<%
Call CreConn(Conn)
Action=FormatRequest(1,"Action",1,"")
Select Case Action
Case "Add"
Call Add()
Case "SaveAdd"
Call SaveAdd()
Case "Login"
Call Login()
Case "ChkLogin"
Call ChkLogin()
Case "EditPwd"
Call EditPwd()
Case "SavePwd"
Call SavePwd()
Case "LoginOut"
Call LoginOut()
Case "Reply"
Call Reply()
Case "SaveReply"
Call SaveReply()
Case "Del"
Call Del()
Case Else
Call Main()
End Select
Sub Main()
Page=FormatRequest(1,"Page",0,1)
If Page<=0 Then Page=1
PSize=10
TbName="Book_List"
GetCol="ID,UserName,Title,Content,AddDate,Reply,HomePage,EMail"
PCol="ID"
SortCol="ID"
StrW="IsShow=True"
CT=""
TCount=Conn.Execute("Select Count(ID) From Book_List Where IsShow=True")(0)
PCount=GetPageCount(TCount,PSize)
If Page>PCount And PCount>0 Then Page=PCount
PIndex=Page
Set Rs=Conn.Execute(GetPageList(TBName,GetCol,PCol,SortCol,1,StrW,PSize,PIndex))
If Not Rs.Eof Then
%>
| 签写留言 <%If Session("AdUser")="" Or IsNull(Session("AdUser")) Then%>管理登录<%Else%>修改密码 退出登录<%End If%> |
|
|
|
|
<%
Do While Not Rs.Eof
%>
| 留言主题 |
<%=Rs(2)%> |
留言者:<%=Rs(1)%> |
留言时间:<%=Rs(4)%> |
| 留言内容 |
<%=Replace(Left(Rs(3),500),chr(10),"
")%> |
<%
TmpReply=Rs(5)
If Trim(TmpReply)<>"" Then
%>
| 管理员回复 |
<%=TmpReply%> |
<%End If
If Session("AdUser")<>"" Then
%>
| 留言管理 |
电子邮件:<%=Rs(7)%> |
回复留言 删除留言 |
<%End If%>
|
<%
Rs.MoveNext
Loop
%>
<%
If PCount>1 Then
Response.Write PageList(3,PCount,Page,CT)
Else
Response.Write "
"
End If
Else
Response.Write ""
End If
End Sub
Sub Add()
%>
<%
End Sub
Sub SaveAdd()
UserName=FormatRequest(2,"UserName",1,"")
EMail=FormatRequest(2,"EMail",1,"")
Title=FormatRequest(2,"Title",1,"")
Content=FormatRequest(2,"Content",1,"")
Conn.Execute("Insert Into Book_List(UserName,Title,Content,EMail,IP) Values('"&UserName&"','"&Title&"','"&Content&"','"&Email&"','"&Get_UserIp()&"')")
Call ShowErrMsg(1,"留言成功!","Index.asp")
End Sub
Sub Login()
%>
<%
End Sub
Sub ChkLogin()
UserName=FormatRequest(2,"UserName",1,"")
UserPwd=Md5(Request.Form("UserPwd"))
Set Rs=Conn.Execute("Select UPwd From Ad_List Where UName='"&UserName&"'")
If Not Rs.Eof Then
UPwd=Rs(0)
If UserPwd<>UPwd Then
Call ShowErrMsg(3,"密码错误!","")
Else
Session("AdUser")=UserName
Conn.Execute("Update Ad_List Set LoginDate='"&Now()&"',LoginIP='"&Get_UserIp()&"' Where UName='"&UserName&"'")
Call ShowErrMsg(1,"登录成功!","Index.asp")
End If
Else
Call ShowErrMsg(3,"用户不存在!","")
End If
Rs.Close
Set Rs=Nothing
End Sub
Sub EditPwd()
If Session("AdUser")="" Or IsNull(Session("AdUser")) Then Call ShowErrMsg(3,"非法操作!","")
%>
<%
End Sub
Sub SavePwd()
If Session("AdUser")="" Or IsNull(Session("AdUser")) Then Call ShowErrMsg(3,"非法操作!","")
OldPwd=Md5(Request.Form("OldPwd"))
NewPwd=Md5(Request.Form("NewPwd"))
Set Rs=Conn.Execute("Select UPwd From Ad_List Where UName='"&Session("AdUser")&"'")
If Not Rs.Eof Then
UPwd=Rs(0)
If OldPwd<>UPwd Then
Call ShowErrMsg(3,"旧密码错误!","")
Else
Conn.Execute("Update Ad_List Set UPwd='"&NewPwd&"' Where UName='"&Session("AdUser")&"'")
Call ShowErrMsg(1,"修改成功!","Index.asp")
End If
Else
Call ShowErrMsg(3,"用户不存在!","")
End If
Rs.Close
Set Rs=Nothing
End Sub
Sub LoginOut()
Session("AdUser")=""
Call ShowErrMsg(2,"","Index.asp")
End Sub
Sub Reply()
If Session("AdUser")="" Or IsNull(Session("AdUser")) Then Call ShowErrMsg(3,"非法操作!","")
ID=FormatRequest(1,"ID",0,0)
Page=FormatRequest(1,"Page",0,1)
Set Rs=Conn.Execute("Select UserName,Title,Content,AddDate,Reply From Book_List Where ID="&ID)
If Rs.Eof Then Call ShowErrMsg(3,"留言不存在!","")
%>
| 返回留言列表 |
|
|
|
|
| 留言主题 |
<%=Rs(1)%> |
留言者:<%=Rs(0)%> |
留言时间:<%=Rs(3)%> |
| 留言内容 |
<%=Replace(Rs(2),chr(10),"
")%> |
<%
Rs.Close
Set Rs=Nothing
End Sub
Sub SaveReply()
If Session("AdUser")="" Or IsNull(Session("AdUser")) Then Call ShowErrMsg(3,"非法操作!","")
ID=FormatRequest(2,"ID",0,0)
Page=FormatRequest(2,"Page",0,0)
TmpReply=FormatRequest(2,"Reply",1,"")
If TmpReply="" Then Call ShowErrMsg(3,"请输入回复内容!","")
Conn.Execute("Update Book_List Set Reply='"&TmpReply&"' Where ID="&ID)
Call ShowErrMsg(1,"回复成功!","Index.asp?Page="&Page)
End Sub
Sub Del()
ID=FormatRequest(1,"ID",0,0)
Page=FormatRequest(1,"Page",0,0)
Conn.Execute("Delete From Book_List Where ID="&ID)
Call ShowErrMsg(1,"删除成功!","Index.asp?Page="&Page)
End Sub
Call CloConn(Conn)
%>
|
