check.asp

来自「是一个公交信息查询系统」· ASP 代码 · 共 40 行

<!-- #include file="../inc/config.asp" -->
<%
if request.Form.count>0 then
ip = Request.ServerVariables("HTTP_X_FORWARDED_FOR") 	'读取ip地址
if ip = "" then 
ip = Request.ServerVariables("REMOTE_ADDR") 
response.cookies("buyok_user_ip")=ip 
end if
dim qmadmin_user,qmadmin_pass
  qmadmin_user=HTMLEncode(trim(request.Form("name")))
  qmadmin_pass=HTMLEncode(trim(request.Form("password")))
  ChkNum=HTMLEncode(trim(request.Form("CheckNum")))
  if CheckStringLength(qmadmin_user)>20 or qmadmin_user="" then
    call ShowErr("用户名不正确！","1")
  end if
  if CheckStringLength(qmadmin_pass)>20 or qmadmin_pass="" then
    call ShowErr("密码不正确！","1")
  end if
  If (Cstr(ChkNum) <> Cstr(Session("CheckNum")) or ChkNum="") Then
  	call ShowErr("验证码错误！","1")
    end if
  sqlstr="select * from [admin] where qmadmin_user='"& qmadmin_user &"' and qmadmin_pass='"& md5(md5(qmadmin_pass,16),32) &"'"
  rs.open sqlstr,conn,1,3
  if not rs.eof then
	session("qmadmin_user")=qmadmin_user
	session("qmadmin_pass")=qmadmin_pass
	session("quanxian")=rs("qianxian")
	rs("qmadmin_lastlogintime")=now()
	rs("qmadmin_lastloginip")=ip
	rs("qmadmin_logintimes")=rs("qmadmin_logintimes")+1
	rs.update
	rs.close
	call ShowErr("登录成功！","Index.asp")
  else
	call ShowErr("用户名或密码错误！","1")
	rs.close
  end if
end if
%>