userregpost.asp

庐江二中

<%PageName="UserRegPost"%>
<!--#include file="conn.asp"-->
<!--#include file="const.asp"-->
<!--#include file="session.asp"-->
<!--#include file="INC/CHAR.INC"-->
<!--#include file=function.asp -->
<%
founderr=false

if request.form("UserName")="" or len(request.form("UserName"))>20 then
errmsg=errmsg+"<li>用户名输入错误(未输入或长度超过了20个字节)。"
founderr=true
else
UserName=trim(request.form("UserName"))
end if
if request.form("sex")="" then
errmsg=errmsg+"<li>请选择您的性别。"
founderr=true
elseif left(UserName,3)="%20" OR InStr(UserName,"=")<>0 or InStr(UserName,"`")<>0 or InStr(UserName," ")<>0 or InStr(UserName,"　")<>0 or InStr(UserName,"'")<>0 or InStr(UserName,chr(34))<>0 or InStr(UserName,"\")<>0 or InStr(UserName,",")<>0 or InStr(UserName,"<")<>0 or InStr(UserName,">")<>0 or InStr(UserName,"&lt;")<>0 or Instr(UserName,"&gt;") or UserName="大家" or Instr(UserName,"庐江二中") or UserName="无" or Instr(UserName,"爸") or Instr(UserName,"妈") or Instr(UserName,"娘") or Instr(UserName,"爷") or Instr(UserName,"奶") or Instr(UserName,"老子") or Instr(UserName,"你") or Instr(UserName,"他") or Instr(UserName,"她") or UserName="站长" or UserName="root" or UserName="administrator" or UserName="admin" or UserName="sex" then
errmsg=errmsg+"<li>你输入的帐号非法，可能有非法的字符或字符串。"
founderr=true
elseif request.form("sex")=0 or request.form("sex")=1 then
sex=request.form("sex")
else
errmsg=errmsg+"<li>您输入的字符非法。"
founderr=true
end if
if request.form("password")="" or Len(request.form("password"))>20 then
errmsg=errmsg+"<li>请输入您的密码(长度不能大于20)。"
founderr=true
else
password=request.form("password")
end if
if password<>request("password2") then
errmsg=errmsg+"<li>您输入的密码和确认密码不一致。"
founderr=true
end if
if IsValidEmail(trim(request.form("Email")))=false then
errmsg=errmsg+"<li>您的Email有错误。"
founderr=true
else
Email=trim(request.form("Email"))
end if



if founderr=true then
call error()
else
	
sql="select * FROM Users where username='"&username&"'"
rs.open sql,conn,1,3
if not rs.eof or username=WebTitle then
errmsg="<br>"+"<li>对不起，您输入的用户名已经被注册，请重新输入。"
founderr=true
else
rs.addnew
rs("username")=username
rs("password")=password
rs("email")=email
if request.form("MyIntro")<>"" then rs("sign")=htmlencode2(trim(request.form("MyIntro")))
if request.form("oicq")<>"" then rs("oicq")=request.form("oicq")
if request.form("UserWebName")<>"" and request.form("UserWebUrl")<>"" then
rs("UserWebName")=request("UserWebName")
rs("UserWebUrl")=request("UserWebUrl")
end if
if RegFree=1 then
rs("IsChecked")=true
else
rs("IsChecked")=false
end if
Rs("sex")=sex
Rs("addDate")=NOW()
rs("logins")=0
Rs("lastlogin")=NOW()
rs("UserLevel")=1
rs("UserPoint")=0
rs.update
end if
rs.close

if founderr=true then
call error()
else
%>
<!--#include file="top1.asp"-->
<table cellpadding=0 cellspacing=0 border=0 width=<%=TableWidth%> bgcolor=<%=MainBgColor%> align=center>
<tr>
<%=OutTable("left")%>
<td align=center> <br>
<table border="1" width="50%" align="center" cellspacing="0" cellpadding="5" Class="TableLine" bordercolorlight="<%=MainBColor%>">
<TR >
<TD colSpan=2 align="center" height=24 bgcolor=<%=MainTColor%>><b>会员注册成功</b></TD>
</TR>
<TR>
<TD width=22% align=right>注 册 名</TD>
<TD width="78%"><%=username%></TD>
</TR>
<TR>
<TD align=right width="22%">性 别</TD>
<TD width="78%">
<%if sex=1 then%>
男
<%else%>
女
<%end if%>
</TD>
</TR>
<TR>
<TD align=right width="22%">密 码</TD>
<TD width="78%"><%=password%>　</TD>
</TR>
<TR>
<TD align=right width="22%">Email地址</TD>
<TD width="78%"><%=email%>　</TD>
</TR>
<TR>
<TD align=right width="22%">OICQ号码</TD>
<TD width="78%">
<%if request.form("oicq")="" then%>
未填写
<%else%>
<%=request.form("oicq")%>
<%end if%>
</TD>
</TR>
<TR>
<TD align=right width="22%">主页</TD>
<TD width="78%">
<%if request.form("UserWebUrl")="" or request.form("UserWebName")="" then%>
未填写
<%else%><a href="<%=request.form("UserWebUrl")%>" target=_blank>
<%=request.form("UserWebName")%> </a>
<%end if%>
</TD>
</TR>
<TR>
<TD align=right width="22%">会员积分</TD>
<TD width="78%">0</TD>
</TR>
<TR>
<TD align=right width="22%">会员等级</TD>
<TD width="78%"><%=Level(1)%>　</TD>
</TR>
<TR>
<TD align=right valign=top width="22%">签 名</TD>
<TD width="78%">
<%if trim(request.form("MyIntro"))="" then%>
未填写
<%else%>
<%=htmlencode2(trim(request.form("MyIntro")))%>
<%end if%>
</TD>
</TR>
<TR>
          <TD align=center colSpan=2><%if RegFree=0 then%>请耐心等待管理员的认证<%else%><a href=UserLogin.asp>请登陆</a><%end if%></TD>
        </TR>
</TABLE>
<br></td>
<%=OutTable("right")%>
</tr>
</table>
<%
set rs=nothing
%>
<!--#include file="copyright.asp"-->
<%
end if
end if
%>