<%@LANGUAGE="VBSCRIPT"%> <% ' *** Restrict Access To Page: Grant or deny access to this page MM_authorizedUsers="Administrator" MM_authFailedURL="../../client_login.asp?l=loginerror" MM_grantAccess=false If Session("MM_Username") <> "" Then If (false Or CStr(Session("MM_UserAuthorization"))="") Or _ (InStr(1,MM_authorizedUsers,Session("MM_UserAuthorization"))>=1) Then MM_grantAccess = true End If End If 'If Not MM_grantAccess Then ' MM_qsChar = "?" ' If (InStr(1,MM_authFailedURL,"?") >= 1) Then MM_qsChar = "&" ' MM_referrer = Request.ServerVariables("URL") ' if (Len(Request.QueryString()) > 0) Then MM_referrer = MM_referrer & "?" & Request.QueryString() ' MM_authFailedURL = MM_authFailedURL & MM_qsChar & "accessdenied=" & Server.URLEncode(MM_referrer) ' Response.Redirect(MM_authFailedURL) 'End If %> <% Dim rsUsers__MMColParam rsUsers__MMColParam = "1" If (Request.QueryString("u") <> "") Then rsUsers__MMColParam = Request.QueryString("u") End If %> <% Dim rsUsers Dim rsUsers_numRows Set rsUsers = Server.CreateObject("ADODB.Recordset") rsUsers.ActiveConnection = MM_db_STRING rsUsers.Source = "SELECT *, profiles.username as name FROM profiles LEFT OUTER JOIN documents ON (profiles.username=documents.username) WHERE profiles.username = '" + Replace(rsUsers__MMColParam, "'", "''") + "' ORDER BY file_type" rsUsers.CursorType = 0 rsUsers.CursorLocation = 2 rsUsers.LockType = 1 rsUsers.Open() rsUsers_numRows = 0 %> <% Dim rsUserList Dim rsUserList_numRows Set rsUserList = Server.CreateObject("ADODB.Recordset") rsUserList.ActiveConnection = MM_db_STRING rsUserList.Source = "SELECT * FROM profiles ORDER BY username ASC" rsUserList.CursorType = 0 rsUserList.CursorLocation = 2 rsUserList.LockType = 1 rsUserList.Open() rsUserList_numRows = 0 %> <% Dim Repeat1__numRows Dim Repeat1__index Repeat1__numRows = -1 Repeat1__index = 0 rsUsers_numRows = rsUsers_numRows + Repeat1__numRows %>
" name="frmUpload" enctype="multipart/form-data" method="post">

<%= company %> Upload Area
Select User:

<% if MM_grantAccess = true then %> <% If Not rsUsers.EOF Or Not rsUsers.BOF Then %>Uploaded Files:<%end if%> 
<%end if%>
<% If Not rsUsers.EOF Or Not rsUsers.BOF Then %> Upload Files: <%end if%>  <% If Not rsUsers.EOF Or Not rsUsers.BOF Then %>
 
Comments:
 
<% If Not rsUsers.EOF Then %> "> <% End If %> ">
<% End If ' end Not rsUsers.EOF Or NOT rsUsers.BOF %>		 <% if MM_grantAccess = true then %>
<% While ((Repeat1__numRows <> 0) AND (NOT rsUsers.EOF)) %><% If rsUsers.Fields.Item("file_name").Value <> "" Then %> &del=<%=(rsUsers.Fields.Item("fileID").Value)%>" onClick="return ask()">Del ">View <%=(rsUsers.Fields.Item("file_name").Value)%>

<% End If %><% Repeat1__index=Repeat1__index+1 Repeat1__numRows=Repeat1__numRows-1 rsUsers.MoveNext() Wend %> <%end if%>

<% if MM_grantAccess = true then %>
 
 
 
<%else response.Write(" ") end if ' used for admin login display%>
 
<% rsUsers.Close() Set rsUsers = Nothing %> <% rsUserList.Close() Set rsUserList = Nothing %>