login.asp

一个小型ASP做的工资管理系统,这也是别人做的,我觉得他很地干静.

<!--#include file="conn.asp"-->
<!--#include file="md5.asp"-->
<%
name=request("username")
pass=request("password")
login=request("login")

if login="yuangong" then
set rs=server.createobject("adodb.recordset")
sql="select * from [user] where name='"&name&"'" 
rs.open sql,conn,1,3
if rs.bof and rs.eof then
response.write"<script>alert('用户名或密码错误，请重新输入！');javascript:history.back(1)</script>"
response.end
elseif rs("pass")<>md5(pass,32) then
response.write"<script>alert('用户名或密码错误，请重新输入！');javascript:history.back(1)</script>"
response.end
end if
ok=rs("ok")
if ok="no" then
response.write"<script>alert('您的帐号需要管理员审核，请耐心的等待。');javascript:history.back(1)</script>"
response.end
end if

set rsa=server.createobject("adodb.recordset")
sql="select * from log"
rsa.open sql,conn,1,3
rsa.addnew
rsa("name")=name
rsa("ip")=Request.servervariables("REMOTE_ADDR")
rsa.update
rsa.close

Response.Cookies("user")=name
Response.Cookies("pass")=pass
response.redirect "member.asp"

elseif login="admin" then
set rs=server.createobject("adodb.recordset")
sql="select * from [admin] where name='"&name&"'" 
rs.open sql,conn,1,3
if rs.bof and rs.eof then
response.write"<script>alert('2用户名或密码错误，请重新输入！');javascript:history.back(1)</script>"
response.end
elseif rs("pass")<>md5(pass,32) then
response.write"<script>alert('2用户名或密码错误，请重新输入！');javascript:history.back(1)</script>"
response.end
end if

set rsa=server.createobject("adodb.recordset")
sql="select * from adlog"
rsa.open sql,conn,1,3
rsa.addnew
rsa("name")=name
rsa("ip")=Request.servervariables("REMOTE_ADDR")
rsa.update
rsa.close

Response.Cookies("aduser")=name
Response.Cookies("adpass")=pass
response.redirect "admin/adweb.asp"
end if

if request("user")="out" then
response.buffer=true
response.expires=0
Response.Cookies("user")=""
Response.Cookies("pass")=""
response.redirect "index.asp"
end if

if request("aduser")="out" then
response.buffer=true
response.expires=0
Response.Cookies("aduser")=""
Response.Cookies("adpass")=""
response.redirect "index.asp"
end if
%>