home *** CD-ROM | disk | FTP | other *** search
<% response.buffer=true Session("back") = Request.ServerVariables("SCRIPT_NAME") ' password protect %> <!---#INCLUDE FILE="dbthemes.asp"---> <!---#INCLUDE FILE="users/passprot.asp"---> <!---#INCLUDE FILE="themes/themes.asp"---> <!---#INCLUDE FILE="config/config.asp"---> <!---#INCLUDE FILE="ad/ad.asp"---> <% Set connusers = Server.CreateObject("ADODB.Connection") connusers.Open "DRIVER={Microsoft Access Driver (*.mdb)}; DBQ=" & server.mappath("./users/admin.mdb") & ";PWD=bideford;" strsql = "SELECT * FROM tblUser WHERE fldUserName = '" & user & "' AND fldPassword = '" & pass & "'" set RS = Server.CreateObject("ADODB.Recordset") RS.Open strsql, connusers, 1, 2 If NOT RS.EOF then user = RS("fldUserName") pass = RS("fldPassword") level = RS("fldlevel") session("level") = level end if RS.close if level = "1" then %> <html> <head><% 'these meta tags can change %> <meta name="AUTHOR" content="Rory Knowles - ASP bahamas / Administrator for Knowles Realty's Web Site at www.KnowlesRealty.com"> <meta name="GENERATOR" content="Microsoft FrontPage 3.0"> <meta name="KEYWORDS" content="bahamas, bahama, bahamas business, bahamas bahamas, bahamian, yellow, pages, business, realty, real, estate, bahama, islands, island, business, listings, directory, listing, ad, classified, advertisment, home, online, internet, web, web bahamas"> <% 'keep these meta tags in for free distribution 'these are the distributors ad tags %> <meta http-equiv="ad1" content="<%= ad1 %>"> <meta http-equiv="ad2" content="<%= ad2 %>"> <meta http-equiv="ad3" content="<%= ad3 %>"> <meta http-equiv="ad4" content="<%= ad4 %>"> <style> <!-- SPAN {color:<%= getSiteFontColor() %>; background-color:<%= getSiteHighliteColor() %>} --> </style> <title>User Adminstration - <%= title %></title> </head> <body vlink="<%= getSiteBGVlink() %>" bgcolor="<%= getSiteBGColor() %>" link="<%= getSiteBGLink() %>"> <!---#INCLUDE FILE="includes/headernorm.asp"---> <table border="0" width="600" cellspacing="0" cellpadding="0" align="center"> <tr> <td width="100%" valign="top" height="277"><table border="0" cellpadding="0" cellspacing="0" width="600"> <tr> <td width="100%" height="19" bgcolor="<%= getSiteTitleNameBGColor() %>" valign="middle" colspan="2"><% = fontTagStart(3, getSiteFontColor(), Y, N, N) %> <p> <%= titlename %><% = fontTagEnd(Y, N, N) %> </td> </tr> <tr> <td height="19" bgcolor="<%= getSiteMainLinksBGColor() %>" valign="middle" width="305"><% = fontTagStart(2, getSiteFontColor(), Y, N, N) %> <a href="addurl.asp">Add URL</a> | <a href="editurl.asp">Edit URL</a> | <a href="user_control.asp">Users</a> | <a href="theme.asp">Theme</a> | <%= logout %><% = fontTagEnd(Y, N, N) %></td> <td height="19" bgcolor="<%= getSiteMainLinksBGColor() %>" valign="middle" width="295"><p align="right"><% = fontTagStart(2, getSiteFontColor(), Y, N, N) %><a href="admin.asp">ADMIN</a><% = fontTagEnd(Y, N, N) %><% = fontTagStart(2, "#FF8040", Y, N, N) %> ><% = fontTagEnd(Y, N, N) %><% = fontTagStart(2, "#008000", Y, N, N) %>> <% = fontTagEnd(Y, N, N) %><%= logged%> </td> </tr> <tr> <td width="600" height="62" bgcolor="#FFFFFF" valign="middle" colspan="2"><!---#INCLUDE FILE="includes/banners.asp"---> </td> </tr> <tr> <td width="600" bgcolor="<%= getSitePageNameBGColor() %>" valign="middle" colspan="2"><% = fontTagStart(3, getSitePageNameFontColor(), Y, N, N) %> <p> Users<% = fontTagEnd(Y, N, N) %></td> </tr> <tr> <td colspan="2" bgcolor="#FFFFFF" height="18"> <% If Request("change")<>"" Then SQL = "UPDATE tblUser SET fldUsername = '" & Request("UserName") & "', fldPassword='" & Request("Password") & "', fldlevel='" & Request("level") & "' WHERE fldAuto=" & cINT(Request("id")) connusers.Execute(SQL) response.redirect "user_control.asp" End If %> <dir> <% SQL = "SELECT * FROM tblUser WHERE fldAuto=" & cINT(Request.QueryString("id")) Set objRec = connusers.Execute(SQL) %> <form action="user_edit.asp" method="post"> <input type="hidden" name="id" value="<%=Request.QueryString("id")%>"><div align="center"><center><table> <tr> <td colspan="2"><div align="center"><center><p><font face="arial" size="3"><br><b>Change User Info & Access</b></font><br> </td> </tr> <tr align="center"> <td><font face="arial" size="2" color="navy"><b>Username:</b></font></td> <td><input type="text" name="UserName" value="<%=objRec("fldUserName")%>" size="20"></td> </tr> <tr align="center"> <td><font face="arial" size="2" color="navy"><b>Password:</b></font></td> <td><input type="text" name="Password" value="<%=objRec("fldPassword")%>" size="20"></td> </tr> <tr align="center"> <td><font face="arial" size="2" color="navy"><b>level:</b></font></td> <td><input type="text" name="level" value="<%=objRec("fldlevel")%>" size="20"></td> </tr> <tr align="center"> <td colspan="2"><div align="center"><center><p><input type="submit" value="Change User" name="change"></td> </tr> </table> </center></div> </form> </dir> </td> </tr> </table> </td> </tr> </table> <!---#INCLUDE FILE="../includes/footer.asp"---> <p><br> </p> <% else response.write "<br><br><br><b><center>Sorry, this utility is for level 1 administrators only!</b><br>Please go to the <a href=admin.asp>admin page</a> and login with level 1 privaleges.</center>" end if %> </body> </html> <% connusers.close set connusers=nothing end if %> 
