📄 admin_manager.asp
字号:
<!--#include file="admin_conn.asp"-->
<!--#include file="md5.asp"-->
<%
username=request("username")
id=request("id")
action=request("action")
dim cls
if session("admin")="" then
Response.Redirect("admin.asp")
else
if session("flag")<>"0" then
cls = Instr(session("flag"), "manager")
if cls <= 0 then
%>
<script language="javascript">
if (confirm("您的操作权限不够,系统拒绝你的访问,请点确定返回,或者点取消退出重新登录"))
location.href="admin.asp";
else
location.href="quit.asp";
</script>
<%
end if
end if
end if
%>
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=gb2312">
<link rel="stylesheet" href="admin.css" type="text/css">
<title>管理权限设置</title>
<style type="text/css"><!--
a:link {color: #FFFFFF;text-decoration: none;}
a:visited {color: #FFFFFF;text-decoration: none;}
a:hover {color: #FFFF99;text-decoration: underline;}
tr {color: #FFFFFF;}
--></style>
<SCRIPT LANGUAGE="JavaScript">
<!--
function CheckAll(form) {
for (var i=0;i<form.elements.length;i++) {
var e = form.elements[i];
if (e.name != 'chkall') e.checked = form.chkall.checked;
}
}
//-->
</SCRIPT>
</head>
<body topmargin="20" bgcolor="#336699" text=#ffffff>
<table border="0" cellpadding="2" cellspacing="5" style="border-collapse: collapse" bordercolor="#222222" width="760" height="150" bgcolor="#336699" align="center">
<tr><td width=125 valign="top">
<!--#include file="admin_left.asp"-->
</td><td valign="top">
<table border="1" cellpadding="2" cellspacing="4" style="border-collapse: collapse" bordercolor="#222222" width="100%">
<tr>
<td width="100%">当前位置:<a href="admin.asp">网站管理中心</a>--管理权限设置</td>
</tr>
<tr>
<td width="100%">
<%if action="" then
Set rs = conn.Execute("select * from admin order by id") %>
<table width="95%" border="1" style="border-collapse: collapse;border:dotted 1px" bordercolor="#333333" cellspacing="2" cellpadding="2" align="center">
<tr><td width=140><strong>管理员ID</strong></td>
<td><strong>编辑权限</strong></td>
<td width=100><strong>操作</strong></td>
</tr>
<%
do while not rs.eof
if session("id")=rs("id") then
%>
<tr><td><a href="admin.asp?action=password" alt="点击名称修改密码"><%=rs("username")%></a></td><td><a href="admin_manager.asp?action=detail&username=<%=rs("username")%>&id=<%=rs("id")%>">修改</a></td><td>当前管理员</td></tr>
<%else%>
<tr><td><%=rs("username")%></td><td><a href="admin_manager.asp?action=detail&username=<%=rs("username")%>&id=<%=rs("id")%>">修改</a></td><td><a href="admin_manager.asp?action=del&username=<%=rs("username")%>&id=<%=rs("id")%>">删除</a></td></tr>
<%
end if
rs.movenext
loop
rs.close
conn.close
set rs=nothing
set conn=nothing
%>
</table><br>
<table width="95%" border="1" style="border-collapse: collapse;border:dotted 1px" bordercolor="#333333" cellspacing="2" cellpadding="2" align="center"><form action="admin_manager.asp?action=adduserpost" name="list" method=post>
<tr><td colspan=2 align=center>增加管理员</td></tr>
<tr><td width=100>管理员名称</td><td><input type="text" name="username" size="20" maxlength="16"> [16位以内]</td></tr>
<tr><td width=100>管理员密码</td><td><input type="text" name="password" size="20" maxlength="16"> [16位以内]</td></tr>
<tr><td colspan=2><input type="hidden" name="flag" value=""><input type="submit" name="adduser" value="增加管理员"></td></tr>
</form>
</table>
<%else
end if%>
<%
'显示权限详细信息
if action="detail" then
set rs=conn.execute("select * from admin where username='"&username&"'")
if not rs.eof then
%>
<table border=1 style="border-collapse:collapse" bordercolor="#333333" width=98% align=center>
<form action="admin_manager.asp" method=post name=modify><tr>
<td>用户名</td><td>拥有权限</td></tr>
<tr><td valign="top"><%=rs("username")%></td><td>
<% set rs=conn.Execute("select * from admin where username='"&username&"'")
dim gradeType,sheet
gradeType="站点配置,产品管理,订单管理,用户管理,广告管理,新闻管理,帮助管理,支付管理,留言管理,系统清理,权限管理,密码修改"
gradeCode="config,prod,order,client,adv,news,faq,paytype,feedback,clearall,manager,password"
code=Split(gradeCode,",")
sheet=Split(gradeType,",")
for i=0 to ubound(sheet)
response.write "<input type=""checkbox"" name=""flag"" value="""&trim(code(i))&""""
if instr(rs("flag"),trim(code(i)))>0 then '如果有此项权利;
response.write " checked"
end if
response.write ">"&trim(sheet(i))&""
if ((i+1) mod 1)=0 then response.write "<br>" '每行显示1个权限
next
response.write character %>
</td></tr><tr><td>
<input type=hidden name=action value=modify><input type=hidden name=username value=<%=rs("username")%>></td><td><input type="submit" name="ok" value="提交"></tr></form></table>
<%else
response.write "没有找到合适的记录"
end if
rs.close
conn.close
else
end if%>
<%
'修改 后返回参数提交数据库
if action="modify" then
flag=checkreal(request.form("flag"))
Set rs=Server.CreateObject("ADODB.Recordset")
sql="select * from admin where username='"&username&"'"
rs.open sql,conn,3,3
rs("flag")=Server.Htmlencode(flag)
rs.update
url="admin_manager.asp?action=detail&username="&rs("username")
rs.close
conn.close
set rs=nothing
set conn=nothing
response.write "<script language='javascript'>"
response.write "alert('权限更新成功!');"
response.write "</script>"
Response.Redirect"admin_manager.asp"
else
end if%>
<%
if action="del" then
username=request("username")
id=request("id")
Dim StrSQL
StrSQL="delete from admin where username='"&username&"'"
conn.Execute StrSQL
conn.close
Response.Redirect"admin_manager.asp"
else
end if%>
</td></tr></table>
</td></tr>
</table>
</body></html>
<%if action="adduserpost" then
if request("username")="" or request("password")="" then
response.write "<script language='javascript'>"
response.write "alert('请输入要添加的管理员名称和密码');"
response.write "location.href='admin_manager.asp';"
response.write "</script>"
else
Set rs=Server.CreateObject("ADODB.Recordset")
sql="SELECT * FROM admin"
rs.Open sql,conn,1,3
rs.Addnew
rs("username")=Request("username")
rs("password")=md5(Request("password"))
rs("flag")=Server.Htmlencode(Request("flag"))
rs.Update
rs.Close
Set rs=Nothing
Response.Redirect"admin_manager.asp?action=detail&username="&Request("username")
end if
else
end if%>
<%
function checkreal(v)
dim w
if not isnull(v) then
w=replace(v,",","|")
w=replace(w," ","")
checkreal=w
end if
end function
%>
⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -