📄 loginchk.asp
字号:
<%@ LANGUAGE="VBSCRIPT" %>
<% response.buffer=true %>
<html>
<head>
<title>登录检查</title>
<link rel="stylesheet" type="text/css" href="../data/forum.css">
</head>
<body topmargin=0>
<!--#include file="../data/connect.asp"-->
<!--#include file="../data/myPrg.asp"-->
<%
showtitle("登录检查")
dim user,password
user = trim(request("username"))
password = trim(request("password"))
user = replace(user,"'","’")
password = replace(password,"'","’")
sql="select * from [users] where username= '"&user&"'"
set rs1 = server.CreateObject("adodb.recordset")
rs1.open sql,conn,3,2
local_ip = Request.ServerVariables("REMOTE_HOST")
if rs1.eof then
rs1.close
set rs1 = nothing
thing = "登入失败"
user = user & "/" & password
if len(user) > 20 then
user = left(user,20)
end if
sql = "insert into log(log_datetime,log_ip,log_user,log_companyid,log_thing) values('"&now()&"','"&local_ip&"','"&user&"',0,'"&thing&"')"
conn.execute(sql)
call closedatabase
ShowError("无此用户名!")
elseif rs1("password") <> password then
rs1.close
set rs1 = nothing
thing = "登入失败"
user = user & "/" & password
if len(user) > 20 then
user = left(user,20)
end if
sql = "insert into log(log_datetime,log_ip,log_user,log_companyid,log_thing) values('"&now()&"','"&local_ip&"','"&user&"',0,'"&thing&"')"
conn.execute(sql)
call closedatabase
ShowError("密码错误!")
else
flag = rs1("flag")
companyid = rs1("user_companyid")
id = rs1("id")
rs1("lasttime") = now()
rs1("times") = rs1("times") + 1
rs1("ip") = local_ip
rs1.update
rs1.close
set rs1 = nothing
thing = "登入系统"
'sql = "insert into log(log_datetime,log_ip,log_user,log_companyid,log_thing) values('"&now()&"','"&local_ip&"','"&user&"',"&companyid&",'"&thing&"')"
'conn.execute(sql)
set rs=server.CreateObject("adodb.recordset")
rs.Open "select * from log", conn, 1, 3
rs.AddNew
rs("log_datetime")=now()
rs("log_ip")=local_ip
rs("log_user")=user
rs("log_companyid")=companyid
rs("log_thing")=thing
rs.Update
rs.Close
set rs=nothing
if flag = 4 then
sql = "select * from flag where flag_user_id= "&id&" order by flag_dc_id asc"
SET rs1=server.CreateObject("adodb.recordset")
rs1.Open sql,conn,3,3
'设置变量have_nothing,判断权限表中的用户是否有相对应的数组
' 有则为1,无则为0
'为下边确定是否越界
dim have_nothing
have_nothing = 1
if not rs1.eof then
dim t
t = 0
'取出FLAG表中相对应的记录数,创建动态数组存储相关元素
userno = rs1.recordcount - 1
redim FlagUser(userno,9)
while not rs1.eof
FlagUser(t,0) = rs1("flag_dc_id")
FlagUser(t,1) = rs1("flag_prod")
FlagUser(t,2) = rs1("flag_service")
FlagUser(t,3) = rs1("flag_stock")
FlagUser(t,4) = rs1("flag_cull")
FlagUser(t,5) = rs1("flag_attemper")
FlagUser(t,6) = rs1("flag_sign")
FlagUser(t,7) = rs1("flag_code")
FlagUser(t,8) = rs1("flag_edit")
FlagUser(t,9) = rs1("flag_companyid")
t = t + 1
rs1.movenext
wend
rs1.close
set rs1 = nothing
session("flag") = FlagUser
else
rs1.close
set rs1 = nothing
call closedatabase
have_nothing = 0
response.write "<script language=javascript>"
response.write "alert(""管理员尚未设置您的权限,请与管理员联系!"")"
response.write "</script>"
response.redirect "../user/default.asp?yi"
response.end
end if
elseif flag = 5 then
sql = "select * from flag where flag_user_id= "&id&" order by flag_dc_id asc"
SET rs1=server.CreateObject("adodb.recordset")
rs1.Open sql,conn,3,3
'设置变量have_nothing,判断权限表中的用户是否有相对应的数组
' 有则为1,无则为0
'为下边确定是否越界
have_nothing = 1
if not rs1.eof then
t = 0
'取出FLAG表中相对应的记录数,创建动态数组存储相关元素
userno = rs1.recordcount - 1
redim FlagUser(userno,2)
while not rs1.eof
FlagUser(t,0) = rs1("flag_dc_id")
FlagUser(t,1) = rs1("flag_prod")
FlagUser(t,2) = rs1("flag_companyid")
t = t + 1
rs1.movenext
wend
rs1.close
set rs1 = nothing
session("flag") = FlagUser
else
rs1.close
set rs1 = nothing
call closedatabase
have_nothing = 0
response.write "<script language=javascript>"
response.write "alert(""管理员尚未设置您的权限,请与管理员联系!"")"
response.write "history.back();"
response.write "</script>"
'response.redirect "../user/default.asp?yi"
response.end
end if
end if
if flag = 4 then
session("username") = companyid&";"&flag&";"&user&";"&id&";"&userno
elseif flag = 5 then
session("username") = companyid&";"&flag&";"&user&";"&id&";"&userno
elseif flag = 6 then
session("username") = companyid&";"&flag&";"&user&";"&id&";"&userno
else
userno = 0
session("username") = companyid&";"&flag&";"&user&";"&id&";"&userno
end if
response.redirect "../main/main.asp"
call closedatabase
end if
%>
<!--#include file="../data/copyright.asp"-->
</body>
</html>⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -