chkadmin.asp

时代商城购物系统功能

<!--#include file="conn.asp"-->
<!--#include file="func.asp"-->
<%dim admin,UserPassword,passcode
admin=replace(trim(request.Form("admin")),"'","")
UserPassword=md5(replace(trim(request.form("UserPassword")),"'",""))
admin=killbad(admin)
UserPassword=killbad(UserPassword)
if not isnumeric(request.form("passcode")) then
response.Write "<script LANGUAGE='javascript'>alert('登录失败！验证码必须是数字，请正确填写！');history.go(-1);</script>"
response.end
end if
passcode=Cint(request.form("passcode"))
set rs=server.CreateObject("adodb.recordset")
rs.Open "select * from [admin] where admin='"&admin&"' and UserPassword='"&UserPassword&"' " ,conn,1,1
if rs.bof and rs.eof then
response.write "<script LANGUAGE='javascript'>alert('你的用户名或者密码错误，登录失败！');history.go(-1);</script>"
else
if passcode<>Session("GetCode") then
response.Write "<script LANGUAGE='javascript'>alert('登录失败！验证码错误！');history.go(-1);</script>"
response.end
end if
if UserPassword=rs("UserPassword") and admin=rs("admin") then
session("admin")=trim(rs("admin"))
session("rank")=int(rs("rank"))
session.Timeout=20
rs.Close
set rs=nothing
conn.Close
set conn=nothing
response.Redirect "index.asp"
else
response.write "<script LANGUAGE='javascript'>alert('你的密码错误，登录失败！');history.go(-1);</script>"
end if
end if
%>