<%@LANGUAGE="VBSCRIPT" CODEPAGE="1252"%>
<%
curpath = "http://" & Request.ServerVariables("SERVER_NAME") & Request.ServerVariables("URL")
curpath =  Left(curpath, InstrRev(curpath, "/"))
%>

<%
' *** Restrict Access To Page: Grant or deny access to this page
MM_authorizedUsers=""
MM_authFailedURL="admin_default.asp"
MM_grantAccess=false
If Session("MM_Username") <> "" Then
  If (true Or CStr(Session("MM_UserAuthorization"))="") Or _
         (InStr(1,MM_authorizedUsers,Session("MM_UserAuthorization"))>=1) Then
    MM_grantAccess = true
  End If
End If
If Not MM_grantAccess Then
  MM_qsChar = "?"
  If (InStr(1,MM_authFailedURL,"?") >= 1) Then MM_qsChar = "&"
  MM_referrer = Request.ServerVariables("URL")
  if (Len(Request.QueryString()) > 0) Then MM_referrer = MM_referrer & "?" & Request.QueryString()
  MM_authFailedURL = MM_authFailedURL & MM_qsChar & "accessdenied=" & Server.URLEncode(MM_referrer)
  Response.Redirect(MM_authFailedURL)
End If
%>
<!--#include file="Connections/blog.asp" -->
<%
' *** Edit Operations: declare variables

Dim MM_editAction
Dim MM_abortEdit
Dim MM_editQuery
Dim MM_editCmd

Dim MM_editConnection
Dim MM_editTable
Dim MM_editRedirectUrl
Dim MM_editColumn
Dim MM_recordId

Dim MM_fieldsStr
Dim MM_columnsStr
Dim MM_fields
Dim MM_columns
Dim MM_typeArray
Dim MM_formVal
Dim MM_delim
Dim MM_altVal
Dim MM_emptyVal
Dim MM_i

MM_editAction = CStr(Request.ServerVariables("SCRIPT_NAME"))
If (Request.QueryString <> "") Then
  MM_editAction = MM_editAction & "?" & Server.HTMLEncode(Request.QueryString)
End If

' boolean to abort record edit
MM_abortEdit = false

' query string to execute
MM_editQuery = ""
%>
<%
' *** Update Record: set variables

If (CStr(Request("MM_update")) = "fHtmlEditor" And CStr(Request("MM_recordId")) <> "") Then

  MM_editConnection = MM_blog_STRING
  MM_editTable = "tblBlog"
  MM_editColumn = "BlogID"
  MM_recordId = "" + Request.Form("MM_recordId") + ""
  MM_editRedirectUrl = "main.asp"
  MM_fieldsStr  = "txtHeading|value|cat|value|BlogCommentInclude|value|textarea|value"
  MM_columnsStr = "BlogHeadline|',none,''|BlogCat|none,none,NULL|BlogCommentInclude|none,none,NULL|BlogHTML|',none,''"

  ' create the MM_fields and MM_columns arrays
  MM_fields = Split(MM_fieldsStr, "|")
  MM_columns = Split(MM_columnsStr, "|")
  
  ' set the form values
  For MM_i = LBound(MM_fields) To UBound(MM_fields) Step 2
    MM_fields(MM_i+1) = CStr(Request.Form(MM_fields(MM_i)))
  Next

  ' append the query string to the redirect URL
  If (MM_editRedirectUrl <> "" And Request.QueryString <> "") Then
    If (InStr(1, MM_editRedirectUrl, "?", vbTextCompare) = 0 And Request.QueryString <> "") Then
      MM_editRedirectUrl = MM_editRedirectUrl & "?" & Request.QueryString
    Else
      MM_editRedirectUrl = MM_editRedirectUrl & "&" & Request.QueryString
    End If
  End If

End If
%>
<%
' *** Update Record: construct a sql update statement and execute it

If (CStr(Request("MM_update")) <> "" And CStr(Request("MM_recordId")) <> "") Then

  ' create the sql update statement
  MM_editQuery = "update " & MM_editTable & " set "
  For MM_i = LBound(MM_fields) To UBound(MM_fields) Step 2
    MM_formVal = MM_fields(MM_i+1)
    MM_typeArray = Split(MM_columns(MM_i+1),",")
    MM_delim = MM_typeArray(0)
    If (MM_delim = "none") Then MM_delim = ""
    MM_altVal = MM_typeArray(1)
    If (MM_altVal = "none") Then MM_altVal = ""
    MM_emptyVal = MM_typeArray(2)
    If (MM_emptyVal = "none") Then MM_emptyVal = ""
    If (MM_formVal = "") Then
      MM_formVal = MM_emptyVal
    Else
      If (MM_altVal <> "") Then
        MM_formVal = MM_altVal
      ElseIf (MM_delim = "'") Then  ' escape quotes
        MM_formVal = "'" & Replace(MM_formVal,"'","''") & "'"
      Else
        MM_formVal = MM_delim + MM_formVal + MM_delim
      End If
    End If
    If (MM_i <> LBound(MM_fields)) Then
      MM_editQuery = MM_editQuery & ","
    End If
    MM_editQuery = MM_editQuery & MM_columns(MM_i) & " = " & MM_formVal
  Next
  MM_editQuery = MM_editQuery & " where " & MM_editColumn & " = " & MM_recordId

  If (Not MM_abortEdit) Then
    ' execute the update
    Set MM_editCmd = Server.CreateObject("ADODB.Command")
    MM_editCmd.ActiveConnection = MM_editConnection
    MM_editCmd.CommandText = MM_editQuery
    MM_editCmd.Execute
    MM_editCmd.ActiveConnection.Close

    If (MM_editRedirectUrl <> "") Then
      Response.Redirect(MM_editRedirectUrl)
    End If
  End If

End If
%>
<%
Dim rsUpdateBlog__MMColParam
rsUpdateBlog__MMColParam = "1"
If (Request.QueryString("passID") <> "") Then 
  rsUpdateBlog__MMColParam = Request.QueryString("passID")
End If
%>
<%
Dim rsUpdateBlog
Dim rsUpdateBlog_numRows

Set rsUpdateBlog = Server.CreateObject("ADODB.Recordset")
rsUpdateBlog.ActiveConnection = MM_blog_STRING
rsUpdateBlog.Source = "SELECT * FROM tblBlog WHERE BlogID = " + Replace(rsUpdateBlog__MMColParam, "'", "''") + ""
rsUpdateBlog.CursorType = 0
rsUpdateBlog.CursorLocation = 2
rsUpdateBlog.LockType = 1
rsUpdateBlog.Open()

rsUpdateBlog_numRows = 0
%>
<%
Dim rs_cat
Dim rs_cat_numRows

Set rs_cat = Server.CreateObject("ADODB.Recordset")
rs_cat.ActiveConnection = MM_blog_STRING
rs_cat.Source = "SELECT * FROM tblCat ORDER BY CatName ASC"
rs_cat.CursorType = 0
rs_cat.CursorLocation = 2
rs_cat.LockType = 1
rs_cat.Open()

rs_cat_numRows = 0
%>
<%
Dim rsComments__MMColParam
rsComments__MMColParam = "1"
If (Request.QueryString("passID") <> "") Then 
  rsComments__MMColParam = Request.QueryString("passID")
End If
%>
<%
Dim rsComments
Dim rsComments_numRows

Set rsComments = Server.CreateObject("ADODB.Recordset")
rsComments.ActiveConnection = MM_blog_STRING
rsComments.Source = "SELECT *  FROM tblComment  WHERE blogID = " + rsComments__MMColParam + " AND commentInclude = 1  ORDER BY commentDate DESC"
rsComments.CursorType = 0
rsComments.CursorLocation = 2
rsComments.LockType = 1
rsComments.Open()

rsComments_numRows = 0
%>
<%
Dim Repeat1__numRows
Dim Repeat1__index

Repeat1__numRows = -1
Repeat1__index = 0
rsComments_numRows = rsComments_numRows + Repeat1__numRows
%>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML lang=en xml:lang="en" xmlns="http://www.w3.org/1999/xhtml"><!-- InstanceBegin template="/Templates/blog.dwt" codeOutsideHTMLIsLocked="false" -->
<head>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" />
<meta name="generator" content="bp blog 6.0" />
<link rel="copyright" href="http://creativecommons.org/licenses/by-nc-sa/2.5/" />
<!-- InstanceBeginEditable name="doctitle" -->
<title>Update Blog</title>
<!-- InstanceEndEditable -->
<!-- InstanceBeginEditable name="head" -->

<!-- InstanceEndEditable -->
<link href="styles-site.css" rel="stylesheet" type="text/css" />
</head>
<BODY>
<DIV id=container>
<DIV id=header>
<!-- InstanceBeginEditable name="banner" --><!-- #BeginLibraryItem "/Library/admin_banner.lbi" --><h1 id="blog-title"><a href="main.asp" accesskey="1">bp blog admin (<%=Session("MM_Username")%>)</a></h1>
<p id="description"><a href="default.asp">Your Blog</a> </p><!-- #EndLibraryItem --><!-- InstanceEndEditable -->
</DIV>
<DIV id=content>
<DIV id=main>
<script type="text/javascript"><!--
google_ad_client = "pub-0172387945911790";
google_ad_width = 468;
google_ad_height = 60;
google_ad_format = "468x60_as";
google_ad_type = "text";
google_ad_channel ="";
google_color_border = "333333";
google_color_bg = "000000";
google_color_link = "FFFFFF";
google_color_url = "999999";
google_color_text = "CCCCCC";
//--></script>
<script type="text/javascript"
  src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
<!-- InstanceBeginEditable name="content" -->
 <h3>Update Blog
    </h3>
  <form action="<%=MM_editAction%>" method="post" name="fHtmlEditor" id="fHtmlEditor">
    <p><strong>Blog Heading</strong>
    <input name="txtHeading" type="text" class="txtBox" id="txtHeading" style="font: 8pt verdana;" value="<%=(rsUpdateBlog.Fields.Item("BlogHeadline").Value)%>" size="40" />
    <br />
    <strong>Category</strong>
    <select name="cat" id="cat">
      <%
While (NOT rs_cat.EOF)
%>
      <option value="<%=(rs_cat.Fields.Item("CatID").Value)%>" <% if (rs_cat.Fields.Item("CatID").Value) = (rsUpdateBlog.Fields.Item("BlogCat").Value) then %> selected="selected" <% end if %>><%=(rs_cat.Fields.Item("CatName").Value)%></option>
      <%
  rs_cat.MoveNext()
Wend
If (rs_cat.CursorType > 0) Then
  rs_cat.MoveFirst
Else
  rs_cat.Requery
End If
%>
    </select>  <strong><br />
    Comments
  <select name="BlogCommentInclude" id="BlogCommentInclude">
    <option value="1" <%If (Not isNull((rsUpdateBlog.Fields.Item("BlogCommentInclude").Value))) Then If ("1" = CStr((rsUpdateBlog.Fields.Item("BlogCommentInclude").Value))) Then Response.Write("SELECTED") : Response.Write("")%>>Yes</option>
    <option value="0" <%If (Not isNull((rsUpdateBlog.Fields.Item("BlogCommentInclude").Value))) Then If ("0" = CStr((rsUpdateBlog.Fields.Item("BlogCommentInclude").Value))) Then Response.Write("SELECTED") : Response.Write("")%>>No</option>
  </select>
  </strong></p>
    </p>
<!-- #INCLUDE file="FCKeditor/fckeditor.asp" -->
<%
Dim oFCKeditor
Set oFCKeditor = New FCKeditor
oFCKeditor.BasePath	= theBasePath
oFCKeditor.Value	= rsUpdateBlog.Fields.Item("BlogHTML").Value
oFCKeditor.Create "textarea"
%>
<input type="submit" name="Submit" value="Submit" />
    <input type="hidden" name="MM_update" value="fHtmlEditor" />
    <input type="hidden" name="MM_recordId" value="<%= rsUpdateBlog.Fields.Item("BlogID").Value %>" />
  </form>
  <h3 align="left">Approved Comments </h3>

  
<% If Not rsComments.EOF Or Not rsComments.BOF Then %>
<table class="tabledisplay">

<%
While ((Repeat1__numRows <> 0) AND (NOT rsComments.EOF))
%>
<tr>
<td><a href="<%=(rsComments.Fields.Item("commentURL").Value)%>"><%=(rsComments.Fields.Item("commentName").Value)%></a></td>
<td><a href="mailto:<%=(rsComments.Fields.Item("commentEmail").Value)%>" title="Email this user"><%=(rsComments.Fields.Item("commentEmail").Value)%></a></td>
<td><a href="edit_comment.asp?passID=<%=(rsComments.Fields.Item("commentID").Value)%>">Edit</a>/<a href="delete_comment.asp?passID=<%=(rsComments.Fields.Item("commentID").Value)%>">Delete</a></td>
</tr>
<tr>
<td colspan="3"><%=(rsComments.Fields.Item("commentHTML").Value)%></td>
</tr>
<%
  Repeat1__index=Repeat1__index+1
  Repeat1__numRows=Repeat1__numRows-1
  rsComments.MoveNext()
Wend
%>
</table>
<% End If ' end Not rsComments.EOF Or NOT rsComments.BOF %>
<!-- InstanceEndEditable -->
</DIV>
<DIV id=sidebar>
<h2 class=sidebar-title>Menu</h2>
<ul>
<li><a href="default.asp">Home</a></li>
<li><a href="template.asp?pagename=about">About BP Blog</a></li>
<li><a href="template_gallery.asp">Gallery</a></li>
</ul>
<!-- InstanceBeginEditable name="sidebar" --><!-- #BeginLibraryItem "/Library/admin_sidebar.lbi" --><% if Session("MM_Username") <> "" Then %>
<%
Dim rsComments_Pending__MMColParam
rsComments_Pending__MMColParam = "0"
If (Request("MM_EmptyValue") <> "") Then 
  rsComments_Pending__MMColParam = Request("MM_EmptyValue")
End If
%>
<%
Dim rsComments_Pending
Dim rsComments_Pending_numRows

Set rsComments_Pending = Server.CreateObject("ADODB.Recordset")
rsComments_Pending.ActiveConnection = MM_blog_STRING
rsComments_Pending.Source = "SELECT Count(*) as CommentsPendingCount FROM tblComment WHERE commentInclude = " + Replace(rsComments_Pending__MMColParam, "'", "''") + ""
rsComments_Pending.CursorType = 0
rsComments_Pending.CursorLocation = 2
rsComments_Pending.LockType = 1
rsComments_Pending.Open()

rsComments_Pending_numRows = 0
%>
<h2>Blog</h2>
<ul>
  <li><a href="main.asp">Blog Entries</a></li>
  <li><a href="add_blog.asp">Create a New Entry</a></li>
  <li><a href="approve_comments.asp">Approve Comments (<%=(rsComments_Pending.Fields.Item("CommentsPendingCount").Value)%> Pending)</a></li>
  <li><a href="blog_config.asp">Blog Configuration</a></li>
</ul>
<h2>Categories</h2>
<ul>
  <li><a href="cat.asp">Categories</a></li>
  <li><a href="cat_add.asp">Add a Category</a></li>
</ul>
<h2>Pages</h2>
<ul>
  <li><a href="pages.asp">Pages</a></li>
  <li><a href="add_page.asp">Add Page</a></li>
</ul>
<h2>Gallery</h2>
<ul>
  <li><a href="gallery.asp">Gallery</a></li>
  <li><a href="gallery_config.asp">Gallery Configuration</a></li>
</ul>
<h2>Users</h2>
<ul>
  <li><a href="users.asp">Users</a></li>
  <li><a href="user_add.asp">Add User</a></li>
  <li><a href="admin_default.asp">Login</a></li>
</ul>
<h2>Errata</h2>
<ul>
  <li><a href="rss.asp">Update RSS</a></li>
</ul>
<%
rsComments_Pending.Close()
Set rsComments_Pending = Nothing
%>
<% End If %>
<!-- #EndLibraryItem --><!-- InstanceEndEditable -->
</DIV>
</DIV>
<DIV id=footer><P>Powered by <a href="http://blog.betaparticle.com" title="Powered by bp blog 6.0">bp blog 6.0</a>
		 | <a href="RSS.xml">Feed (RSS)</a></P>
</DIV>	
</DIV>	 
</BODY>
<!-- InstanceEnd --></HTML>
<%
rsComments.Close()
Set rsComments = Nothing
%>
<%
rsUpdateBlog.Close()
Set rsUpdateBlog = Nothing
%>
<%
rs_cat.Close()
Set rs_cat = Nothing
%>