<%@LANGUAGE="VBSCRIPT" CODEPAGE="1252"%> <% curpath = "http://" & Request.ServerVariables("SERVER_NAME") & Request.ServerVariables("URL") curpath = Left(curpath, InstrRev(curpath, "/")) %> <% ' *** Restrict Access To Page: Grant or deny access to this page MM_authorizedUsers="" MM_authFailedURL="admin_default.asp" MM_grantAccess=false If Session("MM_Username") <> "" Then If (true Or CStr(Session("MM_UserAuthorization"))="") Or _ (InStr(1,MM_authorizedUsers,Session("MM_UserAuthorization"))>=1) Then MM_grantAccess = true End If End If If Not MM_grantAccess Then MM_qsChar = "?" If (InStr(1,MM_authFailedURL,"?") >= 1) Then MM_qsChar = "&" MM_referrer = Request.ServerVariables("URL") if (Len(Request.QueryString()) > 0) Then MM_referrer = MM_referrer & "?" & Request.QueryString() MM_authFailedURL = MM_authFailedURL & MM_qsChar & "accessdenied=" & Server.URLEncode(MM_referrer) Response.Redirect(MM_authFailedURL) End If %> <% ' *** Edit Operations: declare variables Dim MM_editAction Dim MM_abortEdit Dim MM_editQuery Dim MM_editCmd Dim MM_editConnection Dim MM_editTable Dim MM_editRedirectUrl Dim MM_editColumn Dim MM_recordId Dim MM_fieldsStr Dim MM_columnsStr Dim MM_fields Dim MM_columns Dim MM_typeArray Dim MM_formVal Dim MM_delim Dim MM_altVal Dim MM_emptyVal Dim MM_i MM_editAction = CStr(Request.ServerVariables("SCRIPT_NAME")) If (Request.QueryString <> "") Then MM_editAction = MM_editAction & "?" & Request.QueryString End If ' boolean to abort record edit MM_abortEdit = false ' query string to execute MM_editQuery = "" %> <% ' *** Delete Record: declare variables if (CStr(Request("MM_delete")) = "addBlog" And CStr(Request("MM_recordId")) <> "") Then MM_editConnection = MM_blog_STRING MM_editTable = "tblBlog" MM_editColumn = "BlogID" MM_recordId = "" + Request.Form("MM_recordId") + "" MM_editRedirectUrl = "main.asp" ' append the query string to the redirect URL If (MM_editRedirectUrl <> "" And Request.QueryString <> "") Then If (InStr(1, MM_editRedirectUrl, "?", vbTextCompare) = 0 And Request.QueryString <> "") Then MM_editRedirectUrl = MM_editRedirectUrl & "?" & Request.QueryString Else MM_editRedirectUrl = MM_editRedirectUrl & "&" & Request.QueryString End If End If End If %> <% ' *** Delete Record: construct a sql delete statement and execute it If (CStr(Request("MM_delete")) <> "" And CStr(Request("MM_recordId")) <> "") Then ' create the sql delete statement MM_editQuery = "delete from " & MM_editTable & " where " & MM_editColumn & " = " & MM_recordId If (Not MM_abortEdit) Then ' execute the delete Set MM_editCmd = Server.CreateObject("ADODB.Command") MM_editCmd.ActiveConnection = MM_editConnection MM_editCmd.CommandText = MM_editQuery MM_editCmd.Execute MM_editCmd.ActiveConnection.Close If (MM_editRedirectUrl <> "") Then Response.Redirect(MM_editRedirectUrl) End If End If End If %> <% Dim rsUpdateBlog__MMColParam rsUpdateBlog__MMColParam = "1" If (Request.QueryString("passID") <> "") Then rsUpdateBlog__MMColParam = Request.QueryString("passID") End If %> <% Dim rsUpdateBlog Dim rsUpdateBlog_numRows Set rsUpdateBlog = Server.CreateObject("ADODB.Recordset") rsUpdateBlog.ActiveConnection = MM_blog_STRING rsUpdateBlog.Source = "SELECT * FROM tblBlog WHERE BlogID = " + Replace(rsUpdateBlog__MMColParam, "'", "''") + "" rsUpdateBlog.CursorType = 0 rsUpdateBlog.CursorLocation = 2 rsUpdateBlog.LockType = 1 rsUpdateBlog.Open() rsUpdateBlog_numRows = 0 %> Delete Blog

Delete Blog

<%=(rsUpdateBlog.Fields.Item("BlogHeadline").Value)%>

<%=Replace(rsUpdateBlog.Fields.Item("BlogHTML").Value,chr(13),"
")%>
" />
<% rsUpdateBlog.Close() Set rsUpdateBlog = Nothing %>