📄 admin_check.asp
字号:
'| rs1("class_e")=rs1("class_e") & add
'| rs1.update
'| rs1.close
'| set rs1=nothing
'|else
'| call closedb()
'| call error("出现未知错误,请与<a href='mailto:mlzboy@yahoo.com.cn'>我们联系</a>!")
'| call error("<a href='http://jjxy.zj.com'>前往-->Eric工作室</a>")
'| call Iserror()
'| response.end
'| end if
'+----------------------------------------------------------------------------------
case "add_homework"
'response.write "dd"
if session("purview")>2 then
response.clear
call error("对不起该功能目前只对普通开放,系统管理员如有需要,请另建一教师账号,使用该功能!")
call Iserror()
response.end
end if
call opendb()
set rs=conn.execute("select class_e,eric_manager from eric_manager where teacher='" & session("teacher_name") & "' and class_e<>''")'检测数据库中是不有符合上述条件的记录
if rs.eof then
call closers()
call closedb()
call error("当前该您(教师)没有创建班级,不能布置作业!请先添加授课班级或与系统管理员联系!")
call Iserror()
response.end
else
call closers()
call closedb()
homework_name=request.form("homework_name")
'字符过滤
object_e=trim(request.form("object_e"))'面向对象
content=request.form("content")
if object_e="" then
call error("请选作业面向的对象!")
call Iserror()
response.end
end if
if check_len(homework_name,"[作业名称]",20,0) or _
check_len(content,"[内容]",500,0) then
finderror=true
call Iserror()
response.end
end if
'获得选中的是否允许上传的状态
is_upload_e=request.form("is_upload")
if is_upload_e="1" then
is_upload_e=true
elseif is_upload_e="-1" then
is_upload_e=false
end if
'response.write is_upload_e
'response.end
if instr(object_e,",")>0 then'在给多个班级布置作业的情况
array_object_e=split(object_e,",")
call opendb()
for i=0 to ubound(array_object_e)
set rs=conn.execute("select * from homework where teacher_name='" & session("teacher_name") & "' and object_class='" & trim(array_object_e(i)) & "' and homework_name='" & homework_name & "'")
if not rs.eof then
call error("你已经对" & array_object_e(i) & "该班级布置过该作业了!")
call closers()
call Iserror()
response.end
else
dim sql_70
'向homework插入内容
sql_70="insert into homework (teacher_name,homework_name,teacher,object_class,content,Is_upload) values ('" & session("teacher_name") & "','" & homework_name & "','" & session("teacher") & "','" & trim(array_object_e(i)) & "','" & content & "'," & is_upload_e & ")"
conn.execute(sql_70)
'向class表中提交内容
set rs=conn.execute("select id from class where classname='" & session("teacher_name") & "'")
teacher_id=rs(0)'取得该教师的id
call closers()
set rs=conn.execute("select id,childID,classname from class where parentid='" & teacher_id & "' and classname='" & trim(array_object_e(i)) & "'")
class_id=rs(0)'取得该教师班级的id
childid=rs(1)
call closers()
parentStr=teacher_id & "," & class_id
conn.execute("insert into class (parentID,parentStr,classname) values ('" & class_id & "','" & parentStr & "','" & homework_name & "')")
set rs=conn.execute("select id from class where classname='" & homework_name & "' order by id desc")'order by id desc用处是获得刚插入的自动编号
homework_id=rs(0)
call closers()
'插入homework中的classid
conn.execute("update homework set classid=" & homework_id & " where teacher_name='" & session("teacher_name") & "' and object_class='" & trim(array_object_e(i)) & "' and homework_name='" & homework_name & "'")
if isnull(childid) or childid="" then '注意usnull()这个函数
conn.execute("update Class set ChildID='" & homework_id & "' where ID=" & class_id)
else
Conn.execute("update Class set ChildID=ChildID+','+'" & homework_id & "' where ID=" & class_id)
end if
'建立该次某班级作业文件夹
'生成该次某班级作业文件夹路径
folder_path_03=server.mappath("..\upload\" & session("teacher_name") & "\" & trim(array_object_e(i)) & "\" & homework_name)
set fs=createobject("scripting.filesystemobject")
if not fs.folderexists(folder_path_03) then
fs.createfolder(folder_path_03)
else
set fs=nothing
call error("已经存在该文件夹!,请与<a href='mailto:mlzboy@yahoo.com.cn'>我们联系</a>!")
call error("<a href='http://jjxy.zj.com'>前往-->Eric工作室</a>")
call Iserror()
response.end
end if
if fs.folderexists(folder_path_03) then
set fs=nothing
else
set fs=nothing
call error("已经存在该文件夹!,请与<a href='mailto:mlzboy@yahoo.com.cn'>我们联系</a>!")
call error("<a href='http://jjxy.zj.com'>前往-->Eric工作室</a>")
call Iserror()
response.end
end if
end if
next
call closedb()
response.redirect "../show_success.asp?info=添加作业操作成功!已建立该次作业相关文件夹!--><a href='control/admin_main.asp' target='_parent'>返回管理首页</a>"
else'当布置的作业为单个班级时
call opendb()
set rs=conn.execute ("select * from homework where teacher_name='" & session("teacher_name") & "' and object_class='" & object_e & "' and homework_name='" & homework_name & "'")
if not rs.eof then
call error("你已经对" & object_e & "该班级布置过该作业了!")
call closers()
call closedb()
call Iserror()
response.end
else
call closers()
conn.execute("insert into homework (homework_name,Is_upload,teacher_name,object_class,teacher,content) values ('" & homework_name & "'," & is_upload_e & ",'" & session("teacher_name") & "','" & object_e & "','" & session("teacher") & "','" & content & "')" )
'''''
'向class表中提交内容
set rs=conn.execute("select id from class where classname='" & session("teacher_name") & "'")
teacher_id=rs(0)'取得该教师的id
call closers()
set rs=conn.execute("select id,childID,classname from class where parentid='" & teacher_id & "' and classname='" & object_e & "'")
class_id=rs(0)'取得该教师班级的id
childid=rs(1)
call closers()
parentStr=teacher_id & "," & class_id
conn.execute("insert into class (parentID,parentStr,classname) values ('" & class_id & "','" & parentStr & "','" & homework_name & "')")
set rs=conn.execute("select id from class where classname='" & homework_name & "' order by id desc")'order by id desc用处是获得刚插入的自动编号
homework_id=rs(0)
call closers()
'插入homework中的classid
conn.execute("update homework set classid=" & homework_id & " where teacher_name='" & session("teacher_name") & "' and object_class='" & object_e & "' and homework_name='" & homework_name & "'")
if isnull(childid) or childid="" then '注意usnull()这个函数
conn.execute("update Class set ChildID='" & homework_id & "' where ID=" & class_id)
else
Conn.execute("update Class set ChildID=ChildID+','+'" & homework_id & "' where ID=" & class_id)
end if
'建立该次某班级作业文件夹
'生成该次某班级作业文件夹路径
folder_path_03=server.mappath("..\upload\" & session("teacher_name") & "\" & object_e & "\" & homework_name)
set fs=createobject("scripting.filesystemobject")
if not fs.folderexists(folder_path_03) then
fs.createfolder(folder_path_03)
else
set fs=nothing
call error("已经存在该文件夹!,请与<a href='mailto:mlzboy@yahoo.com.cn'>我们联系</a>!")
call error("<a href='http://jjxy.zj.com'>前往-->Eric工作室</a>")
call Iserror()
response.end
end if
if fs.folderexists(folder_path_03) then
set fs=nothing
else
set fs=nothing
call error("已经存在该文件夹!,请与<a href='mailto:mlzboy@yahoo.com.cn'>我们联系</a>!")
call error("<a href='http://jjxy.zj.com'>前往-->Eric工作室</a>")
call Iserror()
response.end
end if
'end if
'''''''''
call closedb()
response.redirect "../show_success.asp?info=添加作业操作成功!--><a href='control/admin_main.asp' target='_parent'>返回管理首页</a>"
end if
end if
end if
case "admin_manager" '更新管理级成员
'username=request.form("username")
remark=request.form("remark")
'limit=request.form("purview")
if check_num(request.querystring("target"),"非法参数!") then
finderror=true
call Iserror()
response.end
end if
if check_len(remark,"[备注]",500,1) then '1为允许为空
finderror=true
call Iserror()
response.end
end if
'字符过滤
'sql_52="update eric_manager set eric_manager='" & username & "',remark='" & remark & "',purview='" & limit & "' where id=" & request("target")
sql_52="update eric_manager set remark='" & remark & "' where id=" & request("target")
call opendb()
conn.execute (sql_52)
call closedb()
response.redirect "../show_success.asp?info=修改操作成功!--><a href='control/admin_main.asp' target='_parent'>返回管理首页</a>"
response.end
case "login"
dim user,pwd,confirm
user=trim(request.form("user"))
pwd=trim(request.form("pwd"))
confirm=request.form("confirm")
if user="" or confirm="" or pwd="" then
call error("用户名、密码、验证码均不能为空!")
call Iserror()
response.end
elseif cstr(session("confirmcode"))<>cstr(trim(request.form("confirm"))) then
session.abandon
call error("验证码出错!")
call Iserror()
response.end
else
'非法字符过滤
dim sql_05
sql_05="select eric_manager,eric_password,teacher,purview from eric_manager where eric_manager='" & user & "' and eric_password='" & pwd & "'"
call opendb()
set rs_sql_05=conn.execute (sql_05)
if not rs_sql_05.eof then
session("teacher_name")=rs_sql_05("teacher")'真名
session("teacher")=user'教师的用户名
session("purview")=rs_sql_05("purview")'设置权限
rs_sql_05.close
set rs_sql_05=nothing
call closedb()
response.redirect "admin_main.asp"
response.end
else
rs_sql_05.close
set rs_sql_05=nothing
call closedb()
call error("用户名,密码出错!如果忘记密码请与授课教师联系。")
call Iserror()
response.end
end if
end if
'end if
case "modify_pwd"
dim old_pwd,chg_pwd,chg_pwdq
old_pwd=request.form("old_pwd")
chg_pwd=request.form("chg_pwd")
chg_pwdq=request.form("chg_pwdq")
if check_len(old_pwd,"[旧密码]",20,0) or _
⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -