gbook_writeok.asp

基于ASP开发的聊天室源码

<%
If IsArray(Session("info")) Then
 logi = True
 info = Session("info")
 who = info(0)
Else
 logi = False
 who = Trim(Request.Form("who"))
 pass = Request.Form("pass")
 who = Replace(who," ","")
 who = Replace(who,"　","")
 who = Replace(who,"'","")
 If who = "" Then Response.Redirect "err.asp?kind=1"
 If pass = "" Then Response.Redirect "err.asp?kind=2"
End If
towho = Trim(Request.Form("towho"))
title = Trim(Request.Form("title"))
email = Trim(Request.Form("email"))
oicq = Request.Form("oicq")
homepage = Trim(Request.Form("homepage"))
ico = Request.Form("ico")
gtext = Trim(Request.Form("gtext"))
mi = Request.Form("mi")
miip = Request.Form("miip")
title = Replace(title," ","")
title = Replace(title,"　","")
towho = Replace(towho," ","")
towho = Replace(towho,"　","")
towho = Replace(towho,"'","")
If title = "" Then Response.Redirect "err.asp?kind=115"
If towho = "" Then Response.Redirect "err.asp?kind=117"
If Len(title) > 30 Then Response.Redirect "err.asp?kind=118"
If Len(towho) > 10 Then Response.Redirect "err.asp?kind=119"
If IsNumeric(ico) Then
 If Int(ico) > 20 OR Int(ico) < 0 Then
  ico = 1
 Else
  ico = Int(ico)
 End If
Else
 ico = 1
End If
gtext = Replace(gtext," ","")
gtext = Replace(gtext,"　","")
testtext = Replace(gtext,chr(10),"")
testtext = Replace(gtext,chr(13),"")
If testtext = "" Then Response.Redirect "err.asp?kind=116"
If Len(testtext) > 170 Then Response.Redirect "err.asp?kind=123"
Set Conn=Server.CreateObject("ADODB.CONNECTION")
Conn.Open Application("zzbird_conn")
Set Rs = Server.CreateObject("ADODB.RecordSet")
If logi <> True Then
sql = "select user,pass,firsttime from userinfo where user='" & who & "'"
Rs.Open sql,Conn,3,3
If Rs.EOF and Rs.BOF Then
 Rs.Close
 Set Rs = Nothing
 Conn.Close
 Set Conn = Nothing
 Response.Redirect "err.asp?kind=34"
End If

 pass = StrReverse(pass)
 lenpass = Len(pass)
 password = ""
 firsttime = CStr(Rs("firsttime"))
 For i = 1 To lenpass
  k = Int(Right(firsttime,1)) * (1 + 0.1 * i) - 15
  If k < 2 Then k = k + 5
  password = password + Chr(asc(mid(pass,i,1)) - Int(lenpass * 1.5) + Int(i * 1.1) + k)
 Next
If Rs("pass") <> password Then
 Rs.Close
 Set Rs = Nothing
 Conn.Close
 Set Conn = Nothing
 Response.Redirect "err.asp?kind=9"
End If
Rs.Close
End If

sql = "select * from gbook where (id is null)"
Rs.Open sql,Conn,1,3
Rs.AddNew
Rs("title") = Server.HTMLEncode(title)
Rs("gtext") = Server.HTMLEncode(gtext)
Rs("ico") = ico
If miip <> "ON" Then
 userip = Request.ServerVariables("HTTP_X_FORWARDED_FOR")
 If userip = "" Then userip = Request.ServerVariables("REMOTE_ADDR")
 Rs("ip") = userip
Else
 Rs("ip") = "(已设置保密)"
End If
Rs("who") = who
Rs("towho") = Server.HTMLEncode(towho)
Rs("time") = now
If mi = "ON" Then
 Rs("mi") = True
Else
 Rs("mi") = False
End If
If IsNumeric(oicq) Then Rs("oicq") = Int(oicq)
Rs("homepage") = Server.HTMLEncode(homepage)
Rs("email") = Server.HTMLEncode(email)
Rs.UpDate
Rs.Close
Set Rs = Nothing
Conn.Close
Set Conn = Nothing
%>
<Script Language="JavaScript">
alert("留言已经成功发表！");
opener.location.reload();
window.close();
</Script>