<% check_security(1) %> <% dim upload dim user_id dim uploader_form_sql sub request_uploader_form ''' request form inputs from this form upload = request("upload") user_id = request("user_id") end sub sub validate_uploader_form ''' request and validate data entered from this form upload = trim(request("upload")) user_id = trim(request("user_id")) end sub sub db_select_uploader_form sql = "SELECT " & _ "user_id FROM Users" & _ " WHERE " & _ "Users.user_id = " & to_sql(user_id,"number") & "" on error resume next set rs = cn.Execute(sql) if err.number <> 0 then b_error = true elseif rs.EOF then b_results = false else upload = rs("upload") user_id = rs("user_id") end if rs.Close on error goto 0 end sub sub db_insert_uploader_form sql = "INSERT INTO Users" & _ "(" & _ "user_id" & _ ") VALUES (" & to_sql(user_id,"number") & ")" & _ "" 'response.write sql on error resume next cn.Execute(sql) if err.Number <> 0 then b_error = true else end if on error goto 0 end sub sub db_update_uploader_form sql = "UPDATE Users SET " & _ "user_id = " & to_sql(user_id,"number") & " WHERE " & _ "user_id = " & to_sql(user_id,"number") & "" 'response.write sql on error resume next cn.execute(sql) if err.number <> 0 then b_error = true end if on error goto 0 end sub sub db_delete_uploader_form sql = "DELETE FROM Users" & _ " WHERE " & _ "user_id = " & to_sql(user_id,"number") & "" 'response.write sql on error resume next cn.Execute(sql) if err.number <> 0 then b_error = true end if on error goto 0 end sub do_search = request("do_search") ''' request form keys and inputs user_id = request("user_id") ''' request action action = lcase(request("action")) ''' action case handler select case action case "select_uploader_form" ' select the requested key record from database if user_id <> "" then db_select_uploader_form else b_error = true error_list.add "edit_uploader_form", "Specify record to select." end if case "insert_uploader_form" ' request form data and insert a new record into database validate_uploader_form if not b_error then db_insert_uploader_form end if case "update_uploader_form" ' request form data and update an existing database record validate_uploader_form if not b_error then if user_id <> "" then db_update_uploader_form else b_error = true error_list.add "update_uploader_form", "Specify record to update." end if end if case "delete_uploader_form" ' delete the requested key database record if user_id <> "" then db_delete_uploader_form response.redirect request.servervariables("script_name") & "?msg=The+record+was+deleted." else b_error = true error_list.add "delete_uploader_form", "Specify record to delete." end if case "upload" '' locally declare this var from in i_fileupload dim last_filename '' receive the file first, then update the db with the name of the file that was uploaded retv = upload_files(server.mappath(".") & "\images\users\", "") cn.execute("UPDATE Users SET [Image] = 'images/users/" & last_filename & "' WHERE user_id = " & user_id) response.redirect "user_public.asp?user_id=" & user_id & "&msg=" & retv & "+file+uploaded.+Image+posted." end select ':: handle the default case(s) for each form (separate from action= parameter) if user_id <> "" then ''' select existing record to populate form db_select_uploader_form else ''' new record if user_id = "" then error_list.add "user_id", "user_id is required." b_hide_uploader_form = true end if end if %> <% display_errs display_msg %> <% ':: check if hide form var was set if not b_hide_uploader_form then %>

select image to upload

<% =upload %>

<% ':: end hide form if end if %> <% ':: assure that any db resources are freed on error resume next rs.Close set rs = NOTHING cn.Close set cn = NOTHING user_cn.Close set user_cn = NOTHING on error goto 0 %>