verify.asp

ASP原码

<%@ Language=VBScript %>
<!--#include file="../system/const.asp"-->
<!--#include file="../system/misc.asp"-->

<%
	set vf=server.CreateObject("DIAVDir.VDirFile")

	set cn=server.CreateObject("ADODB.connection")
    cn.Open DSN_ACLASS
    
	set rs=server.CreateObject("ADODB.recordset")
	username=Replace(Trim(request("username")),"'","''")
	password=Replace(Trim(request("password")),"'","''")
	sql="select * from TBL_SRUSER where USERNAME='"&username&"'"
	rs.Open sql,cn

	if not rs.EOF then
		if (isnull(rs("password")) and password="") or (rs("password")="" and password="") or trim(rs("password"))=password then
			
			session("userid")=rs("id")                      
			session("username")=rs("username")
			session("Userpassword")=rs("password")                      
			session("PageSize") = 10

			' HOME_DIR
			fullurl=request.ServerVariables("HTTP_REFERER")
			pos=InStr(1,fullurl, "/default.asp",1)
			if pos <> 0 then
				session("HOME_DIR")=mid(fullurl,1,pos)
			else
				session("HOME_DIR")=fullurl
			end if

			rs.close
			set rs=nothing
			cn.close
			set cn=nothing
			
			response.Redirect("edit.asp?user_id="&session("userid")&"")
		else
			Response.Write "<p align=center>密码错误，请重新输入。</p>"
			Response.Write "<p align=right><a href='vbscript:history.back'>返回</a></p>"
		end if
	else
		Response.Write "<p align=center>该用户不存在，请重新输入。</p>"
		Response.Write "<p align=right><a href='vbscript:history.back'>返回</a></p>"
	end if
%>