<%@LANGUAGE="VBSCRIPT"%>
<%
'===============================================
' Personals System 2002
' ©2002 vSpin.net. www.vspin.net
'===============================================
' All rights reserved.
' Use of this code is covered by the terms and
' conditions in the license agreement. No
' unauthorized duplication or distribution is
' permitted. vSpin.net copyright notices must
' remain in the ASP sections of the code.
'===============================================
%>
<%
' *** Restrict Access To Page: Grant or deny access to this page
MM_authorizedUsers=""
MM_authFailedURL="login.asp"
MM_grantAccess=false
If Session("MM_Username") <> "" Then
If (true Or CStr(Session("MM_UserAuthorization"))="") Or _
(InStr(1,MM_authorizedUsers,Session("MM_UserAuthorization"))>=1) Then
MM_grantAccess = true
End If
End If
If Not MM_grantAccess Then
MM_qsChar = "?"
If (InStr(1,MM_authFailedURL,"?") >= 1) Then MM_qsChar = "&"
MM_referrer = Request.ServerVariables("URL")
if (Len(Request.QueryString()) > 0) Then MM_referrer = MM_referrer & "?" & Request.QueryString()
MM_authFailedURL = MM_authFailedURL & MM_qsChar & "accessdenied=" & Server.URLEncode(MM_referrer)
Response.Redirect(MM_authFailedURL)
End If
%>
<%
dim xxxxm, rsheadUpdatee, rsheadUpdatee_numRows
Dim MM_authorizedUsers, MM_authFailedURL, MM_grantAccess, rse, rse_numRows, rsdup, rsdup_numRows, Conn, sql1, rsAutoDele
if request("submit") = "Unignore User" then
Dim userid2
userid2 = request("userid")
Dim useridd2
useridd2 = session("MM_Username")
set rsAutoDele = Server.CreateObject("ADODB.Command")
rsAutoDele.ActiveConnection = MM_conn_STRING
rsAutoDele.CommandText = "delete from p_ignores WHERE p_id= " + Replace(userid2, "'", "''") + " AND p_user= '" + Replace(useridd2, "'", "''") + "'"
rsAutoDele.CommandType = 1
rsAutoDele.CommandTimeout = 0
rsAutoDele.Prepared = true
rsAutoDele.Execute()
response.redirect("ignore.asp?message=34")
set rsDele = nothing
end if
if (request("uz") <> "") then
Dim userid
userid = request("uz")
Dim useridd
useridd = session("MM_Username")
set rsdup = Server.CreateObject("ADODB.Recordset")
rsdup.ActiveConnection = MM_conn_STRING
rsdup.Source = "SELECT p_user, p_ignore FROM p_ignores WHERE p_user = '" + Replace(useridd, "'", "''") + "' AND p_ignore= '" + Replace(userid, "'", "''") + "'"
rsdup.CursorType = 0
rsdup.CursorLocation = 2
rsdup.LockType = 3
rsdup.Open()
rsdup_numRows = 0
If NOT rsdup.EOF And NOT rsdup.BOF then
rsdup.close
MM_conn_STRING.close
MM_conn_STRING = NOTHING
set rsdup = nothing
response.redirect("read.asp?message=32")
elseif userid= "Administration" then
rsdup.close
MM_conn_STRING.close
set MM_conn_STRING = NOTHING
set rsdup = nothing
response.redirect("read.asp?message=33")
else
Set Conn = Server.CreateObject("ADODB.Connection")
Conn.Open MM_conn_STRING
sql1 = "insert into p_ignores (p_user,p_ignore) values('"& useridd & "','"& userid & "')"
conn.execute(sql1)
rsdup.close
MM_conn_STRING.close
set conn = nothing
set MM_conn_STRING = NOTHING
set rsdup = nothing
response.redirect("read.asp?message=31")
end if
end if
%>
<%
dim user
user = session("MM_Username")
set rse = Server.CreateObject("ADODB.Recordset")
rse.ActiveConnection = MM_conn_STRING
rse.Source = "SELECT p_id, p_ignore FROM p_ignores WHERE p_user = '" + Replace(user, "'", "''") + "'"
rse.CursorType = 0
rse.CursorLocation = 2
rse.LockType = 3
rse.Open()
rse_numRows = 0
Dim repeat3__numRows
repeat3__numRows = -1
Dim repeat3__index
repeat3__index = 0
rse_numRows = rse_numRows + repeat3__numRows
%>
|
My Ignored Users
|
 |
|
<%
rse.close
MM_conn_STRING.close
set MM_conn_STRING = NOTHING
set rse = nothing
%>