<% dim action : action=getform("action","get") if action = "login" then dim LoginName,Password,sql,code,rs if getForm("code","post")<>Session("Code") then alertMsgAndGo "验证码不正确","-1" LoginName = filterPara(getForm("LoginName","post")) Password = md5(getForm("userPass","post"),16) sql = "select count(*) from {prefix}User where LoginName = '"& LoginName &"' and PassWord='"&Password&"'" Dim rsObj : Set rsObj=Conn.Exec(sql,"r1") if rsObj(0)=1 then Set rsObj=Conn.Exec("select UserId,LoginName,GroupMark from {prefix}User,{prefix}UserGroup where {prefix}User.GroupID={prefix}UserGroup.GroupID and LoginName='"&LoginName&"' and UserStatus=1","r1") if not rsObj.Eof Then 'die rsObj("LoginName") wCookie"loginName",rsObj("LoginName") wCookie"userID",rsObj("UserId") wCookie"loginstatus","1" session("GroupMark")=rsObj("GroupMark") Conn.Exec"update {prefix}User set LastLoginTime='"&now()&"',LastLoginIP='"&getIp()&"',LoginCount=LoginCount+1 where UserId="&rsObj("UserId"),"exe" 'Response.Redirect Request.ServerVariables("HTTP_REFERER") response.Redirect("userinfo.asp") response.End() else alertMsgAndGo "对不起,您的账号已被禁用!","-1" end if else alertMsgAndGo "用户名或密码错误,系统即将返回登录页面!","-1" end if rsObj.Close() : set rsObj=Nothing elseif action = "logout" then wCookie"loginName","" wCookie"loginstatus","0" wCookie"userID","" session("GroupMark")="" alertMsgAndGo "您已经成功退出登录!",sitePath&setting.languagePath elseif action = "relog" then alertMsgAndGo "对不起,您的登录状态已经失效,请重新登录!",sitePath&setting.languagePath else echoContent() end if Sub echoContent() dim templateobj,templatePath : set templateobj = new TemplateClass templatePath=sitePath&"/"&"templates/"&setting.defaultTemplate&"/"&setting.htmlFilePath&"/login.html" if not CheckTemplateFile(templatePath) then echo "login.html"&err_16 with templateObj .content=loadFile(templatePath) .parseHtml() .indexpath .parseCommon echo .content end with set templateobj =nothing : terminateAllObjects End Sub %>