chkadmin.asp

用asp和access做的一个文学管理网站

<link rel="stylesheet" href="../style.css" type="text/css">
<!--#include file="conn.asp"-->
<%
	dim sql
	dim rs
	dim username
	dim password
	username=replace(trim(request("username")),"'","")
	password=replace(trim(Request("password")),"'","")

	
	sql="select username,password,flag from admin where password='"&password&"' and username='"&username&"'"
	set rs = conn.execute(sql)
 	if not(rs.bof and rs.eof) then
 		if password=rs(1) then
			session("admin")=rs(0)
			session("flag")=rs(2)
			Response.Redirect "main.asp"
 		else
			call Error
 		end if
	else
		call Error()
	end if

	sub Error()
    	response.write "   <br><br><br>"
    	response.write "    <table align='center' width='300' border='1' cellpadding='2' cellspacing='0' bordercolor='#ffffff'>"
    	response.write "      <tr bgcolor='#ffffff'> "
    	response.write "        <td colspan='2' height='15'> "
    	response.write "          <div align='center'><font color='#FFFFFF'>警告: 确认身份失败!</font></div>"
    	response.write "        </td>"
    	response.write "      </tr>"
    	response.write "      <tr> "
    	response.write "        <td colspan='2' height='23'> "
    	response.write "          <div align='center'><br><br>"
    	response.write "      警告:用户名或密码错误!!! <br><br>"
    	response.write "        <a href='javascript:onclick=history.go(-1)'><<<返回</a>"        
    	response.write "        <br><br></div></td>"
    	response.write "      </tr>   </table>" 
	end sub
	rs.close
	conn.close
	set rs=nothing
	set conn=nothing

%>