📄 cls_user.asp
字号:
<!--#include file="../Include/MD5.asp"-->
<%
dim LRs,LSql,action,user_name,password,Title,Titles
user_name=Replace(request.Form("name"), "'", "")
password=Replace(request.Form("password"), "'", "")
user_name=LCase(user_name)
password=LCase(password)
If Request("Action")="Login" Then
dim server_v1,server_v2
server_v1=Cstr(Request.ServerVariables("HTTP_REFERER"))
server_v2=Cstr(Request.ServerVariables("SERVER_NAME"))
if mid(server_v1,8,len(server_v2))<>server_v2 then
response.write "<br><br><center><table border=1 cellpadding=20 bordercolor=black bgcolor=#EEEEEE width=450>"
response.write "<tr><td style='font:9pt Verdana'>"
response.write "你提交的路径有误,禁止从站点外部提交数据!"
response.write "</td></tr></table></center>"
response.end
end if
If password="" or user_name="" Then
Response.Write "<script language='javascript'>"
Response.Write "alert('用户名和密码不能为空!');"
Response.Write "history.go(-1);"
Response.Write "</script>"
Response.End
End If
Set LRs = Server.CreateObject("ADODB.Recordset")
LSql="select * from [Tso_User] where UserName like '" & user_name & "'and UserPwd like '" & md5(password) & "'"
LRs.open LSql,conn,3,3
If LRs.Eof and LRs.Bof Then
Response.Write "<script language='javascript'>"
Response.Write "alert('用户名和密码错误!');"
Response.Write "history.go(-1);"
Response.Write "</script>"
Response.End
Else
Session("UserId")=LRs("UserId")
LRs("LoginTime")=date()
LRs("LoginIP")=request.serverVariables("REMOTE_ADDR")
LRs.update
LRs.Close
Set LRs=Nothing
Set Conn=Nothing
Response.Redirect "Index.asp"
Response.End
End If
ElseIf Request("Action")="Reg" Then
server_v1=Cstr(Request.ServerVariables("HTTP_REFERER"))
server_v2=Cstr(Request.ServerVariables("SERVER_NAME"))
if mid(server_v1,8,len(server_v2))<>server_v2 then
response.write "<br><br><center><table border=1 cellpadding=20 bordercolor=black bgcolor=#EEEEEE width=450>"
response.write "<tr><td style='font:9pt Verdana'>"
response.write "你提交的路径有误,禁止从站点外部提交数据!"
response.write "</td></tr></table></center>"
response.end
end if
If password="" or user_name="" Then
Response.Write "<script language='javascript'>"
Response.Write "alert('用户名和密码不能为空!');"
Response.Write "history.go(-1);"
Response.Write "</script>"
Response.End
End If
Set LRs = Server.CreateObject("ADODB.Recordset")
LSql="Select UserName From Tso_User Where UserName='"&user_name&"'"
LRs.open LSql,conn,3,3
If Not LRs.Eof Then
Response.Write "<script language='javascript'>"
Response.Write "alert('对不起,该用户名已经被注册!');"
Response.Write "history.go(-1);"
Response.Write "</script>"
Response.End
End If
LRs.Close
Set LRs=Nothing
Session("GetCode")=session("adminid")
If Trim(Request.Form("code"))=Empty or Trim(Session("GetCode"))<>Trim(Request.Form("code")) Then
Response.Write"<SCRIPT language=JavaScript>alert('特首提醒:/n/n请您输入正确验证码!');"
Response.Write"this.location.href='Login.asp';</SCRIPT>"
Response.End
End If
Set LRs = Server.CreateObject("ADODB.Recordset")
LSql="select * from [Tso_User]"
LRs.open LSql,conn,3,3
LRs.addnew
LRs("UserName")=LCase(user_name)
LRs("UserPwd")=Md5(LCase(password))
LRs("Email")=request.Form("Email")
LRs("RegTime")=date()
LRs("RegIP")=request.serverVariables("REMOTE_ADDR")
LRs.update
LRs.Close
Set LRs=Nothing
Response.Write"<SCRIPT language=JavaScript>alert('哈哈,特首祝贺你,注册成功!');"
Response.Write"this.location.href='Login.asp';</SCRIPT>"
Response.End
ElseIf Request("Action")="Edit" Then
server_v1=Cstr(Request.ServerVariables("HTTP_REFERER"))
server_v2=Cstr(Request.ServerVariables("SERVER_NAME"))
if mid(server_v1,8,len(server_v2))<>server_v2 then
response.write "<br><br><center><table border=1 cellpadding=20 bordercolor=black bgcolor=#EEEEEE width=450>"
response.write "<tr><td style='font:9pt Verdana'>"
response.write "你提交的路径有误,禁止从站点外部提交数据!"
response.write "</td></tr></table></center>"
response.end
end if
Title=request.Form("title")
Titles=request.Form("titles")
F_Id=Request.QueryString("F_Id")
If title="" or title="无" Then
Response.Write "<script language='javascript'>"
Response.Write "alert('备注标题不能为空!');"
Response.Write "history.go(-1);"
Response.Write "</script>"
Response.End
End If
If F_Id="" Then
Response.Write "<script language='javascript'>"
Response.Write "alert('参数不足!');"
Response.Write "history.go(-1);"
Response.Write "</script>"
Response.End
End If
Set LRs = Server.CreateObject("ADODB.Recordset")
LSql="Select F_Id,F_Title,F_Titles From Tso_FilesList Where F_Id="&F_Id
LRs.open LSql,conn,3,3
LRs("F_Title")=Title
LRs("F_Titles")=Titles
LRs.update
Response.Redirect("MyFiles.asp")
LRs.Close
Set LRs=Nothing
ElseIf Request("Action")="Del" Then
server_v1=Cstr(Request.ServerVariables("HTTP_REFERER"))
server_v2=Cstr(Request.ServerVariables("SERVER_NAME"))
if mid(server_v1,8,len(server_v2))<>server_v2 then
response.write "<br><br><center><table border=1 cellpadding=20 bordercolor=black bgcolor=#EEEEEE width=450>"
response.write "<tr><td style='font:9pt Verdana'>"
response.write "你提交的路径有误,禁止从站点外部提交数据!"
response.write "</td></tr></table></center>"
response.end
end if
F_Id=Request.QueryString("F_Id")
If F_Id="" Then
Response.Write "<script language='javascript'>"
Response.Write "alert('参数不足!');"
Response.Write "history.go(-1);"
Response.Write "</script>"
Response.End
End If
Set LRs = Server.CreateObject("ADODB.Recordset")
LSql="Select F_Path From Tso_FilesList Where F_Id="&F_Id
LRs.open LSql,conn
set fso=Server.CreateObject("scripting.filesystemobject")
myFile=Server.MapPath(LRs("F_Path"))
if fso.FileExists(myFile) then
fso.DeleteFile myFile
end if
set fso=Nothing
Set LRs=Nothing
Set LRs = Server.CreateObject("ADODB.Recordset")
LSql="Delete From Tso_FilesList Where F_Id="&F_Id
LRs.open LSql,conn
Set LRs=Nothing
Set Conn=Nothing
Response.Redirect("MyFiles.asp")
ElseIf Request("Action")="Exit" Then
Session("UserId")=""
Response.Redirect("Index.asp")
End If%>⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -