login.asp

oracle9i程序事例集

<%@LANGUAGE="VBSCRIPT"%>
<!--#include file="../common/conn.asp"-->
<!--#include file="../common/status.html"-->
<!--#include file="../common/md5.asp"--><html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=gb2312">
<title>管理员登录</title>
</head>
<%
dim address
address = left(cstr(request.servervariables("REMOTE_ADDR")),10)
if address<>"192.168.0." then 
%>
  您是外网用户，无权查看内部网站，五秒钟后自动返回，如果您的浏览器没有自动返回，请<a href="../admin/login.html">点击此处</a>。<BR>请不要重复测试，您的所作所为我们均有记录。
  <meta http-equiv="refresh" content="5;url=login.html">
<% else %>
<body>
    <%
    admin_id=lcase(trim(request("admin_id")))
    admin_pw=lcase(trim(request("admin_pw")))
    if admin_id="" or admin_pw="" then
        errmsg=errmsg+"<br>"+"<li>管理员帐号和密码不能为空!"
        founderr=true
    else
        sql="select * from scott.admin where admin_id='"&admin_id&"'"
        set rs=Server.CreateObject("ADODB.recordset")
	    rs.open sql,connstr
      if rs.eof then
          errmsg=errmsg+"<br>"+"<li>您输入的管理员帐号不存在!"
          founderr=true
      else if md5(admin_pw)=rs("admin_pw") then
              session("admin_id")=rs("admin_id")
			  session.Timeout=300
           else
              errmsg=errmsg+"<br>"+"<li>您输入的密码错误!"
              founderr=true
           end if
      end if 
      rs.close
      set rs=nothing
    end if
    if founderr=false then
	response.redirect "index.asp"
	else
%>
    <font><strong>错误！！！</strong></font><BR>
<%
    response.write(errmsg)
    end if
%>	
	<p><a href="javascript:history.go(-1)">重新登陆</a></p>
</body>
<% end if %>
</html>