<%
if Request.Form("ok")="登陆" then
admin_name=trim(request("admin_name"))
admin_password=trim(md5(request("admin_password")))
'admin_password=request("admin_password")
end if
if request("type")="login" then
set rs=server.CreateObject("adodb.recordset")
sql="select * from jjh_admin where admin_name='"&admin_name&"' and admin_password='"&admin_password&"'"
rs.Open sql,conn,1,1
if no(rs.EOF and rs.bof)then
if admin_name=rs("admin_name") and admin_password=rs("admin_password") then
session("admin_name")=rs("admin_name")
session("admin_password")=rs("admin_password")
session("admin_flag")=rs("admin_flag")
session("admin_id")=rs("admin_id")
Response.Redirect "admin.asp"
else Response.write "登陆失败"
end if
else
Response.Redirect "index.asp"
end if
rs.Close
conn.close
set rs=nothing
set conn=nothing
end if
%>
管理员登陆管理