reg_admin_exec.asp

在线考试系统

<%@ Language=VBScript %>

<% option explicit %>

<!-- #include file="conn_member.asp" -->

<html>
<head>
</head>
<body>

<%
	dim rs
	set rs=Server.CreateObject ("ADODB.Recordset")

	'//verify
	dim pwd
	pwd=Request("pwd")
	rs.Open "SELECT * FROM tMember WHERE uid='admin'",connm,3,3
	if rs("pwd")<>pwd then
		Response.Write "Access denied!"
		Response.End 
	end if
	rs.Close
	
	dim i	
	
	dim sAction
	dim sUid
	dim iScore
	dim sMemPwd
	dim iLock
	dim sNewName
	
	sAction=CStr(Request("action"))
	sUid=Request("uid")
	iScore=CLng(Request("score"))
	sMemPwd=Request("mempwd")
	iLock=CLng(Request("lock"))
	sNewName=CStr(Request("newname")) 
	
	select case sAction
		case "delete"
			Response.Write "Deleting....."
			rs.Open "SELECT * FROM tMember WHERE uid='" & sUid & "'",connm,3,3
			if not(rs.BOF and rs.eof) then
				rs.Delete
				Response.Write "OK!"
			end if
			rs.Close 
			
		case "reset"
			Response.Write "resetting data ..."
			rs.Open "SELECT * FROM tMember WHERE uid='" & sUid & "'",connm,3,3
			if not(rs.BOF and rs.eof) then
				'for i=1 to rs.Fields.Count
				'	if rs.Fields(i-1).Name<>"UID" and rs.Fields(i-1).Name<>"PWD" then
				'		if rs.Fields(i-1).Type=202 then
				'			rs.Fields(i-1).Value =""
				'		else
				'			rs.Fields(i-1).Value =0
				'		end if
				'	end if
				'next
				
				rs("logintimes")=0
				rs("readtimes")=0
				rs("writetimes")=0
				rs("score")=0
				rs("level")=1
				rs.Update 
				Response.Write "OK!"
			end if
			rs.Close 
		
		case "lock"
			Response.Write "changing lock state ..."
			rs.Open "SELECT * FROM tMember WHERE uid='" & sUid & "'",connm,3,3
			if not(rs.BOF and rs.eof) then
				rs("lock")=iLock 
				rs.Update
				Response.Write "OK!"
			end if
			rs.Close 
		
		case "score"
			Response.Write "changing score ..."
			rs.Open "SELECT * FROM tMember WHERE uid='" & sUid & "'",connm,3,3
			if not(rs.BOF and rs.eof) then
				rs("score")=iScore
				rs.Update 
				Response.Write "OK!"
			end if
			rs.Close
			
		case "password"
			Response.Write "changing password ..."
			rs.Open "SELECT * FROM tMember WHERE uid='" & sUid & "'",connm,3,3
			if not(rs.BOF and rs.eof) then
				rs("pwd")=sMemPwd 
				rs.Update 
				Response.Write "OK!"
			end if
			rs.Close
			
		case "scope"
			Response.Write "Scoping member info ...<p>"
			rs.Open "SELECT * FROM tMember WHERE uid='" & sUid & "'",connm,3,3
			if not(rs.BOF and rs.eof) then
				for i=1 to rs.Fields.Count
					Response.Write "<b>" & rs.Fields(i-1).Name & "</b> = " & rs.Fields(i-1).Value & "<br>" & vbCrLf 
				next
				Response.Write "OK!"
			end if
			rs.Close 
			
		case "rename"
			Response.Write "change member name ...<p>" & vbCrLf
			rs.Open "SELECT * FROM tMember WHERE uid='" & sNewName & "'",connm,3,3
			
			if not(rs.BOF and rs.EOF) then
				Response.Write "The newname was exist (" & sNewName & ")."
			else
				rs.Close
				rs.Open "SELECT * FROM tMember WHERE uid='" & sUid & "'",connm,3,3
				if not(rs.BOF and rs.EOF) then
					rs("uid")=sNewName
					rs.Update 
					Response.Write "OK!"
				end if
			end if
			rs.Close 
		
	end select
	
	set rs=nothing
	call closeconnm
			
%>

<a href="reg_ADMIN.HTM">back</a>
</body> 
</html>