newtopic.asp

一个超市管理系统

<!-- #include file="setup.asp" -->

<%

if Request.Cookies("username")="" then
error("<li>您还还未<a href=login.asp>登陆</a>社区")
end if

forumid=Request("forumid")
if isnumeric(""&forumid&"") = flase then
error("<li>非法操作")
end if


'''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''
if Request.ServerVariables("request_method") = "POST" then

if instr(Request.ServerVariables("http_referer"),""&Request.ServerVariables("server_name")&"") = 0 then
error("<li>来源错误")
end if

username=Request("username")
userpass=Trim(Request("userpass"))
forumid=Request("forumid")
icon=Request("icon")
topic=server.htmlencode(Trim(Request("topic")))
content=server.htmlencode(Trim(Request("content")))
content=replace(content,vbCrlf,"<br>")
content=replace(content,"\","\\")




if username="" then
message=message&"<li>用户名没有填写"
end if
if userpass="" then
message=message&"<li>密码没有填写"
end if
if topic="" then
message=message&"<li>主题没有填写"
end if
if content="" then
message=message&"<li>内容没有填写"
end if

if Len(topic)>30 then
message=message&"<li>文章主题不能大于 30 字节"
end if

if Len(content)>50000 then
message=message&"<li>文章内容不能大于 50000 字节"
end if

if instr(topic,"ヴ") > 0 or instr(topic,"ヂ") > 0 or instr(topic,"ゼ") > 0 or instr(topic,"ヅ") > 0 then
message=message&"<li>主题中不能含有“ヴ ヂ ゼ ヅ”字符"
end if
if instr(content,"ヴ") > 0 or instr(content,"ヂ") > 0 or instr(content,"ゼ") or instr(content,"ヅ") > 0 then
message=message&"<li>内容中不能含有“ヴ ヂ ゼ ヅ”字符"
end if

''''''''''''''''''''


sql="select * from user where username='"&HTMLEncode(username)&"'"
rs.Open sql,Conn,1,3

if rs.eof then
message=message&"<li>此用户名还未<a href=register.asp?username="&username&">注册</a>"
error(""&message&"")
end if

if userpass<>rs("userpass") then
message=message&"<li>您的密码错误"
end if

if rs("userlife")<5 then
message=message&"<li>您的体力值 < <FONT color=red>5</FONT> 不能发表文章<li>您可以到<A href=shop.asp>社区商店</A>购买体力药丸<li>每有效停留时间<FONT color=red> 10 </FONT>分钟：体力值：<FONT color=red>+10</FONT>"
end if

if rs("experience")<1 then
message=message&"<li>新注册用户登陆社区停留<FONT color=red> 10 </FONT>分钟以上才可发表帖子"
end if


if rs("membercode")=0 then
message=message&"<li>您被关进<a href=prison.asp>监狱</a>"
end if

if message<>"" then
error(""&message&"")
end if

if icon = "" then
randomize
icon=Int((24*rnd)+1)
end if


if rs("membercode")<2 then
rs("userlife")=rs("userlife")-5
end if


rs("landtime")=now
rs("posttopic")=rs("posttopic")+1
rs("money")=rs("money")+5
rs("experience")=rs("experience")+5
rs.update
rs.close


rs.Open "forum",conn,1,3
rs.addnew
rs("username")=username
rs("forumid")=forumid
rs("topic")=topic
rs("content")=content
rs("postip")=remoteaddr
rs("icon")=icon

'''''''''''''''''''''''''''''''''''
'投票处理程序
if Request("vote")<>"" then
vote=server.htmlencode(Trim(Request("vote")))
if instr(vote,"|") > 0 then
message=message&"<li>投票选项中不能含有“|”字符"
error(""&message&"")
end if
polltopic=split(vote,chr(13)&chr(10))
j=0
for i = 0 to ubound(polltopic)
if not (polltopic(i)="" or polltopic(i)=" ") then
allpolltopic=""&allpolltopic&""&polltopic(i)&"|"
j=j+1
end if
next
for y = 1 to j
votenum=""&votenum&"0|"
next
rs("polltopic")=allpolltopic
rs("pollresult")=votenum
rs("multiplicity")=Request("multiplicity")
end if
'''''''''''''''''''''''''''''''''''
rs.update
id=rs("id")
rs.close







conn.execute("update [bbsconfig] set lastname='"&username&"',lasttime=now,toltopic=toltopic+1,tolrestore=tolrestore+1 where id="&forumid&"")




succtitle="新主题发表成功"
message="<li><a onclick=min_yuzi() target=message href=ShowPost.asp?id="&id&">返回主题</a><li><a href=ShowForum.asp?forumid="&forumid&">返回论坛</a><li><a href=Default.asp?menu=listtitle>返回论坛首页</a>"
succeed(""&message&"<meta http-equiv=refresh content=3;url=ShowForum.asp?forumid="&forumid&">")

end if
'''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''



sql="select * from bbsconfig where id="&forumid&""
rs.Open sql,Conn
top
%>

<title>发表文章</title>

<CENTER>

<table width=97% align="center" border="0">
<tr>
<td vAlign="top" width="30%"><img src="images/logo.gif" border="0"></td>
<td vAlign="center" align="top">　<img src="images/closedfold.gif" border="0">　<a href=Default.asp?menu=listtitle><%=clubname%></a><br>
　<img src="images/bar.gif" border="0"><img src="images/closedfold.gif" border="0">　<a href="ShowForum.asp?forumid=<%=forumid%>"><%=rs("bbsname")%></a><br>
　　&nbsp;<img src="images/bar.gif" border="0"><img src="images/openfold.gif" border="0">　发表文章</td>
</tr>
</table>

<br>


<TABLE cellSpacing=1 cellPadding=6 width=670 border=0 class=a2>



<form method=post name=form onsubmit="return ValidateForm()">
<input type=hidden name=forumid value=<%=Request("forumid")%>>
<TBODY>
<TR>
<TD id=titlelarge vAlign=left colSpan=4 height=25 width="618" class=a1><b>发表文章</b></TD></TR>
<TR>
<TD width=126 class=a4 height=25><B>用户名称</B></TD>
<TD width=184 class=a4 height=25>
<INPUT
maxLength=20 size=15 value="<%=Request.Cookies("username")%>" name=username></TD>
<TD width=91 class=a4 height=25><B>您的密码</B></TD>
<TD width=184 class=a4 height=25>
<INPUT
type=password size=15 value="<%=Request.Cookies("userpass")%>" name=userpass></TD></TR>
<TR>
<TD width=126 class=a3 height=25><B>文章标题</B> <SELECT onchange=DoTitle(this.options[this.selectedIndex].value)>
<OPTION value="" selected>&nbsp;类型</OPTION> <OPTION
value=[原创]>[原创]</OPTION><OPTION value=[转贴]>[转贴]</OPTION> <OPTION
value=[灌水]>[灌水]</OPTION><OPTION value=[讨论]>[讨论]</OPTION> <OPTION
value=[求助]>[求助]</OPTION><OPTION value=[推荐]>[推荐]</OPTION> <OPTION
value=[公告]>[公告]</OPTION><OPTION value=[注意]>[注意]</OPTION> <OPTION
value=[贴图]>[贴图]</OPTION><OPTION value=[建议]>[建议]</OPTION> <OPTION
value=[下载]>[下载]</OPTION><OPTION value=[分享]>[分享]</OPTION></SELECT> </TD>
<TD width=481 class=a3 colSpan=3 height=25>
<INPUT maxLength=30 size=60 name=topic></TD></TR>
<TR>
<TD vAlign=top align=left width=126 class=a4 height=23><B>您的表情</B></TD>
<TD width=481 class=a4 colSpan=3>
<INPUT type=radio value=1 name=icon><IMG