login.aspx

新闻发布系统

<%@ Page Language="VB" ContentType="text/html"%>
<%@ Import Namespace="System.Data"%>
<%@ Import Namespace="System.Data.OleDb"%>
<%@ Register TagPrefix="mynews" TagName="top" src="ascx/top.ascx"%>
<%@ Register TagPrefix="mynews" TagName="end" src="ascx/end.ascx"%>
<html>
<head>
<title>管理员登陆</title>
<link rel="stylesheet" href="style.css">
<meta http-equiv="Content-Type" content="text/html; charset=gb2312">
</head>
<body>
<mynews:top runat="server"/>
<form runat="server">
<table width="50%" border="1" cellspacing="0" cellpadding="1" align="center"
      bordercolordark="#ecf5ff" bordercolorlight="#6699cc">
        <tr>
          <td><table width="100%" border="0" cellspacing="1" cellpadding="1">
            <tr>
                      <td width="33%" align="right" height="30">用户名：</td>
              <td width="67%"><asp:textbox ID="username" MaxLength="20" Columns="20" class="smallInput" runat="server"/>
			  </td>
            </tr>
            <tr>
                      <td width="33%" align="right" height="30">密 码：</td>
              <td width="67%"><asp:textbox ID="passward" MaxLength="20" Columns="20" TextMode="Password" class="smallInput" runat="server"/></td>
            </tr>
            <tr>
              <td colspan="2" height="15"><asp:label ID="message" runat="server"/></td>
            </tr>
          </table>
          </td>
        </tr>
        <tr align="center">
          <td height="40">
                  <asp:button ID="add" Text="登录" OnClick="addclick" class="buttonface" runat="server"/> <asp:button ID="cancel" Text="取消" OnClick="cancelclick" class="buttonface" runat="server"/>
                   </td>
        </tr>
      </table></form>
	  <mynews:end runat="server"/>
</body>
</html>
<script language="VB" runat="server">
Dim sql as string
Dim myConn as OleDbConnection
Dim myCmd as OleDbCommand

function getdatareader(sql as string) as OleDbDataReader
   myCmd=new OleDbCommand(sql,myConn)
   myConn.open()
   getdatareader=myCmd.ExecuteReader()
end function

Sub Page_Load(sender As Object, e As EventArgs)
Dim strConn as string
strConn="Provider=Microsoft.Jet.OLEDB.4.0;Data Source="&server.MapPath("./")&"data/news.mdb"
myConn=new OleDbConnection(strConn)
if page.request("action")="logout" then
   session("user")=""
   response.write("user is:<br>")
   response.write(session("user"))
end if 
end sub
sub addclick(sender as Object,e as EventArgs)
   if username.text="" then
      message.text="请输入用户名！"
   else
      if passward.text="" then
	     message.text="请输入口令！"
	  else
         sql="select username,passward from Admin where username='"& trim(username.text) &"'"
		 dim userid,pass as string
		 dim user as OleDbDataReader=getdatareader(sql)
		 while user.read()
		    userid=user.Item(0)
			pass=user.Item(1)
		 end while
		 myConn.close()
		 if userid="" then
		    message.text="用户名不存在，请重新输入！"
			username.text=""
			passward.text=""
		 else
		    if pass=passward.text then
			   session("user")="administrator"
			   message.text=""
			   response.Redirect("newsmanager.aspx")
			else
			   message.text="口令错误！"
			   passward.text=""
			end if
		 end if
      end if
   end if     
end sub
sub cancelclick(sender as Object,e as eventArgs)
   message.text=""
   username.text=""
   passward.text=""   
end sub
</script>