checklogin.asp

用ASP写的学生管理系统

<!--#include file="conn.asp"-->
<!--#include file="md5.asp"-->
<%
Userid=trim(request.form("userid"))
Password=trim(request.form("password")) 
cook=cint(request.form("cook")) 
if Userid = "" or Password ="" then response.redirect "help.asp?error=004"
if Userid = request.cookies("userid") then response.redirect "help.asp?error=005"
sql = "select * from [user] where userid='"&Userid&"'"
Set rs=Server.CreateObject("ADODB.RecordSet") 
rs.open sql,conn,1,3
if (rs.bof and rs.eof) then
	response.redirect "help.asp?error=003"
	response.end
end if
if rs("Status")<>"正常" and rs("Status")<>"1" then
response.write "<script language='javascript'>"
response.write "alert('出错了，您的学号已被锁定或者未通过审核。');"
response.write "location.href='javascript:history.go(-1)';"
response.write "</script>"
response.end
end if
if  rs("UserPassword")<> md5(Password) then
session("login_error")=session("login_error")+1
response.write "<script language='javascript'>"
response.write "alert('您输入的密码不正确，请检查后重新输入。\n\n出错 "&session("login_error")&" 次');"
response.write "location.href='javascript:history.go(-1)';"
response.write "</script>"
response.end
else
        
	rs("lastlogin")=now()
	rs("IP")=Request.serverVariables("REMOTE_ADDR")
	rs("TotalLogin")=rs("TotalLogin")+1
	rs.update
	response.cookies("userid")=userid
response.redirect "index.asp"
end if
'rs.close
'set rs=nothing
%>