📄 login2.asp
字号:
<%@ LANGUAGE = VBScript %>
<!--#include file="conn.asp"-->
<%
FileName = Request ("FileName")
AdminUserName = Request ("AdminUserName")
AdminPassWord = Request ("AdminPassWord")
If AdminPassWord = "" Then
Conn.Close
Set Conn = nothing
Session ("Message") = "请输入您的管理员密码。"
Response.Redirect "error.asp"
Response.End
End If
If AdminUserName = "" Then
Conn.Close
Set Conn = nothing
Session ("Message") = "请输入您的管理员用户名。"
Response.Redirect "error.asp"
Response.End
End If
Function Filter_SQL(strData)
Dim strFilter
Dim blnFlag
Dim i
strFilter="',;,//,--,exec,declare"
blnFlag = Flase
Dim arrayFilter
arrayFilter = Split(strFilter,",")
For i = 0 To UBound(arrayFilter)
If Instr(strData,arrayFilter(i)) > 0 Then
blnFlag = True
Exit For
End If
Next
If blnFlag Then
Conn.Close
Set Conn = nothing
Session ("Message") = "管理员用户名或密码错误。"
Response.Redirect "error.asp"
Response.End
Else
Filter_SQL = strData
End If
End Function
Filter_SQL(Request ("AdminUserName"))
Filter_SQL(Request ("AdminPassWord"))
rs.Open "Select * From setup Where AdminUserName = '" & AdminUserName & "'",Conn
If rs.Eof Then
rs.Close
Set rs = nothing
Conn.Close
Set Conn = nothing
Session ("Message") = "您输入的管理员用户名并不存在。"
Response.Redirect "error.asp"
Response.End
End if
rs.Close
rs.Open "Select * From setup Where AdminUserName = '" & AdminUserName & "' and AdminPassWord = '" & AdminPassWord & "'",Conn
If rs.EOF Then
rs.Close
Set rs = nothing
Conn.Close
Set Conn = nothing
Session ("Message") = "管理员密码错误。"
Response.Redirect "error.asp"
Response.End
Else
rs.Close
Set rs = nothing
Conn.Close
Set Conn = nothing
Response.Cookies("Admin" & DomainName & "")("AdminUserName") = AdminUserName
Response.Cookies("Admin" & DomainName & "")("AdminPassWord") = AdminPassWord
If FileName <> "" Then
Response.Redirect "" & FileName & ""
Response.End
Else
Response.Redirect "index.asp"
Response.End
End If
End If
%>⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -