<% '*** *** *** *** *** ' 登录/找回密码 '*** *** *** *** *** dim pp set king=new kingcms king.checkplugin king.path'检查插件安装状态 set pp=new passport select case action case"" king_def case"getpass" king_getpass end select set pp=nothing set king=nothing ' *** Copyright © KingCMS.com All Rights Reserved *** sub king_def() if king_remoteurl<>"../" then response.redirect king_remoteurl&"passport/login.asp" dim ispwd,checked,sql,rs,re,loginok dim ppname,pppass,md5pass,ppkey,logcount,errtext king.pphead 0 ispwd=true:loginok=false ppname=form("ppname"):pppass=form("pppass") re=request.servervariables("http_referer") if len(form("re"))>0 then re=form("re"):if len(re)=0 then re="/" if len(ppname)>0 and len(pppass)>=6 then if king_dbtype=1 then sql="select count(logid) from kingpassport_log where ip='"&safe(king.ip)&"' and lognum=2 and getdate()-logdate<0.25;" else sql="select count(logid) from kingpassport_log where ip='"&safe(king.ip)&"' and lognum=2 and now()-logdate<0.25;" end if logcount=conn.execute(sql)(0) if logcount>=pp.loginnum then errtext="

"&pp.lang("tip/lock")&"

" else set rs=conn.execute("select ppkey,pppass,pplanguage,islock from kingpassport where ppname='"&safe(ppname)&"' and isdel=0;") if not rs.eof and not rs.bof then md5pass=md5(pppass&rs(0),1) if cstr(rs(1))=cstr(md5pass) then conn.execute "insert into kingpassport_log (ppname,lognum,ip,logdate) values ('"&safe(ppname)&"',1,'"&safe(king.ip)&"','"&tnow&"')" '写cookies response.cookies(md5(king_salt_user,0))("name")=ppname response.cookies(md5(king_salt_user,0))("pass")=md5(left(rs(0),3)&md5pass,1) if king_remoteurl="../" then response.cookies(md5(king_salt_user,0)).domain=king.url else response.cookies(md5(king_salt_user,0)).domain=king_domain end if session(md5(king_salt_user,0))=ppname&"|"&rs(2)&"|"&rs(3) if cstr(form("validity"))="0" then response.cookies(md5(king_salt_user,0)).expires=now+365 end if '登录成功后的提示 king.ol="

" king.ol="

"&pp.lang("list/center")&"
"&pp.lang("list/home")&"
"&re&"
"&pp.lang("common/logout")&"

" king.ol="

" loginok=true else conn.execute "insert into kingpassport_log (ppname,lognum,ip,logdate) values ('"&safe(ppname)&"',2,'"&safe(king.ip)&"','"&tnow&"')" ispwd=false end if else conn.execute "insert into kingpassport_log (ppname,lognum,ip,logdate) values ('"&safe(ppname)&"',2,'"&safe(king.ip)&"','"&tnow&"')" if pp.loginnum-logcount=1 then errtext="

"&pp.lang("tip/lock")&"

" else ispwd=false'response.write "

您的帐号或密码有误 !还有"&(king_loginnum-logcount-1)&"次登录的机会。

" end if end if rs.close set rs=nothing end if end if if loginok=false then king.ol="

" if len(errtext)>0 then king.ol=errtext else king.ol="

" king.ol="

"&pp.lang("label/pass1")&"" king.ol="" king.ol=" ["&pp.lang("common/getpass")&"]" king.ol=king.check("pppass|6|"&encode(pp.lang("check/pwdsize"))&"|6-30") king.ol="

" king.ol="

" if cstr(form("validity"))="0" then checked=" checked=""checked""" else checked="" king.ol="" king.ol=""&pp.lang("label/validity")&"" king.ol="

" king.ol="

" king.ol=" " king.ol="" king.ol="

"&vbcr ' if king_remoteurl<>"../" then'跨站验证 ' king.ol="" ' king.ol="

" ' king.ol=king.gethtm(king_remoteurl&"passport/login.asp?action=remote",2) ' king.ol=""&vbcr ' king.ol=""&vbcr ' king.ol=""&vbcr'cookie用asp来读取remoteurl地址进行再次验证，如果通过就在本地写cookies ' ' ' '如果返回的islogin值为1，则跳转到成功登录提示页面，为0无提示 ' king.ol="" ' end if end if king.ol="

" end if king.value "title",encode(pp.lang("common/login")) king.value "inside",encode(king.writeol) king.outhtm pp.template,"",king.invalue end sub ' *** Copyright © KingCMS.com All Rights Reserved *** sub king_getpass() if king_remoteurl<>"../" then response.redirect king_remoteurl&"passport/login.asp?action=getpass" king.pphead 0 dim rs,ppquestion,data,ppkey,pppass,md5pass dim is1,is2 is1=true:is2=true '提交用户名 king.ol="

" king.ol="

" if king.ismethod then'当没有其他错误的时候，验证帐号和邮箱是否一致 if conn.execute("select count(*) from kingpassport where ppname='"&safe(form("ppname"))&"' and ppmail='"&safe(form("ppmail"))&"' and isdel=0;")(0)=0 then is1=false end if end if king.ol="

" king.ol="

" king.ol=" " king.ol="

" king.ol="

" '检查预置的问题和答案是否一致 if king.ismethod and king.ischeck then king.clearol king.ol="" if king.ischeck then king.clearol '更新密码 king.ol="" if king.ischeck then ppkey=salt(6):pppass=form("pass1") pppass=md5(pppass&ppkey,1) conn.execute "update kingpassport set ppkey='"&safe(ppkey)&"',pppass='"&safe(pppass)&"' where ppname='"&safe(form("ppname"))&"';"'重新写新的密码 response.cookies(md5(king_salt_user,0))("name")=form("ppname") response.cookies(md5(king_salt_user,0))("pass")=md5(left(ppkey,3)&pppass,1) if king_remoteurl="../" then response.cookies(md5(king_salt_user,0)).domain=king.url else response.cookies(md5(king_salt_user,0)).domain=king_domain end if session(md5(king_salt_user,0))=form("ppname")&"|"&king_language&"|0" '输出提示，并结束过程 king.clearol king.ol="

" king.ol="

"&pp.lang("tip/getpass")&"
"&pp.lang("list/center")&"
"&pp.lang("list/home")&"
"&pp.lang("common/logout")&"

" king.ol="

" end if end if end if king.value "title",encode(pp.lang("common/getpasstitle")) king.value "inside",encode(king.writeol) king.outhtm pp.template,"",king.invalue end sub %>