www.gusucode.com > 中网景企业网站源码时尚版 2009.73码程序 > admin/Admin.asp
<%@LANGUAGE="VBSCRIPT" CODEPAGE="936"%> <!--#include file="opendb.asp" --> <!--#include file="../common/md5.asp" --> <% Call CheckAdmin() Call CnkAdminRight(21) Dim action,AdminID action=Request("action") AdminID=Request("AdminID") %> <html> <head> <title></title> <meta http-equiv="Content-Type" content="text/html; charset=gb2312"> <meta name="Author" content="CNKBBS Powered by websys.cn - Leung"> <link href="admin.css" rel="stylesheet" type="text/css"> <script language="JavaScript" src="inc/cnkgl.js"></script> </head> <body> <% Select Case action Case "saveadd" Call saveadd() Case "savemodi" Call savemodi() Case "saveright" Call saveright() Case "del" Call del() Case "modiChannelRight" Call modiChannelRight() Case "add"%> <div class="cnkbox"> <div class="title">添加后台管理员</div> <div class="content"> <div id="list"> <form name="form1" method="post" action="Admin.asp"> <ul> <li class="t1">后台用户名:</li> <li class="t2"> <input name="AdminName" type="text" class="input" id="AdminName" size="30" maxlength="50"> </li> </ul> <br> <ul> <li class="t1">后台用户密码:</li> <li class="t2"> <input name="AdminPassword" type="text" class="input" id="AdminPassword" size="30" maxlength="50"> </li> </ul> <br> <br> <ul> <li class="t1"></li> <li class="t2"> <input name="action" type="hidden" id="action" value="saveadd"> <input name="Submit" type="submit" class="button" id="Submit" value="添加"> </li> </ul> </form> <br> </div> </div> </div> <% Case "" %> <div class="cnkbox"> <div class="title">管理员管理</div> <div class="content" align="center"> <table width="96%" border="0" cellpadding="3" cellspacing="1" bgcolor="#999999"> <tr> <td width="28%" class="tabletitle">用户名</td> <td width="24%" class="tabletitle">最后登录IP</td> <td width="23%" class="tabletitle">最后登录时间</td> <td width="25%" class="tabletitle">操作</td> </tr> <% rs.open "select * from cnk_Admin",conn,1,3 do while not rs.eof%> <tr bgcolor="#DEEFFE" onMouseOut="mOut(this,'#DEEFFE');" onMouseOver="mOvr(this,'#EBFFBB');" align="center"> <td><a href="?action=modi&AdminID=<% =rs("AdminID")%>"> <% =rs("AdminName")%> </a></td> <td><a href="LimitIP.asp?limitip=<% =rs("LastLoginIP")%>" title="点击限制这个IP地址"> <% =rs("LastLoginIP")%> </a></td> <td><% =rs("LastLoginTime")%></td> <td><label> <a href="?action=setright&AdminID=<% =rs("AdminID")%>&an=<% =rs("AdminName")%>">设置权限</a> | <a href="?action=del&AdminID=<% =rs("AdminID")%>" onClick="return cfdel();">删除</a></label></td> </tr> <%rs.movenext loop rs.close%> </table> </div> </div> <% Case "modi" rs.open "select * from cnk_Admin where AdminID="&AdminID,conn,1,3%> <div class="cnkbox"> <div class="title">修改管理员</div> <div class="content"> <div id="list"> <form name="form2" method="post" action="Admin.asp"> <ul> <li class="t1">后台用户名:</li> <li class="t2"> <input name="AdminName" type="text" class="input" id="AdminName" value="<%= rs("AdminName") %>" size="30" maxlength="50" readonly="yes"> </li> </ul> <br> <ul> <li class="t1">后台用户密码:</li> <li class="t2"> <input name="AdminPassword" type="text" class="input" id="AdminPassword" size="30" maxlength="50"> 要修改请重新输入密码 </li> </ul> <br> <br> <ul> <li class="t1"><input name="action" type="hidden" id="action" value="savemodi"> <input name="AdminID" type="hidden" id="AdminID" value="<%= AdminID %>"> </li> <li class="t2"> <input name="Submit" type="submit" class="button" id="Submit" value="修改"> <input name="Submit" type="button" class="button" id="Submit" value="返回" onClick="history.go(-1);"> </li> </ul> </form> <br> </div> </div> </div> <% Case "setright"%> <div class="cnkbox"> <div class="title">设置管理员<%= Trim(Request.QueryString("an")) %>的后台管理权限</div> <div class="content"> <form name="form4" method="post" action="Admin.asp"> <div class="title1">·系统管理</div> <input name="AdminRight" type="checkbox" id="AdminRight" value="1" <% If GetRight(1)=1 Then Response.Write("checked")%>> 基本设置 <input name="AdminRight" type="checkbox" id="AdminRight" value="2" <% If GetRight(2)=1 Then Response.Write("checked")%>> 栏目管理 <input name="AdminRight" type="checkbox" id="AdminRight" value="3" <% If GetRight(3)=1 Then Response.Write("checked")%>> 公告管理 <input name="AdminRight" type="checkbox" id="AdminRight" value="4" <% If GetRight(4)=1 Then Response.Write("checked")%>> 显示管理 <input name="AdminRight" type="checkbox" id="AdminRight" value="5" <% If GetRight(5)=1 Then Response.Write("checked")%>> 轮换图片 <input name="AdminRight" type="checkbox" id="AdminRight" value="6" <% If GetRight(6)=1 Then Response.Write("checked")%>> 评论管理 <input name="AdminRight" type="checkbox" id="AdminRight" value="7" <% If GetRight(7)=1 Then Response.Write("checked")%>> 首页推荐产品图片 <!--<input name="AdminRight" type="checkbox" id="AdminRight" value="8" <%' If GetRight(8)=1 Then Response.Write("checked")%>> 投票管理--> <input name="AdminRight" type="checkbox" id="AdminRight" value="9" <% If GetRight(9)=1 Then Response.Write("checked")%>> 软件注册 <input name="AdminRight" type="checkbox" id="AdminRight" value="21" <% If GetRight(21)=1 Then Response.Write("checked")%>> 管理员管理 <br /> <br /> <br /> <input name="AdminRight" type="checkbox" id="AdminRight" value="30" <% If GetRight(30)=1 Then Response.Write("checked")%>> 查看所有首页调用 <input name="AdminRight" type="checkbox" id="AdminRight" value="31" <% If GetRight(31)=1 Then Response.Write("checked")%>> 产品显示设置 <input name="AdminRight" type="checkbox" id="AdminRight" value="32" <% If GetRight(32)=1 Then Response.Write("checked")%>> 送货方式管理 <input name="AdminRight" type="checkbox" id="AdminRight" value="33" <% If GetRight(33)=1 Then Response.Write("checked")%>> 付款方式管理 <br /> <br /> <br /> <div class="title1">·用户相关管理</div> <input name="AdminRight" type="checkbox" id="AdminRight" value="20" <% If GetRight(20)=1 Then Response.Write("checked")%>> 注册用户管理 <input name="AdminRight" type="checkbox" id="AdminRight" value="22" <% If GetRight(22)=1 Then Response.Write("checked")%>> 订单管理 <input name="AdminRight" type="checkbox" id="AdminRight" value="23" <% If GetRight(23)=1 Then Response.Write("checked")%>> 用户个人留言 <br /> <br /> <!--div class="title1">·界面风格管理</div> <input name="AdminRight" type="checkbox" id="AdminRight" value="50" <% 'If GetRight(50)=1 Then Response.Write("checked")%>> 添加模板 <input name="AdminRight" type="checkbox" id="AdminRight" value="51" <% 'If GetRight(51)=1 Then Response.Write("checked")%>> 管理模板 <br /> <br /--> <div align="center">全选: <input type="checkbox" name="checkbox" value="Check All" onClick="mm()"> <input name="action" type="hidden" id="action" value="saveright"> <input name="AdminID" type="hidden" id="AdminID" value="<%= AdminID %>"> <input name="Submit2" type="submit" class="button" value="提交"> <input name="Submit3" type="button" class="button" id="Submit2" value="返回" onClick="history.go(-1);"> </div> </form> </div> </div> <div class="cnkbox"> <div class="title">设置管理员栏目管理权限</div> <div class="content"> <table width="90%" border="0" cellpadding="3" cellspacing="1" bgcolor="#666666" align="center"> <tr> <td width="19%" class="tabletitle">栏目</td> <td width="25%" class="tabletitle">可添加栏目内容</td> <td width="21%" class="tabletitle">可修改栏目内容</td> <td width="23%" class="tabletitle">可删除栏目内容</td> <td width="12%" class="tabletitle">操作</td> </tr> <% Dim rs1,ischk Set rs1=Server.Createobject("ADODB.Recordset") sql="select ChannelID,ChannelName from cnk_Channel where ChannelType=0 and ModuleType<>100 and isStop=0 order by paixu" rs.open sql,conn,1,3 do while not rs.eof %> <form name="form<%= rs("ChannelID") %>" method="post" action="Admin.asp"> <tr> <td class="tablebody"><%= rs("ChannelName")%></td> <td class="tablebody"> <% rs1.open "select AdminName from cnk_Admin",conn,1,1 do while not rs1.eof if isAdminRight("AddAdmin",rs("ChannelID"),rs1("AdminName"))=1 then ischk="checked" Response.Write("<input name=""AddAdmin"" type=""checkbox"" id=""AddAdmin"" value="""&rs1("AdminName")&""" "&ischk&">"&vbcrlf) Response.Write(rs1("AdminName")&vbcrlf) ischk="" rs1.movenext loop rs1.close%> </td> <td class="tablebody"> <% rs1.open "select AdminName from cnk_Admin",conn,1,1 do while not rs1.eof if isAdminRight("ModiAdmin",rs("ChannelID"),rs1("AdminName"))=1 then ischk="checked" Response.Write("<input name=""ModiAdmin"" type=""checkbox"" id=""ModiAdmin"" value="""&rs1("AdminName")&""" "&ischk&">"&vbcrlf) Response.Write(rs1("AdminName")&vbcrlf) ischk="" rs1.movenext loop rs1.close%> </td> <td class="tablebody"> <% rs1.open "select AdminName from cnk_Admin",conn,1,1 do while not rs1.eof if isAdminRight("DelAdmin",rs("ChannelID"),rs1("AdminName"))=1 then ischk="checked" Response.Write("<input name=""DelAdmin"" type=""checkbox"" id=""DelAdmin"" value="""&rs1("AdminName")&""" "&ischk&">"&vbcrlf) Response.Write(rs1("AdminName")&vbcrlf) ischk="" rs1.movenext loop rs1.close%> </td> <td class="tablebody"><input name="ChannelID" type="hidden" id="ChannelID" value="<%= rs("ChannelID") %>"> <input name="Submit" type="submit" class="button"value="更新"> <input name="action" type="hidden" id="action" value="modiChannelRight"> </td> </tr> </form> <% rs.movenext loop set rs=nothing %> </table> </div> </div> <% End Select Call foot() Call Closedb()%> </body> </html> <% Sub saveadd() conn.execute("insert into cnk_Admin (AdminName,AdminPassword,LastLoginTime,LastLoginIP,adduser) values ('"&Trim(Request.Form("AdminName"))&"','"&md5(Trim(Request.Form("AdminPassword")))&"','"&now()&"','"&GetRealIP()&"','"&session("admin")&"')") Call alertmsg_url("添加成功","Admin.asp") End Sub Sub savemodi() conn.execute("update cnk_Admin set AdminName='"&Trim(Request.Form("AdminName"))&"',AdminPassword='"&md5(Trim(Request.Form("AdminPassword")))&"' where AdminID="&AdminID) Call alertmsg_url("修改成功","Admin.asp") End Sub Sub saveright() conn.execute("update cnk_Admin set WebAdminRight='"&Trim(Request.Form("AdminRight"))&"' where AdminID="&AdminID) Call alertmsg_url("设置权限成功","Admin.asp") End Sub Sub del() conn.execute("delete from cnk_Admin where AdminID="&AdminID) Call alertmsg_url("删除成功","Admin.asp") End Sub Sub modiChannelRight() conn.execute("update Cnk_Channel set AddAdmin='"&Trim(Request.Form("AddAdmin"))&"',ModiAdmin='"&Trim(Request.Form("ModiAdmin"))&"',DelAdmin='"&Trim(Request.Form("DelAdmin"))&"' where ChannelID="&ChannelID) Call alertmsg_url("修改成功","Admin.asp") End Sub Function GetRight(n) Dim qx,theitem,rlist,qxlist set qx=conn.execute("select WebAdminRight from [cnk_Admin] where AdminID="&AdminID) rlist=qx(0) if isnull(rlist) or rlist="" then GetRight=0 else qxlist=Split(rlist, ",") for each theitem in qxlist if cint(theitem)=cint(n) then GetRight=1 exit for end if next end if set qx=nothing End Function %>