<!--#include file=conn.asp --> 
<!--#include file=../inc/encrypt.asp -->
<%
admin_name=request("admin_name")
admin_password=request("admin_password")

Set rs_admin = Server.CreateObject("ADODB.Recordset")
sql="select * from admin where admin_name like '" & admin_name & "' and admin_password = '" & Encode(admin_password) & "'"
rs_admin.open sql,conn,3,2
if rs_admin.eof and rs_admin.bof then
   response.write "<script language='javascript'>"
   response.write "alert('賬號或密碼錯誤！');"
   response.write "history.go(-1);"
   response.write "</script>"
   response.end
end if

rs_admin.close
session("hs_opt")="ok"
response.redirect "mimi.asp"
%>