www.gusucode.com > 化境ASP文件管理系统 1.1源码程序 > login.asp
<%OPTION EXPLICIT%>
<!--#include FILE="include.asp"-->
<html>
<head>
<title>login</title>
<meta http-equiv="Content-Type" content="text/html; charset=gb2312">
<link rel="stylesheet" href="webedit.css" type="text/css">
</head>
<body bgcolor="#FFFFFF" text="#000000">
<script language=javascript>
function add()
{
var str;
str=prompt('添加用户:','')
if(!str)
return;
document.form1.action='login.asp?act=add&uid='+str;
document.form1.submit();
}
function exitit()
{
document.form1.action='login.asp?act=exit';
document.form1.submit();
}
function del(uid)
{
document.form1.action='login.asp?act=del&uid='+uid;
document.form1.submit();
}
</script>
<%
dim gUID,gPWD,cnn,rs,iserror,c
iserror=0
set cnn=CreateObject("ADODB.Connection")
cnn.Open "DRIVER={Microsoft Access Driver (*.mdb)};DBQ="&Server.MapPath("3uwfa83eop48af4ea/fghi4ajv4.mdb")&";User id=getc;password=u826yop;"
if gAct="login" then
procCheck()
elseif gAct="exit" then
procLogin()
htmend "",0,""
elseif gAct="add" then
gUID=getVar("uid","str","new")
set rs=cnn.Execute("select * from user where suid='"&gUID&"'")
if not rs.EOF then
rs.close
cnn.Close
htmend "用户已存在!",1,""
end if
rs.close
set rs=nothing
cnn.Execute "insert into user (suid,spwd,sbase,srun) values('"&gUID&"','"&gUID&"','/','0')"
elseif gAct="edit" then
c=1
while getForm("sid"&c,"str","")<>""
cnn.Execute "update user set spwd='"&getForm("spwd"&c,"str","newer")&"',sbase='"&getForm("sbase"&c,"str","/")&"',srun='"&getForm("srun"&c,"str","0")&"' where sid="&getForm("sid"&c,"str","")
c=c+1
wend
elseif gAct="del" then
gUID=getVar("uid","str","new")
if gUID="master" then htmend "不能删除管理员",1,""
cnn.Execute "delete from user where suid='"&gUID&"'"
end if
procShow
function procCheck()
gUID=GetForm("uid","str","")
gPWD=GetForm("pwd","str","")
if gUID<>"" and gPWD<>"" then
if instr(gUID,"'")>0 or instr(gUID,";")>0 then
iserror=1
exit function
end if
if instr(gPWD,"'")>0 or instr(gPWD,";")>0 then
iserror=1
exit function
end if
set rs=cnn.Execute("select * from user where suid='"&gUID&"' and spwd='"&gPWD&"'")
if rs.EOF then
iserror=1
else
Session("webedituser")=rs("suid")
Session("webeditbase") =rs("sbase")
Session("webeditrun")=rs("srun")
end if
rs.CLOSE
set rs=nothing
if iserror=0 and getForm("submit","str","")="进入" then
cnn.close
set cnn=nothing
htmEnd "",2,"index.asp"
end if
end if
end function
htmEnd "",0,""
function procShow()
if Session("webedituser")<>"master" then
procLogin
else
%>
<form name="form1" method="post" action="login.asp?act=edit">
<table width="70%" border="1" cellspacing="0" cellpadding="0" align="center" bordercolordark="#CCCCCC" bordercolorlight="#000000">
<tr>
<td bgcolor="#E6E6E6" height="28" align="center" valign="middle">帐号管理 [<a href="javascript:add();">添加</a>]</td>
</tr>
<tr>
<td align="center" valign="top">
<table border="1" cellspacing="0" cellpadding="0" width="100%" bordercolordark="#FFFFFF">
<tr>
<td height="25" width="3%"><font size="2">用户名</font></td>
<td height="25"><font size="2">用户密码</font></td>
<td height="25"><font size="2">管理目录</font></td>
<td height="25" colspan="2"><font size="2">能否管理脚本程序</font></td>
</tr>
<%
set rs=cnn.Execute("select * from user order by sid")
c=0
while not rs.EOF
c=c+1
%>
<tr>
<td width="3%" height="25"><font size="2"><%=rs("suid")%>
<input type="hidden" name="sid<%=c%>" value="<%=rs("sid")%>">
</font></td>
<td width="23%" height="25"> <font size="2">
<input type="password" name="spwd<%=c%>" style="width:100" value=<%=rs("spwd")%> class="tx">
</font></td>
<td width="41%" height="25"><font size="2">
<input type="text" name="sbase<%=c%>" style="width:200" value=<%=rs("sbase")%> class="tx">
</font></td>
<td width="18%" height="25"> <font size="2">
<input type="checkbox" name="srun<%=c%>" value="1" <%if rs("srun")="1" then response.write "checked"%>>
</font></td>
<td width="15%" height="25"><a href="javascript:del('<%=rs("suid")%>');"><font size="2">删除</font></a></td>
</tr>
<%
rs.movenext
wend
rs.close
cnn.close
%>
<tr align="center" valign="middle">
<td height="46" colspan="5">
<input type="submit" name="Submit3" value="提交" class="bt">
<input type="button" name="Submit33" value="退出" onclick="exitit();" class="bt">
<input type="reset" name="Submit32" value="清除" class="bt">
</td>
</tr>
</table>
</td>
</tr>
</table>
</form><%
end if
end function
function procLogin()
Session("webedituser")=""
Session("webeditbase")=""
Session("webeditrun")=""
%>
<form name="form1" method="post" action="login.asp?act=login">
<table width="60%" border="1" cellspacing="0" cellpadding="0" align="center" bordercolordark="#CCCCCC" bordercolorlight="#000000">
<tr>
<td bgcolor="#E6E6E6" height="26" align="center" valign="middle">用户登录</td>
</tr>
<tr>
<td height="180" align="center" valign="middle">
<p> 用户:
<input type="text" name="uid" class="tx">
</p>
<p>密码:
<input type="password" name="pwd" class="tx">
<br>
<%if iserror=1 then response.write "<font color=#ff0000>密码错误!</font>"%><br>
<input type="submit" name="submit" value="进入" class="bt">
<input type="submit" name="submit" value="管理帐号" class="bt">
<input type="reset" name="Submit2" value="清除" class="bt">
</p>
</td>
</tr>
</table>
</form>
<%end function%>
</body>
</html>