📄 admin_login1.asp
字号:
<!--#include file="setup.asp"-->
<!--#include file="../inc/md5.asp"-->
<%
'=====================================================================
' 网站名称:黑客世界
' 当前版本:NewCloud Site Management System Version 2.1
' 文件名称:admin_account.asp
' 更新日期:2008-05-01
' 官方网站:黑客世界【www.skycap.cn】QQ:19901451
'=====================================================================
' Copyright 2008-2010 skycap.cn- All Rights Reserved.
' skycap.cn is a trademark of skycap.cn
'=====================================================================
Response.CacheControl = "no-cache"
Dim RefreshTime,GetCode
Dim m_strUsername,m_strPassword,m_strValidate,showLogininfo
showLogininfo = 0
If showLogininfo = 1 Then
m_strUsername = Replace(Trim(Request("u")), "'", "")
m_strPassword = Replace(Trim(Request("p")), "'", "")
m_strValidate = Replace(Trim(Request("v")), "'", "")
End If
FoundErr = False
RefreshTime = 3 '设置防刷新时间
If DateDiff("s", Session("UserTime"), Now()) < RefreshTime Then
Response.Write "<META http-equiv=Content-Type content=text/html; chaRset=gb2312><meta HTTP-EQUIV=REFRESH CONTENT="&RefreshTime&"><br>本页面起用了防刷新机制,请不要在"&RefreshTime&"秒内连续刷新本页面<BR>正在打开页面,请稍后……"
Response.End
End If
FoundErr = False
Select Case Newasp.CheckStr(Request("action"))
Case "logout" '退出系统
Call logout()
Case "login" '登陆系统
Call chklogin()
Case Else
Call main()
End Select
If Founderr = True Then
Session("UserTime") = Now()
SaveLogInfo("非法登陆!")
Response.Redirect("showerr.asp?action=error&message=" & Server.URLEncode(ErrMsg) & "")
End If
CloseConn
Sub main()
If Session("AdminName") = "" Then
%>
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; chaRset=gb2312">
<title>管理员登陆</title>
<link rel="stylesheet" href="images/css/admin_style_<%=AdminSkin%>.css" type="text/css" media="all" />
<style type="text/css">
<!--
body {
/*background-color: #3669A0;
background-image: url(images/newasp_admin_bg.gif);*/
margin-left: 0px;
margin-top: 100px;
margin-right: 0px;
margin-bottom: 0px;
}
.STYLE1 {color: #42bfbf}
body,td,th {
font-size: 12px;
}
.logininput{border:1px solid #7E94C7;background:#C0F8CA;}
.mainTableborder {
border: 2px #fff solid ;
width: 600px;
}
-->
</style>
</head>
<script language="javascript">
<!--//
function SetFocus(){
if (document.myform.AdminName.value=="")
document.myform.AdminName.focus();
else
document.myform.AdminName.select();
}
function CheckForm(){
if(document.myform.AdminName.value=="")
{
alert("请输入您的用户名!");
document.myform.AdminName.focus();
return false;
}
if(document.myform.PassWord.value == "")
{
alert("请输入您的密码!");
document.myform.PassWord.focus();
return false;
}
if (document.myform.verifycode.value==""){
alert ("请输入您的验证码!");
document.myform.verifycode.focus();
return false;
}
}
function CheckBrowser()
{
var app=navigator.appName;
var verStr=navigator.appVersion;
if (app.indexOf('Netscape') != -1) {
alert("新云网络友情提示:\n 你使用的是Netscape浏览器,可能会导致无法使用后台的部分功能。建议您使用 IE6.0 或以上版本。");
}
else if (app.indexOf('Microsoft') != -1) {
if (verStr.indexOf("MSIE 3.0")!=-1 || verStr.indexOf("MSIE 4.0") != -1 || verStr.indexOf("MSIE 5.0") != -1 || verStr.indexOf("MSIE 5.1") != -1)
alert("新云网络友情提示:\n 您的浏览器版本太低,可能会导致无法使用后台的部分功能。建议您使用 IE6.0 或以上版本。");
}
}
//-->
</script>
<body>
<div align="center">
<form id="myform" name="myform" method="post" action="?action=login" target="_top" onSubmit="return CheckForm();">
<table width="600" border="0" align="center" cellpadding="0" cellspacing="0" class="mainTableborder">
<tr>
<td colspan="4" height="72"><a href="http://www.newasp.net" target="_blank"><img alt="新云网站管理系统 www.newasp.net" src="images/newasp_admin2_r1_c1.jpg" border="0" width="600" height="72" /></a></td>
</tr>
<tr>
<td width="223"><img src="images/newasp_admin2_r2_c1.jpg" width="223" height="204" /></td>
<td width="102" valign="bottom" background="images/newasp_admin2_r2_c2.jpg"><a href="http://www.newasp.net" target="_blank"><img src="images/logo1.gif" alt="新云网络" width="88" height="31" border="0" /></a></td>
<td width="245" background="images/newasp_admin2_r2_c3.jpg"><table width="100%" border="0" cellspacing="0" cellpadding="5">
<tr>
<td><span class="STYLE1">用户名称:
<input name="AdminName" type="text" class="logininput" id="AdminName" size="22" value="<%=m_strUsername%>" onFocus="this.select();" />
</span>
</td>
</tr>
<tr>
<td><span class="STYLE1">用户密码:
<input name="PassWord" type="password" class="logininput" id="PassWord" size="22" value="<%=m_strPassword%>" onFocus="this.select();" />
</span></td>
</tr>
<%If IsAdminValidate Then%>
<tr>
<td><span class="STYLE1">认 证 码:
<input name="validate" type="password" class="logininput" id="validate" size="22" value="<%=m_strValidate%>" onFocus="this.select();" />
</span></td>
</tr>
<%End If%>
<tr>
<td><span class="STYLE1">验 证 码:
<input name="verifycode" type="text" class="logininput" id="verifycode" size="10" maxlength="5" onFocus="this.select();" />
<img src="../inc/getcode.asp" alt="验证码,看不清楚?请点击刷新验证码" height="10" style="cursor : pointer;" onclick="this.src='../inc/getcode.asp?t='+(new Date().getTime());NoCheckCode.src='../NoCheckCode.asp'" /></span></td>
</tr>
<tr>
<td> <label>
<input name="submit" type="image" src="images/admin_submit.gif" />
<a href="../"><img alt="返回首页" src="images/admin_home.gif" border="0" width="80" height="24" /></a>
</label></td>
</tr>
</table></td>
<td width="30"><img src="images/newasp_admin2_r2_c4.jpg" width="30" height="204" /></td>
</tr>
<tr>
<td colspan="4" height="44"><a href="http://www.newasp.net" target="_blank"><img alt="Newasp CMS" src="images/newasp_admin2_r3_c1.jpg" border="0" width="600" height="44" /></a></td>
</tr>
</table>
</form>
<script language="JavaScript">
<!--
CheckBrowser();
SetFocus();
-->
</script>
<p align=center><iframe id="NoCheckCode" frameborder="no" height="0" width="0" src="../inc/NoCheckCode.asp"></iframe></p>
</div>
<%
Else
Response.Redirect "admin_index.asp"
End If
End Sub
Sub logout()
'清除COOKIES中管理员身份的验证信息.
Session.Abandon
Session("AdminName") = ""
Session("AdminPass") = ""
Session("AdminGrade") = ""
Session("AdminFlag") = ""
Session("AdminStatus") = ""
Session("AdminID") = ""
Session("AdminRandomCode") = ""
Response.Cookies(Admin_Cookies_Name) = ""
Response.Redirect ("../")
End Sub
Sub chklogin()
Dim adminname, password,RandomCode
adminname = Newasp.CheckBadstr(Request("adminname"))
password = md5(Trim(Replace(Request("password"), "'", "")))
If Newasp.CheckPost = False Then
ErrMsg = ErrMsg + "您提交的数据不合法,请不要从外部提交登陆。"
Founderr = True
End If
If Newasp.IsValidStr(Request("adminname")) = False Then
ErrMsg = ErrMsg + "<li>用户名中含有非法字符。</li>"
Founderr = True
End If
If Newasp.IsValidPassword(Request("password")) = False Then
ErrMsg = ErrMsg + "<li>密码中含有非法字符。</li>"
Founderr = True
End If
If IsAdminValidate Then
If Trim(Request.Form("validate")) <> AdminValidateCode Or Trim(Request.Form("validate")) = "" Then
ErrMsg = ErrMsg+"<li>您输入的认证码或者密码错误,请重新输入!</li>"
Founderr = true
Exit Sub
End if
End If
If Request("verifycode") = "" Then
ErrMsg = ErrMsg + "<br>" + "<li>请返回输入确认码。</li>"
Founderr = True
ElseIf Session("getcode") = "9999" Then
Session("getcode") = ""
ErrMsg = ErrMsg + "<br>" + "<li>请不要重复提交,如需重新登陆请返回登陆页面。</li>"
Founderr = True
ElseIf CStr(Session("getcode"))<>CStr(Trim(Request("verifycode"))) Then
ErrMsg = ErrMsg + "<br>" + "<li>您输入的认码和系统产生的不一致,请重新输入。</li>"
Founderr = True
End If
Session("getcode") = ""
If adminname = "" Or password = "" Then
Founderr = True
ErrMsg = ErrMsg + "<br>" + "<li>请输入您的用户名或密码。</li>"
Exit Sub
End If
If Founderr = True Then Exit Sub
If Not IsObject(Conn) Then ConnectionDatabase
Set Rs = Server.CreateObject("ADODB.Recordset")
SQL = "SELECT * FROM NC_Admin WHERE password='" & password & "' And username='" & adminname & "'"
Rs.Open SQL, Conn, 1, 3
If Rs.BOF And Rs.EOF Then
FoundErr = True
ErrMsg = ErrMsg + "<li>您输入的用户名和密码不正确或者您不是系统管理员。!</li>"
Exit Sub
Else
If password <> Rs("password") Then
FoundErr = True
ErrMsg = ErrMsg + "<br><li>用户名或密码错误!!!</li>"
Exit Sub
End If
If Rs("isLock") <> 0 Or Rs("isLock") = "" Then
Founderr = True
ErrMsg = "<li>你的用户名已被锁定,你不能登陆!如要开通此帐号,请联系管理员。</li>"
Exit Sub
End If
End If
RandomCode = Newasp.GetRandomCode
Rs("LoginTime") = Now()
Rs("Loginip") = Newasp.GetUserip
Rs("RandomCode") = RandomCode
Rs.Update
If FoundErr = False Then
Session("AdminName") = Rs("username")
Session("AdminPass") = Rs("password")
Session("AdminGrade") = Rs("AdminGrade")
Session("Adminflag") = Rs("Adminflag")
Session("AdminStatus") = Rs("Status")
Session("AdminRandomCode") = RandomCode
Session("AdminID") = Rs("id")
If IsAdminValidate Then
Session("validate") = Trim(Request.Form("validate"))
End If
If UseAdminCookies Then
Response.Cookies(Admin_Cookies_Name).path = "/"
Response.Cookies(Admin_Cookies_Name)("AdminName") = Rs("username")
Response.Cookies(Admin_Cookies_Name)("AdminPass") = Rs("password")
Response.Cookies(Admin_Cookies_Name)("AdminGrade") = Rs("AdminGrade")
Response.Cookies(Admin_Cookies_Name)("Adminflag") = Rs("Adminflag")
Response.Cookies(Admin_Cookies_Name)("AdminStatus") = Rs("Status")
Response.Cookies(Admin_Cookies_Name)("RandomCode") = RandomCode
Response.Cookies(Admin_Cookies_Name)("AdminID") = Rs("id")
If IsAdminValidate Then
Response.Cookies(Admin_Cookies_Name)("validate") = Trim(Request.Form("validate"))
End If
End If
End If
Rs.Close
Set Rs = Nothing
Response.Redirect("admin_index.asp")
End Sub
Function GetCode1()
Dim Test
On Error Resume Next
Set Test = Server.CreateObject("Adodb.Stream")
Set Test = Nothing
If Err Then
Dim zNum
Randomize Timer
zNum = CInt(8999 * Rnd + 1000)
Session("GetCode") = zNum
getcode1 = Session("GetCode")
Else
getcode1 = "<img src=""../inc/getcode.asp"">"
End If
End Function
%>
</body>
</html>
⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -