<%@LANGUAGE="VBSCRIPT" CODEPAGE="1252"%>
<%
curpath = "http://" & Request.ServerVariables("SERVER_NAME") & Request.ServerVariables("URL")
curpath =  Left(curpath, InstrRev(curpath, "/"))
%>

<%
' *** Restrict Access To Page: Grant or deny access to this page
MM_authorizedUsers=""
MM_authFailedURL="admin_default.asp"
MM_grantAccess=false
If Session("MM_Username") <> "" Then
  If (true Or CStr(Session("MM_UserAuthorization"))="") Or _
         (InStr(1,MM_authorizedUsers,Session("MM_UserAuthorization"))>=1) Then
    MM_grantAccess = true
  End If
End If
If Not MM_grantAccess Then
  MM_qsChar = "?"
  If (InStr(1,MM_authFailedURL,"?") >= 1) Then MM_qsChar = "&"
  MM_referrer = Request.ServerVariables("URL")
  if (Len(Request.QueryString()) > 0) Then MM_referrer = MM_referrer & "?" & Request.QueryString()
  MM_authFailedURL = MM_authFailedURL & MM_qsChar & "accessdenied=" & Server.URLEncode(MM_referrer)
  Response.Redirect(MM_authFailedURL)
End If
%>
<!--#include file="Connections/blog.asp" -->
<%
' *** Edit Operations: declare variables

Dim MM_editAction
Dim MM_abortEdit
Dim MM_editQuery
Dim MM_editCmd

Dim MM_editConnection
Dim MM_editTable
Dim MM_editRedirectUrl
Dim MM_editColumn
Dim MM_recordId

Dim MM_fieldsStr
Dim MM_columnsStr
Dim MM_fields
Dim MM_columns
Dim MM_typeArray
Dim MM_formVal
Dim MM_delim
Dim MM_altVal
Dim MM_emptyVal
Dim MM_i

MM_editAction = CStr(Request.ServerVariables("SCRIPT_NAME"))
If (Request.QueryString <> "") Then
  MM_editAction = MM_editAction & "?" & Server.HTMLEncode(Request.QueryString)
End If

' boolean to abort record edit
MM_abortEdit = false

' query string to execute
MM_editQuery = ""
%>
<%
' *** Update Record: set variables

If (CStr(Request("MM_update")) = "form1" And CStr(Request("MM_recordId")) <> "") Then

  MM_editConnection = MM_blog_STRING
  MM_editTable = "tblComment"
  MM_editColumn = "commentID"
  MM_recordId = "" + Request.Form("MM_recordId") + ""
  MM_editRedirectUrl = "main.asp"
  MM_fieldsStr  = "commentName|value|commentEmail|value|commentURL|value|commentHTML|value"
  MM_columnsStr = "commentName|',none,''|commentEmail|',none,''|commentURL|',none,''|commentHTML|',none,''"

  ' create the MM_fields and MM_columns arrays
  MM_fields = Split(MM_fieldsStr, "|")
  MM_columns = Split(MM_columnsStr, "|")
  
  ' set the form values
  For MM_i = LBound(MM_fields) To UBound(MM_fields) Step 2
    MM_fields(MM_i+1) = CStr(Request.Form(MM_fields(MM_i)))
  Next

  ' append the query string to the redirect URL
  If (MM_editRedirectUrl <> "" And Request.QueryString <> "") Then
    If (InStr(1, MM_editRedirectUrl, "?", vbTextCompare) = 0 And Request.QueryString <> "") Then
      MM_editRedirectUrl = MM_editRedirectUrl & "?" & Request.QueryString
    Else
      MM_editRedirectUrl = MM_editRedirectUrl & "&" & Request.QueryString
    End If
  End If

End If
%>
<%
' *** Update Record: construct a sql update statement and execute it

If (CStr(Request("MM_update")) <> "" And CStr(Request("MM_recordId")) <> "") Then

  ' create the sql update statement
  MM_editQuery = "update " & MM_editTable & " set "
  For MM_i = LBound(MM_fields) To UBound(MM_fields) Step 2
    MM_formVal = MM_fields(MM_i+1)
    MM_typeArray = Split(MM_columns(MM_i+1),",")
    MM_delim = MM_typeArray(0)
    If (MM_delim = "none") Then MM_delim = ""
    MM_altVal = MM_typeArray(1)
    If (MM_altVal = "none") Then MM_altVal = ""
    MM_emptyVal = MM_typeArray(2)
    If (MM_emptyVal = "none") Then MM_emptyVal = ""
    If (MM_formVal = "") Then
      MM_formVal = MM_emptyVal
    Else
      If (MM_altVal <> "") Then
        MM_formVal = MM_altVal
      ElseIf (MM_delim = "'") Then  ' escape quotes
        MM_formVal = "'" & Replace(MM_formVal,"'","''") & "'"
      Else
        MM_formVal = MM_delim + MM_formVal + MM_delim
      End If
    End If
    If (MM_i <> LBound(MM_fields)) Then
      MM_editQuery = MM_editQuery & ","
    End If
    MM_editQuery = MM_editQuery & MM_columns(MM_i) & " = " & MM_formVal
  Next
  MM_editQuery = MM_editQuery & " where " & MM_editColumn & " = " & MM_recordId

  If (Not MM_abortEdit) Then
    ' execute the update
    Set MM_editCmd = Server.CreateObject("ADODB.Command")
    MM_editCmd.ActiveConnection = MM_editConnection
    MM_editCmd.CommandText = MM_editQuery
    MM_editCmd.Execute
    MM_editCmd.ActiveConnection.Close

    If (MM_editRedirectUrl <> "") Then
      Response.Redirect(MM_editRedirectUrl)
    End If
  End If

End If
%>
<%
Dim rsConfig
Dim rsConfig_numRows

Set rsConfig = Server.CreateObject("ADODB.Recordset")
rsConfig.ActiveConnection = MM_blog_STRING
rsConfig.Source = "SELECT * FROM tblBlogRSS"
rsConfig.CursorType = 0
rsConfig.CursorLocation = 2
rsConfig.LockType = 1
rsConfig.Open()

rsConfig_numRows = 0
%>
<%
Dim rsCommentEdit__MMColParam
rsCommentEdit__MMColParam = "1"
If (Request.QueryString("passID") <> "") Then 
  rsCommentEdit__MMColParam = Request.QueryString("passID")
End If
%>
<%
Dim rsCommentEdit
Dim rsCommentEdit_numRows

Set rsCommentEdit = Server.CreateObject("ADODB.Recordset")
rsCommentEdit.ActiveConnection = MM_blog_STRING
rsCommentEdit.Source = "SELECT * FROM tblComment WHERE commentID = " + Replace(rsCommentEdit__MMColParam, "'", "''") + ""
rsCommentEdit.CursorType = 0
rsCommentEdit.CursorLocation = 2
rsCommentEdit.LockType = 1
rsCommentEdit.Open()

rsCommentEdit_numRows = 0
%>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML lang=en xml:lang="en" xmlns="http://www.w3.org/1999/xhtml"><!-- InstanceBegin template="/Templates/blog.dwt" codeOutsideHTMLIsLocked="false" -->
<head>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" />
<meta name="generator" content="bp blog 6.0" />
<link rel="copyright" href="http://creativecommons.org/licenses/by-nc-sa/2.5/" />
<!-- InstanceBeginEditable name="doctitle" -->
<title>Edit Comment</title>
<meta name="Description" content="" />
<meta name="Keywords" content="" />
<!-- InstanceEndEditable -->
<!-- InstanceBeginEditable name="head" --><!-- InstanceEndEditable -->
<link href="styles-site.css" rel="stylesheet" type="text/css" />
</head>
<BODY>
<DIV id=container>
<DIV id=header>
<!-- InstanceBeginEditable name="banner" --><!-- #BeginLibraryItem "/Library/admin_banner.lbi" --><h1 id="blog-title"><a href="main.asp" accesskey="1">bp blog admin (<%=Session("MM_Username")%>)</a></h1>
<p id="description"><a href="default.asp">Your Blog</a> </p><!-- #EndLibraryItem --><!-- InstanceEndEditable -->
</DIV>
<DIV id=content>
<DIV id=main>
<script type="text/javascript"><!--
google_ad_client = "pub-0172387945911790";
google_ad_width = 468;
google_ad_height = 60;
google_ad_format = "468x60_as";
google_ad_type = "text";
google_ad_channel ="";
google_color_border = "333333";
google_color_bg = "000000";
google_color_link = "FFFFFF";
google_color_url = "999999";
google_color_text = "CCCCCC";
//--></script>
<script type="text/javascript"
  src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
<!-- InstanceBeginEditable name="content" -->
   <h3>Edit Comment
     <form method="post" action="<%=MM_editAction%>" name="form1">
       <table align="center" class="tabledisplay">
         <tr valign="baseline">
           <th nowrap align="right">Name:</th>
           <td><input type="text" name="commentName" value="<%=(rsCommentEdit.Fields.Item("commentName").Value)%>" size="32">
           </td>
         </tr>
         <tr valign="baseline">
           <th nowrap align="right">Email:</th>
           <td><input type="text" name="commentEmail" value="<%=(rsCommentEdit.Fields.Item("commentEmail").Value)%>" size="50">
           </td>
         </tr>
         <tr valign="baseline">
           <th nowrap align="right">URL:</th>
           <td><input type="text" name="commentURL" value="<%=(rsCommentEdit.Fields.Item("commentURL").Value)%>" size="50">
           </td>
         </tr>
         <tr>
           <th nowrap align="right" valign="top">Comment:</th>
           <td valign="baseline"><textarea name="commentHTML" cols="40" rows="5"><%=(rsCommentEdit.Fields.Item("commentHTML").Value)%></textarea>
           </td>
         </tr>
         <tr align="center" valign="baseline">
           <td colspan="2" nowrap><input type="submit" value="Update">           </td>
           </tr>
       </table>
       <input type="hidden" name="MM_update" value="form1">
       <input type="hidden" name="MM_recordId" value="<%= rsCommentEdit.Fields.Item("commentID").Value %>">
     </form>
     </h3>   
<!-- InstanceEndEditable -->
</DIV>
<DIV id=sidebar>
<h2 class=sidebar-title>Menu</h2>
<ul>
<li><a href="default.asp">Home</a></li>
<li><a href="template.asp?pagename=about">About BP Blog</a></li>
<li><a href="template_gallery.asp">Gallery</a></li>
</ul>
<!-- InstanceBeginEditable name="sidebar" --><!-- #BeginLibraryItem "/Library/admin_sidebar.lbi" --><% if Session("MM_Username") <> "" Then %>
<%
Dim rsComments_Pending__MMColParam
rsComments_Pending__MMColParam = "0"
If (Request("MM_EmptyValue") <> "") Then 
  rsComments_Pending__MMColParam = Request("MM_EmptyValue")
End If
%>
<%
Dim rsComments_Pending
Dim rsComments_Pending_numRows

Set rsComments_Pending = Server.CreateObject("ADODB.Recordset")
rsComments_Pending.ActiveConnection = MM_blog_STRING
rsComments_Pending.Source = "SELECT Count(*) as CommentsPendingCount FROM tblComment WHERE commentInclude = " + Replace(rsComments_Pending__MMColParam, "'", "''") + ""
rsComments_Pending.CursorType = 0
rsComments_Pending.CursorLocation = 2
rsComments_Pending.LockType = 1
rsComments_Pending.Open()

rsComments_Pending_numRows = 0
%>
<h2>Blog</h2>
<ul>
  <li><a href="main.asp">Blog Entries</a></li>
  <li><a href="add_blog.asp">Create a New Entry</a></li>
  <li><a href="approve_comments.asp">Approve Comments (<%=(rsComments_Pending.Fields.Item("CommentsPendingCount").Value)%> Pending)</a></li>
  <li><a href="blog_config.asp">Blog Configuration</a></li>
</ul>
<h2>Categories</h2>
<ul>
  <li><a href="cat.asp">Categories</a></li>
  <li><a href="cat_add.asp">Add a Category</a></li>
</ul>
<h2>Pages</h2>
<ul>
  <li><a href="pages.asp">Pages</a></li>
  <li><a href="add_page.asp">Add Page</a></li>
</ul>
<h2>Gallery</h2>
<ul>
  <li><a href="gallery.asp">Gallery</a></li>
  <li><a href="gallery_config.asp">Gallery Configuration</a></li>
</ul>
<h2>Users</h2>
<ul>
  <li><a href="users.asp">Users</a></li>
  <li><a href="user_add.asp">Add User</a></li>
  <li><a href="admin_default.asp">Login</a></li>
</ul>
<h2>Errata</h2>
<ul>
  <li><a href="rss.asp">Update RSS</a></li>
</ul>
<%
rsComments_Pending.Close()
Set rsComments_Pending = Nothing
%>
<% End If %>
<!-- #EndLibraryItem --><!-- InstanceEndEditable -->
</DIV>
</DIV>
<DIV id=footer><P>Powered by <a href="http://blog.betaparticle.com" title="Powered by bp blog 6.0">bp blog 6.0</a>
		 | <a href="RSS.xml">Feed (RSS)</a></P>
</DIV>	
</DIV>	 
</BODY>
<!-- InstanceEnd --></HTML>
<%
rsConfig.Close()
Set rsConfig = Nothing
%>
<%
rsCommentEdit.Close()
Set rsCommentEdit = Nothing
%>