<%
lnname=trim(request.Form("lnname"))
lnpassword=trim(request.Form("lnpassword")) '取得用户名和密码
lnpassword=md5(lnpassword)
'if lnname<>"" then
' elseif lnpassword="" then
' response.write("请输入密码")
' else
'response.write("请输入用户名")
'end if '检测输入的用户名和密码是否为空
rs.open "select * from admin where isuse and password='"&lnpassword&"' and username='"&lnname&"'",conn,1,1
if not(rs.bof and rs.eof) then
if rs("adminrt")>996 then
session("adminrt")=rs("adminrt")
session("teachername")=rs("username")
session("lnuserid")=rs("id")
response.Redirect("lndefault.asp")
'response.Write(session("adminrt"))
' response.write(session("teachername"))
else
response.Write("<br><br><font color=red>对不起,您还没通过审核</font><a href="&"javascript:history.back()"&">点此返回</a>")
end if
else
response.Write("<br><br><font color=red>密码错误或是此用户不存在</font><a href="&"javascript:history.back()"&">点此返回</a>")
end if
username = Request.Form("username")
userpass = Request.Form("userpass")
Set oRs = Server.CreateObject("ADODB.RecordSet")
'用户名和密码检查
sSql = "select LoginName,UserPass from UserLogin where LoginName='"&username&"'"
oRs.Open sSql, conn, 1, 3
If oRs.Bof And oRs.Eof Then
Session("error") = "提示:用户不存在!"
Response.Redirect "error.asp"
Else
If oRs("UserPass") = userpass Then
'登录成功
Response.Redirect "index.asp"
Else
Session("error") = "提示:密码错误!"
Response.Redirect "error.asp"
End If
End If
oRs.Close
Set oRs = Nothing
login.asp--->为登陆页,填写用户名和密码
check.asp--->为验证用户和密码是否正确 如果正确用把名字用session("name")=rs("name")或用response.cookies("name")=rs("name")存起来
其他页面头加入
if name="" then response.redirect "default.asp"