📄 edituser.asp
字号:
<%
if not session("sfadmin") then response.redirect("welcome.asp")
%>
<!--#INCLUDE FILE="../inc/db_inc.asp"-->
<!--#INCLUDE FILE="../inc/md5_inc.asp"-->
<!--#INCLUDE FILE="../inc/char_inc.asp"-->
<HTML>
<HEAD>
<TITLE>Untitled Document</TITLE>
<META http-equiv="Content-Type" content="text/html; charset=gb2312">
<LINK rel="stylesheet" href="admin.css" type="text/css">
</HEAD>
<BODY text="#000000" leftmargin="10" topmargin="10" bgcolor="#FFFFFF">
<%
Set Conn = Server.CreateObject("ADODB.Connection")
Conn.Open StrConn
%>
<!--#INCLUDE FILE="checkadmin.asp"-->
<%
if request("step") = "2" then
if request("userid") <> "" then
if not IsNumeric(request("userid")) then error = "userid必须为数字"
else
error = "userid不能为空"
end if
if error <> "" then
%>
<TABLE width="100%" border="0" cellspacing="1" cellpadding="4" align="center">
<TR>
<TD bgcolor="#D1E3BF">错误:<BR><%= error %></TD>
</TR>
</TABLE>
<%
response.end
else
userid = clng(request("userid"))
end if
if request("action") = "" then
' 一般的用户资料操作
error = ""
err = false
if request("password") <> "" then
if strLength(request("password")) < 6 or request("password") <> request("password2") then error = error & "<br><li>密码错误"
end if
if not IsValidEmail(request("email")) then error = error & "<br><li>email错误"
if request("sign") <> "" then
if strLength(request("sign")) > 200 then error = error & "<br><li>签名错误"
end if
if not IsNumeric(request("usergroup")) then
error = error & "<br><li>用户类别错误"
else
usergroup = cint(request("usergroup"))
end if
if request("defineavatar") = "1" then
err = false
if request("defineavatarpath") = "" or strLength(request("defineavatarpath")) < 10 then err = true
if (not IsNumeric(request("avatarwidth"))) or (not IsNumeric(request("avatarheight"))) then
err = true
else
if cint(request("avatarwidth")) > 120 or cint(request("avatarheight")) > 120 then err = true
end if
if err then error = error & "<br><li>自定义头像错误"
end if
if error <> "" then
%>
<TABLE width="100%" border="0" cellspacing="1" cellpadding="4" align="center">
<TR>
<TD bgcolor="#D1E3BF">错误:<BR><%= error %></TD>
</TR>
</TABLE>
<%
response.end
end if
sex = request("sex")
if sex <> "1" and sex <> "2" then sex = "0"
StrSql = "update sf_user set"
if request("password") <> "" then
StrSql = StrSql & " password = '" & md5(ChkSql(request("password"))) & "',"
end if
if not IsValidEmail(request("email")) then StrSql = Str & " email = '" & ChkSql(request("email")) & "',"
StrSql = StrSql & " homepage = '" & ChkSql(server.htmlencode(request("homepage"))) & "', "
StrSql = StrSql & " icq = '" & ChkSql(server.htmlencode(request("icq"))) & "', "
StrSql = StrSql & " qq = '" & ChkSql(server.htmlencode(request("qq"))) & "', "
StrSql = StrSql & " msn = '" & ChkSql(server.htmlencode(request("msn"))) & "', "
StrSql = StrSql & " usertitle = '" & ChkSql(request("usertitle")) & "', "
StrSql = StrSql & " [like] = '" & ChkSql(server.htmlencode(request("like"))) & "', "
StrSql = StrSql & " sex = " & sex & ", "
StrSql = StrSql & " usergroup = " & usergroup & ", "
StrSql = StrSql & " country = '" & ChkSql(server.htmlencode(request("country"))) & "', "
StrSql = StrSql & " signature = '" & ChkSql(server.htmlencode(request("sign"))) & "', "
if request("showmail") = "1" then
StrSql = StrSql & " showemail = 0, "
else
StrSql = StrSql & " showemail = 1, "
end if
if request("invisible") = "1" then
StrSql = StrSql & " invisible = 1, "
else
StrSql = StrSql & " invisible = 0, "
end if
if request("pmpop") = "1" then
StrSql = StrSql & " pmpopup = 1, "
else
StrSql = StrSql & " pmpopup = 0, "
end if
if request("defineavatar") = "1" then
StrSql = StrSql & " avatar = '', "
else
StrSql = StrSql & " avatar = '" & ChkSql(server.htmlencode(request("avatar"))) & "', "
end if
StrSql = StrSql & " defineavatar = '" & ChkSql(server.htmlencode(request("defineavatarpath"))) & "', "
StrSql = StrSql & " avatarwidth = " & ChkSql(request("avatarwidth")) & ", "
StrSql = StrSql & " avatarheight = " & ChkSql(request("avatarheight"))
StrSql = StrSql & " where userid = " & userid & ""
Conn.Execute(StrSql)
%>
<TABLE width="100%" border="0" cellspacing="1" cellpadding="4" align="center">
<TR>
<TD bgcolor="#D1E3BF" align="center">用户资料修改完毕</TD>
</TR>
</TABLE>
<%
else
' 特别操作
if request("action") = "delall" then
Conn.execute("delete from sf_thread where postuserid = " & userid)
Conn.execute("delete from sf_post where userid = " & userid)
Conn.execute("delete from sf_user where userid = " & userid)
end if
if request("action") = "delpost" then
Conn.execute("delete from sf_thread where postuserid = " & userid)
Conn.execute("delete from sf_post where userid = " & userid)
Conn.execute("update sf_user set posts=0 where userid=" & userid)
end if
if request("action") = "forbid" then
Conn.execute("update sf_user set forbidpost=1 where userid = " & userid)
end if
%>
<TABLE width="100%" border="0" cellspacing="1" cellpadding="4" align="center">
<TR>
<TD bgcolor="#D1E3BF" align="center">用户特别修改完毕</TD>
</TR>
</TABLE>
<%
end if
else
errstr = "<LI>没有指定用户名或用户序号中的任意一个参数<BR>"
if request("userid") <> "" then
strsql = "select * from sf_user where userid=" & request("userid")
errstr = ""
end if
if request("username") <> "" then
strsql = "select * from sf_user where username='" & request("username") & "'"
errstr = ""
end if
if errstr <> "" then
%>
<TABLE width="100%" border="0" cellspacing="1" cellpadding="4" align="center">
<TR>
<TD bgcolor="#D1E3BF">错误:<BR><%= errstr %></TD>
</TR>
</TABLE>
<%
else
Set rs = Conn.Execute(StrSql)
if not(rs.bof or rs.eof) then
usertitle = rs("usertitle")
usertitle = server.htmlencode(usertitle)
usersign = rs("signature")
usersign = server.htmlencode(usersign)
%>
<!--#INCLUDE FILE="../inc/inc.js"-->
<FORM name="form1" method="post" action="edituser.asp">
<TABLE width="100%" border="0" cellspacing="1" cellpadding="4" align="center">
<TR>
<TD bgcolor="#D1E3BF" align="center" colspan="2"><B>用户信息设置</B></TD>
</TR>
<tr bgcolor="#F5F5F5">
<td width="30%" align="right">用户名:</td>
<td width="70%"><% =rs("username") %></td>
</tr>
<tr bgcolor="#F5F5F5">
<td width="30%" align="right">头衔:</td>
<td width="70%"><input type="text" name="usertitle" maxlength="50" value="<% =usertitle %>" size="20">(如果为空则使用默认头衔)</td>
</tr>
<tr>
<td valign="top" colspan="2">如果您不想修改该用户密码, 则请保持新密码框为空</td>
</tr>
<tr bgcolor="#F5F5F5">
<td align="right">新密码:</td>
<td>
<input type="password" name="password" maxlength="50" size="16">
</td>
</tr>
<tr>
<td align="right">重复输入新密码:</td>
<td>
<input type="password" name="password2" maxlength="50" size="16">
</td>
</tr>
<tr bgcolor="#F5F5F5">
<td align="right">性别:</td>
<td>
<input type="radio" name="sex" value="1" <% if rs("sex")=1 then response.write "checked" %>>
帅哥
<input type="radio" name="sex" value="2" <% if rs("sex")=2 then response.write "checked" %>>
美女
<input type="radio" name="sex" value="0" <% if rs("sex")=0 then response.write "checked" %>>
保密</td>
</tr>
<tr>
<td align="right">email:</td>
<td>
<input type="text" name="email" maxlength="50" size="25" value="<% =rs("email") %>">
</td>
</tr>
<tr bgcolor="#F5F5F5">
<td align="right">来自:</td>
<td>
<input type="text" name="country" maxlength="50" size="20" value="<% =rs("country") %>">
</td>
</tr>
<tr>
<td align="right">ICQ:</td>
<td>
<input type="text" name="icq" maxlength="20" size="12" value="<% =rs("icq") %>">
</td>
</tr>
<tr bgcolor="#F5F5F5">
<td align="right">QQ:</td>
<td>
<input type="text" name="qq" maxlength="20" size="12" value="<% =rs("qq") %>">
</td>
</tr>
<tr>
<td align="right">MSN:</td>
<td>
<input type="text" name="msn" maxlength="50" size="20" value="<% =rs("msn") %>">
</td>
</tr>
<tr bgcolor="#F5F5F5">
<td align="right">主页:</td>
<td>
<input type="text" name="homepage" maxlength="100" size="50" value="<% =rs("homepage") %>">
</td>
</tr>
<tr>
<td align="right">生日:</td>
<td><%
if rs("birthday") <> "1900-1-1" then
response.write rs("birthday")
else
response.write "未设置"
end if
%>
</tr>
<tr bgcolor="#F5F5F5">
<td align="right">爱好:</td>
<td>
<input type="text" name="like" maxlength="50" size="20" value="<% =rs("like") %>">
</td>
</tr>
<tr>
<td>使用论坛自带头像(默认)</td><td><%
avatar = rs("avatar")
if avatar = "" then avatar = "1.gif"
Set rs2 = Conn.Execute("select title, avatarpath from sf_avatar")
response.write "<select name=""avatar"" size=""5"" onChange=""document.images['avatarimg'].src='../image/face/'+options[selectedIndex].value;"">"
if not(rs2.bof or rs2.eof) then
do until rs2.eof
response.write chr(10) & "<option value=""" & rs2("avatarpath") & """"
if rs2("avatarpath") = avatar then
response.write " selected"
avatar = rs2("avatarpath")
end if
response.write ">" & rs2("title") & "</option>"
rs2.movenext
loop
end if
response.write "</select>"
response.write chr(10) & "<img id=""avatarimg"" src=""" & "../image/face/" & avatar & """>"
%>
</td>
</tr>
<tr bgcolor="#FAFAFA">
<td><%
if rs("avatar") = "" then
response.write "<input type=""checkbox"" name=""defineavatar"" value=""1"" checked>使用自定义头像"
else
response.write "<input type=""checkbox"" name=""defineavatar"" value=""1"">使用自定义头像"
end if
%>
</td><td>图片URL路径:
<input type="text" name="defineavatarpath" maxlength="250" size="50" value="<% =rs("defineavatar") %>">
<br>
<br>
图片宽度:
<input type="text" name="avatarwidth" maxlength="3" size="3" value="<% =rs("avatarwidth") %>">
图片高度:
<input type="text" name="avatarheight" maxlength="3" size="3" value="<% =rs("avatarheight") %>">
(宽高不得超过120) </td>
</tr>
<tr bgcolor="#F5F5F5">
<td align="right" valign="top">个性签名:</td>
<td>
<textarea name="sign" cols="75" rows="6"><% = usersign %></textarea></td>
</tr>
<tr>
<td align="right">短消息弹出提示:</td>
<td> <input type="checkbox" name="pmpop" value="1" <% if rs("pmpopup")=1 then response.write "checked" %>>(如果用户收到新的短消息则弹出小窗口提示) </td>
</tr>
<tr bgcolor="#F5F5F5">
<td align="right">隐身登录:</td>
<td> <input type="checkbox" name="invisible" value="1" <% if rs("invisible")=1 then response.write "checked" %>>(登录后在线名单中将不显示用户的名字) </td>
</tr>
<tr>
<td align="right">隐藏我的email地址:</td>
<td> <input type="checkbox" name="showmail" value="1" <% if rs("showemail")=0 then response.write "checked" %>>(别人将无法看到用户的email)
</td>
</tr>
<TR bgcolor="#F0F0F0">
<TD align="right">特别操作:</TD>
<TD><input type="radio" name="action" value="" checked><b>不进行任何特别操作(默认)</b></TD>
</TR>
<TR bgcolor="#F0F0F0">
<TD></TD>
<TD><input type="radio" name="action" value="delall"><font color="red">删除该用户(包括所发的所有帖子)</font></TD>
</TR>
<TR bgcolor="#F0F0F0">
<TD></TD>
<TD><input type="radio" name="action" value="delpost"><font color="red">删除该用户所发的所有帖子</font></TD>
</TR>
<TR bgcolor="#F0F0F0">
<TD></TD>
<TD><input type="radio" name="action" value="forbid"><font color="red">
<%
if rs("forbidpost") = 0 then
response.write "禁止该用户的所有发言"
else
response.write "允许该用户的所有发言"
end if
%>
</font></TD>
</TR>
<TR bgcolor="#FFFFFF">
<TD align="right">用户类别:</TD><TD>
<SELECT name="usergroup">
<OPTION value="0"<%if rs("usergroup") = 0 then response.write " selected"%>>用户</OPTION>
<OPTION value="1"<%if rs("usergroup") = 1 then response.write " selected"%>>贵宾</OPTION>
<OPTION value="2"<%if rs("usergroup") = 2 then response.write " selected"%>>版主</OPTION>
<OPTION value="3"<%if rs("usergroup") = 3 then response.write " selected"%>>总版主</OPTION>
<OPTION value="4"<%if rs("usergroup") = 4 then response.write " selected"%>>管理员</OPTION>
</SELECT><BR>此处修改用户类别只影响显示, 可以用来修复用户的类别错误<BR>(版主或管理员权限需要进行其它相关设置后才会真正有效)
</TD>
</TR>
<TR align="center" bgcolor="#DDDDDD">
<TD colspan="2" height="3">
</TD>
</TR>
<TR align="center">
<TD colspan="2">
<INPUT type="hidden" name="step" value="2">
<INPUT type="hidden" name="userid" value="<% = rs("userid") %>">
<INPUT type="submit" name="Submit" value="确 定" onclick="MM_validateForm('boardtitle','论坛名称','R','boardurl','论坛URL地址','R','welcomehint','首页欢迎提示','R','forumclosehint','论坛关闭提示','R','defshowdays','默认查看多少天内的主题','RisNum','posttime','发帖间隔','RisNum','favmax','最多允许多少条私人收藏','RisNum','defreplyshowpost','回复主题时显示最后多少个帖子','RisNum','forumrow','显示论坛时每页显示多少条主题','RisNum','postrow','显示主题时每页显示多少条帖子','RisNum','hothit','主题被回复多少次后成为热帖','RisNum','hotreply','主题被查看多少次后成为热帖','RisNum','postmaxlength','帖子内容允许的最大长度','RisNum','uploadfilesizemax','允许上传的附件大小','RisNum','onlinetime','用户多长时间不活动认为已退出论坛','RisNum','msgmax','最多允许用户存储多少条短消息','RisNum');return document.MM_returnValue">
</TD>
</TR>
</TABLE>
</FORM>
<%
else
%>
<TABLE width="100%" border="0" cellspacing="1" cellpadding="4" align="center">
<TR>
<TD bgcolor="#D1E3BF" align="center">该用户不存在 <a href="userlist.asp">返回</a></TD>
</TR>
</TABLE>
<%
end if
end if
end if
%>
</BODY>
</HTML>⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -