function_login.asp

这个系统是企业管理系统

<%@LANGUAGE="VBSCRIPT" CODEPAGE="936"%>
<%Server.ScriptTimeOut=6000%> 
<!--#include file="Check_Sql123.asp" -->

<!--#include file="jm5.asp"-->

<!--#include file="conn_db123.asp" -->
<%
dim loginname ,loginpwd,access

loginname=trim(request("loginname"))
loginpwd=trim(Request("loginpwd"))
CheckCodema=trim(Request("CheckCodema"))
sf=trim(request("sf"))

if loginname="" or loginpwd="" then
 	response.write "<script language=JavaScript>{window.alert('对不起，帐号和密码不能为空!');window.history.go(-1);}</ script>"
    response.end
end if
if sf="" then
 	response.write "<script language=JavaScript>{window.alert('对不起，请选择一种身份!');window.history.go(-1);}</script>"
    response.end
end if
if session("CheckCodema")="" then
 	response.write "<script language=JavaScript>{window.alert('报错：\n验证码超时无效！\n\n原因是您在此页停留的时间过长，请返回后重新输入!');window.location.href='index.asp';}</ script>"
end if
if CheckCodema<>CStr(session("CheckCodema")) then
 	response.write "<script language=JavaScript>{window.alert('报错：  验证码输入错误！\n\n原因是您输入的验证码 “"&CheckCodema&"” 和系统产生的验证码 “"&CStr(session("CheckCodema"))&"” 不一致\n请返回后重新输入!');window.location.href='index.asp';}</ script>"
end if

if sf="gly"then '如果身份是管理员的话start

set rs=server.createobject("adodb.recordset")
loginpwd=md5(loginpwd)

'sql="select * from admin_123 where adminlogin='" & loginname & "' "
sql="select * from admin_123 where adminlogin='" & loginname & "' and adminpwd='" & loginpwd & "'"

rs.open sql,conn,1,2
  if rs("isbelocked")="T" then
 	response.write "<script language=JavaScript>{window.alert('登录失败！原因是您的帐户被锁定，请与管理员联系!！　');window.history.go(-1);}</script>"
    response.end
end if
if rs.eof then
 	response.write "<script language=JavaScript>{window.alert('对不起，您的帐号或密码错误!！　');window.history.go(-1);}</script>"
    response.end
end if

if not rs.eof then
session("shangcilogintime")=rs("lastlogintime")
rs("shangcilogintime")=rs("lastlogintime")
rs("lastlogintime")=now
session("accesstimes")=rs("accesstimes")+1
rs("accesstimes")=rs("accesstimes")+1
rs.update
 url="admin_index.asp"


session("admin_id_log")=rs("admin_id") 'g是否登录用
session("admin_id")=rs("admin_id")
session("admin_login") = rs("adminlogin") 'g
session("admin_name")=rs("adminname")'g
session("admin_shenfen")=rs("admin_shenfen")'g身份

if session("admin_shenfen")="0"then session("admin_danwei")="系统管理员"
if session("admin_shenfen")="1"then session("admin_danwei")="一般管理员"

'session("admin_bumen_big")=trim(rs("admin_bumen_big"))'
'session("admin_bumen_small")=trim(rs("admin_bumen_small"))'

'具体权限
session("admv_jb")=trim(rs("admv_jb"))'
session("adma_jb")=trim(rs("adma_jb"))'
session("admu_jb")=trim(rs("admu_jb"))'
session("admd_jb")=trim(rs("admd_jb"))'
session("admc_jb")=trim(rs("admc_jb"))'

'insert adminaccdiary

ip1 = Request.ServerVariables("HTTP_X_FORWARDED_FOR") '　代理IP
ip2 =Request.ServerVariables("REMOTE_ADDR") 
if ip1 = "" then
ip = ip2
else
ip = ip1
end if
sql_admindiary="select * from diary_admin_login"
set rs_admindiary=server.CreateObject("adodb.recordset")
rs_admindiary.open sql_admindiary,conn,1,2
rs_admindiary.addnew
      rs_admindiary("admin_id")=session("admin_id_log")
      rs_admindiary("adminlogin")=session("admin_login")
      rs_admindiary("adminname")=session("admin_name")
	  rs_admindiary("danwei")=session("admin_danwei")
      rs_admindiary("logintime")=now
      rs_admindiary("loginip")=ip
   rs_admindiary.update
	  rs_admindiary.close
	  set rs_admindiary=nothing
	  '////////////////////////////////////////////////////
	    rs.close
  set rs=nothing
  conn.close
  set conn=nothing
  end if 
 end if'如果身份是管理员的话end
  
  if sf="js" then '如果身份是教师的话start
  
    '------------------------------------------------------------------------
sql_syssetup="select sys_is_can_jg_login from admin_setup_sys  where  id is not null"
set rs_syssetup=server.CreateObject("adodb.recordset")
rs_syssetup.open sql_syssetup,conn,1,1
if not rs_syssetup.eof then
  if rs_syssetup("sys_is_can_jg_login")<>"T" then
 	response.write "<script language=JavaScript>{window.alert('警告: 禁止教工自行登录 , 如有疑问请与管理员联系！');window.history.go(-1);}</script>"
    response.end
end if
end if
rs_syssetup.close
set rs_syssetup=nothing
'------------------------------------------------------------------------

set rs=server.createobject("adodb.recordset")
loginpwd=md5(loginpwd)

sql="select * from mainjg where login123='" & loginname & "' and pwd123='" & loginpwd & "'"

'sql="select * from mainjg where login123='" & loginname & "' "
rs.open sql,conn,1,2
  
if rs.eof then
 	response.write "<script language=JavaScript>{window.alert('对不起，您的帐号或密码错误!！　');window.history.go(-1);}</script>"
    response.end
end if

if not rs.eof then
session("shangcilogintime")=rs("lastlogintime")
rs("shangcilogintime")=rs("lastlogintime")
rs("lastlogintime")=now
rs.update
session("jg_reg_id")=rs("id")
 url="jg_login_index_view.asp"
session("admin_name")=rs("xingming")'g

session("jg_reg_id")=rs("id") 'g判断如是自助注册则有转向自己记录的权限

	    rs.close
  set rs=nothing
  conn.close
  set conn=nothing
   end if
 end if'如果身份是管理员的话end
  
  Response.Redirect url

  '------------------------------------------

%>