Editing: index_eval.asp.bak

<!--#include file="inc_cache_control.asp"--> <!--#include file="inc_access_control.asp"--> <!--#include file="chk_login.asp"--> <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"> <html><!-- InstanceBegin template="/Templates/ict.dwt" codeOutsideHTMLIsLocked="false" --> <head> <!-- InstanceBeginEditable name="doctitle" --> <title>�к����ʹ�����͡�ú�����</title> <!-- InstanceEndEditable --> <meta http-equiv="Content-Type" content="text/html; charset=windows-874"> <!-- InstanceBeginEditable name="head" --><!-- InstanceEndEditable --> <link href="bsri2006.css" rel="stylesheet" type="text/css"> <link href="image/favicon.ico" rel="shortcut icon" type="image/x-icon"> </head> <body leftmargin="0" topmargin="0" marginwidth="0" marginheight="0"> <table width="100%" border="0"> <tr> <td colspan="2"><div align="right"><img src="Image/head1.gif" width="800" height="61"></div></td> </tr> <tr> <td colspan="2" background="Image/bghead1.gif"><div align="right"><font size="2" face="MS Sans Serif, Tahoma, sans-serif"><strong>| <a href="http://www.swu.ac.th" target=_blank>SWU</a> | <a href="http://bsri.swu.ac.th" target=_blank>BSRI</a> |<a href="chaPW.asp"><strong>Change Password</strong></a>|<a href="log_out.asp">Log Out </a></strong></font>|</div></td> </tr> <tr> <td width="20%" align="left" valign="top" bgcolor="#FFCCCC"><!-- InstanceBeginEditable name="EditRegion5" --><!--#include file="chk_menu.asp"--><!-- InstanceEndEditable --></td> <td width="77%" align="left" valign="top"><!-- InstanceBeginEditable name="EditRegion3" --> <% '***************************************************************** session("tb_name")="command" %> <!--#include file="chk_permission.asp"--> <% '***************************************************************** if session("tb_preview") <> 1 or session("id_lecturer1") = id_lecturer then '���Է��� �����㹰ҹ ��� ����Ңͧ�������ͧ %> <table width="100%" border="0" cellspacing="0"> <tr> <td width="892" align="left" valign="top" ><div align="center"><font size=2><strong> <%if session("tb_edit") = 2 then%>[<a href=command_add_form.asp?crd=1>+����� Thesis+</a>][<a href=command_add_form.asp>+����觷����+</a>][<a href=command_add_author_form.asp>˹��§ҹ����͡�����</a>]<%end if%><br><font size=2>�ʴ�����觵���� �.�. <br><br> <table border=0> <% response.write "<FORM METHOD=POST ACTION=index_com.asp >" %> <tr> <td colspan=7>�� �.�. <select name="cyear" style="font-size=16px"> <option value=0>������</option> <% sqlyear="select distinct cyear from commando order by cyear desc" set orsyear=server.createobject("adodb.recordset") orsyear.open sqlyear,conn,1,3 if not orsyear.eof then orsyear.movefirst do while not orsyear.eof response.write "<option value="&orsyear("cyear")&">"&orsyear("cyear") response.write "</option>" orsyear.movenext loop else response.write "<option>����դ����" response.write "</option>" end if %> </select> ˹��§ҹ����͡����� <select name="cid_author" style="font-size=16px"> <option value=0>������</option> <% set ors_=server.createobject("adodb.recordset") sqlmark_="select * from command_author" ors_.open sqlmark_,Conn,1,3 ors_.movefirst do while not ors_.eof response.write "<option value="&ors_("cid_author")&">"&ors_("cauthor")&"</option>" ors_.movenext loop %> </select> <input type="text" name="keyword" style="font-size=16px"></input> <input type="submit" name="Submit" value="Go!" style="font-size=16px"> </td> <%response.write "</tr>" response.write "</FORM>" cid_author=request.form("cid_author") keyword=request.form("keyword") cyear=request.form("cyear") if cyear="" and cid_author="" and keyword="" then '����Ҥ����á��������һջѨ�غѹ���ʴ� ����դ�������� y=year(now()) cyear=543+y sqlall="select * from commando where cyear='"&cyear&"' order by cyear,cno" elseif cyear="0" and cid_author="0" and keyword="" then '������͡�ҷ�駤�� ������������դӤ� 'y=year(now()) 'cyear=543+y sqlall="select * from commando order by isnumeric(cyear), isnumeric(cno)" response.write "<tr bgcolor=#FFFFCC><td colspan=7>����� �.�. ������<strong>" elseif cid_author="0" and cid_author="0" and keyword<>"" then '�к��褹�͡����� sqlall="select * from commando where cid like '%"&keyword&"%' or cname like '%"&keyword&"%' or cdetail like '%"&keyword&"%' order by cyear,cno " elseif cyear="0" and keyword<>"" and cid_author>0 then '�кػ����ҧ���� sqlall="select * from commando where cid like '%"&keyword&"%' or cname like '%"&keyword&"%' or cdetail like '%"&keyword&"%' and cid_author='"&cid_author&"' order by cyear,cno" elseif cid_author="0" and cyear>0 and keyword<>"" then sqlall="select * from commando where cid like '%"&keyword&"%' or cname like '%"&keyword&"%' or cdetail like '%"&keyword&"%' and cyear='"&cyear&"' order by cyear,cno " elseif keyword<>"" and cyear>0 and cid_author>0 then sqlall="select * from commando where cid like '%"&keyword&"%' or cname like '%"&keyword&"%' or cdetail like '%"&keyword&"%' and cyear='"&cyear&"' and cid_author='"&cid_author&"' order by cyear, cno" elseif cyear>0 and cid_author="0" and keyword="" then sqlall="select * from commando where cyear='"&cyear&"' order by cyear,cno" elseif cyear="0" and cid_author>0 and keyword="" then sqlall="select * from commando where cid_author='"&cid_author&"' order by cyear, cno" else '�кط�駤�� sqlall="select * from commando where cyear='"&cyear&"' and cid_author='"&cid_author&"' order by cyear, cno" end if 'if keyword<>"" then 'sqlall=sqlall+" or cid like '%"&keyword&"%' or cname like '%"&keyword&"%' order by cid desc" 'else 'sqlall=sqlall+" order by cid desc" 'end if response.write "<tr bgcolor=#CFCFCF><td>�ӴѺ���<td>�Ţ�������<td>���ͤ����<td>������ѹ���<td>��� � �ѹ��� <td>Download<td>Action" set orsall=server.createobject("adodb.recordset") orsall.open sqlall,conn,1,3 'cid_author=orsall("cid_author") 'response.write cid_author 'if cid_author="" then sql_curri="select * from command_author where cid_author='"&cid_author&"'" set ors_curri=server.createobject("adodb.recordset") ors_curri.open sql_curri,conn,1,3 'response.write sqlall if not orsall.eof then if cid_author="" or cid_author="0" then else response.write " <tr><td colspan=7>����觢ͧ "&ors_curri("cauthor")&" �� "&cyear end if i=0 do while not orsall.eof 'sqlcs="select * from commando where cyear='"&orsall("cyear")&"'and cid_author='"&orsall("cid_author")&"'" 'set orscs=server.createobject("adodb.recordset") 'orscs.open sqlcs,conn,1,3 'if not orscs.eof then 'orscs.movefirst 'do while not orscs.eof i=i+1 if i mod 2 = 0 then bg1="#EEEEEE" else bg1="ffffff" end if response.write "<tr bgcolor="&bg1&"><td>"&i&"<td>"&orsall("cno")&"/"&orsall("cyear")&"<td>"&orsall("cname") sqlctype="select * from command_type where id_type_command='"&orsall("id_type_command")&"'" set orsctype=server.createobject("adodb.recordset") orsctype.open sqlctype,conn,1,3 if not orsctype.eof then response.write orsctype("type_command")&" " end if sqlstu="select * from student where id_stu='"&orsall("id_stu")&"'" set orsstu=server.createobject("adodb.recordset") orsstu.open sqlstu,conn,1,3 if not orsstu.eof then response.write orsstu("name_stu")&" " response.write orsstu("sur_stu") end if response.write "<td> "&orsall("cdate2")&"/"&orsall("cmonth2")&"/"&orsall("cyear2")&"</td><td> "&orsall("cdate3")&"/"&orsall("cmonth3")&"/"&orsall("cyear3")&"</td><td align=center>" cft=orsall("cid")+".pdf" if orsall("cfile")=cft then response.write "[<a href=command/"&orsall("cfile")&" target=_blank>Download</a>]" else response.write "-" end if response.write "<td>[<a href=command_detail.asp?id="&orsall("cid")&"&crd="&orsall("ctype")&">Edit</a>]" %> [<a href=command_del.asp?id=<%=orsall("cid")%> onclick="return confirm('�س��ͧ���ź?');">Del</a>] <% 'orscs.movenext 'loop 'end if orsall.movenext loop else response.write "<tr bgcolor=#CCFFFF><td colspan=7>��س����͡ �� �.�. ���˹��§ҹ����͡�����</td></td>" end if %> </div></td> </table> <% else '���Է� response.write "<tr><td colspan=3><center>�س������Է����� �س���ѵԹ��" response.write "<meta http-equiv=refresh content =3;url=javascript:history.back();>" '���Է� end if '���Է� %> </table> <!-- InstanceEndEditable --></td> </tr> <tr> <td colspan="2" background="Image/bghead1.gif">Contact Admin:: wassanaw@swu.ac.th tel.02-649-5000 ext 17600</td> </tr> </table> </body> <!-- InstanceEnd --></html>