📄 editadmin.asp
字号:
<!--#INCLUDE FILE="../inc/db_inc.asp"-->
<!--#INCLUDE FILE="../inc/md5_inc.asp"-->
<!--#INCLUDE FILE="../inc/char_inc.asp"-->
<HTML>
<HEAD>
<TITLE>Untitled Document</TITLE>
<META http-equiv="Content-Type" content="text/html; charset=gb2312">
<LINK rel="stylesheet" href="image/style.css" type="text/css">
</HEAD>
<BODY bgcolor="#FFFFFF" text="#000000" leftmargin="10" topmargin="10">
<%
Set Conn = Server.CreateObject("ADODB.Connection")
Conn.Open StrConn
%>
<!--#INCLUDE FILE="checkadmin.asp"-->
<%
if request("step") = "2" then
errstr = ""
if request("newadminname") = "" then errstr = errstr & "<LI>新管理员名字不得为空<BR>"
if request("newadminname2") = "" then errstr = errstr & "<LI>必须重复输入新管理员名字<BR>"
if request("newadminname") <> request("newadminname2") then errstr = errstr & "<LI>两次输入的新管理员名字不同<BR>"
oldadminname = ChkSql(request("oldadminname"))
newadminname = ChkSql(request("newadminname"))
password = md5(ChkSql(request("password")))
if errstr = "" then
strsql = "select userid from sf_moderator where isadmin = 1 and username = '" & oldadminname & "'"
Set rs = Conn.Execute(StrSql)
if rs.bof or rs.eof then
errstr = errstr & "<LI>原管理员不存在<BR>"
else
olduserid = rs("userid")
strsql = "select top 1 userid from sf_user where userid =" & olduserid & " and password='" & password & "'"
Set rs = Conn.Execute(StrSql)
if rs.bof or rs.eof then
errstr = errstr & "<LI>原密码错误<BR>"
else
strsql = "select top 1 userid from sf_user where username ='" & newadminname & "'"
Set rs = Conn.Execute(StrSql)
if rs.bof or rs.eof then
errstr = errstr & "<LI>新管理员不是论坛注册用户<BR>"
else
newuserid = rs("userid")
strsql = "update sf_moderator set username='" & newadminname & "', userid=" & newuserid & " where isadmin = 1 and username = '" & oldadminname & "'"
Conn.Execute(StrSql)
end if
end if
end if
end if
if errstr = "" then
session("sfadmin") = false
%>
<TABLE width="100%" border="0" cellspacing="1" cellpadding="4" align="center">
<TR>
<TD bgcolor="#D1E3BF" align="center">修改管理员完毕</TD>
</TR>
</TABLE>
<%
else
%>
<TABLE width="100%" border="0" cellspacing="1" cellpadding="4" align="center">
<TR>
<TD bgcolor="#D1E3BF">无法修改管理员:<BR><%= errstr %></TD>
</TR>
</TABLE>
<%
end if
else
StrSql = "select forumid, userid, username from sf_moderator"
Set rs = Conn.Execute(StrSql)
moderstr = ""
if not(rs.bof or rs.eof) then
do until rs.eof
if rs("forumid") = cint(request("forumid")) then moderstr = moderstr & rs("username") & ","
rs.MoveNext
loop
end if
%>
<FORM name="form1" method="post" action="editadmin.asp">
<TABLE width="100%" border="0" cellspacing="1" cellpadding="4" align="center">
<TR bgcolor="#D1E3BF" align="center">
<TD colspan="2"><B>修改管理员</B></TD>
</TR>
<TR bgcolor="#F5F5F5">
<TD width="40%" align="right">原管理员名称:</TD>
<TD>
<INPUT type="text" name="oldadminname" size="20">
</TD>
</TR>
<TR bgcolor="#FFFFFF">
<TD width="30%" align="right">密码:</TD>
<TD>
<INPUT type="password" name="password" size="20">
</TD>
</TR>
<TR bgcolor="#F5F5F5">
<TD align="right">新管理员名字:</TD>
<TD>
<INPUT type="text" name="newadminname" size="20">
</TD>
</TR>
<TR bgcolor="#FFFFFF">
<TD align="right">重复输入新管理员名字:</TD>
<TD>
<INPUT type="text" name="newadminname2" size="20">
</TD>
</TR>
<TR bgcolor="#DDDDDD">
<TD colspan="2">注意: 管理员必须为论坛已注册用户, 否则会提示无法修改.</TD>
</TR>
<TR align="center">
<TD colspan="2" bgcolor="#FFFFFF">
<INPUT type="hidden" name="step" value="2">
<INPUT type="submit" name="Submit" value="确 定">
</TD>
</TR>
</TABLE>
</FORM>
<%
end if
%>
</BODY>
</HTML>⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -