📄 edituser.asp
字号:
<%
if not session("sfadmin") then response.redirect("welcome.asp")
%>
<!--#INCLUDE FILE="../inc/db_inc.asp"-->
<!--#INCLUDE FILE="../inc/md5_inc.asp"-->
<!--#INCLUDE FILE="../inc/char_inc.asp"-->
<HTML>
<HEAD>
<TITLE>Untitled Document</TITLE>
<META http-equiv="Content-Type" content="text/html; charset=gb2312">
<LINK rel="stylesheet" href="image/style.css" type="text/css">
</HEAD>
<body text="#000000" leftmargin="10" topmargin="10" bgcolor="#FFFFFF">
<%
Set Conn = Server.CreateObject("ADODB.Connection")
Conn.Open StrConn
%>
<!--#INCLUDE FILE="checkadmin.asp"-->
<%
if request("step") = "2" then
if request("userid") <> "" then
if not IsNumeric(request("userid")) then error = "userid必须为数字"
else
error = "userid不能为空"
end if
if error <> "" then
%>
<table width="100%" border="0" cellspacing="1" cellpadding="4" align="center">
<tr>
<td bgcolor="#D1E3BF">错误:<br>
<%= error %></td>
</tr>
</table>
<%
response.end
else
userid = clng(request("userid"))
end if
if request("action") = "" then
' 一般的用户资料操作
error = ""
err = false
if request("password") <> "" then
if strLength(request("password")) < 6 or request("password") <> request("password2") then error = error & "<br><li>密码错误"
end if
if not IsValidEmail(request("email")) then error = error & "<br><li>email错误"
if request("sign") <> "" then
if strLength(request("sign")) > 200 then error = error & "<br><li>签名错误"
end if
if not IsNumeric(request("usergroup")) then
error = error & "<br><li>用户类别错误"
else
usergroup = cint(request("usergroup"))
end if
if request("defineavatar") = "1" then
err = false
if request("defineavatarpath") = "" or strLength(request("defineavatarpath")) < 10 then err = true
if (not IsNumeric(request("avatarwidth"))) or (not IsNumeric(request("avatarheight"))) then
err = true
else
if cint(request("avatarwidth")) > 120 or cint(request("avatarheight")) > 120 then err = true
end if
if err then error = error & "<br><li>自定义头像错误"
end if
if error <> "" then
%>
<table width="100%" border="0" cellspacing="1" cellpadding="4" align="center">
<tr>
<td bgcolor="#D1E3BF">错误:<br>
<%= error %></td>
</tr>
</table>
<%
response.end
end if
sex = request("sex")
if sex <> "1" and sex <> "2" then sex = "0"
StrSql = "update sf_user set"
if request("password") <> "" then
StrSql = StrSql & " password = '" & md5(ChkSql(request("password"))) & "',"
end if
if not IsValidEmail(request("email")) then StrSql = Str & " email = '" & ChkSql(request("email")) & "',"
StrSql = StrSql & " homepage = '" & ChkSql(server.htmlencode(request("homepage"))) & "', "
StrSql = StrSql & " qq = '" & ChkSql(server.htmlencode(request("qq"))) & "', "
StrSql = StrSql & " usertitle = '" & ChkSql(request("usertitle")) & "', "
StrSql = StrSql & " [like] = '" & ChkSql(server.htmlencode(request("like"))) & "', "
StrSql = StrSql & " rating = '" & ChkSql(server.htmlencode(request("rating"))) & "', "
StrSql = StrSql & " posts = '" & ChkSql(server.htmlencode(request("posts"))) & "', "
StrSql = StrSql & " sex = " & sex & ", "
StrSql = StrSql & " usergroup = " & usergroup & ", "
StrSql = StrSql & " country = '" & ChkSql(server.htmlencode(request("country"))) & "', "
StrSql = StrSql & " signature = '" & ChkSql(server.htmlencode(request("sign"))) & "', "
if request("showmail") = "1" then
StrSql = StrSql & " showemail = 0, "
else
StrSql = StrSql & " showemail = 1, "
end if
if request("invisible") = "1" then
StrSql = StrSql & " invisible = 1, "
else
StrSql = StrSql & " invisible = 0, "
end if
if request("defineavatar") = "1" then
StrSql = StrSql & " avatar = '', "
else
StrSql = StrSql & " avatar = '" & ChkSql(server.htmlencode(request("avatar"))) & "', "
end if
StrSql = StrSql & " defineavatar = '" & ChkSql(server.htmlencode(request("defineavatarpath"))) & "', "
StrSql = StrSql & " avatarwidth = " & ChkSql(request("avatarwidth")) & ", "
StrSql = StrSql & " avatarheight = " & ChkSql(request("avatarheight"))
StrSql = StrSql & " where userid = " & userid & ""
Conn.Execute(StrSql)
%>
<table width="100%" border="0" cellspacing="1" cellpadding="4" align="center">
<tr>
<td bgcolor="#D1E3BF" align="center">用户资料修改完毕</td>
</tr>
</table>
<%
else
' 特别操作
if request("action") = "delall" then
Conn.execute("delete from sf_thread where postuserid = " & userid)
Conn.execute("delete from sf_post where userid = " & userid)
Conn.execute("delete from sf_attachment where userid = " & userid)
Conn.execute("delete from sf_user where userid = " & userid)
' 更新统计
Set rs2 = Conn.Execute("select top 1 userid, username from sf_user order by userid desc")
Conn.execute("update sf_counter set lastuser='"& rs2("username") &"', lastuserid="& rs2("userid") &"")
end if
if request("action") = "delpost" then
Conn.execute("delete from sf_thread where postuserid = " & userid)
Conn.execute("delete from sf_post where userid = " & userid)
Conn.execute("delete from sf_attachment where userid = " & userid)
end if
%>
<table width="100%" border="0" cellspacing="1" cellpadding="4" align="center">
<tr>
<td bgcolor="#D1E3BF" align="center">用户特别修改完毕</td>
</tr>
</table>
<%
end if
else
errstr = "<LI>没有指定用户名或用户序号中的任意一个参数<BR>"
if request("userid") <> "" then
strsql = "select * from sf_user where userid=" & request("userid")
errstr = ""
end if
if request("username") <> "" then
strsql = "select * from sf_user where username='" & request("username") & "'"
errstr = ""
end if
if errstr <> "" then
%>
<table width="100%" border="0" cellspacing="1" cellpadding="4" align="center">
<tr>
<td bgcolor="#D1E3BF">错误:<br>
<%= errstr %></td>
</tr>
</table>
<%
else
Set rs = Conn.Execute(StrSql)
if not(rs.bof or rs.eof) then
%>
<!--#INCLUDE FILE="../inc/inc.js"-->
<form name="form1" method="post" action="edituser.asp">
<table width="100%" border="0" cellspacing="1" cellpadding="4" align="center">
<tr>
<td bgcolor="#D1E3BF" align="center" colspan="2"><b>用户信息设置</b></td>
</tr>
<tr bgcolor="#F5F5F5">
<td width="30%" align="right">用户名:</td>
<td width="70%"><% =rs("username") %></td>
</tr>
<tr bgcolor="#F5F5F5">
<td width="30%" align="right">注册日期:</td>
<td width="70%"><% =rs("joindate") %></td>
</tr>
<tr bgcolor="#F5F5F5">
<td width="30%" align="right">IP:</td>
<td width="70%"><% =rs("ipaddress") %></td>
</tr>
<tr bgcolor="#F5F5F5">
<td width="30%" align="right">头衔:</td>
<td width="70%"><input type="text" name="usertitle" maxlength="50"
value="<% =rs("usertitle") %>" size="20">(如果为空则使用默认头衔)</td>
</tr>
<tr>
<td valign="top" colspan="2">如果您不想修改该用户密码,则请保持新密码框为空</td>
</tr>
<tr bgcolor="#F5F5F5">
<td align="right">新密码:</td>
<td><input type="password" name="password" maxlength="50" size="16"> </td>
</tr>
<tr bgcolor="#F5F5F5">
<td align="right">重复输入新密码:</td>
<td><input type="password" name="password2" maxlength="50" size="16"> </td>
</tr>
<tr bgcolor="#F5F5F5">
<td align="right">性别:</td>
<td><input type="radio" name="sex" value="1"
<% if rs("sex")=1 then response.write "checked" %>> 帅哥 <input type="radio"
name="sex" value="2" <% if rs("sex")=2 then response.write "checked" %>> 美女
<input type="radio" name="sex" value="0"
<% if rs("sex")=0 then response.write "checked" %>> 保密</td>
</tr>
<tr bgcolor="#F5F5F5">
<td align="right">email:</td>
<td><input type="text" name="email" maxlength="50" size="25"
value="<% =rs("email") %>"> </td>
</tr>
<tr bgcolor="#F5F5F5">
<td align="right">来自:</td>
<td><input type="text" name="country" maxlength="50" size="20"
value="<% =rs("country") %>"> </td>
</tr>
<tr bgcolor="#F5F5F5">
<td align="right">QQ:</td>
<td><input type="text" name="qq" maxlength="20" size="12"
value="<% =rs("qq") %>"> </td>
</tr>
<tr bgcolor="#F5F5F5">
<td align="right">主页:</td>
<td><input type="text" name="homepage" maxlength="100" size="50"
value="<% =rs("homepage") %>"> </td>
</tr>
<tr bgcolor="#F5F5F5">
<td align="right">生日:</td>
<td>
<%
if rs("birthday") <> "1900-1-1" then
response.write rs("birthday")
else
response.write "未设置"
end if
%> </td>
</tr>
<tr bgcolor="#F5F5F5">
<td align="right">爱好:</td>
<td><input type="text" name="like" maxlength="50" size="20"
value="<% =rs("like") %>"> </td>
</tr>
<tr>
<td>发贴及积分修改选项</td>
<td> </td>
</tr>
<tr>
<td bgcolor="#F0F0F0">
<p align="right">发贴:</td>
<td bgcolor="#F0F0F0"><input type="text" name="posts" maxlength="50" size="20"
value="<% =rs("posts") %>"></td>
</tr>
<tr>
<td bgcolor="#F0F0F0">
<p align="right">积分:</td>
<td bgcolor="#F0F0F0"><input type="text" name="rating" maxlength="50" size="20"
value="<% =rs("rating") %>"></td>
</tr>
<tr bgcolor="#F5F5F5">
<td>使用论坛自带头像(默认)</td>
<td>
<%
avatar = rs("avatar")
if avatar = "" then avatar = "1.gif"
Set rs2 = Conn.Execute("select title, avatarpath from sf_avatar")
response.write "<select name=""avatar"" size=""5"" onChange=""document.images['avatarimg'].src='../image/avatar/'+options[selectedIndex].value;"">"
if not(rs2.bof or rs2.eof) then
do until rs2.eof
response.write chr(10) & "<option value=""" & rs2("avatarpath") & """"
if rs2("avatarpath") = avatar then
response.write " selected"
avatar = rs2("avatarpath")
end if
response.write ">" & rs2("title") & "</option>"
rs2.movenext
loop
end if
response.write "</select>"
response.write chr(10) & "<img id=""avatarimg"" src=""" & "../image/avatar/" & avatar & """>"
%> </td>
</tr>
<tr bgcolor="#FAFAFA">
<td>
<%
if rs("avatar") = "" then
response.write "<input type=""checkbox"" name=""defineavatar"" value=""1"" checked>使用自定义头像"
else
response.write "<input type=""checkbox"" name=""defineavatar"" value=""1"">使用自定义头像"
end if
%> </td>
<td>图片URL路径: <input type="text" name="defineavatarpath" maxlength="250"
size="50" value="<% =rs("defineavatar") %>"> <br>
<br>
图片宽度: <input type="text" name="avatarwidth" maxlength="3" size="3"
value="<% =rs("avatarwidth") %>"> 图片高度: <input type="text" name="avatarheight"
maxlength="3" size="3" value="<% =rs("avatarheight") %>"> (宽高不得超过120) </td>
</tr>
<tr bgcolor="#F5F5F5">
<td align="right" valign="top">个性签名:</td>
<td><textarea name="sign" cols="75" rows="6"><% =rs("signature") %></textarea></td>
</tr>
<tr bgcolor="#F5F5F5">
<td align="right">隐身登录:</td>
<td><input type="checkbox" name="invisible" value="1"
<% if rs("invisible")=1 then response.write "checked" %>>(登录后在线名单中将不显示用户的名字)
</td>
</tr>
<tr bgcolor="#F5F5F5">
<td align="right">隐藏E-mail地址:</td>
<td><input type="checkbox" name="showmail" value="1"
<% if rs("showemail")=0 then response.write "checked" %>>(别人将无法看到用户的email) </td>
</tr>
<tr bgcolor="#F0F0F0">
<td align="right">特别操作:</td>
<td><input type="radio" name="action" value checked><b>不进行任何特别操作(默认)</b></td>
</tr>
<tr bgcolor="#F0F0F0">
<td></td>
<td><input type="radio" name="action" value="delall"><font color="red">删除该用户(包括所发的所有帖子)</font></td>
</tr>
<tr bgcolor="#F0F0F0">
<td></td>
<td><input type="radio" name="action" value="delpost"><font color="red">删除该用户所发的所有帖子</font></td>
</tr>
<tr bgcolor="#F5F5F5">
<td align="right">用户类别:</td>
<td><select name="usergroup">
<option value="0" <%if rs("usergroup") = 0 then response.write " selected"%>>用户
</option>
<option value="1" <%if rs("usergroup") = 1 then response.write " selected"%>>贵宾
</option>
<option value="2" <%if rs("usergroup") = 2 then response.write " selected"%>>版主
</option>
<option value="3" <%if rs("usergroup") = 3 then response.write " selected"%>>总版主
</option>
<option value="4" <%if rs("usergroup") = 4 then response.write " selected"%>>管理员
</option>
</select><br>
此处修改用户类别只影响显示, 可以用来修复用户的类别错误<br>
(版主或管理员权限需要进行其它相关设置后才会真正有效) </td>
</tr>
<tr align="center" bgcolor="#DDDDDD">
<td colspan="2" height="3"></td>
</tr>
<tr align="center">
<td colspan="2"><input type="hidden" name="step" value="2"><input type="hidden" name="userid" value="<% = rs("userid") %>"><input type="submit" name="Submit" value="确 定">
</td>
</tr>
</table>
</form>
<%
else
%>
<table width="100%" border="0" cellspacing="1" cellpadding="4" align="center">
<tr>
<td bgcolor="#D1E3BF" align="center">该用户不存在 <a href="userlist.asp">返回</a></td>
</tr>
</table>
<%
end if
end if
end if
%>
</body>
</html>
⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -