www.gusucode.com > 云枫企业网站源代码第二版 2.0源码程序 > order.asp
<style type="text/css">
<!--
.STYLE1 {font-weight: bold}
body,td,th {
font-size: 12px;
font-family: Arial, Helvetica, sans-serif;
}
body {
margin-left: 0px;
margin-top: 0px;
margin-right: 0px;
margin-bottom: 0px;
background-color: #E5E5EF;
}
.STYLE2 {color: #FF0000}
-->
</style>
<!--
<script language="JavaScript">
self.resizeTo(500,550) //调整到默认大小
</script>
-->
<!--#include file="conn.asp"-->
<%
select case request("action")
case ""
call main()
case "addsave"
call addsave()
case "Modifysave"
call Modifysave()
case "delsave"
call delsave()
end select
%>
<%
sub main()
dim ID
ID=replace(trim(request("id")),"'","")
if session("memberID")="" then
%>
<script language=javascript>
alert( "Please first register!" );
location.href = "member.asp"
</script>
<%
else
set rs=server.createobject("adodb.recordset")
sql="select * from member where member='"&session("memberID")&"'"
rs.open sql,conn,1,1
if rs.eof and rs.bof then
response.Write "<script language=javascript>alert('No any record about this member');window.close();</script>"
else
lxr=rs("name")
gsname=rs("gsname")
mail=rs("mail")
address=rs("address")
zid=rs("zid")
tel=rs("tel")
fax=rs("fax")
end if
rs.close
set rs=nothing
end if
%>
<script language="javascript">
function checkform() {
if(document.form.username.value==""){
alert("Username is request!");
document.form.username.focus();
return false;
}
if(document.form.num.value=="" || document.form.num.value<1){
alert("You must order 1 at least!");
document.form.num.focus();
return false;
}
if(document.form.company.value==""){
alert("Company is request!");
document.form.company.focus();
return false;
}
if(document.form.address.value==""){
alert("Address is request!");
document.form.address.focus();
return false;
}
if(document.form.zip.value==""){
alert("Zip is request!");
document.form.zip.focus();
return false;
}
if(document.form.Email.value==""){
alert("E-mail is request!");
document.form.Email.focus();
return false;
}
if (document.form.Email.value.indexOf("@")<1 || document.form.Email.value.indexOf(".")<4 )
{
alert("E-mail is wrong!");
document.form.Email.focus();
return false;
}
return true;
}
</script>
<table width="478" border="0" align="center" cellpadding="0" cellspacing="0">
<tr>
<td width="593" height="80" valign="top" background="images/01.jpg"> </td>
</tr>
</table>
<table style="BORDER-COLLAPSE: collapse" bordercolor="#D3D5E2" cellspacing="0" cellpadding="3" width="478" align="center"
border="1">
<tbody>
<%
if id<>"" then
set rsp=server.createobject("adodb.recordset")
sqlp = "select * from product where id="&id
rsp.open sqlp,conn,1,1
end if
if session("OrderId")="" then
set rsorder=server.createobject("adodb.recordset")
sqlorder = "select * from orderlist"
rsorder.open sqlorder,conn,1,3
rsorder.addnew
rsorder("Title")=rsp("title")
rsorder("Titlee")=rsp("titlee")
rsorder("dj")=rsp("dj")
rsorder("discount")=rsp("discount")
rsorder("jiage")=rsp("dj")*rsp("discount")/100
rsorder("proid")=id
rsorder.update
set rsid=server.createobject("adodb.recordset")
sqlid = "select * from orderlist order by id desc"
rsid.open sqlid,conn,1,1
thelastid=rsid("id")
session("OrderId")=year(now())&right("0"&month(now()),2)&right("0"&day(now()),2)&right("0"&minute(now()),2)&right("0"&second(now()),2)
rsorder.close
set rsorder=nothing
idsql="update orderlist set orderid='"&session("OrderId")&"' where id="&thelastid
conn.execute (idsql)
else
if id="" then
else
set rsorder=server.createobject("adodb.recordset")
sqlorder = "select * from orderlist"
rsorder.open sqlorder,conn,1,3
rsorder.addnew
rsorder("title")=rsp("title")
rsorder("titlee")=rsp("titlee")
rsorder("dj")=rsp("dj")
rsorder("discount")=rsp("discount")
rsorder("jiage")=rsp("dj")*rsp("discount")/100
rsorder("proid")=id
rsorder("OrderId")=session("OrderId")
rsorder.update
rsorder.close
end if
end if
%>
<tr align="middle">
<td height="20" colspan="2" class="down"><div align="left"><span
class="style1 STYLE2"><b>Check Order ( * Must be fill in ) </b></span><br />
<br />
</div></td>
</tr>
<form id="myform1" name="myform1" action="order.asp?action=Modifysave" method="post">
<tr class="tdbg">
<td colspan="2" class="down">
<table cellspacing="0" cellpadding="0" width="100%" align="center" border="1" style="BORDER-COLLAPSE: collapse" bordercolor="#D3D5E2" >
<tbody>
<tr>
<td colspan="5" height="25"> <strong>You select product detailed as follows:</strong></td>
</tr>
<tr>
<td align="middle" width="15%" height="25"> Selection</td>
<td width="33%" height="25" align="left"> range</td>
<td width="19%"> quantity</td>
<td width="16%" align="center"> price</td>
<td width="17%" align="center"> Operation</td>
</tr>
<%
set rsorder=server.createobject("adodb.recordset")
sqlorder = "select * from orderlist where OrderId='"&session("OrderId")&"'"
rsorder.open sqlorder,conn,1,1
do while not rsorder.eof
%>
<tr>
<td width="15%" height="20"><div align="center">
<input type="checkbox" checked="checked" value="<%=rsorder("id")%>" name="Product_Id" />
</div></td>
<td width="33%"> <%=rsorder("titlee")%></td>
<td width="19%">
<input name="num" type="text" value="<%=rsorder("num")%>" size="5" /></td>
<td width="16%" align="center"> ¥<%=rsorder("jiage")%></td>
<td width="17%" align="center"><a href="?action=delsave&idd=<%=rsorder("id")%>" onClick="return confirm('确定删除吗?')">删除</a></td>
</tr>
<%
sum=sum+rsorder("jiage")
rsorder.movenext
loop
rsorder.close
set rsorder=nothing
%>
<tr>
<td align="right" height="25"> </td>
<td width="33%" height="25" align="left"> total</td>
<td width="19%"> </td>
<td width="16%" align="center"> ¥<%=sum%></td>
<td width="17%" align="center"> </td>
</tr>
<tr>
<td align="right" height="25"> </td>
<td height="25" colspan="4" align="center">If you revised the commodity quantity, please click<input type="submit" value=" OK "> </td>
</tr>
</tbody>
</table>
</td>
</tr>
</form>
<form action="order.asp?action=addsave" method="post" name="form" onSubmit="return checkform();">
<tr class="tdbg">
<td align="right" class="down">OrderID</td>
<td class="down"><font color="#FF6600"><%=session("OrderId")%></font> You must remeber the order ID.<input value="<%=session("OrderId")%>" type="hidden" maxlength="14" size="15" name="orderid"/></td>
</tr>
<!--
<tr class="tdbg">
<td width="19%" align="right" class="down"><span
class="style1"><b>Quantity:</b></span></td>
<td width="81%" class="down">
<input value="1" maxlength="14" size="8" name="num" onkeyup="if(event.keyCode !=37 && event.keyCode != 39) value=value.replace(/\D/g,'');" onbeforepaste="clipboardData.setData('text',clipboardData.getData('text').replace(/\D/g,''))"/>
<span class="STYLE1" style="color: #FF0000">**</span> </td>
</tr>
-->
<tr class="tdbg">
<td width="19%" align="right" class="down"><span
class="style1"><b>Username:</b></span></td>
<td width="81%" class="down">
<input value="<%=lxr%>" maxlength="14" size="15" name="username"/>
<span class="STYLE1" style="color: #FF0000">**</span> </td>
</tr>
<tr class="tdbg">
<td width="19%" align="right" class="down"><span
class="style1"><b>Company:</b></span></td>
<td width="81%" class="down"><span class="style1">
<input name="company" type="text" value="<%=gsname%>" size="30" maxlength="12" />
<span class="STYLE1" style="color: #FF0000">**</span></span></td>
</tr>
<tr class="tdbg">
<td width="19%" align="right" class="down"><span
class="style1"><strong>Address:</strong></span></td>
<td width="81%" class="down"><span class="style1">
<input name="address" type="text" value="<%=address%>" size="35" />
<span class="STYLE1" style="color: #FF0000">**</span></span></td>
</tr>
<tr class="tdbg">
<td width="19%" align="right" class="down"><span
class="style1"><strong>Zip:</strong></span></td>
<td width="81%" class="down"><span class="style1">
<input value="<%=zid%>"
maxlength="20" size="9" name="zip" />
<span class="STYLE1" style="color: #FF0000">**</span> </span></td>
</tr>
<tr class="tdbg">
<td width="19%" align="right" class="down"><span
class="style1"><strong>Email:</strong></span></td>
<td width="81%" class="down"><span class="style1">
<input value="<%=mail%>"
maxlength="50" size="30" name="Email" />
<span class="STYLE1" style="color: #FF0000">**</span></span></td>
</tr>
<tr class="tdbg">
<td align="right" class="down"><span class="style1"><strong>Tel:</strong></span></td>
<td width="81%" class="down"><input
name="tel" value="<%=tel%>" size="20" maxlength="15" /></td>
</tr>
<tr class="tdbg">
<td width="19%" align="right" class="down"><span
class="style1"><strong>Fax:</strong></span></td>
<td width="81%" class="down"><input value="<%=fax%>" maxlength="15" size="20"
name="fax" /></td>
</tr>
<tr class="tdbg">
<td width="19%" align="right" class="down"><p
class="style1"><strong>Content:</strong></p></td>
<td width="81%" class="down"><label>
<textarea name="content" cols="40" rows="5" id="content"></textarea>
</label></td>
</tr>
<tr class="tdbg">
<td width="19%" align="right" class="down"><p
class="style1"><strong>Payment:</strong></p></td>
<td width="81%" class="down"><label>
<select name="Payment">
<option value="在线支付" selected>Online payment</option>
<option value="招行支付">China Merchants Bank</option>
<option value="金融联结">Financial settlement</option>
<option value="现金支付">Cash accounting</option>
<option value="银行汇款">Remittance</option>
</select>
</label></td>
</tr>
<tr class="tdbg">
<td colspan="2" align="center" class="down"> <div align="center">
<input type="submit" name="Submit3" value="Submit" />
<input language="javascript" onclick="this.form.action='cpzs.asp';this.form.submit()" type="button" value="Continue" name="button" />
<input type="reset" name="Submit32" value="Reset" />
</div></td>
</tr>
</form>
</tbody>
</table>
<%
end sub
sub addsave()
ServerName=Cstr(Request.ServerVariables("HTTP_REFERER"))
ServerName1=Cstr(Request.ServerVariables("SERVER_NAME"))
if request.form("Submit3")="Submit" then
if Mid(ServerName,8,len(ServerName1))<>ServerName1 then
Response.Write "<script language=javascript>alert('error!');window.close();</script>"
End if
Set rs = Server.CreateObject("ADODB.RecordSet")
sql = "select * from orderlist where orderid='"&session("OrderId")&"'"
rs.open sql,conn,1,3
do while not rs.eof
if session("memberID")<>"" then
rs("member")=session("memberID")
end if
rs("username")=Replace(Request.form("username"),"'","")
rs("tel")=Replace(Request.form("tel"),"'","")
rs("company")=Replace(Request.form("company"),"'","")
rs("address")=Replace(Request.form("address"),"'","")
rs("fax")=Replace(Request.form("fax"),"'","")
rs("email")=Replace(Request.form("Email"),"'","")
rs("zip")=Replace(Request.form("zip"),"'","")
rs("content")=Replace(Request.form("content"),"'","")
rs("orderdate")=date()
rs("Payment")=Replace(Request.form("Payment"),"'","")
rs("isok")=1
rs.update
rs.movenext
loop
rs.close
set rs=nothing
response.Write "<script language=javascript>alert('Thank you for your support,we will contact you soon。');location.href = 'index.asp';</script>"
End if
end sub
sub Modifysave()
Product_Id=request("Product_Id")
num=request("num")
if Product_Id<>"" then
s=split(Product_Id,",")
s1=split(num,",")
for i=0 to Ubound (s)
sqlinfo = "select * from orderlist where id="&s(i)
set rs=Server.Createobject("ADODB.RecordSet")
rs.Open sqlinfo,conn,1,3
rs("num")=s1(i)
rs("jiage")=s1(i)*rs("dj")*rs("discount")/100
rs.Update
rs.close
set rs = nothing
next
end if
response.Redirect("order.asp")
end sub
sub delsave()
idd=request("idd")
sql="delete from orderlist where id=" & idd
conn.execute sql
response.Redirect("order.asp")
end sub
%>