English
manageadmin.asp
资源名称:shop2.rar [点击查看]
上传用户:btntkt
上传日期:2021-04-16
资源大小:5296k
文件大小:8k
源码类别:
WEB源码(ASP,PHP,...)
开发平台:
DOS
- <!--#include file="conn.asp"-->
- <!--#include file="../md5.asp"-->
- <%
- dim cls
- if session("admin")="" then
- Response.Redirect("admin.asp")
- else
- if session("flag")<>"0" then
- cls = Instr(session("flag"), "quanxianfig")
- if cls <= 0 then
- %>
- <script language="javascript">
- if (confirm("您的操作权限不够,系统拒绝你的访问,请点确定返回,或者点取消退出重新登录"))
- location.href="login.asp";
- else
- location.href="index.asp";
- </script>
- <%
- end if
- end if
- end if
- %>
- <%
- username=request("username")
- id=request("id")
- action=request("action")
- %>
- <html>
- <head>
- <meta http-equiv="Content-Type" content="text/html; charset=gb2312">
- <link href="style.css" rel="stylesheet" type="text/css">
- <title>管理权限设置</title>
- <style type="text/css"><!--
- a:link {color: #000000;text-decoration: none;}
- a:visited {color: #000000;text-decoration: none;}
- a:hover {color: #FFFF99;text-decoration: underline;}
- tr {color: #000000;}
- --></style>
- <SCRIPT LANGUAGE="JavaScript">
- <!--
- function CheckAll(form) {
- for (var i=0;i<form.elements.length;i++) {
- var e = form.elements[i];
- if (e.name != 'chkall') e.checked = form.chkall.checked;
- }
- }
- //-->
- </SCRIPT>
- </head>
- <body topmargin="20">
- <table border="0" cellpadding="2" cellspacing="5" class="tableBorder" width="100%" height="150">
- <tr>
- <td valign="top" class="forumRowHighlight"> <table border="1" cellpadding="2" cellspacing="4" width="100%">
- <tr>
- <td width="100%">当前位置:<a href="admin.asp">网站管理中心</a>--管理权限设置</td>
- </tr>
- <tr>
- <td width="100%">
- <%if action="" then
- Set rs = conn.Execute("select * from admin order by adminid") %>
- <table width="95%" border="1" style="border-collapse: collapse;border:dotted 1px" bordercolor="#333333" cellspacing="2" cellpadding="2" align="center">
- <tr>
- <td width=140><strong>管理员ID</strong></td>
- <td><strong>编辑权限</strong></td>
- <td width=100><strong>操作</strong></td>
- </tr>
- <%
- do while not rs.eof
- if session("id")=rs("adminid") then
- %>
- <tr>
- <td><a href="renpassword.asp?action=password" alt="点击名称修改密码"><%=rs("admin")%></a></td>
- <td><a href="manageadmin.asp?action=detail&username=<%=rs("admin")%>&id=<%=rs("adminid")%>">修改</a></td>
- <td>当前管理员</td>
- </tr>
- <%else%>
- <tr>
- <td><%=rs("admin")%></td>
- <td><a href="manageadmin.asp?action=detail&username=<%=rs("admin")%>&id=<%=rs("adminid")%>">修改</a></td>
- <td><a href="manageadmin.asp?action=del&username=<%=rs("admin")%>&id=<%=rs("adminid")%>">删除</a></td>
- </tr>
- <%
- end if
- rs.movenext
- loop
- rs.close
- conn.close
- set rs=nothing
- set conn=nothing
- %>
- </table>
- <br> <table width="95%" border="1" style="border-collapse: collapse;border:dotted 1px" bordercolor="#333333" cellspacing="2" cellpadding="2" align="center">
- <form action="manageadmin.asp?action=adduserpost" name="list" method=post>
- <tr>
- <td colspan=2 align=center>增加管理员</td>
- </tr>
- <tr>
- <td width=100>管理员名称</td>
- <td><input type="text" name="username" size="20" maxlength="16">
- [16位以内]</td>
- </tr>
- <tr>
- <td width=100>管理员密码</td>
- <td><input type="text" name="password" size="20" maxlength="16">
- [16位以内]</td>
- </tr>
- <tr>
- <td colspan=2><input type="hidden" name="flag" value="">
- <input type="submit" name="adduser" value="增加管理员"></td>
- </tr>
- </form>
- </table>
- <%else
- end if%>
- <%
- '显示权限详细信息
- if action="detail" then
- set rs=conn.execute("select * from admin where admin='"&username&"'")
- if not rs.eof then
- %>
- <table border=1 style="border-collapse:collapse" bordercolor="#333333" width=98% align=center>
- <form action="manageadmin.asp" method=post name=modify>
- <tr>
- <td>用户名</td>
- <td>拥有权限</td>
- </tr>
- <tr>
- <td valign="top"><%=rs("admin")%></td>
- <td>
- <% set rs=conn.Execute("select * from admin where admin='"&username&"'")
- dim gradeType,sheet
- gradeType="网站设置,系统设置,邮编设置,广告设置,送货方式,其他信息,合作伙伴,资讯管理,支付参数,添加商品,修改商品,品牌管理,单位管理,大类管理,小类管理,类别转移,评论管理,订单管理,添加新闻,修改新闻,公告设置,留言管理,销售统计,投票管理,VIP 管理,用户管理,权限管理,省市管理,数据管理,短信管理,模板管理,子类管理,地图生成,批量修改,批量添加,导出EXCEL,邮件群发,水印设置,IP锁定"
- gradeCode="config,sysfig,codefig,adsfig,songhuofig,othfig,hezuofig,logofig,payfig,addprofig,manprofig,pinpaifig,danweifig,daleifig,xiaoleifig,leibiefig,pinglunfig,dingdanfig,addnewfig,mannewfig,gonggaofig,liuyanfig,xiaoshoufig,votefig,vipfig,userfig,quanxianfig,ssfig,datafig,smsfig,moban,zilei,map,prolist,batch,excel,qunfa,watermark,lockip"
- code=Split(gradeCode,",")
- sheet=Split(gradeType,",")
- for i=0 to ubound(sheet)
- response.write "<input type=""checkbox"" name=""flag"" value="""&trim(code(i))&""""
- if instr(rs("flag"),trim(code(i)))>0 then '如果有此项权利;
- response.write " checked"
- end if
- response.write ">"&trim(sheet(i))&""
- if ((i+1) mod 6)=0 then response.write "<br>" '每行显示1个权限
- next
- response.write character %>
- </td>
- </tr>
- <tr>
- <td> <input type=hidden name=action value=modify>
- <input type=hidden name=username value=<%=rs("admin")%>></td>
- <td><input type="submit" name="ok" value="提交"></tr>
- </form>
- </table>
- <%else
- response.write "没有找到合适的记录"
- end if
- rs.close
- conn.close
- else
- end if%>
- <%
- '修改 后返回参数提交数据库
- if action="modify" then
- flag=checkreal(request.form("flag"))
- Set rs=Server.CreateObject("ADODB.Recordset")
- sql="select * from admin where admin='"&username&"'"
- rs.open sql,conn,3,3
- rs("flag")=Server.Htmlencode(flag)
- rs.update
- url="manageadmin.asp?action=detail&username="&rs("admin")
- rs.close
- conn.close
- set rs=nothing
- set conn=nothing
- response.write "<script language='javascript'>"
- response.write "alert('权限更新成功!');"
- response.write "</script>"
- Response.Redirect"manageadmin.asp"
- else
- end if%>
- <%
- if action="del" then
- username=request("username")
- id=request("id")
- Dim StrSQL
- StrSQL="delete from admin where admin='"&username&"'"
- conn.Execute StrSQL
- conn.close
- Response.Redirect"manageadmin.asp"
- else
- end if%>
- </td>
- </tr>
- </table></td>
- </tr>
- </table>
- </body></html>
- <%if action="adduserpost" then
- if request("username")="" or request("password")="" then
- response.write "<script language='javascript'>"
- response.write "alert('请输入要添加的管理员名称和密码');"
- response.write "location.href='manageadmin.asp';"
- response.write "</script>"
- else
- Set rs=Server.CreateObject("ADODB.Recordset")
- sql="SELECT * FROM admin"
- rs.Open sql,conn,1,3
- rs.Addnew
- rs("admin")=Request("username")
- rs("password")=md5(Request("password"))
- 'rs("flag")=Server.Htmlencode(Request("flag"))
- rs.Update
- rs.Close
- Set rs=Nothing
- Response.Redirect"manageadmin.asp?action=detail&username="&Request("username")
- end if
- else
- end if%>
- <%
- function checkreal(v)
- dim w
- if not isnull(v) then
- w=replace(v,",","|")
- w=replace(w," ","")
- checkreal=w
- end if
- end function
- %>
