www.gusucode.com > 化境ASP文件管理系统 1.1源码程序 > login.asp
<%OPTION EXPLICIT%> <!--#include FILE="include.asp"--> <html> <head> <title>login</title> <meta http-equiv="Content-Type" content="text/html; charset=gb2312"> <link rel="stylesheet" href="webedit.css" type="text/css"> </head> <body bgcolor="#FFFFFF" text="#000000"> <script language=javascript> function add() { var str; str=prompt('添加用户:','') if(!str) return; document.form1.action='login.asp?act=add&uid='+str; document.form1.submit(); } function exitit() { document.form1.action='login.asp?act=exit'; document.form1.submit(); } function del(uid) { document.form1.action='login.asp?act=del&uid='+uid; document.form1.submit(); } </script> <% dim gUID,gPWD,cnn,rs,iserror,c iserror=0 set cnn=CreateObject("ADODB.Connection") cnn.Open "DRIVER={Microsoft Access Driver (*.mdb)};DBQ="&Server.MapPath("3uwfa83eop48af4ea/fghi4ajv4.mdb")&";User id=getc;password=u826yop;" if gAct="login" then procCheck() elseif gAct="exit" then procLogin() htmend "",0,"" elseif gAct="add" then gUID=getVar("uid","str","new") set rs=cnn.Execute("select * from user where suid='"&gUID&"'") if not rs.EOF then rs.close cnn.Close htmend "用户已存在!",1,"" end if rs.close set rs=nothing cnn.Execute "insert into user (suid,spwd,sbase,srun) values('"&gUID&"','"&gUID&"','/','0')" elseif gAct="edit" then c=1 while getForm("sid"&c,"str","")<>"" cnn.Execute "update user set spwd='"&getForm("spwd"&c,"str","newer")&"',sbase='"&getForm("sbase"&c,"str","/")&"',srun='"&getForm("srun"&c,"str","0")&"' where sid="&getForm("sid"&c,"str","") c=c+1 wend elseif gAct="del" then gUID=getVar("uid","str","new") if gUID="master" then htmend "不能删除管理员",1,"" cnn.Execute "delete from user where suid='"&gUID&"'" end if procShow function procCheck() gUID=GetForm("uid","str","") gPWD=GetForm("pwd","str","") if gUID<>"" and gPWD<>"" then if instr(gUID,"'")>0 or instr(gUID,";")>0 then iserror=1 exit function end if if instr(gPWD,"'")>0 or instr(gPWD,";")>0 then iserror=1 exit function end if set rs=cnn.Execute("select * from user where suid='"&gUID&"' and spwd='"&gPWD&"'") if rs.EOF then iserror=1 else Session("webedituser")=rs("suid") Session("webeditbase") =rs("sbase") Session("webeditrun")=rs("srun") end if rs.CLOSE set rs=nothing if iserror=0 and getForm("submit","str","")="进入" then cnn.close set cnn=nothing htmEnd "",2,"index.asp" end if end if end function htmEnd "",0,"" function procShow() if Session("webedituser")<>"master" then procLogin else %> <form name="form1" method="post" action="login.asp?act=edit"> <table width="70%" border="1" cellspacing="0" cellpadding="0" align="center" bordercolordark="#CCCCCC" bordercolorlight="#000000"> <tr> <td bgcolor="#E6E6E6" height="28" align="center" valign="middle">帐号管理 [<a href="javascript:add();">添加</a>]</td> </tr> <tr> <td align="center" valign="top"> <table border="1" cellspacing="0" cellpadding="0" width="100%" bordercolordark="#FFFFFF"> <tr> <td height="25" width="3%"><font size="2">用户名</font></td> <td height="25"><font size="2">用户密码</font></td> <td height="25"><font size="2">管理目录</font></td> <td height="25" colspan="2"><font size="2">能否管理脚本程序</font></td> </tr> <% set rs=cnn.Execute("select * from user order by sid") c=0 while not rs.EOF c=c+1 %> <tr> <td width="3%" height="25"><font size="2"><%=rs("suid")%> <input type="hidden" name="sid<%=c%>" value="<%=rs("sid")%>"> </font></td> <td width="23%" height="25"> <font size="2"> <input type="password" name="spwd<%=c%>" style="width:100" value=<%=rs("spwd")%> class="tx"> </font></td> <td width="41%" height="25"><font size="2"> <input type="text" name="sbase<%=c%>" style="width:200" value=<%=rs("sbase")%> class="tx"> </font></td> <td width="18%" height="25"> <font size="2"> <input type="checkbox" name="srun<%=c%>" value="1" <%if rs("srun")="1" then response.write "checked"%>> </font></td> <td width="15%" height="25"><a href="javascript:del('<%=rs("suid")%>');"><font size="2">删除</font></a></td> </tr> <% rs.movenext wend rs.close cnn.close %> <tr align="center" valign="middle"> <td height="46" colspan="5"> <input type="submit" name="Submit3" value="提交" class="bt"> <input type="button" name="Submit33" value="退出" onclick="exitit();" class="bt"> <input type="reset" name="Submit32" value="清除" class="bt"> </td> </tr> </table> </td> </tr> </table> </form><% end if end function function procLogin() Session("webedituser")="" Session("webeditbase")="" Session("webeditrun")="" %> <form name="form1" method="post" action="login.asp?act=login"> <table width="60%" border="1" cellspacing="0" cellpadding="0" align="center" bordercolordark="#CCCCCC" bordercolorlight="#000000"> <tr> <td bgcolor="#E6E6E6" height="26" align="center" valign="middle">用户登录</td> </tr> <tr> <td height="180" align="center" valign="middle"> <p> 用户: <input type="text" name="uid" class="tx"> </p> <p>密码: <input type="password" name="pwd" class="tx"> <br> <%if iserror=1 then response.write "<font color=#ff0000>密码错误!</font>"%><br> <input type="submit" name="submit" value="进入" class="bt"> <input type="submit" name="submit" value="管理帐号" class="bt"> <input type="reset" name="Submit2" value="清除" class="bt"> </p> </td> </tr> </table> </form> <%end function%> </body> </html>