• 新记

    • asp后台验证用户名和密码

    <!--#include file="conn.asp"-->
    <%
    dim username,pwd,sqlStr
    username=request.Form("username")
    pwd=request.Form("pwd")
    SqlStr="select * from user_add where u_user='"&username&"'"
    set rs=server.CreateObject("ADODB.Recordset")
    rs.open sqlStr,conn,1,1
    if rs.eof then
    response.Write("<script>" & vbcrlf)
    response.Write("alert('用户名不存在!');" & vbcrlf)
    response.Write("history.back();" & vbcrlf)
    response.Write("</script>")
    elseif rs("u_password")<>pwd then
    response.Write("<script>" & vbcrlf)
    response.Write("alert('密码错误!');" & vbcrlf)
    response.Write("history.back();" & vbcrlf)
    response.Write("</script>")
    else
    response.Write("登陆成功!<br />")
    session("username")=username
    session("acc")=true
    response.Write(session("username") & ",欢迎您再次光临本站!  ")
    response.Write("<a href='loginout.asp'>退出登陆</a>")
    response.Write("<p><a href='hyzl.asp' target='_blank'>会员资料</a></p>")
    end if
    %>

    代码没有错,我查了N遍,到网上也找了很多资料,可是输入用户名和密码就是正确也只跳转错误提示,郁闷之极!这是怎么回事,请高手不啬赐教!!!!!!!!!
    输入用户名和密码,输入的是正确的(和数据库里面一样,不要说我数据库没添加),但是还是提示用户名不存在!就是跳转不到别的!

    举报该文章
    相关建议   2010-06-05
    if rs.eof and rs.bof then
    response.Write("<script>" & vbcrlf)
    response.Write("alert('用户名不存在!');" & vbcrlf)
    response.Write("history.back();" & vbcrlf)
    response.Write("</script>")
    end if
    if not rs.eof then
    if rs("u_password")<>pwd then
    response.Write("<script>" & vbcrlf)
    response.Write("alert('密码错误!');" & vbcrlf)
    response.Write("history.back();" & vbcrlf)
    response.Write("</script>")

    else
    response.Write("登陆成功!<br />")
    session("username")=username
    session("acc")=true
    response.Write(session("username") & ",欢迎您再次光临本站! ")
    response.Write("<a href='loginout.asp'>退出登陆</a>")
    response.Write("<p><a href='hyzl.asp' target='_blank'>会员资料</a></p>")
    end if
    end if
    温馨提示:内容为网友见解,仅供参考
    其他看法
    第1个回答  2010-06-05
    <%
    dim username,pwd,sqlStr
    username=request.Form("username")
    pwd=request.Form("pwd")
    SqlStr="select * from user_add where u_user='"&username&"'"
    set rs=server.CreateObject("ADODB.Recordset")
    rs.open sqlStr,conn,1,1
    if rs.eof then
    response.Write("登陆成功!<br />")
    session("username")=username
    session("acc")=true
    response.Write(session("username") & ",欢迎您再次光临本站! ")
    response.Write("<a href='loginout.asp'>退出登陆</a>")
    response.Write("<p><a href='hyzl.asp' target='_blank'>会员资料</a></p>")
    else

    response.Write("<script>" & vbcrlf)
    response.Write("alert('用户名不存在!');" & vbcrlf)
    response.Write("history.back();" & vbcrlf)
    response.Write("</script>")
    elseif rs("u_password")<>pwd then
    response.Write("<script>" & vbcrlf)
    response.Write("alert('密码错误!');" & vbcrlf)
    response.Write("history.back();" & vbcrlf)
    response.Write("</script>")
    end if
    %>
    第2个回答  2010-06-07
    哎,就差那么一点点,查询数据加上这个条件:and后面的
    SqlStr="select * from user_add where u_user='"&username&"'" and u_password="'&pwd&'"
    否则没这个条件,新密码永远不等于数据库里的密码,当然报错
    相似回答
    大家正在搜