checkusr.asp

在根目录下存放着系统登陆以及实现用户功能的网页文件

<!--#include file="conn.inc"
'连接数据库
-->
<%
userid=request("userid")
pwd=request("pwd")
kind=request("kind")
'接收表单信息
sql="select * from cadre_info where userid='"&userid&"' and pwd='"&pwd&"'"
response.write sql
set rs=conn.execute(sql)
if rs.eof then
'如果不存在对应的用户密码
  response.redirect "loginleftframe.asp?temp=error"
else
'如果用户密码检验正确
  userid=rs("userid")
  username=rs("username")
  department=rs("department")
  office=rs("office")
  duties=rs("duties")
  post=rs("post")
  rank=rs("rank")
  ifadmin=rs("ifadmin")
  rs.close  
end if
if kind="A"  then
'如果用户想要以管理员身份进入
  if ifadmin=true then
  '如果用户拥有管理员权限
    Response.Cookies("userid")=userid
    Response.Cookies("username")=username
    Response.Cookies("pwd")=pwd
    Response.Cookies("department")=department
    Response.Cookies("office")=office
    Response.Cookies("duties")=duties
    Response.Cookies("POST")=post
    Response.Cookies("rank")=rank  
    Response.Cookies("ifadmin")=ifadmin
    response.redirect "admindefault.asp"
  else
  '如果用户没有管理员权限
    response.redirect "loginleftframe.asp?temp=nota"
    end if   
else
'如果用户想要以普通考生身份进入
    Response.Cookies("userid")=userid
    Response.Cookies("username")=username
    Response.Cookies("pwd")=pwd
    Response.Cookies("department")=department
    Response.Cookies("office")=office
    Response.Cookies("duties")=duties
    Response.Cookies("POST")=post
    Response.Cookies("rank")=rank  
    response.redirect "default.asp"
end if
%>