login.asp

K风搜索 2.1商业版 完整功能版 后台http://XXXXXX/admin/ 管理帐号：admin 管理密码：admin 安全密码： ks21 网站设置http://XXXXXX/

<!--#include file="../setup.asp"-->
<!--#include file="conn.asp"-->
<!--#include file="md5.asp"-->
<%
'================================================================================
'Product:K-Search Version 2.1
'本“软件产品”受《中华人民共和国著作权法》和《中华人民共和国计算机软件保护条例》 
'和国际条约的保护。如未经授权而擅自复制或传播本程序（或其中任何部分），将受到严厉
'的刑事及民事制裁，并将在法律许可的范围内受到最大可能的起诉！
'Homepage：http://www.lucoo.com/
'--------------------------------------------------------------------------------
'Copyright(c) 2005 lucoo.com All Rights Reserved 绿色互联 版权所有
'================================================================================
function filtration(str)
str=replace(str,chr(32),"")
str=replace(str,chr(34),"")
str=replace(str,chr(35),"")
str=replace(str,chr(37),"")
str=replace(str,chr(38),"")
str=replace(str,chr(39),"")
str=replace(str,chr(40),"")
str=replace(str,chr(41),"")
str=replace(str,chr(42),"")
str=replace(str,chr(43),"")
str=replace(str,chr(45),"")
str=replace(str,chr(46),"")
str=replace(str,chr(58),"")
str=replace(str,chr(59),"")
str=replace(str,chr(60),"")
str=replace(str,chr(61),"")
str=replace(str,chr(62),"")
filtration=str
end Function

select case request("action")
case "login"
call login()
case "loginout"
call loginout()
end select

sub login()

dim rs
dim username
dim password
dim password_ok

username=filtration(request.form("username"))
password=filtration(request.form("password"))
password_ok=filtration(request.form("pass"))
if username=""  then 
conn.close
set conn=nothing
response.write "<Script>window.alert('管理帐号不能空');history.go(-1);</Script>"
else
if password="" then
conn.close
set conn=nothing
response.write "<Script>window.alert('管理密码不能空');history.go(-1);</Script>"
else
if password_ok="" then
conn.close
set conn=nothing
response.write "<Script>window.alert('安全密码不能空');history.go(-1);</Script>"
else
set rs=server.createobject("adodb.recordset")
rs.open "select * from admin where username='"&username&"'",conn,1,1
if rs.eof then
rs.close
set rs=nothing
conn.close
set conn=nothing
response.write "<Script>window.alert('管理帐号错误！');javascript:history.back(1);</Script>"
response.end
else
if rs("password")<>md5(password) then
rs.close
set rs=nothing
conn.close
set conn=nothing
response.write "<Script>window.alert('管理密码错误！');javascript:history.back(1);</Script>"
response.end
else
if password_ok<>pass then
rs.close
set rs=nothing
conn.close
set conn=nothing
response.write "<Script>window.alert('安全密码错误！');javascript:history.back(1);</Script>"
response.end
else

session(admin_session)=rs("username")
session("rank")=rs("rank")
response.write "<Script>location.replace('main.asp');</Script>"
end if
end if
end if
rs.close
set rs=nothing
conn.close
set conn=nothing
end if
end if
end if
end sub

sub loginout()
session(admin_session)=""
session("rank")=""
response.write "<Script>location.replace('index.asp');</Script>"
end sub
%>