<%@LANGUAGE="VBSCRIPT" CODEPAGE="936"%>
<!--#include file="DQE_Conn.asp"-->
<!--#include file="md5.asp" -->
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=gb2312">
<title>歡迎使用星舊新聞發布系統V1.0</title>
<style type="text/css">
<!--
.kuang {	border: 1px solid #636EA2;
	background-color: #FFFFFF;
}
.shang {	border-top-width: 1px;
	border-top-style: solid;
	border-top-color: #636EA2;
	border-right-color: #636EA2;
	border-bottom-color: #636EA2;
	border-left-color: #636EA2;
}
.style1 {	color: #FFFFFF;
	font-weight: bold;
}
body,td,th {
	font-family: 宋體;
	font-size: 9pt;
	color: #333333;
}
a:link {
	color: #333333;
	text-decoration: none;
}
a:visited {
	text-decoration: none;
	color: #333333;
}
a:hover {
	text-decoration: underline;
	color: #6600FF;
}
a:active {
	text-decoration: none;
	color: #333333;
}
-->
</style>
</head>

<body>
     <table width="90%" border="0" align="center" cellpadding="0" cellspacing="0">
       <tr>
         <td class="kuang"><p>&nbsp;</p>
             <table width="400" border="0" align="center" cellpadding="0" cellspacing="0" class="kuang">
               <tr background="images/2.jpg">
                 <td height="30" bgcolor="#A07AD1"><div align="center" class="style1">歡迎使用星舊新聞發布系統V1.0</div></td>
               </tr>
               <tr>
                 <td height="20"><br>
                     <table width="90%"  border="0" align="center" cellpadding="0" cellspacing="0" class="kuang">
                       <tr>
                         <td height="20" bgcolor="#F2EFF8">&nbsp;</td>
                       </tr>
                       <tr>
                         <td height="60" class="shang">
	 <% if request.QueryString("dongzuo")="loginout" then
	 Session("adminLevel")=null
	Session("adminname")=null
	Session("adminzsname")=null
	response.Redirect(loginURL)
	end if
	 %>
<%
dim aspname,asppassword
    aspname=Request.Form("name")
	asppassword=Request.Form("password")
   	set rs=server.CreateObject("ADODB.RECORDSET")
	'sql="select * from admin where DQEname='"&aspname&"'"
	sql="select * from admin where DQEname='"+aspname+"'"
	rs.open sql,conn,1,1 
	%>
	<% If  rs.eof Then  Response.Write("用戶名不存在")  End If%>
	<% 
	if not rs.eof then
	dim Admin_Pass_Word
	Admin_Pass_Word=md5(asppassword,16)+"wr72bf13"
	if  rs("DQEpassword")=Admin_Pass_Word then
	Session("adminLevel")=10
	Session("adminname")=aspname
	Session("adminzsname")=rs("DQEzsname")
	Session("adminquanxian")=rs("DQEquanxian")
	response.Redirect(houtaiURL)
	else	
	Response.Write("密碼錯誤請重新輸入   <a href='"+loginURL+"'>返回重新輸入</a>")
	End If	
	End If	
	rs.close
	set rs = nothing
	%></td>
                       </tr>
                     </table>
                     <br></td>
               </tr>
             </table>
             <p>&nbsp;</p></td>
       </tr>
     </table>
</body>
</html>