verifyid.asp

ASp+SQLServer编写的网上办公系统

<!--#include file="../includes/keepHouse.asp"-->
<%
	dim NickName
	dim Password 
	NickName=request("NickName")
	Password=request("Password")
	NickName=replacePrime(NickName)
	Password=replacePrime(Password)
	if NickName="" or Password="" then
		call trigErr()
	end if
    sql="SELECT LogIns.NICK_NAME, LogIns.PASSWORD, Personnel.PERSONNEL_ID, Personnel.PERSON_NAME, " _ 
		&"Personnel.POSITION_ID, Department.DEPT_ID, Department.DEPARTMENT " _ 
		&"FROM LogIns INNER JOIN Personnel ON " _
		&"LogIns.PERSONNEL_ID = Personnel.PERSONNEL_ID INNER JOIN " _ 
		&"Department ON Personnel.DEPT_ID = Department.DEPT_ID " _ 
		&"WHERE (LogIns.NICK_NAME= '"&NickName&"') AND (LogIns.PASSWORD = '" _
		&Password&"' AND Personnel.FIRED=0) "
	call openDB()
	rs.open sql,conn,1,1
	
 	if not(rs.eof) then
 		session("POSITION_ID")=rs("POSITION_ID")
		session("PERSONNEL_ID")=rs("PERSONNEL_ID")
		session("PERSON_NAME")=rs("PERSON_NAME")
 		session("DEPT_ID")=rs("DEPT_ID")
 		session("DEPARTMENT")=rs("DEPARTMENT")
 		session("NICK_NAME")=NickName
 		response.redirect "Manage.asp"
 	else
		call Error()
    end if

	sub Error()
    	response.write "   <br><br><br>"
    	response.write "    <table align='center' width='300' border='1' cellpadding='0' cellspacing='0' bordercolor='#999999'>"
    	response.write "      <tr bgcolor='#999999'> "
    	response.write "        <td colspan='2' height='15'> "
    	response.write "          <div align='center'><font color='#FFFFFF'>操作: 确认身份失败!</font></div>"
    	response.write "        </td>"
    	response.write "      </tr>"
    	response.write "      <tr>"
    	response.write "        <td colspan='2' height='23'> "
    	response.write "          <div align='center'><br><br>"
    	response.write "      用户名或密码错误!!! <br><br>"
    	response.write "        <a href='javascript:onclick=history.go(-1)'>返回</a>"        
    	response.write "        <br><br></div></td>"
    	response.write "      </tr></table>" 
	end sub
	call closeDB()

%>