta.open sqlsta,conn,1,3 ' response.write sqlsta if not orssta.eof then response.write orssta("status_res_name") end if %> </td> </tr> <tr> <td bgcolor="#FFFFCC">���觷ع</td> <td bgcolor="#FFFFCC"><%=ors("id_capital_res")%> <% sqlc="select * from capital_res where id_capital_res='"&ors("id_capital_res")&"'" set orsc=server.CreateObject("adodb.recordset") orsc.open sqlc,conn,1,3 if not orsc.eof then response.write orsc("capital_res_name") end if %> (<%=ors("id_type_capital_res")%> <% sqlcr="select * from type_capital_res where id_type_capital_res='"&ors("id_type_capital_res")&"'" set orscr=server.CreateObject("adodb.recordset") orscr.open sqlcr,conn,1,3 if not orscr.eof then response.write orscr("type_capital_res") end if %> )</td> </tr> <tr> <td>��Шӻէ�����ҳ</td> <td><%=ors("y_capital")%></td> </tr> <tr> <td bgcolor="#FFFFCC">�ѹ �� �� �������� </td> <td bgcolor="#FFFFCC"><%=ors("d_begin")%> -<%=ors("m_begin")%> -<%=ors("y_begin")%> </td> </tr> <tr> <td>�ӹǹ�Թ������Ѻ������</td> <td><% if ors("amount")="" then response.write "-" else %><%=formatnumber(ors("amount"))%> <%end if%> �ҷ</td> </tr> <tr> <td bgcolor="#FFFFCC"><%if not orsnc.eof then%><a href="num_term_res_form.asp?id=<%=ors("id_contact")%>">�ӹǹ�Ǵ</a><%else%>�ӹǹ�Ǵ<%end if%></td> <td bgcolor="#FFFFCC"><%=ors("num_term")%> �Ǵ </td> </tr> <tr> <td bgcolor="#FFFFCC"> </td> <td bgcolor="#FFFFCC"><% sqlnt="select * from numterm_res where id_contact='"&id&"'" set orsnt=server.CreateObject("adodb.recordset") orsnt.open sqlnt,conn,1,3 if not orsnt.eof then orsnt.movefirst 'aa=1 do while not orsnt.eof response.Write "�Ǵ��� "&orsnt("no_amount")&" �ӹǹ "&orsnt("amount")&"<br>" 'aa=aa+1 orsnt.movenext loop else response.write "-" end if %></td> </tr> <tr> <td>�ѹ �� �� ������� (����ѭ��) </td> <td><%=ors("d_fcontact")%>-<%=ors("m_fcontact")%>-<%=ors("y_fcontact")%> </td> </tr> <tr> <td bgcolor="#FFFFCC"><%if not orsnc.eof then%><a href="extratime_res_form.asp?id=<%=ors("id_contact")%>">��â�������</a><%else%>��â�������<%end if%></td> <td bgcolor="#FFFFCC"><% sqle="select * from extratime_res where id_contact='"&id&"'" set orse=server.CreateObject("adodb.recordset") orse.open sqle,conn,1,3 if not orse.eof then orse.movefirst 'aa=1 do while not orse.eof response.Write "���駷�� "&orse("num_extra")&" �ѹ��� "&orse("d_extra")&"- "&orse("m_extra")&" -"&orse("y_extra")&"<br>" 'aa=aa+1 orse.movenext loop else response.write "-" end if %></td> </tr> <tr> <td><%if not orsnc.eof then%><a href="attachment_file.asp?id=<%=ors("id_contact")%> " target=_blank>�͡���Ṻ</a><%else%>�͡���Ṻ <%end if%></td> <td><% sqlat="select * from attachment_res where id_contact='"&id&"'" set orsat=server.CreateObject("adodb.recordset") orsat.open sqlat,conn,1,3 if not orsat.eof then orsat.movefirst aa=1 do while not orsat.eof response.Write aa&" ������� [<a href=upload/"&orsat("file_name")&" target=_blank>"&orsat("file_name")&"</a>]" response.write "��:<a href=hitc_report.asp?id="&orsat("id_attach")&" >"&orsat("hitc")&"</a>" response.write "<br>" aa=aa+1 orsat.movenext loop else response.write "-" end if %></td> </tr> <tr> <td bgcolor="#FFFFCC"><%if not orsnc.eof then%><a href="cowork_res.asp?id=<%=ors("id_contact")%>">��ª��ѡ�Ԩ��</a><%else%>��ª��ѡ�Ԩ��<%end if%></td> <td bgcolor="#FFFFCC"><% sqlall="select * from cowork_res where id_contact='"&id&"' order by id_level" set orsall=server.CreateObject("adodb.recordset") orsall.open sqlall,conn,1,3 if not orsall.eof then %> <br> <table width="400" border="0"> <% orsall.movefirst do while not orsall.eof s_value=orsall("source_c") response.write "<tr><td>"&orsall("id_level") response.Write "<td>" sqlch="select * from lecturer where id_lecturer='"&orsall("id_lecturer")&"'" set orsch=server.CreateObject("adodb.recordset") orsch.open sqlch,conn,1,3 if s_value="1" then sqlch="select * from lecturer where id_lecturer='"&orsall("id_lecturer")&"'" set orsch=server.CreateObject("adodb.recordset") orsch.open sqlch,conn,1,3 if not orsch.eof then response.Write orsch("name_lec")&" "&orsch("sur_lec") end if elseif s_value="2" then sqlch2="select * from other_lec where id_other_lec='"&orsall("id_lecturer")&"'" set orsch2=server.CreateObject("adodb.recordset") orsch2.open sqlch2,conn,1,3 if not orsch2.eof then response.Write orsch2("firstname")&" "&orsch2("lastname") end if else sqls="select * from staff where id_staff='"&orsall("id_lecturer")&"'" set orss=server.CreateObject("adodb.recordset") orss.open sqls,conn,1,3 if not orss.eof then response.Write orss("name_st")&" "&orss("sur_st") end if end if response.write "<td>" response.Write orsall("proportion") response.Write "<td>" sqlp="select * from position_res where id_position_res='"&orsall("id_position_res")&"'" set orsp=server.CreateObject("adodb.recordset") orsp.open sqlp,conn,1,3 if not orsp.eof then response.write orsp("position_res") end if response.Write orsall("id_position_res") response.Write "<td>" orsall.movenext loop %> </table> <% else response.write "No Data" end if %> </td> </tr> <tr> <td bgcolor="#99CCFF"><%if not orsnc.eof then%> <a href="distribute_res.asp?id=<%=ors("id_contact")%>">��������ŧҹ�Ԩ��</a><%else%>��������ŧҹ�Ԩ�� <%end if%></td> <td bgcolor="#99CCFF"><% sqld="select * from distribute_res where id_contact='"&id&"'" set orsd=server.CreateObject("adodb.recordset") orsd.open sqld,conn,1,3 if not orsd.eof then d=1 orsd.movefirst do while not orsd.eof response.write d&"."&orsd("name_dis_res")&"-"&orsd("d_dis_res")&"-"&orsd("m_dis_res")&"-"&orsd("y_dis_res") sqlt="select * from type_dis_res where id_type_dis_res='"&orsd("id_type_dis_res")&"'" set orst=server.CreateObject("adodb.recordset") orst.open sqlt,conn,1,3 if not orst.eof then response.write orst("type_dis_res")&"<br>" 'response.Write orsch2("id_type_dis_res") end if 'response. d=d+1 orsd.movenext loop else response.write "-" end if %></td> </tr> <tr> <td bgcolor="#FFFFCC"><%if not orsnc.eof then%><a href="getreward_res.asp?id=<%=ors("id_contact")%>">�ҧ��ŷ�����Ѻ</a><%else%>�ҧ��ŷ�����Ѻ<%end if%></td> <td bgcolor="#FFFFCC"><% sqlr="select * from getreward where id_contact='"&id&"'" set orsr=server.CreateObject("adodb.recordset") orsr.open sqlr,conn,1,3 if not orsr.eof then d=1 orsr.movefirst do while not orsr.eof response.write d&"."&orsr("d_reward")&"-"&orsr("m_reward")&"-"&orsr("y_reward") sqltr="select * from reward where id_reward='"&orsr("id_reward")&"'" set orstr=server.CreateObject("adodb.recordset") orstr.open sqltr,conn,1,3 if not orstr.eof then response.write orstr("reward_name")&"<br>" 'response.Write orsch2("id_type_dis_res") end if 'response. d=d+1 orsr.movenext loop else response.write "-" end if %></td> </tr> </table> <% if not orsnc.eof then %> [<a href="edit_research_form.asp?id=<%=ors("id_contact")%>">Edit</a>] [<a href=del_research.asp?id=<%=ors("id_contact")%> onClick="return confirm('�س��ͧ���ź?');" <%a=a+1%>>Del</a>] <%end if end if%> <p> </p> <p> </p> <p> </p> <p></p> <p></p> </div> <!-- InstanceEndEditable --></td> </tr> <tr> <td colspan="2" background="Image/bghead1.gif">Contact Admin:: wassanaw@swu.ac.th tel.02-649-5000 ext 17600</td> </tr> </table> </body> <!-- InstanceEnd --></html>