<% @ Language=VBScript codepage=1255 %> <% Option Explicit %> <% '**************************************************************************************** '** Copyright Notice '** '** Web Wiz Guide - Web Wiz Forums '** '** Copyright 2001-2003 Bruce Corkhill All Rights Reserved. '** '** This program is free software; you can modify (at your own risk) any part of it '** under the terms of the License that accompanies this software and use it both '** privately and commercially. '** '** All copyright notices must remain in tacked in the scripts and the '** outputted HTML. '** '** You may use parts of this program in your own private work, but you may NOT '** redistribute, repackage, or sell the whole or any part of this program even '** if it is modified or reverse engineered in whole or in part without express '** permission from the author. '** '** You may not pass the whole or any part of this application off as your own work. '** '** All links to Web Wiz Guide and powered by logo's must remain unchanged and in place '** and must remain visible when the pages are viewed unless permission is first granted '** by the copyright holder. '** '** This program is distributed in the hope that it will be useful, '** but WITHOUT ANY WARRANTY; without even the implied warranty of '** MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE OR ANY OTHER '** WARRANTIES WHETHER EXPRESSED OR IMPLIED. '** '** You should have received a copy of the License along with this program; '** if not, write to:- Web Wiz Guide, PO Box 4982, Bournemouth, BH8 8XP, United Kingdom. '** '** '** No official support is available for this program but you may post support questions at: - '** http://www.webwizguide.info/forum '** '** Support questions are NOT answered by e-mail ever! '** '** For correspondence or non support questions contact: - '** info@webwizguide.info '** '** or at: - '** '** Web Wiz Guide, PO Box 4982, Bournemouth, BH8 8XP, United Kingdom '** '**************************************************************************************** 'Set the timeout of the page Server.ScriptTimeout = 1000 'Set the response buffer to true as we maybe redirecting Response.Buffer = True 'Declare variables Dim strFileTypes 'Holds the file types allowed to be uploaded Dim intMaxFileSize 'Holds the largest file size Dim blnFileUploaded 'Set to true if the file is uploaded Dim strErrorMessage 'Holds the error emssage if the file is not uploaded Dim strFileUploadPath 'Holds the path and folder the uploaded files are stored in Dim saryFileUploadTypes 'Array holding the file types allowed to be uploaed Dim intFileSize 'Holds the max file size Dim strUploadComponent 'Holds the upload component used Dim lngErrorFileSize 'Holds the file size if the file is not saved because it is to large Dim blnExtensionOK 'Set to false if the extension of the file is not allowed Dim strImageName 'Holds the image name Dim strUserFolderName 'Holds the folder name safe username 'If the user is user is using a banned IP redirect to an error page If bannedIP() Then 'Clean up Set rsCommon = Nothing adoCon.Close Set adoCon = Nothing 'Redirect Response.Redirect("insufficient_permission.asp?M=IP") End If 'Check the user is registered and so able to post If intGroupID = 2 OR blnActiveMember = False Then 'Clean up Set rsCommon = Nothing adoCon.Close Set adoCon = Nothing 'Redirect Response.Redirect("insufficient_permission.asp") End If 'Intiliase variables blnExtensionOK = True 'Read in the file types that can be uploaded If blnAvatarUploadEnabled Then 'Initialise the SQL variable with an SQL statement to get the configuration details from the database If strDatabaseType = "SQLServer" Then strSQL = "EXECUTE " & strDbProc & "SelectConfiguration" Else strSQL = "SELECT " & strDbTable & "Configuration.* From " & strDbTable & "Configuration;" End If 'Query the database rsCommon.Open strSQL, adoCon 'If there be records returned get em If NOT rsCommon.EOF Then 'Read in the image types and size form the database 'Read in the configuration details from the recordset strUploadComponent = rsCommon("Upload_component") strFileUploadPath = rsCommon("Upload_avatar_path") saryFileUploadTypes = Split(Trim(strImageTypes), ";") strFileTypes = rsCommon("Upload_avatar_types") intMaxFileSize = CInt(rsCommon("Upload_avatar_size")) 'Replace \ with / in upload path strFileUploadPath = Replace(strFileUploadPath, "\", "/", 1, -1, 1) End If End If 'If this is a post back then upload the image If Request.QueryString("PB") = "Y" Then 'Check the session ID as we don't want remote form submission Call checkSessionID(Request.QueryString("SID")) 'Place the username in a varible to get the folder name for the user strUserFolderName = strLoggedInUsername 'Calculate the folder name safe username for folder strUserFolderName = decodeString(strUserFolderName) strUserFolderName = characterStrip(strUserFolderName) 'Call upoload file function strImageName = fileUpload(strFileUploadPath, saryFileUploadTypes, intMaxFileSize, strUploadComponent, lngErrorFileSize, blnExtensionOK, strUserFolderName) End If 'Reset Server Objects Set rsCommon = Nothing adoCon.Close Set adoCon = Nothing %> העלאת סמל אישי <% 'If the image has been saved then place it in the post If lngErrorFileSize = 0 AND blnExtensionOK = True AND strImageName <> "" Then %> <% End If %> <% 'If the user is allowed to upload avatars let them If blnAvatarUploadEnabled Then %>
<% = strTxtAvatarUpload %>
<% = strTxtImage %>: " onfocus="document.forms.frmImageUp.Submit.disabled=false;" />

<% 'If the file upload has failed becuase of the wrong extension display an error message If blnExtensionOK = False Then Response.Write("" & strTxtImageOfTheWrongFileType & ".
" & strTxtImagesMustBeOfTheType & ", " & Replace(strFileTypes, ";", ", ", 1, -1, 1) & "
") 'Else if the file upload has failed becuase the size is to large display an error message ElseIf lngErrorFileSize <> 0 Then Response.Write("" & strTxtImageFileSizeToLarge & " " & lngErrorFileSize & "KB.
" & strTxtMaximumFileSizeMustBe & " " & intMaxFileSize & "KB
") 'Else display a message of the image types that can be uploaded Else Response.Write(strTxtImagesMustBeOfTheType & ", " & Replace(strFileTypes, ";", ", ", 1, -1, 1) & ", " & strTxtAndHaveMaximumFileSizeOf & " " & intMaxFileSize & "KB") End If %>
 
<% End If %>