<% 'PageName = "event_schedule_delete" 'DoHeader(PageName) 'This page has a small security risk in this form because a Event could potentially 'edit the URL they are hitting and change the Query String to another number 'causing a diferent record to be deleted 'if this becomes a problem, a check could be built in to verify that the Event is 'either an admin or it's their own record they are editing. Set objConn=GetConn strSQLtmp="SELECT * FROM EventSchedule WHERE EventScheduleID='" & ScheduleID & "';" Set objRStmp = objConn.Execute(strSQLtmp) strSQL1="SELECT * FROM EventScheduleJoin WHERE EventScheduleID='" & ScheduleID & "';" Set objRS1 = objConn.Execute(strSQL1) strSQL2="SELECT * FROM EventGroupScheduleJoin WHERE EventScheduleID='" & ScheduleID & "';" Response.Write "strSQLtmp= " & strSQLtmp & "strSQL1= " & strSQL1 & "strSQL2= " & strSQL2 & vbcrlf Set objRS2 = objConn.Execute(strSQL2) If objRStmp.eof And objRS1.eof And objRS2.eof Then DoHeader ("Error Deleting Record") Response.Write "

" Response.Write "" & vbcrlf Response.Write "" & vbcrlf Response.Write "" & vbcrlf Response.Write "" & vbcrlf Response.End Else strRedirect = "/promanweb/event/event_schedule_list.asp?iCognateFlag=" & iCognateFlag strSQLtmp="DELETE * FROM EventSchedule WHERE EventScheduleID='" & ScheduleID & "';" objConn.Execute(strSQLtmp) strSQL1="DELETE * FROM EventScheduleJoin WHERE EventScheduleID='" & ScheduleID & "';" objConn.Execute(strSQL1) strSQL2="DELETE * FROM EventGroupScheduleJoin WHERE EventScheduleID='" & ScheduleID & "';" objConn.Execute(strSQL2) End If objRStmp.Close Set objRStmp= nothing objRS1.Close Set objRS1= nothing objRS2.Close Set objRS2= nothing objConn.Close Set objConn = nothing Response.Redirect strRedirect %>

Error in processing Delete. Please report the problem to the webmaster.
Back to Form