step1:在用户登陆页中,找到MM_loginSQL,在 "SELECT username, password,quanxian"中添加权限字段。
step2:在用户登陆页中,找到
MM_redirectLoginSuccess = Request.QueryString("accessdenied")
End If
session("MM_quanxian")=MM_rsuser.Fields.Item("quanxian").value MM_rsUser.Close
Response.Redirect(MM_redirectLoginSuccess)
MM_redirectLoginSuccess = Request.QueryString("accessdenied")
End If
session("MM_quanxian")=MM_rsuser.Fields.Item("quanxian").value MM_rsUser.Close
Response.Redirect(MM_redirectLoginSuccess)
step3:在想要设置限制的页上加如下语句就可以限制访问了
' *** Restrict Access To Page: Grant or deny access to this page
MM_authorizedUsers=""
MM_authFailedURL="login.asp"MM_grantAccess=false
If Session("MM_quanxian") >2 Then If (true Or CStr(Session("MM_UserAuthorization"))="") Or _
(InStr(1,MM_authorizedUsers,Session("MM_UserAuthorization"))>=1) Then
MM_grantAccess = true
End If
End If
If Not MM_grantAccess Then
MM_qsChar = "?"
If (InStr(1,MM_authFailedURL,"?") >= 1) Then MM_qsChar = "&"
MM_referrer = Request.ServerVariables("URL")
if (Len(Request.QueryString()) > 0) Then MM_referrer = MM_referrer & "?" & Request.QueryString()
MM_authFailedURL = MM_authFailedURL & MM_qsChar & "accessdenied=" & Server.URLEncode(MM_referrer)
Response.Redirect(MM_authFailedURL)
End If
%>
MM_authorizedUsers=""
MM_authFailedURL="login.asp"MM_grantAccess=false
If Session("MM_quanxian") >2 Then If (true Or CStr(Session("MM_UserAuthorization"))="") Or _
(InStr(1,MM_authorizedUsers,Session("MM_UserAuthorization"))>=1) Then
MM_grantAccess = true
End If
End If
If Not MM_grantAccess Then
MM_qsChar = "?"
If (InStr(1,MM_authFailedURL,"?") >= 1) Then MM_qsChar = "&"
MM_referrer = Request.ServerVariables("URL")
if (Len(Request.QueryString()) > 0) Then MM_referrer = MM_referrer & "?" & Request.QueryString()
MM_authFailedURL = MM_authFailedURL & MM_qsChar & "accessdenied=" & Server.URLEncode(MM_referrer)
Response.Redirect(MM_authFailedURL)
End If
%>
来自 “ ITPUB博客 ” ,链接:http://blog.itpub.net/12819884/viewspace-548850/,如需转载,请注明出处,否则将追究法律责任。
转载于:http://blog.itpub.net/12819884/viewspace-548850/