<%option explicit%> <% ShopCheckAdmin "shopa_displayorders.asp" '************************************************************************** ' Version 6.50 Display order items ' June 8, 2003 ' Aug 16, 2003 Minor html error '************************************************************************** ' dim mysql Dim Fieldcount Dim Captions(10) Dim Fieldnames(10) Dim Idfield Dim SearchFieldvalue, searchfieldname Dim i dim orderfieldcount, orderfields dim sortfield Dim item dim dbtable Dim scriptresponder Dim editresponder Dim dbc dim Orderid dim fieldname AdminPageHeader ' Admin page headers are different Orderid=request("Orderid") SetFieldNames ' field names for table OpenOrderDB dbc ' open database GetInput ' get all form fields dim field If Request("Delete")<>"" Then For each item in Request("DeleteUser") DeleteRecord Item Next End if GenerateDisplayHeader ' Generate sort button etc editresponder="shopa_editrecord.asp" 'response.write "sql=" & mysql ShopopenRecordSet mysql, rsorder, mypagesize, mypage GenerateTable ' write the tabe 'Call PageNavBar (Mysql) ' put bottom navigation bar rsOrder.close ' close database set rsOrder=nothing shopCloseDatabase dbc AdminPageTrailer ' Write admin trailer ' Sub GetInput Idfield="OrderitemID" Orderid=request("Orderid") 'VP-ASP 6.09 - Precautionary Security Fix if orderid > "" then If not isnumeric(Orderid) then shoperror "Order Id must be numeric" end if end if sortfield="OrderitemID" mypage = Request.querystring("page") 'first time we need everything, othertimes sql is set up ' See how we are sorting 'VP-ASP 6.09 - Precautionary Security Fix if mypage > "" then If not isnumeric(mypage) then shoperror "Page size must be numeric" end if end if if mypage="" then mypage=1 GenerateSQL else Mysql=GetSess("sqlquery") end if maxrecs=Getconfig("xeditdisplaymaxrecords") mypagesize=maxrecs end sub ' ' SQL is generate by using fields on form Sub GenerateSQL dim sqlproc dim key dim sqladd mysql = "select * from oitems where orderid=" & orderid mysql = mysql & " order by " & sortfield SetSess "sqlquery",MySQL 'response.write "generated sql=" & mysql & "
" End sub ' Sub GenerateTable dim howmanyfields dim howmanyrecs dim my_link howmanyfields=fieldcount-1 %>
<%shopwriteheader "Order Items"%> <% dim referer referer = request.ServerVariables("HTTP_REFERER") referer = right(referer, len(referer) - instrrev(referer, "/")) if (left(referer, instr(referer, ".")) = "shopa_formatorder.") OR (left(referer, instr(referer, ".")) = "shopa_orderaction.") then setsess "referer", referer end if response.write "" response.write "" %>
Back To Order
<%shopwriteerror sError%>
<% GenerateDisplayHeaderFlat GenerateDisplayBodyHeader %>
<%if maxpages <> 0 then response.write getlang("langCommonPage") & mypage & getlang("langCommonOf") & maxpages%> <%if maxpages <> 0 then Call PageNavBar (Mysql)%>
<% Response.write ReportTableDef Response.write "" Response.write ReportHeadColumn & getlang("langCommonEdit") & ReportHeadColumnEnd 'Put Headings On The Table of Field Names for i=0 to howmanyfields Response.write ReportHeadColumn & Captions(i) & ReportHeadColumnEnd next Response.write ReportHeadColumn & getlang("langMenuDelete") & ReportHeadColumnEnd Response.write ReportRowEnd ' Now lets grab all the records howmanyrecs=0 DO UNTIL rsorder.eof OR howmanyrecs=maxrecs response.write ReportDetailRow Response.write ReportDetailColumn my_link=editresponder & "?which=" & rsorder(idfield) & "&idfield=" & idfield & "&table=oitems" %> <%=getlang("langCommonEdit")%> <% Response.write ReportDetailColumnEnd for i = 0 to howmanyfields fieldname=fieldnames(i) if ucase(fieldname)="OCUSTOMERID" then response.write ReportDetailColumn & "" & rsorder(fieldname) & "" else if ucase(fieldname)="UNITPRICE" then response.write ReportDetailColumn & shopformatcurrency(rsorder(fieldname),getconfig("xdecimalpoint")) & ReportDetailcolumnend else response.write Reportdetailcolumn & rsorder(fieldname) & Reportdetailcolumnend end if end if next %>
<% Response.write ReportRowEnd howmanyrecs=howmanyrecs+1 if howmanyrecs < maxrecs then rsorder.movenext end if loop response.write("
") %>

">
<% response.write("") %>
<%if maxpages <> 0 then response.write getlang("langCommonPage") & mypage & getlang("langCommonOf") & maxpages%> <%if maxpages <> 0 then Call PageNavBar (Mysql)%>
<% GenerateDisplayBodyFooter end sub '************************************************************************** '**** Sub SetFieldNames '************************************************************************** Sub SetFieldNames Fieldcount=7 Fieldnames(0)= "catalogid" Fieldnames(1)= "numitems" Fieldnames(2)= "itemname" Fieldnames(3)= "unitprice" Fieldnames(4)= "dualprice" Fieldnames(5)= "supplierid" Fieldnames(6)= "address" Captions(0)= "catalogid" Captions(1)= getlang("langProductQuantity") Captions(2)= getlang("langProductName") Captions(3)= getlang("langProductPrice") Captions(4)= getlang("langDualPrice") Captions(5)= getlang("langSupplierNumber") Captions(6)= getlang("langDeliveryPrompt") end sub Sub DeleteRecord(Item) dim Rowsaffected dbc.execute "delete from oitems where orderitemid = " & item end sub Sub GenerateDisplayHeader %>
<% end sub ' Sub GenerateRadio (Fieldname,fieldvalue,radiotype, currentvalue) if currentvalue=Fieldvalue then %> <%=fieldname%>
<% else %> <%=fieldname%>
<% end if end sub Sub GenerateSelect (iFieldnames,ifieldvalues,currentvalue,selectname) %> <% end sub Sub GenerateSearch GetFieldnames %>
<%=getlang("langCommonSearch")%> <% GenerateSelectNV OrderFields, searchfieldname, "searchfieldname", orderfieldcount,getlang("langCommonSelect") %>
<% end sub Sub GetFieldNames dim sqltemp, dbc, rstemp If GetSess("orderfieldcount")<>"" then Orderfields=GetSessA("OrderFields") OrderfieldCount=GetSess("OrderFieldCount") exit sub end if redim orderfields(200) OpenOrderdb dbc sqltemp="select * from orders " set rstemp=dbc.execute(sqltemp) orderfieldcount=rstemp.fields.count -1 for i=0 to orderfieldcount OrderFields(i)= rstemp(i).name next SetSessA "OrderFields",Orderfields SetSess "OrderFieldCount",Orderfieldcount rstemp.close set rstemp=nothing shopclosedatabase dbc end sub %>