else
rspic.pagesize=1
cur=request("cur")
if cur="" or clng(cur)<1 then cur=1
if clng(cur)>rspic.pagecount then cur=rspic.pagecount
rspic.absolutepage=cur
picid=rspic("id")
end if
pics=rspic.recordcount
%>
if password="" or user_name="" then
response.write "<script language='java script'>"
response.write "alert('数据填写有错!');"
response.write "history.go(-1);"
response.write "</script>"
response.end
end if
if InStr(LCase(password),"'")<>0 or InStr(LCase(password),"or")<>0 then
response.write "<script language='java script'>"
response.write "alert('密码不合法,请重新输入!');"
response.write "history.go(-1);"
response.write "</script>"
response.end
end if
if server.HTMLEncode(user_name)<>user_name or InStr(user_name,"【")<>0 or InStr(user_name,"】")<>0 or InStr(user_name," ")<>0 or InStr(user_name," ")<>0 or InStr(user_name,"")<>0 then
response.write "<script language='java script'>"
response.write "alert('数据填写有错!');"
response.write "history.go(-1);"
response.write "</script>"
response.end
end if
8.用户登陆成功显示页
your.asp页面示例
a.页面中需要用户填写的HTML表单元素有:
此页面无需填写HTML表单元素。
b.页面所涉及的数据表信息:
此页面仅向系统提供登陆正确信息。本页面用到了简单用户注册信息表uaer_reg,用户详细注册表 larchives,信息表leaveword,好友列表friend等。
c.页面代码分析:
<!--#include file="conn.asp"-->
<%
dim rs_lar,rs_word,rs_apply,rs_back,rs_friend,rs_user
dim sql
'叛断Session变量是否超时
if isempty(session("user_id")) then
response.redirect "timeout.htm"
end if
'叛断此用户是否已经注册
if session("user_id")=1 then response.redirect "notreg.htm"
Set rs_lar = Server.CreateObject("ADODB.Recordset")
sql="select * from larchives where user_id =" & session("user_id")
rs_lar.open sql,conn,3,2
'叛断此用户是否已经提交档案
if rs_lar.eof and rs_lar.bof then
response.redirect "notregist.htm"
response.end
