codice:<% Response.Write("<center>[img]img/chiudi.gif[/img]</center>") dim conn dim rs User=Request.Form("username") Pwd=Request.Form("pass") set conn = Server.CreateObject("ADODB.Connection") set rs = Server.CreateObject("ADODB.Recordset") conn.Open "DBQ=" & Server.MapPath("users.mdb") & ";DRIVER={Microsoft Access Driver (*.mdb)};" SQL = "SELECT * FROM tblUsers WHERE UserID='" & User & "'" rs.Open SQL,conn do while not rs.EOF if (User="Admin") then If (rs.Fields("Password")=pwd) then Response.Redirect("Admin.asp") Else Response.Redirect ("unauthorised_user_page.htm") End If ElseIf (User="longo") then If (rs.Fields("Password")=pwd) then Response.Redirect("Admin_longo.asp") Else Response.Redirect ("unauthorised_user_page.htm") End if End if rs.MoveNext loop rs.Close Set rs=nothing conn.Close Set conn=nothing %>
Rispondi quotando