www.gusucode.com > 全球营销软件站整站源码4月最新数据 4.0源码程序 > 801wyxqf\adminadmin\users\admin_user.asp
<!--#include file="../../conn.asp"-->
<!--#include file="../inc/setup.asp"-->
<!--#include file="../inc/const.asp"-->
<!--#include file="../inc/check.asp"-->
<!--#include file="../../inc/chkinput.asp"-->
<!--#include file="../../inc/md5.asp"-->
<!--#include file="../../api/cls_api.asp"-->
<%
Admin_header
'=====================================================================
' 软件名称:801w软件代理系统
' 当前版本:801wAsp 801w cn 801w com
' 文件名称:admin_main.asp
' 更新日期:2010-2-16
' 官方网站:801w代理系统(www.801w.cn www.801w.com) QQ:274667447
'=====================================================================
' Copyright 2003-2010 801w.cn - All Rights Reserved.
' 801wasp is a trademark of 801w.cn
'=====================================================================
%>
<table class="table1" cellspacing="1" cellpadding="3" align="center" border="0">
<tr>
<td class="tableline linetitle" width="100" align="left">用户管理</td>
<td class="tableline" width="*" align="right"><a href="admin_index.asp">管理首页</a>
- <a href="admin_list.asp">用户列表</a>
- <a href="admin_user.asp?action=add">添加会员</a>
- <a href="admin_list.asp?showmode=1">等待验证的会员</a>
- <a href="admin_list.asp?UserGrade=999">管理员</a>
- <a href="admin_list.asp?UserGrade=1">普通会员</a>
- <a href="admin_list.asp?UserGrade=2">高级会员</a>
- <a href="admin_list.asp?UserGrade=3">VIP会员</a>
- <a href="admin_password.asp">修改密码</a>
</td>
</tr>
</table>
<%
Dim Action,m_strUserGroup
If Not ChkAdmin("AddUser") Then
Call Transfer_error()
End If
Action=LCase(Request("action"))
Select Case Trim(Action)
Case "edit"
Call editUsers()
Case "savedit"
Call savedit()
Case "savenew"
Call savenew()
Case Else
Call showmain()
End Select
If FoundErr=True Then
ReturnError(ErrMsg)
End If
Admin_footer
SaveLogInfo(AdminName)
NewAsp.PageEnd
Sub showmain()
Dim RsObj
%>
<table class="tableborder" cellspacing="1" cellpadding="3" align="center" border="0">
<tr>
<th colspan="2">添加会员</th>
</tr>
<form name="myform" method="post" action="?action=savenew">
<tr>
<td class="tablerow1" align="right" width="30%"><b>登陆名称:</b></td>
<td class="tablerow1" width="70%"><input name="username" type="text" /></td>
</tr>
<tr>
<td class="tablerow2" align="right"><b>用户密码:</b></td>
<td class="tablerow2"><input type="password" name="password1" /></td>
</tr>
<tr>
<td class="tablerow1" align="right"><b>确认密码:</b></td>
<td class="tablerow1"><input type="password" name="password2" /></td>
</tr>
<tr>
<td class="tablerow2" align="right"><b>用户昵称:</b></td>
<td class="tablerow2"><input name="nickname" type="text" /></td>
</tr>
<tr>
<td class="tablerow1" align="right"><b>用户邮箱:</b></td>
<td class="tablerow1"><input size="30" name="usermail" value="<%=NewAsp.MainSetting(3)%>" type="text" /></td>
</tr>
<tr>
<td class="tablerow2" align="right"><b>用户姓别:</b></td>
<td class="tablerow2"><select name="UserSex">
<option value="男" selected="selected">帅哥</option>
<option value="女">美女</option>
</select></td>
</tr>
<tr>
<td class="tablerow1" align="right"><b>所属用户组:</b></td>
<td class="tablerow1"><select name="UserGrade">
<%
Set RsObj = NewAsp.Execute("SELECT GroupName,Grades FROM NC_UserGroup WHERE Grades<>0 ORDER BY Groupid")
Do While Not RsObj.EOF
Response.Write Chr(9) & Chr(9) & "<option value=""" & RsObj("Grades") & "," & RsObj("GroupName") & """"
If RsObj("Grades") = 1 Then Response.Write " selected"
Response.Write ">"
Response.Write RsObj("GroupName")
Response.Write "</option>" & vbCrLf
RsObj.movenext
Loop
Set RsObj = Nothing
%>
</select></td>
</tr>
<tr>
<td class="tablerow2" align="right"><b>用户点数:</b></td>
<td class="tablerow2"><input size="10" name="userpoint" value="50" type="text" /></td>
</tr>
<tr align="center">
<td class="tablerow1" colspan="2"><input class="button" type="button" onclick="javascript:history.go(-1)" name="go_button" value="返回上一页" />
<input class="button" type="submit" name="submit_button" value="添加用户" /></td>
</tr>
</form>
</table>
<%
End Sub
Sub editUsers()
Dim Rs,SQL,RsObj
Dim userid,username
userid = NewAsp.ChkNumeric(Request("userid"))
username = Replace(Request("username"), "'", "")
If userid = 0 Then
SQL = "SELECT * FROM NC_user WHERE username='" & username & "'"
Else
SQL = "SELECT * FROM NC_user WHERE userid=" & userid
End If
Set Rs = NewAsp.Execute(SQL)
If Rs.BOF And Rs.EOF Then
FoundErr = True
ErrMsg = ErrMsg + "<li>Sorry!没有找到任何会员。或者您选择了错误的系统参数!</li>"
Exit Sub
End If
%>
<form action="?action=savedit" method="post" name="myform">
<table class="tableborder" cellspacing="1" cellpadding="3" align="center" border="0">
<tr>
<th colspan="4">查看/修改会员资料</th>
</tr>
<tr>
<td class="tablerow1" width="10%">会员名称<input type="hidden" name="userid" value="<%=Rs("userid")%>" /></td>
<td class="tablerow1" width="40%"><input disabled="disabled" name="username" value="<%=NewAsp.HTMLEncodes(Rs("username"))%>" type="text" /></td>
<td class="tablerow1" width="10%">真实姓名</td>
<td class="tablerow1" width="40%"><input name="TrueName" value="<%=NewAsp.HTMLEncodes(Rs("TrueName"))%>" type="text" /></td>
</tr>
<tr>
<td class="tablerow2">用户密码</td>
<td class="tablerow2"><input type="password" name="password" /> <font color="#0000ff">如果不修改密码请留空</font></td>
<td class="tablerow2">用户邮箱</td>
<td class="tablerow2"><input size="30" name="usermail" value="<%=NewAsp.HTMLEncodes(Rs("usermail"))%>" type="text" /></td>
</tr>
<tr>
<td class="tablerow1">交易密码</td>
<td class="tablerow1"><input name="BuyCode" type="text" /> <font color="#0000ff">如果不修改密码请留空</font></td>
<td class="tablerow1">用户状态</td>
<td class="tablerow1"><input type="radio" name="UserLock" value="0"<%If Rs("UserLock") = 0 Then Response.Write " checked=""checked"""%> /> 激活
<input type="radio" name="UserLock" value="1"<%If Rs("UserLock") = 1 Then Response.Write " checked=""checked"""%> /> 锁定 </td>
</tr>
<tr>
<td class="tablerow2">用户等级</td>
<td class="tablerow2"><select name="UserGrade">
<%
Set RsObj = NewAsp.Execute("SELECT GroupName,Grades FROM NC_UserGroup WHERE Grades <> 0 ORDER BY Groupid")
Do While Not RsObj.EOF
Response.Write Chr(9) & Chr(9) & " <option value=""" & RsObj("Grades") & "," & RsObj("GroupName") & """"
If RsObj("Grades") = Rs("UserGrade") Then Response.Write " selected=""selected"""
Response.Write ">"
Response.Write RsObj("GroupName")
Response.Write "</option>" & vbCrLf
RsObj.movenext
Loop
Set RsObj = Nothing
%> </select></td>
<td class="tablerow2">会员类型</td>
<td class="tablerow2"><select name="UserClass">
<option value="0"<%If Rs("UserClass") = 0 Then Response.Write " selected=""selected"""%>>计点会员</option>
<option value="1"<%If Rs("UserClass") = 1 Then Response.Write " selected=""selected"""%>>计时会员</option>
<option value="999"<%If Rs("UserClass") = 999 Then Response.Write " selected=""selected"""%>>到期会员</option>
</select></td>
</tr>
<tr>
<td class="tablerow1">用户点数</td>
<td class="tablerow1"><input size="10" name="userpoint" value="<%=Rs("userpoint")%>" type="text" /></td>
<td class="tablerow1">账户余额</td>
<td class="tablerow1"><input size="10" name="usermoney" value="<%=Rs("usermoney")%>" type="text" /> 元</td>
</tr>
<tr>
<td class="tablerow2" nowrap="nowrap">用户经验值</td>
<td class="tablerow2"><input size="10" name="experience" value="<%=Rs("experience")%>" type="text" /></td>
<td class="tablerow2" nowrap="nowrap">用户魅力值</td>
<td class="tablerow2"><input size="10" name="charm" value="<%=Rs("charm")%>" type="text" /></td>
</tr>
<tr>
<td class="tablerow1">身分证号码</td>
<td class="tablerow1"><input size="35" name="UserIDCard" value="<%=NewAsp.HTMLEncodes(Rs("UserIDCard"))%>" type="text" /></td>
<td class="tablerow1">姓别</td>
<td class="tablerow1"><select name="UserSex">
<option value="男"<%If Rs("UserSex") = "男" Then Response.Write " selected=""selected"""%>>帅哥</option>
<option value="女"<%If Rs("UserSex") = "女" Then Response.Write " selected=""selected"""%>>美女</option>
</select></td>
</tr>
<tr>
<td class="tablerow2">用户电话</td>
<td class="tablerow2"><input name="phone" value="<%=NewAsp.HTMLEncodes(Rs("phone"))%>" type="text" /></td>
<td class="tablerow2">用户QQ</td>
<td class="tablerow2"><input name="oicq" value="<%=NewAsp.HTMLEncodes(Rs("oicq"))%>" type="text" /></td>
</tr>
<tr>
<td class="tablerow1">邮政编码</td>
<td class="tablerow1"><input name="postcode" value="<%=NewAsp.HTMLEncodes(Rs("postcode"))%>" type="text" /></td>
<td class="tablerow1">联系地址</td>
<td class="tablerow1"><input size="45" name="address" value="<%=NewAsp.HTMLEncodes(Rs("address"))%>" type="text" /></td>
</tr>
<tr>
<td class="tablerow2">密码问题</td>
<td class="tablerow2"><input name="question" value="<%=NewAsp.HTMLEncodes(Rs("question"))%>" type="text" /></td>
<td class="tablerow2">密码答案</td>
<td class="tablerow2"><input name="answer" type="text" /> <font color="#0000ff">如果不修改答案请留空</font></td>
</tr>
<tr>
<td class="tablerow1" nowrap="nowrap">最后登陆时间</td>
<td class="tablerow1"><input size="30" name="LastTime" value="<%=Rs("LastTime")%>" type="text" /></td>
<td class="tablerow1">最后登陆IP</td>
<td class="tablerow1"><input size="30" name="userlastip" value="<%=Rs("userlastip")%>" type="text" /></td>
</tr>
<tr>
<td class="tablerow2">非法记录数</td>
<td class="tablerow2"><input size="10" name="Badness" value="<%=Rs("Badness")%>" type="text" /></td>
<td class="tablerow2">注册IP</td>
<td class="tablerow2"><input size="30" name="ip" value="<%=Rs("ip")%>" type="text" /></td>
</tr>
<tr>
<td class="tablerow1">注册时间</td>
<td class="tablerow1"><input size="30" name="JoinTime" value="<%=Rs("JoinTime")%>" type="text" /></td>
<td class="tablerow1">到期时间</td>
<td class="tablerow1"><input size="30" name="ExpireTime" value="<%=Rs("ExpireTime")%>" type="text" /></td>
</tr>
<tr>
<td class="tablerow2">用户图像</td>
<td class="tablerow2"><input size="30" name="UserFace" value="<%=NewAsp.HTMLEncodes(Rs("UserFace"))%>" type="text" /></td>
<td class="tablerow2">登陆次数</td>
<td class="tablerow2"><input size="10" name="userlogin" value="<%=Rs("userlogin")%>" type="text" /></td>
</tr>
<tr>
<td class="tablerow1">密码保护</td>
<td class="tablerow1"><input type="radio" name="Protect" value="0"<%If Rs("Protect") = 0 Then Response.Write " checked=""checked"""%> /> 未申请
<input type="radio" name="Protect" value="1"<%If Rs("Protect") = 1 Then Response.Write " checked=""checked"""%> /> 已申请 </td>
<td class="tablerow1">用户昵称</td>
<td class="tablerow1"><input name="nickname" value="<%=NewAsp.HTMLEncodes(Rs("nickname"))%>" type="text" /></td>
</tr>
<tr align="center">
<td class="tablerow2" colspan="4"><input class="button" type="button" onclick="javascript:history.go(-1)" name="go_button" value="返回上一页" /> <input class="button" type="submit" name="submit_button" value="确认修改" /></td>
</tr>
</table>
</form>
<%
Set Rs = Nothing
End Sub
Sub savenew()
Call checkSave()
Dim Rs,SQL
Dim Password,Question,Answer,UserPassWord
Dim usersex,sex,username
If Trim(Request.Form("username")) = "" Then
FoundErr = True
ErrMsg = ErrMsg + "<li>用户名不能为空!</li>"
End If
If NewAsp.IsValidStr(Request("username")) = False Then
ErrMsg = ErrMsg + "<li>用户名中含有非法字符。</li>"
Founderr = True
Else
username = NewAsp.CheckBadstr(Request("username"))
End If
If Trim(Request.Form("password1")) = "" Then
FoundErr = True
ErrMsg = ErrMsg + "<li>用户密码不能为空!</li>"
End If
If Trim(Request.Form("password2")) = "" Then
FoundErr = True
ErrMsg = ErrMsg + "<li>确认密码不能为空!</li>"
End If
If Request.Form("password1") <> Request.Form("password2") Then
ErrMsg = ErrMsg + "<li>您输入的密码和确认密码不一致。</li>"
FoundErr = True
Else
Password = Trim(Request.Form("password2"))
UserPassWord = md5(Password,16)
End If
If Trim(Request.Form("usersex")) = "" Then
ErrMsg = ErrMsg + "<li>您的姓别不能为空!</li>"
Founderr = True
Else
usersex = NewAsp.CheckBadstr(Request.Form("usersex"))
End If
If usersex = "女" Then
sex = 0
Else
sex = 1
End If
Set Rs = NewAsp.Execute("SELECT username FROM NC_User WHERE username = '" & username & "'")
If Not (Rs.BOF And Rs.EOF) Then
FoundErr = True
ErrMsg = ErrMsg + "<li>Sorry!此用户已经存在,请换一个用户名再试!</li>"
Exit Sub
End If
Rs.Close:Set Rs = Nothing
Set Rs = NewAsp.Execute("SELECT username FROM NC_Admin WHERE username='" & UserName & "'")
If Not (Rs.BOF And Rs.EOF) Then
FoundErr = True
ErrMsg = ErrMsg + "<li>Sorry!此用户已经存在,请换一个用户名再试!</li>"
Exit Sub
End If
Rs.Close:Set Rs = Nothing
If Founderr = True Then Exit Sub
Question = Trim(Request.Form("question"))
Answer = Trim(Request.Form("answer"))
If Question = "" Then Question = NewAsp.GetRandomCode(16)
If Answer = "" Then Answer = NewAsp.GetRandomCode(16)
'-----------------------------------------------------------------
'系统整合
'-----------------------------------------------------------------
Dim API_NewAsp,API_SaveCookie,SysKey
If API_Enable Then
Set API_NewAsp = new API_Conformity
API_NewAsp.NodeValue "action","reguser",0,False
API_NewAsp.NodeValue "username",UserName,1,False
Md5OLD = 1
SysKey = Md5(API_NewAsp.XmlNode("username") & API_ConformKey,16)
Md5OLD = 0
API_NewAsp.NodeValue "syskey",SysKey,0,False
API_NewAsp.NodeValue "password",Password,0,False
API_NewAsp.NodeValue "email",NewAsp.CheckStr(Request.Form("usermail")),1,False
API_NewAsp.NodeValue "question",Question,1,False
API_NewAsp.NodeValue "answer",Answer,1,False
API_NewAsp.NodeValue "gender",sex,0,False
API_NewAsp.SendHttpData
If API_NewAsp.Status = "1" Then
Founderr = True
ErrMsg = ErrMsg & API_NewAsp.Message
Exit Sub
End If
Set API_NewAsp = Nothing
End If
'-----------------------------------------------------------------
If Founderr = True Then Exit Sub
Set Rs=NewAsp.CreateAXObject("ADODB.Recordset")
SQL = "SELECT * FROM NC_User WHERE (userid is null)"
Rs.Open SQL,Conn,1,3
Rs.Addnew
Rs("username") = username
Rs("password") = UserPassWord
Rs("nickname") = Trim(Request.Form("nickname"))
Rs("UserGrade") = NewAsp.ChkNumeric(m_strUserGroup(0))
Rs("UserGroup") = Trim(m_strUserGroup(1))
Rs("UserClass") = 0
Rs("UserLock") = 0
Rs("UserFace") = "face/1.gif"
Rs("userpoint") = Trim(Request.Form("userpoint"))
Rs("usermoney") = 0
Rs("savemoney") = 0
Rs("prepaid") = 0
Rs("experience") = 10
Rs("charm") = 10
Rs("TrueName") = Trim(Request.Form("username"))
Rs("usersex") = NewAsp.CheckStr(Request.Form("usersex"))
Rs("usermail") = NewAsp.CheckStr(Request.Form("usermail"))
Rs("oicq") = ""
Rs("question") = Question
Rs("answer") = md5(Answer,16)
Rs("JoinTime") = Now()
Rs("ExpireTime") = Now()
Rs("LastTime") = Now()
Rs("Protect") = 0
Rs("usermsg") = 0
Rs("userlastip") = ""
Rs("userlogin") = 0
Rs("UserToday") = "0,0,0,0,0,0,0,0,0,0,0"
Rs("usersetting") = ",,,,,,,,,,,,,,,,,,,,,,,,,,,,,,"
Rs("ip") = NewAsp.UserTrueIP
Rs("Badness") = 0
Rs("isask") = 0
Rs.update
Rs.Close:Set Rs = Nothing
Succeed("<li>恭喜您!添加会员[<font color=""blue"">" & Request("username") & "</font>]成功。</li>")
End Sub
Sub savedit()
Call checkSave()
Dim Rs,SQL
Dim sex,username
If Trim(Request.Form("usersex")) = "女" Then
sex = 0
Else
sex = 1
End If
If Not IsDate(Request.Form("JoinTime")) Then
FoundErr = True
ErrMsg = ErrMsg + "<li>注册时间参数错误!</li>"
End If
If Founderr = True Then Exit Sub
Set Rs=NewAsp.CreateAXObject("ADODB.Recordset")
SQL = "SELECT * FROM NC_User WHERE userid=" & CLng(Request("userid"))
Rs.Open SQL,Conn,1,3
'Rs("username") = Trim(Request.Form("username"))
Rs("nickname") = Trim(Request.Form("nickname"))
If Trim(Request.Form("password")) <> "" Then Rs("password") = md5(Request.Form("password"),16)
If Trim(Request.Form("BuyCode")) <> "" Then Rs("BuyCode") = md5(Request.Form("BuyCode"),16)
Rs("UserGrade") = NewAsp.ChkNumeric(m_strUserGroup(0))
Rs("UserGroup") = Trim(m_strUserGroup(1))
Rs("UserClass") = Trim(Request.Form("UserClass"))
Rs("UserLock") = Trim(Request.Form("UserLock"))
Rs("UserFace") = Trim(Request.Form("UserFace"))
Rs("userpoint") = Trim(Request.Form("userpoint"))
Rs("usermoney") = Trim(Request.Form("usermoney"))
Rs("experience") = Trim(Request.Form("experience"))
Rs("charm") = Trim(Request.Form("charm"))
Rs("TrueName") = Trim(Request.Form("TrueName"))
Rs("UserIDCard") = Trim(Request.Form("UserIDCard"))
Rs("usersex") = Trim(Request.Form("usersex"))
Rs("usermail") = Trim(Request.Form("usermail"))
Rs("phone") = Trim(Request.Form("phone"))
Rs("oicq") = Trim(Request.Form("oicq"))
Rs("postcode") = Trim(Request.Form("postcode"))
Rs("address") = Trim(Request.Form("address"))
Rs("question") = Trim(Request.Form("question"))
If Trim(Request.Form("answer")) <> "" Then Rs("answer") = md5(Request.Form("answer"),16)
Rs("Protect") = Trim(Request.Form("Protect"))
Rs("JoinTime") = Trim(Request.Form("JoinTime"))
Rs("ExpireTime") = Trim(Request.Form("ExpireTime"))
Rs("LastTime") = Trim(Request.Form("LastTime"))
Rs("userlastip") = Trim(Request.Form("userlastip"))
Rs("userlogin") = Trim(Request.Form("userlogin"))
Rs("ip") = Trim(Request.Form("ip"))
Rs("Badness") = NewAsp.ChkNumeric(Request.Form("Badness"))
Rs.update
username = Rs("username")
Rs.Close:Set Rs = Nothing
If Founderr = False Then
'-----------------------------------------------------------------
'系统整合
'-----------------------------------------------------------------
Dim API_NewAsp,API_SaveCookie,SysKey
If API_Enable Then
Set API_NewAsp = New API_Conformity
API_NewAsp.NodeValue "action","update",0,False
API_NewAsp.NodeValue "username",UserName,1,False
Md5OLD = 1
SysKey = Md5(API_NewAsp.XmlNode("username") & API_ConformKey,16)
Md5OLD = 0
API_NewAsp.NodeValue "syskey",SysKey,0,False
API_NewAsp.NodeValue "password",Trim(Request.form("password")),1,False
API_NewAsp.NodeValue "answer",Trim(Request.Form("answer")),1,False
API_NewAsp.NodeValue "question",Trim(Request.Form("question")),1,False
API_NewAsp.NodeValue "email",Trim(Request.Form("usermail")),1,False
API_NewAsp.NodeValue "gender",sex,0,False
API_NewAsp.SendHttpData
If API_NewAsp.Status = "1" Then
ErrMsg = API_NewAsp.Message
End If
Set API_NewAsp = Nothing
End If
'-----------------------------------------------------------------
End If
Succeed("<li>恭喜您!修改会员[<font color=""blue"">" & username & "</font>]的资料成功。</li>" & ErrMsg)
End Sub
Sub checkSave()
If Trim(Request.Form("usermail")) = "" Then
FoundErr = True
ErrMsg = ErrMsg + "<li>用户邮箱不能为空!</li>"
End If
If IsValidEmail(Trim(Request.Form("usermail"))) = False Then
ErrMsg = ErrMsg + "<li>您的Email有错误。</li>"
FoundErr = True
End If
If Not IsNumeric(Request.Form("userpoint")) Then
FoundErr = True
ErrMsg = ErrMsg + "<li>用户点数必需是数字!</li>"
End If
If Trim(Request.Form("nickname")) = "" Then
FoundErr = True
ErrMsg = ErrMsg + "<li>用户昵称不能为空!</li>"
End If
If NewAsp.IsValidStr(Request("nickname")) = False Then
ErrMsg = ErrMsg + "<li>用户昵称中含有非法字符。</li>"
Founderr = True
End If
m_strUserGroup = Split(Request.Form("UserGrade"), ",")
End Sub
%>