admin_adminsave.asp

admin/admin.asp是WAP的后台管理登陆页面

<!--#include file="conn.asp"-->
<%
  if session("flag")="" then
  response.redirect "adminlogin.asp"
  response.end
  end if
%>
<%if session("flag")>1 then
response.write"<SCRIPT language=JavaScript>alert('对不起，你没有这个权限！');"
response.write"javascript:history.go(-1)</SCRIPT>"
response.end
end if%>
<%
username=request.form("username")
password=request.form("password")
flag=request.form("flag")
shouji=request.form("shouji")
if username="" or password="" then
response.write"<SCRIPT language=JavaScript>alert('管理员名称和密码都不能为空！');"
response.write"javascript:history.go(-1)</SCRIPT>"
Response.End
end if

set rs=server.CreateObject("ADODB.RecordSet")

if request("act")="edit" and request.QueryString("id")<>"" then
id=request("id")
sql="select * from admin where id="& request.QueryString("id")
rs.open sql,conn,3,2
if not rs.eof then
rs("flag")=flag
rs("username")=username
rs("password")=password
rs("shouji")=shouji
rs.update
end if
rs.close
elseif request("act")="add" then
sql="select * from admin where username='"&username&"'"
rs.open sql,conn,3,2
if (rs.eof and rs.bof) then
rs.addnew
rs("flag")=flag
rs("username")=username
rs("password")=password
rs("shouji")=shouji
rs.update
end if
rs.close
end if
set rs=nothing
conn.close
set conn=nothing
response.redirect "admin_admin.asp"
%>