<%
'response.write "OK!"
username=trim(request.Form("username"))
password=trim(request.Form("password"))
identity=request.Form("identity")
if username<>"" and password<>"" then
Set conn = Server.CreateObject("ADODB.Connection")
    conn.Open "driver={Microsoft Access Driver (*.mdb)};dbq=" & Server.MapPath("newdata.mdb")
    set rs= server.createobject("adodb.recordset") 
    '判断是那种用户
    if identity="student"then
    sql= "select * from user where username='"& username &"' and password='"& password &"'"
    Set rs= conn.Execute(sql) 
    if not rs.eof then
        session("identity")=identity
        session("username")=username
        session("password")=password
        conn.close
        response.redirect "default.html"
    else
        response.redirect "index1.asp"
    end if 
    if identity="teacher" then
    sql= "select * from teacher where username='"& username &"' and password='"& password &"'"
    Set rs= conn.Execute(sql) 
    if not rs.eof then
        session("identity")=identity
        session("username")=username
        session("password")=password
        conn.close
        response.redirect "index.asp"
 else
   response.redirect "index1.asp"
   end if    
%>