📄 checkadmin.asp

📁 一套设计完善、高效的web商城解决方案

💻 ASP

字号:

<!--#include file="../Config/Conn.asp" -->
<!--#include file="../Config/VisitorInfo.asp" -->
<!--#include file="../Config/Md5.asp" -->
<%
Dim LawlessNum,ExpiresTime,AdminName,AdminPass,Verify,UserIP,Domain

LawlessNum = 6 '设置用户非法登陆多少次后锁定
ExpiresTime = 10 '设置为用户解锁的间隔时间(分钟)

if Trim(request("Verify")) = "" then
	Response.Write "<script language=JavaScript>{window.alert('您填入验证码!\n\n返回后请刷新登陆页面并重新输入正确的信息!');this.location.href=""/"&SysPath&""&ManageUrl&"/Login.asp"";}</script>"
elseif Session("GetCode") = "9999" then
	Session("GetCode") = ""
	Response.Write "<script language=JavaScript>{window.alert('请不要重复提交，如需重新登陆请返回登陆页面!\n\n返回后请刷新登陆页面并重新输入正确的信息!');this.location.href=""/"&SysPath&""&ManageUrl&"/Login.asp"";}</script>"
elseif CStr(Session("GetCode"))<>CStr(Trim(request("Verify"))) then
	Response.Write "<script language=JavaScript>{window.alert('您填入的验证码错误，请重新输入!');this.location.href=""/"&SysPath&""&ManageUrl&"/Login.asp"";}</script>"
end if
Session("GetCode")=""
AdminName=replace(trim(request("name")),"'","")
AdminPass=replace(md5(trim(Request("pass"))),"'","")
'Domain=Request.ServerVariables("SERVER_NAME")'Request.ServerVariables("LOCAL_ADDR")'来访者URL

'解锁
conn.execute("Update Admin set Lock=0 where datediff('nn',LockDate,now())>"&ExpiresTime&" and AdminName='"&AdminName&"'")

Set rs = conn.execute("select * from admin where AdminPass='"&AdminPass&"' and AdminName='"&AdminName&"'")
if rs.eof and rs.bof then
	rs.close
	call Error()
else
	If rs("Lock") => LawlessNum Then
		'Response.write "<script>alert(""用户名已被锁定，请与管理员联系！"");history.back();/script>"
		Response.write "<script>alert(""请不要非法登陆本系统！\n\n您的IP："&UserIP&"已被记录在案\n\n时间：" & Now()&""");history.back();</script>"
		Response.end
	end if
	if AdminName=rs("AdminName") and AdminPass=rs("AdminPass") then
		Conn.execute("Insert into Log (Name,IP,[Zone],OS,Browser,ScreenSize,State,Flag) Values ('"&AdminName&"','"&IP&"','"&VisitorAddress&"','"&OS&"','"&Browser&Version&"','"&Request("ScreenWidth")&"x"&Request("ScreenHeight")&"',1,1)")
		
		Session("AdminName")=rs("AdminName")
		Response.Redirect "Default.asp"
	else
		call Error()
	end if
end if

sub Error()
	Conn.execute("Update Admin set Lock=Lock+1,LockDate='"&now()&"' where AdminName='"&AdminName&"'")
	Conn.execute("Insert into Log (Name,IP,[Zone],OS,Browser,ScreenSize,State,Flag) Values ('"&AdminName&"','"&IP&"','"&VisitorAddress&"','"&OS&"','"&Browser&Version&"','"&Request("ScreenWidth")&"x"&Request("ScreenHeight")&"',0,1)")
    response.write "<script>alert(""用户名或密码错误，请检查！"");this.location.href=""/"&SysPath&""&ManageUrl&"/Login.asp"";</script>"
end sub
rs.close
conn.close
set rs=nothing
set conn=nothing
%>

💿 文件大小 3991 K

👤 上传用户 k_oyy

📂 所属分类 SQL Server

🏷️ 相关标签

#web #商城 #方案

⌨️ 快捷键说明

复制代码 Ctrl + C

搜索代码 Ctrl + F

全屏模式 F11

切换主题 Ctrl + Shift + D

显示快捷键 ?

增大字号 Ctrl + =

减小字号 Ctrl + -