adminpass.asp

一个朋友购买的商业版房产网源程序

<!--#include file="conn.asp"-->
<!--#include file="pass.asp"-->
<%
if request.QueryString("gn")="pass" then
   user =Replace(Trim(Request.Form("user")),"'","''")
   pass=Replace(Trim(Request.Form("pass")),"'","''")
   new_pass=Replace(Trim(Request.Form("new_pass")),"'","''")
   set rs2=server.CreateObject("adodb.recordset")
   sql2="select * from Admin where password='"& pass &"'"
   rs2.open sql2,conn,1,3
   if rs2.bof then
  	   Response.Write("<script language=javascript>alert('原密码输入错误！！！');history.back();</script>")
	else
	rs2("password")=new_pass
	rs2("admin")=user
	rs2.update  
	Response.Write("<script language=javascript>alert('用户名密码更改成功！！！');location.replace('main.asp')</script>")
	end if 
end if
%>
<SCRIPT language="javascript">
<!--
function del_space(s)
{
	for(i=0;i<s.length;++i)
	{
	 if(s.charAt(i)!=" ")
		break;
	}

	for(j=s.length-1;j>=0;--j)
	{
	 if(s.charAt(j)!=" ")
		break;
	}

	return s.substring(i,++j);
}

function VerifySubmit()
{
	user = del_space(document.all("user").value);
     if (user.length == 0)
     {
        alert("您忘了填写管理员名称!");
	return false;
     }
	 
	 pass = del_space(document.all("pass").value);
     if (pass.length == 0)
     {
        alert("管理员密码不能为空！");
	return false;
     }
	 
	 new_pass = del_space(document.all("new_pass").value);
     if (new_pass.length == 0)
     {
        alert("新管理员密码不能为空！");
	return false;
     }

	new_pass = del_space(document.all("new_pass").value);
     if (new_pass.length < 6)
     {
        alert("新管理员密码不能小于6位字符！");
	return false;
     }

	new_pass2 = del_space(document.all("new_pass2").value);
     if (new_pass2!=new_pass)
     {
        alert("两次输入的口令不相同,请重新填写!");
		return false;
     }
	 
	return true;
}
//-->
</SCRIPT>
<%
sql="select * from counst"
set rs=conn.execute(sql)
%>
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=gb2312">
<title><% =rs("W_name") %></title>
<link href="images/css.css" rel="stylesheet" type="text/css">
</head>

<body bgcolor="#BBDDFF">
<%
sql3="select * from Admin"
set rs3=conn.execute(sql3)
%>
<FORM action="adminpass.asp?gn=pass" method="post" name="regform" onSubmit="return VerifySubmit()">
  <table width="60%" border="0" align="center" cellpadding="0" cellspacing="0">
    <tr>
      <td><table width="100%" border="0" cellspacing="0" cellpadding="5">
          <tr> 
            <td width="37%"><div align="right">原管理员名称：</div></td>
            <td colspan="2"><input name="user" type="text" id="user" value="<% =rs3("admin") %>">
            </td>
          </tr>
          <tr> 
            <td><div align="right">原管理员密码：</div></td>
            <td colspan="2"><input name="pass" type="password" id="pass"></td>
          </tr>
          <tr> 
            <td><div align="right">新管理员密码：</div></td>
            <td colspan="2"><input name="new_pass" type="password" id="new_pass"></td>
          </tr>
          <tr> 
            <td><div align="right">重复输入新管理员密码：</div></td>
            <td colspan="2"><input name="new_pass2" type="password" id="new_pass2"></td>
          </tr>
          <tr> 
            <td><div align="right"> </div></td>
            <td width="18%"><input type="submit" name="Submit" value="修改"></td>
            <td width="45%"><input type="reset" name="Submit2" value="重置"></td>
          </tr>
        </table></td>
    </tr>
  </table>
</form>
</body>
</html>