📄 adminlogin.asp
字号:
<!--#INCLUDE FILE="../inc/db_inc.asp"-->
<!--#INCLUDE FILE="../inc/md5_inc.asp"-->
<!--#INCLUDE FILE="../inc/char_inc.asp"-->
<HTML>
<HEAD>
<TITLE>Untitled Document</TITLE>
<META http-equiv="Content-Type" content="text/html; charset=gb2312">
<LINK rel="stylesheet" href="image/style.css" type="text/css">
</HEAD>
<BODY bgcolor="#FFFFFF" text="#000000" leftmargin="10" topmargin="10">
<%
username = ChkSql(request("username"))
password = ChkSql(request("password"))
loginerr = true
if username<>"" and password<>"" then
Set Conn = Server.CreateObject("ADODB.Connection")
Conn.Open StrConn
StrSql = "select userid from sf_user where username = '" & username & "' and password='" & md5(password) & "'"
Set rs = Conn.Execute(StrSql)
if not(rs.bof or rs.eof) then
StrSql = "select * from sf_moderator where userid = " & rs("userid") & " and isadmin = 1"
Set rs = Conn.Execute(StrSql)
if not(rs.bof or rs.eof) then
loginerr = false
session("sfadminname") = username
session("sfadminpw") = md5(password)
Conn.Execute(strsql)
end if
end if
rs.close
set rs = nothing
end if
if session("sfadmin") then loginerr = false
if loginerr then
%>
<TABLE width="100%" border="0" cellspacing="1" cellpadding="4" align="center">
<TR>
<TD height="30"></TD>
</TR>
<TR>
<TD align="center" bgcolor="#E4EEDB"> 您输入的管理员名称和密码错误,请重新输入,如果您不是管理员,请离开.</TD>
</TR>
<TR>
<TD align="center"> </TD>
</TR>
<TR>
<TD align="center">
<FORM name="form1" method="post" action="adminlogin.asp">
管理员名称:
<INPUT type="text" name="username" size="10" maxlength="30">
密码:
<INPUT type="password" name="password" size="10" maxlength="30">
<INPUT type="submit" name="Submit" value="确 定">
</FORM>
</TD>
</TR>
</TABLE>
<%
else
session("sfadmin") = true
Set Conn = Server.CreateObject("ADODB.Connection")
Conn.Open StrConn
%>
<TABLE width="100%" border="0" cellspacing="1" cellpadding="4" align="center" background ="image/title.gif">
<TR>
<TD align="center" bgcolor="#D1E3BF"><B>控制台登录成功</B> (您的IP: <%=Request.ServerVariables("REMOTE_ADDR")%>)</TD>
</TR>
<TR>
<TD>服务器名称: <%=Request.ServerVariables("SERVER_SOFTWARE")%> 时间: <%=now()%> 服务器IP: <%=Request.ServerVariables("LOCAL_ADDR")%></TD>
</TR>
<TR>
<TD>服务器类型: <%=Request.ServerVariables("OS")%> 服务器CPU数量: <%=Request.ServerVariables("NUMBER_OF_PROCESSORS")%> 服务器端口: <%=Request.ServerVariables("SERVER_PORT")%></TD>
</TR>
<TR>
<TD>站点物理路径: <%=request.ServerVariables("APPL_PHYSICAL_PATH")%></TD>
</TR>
<TR>
<TD>服务器解译引擎: <%=ScriptEngine%> v<%=ScriptEngineMajorVersion & "." & ScriptEngineMinorVersion & " (Build:" & ScriptEngineBuildVersion & ")" %></TD>
</TR>
<TR>
<TD>当前脚本绝对路径: <%=Server.MapPath("adminlogin.asp")%></TD>
</TR>
<TR>
<TD></TD>
</TR>
</TABLE>
<TABLE width="100%" border="0" cellspacing="1" cellpadding="4" align="center">
<FORM name="form1" method="post" action="edituser.asp">
<TR>
<TD bgcolor="#E4EEDB" colspan="2"><B>快速修改用户</B></TD>
</TR>
<TR bgcolor="#F9F9F9">
<TD width="20%">用户名:</TD><TD><INPUT type="text" name="username" size="30"> <INPUT type="submit" name="Submit" value="查 找"></TD>
</TR>
<TR bgcolor="#F5F5F5">
<TD>用户序号:</TD><TD><INPUT type="text" name="userid" size="6"> <INPUT type="submit" name="Submit2" value="查 找"></TD>
</TR>
</FORM>
<FORM name="form1" method="post" action="editforum.asp">
<TR>
<TD bgcolor="#E4EEDB" colspan="2"><B>快速修改版块</B></TD>
</TR>
<TR bgcolor="#F5F5F5">
<TD width="20%">选择版块:</TD><TD>
<select name="id">
<%
strsql = "select sf_forum.forumid, sf_forum.title from sf_forum left join sf_cate on (sf_forum.cateid = sf_cate.cateid) order by sf_cate.displayorder DESC, sf_cate.cateid ASC, sf_forum.displayorder DESC, sf_forum.forumid ASC"
Set rs = Conn.Execute(strsql)
if not(rs.bof or rs.eof) then
do until rs.eof
response.write "<option value=""" & rs("forumid") & """>" & ChkSql(rs("title")) & "</option>"
rs.movenext
loop
end if
%>
</select> <INPUT type="submit" name="Submit3" value="确 定">
</TD>
</TR>
</TABLE>
</FORM>
<!--#INCLUDE FILE="../inc/inc.js"-->
<%
end if
%>
</BODY>
</HTML>
⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -