<% Dim AdminID,AdminName,AdminPass,IsAdmin,rs0 Response.Cookies(QiyeSiteCookie).expires=dateadd("n",20,now()) 'Response.Cookies(QiyeSiteCookie)(QiyeSiteCookie&"_psd").expires=dateadd("H",0.5,now()) AdminID =request.Cookies(QiyeSiteCookie)(QiyeSiteCookie&"_id") AdminName =request.Cookies(QiyeSiteCookie)(QiyeSiteCookie) AdminPass =request.Cookies(QiyeSiteCookie)(QiyeSiteCookie&"_psd") If AdminID<>"" and AdminName<>"" and AdminPass<>"" then set rs = server.CreateObject ("adodb.recordset") sql="Select Top 1 * from jr_Admin where id="& AdminID &" and password='"&AdminPass&"' and Admin='"&AdminName&"'" on error resume next rs.open sql,conn,1,1 Dim myadminid,myadminpass,myadminuser myadminid =rs("ID") myadminpass =rs("password") myadminuser =rs("Admin") myadminip =rs("ip") myadminquanxian=rs("quanxian") rs.close set rs=nothing If myadminid<>Int(AdminID) or myadminpass<>AdminPass or myadminuser<>AdminName or myadminip<>Request.serverVariables("REMOTE_ADDR") Then IsAdmin=0 Else IsAdmin=1 End if End if If IsAdmin<>1 then Response.Redirect "Login.asp" End if %>