<% if request.QueryString("Action")="Out" then session.contents.remove "MemName" session.contents.remove "GroupID" session.contents.remove "GroupLevel" session.contents.remove "MemLogin" session("MemName")="" session("GroupID")="" session("MemLogin")="" response.redirect Cstr(request.ServerVariables("HTTP_REFERER")) response.end end If Dim CheckCode,LoginName,LoginPassword,VerifyCode,MemName,Password,GroupID,GroupName,Working,rs,sql LoginName=trim(request.form("LoginName")) LoginPassword=Md5(request.form("LoginPassword")) CheckCode = Trim(request.form("CheckCode")) set rs = server.createobject("adodb.recordset") sql="select * from LiangjingCMS_Members where MemName='"&LoginName&"'" rs.open sql,conn,1,3 if rs.bof and rs.eof then response.write "" response.end else MemName=rs("MemName") Password=rs("Password") GroupID=rs("GroupID") GroupName=rs("GroupName") Working=rs("Working") end If If Trim(Session("CheckCode")) = "" Then response.write "" response.end End If If CheckCode <> Session("CheckCode") Then response.write "" response.end End If if LoginPassword<>Password then response.write "" response.end end if if not Working then response.write "" response.end end if if UCase(LoginName)=UCase(MemName) and LoginPassword=Password then rs("LastLoginTime")=now() rs("LastLoginIP")=Request.ServerVariables("Remote_Addr") rs("LoginTimes")=rs("LoginTimes")+1 rs.update rs.close set rs=nothing session("MemName")=MemName session("GroupID")=GroupID set rs = server.createobject("adodb.recordset") sql="select * from LiangjingCMS_MemGroup where GroupID='"&GroupID&"'" rs.open sql,conn,1,1 session("GroupLevel")=rs("GroupLevel") rs.close set rs=nothing session("MemLogin")="Succeed" session.timeout=60 response.redirect request.ServerVariables("HTTP_REFERER") response.end end if %>