%@LANGUAGE="VBSCRIPT" CODEPAGE="1252"%>
<%
' *** Edit Operations: declare variables
Dim MM_editAction
Dim MM_abortEdit
Dim MM_editQuery
Dim MM_editCmd
Dim MM_editConnection
Dim MM_editTable
Dim MM_editRedirectUrl
Dim MM_editColumn
Dim MM_recordId
Dim MM_fieldsStr
Dim MM_columnsStr
Dim MM_fields
Dim MM_columns
Dim MM_typeArray
Dim MM_formVal
Dim MM_delim
Dim MM_altVal
Dim MM_emptyVal
Dim MM_i
MM_editAction = CStr(Request.ServerVariables("SCRIPT_NAME"))
If (Request.QueryString <> "") Then
MM_editAction = MM_editAction & "?" & Request.QueryString
End If
' boolean to abort record edit
MM_abortEdit = false
' query string to execute
MM_editQuery = ""
%>
<%
' *** Insert Record: set variables
If (CStr(Request("MM_insert")) = "form2") Then
MM_editConnection = MM_bqsm_STRING
MM_editTable = "Feedback"
MM_editRedirectUrl = "RegSuccess.asp"
MM_fieldsStr = "email4|value|name4|value|message4|value|date4|value|IP_add4|value"
MM_columnsStr = "SenderEmail|',none,''|FeedbackSender|',none,''|FeedbackDescription|',none,''|FeedbackDateReceive|',none,NULL|FeedbackIP|',none,''"
' create the MM_fields and MM_columns arrays
MM_fields = Split(MM_fieldsStr, "|")
MM_columns = Split(MM_columnsStr, "|")
' set the form values
For MM_i = LBound(MM_fields) To UBound(MM_fields) Step 2
MM_fields(MM_i+1) = CStr(Request.Form(MM_fields(MM_i)))
Next
' append the query string to the redirect URL
If (MM_editRedirectUrl <> "" And Request.QueryString <> "") Then
If (InStr(1, MM_editRedirectUrl, "?", vbTextCompare) = 0 And Request.QueryString <> "") Then
MM_editRedirectUrl = MM_editRedirectUrl & "?" & Request.QueryString
Else
MM_editRedirectUrl = MM_editRedirectUrl & "&" & Request.QueryString
End If
End If
End If
%>
<%
' *** Insert Record: construct a sql insert statement and execute it
Dim MM_tableValues
Dim MM_dbValues
If (CStr(Request("MM_insert")) <> "") Then
' create the sql insert statement
MM_tableValues = ""
MM_dbValues = ""
For MM_i = LBound(MM_fields) To UBound(MM_fields) Step 2
MM_formVal = MM_fields(MM_i+1)
MM_typeArray = Split(MM_columns(MM_i+1),",")
MM_delim = MM_typeArray(0)
If (MM_delim = "none") Then MM_delim = ""
MM_altVal = MM_typeArray(1)
If (MM_altVal = "none") Then MM_altVal = ""
MM_emptyVal = MM_typeArray(2)
If (MM_emptyVal = "none") Then MM_emptyVal = ""
If (MM_formVal = "") Then
MM_formVal = MM_emptyVal
Else
If (MM_altVal <> "") Then
MM_formVal = MM_altVal
ElseIf (MM_delim = "'") Then ' escape quotes
MM_formVal = "'" & Replace(MM_formVal,"'","''") & "'"
Else
MM_formVal = MM_delim + MM_formVal + MM_delim
End If
End If
If (MM_i <> LBound(MM_fields)) Then
MM_tableValues = MM_tableValues & ","
MM_dbValues = MM_dbValues & ","
End If
MM_tableValues = MM_tableValues & MM_columns(MM_i)
MM_dbValues = MM_dbValues & MM_formVal
Next
MM_editQuery = "insert into " & MM_editTable & " (" & MM_tableValues & ") values (" & MM_dbValues & ")"
If (Not MM_abortEdit) Then
' execute the insert
Set MM_editCmd = Server.CreateObject("ADODB.Command")
MM_editCmd.ActiveConnection = MM_editConnection
MM_editCmd.CommandText = MM_editQuery
MM_editCmd.Execute
MM_editCmd.ActiveConnection.Close
' SEND EMAIL
Dim trixMail, trixBody
Set trixMail = CreateObject("Persits.MailSender")
trixMail.Host="mail.bqsm.gov.my" ' Specify a valid SMTP server
trixBody="Hi there, " & request.form ("usernama") & vbcrlf
trixBody=trixBody & vbcrlf
trixBody=trixBody & "Thank you for applying for BQSM e-membership on " & request.form ("date_now") & vbcrlf
trixBody=trixBody & "Please check your mailbox within 24 hours for status of application" & vbcrlf
trixBody=trixBody & vbcrlf
trixBody=trixBody & "BQSM Webmaster" & vbcrlf
trixMail.Username = "admin@bqsm.gov.my" 'Please specify the valid user account here
trixMail.Password = "rbk239uv" ' Please specify you actual user password here
trixMail.From="info@bqsm.gov.my"
trixMail.FromName = "BQSM Secretariat" ' optional
trixMail.AddAddress Request.Form("email_add")
trixMail.Subject="New Application for BQSM e-membership"
trixMail.Body=trixBody
trixMail.Send
set trixMail=nothing
If (MM_editRedirectUrl <> "") Then
Response.Redirect(MM_editRedirectUrl)
End If
End If
End If
%>
<%
If cstr(Request.Form("username"))<>"" Then
If Request.form("checkbox") ="1" Then
Response.Cookies("username") = Request.Form("username")
Response.Cookies("password") = Request.Form("password")
Response.Cookies("remember") = "1"
Response.Cookies("username").expires = Date + 30
Response.Cookies("password").expires = Date + 30
Response.Cookies("remember").expires = Date + 30
Else
Response.Cookies("remember") = ""
Response.Cookies("username") = ""
Response.Cookies("password") = ""
End If
End If
%>
<%
' *** Validate request to log in to this site.
MM_LoginAction = Request.ServerVariables("URL")
If Request.QueryString<>"" Then MM_LoginAction = MM_LoginAction + "?" + Server.HTMLEncode(Request.QueryString)
MM_valUsername=CStr(Request.Form("username"))
If MM_valUsername <> "" Then
MM_fldUserAuthorization=""
MM_redirectLoginSuccess="Logintrack.asp"
MM_redirectLoginFailed="a1_login.asp?error=1"
MM_flag="ADODB.Recordset"
set MM_rsUser = Server.CreateObject(MM_flag)
MM_rsUser.ActiveConnection = MM_bqsm_STRING
MM_rsUser.Source = "SELECT fusername, fpassword, QSIId, QSIQSRegNo, QSIQSName, fpages"
If MM_fldUserAuthorization <> "" Then MM_rsUser.Source = MM_rsUser.Source & "," & MM_fldUserAuthorization
MM_rsUser.Source = MM_rsUser.Source & " FROM QSIQSIndividual WHERE fusername='" & Replace(MM_valUsername,"'","''") &"' AND fpassword='" & Replace(Request.Form("password"),"'","''") & "'"
MM_rsUser.CursorType = 0
MM_rsUser.CursorLocation = 2
MM_rsUser.LockType = 3
MM_rsUser.Open
If Not MM_rsUser.EOF Or Not MM_rsUser.BOF Then
' username and password match - this is a valid user
Session("MM_Username") = MM_valUsername
Session("svUserID") = MM_rsUser.Fields.Item("QSIId").Value
Session("SV_Regno") = MM_rsUser.Fields.Item("QSIQSRegNo").Value
Session("Svname") = MM_rsUser.Fields.Item("QSIQSName").Value
If (MM_fldUserAuthorization <> "") Then
Session("MM_UserAuthorization") = CStr(MM_rsUser.Fields.Item(MM_fldUserAuthorization).Value)
Else
Session("MM_UserAuthorization") = ""
End If
if CStr(Request.QueryString("accessdenied")) <> "" And false Then
MM_redirectLoginSuccess = Request.QueryString("accessdenied")
End If
MM_rsUser.Close
Response.Redirect(MM_redirectLoginSuccess)
End If
MM_rsUser.Close
Response.Redirect(MM_redirectLoginFailed)
End If
%>
<%
Dim UsersRS__value
UsersRS__value = "zx"
if (Request.Form("Email") <> "") then UsersRS__value = Request.Form("Email")
%>
<%
set UsersRS = Server.CreateObject("ADODB.Recordset")
UsersRS.ActiveConnection = MM_bqsm_STRING
UsersRS.Source = "SELECT QSIQSEmail, fusername, fpassword FROM QSIQSIndividual WHERE QSIQSEmail='" + Replace(UsersRS__value, "'", "''") + "'"
UsersRS.CursorType = 0
UsersRS.CursorLocation = 2
UsersRS.LockType = 3
UsersRS.Open()
UsersRS_numRows = 0
%>
<%
if Request.Form("submit") <> "" then
if UsersRS.eof and UsersRS.bof then
response.redirect "EmailFail.asp"
else
Dim objmail, mailbody
set objmail=CreateObject("Persits.MailSender")
objmail.Username = "admin@bqsm.gov.my" 'Please specify the valid user account here
objmail.Password = "rbk239uv" ' Please specify you actual user password here
objmail.Host="mail.bqsm.gov.my" ' Specify a valid SMTP server
objmail.From="admin@bqsm.gov.my"
objmail.AddAddress Request.Form("Email")
objmail.Subject="Username and Password"
mailbody="Here is your username and password:" & vbcrlf
mailbody=mailbody & "Username - " & UsersRS("fusername") & vbcrlf
mailbody=mailbody & "Password - " & UsersRS("fpassword") & vbcrlf
objmail.Body=mailbody
objmail.Send
set objmail=Nothing
response.redirect "EmailSuccess.asp"
end if
end if
%>
BQSM l Member Login
<%
MM_authorizedUsers=""
MM_grantAccess=false
If Session("MM_Username") <> "" Then
If (true Or CStr(Session("MM_UserAuthorization"))="") Or _
(InStr(1,MM_authorizedUsers,Session("MM_UserAuthorization"))>=1) Then
MM_grantAccess = true
End If
End If
If Not MM_grantAccess Then ' *** Show If User Not Logged In
%>
<%
End If ' *** Show If User Not Logged In
%><%
MM_authorizedUsers=""
MM_grantAccess=false
If Session("MM_Username") <> "" Then
If (true Or CStr(Session("MM_UserAuthorization"))="") Or _
(InStr(1,MM_authorizedUsers,Session("MM_UserAuthorization"))>=1) Then
MM_grantAccess = true
End If
End If
If MM_grantAccess Then ' *** Show If User Logged In
%>