chkuser.asp

时代商城购物系统功能

<!--#include file="conn.asp"-->
<!--#include file="func.asp"-->
<%
dim username,UserPassword,comeurl,passcode
username=replace(trim(request.Form("username")),"'","")
UserPassword=md5(replace(trim(request.form("UserPassword")),"'",""))
username=killbad(username)
UserPassword=killbad(UserPassword)
if not isnumeric(request.form("passcode")) then
response.Write "<script LANGUAGE='javascript'>alert('登录失败！验证码必须是数字，请正确填写！');history.go(-1);</script>"
response.end
end if
passcode=Cint(request.form("passcode"))
if trim(request.form("comeurl"))="" then
comeurl="index.asp"
else
comeurl=trim(request.form("comeurl"))
end if
if username="" or UserPassword="" then
response.Write "<script LANGUAGE='javascript'>alert('登录失败！请检查您的登录名和密码！');history.go(-1);</script>"
response.end
end if

if passcode<>Session("GetCode") then
response.Write "<script LANGUAGE='javascript'>alert('登录失败！验证码错误！');history.go(-1);</script>"
response.end
end if

set rs=server.CreateObject("adodb.recordset")
rs.Open "select * from [User] where username='"&username&"' and UserPassword='"&UserPassword&"' " ,conn,1,3
if not(rs.bof and rs.eof) then

if UserPassword=rs("UserPassword") and passcode=Session("GetCode") then
response.Cookies("timesshop")("username")=trim(request.form("username"))
rs("LastLogin")=now()
rs("UserLogins")=rs("UserLogins")+1
rs.Update
rs.Close
set rs=nothing
response.redirect comeurl
else
response.write "<script LANGUAGE='javascript'>alert('登录失败，请检查您的登录名和密码！');history.go(-1);</script>"
end if

else
response.write "<script LANGUAGE='javascript'>alert('登录失败！请检查您的登录名和密码！');history.go(-1);</script>"
end if
conn.close
set conn = nothing
%>