userlogin.asp

办公系统

<!--#include file="includes/db.asp"-->
<%
	dim Username
	dim Password 
	Username=request("Username")
	Password=request("Password")
	Username=replacePrime(Username)
	Password=replacePrime(Password)
	if Username="" or Password="" then
		call trigErr()
	end if
    sql="SELECT Users.Username, Users.Password,Users.User_id, Users_info.User_id, Users_info.Name, " _ 
		&"Users_info.Position_id, Dept.Dept_id, Dept.Dept_name " _ 
		&"FROM Users INNER JOIN Users_info ON " _
		&"Users.User_id = Users_info.User_id INNER JOIN " _ 
		&"Dept ON Users_info.Dept_id = Dept.dept_id " _ 
		&"WHERE (Users.Username= '"&Username&"') AND (Users.Password = '" _
		&Password&"' AND Users_info.Fired=0) "
	call openDB()
	rs.open sql,conn,1,1
	
 	if not(rs.eof) then
 		session("Position_id")=rs("Position_id")
		session("User_id")=rs("User_id")
		session("Name")=rs("Name")
 		session("Dept_id")=rs("Dept_id")
 		session("Dept_name")=rs("Dept_name")
 		session("Username")=Username
 		response.redirect "index.asp"
 	else
		call Error()
    end if

	sub Error()
    	response.write "   <br><br><br>"
    	response.write "    <table align='center' width='300' border='1' cellpadding='0' cellspacing='0' bordercolor='#999999'>"
    	response.write "      <tr bgcolor='#999999'> "
    	response.write "        <td colspan='2' height='15'> "
    	response.write "          <div align='center'><font color='#FFFFFF'>操作: 确认身份失败!</font></div>"
    	response.write "        </td>"
    	response.write "      </tr>"
    	response.write "      <tr>"
    	response.write "        <td colspan='2' height='23'> "
    	response.write "          <div align='center'><br><br>"
    	response.write "      用户名或密码错误!!! <br><br>"
    	response.write "        <a href='javascript:onclick=history.go(-1)'>返回</a>"        
    	response.write "        <br><br></div></td>"
    	response.write "      </tr></table>" 
	end sub
	call closeDB()

%>