📄 login2.asp
字号:
<!--#include file="conn.asp"-->
<%
FileName = Request ("FileName")
UserName = Request ("UserName")
PassWord = Request ("PassWord")
If PassWord = "" Then
Conn.Close
Session ("Message") = "请输入您的密码。"
Response.Redirect "error.asp"
Response.End
End If
If UserName = "" Then
Conn.Close
Session ("Message") = "请输入您的用户名。"
Response.Redirect "error.asp"
Response.End
End If
Function Filter_SQL(strData)
Dim strFilter
Dim blnFlag
Dim i
strFilter="',;,//,--,exec,declare"
blnFlag = Flase
Dim arrayFilter
arrayFilter = Split(strFilter,",")
For i = 0 To UBound(arrayFilter)
If Instr(strData,arrayFilter(i)) > 0 Then
blnFlag = True
Exit For
End If
Next
If blnFlag Then
Conn.Close
Session ("Message") = "用户名或密码错误。"
Response.Redirect "error.asp"
Response.End
Else
Filter_SQL = strData
End If
End Function
Filter_SQL(Request ("UserName"))
Filter_SQL(Request ("PassWord"))
rs.Open "Select * From member Where UserName = '" & UserName & "'",Conn
If rs.Eof Then
rs.Close
Conn.Close
Session ("Message") = "您输入的用户名并不存在,请<a href='signup.asp'>注册</a> 。"
Response.Redirect "error.asp"
Response.End
End if
rs.Close
rs.Open "Select * From member Where UserName = '" & UserName & "' and PW = '" & PassWord & "'",Conn
If rs.EOF Then
rs.Close
Conn.Close
Session ("Message") = "密码错误。"
Response.Redirect "error.asp"
Response.End
Else
rs.Close
Response.Cookies("" & DomainName & "")("UserName") = UserName
Response.Cookies("" & DomainName & "")("PassWord") = PassWord
Response.Cookies("" & DomainName & "").Expires=#January 01, 2010#
LoginIP = Request.serverVariables("REMOTE_ADDR")
ProxyIP = Request.ServerVariables("HTTP_X_FORWARDED_FOR")
If ProxyIP <> "" Then
LoginIP = ProxyIP
End If
rs.Open "Update member Set LoginTime = Now(), LoginIP = '" & LoginIP & "' Where UserName = '" & UserName & "'",Conn
Conn.Close
If FileName <> "" Then
Response.Redirect "" & FileName & ""
Response.End
Else
Response.Redirect "index.asp"
Response.End
End If
End If
%>⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -