chklogin.asp

自己做的毕业设计

<!--#include file = conn.asp -->
<html>

<body>
<%

yzm=trim(request("yzm"))

if yzm="" then 
	Response.Redirect "userlogin.asp?id=3"
end if

if int(yzm)<>session("yzm") then 
	Response.Redirect "userlogin.asp?id=3"
end if

session("yzm")=""

if request("user")="" or request("pass")="" then

  conn.close
  set conn=nothing
  Response.Redirect "userlogin.asp?id=0"
  
  else
  
  username=LCase(request("user"))
  password=trim(request("pass"))
  
  sql = "select * from [user] where [username]='"&username&"' and [password]='"&password&"'"
  Set rs = Server.CreateObject("ADODB.RecordSet")
  rs.Open sql,conn,1,1
  
  if rs.recordcount=0 then
  
    conn.close
    set conn=nothing
    Response.Redirect "userlogin.asp?id=1"
  
  else
  if rs("sh")="0" then
      Response.Redirect "userlogin.asp?id=4"
  elseif  rs("sd")="1" then
      Response.Redirect "userlogin.asp?id=5"
  elseif  rs("gs")="1" then
      Response.Redirect "userlogin.asp?id=6"
  else
  session("user")=rs("username")
  session("id")=rs("id")
  Response.Cookies("mctb_name")=rs("username")
  Response.Redirect "manage.asp"
  end if
  end if
  
end if
%>
</body>

</html>
<%
conn.close
set conn=nothing
%>