用户登陆之后,无论输入什么用户名与密码都提交到admin_main.html页面,请大伙帮助看看,问题出在哪
~~~~~~~~~~~~~~~~~~
<%
dim use,pwd
use=request.Form("admin_use")
pwd=request.Form("admin_pwd")
ON ERROR RESUME NEXT
Set cnn=Server.CreateObject("ADODB.Connection")
Set rec=Server.CreateObject("ADODB.Recordset")
cnn.ConnectionString="Driver={Microsoft Access Driver (*.mdb)};Uid=;Pwd=;DBQ=" & Server.MapPath("inc/beijing2008.mdb")
cnn.Open
dim SQL
SQL="SELECT * FROM user WHERE use='"&admin_use&"'and pwd='"&admin_pwd&"'"
rec.Open SQL,cnn,3,3
if rec.RecordCount>0 then
if rec.fields("admin_use")=request.form("admin_use") AND rec.fields("admin_pwd")=request.form("admin_pwd") then
Session("Admin_Check")="OK"
set rec=nothing
set cnn=nothing
response.redirect "admin_main.html"
end if
end if
response.write "
账号和密码不对!
"
response.write "
返 回
"
set rec=nothing
set cnn=nothing
%>
~~~~~~~~~~~~~~~~~~~