login.asp

简单整站程序

<!--#include virtual="/include/conn.asp"-->
<!--#include virtual="/include/md5.asp"-->
<html>
<head>
<title>管理员登陆</title>
<meta http-equiv="Content-Type" content="text/html; charset=gb2312">
<link rel="stylesheet" href="css/Style.css" type="text/css">
<script language="javascript" src="../js/manage.js" type="text/javascript"></script>
</head>
<body topmargin="0" leftmargin="0" rightmargin="0">
<table style="width: 100%; height: 100%"><tr><td>
<%
   if request.querystring("action")="login" then

      AdminName=trim(request.form("username"))
      AdminPass=trim(request.form("userpass"))
      AdminName=Replace(AdminName,"'","")
      AdminPass=Replace(AdminPass,"'","")

      if AdminName="" then 
         response.write"<script>alert('用户名不能为空!');history.go(-1);</script>"
         response.end
      end if
      if AdminPass="" then
         response.write"<script>alert('密码不能为空!');history.go(-1);</script>"
         response.end
      end if
      if request.form("verifycode")="" then
         response.write"<script>alert('验证码不能为空!');history.go(-1);</script>"
         response.end
      end if
      if request.form("verifycode")<>session("verifycode") then 
         response.write"<script>alert('验证码不正确!');window.location.href='login.asp';</script>"
         response.end
      end if

	  Set rs=server.createobject("adodb.recordset")
	  sql="Select * from SysAdmin where AdminName='"&AdminName&"' and AdminPass='"&md5(AdminPass)&"' "
	  rs.open sql,conn,1,1
 
      if not rs.eof then 
         Session("AdminName")=AdminName
         Session("AdminPass")=AdminPass
         Response.Cookies("AdminName")=AdminName
         Response.Cookies("AdminPass")=AdminPass
         Response.Cookies("AdminID")=rs("AdminID")
         Response.Cookies("QuanXian")=rs("QuanXian")
         if Request.QueryString("returl")<>"" then
            Response.Redirect("news/AddNews.asp")
         else
            response.redirect("admin.asp")
         end if
      else
         response.write "<script>alert('用户名或密码错误!');history.go(-1);</script>"
         response.end
      end if
     
      RsClose()
      ConnClose()
   end if

   Dim num1
   Dim rndnum
   Randomize
   Do While Len(rndnum)<4
   num1=CStr(Chr((57-48)*rnd+48))
   rndnum=rndnum&num1
   Loop
   session("verifycode")=rndnum
%>
<form method="post" action="?action=login&returl=<%=Request.QueryString("returl")%>" onsubmit="return CheckAdminLogin();" name="AdminLogin">
    <table border="0" align=center cellpadding="5" cellspacing="1" class=tableBorder width="60%">
     <tr> <th colspan=2>== 管理员登陆 ==</th>
     </tr>
      <tr>
        <td align=center class="forumRowHighlight" width="30%" >用户名：</td><td class=forumRow width="70%">
		<input name="username" maxlength="30" size="25" class="tableBorder"></td>
      </tr>
      <tr>
        <td align=center class="forumRowHighlight">密&nbsp;&nbsp;码：</td><td class=forumRow>
		<input type="password" name="userpass" maxlength="30" size="25" class="tableBorder"></td>
      </tr>
      <tr>
        <td align=center class="forumRowHighlight">附加码：</td><td class=forumRow><input name="verifycode" maxlength="20" size="12" class="tableBorder"> 请输入附加码:<B><font color=RED><%=session("verifycode")%></font></B>
</td>
      </tr>
      <tr><td colspan=2 align=center class=forumRowHighlight>
    <input type="submit" name="Submit" value="登陆系统" class=button>
    &nbsp;&nbsp;
    <input type="button" name="Submit1" onClick="javascript:location.href='/'" value="返回首页" class=button></td></tr>
    </table></form>
 
</td></tr></table>
</body>
</html>