28,408
社区成员
发帖
与我相关
我的任务
分享新手求教,conn.asp 怎样修改代码,不用输入登录和密码登录进入后台?登录账号admin,密码123456
代码如下:
<%
connstr="Provider=Microsoft.Jet.OLEDB.4.0; Data Source=" +server.mappath("DataBase/Data.asp")
Set conn= Server.CreateObject("ADODB.Connection")
conn.Open connstr
Str="Select * From XcAdmin"
Set Rs=Conn.execute(Str)
TTitle=Rs("XcTitle")
CopyRight=Rs("XcCopyRight")
XcScript=Rs("XcScript")
'-----------------------------------------------------------------------
'显示弹出窗口
'-----------------------------------------------------------------------
Sub ShowMessAge(strChar,url)
Str="<Script Language=JavaScript>alert('" & StrChar & "');location.href='" & url & "';</script>"
Response.Write(Str)
end Sub
function ShowMess(strChar)
Str="<Script Language=JavaScript>alert('" & StrChar & "');</script>"
Response.Write(Str)
end function
'-----------------------------------------------------------------------
'去处非法的SQL代码
'-----------------------------------------------------------------------
function ReplaceBadChar(strChar)
StrChar=Trim(StrChar)
if strChar="" then
ReplaceBadChar=""
else
ReplaceBadChar=replace(replace(replace(replace(replace(replace(replace(strChar,"'",""),"*",""),"?",""),"(",""),")",""),"<",""),".","")
end if
end function
function ReplaceBadChar2(strChar)
StrChar=Trim(StrChar)
if strChar="" then
ReplaceBadChar1=""
else
ReplaceBadChar1=replace(replace(replace(replace(replace(replace(replace(strChar,"'",""),"*",""),"?",""),"(",""),")",""),"<",""),".","")
end if
if ReplaceBadChar1<> "" then
ReplaceBadChar2=ReplaceBadChar1
Else
ReplaceBadChar2=" "
End if
end function
function system(text)
if Instr(text,"NT 5.1")>0 then
system=system+"Windows XP"
elseif Instr(text,"NT 5")>0 then
system=system+"Windows 2000"
elseif Instr(text,"NT 4")>0 then
system=system+"Windows NT4"
elseif Instr(text,"4.9")>0 then
system=system+"Windows ME"
elseif Instr(text,"98")>0 then
system=system+"Windows 98"
elseif Instr(text,"95")>0 then
system=system+"Windows 95"
else
system=system+"未知"
end if
end function
'-----------------------------------------------------------------------
'写入登陆日志
'-----------------------------------------------------------------------
Sub UserLog(UserName,LogIP,LogSys,LogOpr)
Str="Insert Into XcUserLog(LogUser,LogIP,LogSys,LogOpr) Values('"
Str=Str & UserName & "','" & LogIP & "','" & LogSys & "'," & LogOpr & ")"
'Response.Write(Str)
Conn.execute(Str)
end Sub
'-----------------------------------------------------------------------
'写入操作日志
'-----------------------------------------------------------------------
Sub UserOpr(OprInfo)
OprIP=Request.ServerVariables("REMOTE_ADDR")
OprSys=system(Request.ServerVariables("ALL_HTTP"))
UserName=Session("UserName")
Str="Insert Into XcOprLog(OprUser,OprIP,OprSys,OprInfo) Values('"
Str=Str & UserName & "','" & OprIP & "','" & OprSys & "','" & OprInfo & "')"
'Response.Write(Str)
Conn.execute(Str)
end Sub
'-----------------------------------------------------------------------
'用户是否登陆
'-----------------------------------------------------------------------
Sub IsLog()
IF Session("UserName")="" or Session("Useropr")= "" Then
Call ShowMessAge("请不要非法登陆","AdminLogin.asp")
Response.End()
End if
End Sub
'-----------------------------------------------------------------------
'用户可以浏览吗
'-----------------------------------------------------------------------
Sub IsBrower()
PageName=Request.ServerVariables("URL")
PName=Split(PageName,"/")
PageName=PName(Ubound(PName))
PName=Split(PageName,"?")
PageName=PName(Lbound(PName))
Str="Select PageOpr From UserPage Where PageName='" & PageName & "'"
Set Rs1=Conn.execute(Str)
If Rs1("PageOpr") < Cint(Session("UserOpr")) Then
Call ShowMess("对不起,您没有浏览此页的权限!")
Response.End()
End if
End Sub
'-----------------------------------------------------------------------
'用户可以操作吗
'-----------------------------------------------------------------------
Sub IsOpr()
PageName=Request.ServerVariables("URL")
PName=Split(PageName,"/")
PageName=PName(Ubound(PName))
PName=Split(PageName,"?")
PageName=PName(Lbound(PName))
Str="Select PageOpr From UserPage Where PageName='" & PageName & "'"
Set Rs1=Conn.execute(Str)
If Rs1("PageOpr") < Cint(Session("UserOpr")) Then
Call ShowMess("对不起,您没有操作此项目的权限!")
Response.End()
End if
End Sub
function UserToStr(UserOpr)
Str="Select * From IsOpr where OprValue=" & Cint(UserOpr)
Set Rs2=Conn.execute(Str)
UserToStr=Rs2("OprName")
end function
function suijishu()
dim suiji
Randomize Timer
suiji=Int(rnd()*10)
suijishu=suiji
End Function
%>
<%
connstr="Provider=Microsoft.Jet.OLEDB.4.0; Data Source=" +server.mappath("DataBase/Data.asp")
Set conn= Server.CreateObject("ADODB.Connection")
conn.Open connstr
Str="Select * From XcAdmin"
Set Rs=Conn.execute(Str)
TTitle=Rs("XcTitle")
CopyRight=Rs("XcCopyRight")
XcScript=Rs("XcScript")
'-----------------------------------------------------------------------
'显示弹出窗口
'-----------------------------------------------------------------------
Sub ShowMessAge(strChar,url)
Str="<Script Language=JavaScript>alert('" & StrChar & "');location.href='" & url & "';</script>"
Response.Write(Str)
end Sub
function ShowMess(strChar)
Str="<Script Language=JavaScript>alert('" & StrChar & "');</script>"
Response.Write(Str)
end function
'-----------------------------------------------------------------------
'去处非法的SQL代码
'-----------------------------------------------------------------------
function ReplaceBadChar(strChar)
StrChar=Trim(StrChar)
if strChar="" then
ReplaceBadChar=""
else
ReplaceBadChar=replace(replace(replace(replace(replace(replace(replace(strChar,"'",""),"*",""),"?",""),"(",""),")",""),"<",""),".","")
end if
end function
function ReplaceBadChar2(strChar)
StrChar=Trim(StrChar)
if strChar="" then
ReplaceBadChar1=""
else
ReplaceBadChar1=replace(replace(replace(replace(replace(replace(replace(strChar,"'",""),"*",""),"?",""),"(",""),")",""),"<",""),".","")
end if
if ReplaceBadChar1<> "" then
ReplaceBadChar2=ReplaceBadChar1
Else
ReplaceBadChar2=" "
End if
end function
function system(text)
if Instr(text,"NT 5.1")>0 then
system=system+"Windows XP"
elseif Instr(text,"NT 5")>0 then
system=system+"Windows 2000"
elseif Instr(text,"NT 4")>0 then
system=system+"Windows NT4"
elseif Instr(text,"4.9")>0 then
system=system+"Windows ME"
elseif Instr(text,"98")>0 then
system=system+"Windows 98"
elseif Instr(text,"95")>0 then
system=system+"Windows 95"
else
system=system+"未知"
end if
end function
'-----------------------------------------------------------------------
'写入登陆日志
'-----------------------------------------------------------------------
Sub UserLog(UserName,LogIP,LogSys,LogOpr)
Str="Insert Into XcUserLog(LogUser,LogIP,LogSys,LogOpr) Values('"
Str=Str & UserName & "','" & LogIP & "','" & LogSys & "'," & LogOpr & ")"
'Response.Write(Str)
Conn.execute(Str)
end Sub
'-----------------------------------------------------------------------
'写入操作日志
'-----------------------------------------------------------------------
Sub UserOpr(OprInfo)
OprIP=Request.ServerVariables("REMOTE_ADDR")
OprSys=system(Request.ServerVariables("ALL_HTTP"))
UserName=Session("UserName")
Str="Insert Into XcOprLog(OprUser,OprIP,OprSys,OprInfo) Values('"
Str=Str & UserName & "','" & OprIP & "','" & OprSys & "','" & OprInfo & "')"
'Response.Write(Str)
Conn.execute(Str)
end Sub
'-----------------------------------------------------------------------
'用户是否登陆
'-----------------------------------------------------------------------
Sub IsLog()
IF Session("UserName")="" or Session("Useropr")= "" Then
Call ShowMessAge("请不要非法登陆","AdminLogin.asp")
Response.End()
End if
End Sub
'-----------------------------------------------------------------------
'用户可以浏览吗
'-----------------------------------------------------------------------
Sub IsBrower()
PageName=Request.ServerVariables("URL")
PName=Split(PageName,"/")
PageName=PName(Ubound(PName))
PName=Split(PageName,"?")
PageName=PName(Lbound(PName))
Str="Select PageOpr From UserPage Where PageName='" & PageName & "'"
Set Rs1=Conn.execute(Str)
If Rs1("PageOpr") < Cint(Session("UserOpr")) Then
Call ShowMess("对不起,您没有浏览此页的权限!")
Response.End()
End if
End Sub
'-----------------------------------------------------------------------
'用户可以操作吗
'-----------------------------------------------------------------------
Sub IsOpr()
PageName=Request.ServerVariables("URL")
PName=Split(PageName,"/")
PageName=PName(Ubound(PName))
PName=Split(PageName,"?")
PageName=PName(Lbound(PName))
Str="Select PageOpr From UserPage Where PageName='" & PageName & "'"
Set Rs1=Conn.execute(Str)
If Rs1("PageOpr") < Cint(Session("UserOpr")) Then
Call ShowMess("对不起,您没有操作此项目的权限!")
Response.End()
End if
End Sub
function UserToStr(UserOpr)
Str="Select * From IsOpr where OprValue=" & Cint(UserOpr)
Set Rs2=Conn.execute(Str)
UserToStr=Rs2("OprName")
end function
function suijishu()
dim suiji
Randomize Timer
suiji=Int(rnd()*10)
suijishu=suiji
End Function
%>
...全文
请发表友善的回复…
发表回复
lzp4881 2016-02-19
- 打赏
- 举报
IF Session("UserName")="" or Session("Useropr")= "" Then
Call ShowMessAge("请不要非法登陆","AdminLogin.asp")
Response.End()
End if
把这几行注释掉。
斯洛文尼亚旅游 2016-01-26
- 打赏
- 举报
Session("UserName")="admin"
Session("Useropr")= "0"''权限
'------------
connstr="Provider=Microsoft.Jet.OLEDB.4.0; Data Source=" +server.mappath("DataBase/Data.asp")
Set conn= Server.CreateObject("ADODB.Connection")
conn.Open connstr
Str="Select * From XcAdmin"
Set Rs=Conn.execute(Str)
TTitle=Rs("XcTitle")
CopyRight=Rs("XcCopyRight")
XcScript=Rs("XcScript")
php_wsd 2016-01-26
- 打赏
- 举报
Session("UserName")="admin"
Session("Useropr")= "123456"
放最上面
