<head>
<link href=../style.css rel=STYLESHEET type=text/css>
<style type="text/css">
<!--
.style1 {
	font-size: 24pt;
	font-family: "黑體";
}
-->
</style>
</head>



<center>
<table width="400" border="0" align="center" cellspacing="1">
  <tr>
    <td width="100%" bgcolor="#CC9966">　
      <p>　</p>
      <p align="center">　 <span class="style1">網站后臺維護程序</span></p>
      <p>　</p>
    <p>　</td>
  </tr>
  <tr>
    <td width="100%">
      <form method="POST" action="login.asp?action=login">
        <table border="0" width="100%" cellspacing="1">
          <tr>
            <td width="18%">用戶名</td>
            <td width="82%"><input type="text" name="admin_name" size="20" class=input></td>
          </tr>
          <tr>
            <td width="18%">密碼</td>
            <td width="82%"><input type="password" name="admin_pass" size="20" class=input></td>
          </tr>
        </table>
        <input type="submit" value="提交" name="B1" class=input><input type="reset" value="全部重寫" name="B2" class=input>
      </form>
    </td>
  </tr>
  <tr>
    <td width="100%"></td>
  </tr>
</table>
<%
if request("action")="login" then
admin_name=request("admin_name")
admin_pass=request("admin_pass")
%>
<!--#include file="conn.asp"-->
<%
set rs=server.createobject("adodb.recordset")
sql="select * from admin where admin_name='"&admin_name&"' and admin_pass='"&admin_pass&"'"
rs.open sql,conn,3,3
    if rs.eof then
        response.write "<center>用戶名和密碼不匹配"
    else
        session("admin_name")=rs("admin_name")
        response.redirect "manage.asp"
    end if
rs.close
set rs=nothing
conn.close
set conn=nothing
end if
%>