Database Explorer

ASP Free Forums Sponsor:

January 8th, 2006, 01:18 AM

baseballdude_

Expert Learner

ASP Free Intermediate (1500 - 1999 posts)

Join Date: Feb 2005

Location: Wisconsin

Posts: 1,878

Folding Points: 22104 Folding Title: Starter Folder

Time spent in forums: 1 Week 5 Days 11 h 55 m 55 sec
Reputation Power: 62

Send a message via Yahoo to baseballdude_

Send a message via Google Talk to baseballdude_

Database Explorer

I've created this script to use as an administration tool for my own website. I've found it to be very handy. It's fully functional, the only thing that could be fixed (much could be added), is custom error messages.

Just fill in the constants and you're ready to go!

ASP Code:

Original - ASP Code

'=================================================  ==============================
' User Settings                                          Coded By: Dan Barnett
'=================================================  ==============================
Const intDatabaseType = 1		'1=MySQL, 2=Access, 3=SQL Server
Const strServer = "localhost"		'Server URL or localhost
Const strDatabase = "DBname"		'Database Name
Const strUserID = "username"		'Database User ID
Const strPassword = "password"		'Database Password
Const strDefaultTable = "users"		'Default table for database explorer
Const strDefaultColumn = "username"	'Default column for database explorer
'-------------------------------------------------------------------------------

strScriptName = Request.ServerVariables("Script_Name")

If Session("loggedin") = True And Request.QueryString() <> "logout" Then

Dim strValue, strSQL, strLeft, strRight, strScriptName, Conn, RS
	If intDatabaseType = 1 Then
		strLeft = "`"
		strRight = "`"
	Else
		strLeft = "["
		strRight = "]"
	End If

Set Conn = Server.CreateObject("ADODB.Connection")
Set RS = Server.CreateObject("ADODB.Recordset")
Conn.Open = SQLConnect(intDatabaseType, strServer, strDatabase, strUserID, strPassword)

If Request("query") = "" And Request.QueryString("sortby") = "" And Request.QueryString("order") = "" Then
	strSQL = "SELECT * FROM " & strLeft & strDefaultTable & strRight & " ORDER BY " & strLeft & strDefaultColumn & strRight & " ASC;"
	Session("columns") = " * "
	Session("where") = " "
	Session("table") = strDefaultTable
ElseIf Request.Form("table") <> "" And Request.Form("table") <> "-1" Then
	strSQL = "SELECT * FROM " & strLeft & Request.Form("table") & strRight & ";"
	Session("columns") = " * "
	Session("where") = " "
	Session("table") = Request.Form("table")
Else
	If Request.QueryString("sortby") <> "" Or Request.QueryString("order") <> "" Then
		Dim strSortBy, strOrder

strSortBy = Request.QueryString("sortby")
		strOrder = UCase(Request.QueryString("order"))

If strSortBy = "" Then strSortBy = strDefaultColumn
		If strOrder <> "ASC" Then
			If strOrder <> "DESC" Then strOrder = "ASC"
		End If

strSQL = "SELECT" & Session("columns") & "FROM " & strLeft & Session("table") & strRight & Session("where") & "ORDER BY " & strLeft & strSortBy & strRight & " " & strOrder & ";"
	Else
		strSQL = Request("query")

Dim intColumnPos, intTablePos, strTable, intWherePos
		intColumnPos = InStr(strSQL, "FROM") - 7
		Session("columns") = Mid(strSQL, 7, intColumnPos)

If InStr(strSQL, " WHERE ") > 0 Then
			intTablePos = InStr(strSQL, "FROM") + 5
			strTable = Mid(strSQL, intTablePos)
				intTablePos = InStr(strTable, " ")
				Session("table") = StripDB(Left(strTable, intTablePos), 0)

Dim intTablePos2, intOrderByPos

intTablePos2 = InStr(strSQL, strLeft & Session("table") & strRight) + 7
				strSQL = Mid(strSQL, intTablePos2)
			intOrderByPos = InStr(strSQL, "ORDER BY") - 1

If InStr(strSQL, "ORDER BY") > 0 Then
				Session("where") = Mid(strSQL, 1, intOrderByPos)
			Else
				intWherePos = InStrRev(StripDB(strSQL, 1), " ") + 1
				Session("where") = Mid(StripDB(strSQL, 1), intWherePos)
			End If
		Else
			If InStr(strSQL, "ORDER BY") > 0 Then
				intTablePos = InStr(strSQL, "FROM") + 5
				strTable = Mid(strSQL, intTablePos)
					intTablePos = InStr(strTable, " ")
					Session("table") = StripDB(Left(strTable, intTablePos), 0)
			Else
					intTablePos = InStrRev(StripDB(strSQL, 1), " ") + 1
					Session("table") = Mid(StripDB(strSQL, 1), intTablePos)
			End If

Session("where") = " "
		End If

strSQL = Request("query")
	End If
End If
%><!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en">
	<head>
		<title>Database Explorer</title>
		<meta http-equiv="Content-Type" content="application/xhtml+xml; charset=iso-8859-1" />
		<meta http-equiv="Content-Language" content="en-us">
		<style type="text/css">
			a:link, a:visited, a:active { color: blue; }
			a:hover	{ color: red; }
			div	{ text-align: center; margin-bottom: 10px; }
			table	{ border-collapse: collapse; border: 2px solid #000; }
			td, th	{ border : 1px solid #000; }
			th	{ background: #b0c4de; }
			input	{ width: 50%; }
			h2	{ margin-top: 0; margin-bottom: 0; text-align: center; }
		#logout { position: absolute; left: 3px; top: 3px; width: 10px; }
			.italictext { font-style: italic; }
		</style>
	</head>
	<body>
	<div id="logout">[<a href="<%=strScriptName%>?logout" title="Logout">Logout</a>]</div>
		<h2>Exploring Database <%=strDatabase%></h2>
		<div>
			<form method="post" action="<%=strScriptName%>">
				Query: <input type="text" name="query" value="<%=strSQL%>"> <button type="submit">Submit</button><br />
				- OR -<br />
				SELECT * FROM <select name="table">
					<option class="italictext" selected="selected" value="-1">Select One</option>
<%
	RS.Open Conn.OpenSchema(20)
		While Not RS.EOF
			Response.Write(Tab(5) & "<option value=""" & RS("TABLE_NAME") & """>" & RS("TABLE_NAME") & "</option>" & vbCrLf)
			RS.MoveNext
		Wend
	RS.Close
%>
				</select> <button type="submit">Submit</button>
			</form>
		</div>

<hr />

<table>
			<tr>
<%
RS.Open strSQL, Conn
	For Each x In RS.Fields
		Dim strOrder2, strName
		strName = x.Name
		strOrder2 = "ASC"
			If Request.QueryString("sortby") = strName And Request("order") = "ASC" Then strOrder2 = "DESC"

Response.Write(Tab(4) & "<th><a href=""" & strScriptName & "?sortby=" & strName & "&order=" & strOrder2 & """ title=""Sort by column " & strName & """>" & strName & "</a></th>" & vbCrLf)
	Next

Response.Write(Tab(3) & "</tr>" & vbCrLf)

While Not RS.EOF
		Response.Write(Tab(3) & "<tr>" & vbCrLf)
		For Each x In RS.Fields
			strValue = x.Value
			If strValue = "" Or IsNull(strValue) Then
				If strValue = "" Then
					strValue = "<span class=""italictext"">Empty</span>"
				Else
					strValue = "<span class=""italictext"">Null</span>"
				End If
			Else
				strValue = StripHTML(strValue)
			End If

Response.Write(Tab(4) & "<td>")
			If CInt(Len(strValue)) > 100 Then
				Response.Write(Left(strValue, 97) & "...")
			Else
				Response.Write(strValue)
			End If
			Response.Write("</td>" & vbCrLf)
		Next
		Response.Write(Tab(3) & "</tr>" & vbCrLf)

RS.MoveNext
	Wend
RS.close
%>
		</table>
	</body>
</html>
<%
Set RS = Nothing
Set Conn = Nothing

Function Tab(intTabs)
	Tab = String(intTabs, vbTab)
End Function

Function StripHTML(strValue)
	strValue = Replace(strValue, "<", "<")
	strValue = Replace(strValue, ">", ">")
	StripHTML = strValue
End Function

Function StripDB(strValue, intSemiColon)
	strValue = Replace(strValue, "`", "")
	strValue = Replace(strValue, "[", "")
	strValue = Replace(strValue, "]", "")
	If intSemiColon = 1 Then
		strValue = Replace(strValue, ";", "")
		StripDB = strValue
	Else
		If strValue <> "" Then
			StripDB = Left(strValue, (CInt(Len(strValue)) - 1))
		End If
	End If
End Function

Function SQLConnect(intType, strServer, strDB, strUid, strPwd)
	If intType = 1 Then
		'MySQL Database
		SQLConnect = "DRIVER={MySQL ODBC 3.51 Driver};SERVER=" & strServer & ";DATABASE=" & strDB & ";UID=" & strUid & ";PWD=" & strPwd & ";OPTION=3;"
	ElseIf intType = 2 Then
		'Microsoft Access Database
		SQLConnect = "DRIVER={Microsoft Access Driver (*.mdb)};DBQ=" & strServer & ";UID=" & strUid & ";PWD=" & strPwd & ";"
	Else
		'Microsoft SQL Server Database
		SQLConnect = "DRIVER={SQL Server};SERVER=" & strServer & ";DATABASE=" & strDB & ";UID=" & strUid & ";PWD=" & strPwd & ";"
	End If
End Function

Else
	If Request.Form("username") = "" Or Request.Form("password") = "" Then
		Session.Contents.RemoveAll()
%><!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en">
	<head>
		<title>Database Explorer</title>
		<meta http-equiv="Content-Type" content="application/xhtml+xml; charset=iso-8859-1" />
		<meta http-equiv="Content-Language" content="en-us">
		<style type="text/css">
			body	{ font-family: Verdana, Sans-Serif, Serif; font-size: 10pt; }
			div	{ text-align: center; border: 2px solid #b0c4de; width: 50%; }
			h1	{ background: #b0c4de; color: #fff; margin-top: 0; margin-bottom: 0; font-size: 14pt; }
			td	{ text-align: left; }
			#center	{ text-align: center; }
		</style>
	</head>
	<body>
		<div align="center">
			<h1>Database Explorer Login</h1>
			Please login with your database credentials.<br /><br />
			<form method="post" action="<%=strScriptName%>">
				<table align="center">
					<tr>
						<td>Username:</td>
						<td><input type="text" name="username" /></td>
					</tr>
					<tr>
						<td>Password:</td>
						<td><input type="password" name="password" /></td>
					</tr>
					<tr>
						<td colspan="2" id="center"><button type="submit">Login</button></td>
					</tr>
				</table>
				<% If Request.QueryString() = "error" Then Response.Write("Invalid credentials!") %>
			</form>
		</div>
	</body>
</html><%
	Else
		If Request("username") = strUserID And Request("password") = strPassword Then
			Session("loggedin") = True
			Response.Redirect(strScriptName)
		Else
			Response.Redirect(strScriptName & "error")
		End If
	End If
End If
%>

<%
 
'=================================================  ==============================
' User Settings                                          Coded By: Dan Barnett
'=================================================  ==============================
Const intDatabaseType = 1      '1=MySQL, 2=Access, 3=SQL Server
Const strServer = "localhost"      'Server URL or localhost
Const strDatabase = "DBname"        'Database Name
Const strUserID = "username"        'Database User ID
Const strPassword = "password"    'Database Password
Const strDefaultTable = "users"  'Default table for database explorer
Const strDefaultColumn = "username" 'Default column for database explorer
'-------------------------------------------------------------------------------
 
strScriptName = Request.ServerVariables("Script_Name")
 
If Session("loggedin") = True And Request.QueryString() <> "logout" Then
 
Dim strValue, strSQL, strLeft, strRight, strScriptName, Conn, RS
    If intDatabaseType = 1 Then
        strLeft = "`"
        strRight = "`"
    Else
        strLeft = "["
        strRight = "]"
    End If
 
Set Conn = Server.CreateObject("ADODB.Connection")
Set RS = Server.CreateObject("ADODB.Recordset")
Conn.Open = SQLConnect(intDatabaseType, strServer, strDatabase, strUserID, strPassword)
 
If Request("query") = "" And Request.QueryString("sortby") = "" And Request.QueryString("order") = "" Then
    strSQL = "SELECT * FROM " & strLeft & strDefaultTable & strRight & " ORDER BY " & strLeft & strDefaultColumn & strRight & " ASC;"
    Session("columns") = " * "
    Session("where") = " "
    Session("table") = strDefaultTable
ElseIf Request.Form("table") <> "" And Request.Form("table") <> "-1" Then
    strSQL = "SELECT * FROM " & strLeft & Request.Form("table") & strRight & ";"
    Session("columns") = " * "
    Session("where") = " "
    Session("table") = Request.Form("table")
Else
    If Request.QueryString("sortby") <> "" Or Request.QueryString("order") <> "" Then
        Dim strSortBy, strOrder
 
        strSortBy = Request.QueryString("sortby")
        strOrder = UCase(Request.QueryString("order"))
 
        If strSortBy = "" Then strSortBy = strDefaultColumn
        If strOrder <> "ASC" Then
            If strOrder <> "DESC" Then strOrder = "ASC"
        End If
 
        strSQL = "SELECT" & Session("columns") & "FROM " & strLeft & Session("table") & strRight & Session("where") & "ORDER BY " & strLeft & strSortBy & strRight & " " & strOrder & ";"
    Else
        strSQL = Request("query")
 
        Dim intColumnPos, intTablePos, strTable, intWherePos
        intColumnPos = InStr(strSQL, "FROM") - 7
        Session("columns") = Mid(strSQL, 7, intColumnPos)
 
        If InStr(strSQL, " WHERE ") > 0 Then
            intTablePos = InStr(strSQL, "FROM") + 5
            strTable = Mid(strSQL, intTablePos)
                intTablePos = InStr(strTable, " ")
                Session("table") = StripDB(Left(strTable, intTablePos), 0)
 
            Dim intTablePos2, intOrderByPos
 
            intTablePos2 = InStr(strSQL, strLeft & Session("table") & strRight) + 7
                strSQL = Mid(strSQL, intTablePos2)
            intOrderByPos = InStr(strSQL, "ORDER BY") - 1
 
            If InStr(strSQL, "ORDER BY") > 0 Then
                Session("where") = Mid(strSQL, 1, intOrderByPos)
            Else
                intWherePos = InStrRev(StripDB(strSQL, 1), " ") + 1
                Session("where") = Mid(StripDB(strSQL, 1), intWherePos)
            End If
        Else
            If InStr(strSQL, "ORDER BY") > 0 Then
                intTablePos = InStr(strSQL, "FROM") + 5
                strTable = Mid(strSQL, intTablePos)
                    intTablePos = InStr(strTable, " ")
                    Session("table") = StripDB(Left(strTable, intTablePos), 0)
            Else
                    intTablePos = InStrRev(StripDB(strSQL, 1), " ") + 1
                    Session("table") = Mid(StripDB(strSQL, 1), intTablePos)
            End If
 
            Session("where") = " "
        End If
 
        strSQL = Request("query")
    End If
End If
%><!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en">
    <head>
        <title>Database Explorer</title>
        <meta http-equiv="Content-Type" content="application/xhtml+xml; charset=iso-8859-1" />
        <meta http-equiv="Content-Language" content="en-us">
        <style type="text/css">
            a:link, a:visited, a:active { color: blue; }
            a:hover { color: red; }
            div { text-align: center; margin-bottom: 10px; }
            table   { border-collapse: collapse; border: 2px solid #000; }
            td, th  { border : 1px solid #000; }
            th  { background: #b0c4de; }
            input   { width: 50%; }
            h2  { margin-top: 0; margin-bottom: 0; text-align: center; }
        #logout { position: absolute; left: 3px; top: 3px; width: 10px; }
            .italictext { font-style: italic; }
        </style>
    </head>
    <body>
    <div id="logout">[<a href="<%=strScriptName%>?logout" title="Logout">Logout</a>]</div>
        <h2>Exploring Database <%=strDatabase%></h2>
        <div>
            <form method="post" action="<%=strScriptName%>">
                Query: <input type="text" name="query" value="<%=strSQL%>"> <button type="submit">Submit</button><br />
                - OR -<br />
                SELECT * FROM <select name="table">
                    <option class="italictext" selected="selected" value="-1">Select One</option>
<%
    RS.Open Conn.OpenSchema(20)
        While Not RS.EOF
            Response.Write(Tab(5) & "<option value=""" & RS("TABLE_NAME") & """>" & RS("TABLE_NAME") & "</option>" & vbCrLf)
            RS.MoveNext
        Wend
    RS.Close
%>
                </select> <button type="submit">Submit</button>
            </form>
        </div>
 
        <hr />
 
        <table>
            <tr>
<%
RS.Open strSQL, Conn
    For Each x In RS.Fields
        Dim strOrder2, strName
        strName = x.Name
        strOrder2 = "ASC"
            If Request.QueryString("sortby") = strName And Request("order") = "ASC" Then strOrder2 = "DESC"
 
        Response.Write(Tab(4) & "<th><a href=""" & strScriptName & "?sortby=" & strName & "&order=" & strOrder2 & """ title=""Sort by column " & strName & """>" & strName & "</a></th>" & vbCrLf)
    Next
 
    Response.Write(Tab(3) & "</tr>" & vbCrLf)
 
    While Not RS.EOF
        Response.Write(Tab(3) & "<tr>" & vbCrLf)
        For Each x In RS.Fields
            strValue = x.Value
            If strValue = "" Or IsNull(strValue) Then
                If strValue = "" Then
                    strValue = "<span class=""italictext"">Empty</span>"
                Else
                    strValue = "<span class=""italictext"">Null</span>"
                End If
            Else
                strValue = StripHTML(strValue)
            End If
 
            Response.Write(Tab(4) & "<td>")
            If CInt(Len(strValue)) > 100 Then
                Response.Write(Left(strValue, 97) & "...")
            Else
                Response.Write(strValue)
            End If
            Response.Write("</td>" & vbCrLf)
        Next
        Response.Write(Tab(3) & "</tr>" & vbCrLf)
 
        RS.MoveNext
    Wend
RS.close
%>
        </table>
    </body>
</html>
<%
Set RS = Nothing
Set Conn = Nothing