valuser.asp

公文下发和上报管理： 在发布和上报文件时

<%
'----------------------------------------------------------------------------------------------------------'
'----------------------------------------------------------------------------------------------------------'
'代码主要作用:
'	验证用户和密码,若是合法用户,则设置cookies值,非法则出错提示
'----------------------------------------------------------------------------------------------------------'
'----------------------------------------------------------------------------------------------------------'

'各个cookies 首先清空
response.cookies("oabusyname")=""			'单位名
response.cookies("oabusyuserid")=""			'用户ID
response.cookies("oabusyusername")=""		'用户登录名
response.cookies("oabusyuserdept")=""		'用户所性部门
response.cookies("oabusyuserlevel")=""		'用户所处级别,,
response.cookies("oabusyuserpower")=""

Response.cookies("url")=""					'主页网址
Response.Cookies("path")=""					'主页所在绝对路径
Response.Cookies("fileword")=""				'上传word文件所在相对路径
'Response.Cookies("filehtml")=""				'上传Html文件所在相对路径
Response.Cookies("meetword")=""				'上传word会议文件所在相对路径
'Response.Cookies("meethtml")=""				'上传Html会议文件所在相对路径
Response.Cookies("homename")=""				'网站的名称
Response.Cookies("pagecount")=""				


 set conn=opendb("oabusy","conn","accessdsn")
	
'取得路径等一些基本参数
 set rs1=server.createobject("adodb.recordset")
 sql="select * from path"
 rs1.Open sql,conn,1
			
 if not rs1.EOF and not rs1.BOF then
 
	response.cookies("url")=rs1("url")
	Response.Cookies("path")=rs1("path")
	Response.Cookies("fileword")=rs1("fileword")
	'Response.Cookies("filehtml")=rs1("filehtml")
	Response.Cookies("meetword")=rs1("meetword")
	'Response.Cookies("meethtml")=rs1("meethtml")
	Response.Cookies("homename")=rs1("homename")
	Response.Cookies("pagecount")=rs1("pagecount")
	
	
 end if
'conn.close
'set conn=nothing


'取得表单日提交值
username=request.form("username")
password=request("password")
if username<>"" and password<>"" then

'打开数据库查找是否有此用户
	'set conn=opendb("oabusy","conn","accessdsn")
	set rs=server.createobject("adodb.recordset")
	sql="select * from userinf where username=" & sqlstr(username)
	rs.open sql,conn,1
'如果有此用户就进入系统
	if not rs.eof and not rs.bof then
		if rs("pb")=1 then 
		  response.write "<script>window.alert('您的帐号被屏蔽,请与网管中心联系!!');</script>"
		  response.redirect "default.asp"
        end if
		if rs("password")=trim(password) then
  
			response.cookies("oabusyname")=rs("name")
			response.cookies("oabusyuserid")=cstr(rs("ID"))
			response.cookies("oabusyusername")=rs("username")
			response.Write(request.cookies("oabusyusername"))
			'response.End()
			response.cookies("oabusyuserdept")=rs("userdept")
			response.cookies("oabusyuserlevel")=rs("userlevel")
		   'application("onlineuser")=rs("name")&","&application("onlineuser")
		   
			'获取级别的权限
			set rs1=server.createobject("adodb.recordset")
			sql="select * from power where userpower='" & rs("userlevel")&"'"
			rs1.open sql,conn,1,1
			
			response.cookies("oabusyuserpower")=rs1("power")
	
			rs1.close
			set rs1=nothing
			
			conn.close
			set conn=nothing
			response.redirect "index.asp"
			response.end
		else
			
		    response.write "<script>window.alert('密码输入不正确,请重新输入');</script>"			
		end if

	else

		
		response.write "<script>window.alert('不存在该用户,请核对后重新输入');</script>"
    			
	end if


end if
%>