File Manager
Back to List
| Current Directory: ~/
Editing: thesis_progress_student._backup.asp
Full path: C:\ict\ICT\thesis_progress_student._backup.asp
Permissions: rwx
Write test: File appears not directly writable
Current process identity: IIS APPPOOL\DefaultAppPool
<!--#include file="chk_permission.asp"--> <!--#include file="inc_cache_control.asp"--> <!--#include file="inc_access_control.asp"--> <!--#include file="chk_login.asp"--> <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"> <html><!-- InstanceBegin template="/Templates/ict.dwt" codeOutsideHTMLIsLocked="false" --> <head> <!-- InstanceBeginEditable name="doctitle" --> <title>�к����ʹ�����͡�ú�����</title> <!-- InstanceEndEditable --> <meta http-equiv="Content-Type" content="text/html; charset=windows-874"> <!-- InstanceBeginEditable name="head" --><!-- InstanceEndEditable --> <link href="bsri2006.css" rel="stylesheet" type="text/css"> <link href="image/favicon.ico" rel="shortcut icon" type="image/x-icon"> </head> <body leftmargin="0" topmargin="0" marginwidth="0" marginheight="0"> <table width="100%" border="0"> <tr> <td colspan="2"><div align="right"><img src="Image/head1.gif" width="800" height="61"></div></td> </tr> <tr> <td colspan="2" background="Image/bghead1.gif"><div align="right"><font size="2" face="MS Sans Serif, Tahoma, sans-serif"><strong>| <a href="http://www.swu.ac.th" target=_blank>SWU</a> | <a href="http://bsri.swu.ac.th" target=_blank>BSRI</a> |<a href="chaPW.asp"><strong>Change Password</strong></a>|<a href="log_out.asp">Log Out </a></strong></font>|</div></td> </tr> <tr> <td width="20%" align="left" valign="top" bgcolor="#FFCCCC"><!-- InstanceBeginEditable name="EditRegion5" --><!--#include file="chk_menu.asp"--><!-- InstanceEndEditable --></td> <td width="77%" align="left" valign="top"><!-- InstanceBeginEditable name="EditRegion3" --> <table width="100%" border="0" cellspacing="0"> <tr> <td width="892" align="left" valign="top"> <% '***************************************************************** session("tb_name")="student" %> <% id_stu=request("id_stu") 'response.write session("id_stu1") &"aaa" 'response.write "bbb"&id_stu '***************************************************************** 'if session("tb_preview") =2 or session("id_stu1") = id_stu then '���Է��� �����㹰ҹ ��� ����Ңͧ�������ͧ pern=session("username") per="2" tb="student" sqlnc="select * from tb_permission where id_staff='"&pern&"' and tb_edit='"&per&"' and tb_name='"&tb&"'" set orsnc=server.createobject("adodb.recordset") orsnc.open sqlnc,conn,1,3 %> <div align="left"> <%'if session("tb_edit") = 2 then %> ��§ҹ��������˹�ҡ�÷ӻ�ԭ�ҹԾ��� <%'end if%><br> <table border="0" align="center" cellpadding="0" cellspacing="0" width="100%"> <tr > <td> <table border=0><tr> <td colspan=5 bgcolor=#FFCC00>�����Ź��Ե</td> <% id_stu=request("id_stu") if id_stu="" then id_stu=session("id_stu1") end If id_thesis=request("id_thesis") sql_data="select * from student where id_stu='"&id_stu&"' " set ors_data=server.createobject("adodb.recordset") ors_data.open sql_data,conn,1,3 if not ors_data.eof then %> </tr> <tr bgcolor=#E9E9E9> <td colspan=3><div align="left"> <% response.write id_stu&" " %> <%=ors_data("name_stu")%>    <%=ors_data("sur_stu")%> (<%=ors_data("name_eng")%>  <%=ors_data("sur_eng")%>) E-mail: <%=ors_data("email_stu")%>  <% id_status_edu=ors_data("id_status_edu") set ors3=server.createobject("adodb.recordset") sql3="select * from status_edu where id_status_edu='"&id_status_edu&"'" ors3.open sql3,Conn,1,3 if not ors3.eof then response.write ors3("status_edu") end if %>   <% id_stugroup=ors_data("id_stugroup") sql_all="select * from student_group where id_stugroup='"&ors_data("id_stugroup")&"' " set ors_all=server.createobject("adodb.recordset") ors_all.open sql_all,Conn,1,3 if not ors_all.eof then response.write "" sql_curri="select * from curriculum where id_curriculum='"&ors_all("id_curriculum")&"'" set ors_curri=server.createobject("adodb.recordset") ors_curri.open sql_curri,conn,1,3 if not ors_curri.eof then id_curriculum=ors_all("id_curriculum") response.write ors_curri("curriculum_full")&" " end if sqlt="select * from type_curriculum where id_type_curri='"&ors_all("id_type_curri")&"'" set orst=server.createobject("adodb.recordset") orst.open sqlt,conn,1,3 if not orst.eof then response.write orst("type_curri_th") end if response.write " ��� "&ors_all("no_stugroup")&" " id_major=ors_all("id_major") sql_major="select * from major where id_major='"&id_major&"'" set ors_major=server.createobject("adodb.recordset") ors_major.open sql_major,conn,1,3 if not ors_major.eof then response.write ors_major("major_th") end if end if %> </td></tr> <% response.write "<tr >" '���ͻ�ԭ�ҹԾ��� sqlt="select * from thesis where id_thesis='"&id_thesis&"'" set orst=server.createobject("adodb.recordset") orst.open sqlt,conn,1,3 if not orst.eof then 'response.write "<td>"&orst("id_thesis") response.write "<td>"&orst("thesis_th")&"<br><li>"&orst("thesis_eng") Else response.write "<td>����բ�����" End if %> <tr><td>-------</td></tr> </table> <tr bgcolor=#FFCC00><td >1. �ͺ��§ҹ�Ѩ�غѹ</td></tr> <tr ><td > <table border="0" cellspacing="0" align="center" width="100%"> <tr bgcolor=#FFFFCC><td align=center>�ա���֡��<td align=center>�ͺ���<td align=center>�������ҡ����<td align=center>File<td align=center>�š�þԨ�ó�<td align=center>����� <% '��������ǹ�ͺ�����ѧ�ӧҹ���� date1=datepart("d",date) month1=month(now()) y=year(now()) y=543+y y=right(y,2) if date1=1 then date1="01" elseif date1=2 then date1="02" elseif date1=3 then date1="03" elseif date1=4 then date1="04" elseif date1=5 then date1="05" elseif date1=6 then date1="06" elseif date1=7 then date1="07" elseif date1=8 then date1="08" elseif date1=9 then date1="09" end if if month1=1 then month1="01" elseif month1=2 then month1="02" elseif month1=3 then month1="03" elseif month1=4 then month1="04" elseif month1=5 then month1="05" elseif month1=6 then month1="06" elseif month1=7 then month1="07" elseif month1=8 then month1="08" elseif month1=9 then month1="09" end if dcheck=y&""&month1&""&date1 'response.write int(dcheck)&"<br>" '��Ǩ�ͺʶҹТͧ�ͺ������������������������� Set ors_status=server.createobject("adodb.recordset") sql_status="select * from progress_report_thesis" ors_status.open sql_status,conn,1,3 If Not ors_status.eof then ors_status.movefirst Do while Not ors_status.eof id=ors_status("id_progress_report") If ors_status("datebegin") > dcheck and ors_status("dateend") > dcheck Then '��Ѻ�Ţ�� 0 �ѧ���֧��ǧ���ҡ�˹� sql_edit_st = "update progress_report_thesis set id_status='0' where id_progress_report ='"&id&"'" set ors_edit_st=server.createobject("adodb.recordset") ors_edit_st.open sql_edit_st,Conn,1,3 'response.write "0No���㹪�ǧ���� "&id&"<br>" ElseIf ors_status("datebegin")<= dcheck and ors_status("dateend") >= dcheck Then sql_edit_st="update progress_report_thesis set id_status='1' where id_progress_report='"&id&"'" set ors_edit_st=server.createobject("adodb.recordset") ors_edit_st.open sql_edit_st,Conn,1,3 ' Response.write "1yes㹪�ǧ���� "&id&"<br>" Else ' Response.write "1yes㹪�ǧ���� "&id&"<br>" End If 'Response.write sql_edit_st ors_status.movenext loop End if '��Ǩ�ͺʶҹТͧ�ͺ������������������������� set ors_o=server.createobject("adodb.recordset") sqlmark_o="select * from progress_report_thesis where id_status='1' and id_curriculum='"&ors_all("id_curriculum")&"' and id_type_curri='"&ors_all("id_type_curri")&"' and id_major='"&ors_all("id_major")&"' order by datebegin asc, year_edu desc, semeter desc" ors_o.open sqlmark_o,Conn,1,3 ors_o.movefirst aa=0 do while not ors_o.eof aa=aa+1 if aa mod 2 = 0 then bg1="#EBEBEB" else bg1="#FFFFFF" end If Response.write "<tr bgcolor="&bg1&">" Response.write "<td>"&ors_o("semeter")&"/"&ors_o("year_edu") Response.write "<td align=center>" Response.write ors_o("noofreport")&"<td align=center>"&ors_o("date_begin")&"/"&ors_o("month_begin")&"/"&ors_o("year_begin")&"-"&ors_o("date_end")&"/"&ors_o("month_end")&"/"&ors_o("year_end") '���ͷ��д֧��� ��ͺ��� �չ��Ե�������������� set ors_r=server.createobject("adodb.recordset") sqlmark_r="select * from thesis_report where id_stu='"&id_stu&"' and id_progress_report='"&ors_o("id_progress_report")&"'" ors_r.open sqlmark_r,Conn,1,3 Response.write "<td align=center>" If Not ors_r.eof Then '����� ��� ������ ���ѧ��������� ��ҹ���ѧ If ors_r("id_status")="1" then Response.write sqlmark_r Response.write "[<a href=thesis_progress_file.asp?id="&ors_r("id_report")&">Upload</a>]" Response.write "<td align=center>[<a href=thesis_progress_result.asp?id="&ors_r("id_report")&">-</a>]" %> <td align=center> <form name="form2" method="post" action="preview_thesis_progress.asp"> <%'���ʶҹС�����������ǻ������� disable ����ѧ������� enable 'If ors_r("id_status")="0" then %> <input type="submit" name="Submit" value="Not send"> <input type="hidden" name="id" value=<%=ors_o("id_progress_report")%>> </form> <% End if '���ʶҹС�����������ǻ������� disable ����ѧ������� enable Else '�óշ���ѧ������� End if %> <% ors_o.movenext loop %> </tr> </div></td> </tr> <%'�����ǹ�ʴ��ͺ�����ѧ active ����%> </td></tr> <tr bgcolor=#FFCC00><td colspan=6>2. �����š����§ҹ��������˹��</td></tr> <tr bgcolor=#FFFFCC><td align=center>�ա���֡��<td align=center>�ͺ���<td align=center>�������ҡ����<td align=center>File<td align=center>�š�þԨ�ó�<td align=center>����� <% '���͡�������Ǣ�ͧ�Ѻ��ѡ�ٵâͧ����ͧ set ors_c=server.createobject("adodb.recordset") sqlmark_c="select * from progress_report_thesis where id_status='0' and id_curriculum='"&ors_all("id_curriculum")&"' and id_type_curri='"&ors_all("id_type_curri")&"' and id_major='"&ors_all("id_major")&"' order by datebegin asc, year_edu desc, semeter desc" ors_c.open sqlmark_c,Conn,1,3 ors_c.movefirst a1=0 do while not ors_c.eof a1=a1+1 if a1 mod 2 = 0 then bg1="#EBEBEB" else bg1="#FFFFFF" end If Response.write "<tr bgcolor="&bg1&">" Response.write "<td>"&ors_c("semeter")&"/"&ors_c("year_edu") Response.write "<td align=center>" Response.write ors_c("noofreport")&"<td align=center>"&ors_c("date_begin")&"/"&ors_c("month_begin")&"/"&ors_c("year_begin")&"-"&ors_c("date_end")&"/"&ors_c("month_end")&"/"&ors_c("year_end") set ors_s=server.createobject("adodb.recordset") sqlmark_s="select * from thesis_report where id_stu='"&id_stu&"' and id_progress_report='"&ors_c("id_progress_report")&"'" ors_s.open sqlmark_s,Conn,1,3 Response.write "<td align=center>" Response.write sqlmark_s '�ͺ�����§ҹ��������˹�ҹ�� �����ʹ��Ե�������������� If Not ors_s.eof then Response.write "[<a href=thesis_progress_file.asp?id="&ors_s("id_report")&">View</a>]" Set orsresult=server.createobject("adodb.recordset") sqlresult="select * from result_progress_thesis where id_result='"&ors_s("id_result")&"'" orsresult.open sqlresult,conn,1,3 If Not orsresult.eof then result_name=orsresult("result_name") End if Response.write "<td align=center>[<a href=thesis_progress_result.asp?id="&ors_s("id_report")&">"&result_name&"</a>]" End if %> <td align=center> <% 'If ors_s("id_status")="1" Then ' statusn="��ѹ�����" ' Else ' statusn="�����ѹ�����" 'End if ' Response.write statusn ors_c.movenext loop %> </table> </table> <% end if %> </div></td> </tr> </table> <% 'else '���Է� 'response.write "<tr><td colspan=3><center>�س������Է����� �س���ѵԹ��" 'response.write "<meta http-equiv=refresh content =3;url=javascript:history.back();>" '���Է� 'end if '���Է� %> <!-- InstanceEndEditable --></td> </tr> <tr> <td colspan="2" background="Image/bghead1.gif">Contact Admin:: wassanaw@swu.ac.th tel.02-649-5000 ext 17600</td> </tr> </table> </body> <!-- InstanceEnd --></html>