<%@ LANGUAGE="VBSCRIPT" %>
<% Response.Buffer = "True" %>

<%
'***********************************************************************
'   System     :   ASPBanner Unlimited									
'   Author     :   Christopher Williams of CJWSoft www.CJWSoft.com		
'																		
'                         COPYRIGHT NOTICE								
'																		
'   See attached Software License Agreement								
'																		
'   (c) Copyright 2000 - 2003 by CJWSoft.			 All rights reserved
'***********************************************************************
%>

<!--#INCLUDE FILE="dataconn_inc.asp"-->
<!--#INCLUDE FILE="config_inc.asp"-->
<% CHECKFOR = "Admin" %>
<!--#INCLUDE FILE="check_user_inc.asp"-->

<%
User_ID = Request("User_ID")
Action = Request("Action")
	
Function IsValidEmail(Email)
ValidFlag = False
If (Email <> "") And (InStr(1, Email, "@") > 0) And (InStr(1, Email, ".") > 0) Then
atCount = 0
SpecialFlag = False
For atLoop = 1 To Len(Email)
atChr = Mid(Email, atLoop, 1)
If atChr = "@" Then atCount = atCount + 1
If (atChr >= Chr(32)) And (atChr <= Chr(44)) Then SpecialFlag = True
If (atChr = Chr(47)) Or (atChr = Chr(96)) Or (atChr >= Chr(123)) Then SpecialFlag = True
If (atChr >= Chr(58)) And (atChr <= Chr(63)) Then SpecialFlag = True
If (atChr >= Chr(91)) And (atChr <= Chr(94)) Then SpecialFlag = True
Next
If (atCount = 1) And (SpecialFlag = False) Then
BadFlag = False
tAry1 = Split(Email, "@")
Username = tAry1(0)
DomainName = tAry1(1)
If (Username = "") Or (DomainName = "") Then BadFlag = True
If Mid(DomainName, 1, 1) = "." then BadFlag = True
If Mid(DomainName, Len(DomainName), 1) = "." then BadFlag = True
ValidFlag = True
End If
End If
If BadFlag = True Then ValidFlag = False
IsValidEmail = ValidFlag
End Function
	
UsernameCheck = CStr(Replace(Request("Username"),"'","''"))
Set ConnBannerSystem = Server.CreateObject("ADODB.Connection")	
Set CmdCheckForExisting = Server.CreateObject("ADODB.Recordset")
ConnBannerSystem.Open BannerConnectionString
	
If Action = "New_User" Then
	SQL = "SELECT Banner_Users.* FROM Banner_Users WHERE (Username = '" & UsernameCheck & "')"
Else
	SQL = "SELECT Banner_Users.* FROM Banner_Users WHERE (Username = '" & UsernameCheck & "') And (User_ID <> " & User_ID & ")"
End If
	
CmdCheckForExisting.Open SQL, ConnBannerSystem, 1, 3
	
If Not CmdCheckForExisting.EOF Then
		ErrorMessage = ErrorMessage & Server.URLEncode("The Username you entered is in use. Please choose another.\n\n")
End If
	
If Request("First_Name") = "" Then
		ErrorMessage = ErrorMessage & Server.URLEncode("You must enter a First Name.\n\n")
End If
	
Email = Request("Email")
	
If NOT IsValidEmail(Email) Then
		ErrorMessage = ErrorMessage & Server.URLEncode("That does not appear to be a valid Email.\n\n")
End If
	
If Request("Username") = "" Then
		ErrorMessage = ErrorMessage & Server.URLEncode("You must enter a Username.\n\n")
End If
	
If Request("Password") = "" Then
		ErrorMessage = ErrorMessage & Server.URLEncode("You must enter a Password.\n\n")
End If
	
If ErrorMessage <> "" Then
	
	Response.Redirect "edit.asp?" & Request.Form & "&ErrorMessage=" & ErrorMessage
	Response.End
	
End If
	
Set ConnBannerSystem = Server.CreateObject("ADODB.Connection")	
Set CmdEditUser = Server.CreateObject("ADODB.Recordset")
ConnBannerSystem.Open BannerConnectionString
	
If Action = "New_User" Then
	SQL = "SELECT Banner_Users.* FROM Banner_Users"
Else
	SQL = "SELECT Banner_Users.* FROM Banner_Users WHERE (User_ID = " & User_ID & ")"
End If
	
CmdEditUser.Open SQL, ConnBannerSystem, 1, 3
	
If Action = "New_User" Then
	CmdEditUser.AddNew
End If
%>


<%
Admin = Request("Admin")
If Admin="" THEN
CmdEditUser.Fields("Admin") = False
Else
CmdEditUser.Fields("Admin") = Admin
END IF
%>

<%
Active = Request("Active")
	
If Action = "New_User" Then
	Active = True
End If
	
If Active="" THEN
CmdEditUser.Fields("Active") = False
Else
CmdEditUser.Fields("Active") = Active
END IF
%>

<%
First_Name = Request("First_Name")
If First_Name="" THEN
CmdEditUser.Fields("First_Name") = NULL
Else
CmdEditUser.Fields("First_Name") = First_Name
END IF
%>

<%
Last_Name = Request("Last_Name")
If Last_Name="" THEN
CmdEditUser.Fields("Last_Name") = NULL
Else
CmdEditUser.Fields("Last_Name") = Last_Name
END IF
%>

<%
Company_Name = Request("Company_Name")
If Company_Name="" THEN
CmdEditUser.Fields("Company_Name") = NULL
Else
CmdEditUser.Fields("Company_Name") = Company_Name
END IF
%>

<%
Notes = Request("Notes")
If Notes="" THEN
CmdEditUser.Fields("Notes") = NULL
Else
CmdEditUser.Fields("Notes") = Notes
END IF
%>

<%
Password = Request("Password")
If Password="" THEN
CmdEditUser.Fields("Password") = NULL
Else
CmdEditUser.Fields("Password") = Password
END IF
%>

<%
Username = Request("Username")
If Username="" THEN
CmdEditUser.Fields("Username") = NULL
Else
CmdEditUser.Fields("Username") = Username
END IF
%>

<%
Address = Request("Address")
If Address="" THEN
CmdEditUser.Fields("Address") = NULL
Else
CmdEditUser.Fields("Address") = Address
END IF
%>

<%
If Email="" THEN
CmdEditUser.Fields("Email") = NULL
Else
CmdEditUser.Fields("Email") = Email
END IF
%>

<%
City = Request("City")
If City="" THEN
CmdEditUser.Fields("City") = NULL
Else
CmdEditUser.Fields("City") = City
END IF
%>

<%
Zipcode_Postal_Code = Request("Zipcode_Postal_Code")
If Zipcode_Postal_Code="" THEN
CmdEditUser.Fields("Zipcode_Postal_Code") = NULL
Else
CmdEditUser.Fields("Zipcode_Postal_Code") = Zipcode_Postal_Code
END IF
%>

<%
State_Province = Request("State_Province")
If State_Province="" THEN
CmdEditUser.Fields("State_Province") = NULL
Else
CmdEditUser.Fields("State_Province") = State_Province
END IF
%>

<%
Phone = Request("Phone")
If Phone="" THEN
CmdEditUser.Fields("Phone") = NULL
Else
CmdEditUser.Fields("Phone") = Phone
END IF
%>

<%
Reset_Count = Request("Reset_Count")
If Reset_Count="ON" THEN
	CmdEditUser.Fields("COUNTER") = NULL
END IF
%>

<%
If Application("User_Custom1_Used") = True Then
	Custom1 = Request("Custom1")
		If Custom1="" THEN
			CmdEditUser.Fields("Custom1") = NULL
		Else
			CmdEditUser.Fields("Custom1") = Custom1
		End If
End If
%>

<%
If Application("User_Custom2_Used") = True Then
	Custom2 = Request("Custom2")
		If Custom2="" THEN
			CmdEditUser.Fields("Custom2") = NULL
		Else
			CmdEditUser.Fields("Custom2") = Custom2
		End If
End If
%>
	
<%
If Application("User_Custom3_Used") = True Then
	Custom3 = Request("Custom3")
		If Custom3="" THEN
			CmdEditUser.Fields("Custom3") = NULL
		Else
			CmdEditUser.Fields("Custom3") = Custom3
		End If
End If
%>

<%
If Application("User_Custom4_Used") = True Then
	Custom4 = Request("Custom4")
		If Custom4="" THEN
			CmdEditUser.Fields("Custom4") = NULL
		Else
			CmdEditUser.Fields("Custom4") = Custom4
		End If
End If
%>

<%
If Application("User_Custom5_Used") = True Then
	Custom5 = Request("Custom5")
		If Custom5="" THEN
			CmdEditUser.Fields("Custom5") = NULL
		Else
			CmdEditUser.Fields("Custom5") = Custom5
		End If
End If
%>

<%
If Application("User_Custom6_Used") = True Then
	Custom6 = Request("Custom6")
		If Custom6="" THEN
			CmdEditUser.Fields("Custom6") = NULL
		Else
			CmdEditUser.Fields("Custom6") = Custom6
		End If
End If
%>

<%
CmdEditUser.Update
CmdEditUser.Close
Set CmdEditUser = Nothing
ConnBannerSystem.Close
Set ConnBannerSystem = Nothing
%>


<!-- Delay Function -->

<%
Sub TLdelaySec(DelaySeconds)
SecCount = 0
Sec2 = 0
While SecCount < DelaySeconds + 1
Sec1 = Second(Time())
If Sec1 <> Sec2 Then
Sec2 = Second(Time())
SecCount = SecCount + 1
End If
Wend
End Sub
%>

<% TLdelaySec(2) %>

<!-- End Of Delay Function -->

<% Response.Redirect "default.asp" %>