chkuser.asp

天创商务网客户资源管理系统 v1,asp+Access,iis5

<%@ Language=VBScript %>
<!--#include file=conn.asp -->
<!--#include file=EnPas.asp -->
<%
Name=replace(trim(Request.Form("Name")),"'","''")
PassWord=EnPas(replace(trim(Request.Form("Password")),"'","''"))
if name="" then response.redirect"index.htm"
set rs=server.CreateObject ("ADODB.RecordSet")
rs.Source="select ID from UserManage where UserName='"&Name&"' and  Password='"&PassWord&"'"
rs.Open rs.Source,conn,1,1

thesoft=Request.ServerVariables("HTTP_USER_AGENT")
if instr(thesoft,"Windows NT 5.0") then
	vOS="Win 2000"
elseif instr(thesoft,"Windows NT 5.1") then
	vOs="Win XP"
elseif instr(thesoft,"Windows NT") then
	vOs="Win NT"
elseif instr(thesoft,"Windows 9") then
	vOs="Win 9x"
elseif instr(thesoft,"unix") or instr(thesoft,"linux") or instr(thesoft,"SunOS") or instr(thesoft,"BSD") then
	vOs="类Unix"
elseif instr(thesoft,"Mac") then
	vOs="Mac"
else
	vOs="Other"
end if

if not rs.EOF then 
   UserId = rs("id")
   session("Name")=Name
   session("PassWord")=PassWord
   session("Userid")=Userid
   set rs1=Server.Createobject("adodb.recordset")
   sql1="Select * from Log"
   rs1.open sql1,conn,3,3
   rs1.addnew
   rs1("User")=Name
   rs1("LoginIP")=request.ServerVariables("Remote_Addr")
   rs1("OS")=vOS
   rs1.update
   rs1.close
   set rs=nothing
   Response.Redirect "manage.asp"
else
   set rs1=Server.Createobject("adodb.recordset")
   sql1="Select * from Log"
   rs1.open sql1,conn,3,3
   rs1.addnew
   rs1("User")=Request.Form("Name")
   rs1("LoginIP")=request.ServerVariables("Remote_Addr")
   rs1("OS")=vOS
   rs1("ErrorPas")=Request.Form("Password")
   rs1("Result")="Error"
   rs1.update
   rs1.close
   set rs=nothing
   response.redirect"index.htm"
end if
%>