[求助]为什么我的网站不能登陆? - ASP技术论坛

zmyzzz

等　级：新手上路
帖　子：145
专家分：0
注　册：2005-9-21

楼主

问题点数：0 回复次数：3

[求助]为什么我的网站不能登陆?

我的登陆原代码如下:





<%
dim errmsg
Newasp.station="∷ 用户注册"
Newasp.title(Newasp.station)
Newasp.header("index_top.js")
%>
<TABLE class=TableBorder cellSpacing=0 cellPadding=0 align=center border=0>
<TR>
<TD height=280 align=center class=Border2>
<%
select case request("action")
case "login" '登陆
call chklogin()
case else
call main()
end select
if Newasp.founderr=true then
Response.write"<script>alert('"&ErrMsg&"');javascript:history.back(1)</script>"
Response.end
end if
sub main()

%>
<script language="JavaScript">

</script>
<%
if Newasp.memberName=empty then
%>
<form method="post" name=myform action="login.asp?action=login" >
<TABLE align=center bgColor=#DEDFDE cellpadding="4" cellspacing="0" border=0 style="border: outset 2px;width:60%;">
<TR>
<TD height=21 style="FILTER: progid:DXImageTransform.Microsoft.Gradient(startColorStr='#003399', endColorStr='#AEC0EC', gradientType='1')"><b><font color=#FFFFFF>用户管理中心登陆！　User Administer Login</FONT></b></td></tr>
<TR>
<TD cellpadding="8">
<FIELDSET><LEGEND accessKey=F align=left>登陆窗口</LEGEND>
<TABLE align=center cellSpacing=2 cellPadding=5 width="100%" border=0>
<TR>
<TD width="10%"> </TD>
<TD width="20%">用 户 名：</TD>
<TD><INPUT type=text name=username style="BORDER-RIGHT: #ffffff 1px groove; BORDER-TOP: #ffffff 1px groove; FONT: 12px Verdana,Geneva,sans-serif; BORDER-LEFT: #ffffff 1px groove; WIDTH: 130px; COLOR: #000000; BORDER-BOTTOM: #ffffff 1px groove; HEIGHT: 18px; BACKGROUND-COLOR: #dff1f9" ></TD></TR>
<TR>
<TD width="10%"> </TD>
<TD width="20%">密    码：</TD>
<TD><INPUT type=password name=password style="BORDER-RIGHT: #ffffff 1px groove; BORDER-TOP: #ffffff 1px groove; FONT: 12px Verdana,Geneva,sans-serif; BORDER-LEFT: #ffffff 1px groove; WIDTH: 130px; COLOR: #000000; BORDER-BOTTOM: #ffffff 1px groove; HEIGHT: 18px; BACKGROUND-COLOR: #dff1f9" > </TD></TR>
<TR>
<TD align=middle colSpan=3><INPUT type=button value="注册" onclick="window.location.href='reg.asp'">　　<INPUT type=submit value=" 登陆 " name=submit>　　
<INPUT type=button value="找回密码" onclick="window.location.href='sendpass.asp'" style="CURSOR: help"></TD></TR></TABLE></FIELDSET>
</TD></TR></TABLE></form></TD></TR></TABLE>
<%
else
dim rsg,GroupSet,GroupName
set rsg = server.CreateObject ("ADODB.Recordset")
set rs=conn.execute("select * from NC_User where userid="&Newasp.memberid&" and username='"&Newasp.memberName&"'")
set rsg=conn.execute("select * from NC_UserGroup where grades="&rs("Grade")&"")
GroupSet=Split(rsg("GroupSet"),",")
GroupName=rsg("GroupName")
rsg.close
%>
<table border="0" bgcolor="#CCCCCC" align=center cellpadding="8" cellspacing="1" width="60%">
<tr>
<td class=Border2>用户名：<font color="#FF0000"><%=Newasp.memberName%></font></td>
</tr>
<tr>
<td class=Border2>身　份：<font color="#FF0000"><%=GroupName%></font></td>
</tr>
<tr>
<td class=Border2>您的余额：<font color="#FF0000"><%=rs("money")%></font></td>
</tr>
<%if cint(GroupSet(1))>0 then %>
<tr>
<td class=Border2>每日下载数：<font color="#FF0000"><%=cint(GroupSet(1))%></font>　　
今日已下载数：<font color="#FF0000"><%=rs("DayDownNum")%></font>　　　
你今日还可以下载软件 <font color="#FF0000"><%=cint(GroupSet(1))-rs("DayDownNum")%></font></td>
</tr>
<% end if%>
<tr>
<td class=Border2 align=center><a href=updateinfo.asp>修改资料</a>　<a href=updatepass.asp>修改密码</a>　<a href=logout.asp>退出</a></td>
</tr>
</table>
<%
rs.close
Set rs = Nothing
end if
end sub

sub chklogin()
dim username,password

if Instr(request("username"),"=")>0 or Instr(request("username"),"%")>0 or Instr(request("username"),chr(32))>0 or Instr(request("username"),"?")>0 or Instr(request("username"),"&")>0 or Instr(request("username"),";")>0 or Instr(request("username"),",")>0 or Instr(request("username"),"'")>0 or Instr(request("username"),",")>0 or Instr(request("username"),chr(34))>0 or Instr(request("username"),chr(9))>0 or Instr(request("username"),"?")>0 or Instr(request("username"),"$")>0 then
errmsg=errmsg+"<br>"+"用户名中含有非法字符。\n"
Dvasp.Founderr=true
end if
if Instr(request("password1"),"=")>0 or Instr(request("password1"),"%")>0 or Instr(request("password1"),"?")>0 or Instr(request("password1"),"&")>0 or Instr(request("password1"),";")>0 or Instr(request("password1"),",")>0 or Instr(request("password1"),"'")>0 or Instr(request("password1"),",")>0 or Instr(request("password1"),"?")>0 or Instr(request("password1"),"$")>0 then
errmsg=errmsg+"<br>"+"用户名中含有非法字符。\n"
Dvasp.Founderr=true
end if
if request("username")="" then
errmsg=errmsg+"请输入用户名\n"
Newasp.founderr=true
end if
if request("password")="" then
errmsg=errmsg+"请输入密码\n"
Newasp.founderr=true
end if
username=replace(trim(request("username")),"'","")
password=replace(trim(Request("password")),"'","")
password=md5(password)
set rs=server.createobject("adodb.recordset")
sql="select * from [NC_user] where password='"&password&"' and username='"&username&"'"
rs.open sql,conn,1,1
if not(rs.bof and rs.eof) then
if rs("isLock")=0 then
if password=rs("password") and username=rs("username") then
Response.Cookies(Newasp.Download_sn)("username") = rs("username")
Response.Cookies(Newasp.Download_sn)("userid") = rs("userid")
Response.Cookies(Newasp.Download_sn)("password") = rs("password")
Response.Cookies(Newasp.Download_sn)("grade") = rs("grade")
else
ErrMsg=ErrMsg+"确认身份失败! \n 。"
end if
else
ErrMsg=ErrMsg+"确认身份失败! \n 您的用户名已被锁定,请联系管理员。"
Response.write"<script>alert('"&ErrMsg&"');javascript:history.back(1)</script>"
Response.end
end if
else
ErrMsg=ErrMsg+"确认身份失败!\n用户名或密码错误!!!"
Response.write"<script>alert('"&ErrMsg&"');javascript:history.back(1)</script>"
Response.end
end if
rs.close
set rs=nothing
conn.execute("update [NC_user] set logintime='"&Now()&"',loginum=loginum+1,userip='"&Newasp.Getip&"' where username='"&request("username")&"'")
Response.redirect ("login.asp")
end sub
%>
</TD></TR></TABLE>
<%
Call Newasp.Footer()
%>
但是用户点登陆后又回到登陆那里了...谁能帮我看看么??谢谢.............
顺便推广一下我的网站http://zzxzw.96.cn(猪猪下载网)