logincheck.asp

嘉缘人才6.0精简 ,很好用的人才系统

<!--#include file="conn/conn.asp"-->
<!--#include file="inc/md5.asp"-->
<!--#include file="inc/safe.asp"-->
<%
if Not ChkPost() then
	response.End()
end if
trueIP=Request.ServerVariables("HTTP_X_FORWARDED_FOR")

If trueIP="" Then 
	trueIP=Request.ServerVariables("REMOTE_ADDR")
End if
login=request.form("user_name")
pass=md5(request.form("user_pass"))
user_class=cstr(trim(request.form("user_class")))

select case user_class
case "person"
sql="select * from job_P_pmember where pmember_login='"&login&"'"
case "company"
sql="select * from JOB_C_cmember where cmember_login='"&login&"'"
case "train"
sql="select * from JOB_T_tmember where tmember_login='"&login&"'"
case "school"
sql="select * from JOB_S_smember where smember_login='"&login&"'"
end select

set rs=server.createobject("adodb.recordset")
rs.open sql,conn,1,3
if not rs.eof then
select case user_class
case "person"
	pwd=rs("pmember_pwd")
	pmember_name=rs("pmember_name")
	member_flag=rs("pmember_flag")
	Session("LoginIP")=rs("pmember_LoginIP")
	Session("LoginTimes")=rs("pmember_logindate")	
	rs("pmember_LoginIP")=trueIP
	rs("pmember_logindate")=date()
	If IsNumeric(rs("pmember_LoginNum")) Then
		rs("pmember_LoginNum")=rs("pmember_LoginNum")+1
	Else
		rs("pmember_LoginNum")=1
	End If
case "company"
	pwd=rs("cmember_pwd")
	cmember_comname=rs("cmember_comname")
	cmember_type=rs("cmember_type")
	member_flag=rs("cmember_flag")
	Session("LoginIP")=rs("cmember_LoginIP")
	Session("LoginTimes")=rs("cmember_logindate")	
	rs("cmember_LoginIP")=trueIP
	rs("cmember_logindate")=date()
	If IsNumeric(rs("cmember_LoginNum")) Then
		rs("cmember_LoginNum")=rs("cmember_LoginNum")+1
	Else
		rs("cmember_LoginNum")=1
	End If
	If not isnull(rs("cmember_enddate")) Then
		if rs("cmember_enddate")<date() then
			rs("cmember_type")=5
			cmember_type=5
		end if
	end if
case "train"
	pwd=rs("tmember_pwd")
	Session("LoginIP")=rs("tmember_LoginIP")
	Session("LoginTimes")=rs("tmember_logindate")	
	tmember_train=rs("tmember_train")
	member_flag=rs("tmember_flag")
	rs("tmember_LoginIP")=trueIP
	rs("tmember_logindate")=date()
	If IsNumeric(rs("tmember_LoginNum")) Then
		rs("tmember_LoginNum")=rs("tmember_LoginNum")+1
	Else
		rs("tmember_LoginNum")=1
	End If
case "school"
	pwd=rs("smember_pwd")
	smember_school=rs("smember_school")
	member_flag=rs("smember_flag")
	Session("LoginIP")=rs("smember_LoginIP")
	Session("LoginTimes")=rs("smember_logindate")	
	rs("smember_LoginIP")=trueIP
	rs("smember_logindate")=date()
	If IsNumeric(rs("smember_LoginNum")) Then
		rs("smember_LoginNum")=rs("smember_LoginNum")+1
	Else
		rs("smember_LoginNum")=1
	End If
end select
rs.Update
rs.close
set rs=nothing

If member_flag<>1 Then
	 response.write("<script>alert(""您的帐号还没有通过审核，无法登录！"");history.back();</script>")
	 response.End()
End If

if pwd<>pass then
 response.write("<script language=JavaScript>{alert('用户名或密码错误，请重新登录！');location.href = 'javascript:history.back()';}</script>")
else


select case user_class
case "person"
session("user_name")=login
session("user_class")="pmember"
session("user_pass")=pwd
session("user_pname")=pmember_name
case "company"
session("user_name")=login
session("user_class")="cmember"
session("user_pass")=pwd
session("user_cname")=cmember_comname
session("user_type")=cmember_type
case "train"
session("user_name")=login
session("user_class")="tmember"
session("user_pass")=pwd
session("user_tname")=tmember_train
case "school"
session("user_name")=login
session("user_class")="smember"
session("user_pass")=pwd
session("user_sname")=smember_school
end select
response.Redirect("index.asp")
end if
end if		
response.write("<script language=JavaScript>{alert('用户名或密码错误，请重新登录！');location.href = 'javascript:history.back()';}</script>")	
response.End()
%>