📄 chklogin.asp
字号:
<!--#include file="conn_And_Config.asp"-->
<!--#include file="inc/md5.asp"-->
<%
dim to_url:to_url=rst("from_url")
if to_url="" then to_url="index.asp"
Dim Cnbbr_RndCode
Cnbbr_RndCode=CStr(Trim(session("Cnbbr_RndCode")))
if Cnbbr_RndCode="" then
Call AlertInfo("验证码检验失败,请重新登陆系统!","LOGIN.asp",1)
elseif Cnbbr_RndCode<>cStr(Request.Form("RndCode")) then
Call AlertInfo("验证码检验失败,请重新登陆!","LOGIN.asp",1)
else
session("Cnbbr_RndCode")=""
end if
Dim uname,upass,upass_org
uname=Lcase(CheckStr(Trim(Request.Form("username"))))
upass_org=Lcase(CheckStr(Trim(Request.Form("userpass"))))
if uname="" or upass_org="" then Call AlertInfo("用户登陆失败,请重新登陆!","Login.asp",1)
if len(uname)<5 or len(upass_org)<6 then Call AlertInfo("用户登陆失败,请重新登陆!","Login.asp",1)
if out_Status=1 then
upass=md5(upass_org,cBBROutMd5Byte)
else
upass=md5(upass_org,cBBRMd5Byte)
end if
Dim RsuPass
if Out_Status=1 then
On Error Resume Next
Dim Out_Conn,Out_connStr
If Out_IsSql=1 Then
Out_ConnStr = "Provider = Sqloledb; User ID = " & Out_SqlLoginUser & "; Password = " & Out_SqlLoginPass & "; Initial Catalog = " & Out_SqlDB & "; Data Source = " & Out_Path & ";"
Else
Out_ConnStr = "Provider = Microsoft.Jet.OLEDB.4.0;Data Source = " & Server.MapPath(Out_Path)
End If
Set out_conn = Server.CreateObject("ADODB.Connection")
out_conn.open out_ConnStr
if Err Then call AlertInfo("对不起,系统外接用户库有误,请联系管理员!","login.asp",1)
Dim RsOutConn
sql="select "& out_user &","& out_pass &" from "& out_table &" where "& out_user &"='"& uname &"' and "& out_pass &"='"& upass &"'"
set rsoutconn=server.createobject("ADODB.recordset")
rsoutconn.open sql,out_conn,1,1
if rsoutconn.eof then call AlertInfo("对不起,用户名和密码不匹配或者已经被锁定,请重新登陆!","login.asp",1)
On Error Resume Next
sql="select * from users where regusername='"&uname&"'"
set rsupass=server.createobject("adodb.recordset")
rsupass.open sql,conn,1,3
if rsupass.eof then
rsupass.addnew
rsupass("RegAdmin")="N"
rsupass("RegVaildated")="N"
rsupass("regusername")=uname
rsupass("regpassword")=upass
rsupass("BBrMoney")=0
rsupass("regtime")=now()
rsupass("userlogintimes")=1
rsupass.update
sql="select * from users where regusername='"&uname&"' and regpassword='"&upass&"'"
set rsupass=server.createobject("adodb.recordset")
rsupass.open sql,conn,1,1
if rsupass.eof then
Call AlertInfo("对不起,外部系统用户转为当前系统用户失败!","index.asp",1)
else
if Err then Call AlertInfo("操作出现异常错误,用户注册失败,请返回重新注册!","",0)
if SysCount(1,1)=False then Call AlertInfo("操作出现异常错误,用户注册失败,请返回重新注册!","",0)
Response.Cookies(super_user)("uid")=rsupass("regid")
Response.Cookies(super_user)("uname")=uname
Response.Cookies(super_user)("ccnnbbbbrrkey")=super_user
Call AlertInfo("外部用户成功转换为系统用户登陆!","BBRinfo_change.asp",1)
end if
else
Response.Cookies(super_user)("uid")=rsupass("regid")
Response.Cookies(super_user)("uname")=uname
Response.Cookies(super_user)("ccnnbbbbrrkey")=super_user
Userpass_Org=md5(Userpass_Org,cBBRMd5Byte)
sql="update users set regUserpass='"& Userpass_Org &"' and userlogintimes=userlogintimes+1 where regid="&rsupass("regid")
conn.execute(sql)
end if
response.redirect to_url
response.End
else
Set RsuPass=Conn.execute("Select * from Users Where regAdmin='N' and RegUserName='"& UName &"' and RegPassWord='"& UPass &"'")
if RsuPass.Eof or RsuPass.Bof then Call AlertInfo("对不起,用户名和密码不匹配或者已被锁定!请重新登陆!","Login.asp",1)
if Cstr(UName)=Cstr(rsupass("regusername")) then
if RsUpass("RndPass")="1" then
Response.Cookies(super_user)("uid")=rsupass("regid")
Response.Cookies(super_user)("uname")=uname
Response.Cookies(super_user)("ccnnbbbbrrkey")=super_user
sql="update users set userlogintimes=userlogintimes+1 where regid="&rsupass("regid")
conn.execute(sql)
response.redirect to_url
Response.End
else
Call AlertInfo("对不起,你还没有激活你的邮件,请查收你的注册邮箱并激活帐户!\n你注册的邮箱地址是:"& RsUpass("regEmail"),"index.asp",1)
end if
else
Call AlertInfo("对不起,用户名和密码不匹配或者已被锁定!请重新登陆!","Login.asp",1)
end if
end if
rsupass.close
set rsupass=nothing
%>
⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -