<!-- #include file="conn.asp" -->
<!--#include file="upload_5xSoft.asp"-->
<!-- #include file="md5.asp" -->
<%
dim upload,picfile
set upload=new upload_5xSoft '建立上传对象
set picfile=upload.file("file") '上传图片
'----------------验证开始
'禁止从站点外部提交数据
server_v1=Cstr(Request.ServerVariables("HTTP_REFERER"))
server_v2=Cstr(Request.ServerVariables("SERVER_NAME"))
if mid(server_v1,8,len(server_v2))<>server_v2 then
errmsg=errmsg& "你提交的路径有误,禁止从站点外部提交数据!"
end if
if picfile.FileSize>102400 Then '限制文件大小 100K之内
errmsg=errmsg&"文件大小不能超过100K"
End If
'判断用户存在否.
Set rs = Server.CreateObject("ADODB.Recordset")
sql="select name from users where name='"&upload.form("name")&"'"
rs.open sql,conn,1,1
if not(rs.eof and rs.bof) then
errmsg=errmsg&"该用户已经存在,请换个用户名."
end if
rs.close
set rs=nothing
if errmsg<>"" then
Response.Write("<script language='javascript'>alert('"+errmsg+"');history.go(-1);</script>")
Response.end
end if
'----------------验证结束,更新数据库
'更新用户资料表
Set rs = Server.CreateObject("ADODB.Recordset")
rs.open "users",conn,1,3
rs.addnew
rs("name")=upload.form("name")
rs("pass")=md5(upload.form("password"))
rs("question")=upload.form("question")
rs("answer")=md5(upload.form("answer"))
rs("oicq")=upload.form("oicq")
rs("regip")=Cstr(Request.ServerVariables("remote_host"))
rs("regtime")=date()
rs.update
rs.close
set rs=nothing
if picfile.FileSize>0 then ''如果 FileSize > 0 说明有文件数据
'更新相册表
Set rs = Server.CreateObject("ADODB.Recordset")
rs.open "photo",conn,1,3
rs.addnew
rs("name")=upload.form("name")
rs("photoname")=picfile.filename
rs("shuoming")=upload.form("shuoming")
filenameend=picfile.filename
filenameend=split(filenameend,".")
ext=ucase(filenameend(ubound(filenameend))) '取扩展名
if ext="GIF" or ext="JPG" or ext="JPEG" then
randomize
filename=year(now)&month(now)&day(now)&hour(now)&minute(now)&second(now)&"_"&int(rnd*1000)&"."
filename=filename&ext '产生随机文件名,格式为:当前系统的时间+(0~1000)的随机数
savedfile="uppic/"&filename
rs("photo")=savedfile '路径存数据库
picfile.saveAs Server.mappath(savedfile) '存于uppic/目录下
else
response.write "文件格式不对"
end if
set picfile=nothing
rs.update
rs.close
set rs=nothing
set upload=nothing
end if
%>
<table background="images/dw.gif" width="200" align="center" cellpadding=5>
<TR align="center">
<TD background="images/pointdot.gif" height="1" colspan=2></TD>
</TR>
<tr align="center"><Td colspan=2>
<%
if savedfile<>"" then
response.write "<p align=center>"
response.write "<a href="&savedfile&" target=_blank>点击这里查看上传的图片</a>"
response.write "</p>"
end if
session("user")=upload.form("name")
output= "<script language=javascript> function redirect() { document.location='index.asp'} setTimeout(redirect,5000) </script> " & "注册成功...<br> 五秒后自动登录!"
Response.Write output
%>