<%
Const adOpenKeyset = 1
Const adLockOptimistic = 3
dim mrs, sqlcode
set mrs = server.createobject("adodb.recordset")
mrs.open "comments", mconn, adOpenKeyset, adLockOptimistic
mrs.AddNew
'add comments
comment = request.form("comment")
if request.form("enter") = "enter comments" then
If comment = "" then
closemrs()
closeconn()
Response.redirect("default.asp?comment=blank")
End If
Function StripSymbols(sString)
Dim nCharPos, sOut, nChar
nCharPos = 1
sOut = ""
For nCharPos = 1 To Len(sString)
nChar = Asc(Lcase(Mid(sString, nCharPos, 1)))
If ((nChar > 39 And nChar < 58) or (nChar > 96 And nChar < 123) or (nChar > 31 And nChar < 34) or nChar = 63) Then
sOut = sOut & Mid(sString, nCharPos, 1)
End If
Next
StripSymbols = sOut
End Function
mrs("comment") = StripSymbols(comment)
mrs("moviename") = StripSymbols(request.form("reviewname"))
mrs("ip") = Request.ServerVariables("remote_addr")
movieID = request.form("movieID")
if IsNumeric(movieID) then
mrs("movieID") = StripSymbols(movieID)
end if
mrs.Update
End if
closemrs()
closeconn()
Response.write("
Your comment has been entered and will be reviewed.
Home
Back to Review
")
%>