<!--#include file="Conn.asp"-->
<%
Dim name
Dim pwd
name = Trim(Request.Form("name"))
pwd = Trim(Request.Form("pwd"))
If name = "" Or pwd = "" Then
Response.Write "<Script>alert('请输入帐号或密码!');history.go(-1);</Script>"
Response.End
Else
Set Rs = Server.CreateObject("ADODB.Recordset")
Sql = "Select * From user Where name = '"&name&"' and pwd = '"&pwd&"'"
Rs.Open Sql,conn,3,3
If Rs.EOF Then
Response.Write("<Script language=javascript>alert('你还没有注册,请注册!');history.go(-1);</Script>")
Rsponse.End
ElseIf name = Rs("name") And pwd = Rs("pwd") Then
Session("name") = Rs("name")
Session("flag") = Rs("flag")
Rs("login_time") = Now()
Rs.Update
id = Rs("id")
Response.Redirect "index.asp"
Else
Response.Write "<Script>alert('帐号或密码错误!');history.go(-1);</Script>"
Rsponse.End
End If
End If
Rs.Close
Set Rs=nothing