glcl.asp

经过一些更改的留言板

<!--#include file="data.asp"-->
<%
dim xxid,dz,name,pass, tname
dim exec, rs
xxid=encodestr(request.form("id"))
dz=encodestr(request.form("dz"))
name=encodestr(request.form("name"))
tname=encodestr(request.form("tname"))
pass=encodestr(request.form("pass"))

if xxid="" then
	connclose()
	session("errmsg")="非法操作！！！"
	response.redirect "glerror.asp"
end if

if session("bz")="bz" then
	main()
	connclose()
	response.redirect "glok.asp"
else
	exec="select * from blyh where name='"&name&"' and pass='"&pass&"' and bz=1"
	Set RS = Server.CreateObject("ADODB.RecordSet") 
	rs.Open exec, Conn, 1, 2
	if rs.eof then
		rsclose()
		connclose()
		session("errmsg")="管理员账号错误！！！"
		response.redirect "glerror.asp"
	else
			rsclose()
			main()
			connclose()
			session("bz")="bz"
			response.redirect "glok.asp"
	end if
end if


sub main()
	dim rootid
	select case dz
         case "s"
		 	exec="select rt,jh from ly where id="& Cstr(xxid)
			set rs=conn.execute(exec)
			'是根留言计数减
			if rs(0)=0 then
				exec="update const set topicNum=topicNum-1"
				conn.execute(exec)
			else
				exec="update ly set hf=hf-1 where id="& rs(0)
				conn.execute(exec)  
			end if
			'是精华计数减
			if rs(1)=1 then
				exec="update const set bestNum=bestNum-1"
				conn.execute(exec)
			end if
			rsclose()
            exec="delete from ly where id=" + CStr(xxid)
            conn.execute(exec)
         case "j"	'设为精华
		 	exec="select jh from ly where id="& Cstr(xxid)
			set rs=conn.execute(exec)
			if rs(0)=1 then
            	exec="update ly set jh=0 where id=" + CStr(xxid)
				conn.execute(exec)
				exec="update const set bestNum=bestNum-1"
				conn.execute(exec)
			else
            	exec="update ly set jh=1 where id=" + CStr(xxid)
				conn.execute(exec)
				exec="update const set bestNum=bestNum+1"
				conn.execute(exec)
			end if
	end select
end sub
%>