<% validpwd = true If request.form("submit") <> "" Then ' setup variables userid = Request.Form("userid") passwd = Request.Form("passwd") Set conn = Server.CreateObject("ADODB.Connection") conn.open xDb_Conn_Str Set rs = conn.Execute( "Select * from [admin] where [user_id] = '" & UCASE(userid) & "'") If not rs.eof then If ucase(rs("user_pwd")) = ucase(passwd) Then validpwd = true Else validpwd = false End If Else validpwd = false end if lev=rs("lev") user=rs("user_id") rs.Close Set rs=Nothing conn.Close Set conn=Nothing If validpwd Then Session("exemple_status") = "login" session("lev")=lev session("u_id")=user response.redirect "default.asp" End If End If %>

	User ID Password     <% If not validpwd Then %> 提示: 错误的用户名或密码!!! <% End If %>
北京中天嘉信塑料制品有限公司