www.gusucode.com > cso中国seo优化html整站源码程序 > manage/user/u_admin.asp
<!--#include file="../include/head.asp"-->
<%
flagstr = "u_admin"
call checkflag(flagstr)
session("curpage") = "user/"&flagstr&".asp"
main_title = "高级用户"
%>
<table cellspacing="1">
<thead><tr><th><%=main_title%>管理选项</th></tr></thead>
<tbody><tr><td>
<a class="add" href="?act=add">添加<%=main_title%></a>
<a class="man" href="?act=man">管理<%=main_title%></a>
</td></tr></tbody>
</table>
<br />
<%
select case request.querystring("act")
case "all"
call user_admin_all()
case "man"
call user_admin_man()
case "add"
call user_admin_edit("add",0)
case "flag"
call user_admin_edit("flag",request.querystring("nid"))
case "edit"
call user_admin_edit("edit",request.querystring("nid"))
case "save"
call user_admin_save(request.querystring("what"),request.querystring("nid"))
case "delete"
call user_admin_delete(request.querystring("nid"))
end select
sub user_admin_save(what,nid)
select case what
case "add"
username = trim(request.form("username"))
password = trim(request.form("password"))
sql = "select * from so_admin where username = '"&username&"'"
rs.open sql,conn,2,2
if rs.eof then
rs.addnew
rs("username") = username
rs("password") = md5(password)
rs("flag") = "admin_main"
else
call alert("该用户已经存在!","?act=add")
end if
case "edit"
password = trim(request.form("password"))
sql = "select * from so_admin where id = "&nid
rs.open sql,conn,2,2
rs("password") = md5(password)
case "flag"
flag = trim(request.form("flag"))
sql = "select * from so_admin where id = "&nid
rs.open sql,conn,2,2
rs("flag") = "admin_main, admin_config, " & flag
end select
rs.update
rs.close
call redir("?act=man")
end sub
'编辑表单
sub user_admin_edit(act,nid)
select case act
case "add"
formstr = 1
actstr = "添加"
only = ""
username = ""
password = ""
case "edit"
formstr = 1
actstr = "编辑"
only = "readonly=""enabled"""
sql = "select * from so_admin where id = "&nid
rs.open sql,conn,1,1
username = rs("username")
password = ""
rs.close
case "flag"
formstr = 2
actstr = "编辑权限"
sql = "select * from so_admin where id = "&nid
rs.open sql,conn,1,1
flag = rs("flag")
rs.close
end select
if formstr = 1 then
%>
<table cellspacing="1">
<thead><tr><th colspan="2"><%=main_title%>——<%=actstr%></th></tr></thead>
<form method="post" name="add" action="?act=save&what=<%=act%>&nid=<%=nid%>">
<tbody>
<tr>
<td><b>用户名:</b></td>
<td><input type="text" name="username" size="24" value="<%=username%>" <%=only%> /></td>
</tr>
<tr>
<td><b>密码:</b></td>
<td><input type="password" name="password" size="24" value="<%=password%>" /></td>
</tr>
<tr>
<td width="20%"></td>
<td width="80%"><input type="submit" value="确认提交" /></td>
</tr>
</tbody>
</form>
</table>
<%
else
%>
<form method="post" name="flag" action="?act=save&what=flag&nid=<%=nid%>">
<%
call createflag(flag,"../info/","信息管理")
response.write "<br />"
call createflag(flag,"../feed/","意见反馈")
response.write "<br />"
call createflag(flag,"../class/","分类管理")
response.write "<br />"
call createflag(flag,"../user/","用户管理")
response.write "<br />"
%>
<table cellspacing="1">
<thead><tr><th><input type="submit" value="确认提交" /></th></tr></thead>
</table>
</form>
<%
end if
end sub
'____________________
'权限表格
'dir = "../info/"
sub createflag(flag,dir,menu)
%>
<table cellspacing="1">
<thead><tr><th colspan="8"><%=main_title%>——编辑权限——<%=menu%></th></tr></thead>
<%
dim fso,ofolder,i,j,ofiles,fname,filepath
set fso = createobject("scripting.filesystemobject")
set ofolder = fso.getfolder(server.mappath(dir))
i = 0
for each ofiles in ofolder.files
fname = trim(replace(ofiles.name,".asp",""))
'读取权限名称
filepath = dir & ofiles.name
fnamestr = replace(replace(replace(split(split(ReadFile(filepath,"gb2312"),"main_title = ")(1),">")(0),"%",""),chr(34),""),vbcrlf,"")
i = i + 1
if i mod 8 = 1 then response.write "<tbody><tr>"
%>
<td width="12.5%"><input type="checkbox" name="flag" value="<%=fname%>" id="<%=fname%>" <%if instr(1,flag,fname) > 0 then response.write "checked"%> /><label for="<%=fname%>"><%=fnamestr%></label></td>
<%
if i mod 8 = 0 then response.write "</tr></tbody>"
next
if i mod 8 <> 0 then
for j = 1 to 8 - i mod 8
%>
<td width="12.5%"></td>
<%
next
end if
set ofolder = nothing
set fso = nothing
%>
</tr></tbody>
</table>
<%
end sub
'管理列表
sub user_admin_man()
%>
<table cellspacing="1">
<thead><tr>
<th width="5%">选择</th>
<th width="15%">用户名</th>
<th>上次登录时间</th>
<th>上次登录地址</th>
<th width="10%">登录次数</th>
<th width="30%">操作</th>
</tr></thead>
<form action="?act=all" method="post" name="allc" id="allc">
<%
sql = "select * from so_admin where id > 1 order by id asc"
rs.open sql,conn,1,1
do while not rs.eof
if cls <> "td1" then
cls = "td1"
else
cls = "td2"
end if
%>
<tbody><tr>
<td align="center"><input type="checkbox" value="<%=rs("id")%>" name="allid" /></td>
<td><%=rs("username")%></td>
<td><%=rs("logintime")%></td>
<td><%=rs("loginip")%></td>
<td align="center"><%=rs("logins")%></td>
<td align="center">
<a class="mod" href="?act=flag&nid=<%=rs("id")%>">编辑权限</a>
<a class="mod" href="?act=edit&nid=<%=rs("id")%>">修改密码</a>
<a class="del" href="?act=delete&nid=<%=rs("id")%>" onclick="return del();">删除此管理员</a></td>
</tr></tbody>
<%
rs.movenext
if rs.eof then exit do
loop
rs.close
%>
<tbody><tr><td colspan="20">
<input type="button" value="全选" name="allid" id="allbtn" />
<select name="opt">
<option value="delete">批量删除</option>
</select>
<input type="submit" value="批量操作" />
</td></tr></tbody>
</form>
</table>
<%
end sub
sub user_admin_all()
opt = request.form("opt")
allid = request.form("allid")
select case opt
case "delete"
conn.execute "delete * from so_admin where id in ("&allid&")"
end select
call redir("?act=man")
end sub
sub user_admin_delete(nid)
conn.execute "delete * from so_admin where id = "&nid
call redir("?act=man")
end sub
%>
<!--#include file="../include/foot.asp"-->