check.asp

一个公司营销系统

<!--#include file="../conn.asp"-->
<%
username=request("username")
password=request("password")
Set rs_admin = Server.CreateObject("ADODB.Recordset")
sql="select * from admin where username like '" & username & "' and password like '" & password & "'"
rs_admin.open sql,conn,3,2
if rs_admin.eof and rs_admin.bof then
   response.write "<script language='javascript'>"
   response.write "alert('账号或密码错误！');"
   response.write "history.go(-1);"
   response.write "</script>"
   response.end
else if rs_admin("key")=0 then
response.write "<script language='javascript'>"
   response.write "alert('你现在还不可以开工或违反规定被停工了！请速与管理员联系！！');"
   response.write "history.go(-1);"
   response.write "</script>"
   response.end
else
sql="update  admin set logintime=now() where username like '" & username & "' " 
conn.execute sql
session("username")=rs_admin("username")
session("password")=rs_admin("password")
session.timeout=5
response.redirect "manager.asp"
end if
end if
%>