📄 qwbm_conn.asp
字号:
<!--
'☆★☆★☆★☆★☆★☆★☆★☆★☆★☆★☆★☆★☆★☆★☆★☆★☆★☆
'★ ★
'☆ 深山行者文章管理系统V1.0版本 ☆
'★ ★
'☆ 版权所有: http://www.qwbm.com ☆
'★ ★
'☆ 程序制作: 深山行者 ☆
'★ http://www.qwbm.com ★
'☆ QQ:565449214 ☆
'★ ★
'☆ ☆
'★ 主页地址: http://www.qwbm.com 深山行者个人网站 ★
'★ ★
'☆★☆★☆★☆★☆★☆★☆★☆★☆★☆★☆★☆★☆★☆★☆★☆★☆★☆
--><%
Response.Buffer = True ' 打开页面缓冲
on error resume next '打开容错错理
dim dd,connstr
dd="#&qwbm_data.www.asp.mdb"
connstr="provider=microsoft.jet.oledb.4.0;data source=" & server.mappath (""&dd&"")
set conn=server.createobject("adodb.connection")
conn.open connstr
if Err then
response.write "<font style='color:green;font-weight:bold;'>数据库连接出错</font><p>"
response.write "<font color='red'>连接数据库出错,错误原因:<font color='blue'>"&Err.Description&"</font></font>" & vbcrlf
Err.Clear
response.end
end if
If Err.Number <> 0 Then
Err.Clear
Set conn = Nothing
response.Write "数据库未找到,请修改qwbm_conn.asp文件里面的 数据库地址..." ' 错误处理
Response.Clear ' 清除缓冲区
Response.End
End If
qwbmcms1 = "深山行者留言板V1.0后台管理系统" '后台用户名
qwbmcms2 = "qwbm" 'session 命名前缀
qwbmcms3 = "',;,and,exec,insert,select,delete,update,count,*,%,chr,mid,master,truncate,char,declare,union,or" '传递不准非法参数 ,
qwbmcms4 = "666" '突破后台限制的东西,用于被锁定的后台用户
qwbmcms5 = 10000 '后台登陆过期时间
qwbmcms6 = "index.asp" '退出以后,设置首页是什么?如有的 index.asp index1.asp
qwbmcms7 = "',;,and,exec,insert,select,delete,update,count,*,%,chr,mid,master,truncate,char,declare,union,or" '传递不准非法参数 ,
qwbmcms8 = 3 '限制后台登录次数
function username(rname) '后台登陆时把用户名进行过滤
rname = replace(rname,"'","''''")
rname = replace(rname, ">", ">")
rname = replace(rname, "<", "<")
rname = replace(rname, VBCrlf,"<br>")
rname = replace(rname, " "," ")
rname = Replace(rname, CHR(32), " ")
rname = Replace(rname, CHR(34), """)
rname = Replace(rname, CHR(39), "'")
rname = Replace(rname, CHR(13), "")
rname = Replace(rname, CHR(10) & CHR(10), "</P><P'> ")
rname = Replace(rname, CHR(10), "<BR> ")
username = rname
end function
function requesturl(xmlrequest1,xmlrequest2,xmlrequest3,xmlrequest4,xmlrequest5) '过滤传递参数
'xmlrequest1 要检测的数据
'xmlrequest2 要显示的数据
ssxz3al=split(qwbmcms3,",")
for i=0 to ubound(ssxz3al)
if instr(lcase(xmlrequest1),ssxz3al(i))>0 then
response.write "<script>alert('"& xmlrequest2 &"');history.go(-1);</script>"
response.end()
end if
next
end function
sub errbox(boxvalue,boxurl,box1,box2,box3)
if boxvalue = "" then
boxvalues = ""
else
boxvalues = boxvalue
end if
if box1 = "1" then
boxurls = boxurl
else
if boxurl = "" then
boxurls = "history.go(-1);"
else
boxurls = "window.location.href = '"& boxurl &"';"
end if
end if
if box1 = "1" then
response.write "<style>body {background:#fff;margin:auto;text-align:center;}.box1 {line-height:32px;font-size:14px;margin:60px;clear:both;}</style><div class='box1'>"& boxvalues &"<br /><a href='javascript:history.go(-1);'>后退至上一页</a> <a href='"& boxurls &"'>转到下一页</a></div>"
response.end
else
response.write "<script>alert('"& boxvalues &"');"& boxurls &"</script>"
response.end
end if
end sub
function callobj(xx) '过滤提交的信息是否合法
ssxz3al=split(ssxz3,",")
for i=0 to ubound(ssxz3al)
if instr(xx,ssxz3al(i))>0 then
response.write "<script>alert(""提交参数中有非法字符"");history.go(-1);</script>"
response.end()
end if
next
end function
function formattime(fname)
fname = fname
fname = replace(fname,"-","")
fname = replace(fname," ","")
fname = replace(fname,":","")
fname = replace(fname,"PM","")
fname = replace(fname,"AM","")
fname = replace(fname,"上午","")
fname = replace(fname,"下午","")
formattime=fname & ".html" '设置生成文件的后缀名
end function
'过滤一些非常信息,禁止html代码
function replacehtml(fString)
fString = replace(fString, ">", ">")
fString = replace(fString, "<", "<")
fString = replace(fString, " "," ")
fString = replace(fString, "'", "'")
fString = Replace(fString, CHR(32), " ")
fString = Replace(fString, CHR(34), """)
fString = Replace(fString, CHR(39), "'")
fString = Replace(fString, CHR(13), "")
fString = Replace(fString, CHR(10) & CHR(10), "<P></P>")
fString = Replace(fString, CHR(10), "<br />")
fString = replace(fString, VBCrlf,"<br />")
replacehtml = fString
end function
'返回代码
function relasehtml(fString)
fString = replace(fString, ">", ">")
fString = replace(fString, "<", "<")
fString = replace(fString," ", " ")
fString = replace(fString, "'","'")
fString = Replace(fString, " ", CHR(32))
fString = Replace(fString, """, CHR(34))
fString = Replace(fString, "'", CHR(39))
fString = Replace(fString, "", CHR(13))
fString = Replace(fString, "<P></P>", CHR(10) & CHR(10))
fString = Replace(fString, "<br />", CHR(10))
fString = replace(fString,"<br />", VBCrlf)
relasehtml = fString
end function
%>
<%
function qwbm_lei(obj1,obj2,obj3,obj4,obj5,obj6,obj7,obj8,obj9,obj10) '各个页面类别调用
'call qwbm_lei("1","选择类别","boxform","","","","","","","")
'obj1 是显类那个类别的类 如果为空,则显示全部的类别
'obj2 一出现时的字,当选择为下拉框时默认出现在的字体
'obj3 下拉框名称。
'obj4 当为""时为,为下拉框,当为 1 时,为是示列表
'obj5 当obj4=1 启用,数组形式
'obj5 为数组信息 1╋news.asp?id=╋_blank╋hover
'obj5s(0) 1 为<li>, 2 为<dd> 3 为""
'obj5s(1) 为信息链接页面
'obj5s(2) 为链接打开方式 "_self,"_blank","_top"
'obj5s(3) 为当传递值一样的时候,显示的样式
'obj6 当obj4=1 时启用,数组形式
'obj6 为数组信息 1╋where lxian=1
'obj6s(0) 0 为不启级SQL高级模式, 1 为启用SQL高级模式,
'obj6s(1) 为显示条件内容 例如:" where lxian=1"
'call qwbm_lei("","选择类别","boxform","","1╋news.asp?id=╋_blank╋hover","1╋where lxian=1","","","","")
if obj1 = "" then '验证类别,当验证类别为""时,显示全部的类别,以梯形结构显示
obj1xobj = " fuid=0"
else '当类别不为空时,如果想显示显示几个类别组,这里开始进行排序数组" 1/2/3/4 "调用方式
obj1s = split(obj1,"/")
if ubound(obj1s) <> 0 then
obj1x = ""
for i = 0 to ubound(obj1s)
obj1x = obj1x & " or fuid=" & obj1s(i)
next
obj1xobj = " (" & right(obj1x,len(obj1x)-4) & ")"
else
obj1xobj = " fuid=" & obj1
end if
end if '验证类别结束
if obj4="" then '如果为"" ,则不启用下拉框。如果为 1 启用下拉列表
response.write "<select name='"& obj3 &"'>"
response.write "<option value=''>"& obj2 &"</option>"
elseif obj4="1" then
if obj5="" then
response.write "<strong style='color:#f00;font-weight:bold;'>因为第4个参数已经设置为,列表显示已经开启,连接也相应的开启<br>第5项参数也应该设置 链接页面 例如:1╋news.asp?id=╋_blank╋hover </strong>"
response.end
elseif obj5<>"" then
obj5s = split(obj5,"╋")
end if
if obj6="" then
response.write "<strong style='color:#f00;font-weight:bold;'>因为第4个参数已经设置为,列表显示已经开启,<font color='blue'>是否启用高级模式<font>也相应的开启<br>第6项参数也应该设置 例如:1╋where lxian=1 </strong>"
response.end
elseif obj6<>"" then
obj6s = split(obj6,"╋")
end if
end if
if obj4 = "" then
bgsql = "select fuid,id,lcolor,name from qwbmlei where"& obj1xobj &" and ldel=0 order by lorder desc,id desc"
elseif obj6s(0) = "0" then
bgsql = "select fuid,id,lcolor,name from qwbmlei where"& obj1xobj &" and ldel=0 order by lorder desc,id desc"
elseif obj6s(0)="1" then
bgsql = "select fuid,id,lcolor,name from qwbmlei "& obj6s(1) &" order by lorder desc,id desc"
end if
set bgrs=server.CreateObject("adodb.recordset")
bgrs.open bgsql,conn,1,1
if bgrs.eof and bgrs.eof then
response.write ""
else
do until bgrs.eof
if obj4="" then '如果为"" ,则不启用下拉框。如果为 1 启用下拉列表
%>
<option value="<%=bgrs("fuid")%>|<%=bgrs("id")%>" <%if cint(iid)=bgrs("id") then%>selected<%end if%><%if bgrs("lcolor")<>"" then response.write " style='color:"& bgrs("lcolor") &"'"%>><%=bgrs("name")%></option>
<% elseif obj4="1" then
if obj5s(0)="1" then
obj51l = "<li>"
obj51r = "</li>"
elseif obj5s(0)="2" then
obj51l = "<dd>"
obj51r = "</dd>"
elseif obj5s(0)="3" then
obj51l = ""
obj51r = ""
end if
response.write obj51l & "<a href='"& obj5s(1) & bgrs("id") &"' title='"& bgrs("name") &"' target='"& obj5s(2) &"'>"& bgrs("name") &"</a>" & obj51r & vbcrlf
end if
if obj6<>"" then '当采用高级模式的时候,不启用递归
call bgsg(bgrs("id"),obj4,obj5)
end if
bgrs.movenext
loop
if obj4="" then '如果为"" ,则不启用下拉框。如果为 1 启用下拉列表
response.write "</select>"
end if
end if
bgrs.closd
set bgrs=nothing
end function
%>
<%
sub bgsg(obj1,obj2,obj3) '递归调用函数,生成一个类别代码
if obj2="1" then
if obj3="" then
response.write "<strong style='color:#f00;font-weight:bold;'>递归 obj3 时出错</strong>"
response.end
elseif obj3<>"" then
obj3s = split(obj3,"╋")
end if
end if
sgsql = "select * from qwbmlei where ldel=0 and fuid="& obj1 &" order by lorder desc,id desc"
set sgrs=server.CreateObject("adodb.recordset")
sgrs.open sgsql,conn,1,1
if sgrs.eof and sgrs.bof then
response.write ""
else
while not sgrs.eof
bbrstr=""
for j=1 to sgrs("jiid")
bbrstr=" "&bbrstr
next
if obj2="" then '如果为"" ,则不启用下拉框。如果为 1 启用下拉列表
%>
<option value="<%=sgrs("fuid")%>|<%=sgrs("id")%>" <%if cint(iid)=sgrs("id") then%>selected<%end if%><%if sgrs("lcolor")<>"" then response.write " style='color:"& sgrs("lcolor") &"'"%>><%=bbrstr%>└<%=sgrs("name")%> </option>
<%
elseif obj2="1" then
if obj3s(0)="1" then
obj31l = "<li>"
obj31r = "</li>"
elseif obj3s(0)="2" then
obj31l = "<dd>"
obj31r = "</dd>"
elseif obj3s(0)="3" then
obj31l = ""
obj31r = ""
end if
response.write obj31l & "<a href='"& obj3s(1) & sgrs("id") &"' title='"& sgrs("name") &"' target='"& obj3s(2) &"'>"& sgrs("name") &"</a>" & obj31r & vbcrlf
end if
call bgsg(sgrs("id"),obj2,obj3)
sgrs.movenext
wend
end if
sgrs.close
set sgrs=nothing
end sub
%>⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -