gusucode.com > ASP+ACCESS学生论坛设计与实现(源代码+论文+开题报告) > ASP+ACCESS学生论坛设计与实现(源代码+论文+开题报告)\13学生论坛ASPAC\BBS\admin_admin.asp
<!--#include file="conn.asp"-->
<!-- #include file="inc/const.asp" -->
<!--#include file="inc/md5.asp"-->
<!-- #include file="inc/DvADChar.asp" -->
<!-- #include file="inc/myadmin.asp" -->
<script language="JavaScript">
<!--
function CheckAll(form)
{
for (var i=0;i<form.elements.length;i++)
{
var e = form.elements[i];
if (e.name != 'chkall')
e.checked = form.chkall.checked;
}
}
//-->
</script>
<%Head()
Dim admin_flag
admin_flag=",16,"
if not Mybbs.master or instr(","&session("flag")&",",admin_flag)=0 then
Errmsg=ErrMsg + "<BR><li>本页面为管理员专用,请<a href=admin_index.asp target=_top>登录</a>后进入。<br><li>您没有管理本页面的权限。"
dvbbs_error()
else
dim body,username2,password2,oldpassword,oldusername,oldadduser,username1
'''''''''''''''
'取出用户组管理员的组名 2002-12-13
dim groupsname,titlepic
set rs=Mybbs.Execute("select usertitle,grouppic from [dv_UserGroups] where UserGroupID=1 ")
groupsname=rs(0)
titlepic=rs(1)
set rs=nothing
if request("action")="updat" then
call update()
response.write body
elseif request("action")="del" then
Call Del()
response.write body
elseif request("action")="pasword" then
call pasword()
elseif request("action")="newpass" then
call newpass()
response.write body
elseif request("action")="add" then
call addadmin()
elseif request("action")="edit" then
call userinfo()
elseif request("action")="savenew" then
call savenew()
response.write body
else
call userlist()
end if
Footer()
end if
sub userlist()
%>
<table cellpadding="2" cellspacing="1" border="0" width="95%" class="tableBorder" align=center>
<tr>
<th height=22 colspan=5>管理员管理(点击用户名进行操作)</th>
</tr>
<tr align=center>
<td width="30%" height=22 class="forumHeaderBackgroundAlternate"><B>用户名</B></td><td width="25%" class="forumHeaderBackgroundAlternate"><B>上次登录时间</B></td><td width="15%" class="forumHeaderBackgroundAlternate"><B>上次登陆IP</B></td><td width="15%" class="forumHeaderBackgroundAlternate"><B>操作</B></td>
</tr>
<%
set rs=Mybbs.Execute("select * from "&admintable&" order by LastLogin desc")
do while not rs.eof
%>
<tr>
<td class=forumrow><a href="admin_admin.asp?id=<%=rs("id")%>&action=pasword"><%=rs("username")%></a></td><td class=forumrow><%=rs("LastLogin")%></td><td class=forumrow><%=rs("LastLoginIP")%></td><td class=forumrow><a href="admin_admin.asp?action=del&id=<%=rs("id")%>&name=<%=Rs("adduser")%>" onclick="{if(confirm('删除后该管理员将不可进入后台!\n\n确定删除吗?')){return true;}return false;}">删除</a> <a href="admin_admin.asp?id=<%=rs("id")%>&action=edit">编辑权限</a></td>
</tr>
<%
rs.movenext
loop
rs.close
set rs=nothing
%>
</table>
<%
end sub
Sub Del()
Dim UserTitle
Rem 更新撤销管理员后的等级名称 2004-4-29 Mybbs.YangZheng
Sql = "SELECT Top 1 UserTitle From Dv_UserGroups Where MinArticle > 0 And ParentGID = 4 Order By UserGroupID"
Set Rs = Mybbs.Execute(Sql)
If Rs.Eof And Rs.Bof Then
UserTitle = "注册会员"
Else
UserTitle = Rs(0)
End If
Mybbs.Execute("DELETE FROM " & Admintable & " WHERE Id = " & Request("Id"))
Mybbs.Execute("UPDATE [Dv_User] SET Usergroupid = 4, UserClass = '" & UserTitle & "' WHERE Username = '" & Replace(Request("name"),"'","") & "'")
body="<li>管理员删除成功。"
End Sub
sub pasword()
set rs=Mybbs.Execute("select * from "&admintable&" where id="&request("id"))
oldpassword=rs("password")
oldadduser=rs("adduser")
%>
<form action="?action=newpass" method=post>
<table cellpadding="2" cellspacing="1" border="0" width="95%" class="tableBorder" align=center>
<tr>
<th colspan=2 height=23>管理员资料管理--密码修改
</th>
</tr>
<tr >
<td width="26%" align="right" class=forumrow>后台登录名称:</td>
<td width="74%" class=forumrow>
<input type=hidden name="oldusername" value="<%=rs("username")%>">
<input type=text name="username2" value="<%=rs("username")%>"> (可与注册名不同)
</td>
</tr>
<tr >
<td width="26%" align="right" class=forumrow>后台登录密码:</td>
<td width="74%" class=forumrow>
<input type="password" name="password2" value="<%=oldpassword%>"> (可与注册密码不同,如要修改请直接输入)
</td>
</tr>
<tr >
<td width="26%" align="right" class=forumrow height=23>前台用户名称:</td>
<td width="74%" class=forumrow><%=oldadduser%>
</td>
</tr>
<tr align="center">
<td colspan="2" class=forumrow>
<input type=hidden name="adduser" value="<%=oldadduser%>">
<input type=hidden name=id value="<%=request("id")%>">
<input type="submit" name="Submit" value="更 新">
</td>
</tr>
</table>
</form>
<% rs.close
set rs=nothing
end sub
sub newpass()
dim passnw,usernw,aduser
set rs=Mybbs.Execute("select * from "&admintable&" where id="&request("id"))
oldpassword=rs("password")
if request("username2")="" then
Response.Write "<li>请输入管理员名字。<a href=?>[ <font color=red>返回</font> ]</a>"
exit sub
else
usernw=trim(request("username2"))
end if
if request("password2")="" then
Response.Write "<li>请输入您的密码。<a href=?>[ <font color=red>返回</font> ]</a>"
exit sub
elseif trim(request("password2"))=oldpassword then
passnw=request("password2")
else
passnw=md5(request("password2"),16)
end if
if request("adduser")="" then
Response.Write"<li>请输入管理员名字。<a href=?>[ <font color=red>返回</font> ]</a>"
exit sub
else
aduser=trim(request("adduser"))
end if
set rs=server.createobject("adodb.recordset")
sql="select * from "&admintable&" where username='"&trim(request("oldusername"))&"'"
rs.open sql,conn,1,3
if not rs.eof and not rs.bof then
rs("username")=usernw
rs("adduser")=aduser
rs("password")=passnw
''''''''''''''
'更新用户的的级别
Mybbs.Execute("update [dv_user] set usergroupid=1,userclass='"&groupsname&"',titlepic='"&titlepic&"' where username='"&trim(request("adduser"))&"'") '
body="<li>管理员资料更新成功,请记住更新信息。<br> 管理员:"&request("username2")&" <BR> 密 码:"&request("password2")&" <a href=?>[ <font color=red>返回</font> ]</a>"
rs.update
End if
rs.close
set rs=nothing
end sub
sub addadmin()
%>
<form action="?action=savenew" method=post>
<table cellpadding="2" cellspacing="1" border="0" width="95%" class="tableBorder" align=center>
<tr>
<th colspan=2 height=23>管理员管理--添加管理员
</th>
</tr>
<tr >
<td width="26%" align="right" class=forumrow>后台登录名称:</td>
<td width="74%" class=forumrow>
<input type=text name="username2" size=30> (可与注册名不同)
</td>
</tr>
<tr >
<td width="26%" align="right" class=forumrow>后台登录密码:</td>
<td width="74%" class=forumrow>
<input type="password" name="password2" size=33> (可与注册密码不同)
</td>
</tr>
<tr >
<td width="26%" align="right" class=forumrow height=23>前台用户名称:</td>
<td width="74%" class=forumrow><input type=text name="username1" size=30> (本选项填写后不允许修改)
</td>
</tr>
<tr align="center">
<td colspan="2" class=forumrow>
<input type="submit" name="Submit" value="添 加">
</td>
</tr>
</table>
</form>
<%
end sub
sub savenew()
dim adminuserid
if request.form("username2")="" then
body="请输入后台登录用户名!"
exit sub
end if
if request.form("username1")="" then
body="请输入前台登录用户名!"
exit sub
end if
if request.form("password2")="" then
body="请输入后台登录密码!"
exit sub
end if
set rs=Mybbs.Execute("select userid from [dv_user] where username='"&replace(request.form("username1"),"'","")&"'")
if rs.eof and rs.bof then
body="您输入的用户名不是一个有效的注册用户!"
exit sub
else
adminuserid=rs(0)
end if
set rs=Mybbs.Execute("select username from "&admintable&" where username='"&replace(request.form("username2"),"'","")&"'")
if not (rs.eof and rs.bof) then
body="您输入的用户名已经在管理用户中存在!"
exit sub
end if
Mybbs.Execute("update [dv_user] set usergroupid=1 , userclass='"&groupsname&"',titlepic='"&titlepic&"' where userid="&adminuserid&" ")
Mybbs.Execute("insert into "&Admintable&" (username,[password],adduser) values ('"&replace(request.form("username2"),"'","")&"','"&md5(replace(request.form("password2"),"'",""),16)&"','"&replace(request.form("username1"),"'","")&"')")
body="用户ID:"&adminuserid&" 添加成功,请记住新管理员后台登录信息,如需修改请返回管理员管理!"
end sub
sub userinfo()
dim menu(8,10),trs,k
menu(0,0)="常规管理"
menu(0,1)="<a href=admin_setting.asp target=main>基本设置</a>@@1"
menu(0,2)="<a href=admin_ads.asp target=main>广告管理</a>@@2"
menu(0,3)="<a href=admin_log.asp target=main>论坛日志</a>@@3"
menu(0,4)="<a href=admin_help.asp target=main>帮助管理</a>@@4"
menu(0,5)="<a href=admin_wealth.asp target=main>积分设置</a>@@5"
menu(0,6)="<a href=admin_message.asp target=main>短信管理</a>@@6"
menu(0,7)="<a href=announcements.asp?boardid=0&action=AddAnn target=_blank>公告管理</a>@@7"
menu(0,8)="<a href=admin_menpai.asp target=main>门派管理</a>@@8"
menu(1,0)="论坛管理"
menu(1,1)="<a href=admin_board.asp?action=add target=main>版面(分类)添加</a> | <a href=admin_board.asp target=main>管理</a>@@9"
menu(1,2)="<a href=admin_board.asp?action=permission target=main>分版面用户权限设置</a>@@10"
menu(1,3)="<a href=admin_boardunite.asp target=main>合并版面数据</a>@@11"
menu(1,4)="<a href=admin_update.asp target=main>重计论坛数据和修复</a>@@12"
menu(1,5)="<a href=admin_link.asp?action=add target=main>友情论坛添加</a> | <a href=admin_link.asp target=main>管理</a>@@13"
menu(2,0)="用户管理"
menu(2,1)="<a href=admin_user.asp target=main>用户资料(权限)管理</a>@@14"
menu(2,2)="<a href=admin_group.asp?action=addgroup target=main>用户组添加</a> | <a href=admin_group.asp target=main>管理</a>@@15"
menu(2,3)="<a href=admin_admin.asp?action=add target=main>管理员添加</a> | <a href=admin_admin.asp target=main>管理</a>@@16"
menu(2,4)="<a href=admin_grade.asp?action=add target=main>用户等级添加</a> | <a href=admin_grade.asp target=main>管理</a>@@17"
menu(2,5)="<a href=admin_update.asp?action=updateuser target=main>重计用户各项数据</a>@@19"
menu(3,0)="外观设置"
menu(3,1)="<a href=admin_template.asp target=main>风格界面模板总管理</a>@@20"
menu(3,2)="<a href=admin_loadskin.asp target=main>模板导出</a> | <a href=admin_loadskin.asp?action=load target=main>导入</a>@@21"
menu(4,0)="论坛帖子管理"
menu(4,1)="<a href=admin_alldel.asp target=main>批量删除</a> | <a href=admin_alldel.asp?action=moveinfo target=main>批量移动</a>@@22"
menu(4,2)="<a href=recycle.asp target=_blank>回收站管理</a>@@23"
menu(4,3)="<a href=admin_postdata.asp?action=Nowused target=main>当前帖子数据表管理</a>@@24"
menu(4,4)="<a href=admin_postdata.asp target=main>数据表间帖子转换</a>@@25"
menu(5,0)="替换/限制处理"
menu(5,1)="<a href=admin_badword.asp?reaction=badword target=main>脏话过滤设置</a>@@26"
menu(5,2)="<a href=admin_badword.asp?reaction=splitreg target=main>注册过滤字符</a>@@27"
menu(5,3)="<a href=admin_lockip.asp?action=add target=main>IP来访限定添加</a> | <a href=admin_lockip.asp target=main>管理</a>@@28"
menu(5,4)="<a href=admin_address.asp?action=add target=main>论坛IP库添加</a> | <a href=admin_address.asp target=main>管理</a>@@29"
menu(6,0)="数据处理(Access)"
menu(6,1)="<a href=admin_data.asp?action=CompressData target=main>压缩数据库</a>@@30"
menu(6,2)="<a href=admin_data.asp?action=BackupData target=main>备份数据库</a>@@31"
menu(6,3)="<a href=admin_data.asp?action=RestoreData target=main>恢复数据库</a>@@32"
menu(6,4)="<a href=admin_data.asp?action=SpaceSize target=main>系统空间占用</a>@@33"
menu(7,0)="文件管理"
menu(7,1)="<a href=admin_upUserface.asp target=main>上传头像管理</a>@@34"
menu(7,2)="<a href=admin_uploadlist.asp target=main>上传文件管理</a>@@35"
menu(8,0)="菜单管理"
menu(8,1)="<a href=admin_plus.asp target=main>论坛菜单管理</a>@@36"
dim j,tmpmenu,menuname,menurl
set rs=Mybbs.Execute("select * from "&admintable&" where id="&request("id"))
%>
<form action="admin_admin.asp?action=updat" method=post name=adminflag>
<table cellpadding="2" cellspacing="1" border="0" width="95%" class="tableBorder" align=center>
<tr>
<th height=25><b>管理员权限管理</b>(请选择相应的权限分配给管理员 <%=rs("username")%>)
</th>
</tr>
<tr>
<td height=25 class="forumHeaderBackgroundAlternate"><b>>>全局权限</b></td></tr>
<tr><td class=forumrow>
<%for i=0 to ubound(menu,1)%>
<b><%=menu(i,0)%></b><br>
<%
on error resume next
for j=1 to ubound(menu,2)
if isempty(menu(i,j)) then exit for
tmpmenu=split(menu(i,j),"@@")
menuname=tmpmenu(0)
menurl=tmpmenu(1)
%>
<input type="checkbox" name="flag" <% if instr(","&session("flag")&",",",16,")=0 then response.write "disabled=true" %> value="<%=menurl%>" <% if instr(","&rs("flag")&",",","&menurl&",")>0 then response.write "checked" %>><%=menurl%>.<%=menuname%>
<%next%><br><br>
<%next%>
<input type=hidden name=id value="<%=request("id")%>">
<input type="submit" name="Submit" value="更新"><input name=chkall type=checkbox value=on onclick=CheckAll(this.form)>选择所有权限
</td>
</tr>
</table>
</form>
<%
rs.close
set rs=nothing
end sub
sub update()
' 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35
'Response.Write request("flag")
'response.end
set rs=server.createobject("adodb.recordset")
sql="select * from "&admintable&" where id="&request("id")
rs.open sql,conn,1,3
if not rs.eof and not rs.bof then
rs("flag")=replace(request("flag")," ","")
body="<li>管理员更新成功,请记住更新信息。"
rs.update
if rs("adduser")=Mybbs.membername then session("flag")=replace(request("flag")," ","")
end if
rs.close
set rs=nothing
end sub
%>