if session("flag")>2 then
response.write "您没有操作的权限"
response.end
end if
%>
count=Replace(request("count"), "'", "''")
oklook=Replace(request("oklook"), "'", "''")
add=Replace(request("add"), "'", "''")
del=Replace(request("del"), "'", "''")
%>
if add"" then
set rs=server.createobject("adodb.recordset")
sql="select money,starlook,oklook,pay,usercount,baoyue from users where userid='"&Replace(request("userid"), "'", "''")&"'"
rs.open sql,conn,1,3
rs("pay")=1
rs("starlook")=now()
rs("usercount")=rs("usercount")+count
rs("baoyue")=0
rs("oklook")=1
rs.update
set rs=server.createobject("adodb.recordset")
sql="select * from buy where id="&clng(request("id"))
rs.open sql,conn,1,3
rs("pay")=1
rs.update
'conn.execute"delete from buy where id="&clng(request("id"))
if request("askmejoin")"" then
set rs=server.createobject("adodb.recordset")
sql="select getmoney,payno,oklook from users where userid='"&request("askmejoin")&"'"
rs.open sql,conn,1,3
if rs("oklook")=0 or rs("oklook")=1 then
give=1
elseif rs("oklook")=2 then
give=2
elseif rs("oklook")=3 then
give=3
elseif rs("oklook")=4 then
give=4
end if
rs("getmoney")=cint(rs("getmoney"))+request("paymoney")/10*give
rs("payno")=cint(rs("payno"))+1
rs.update
end if
rs.close
set rs=nothing
conn.close
set conn=nothing
response.redirect"buyuserji.asp"
response.end
end if
if del"" then
set rs2=server.createobject("adodb.recordset")
sql2="select pay from users where userid='"&Replace(request("userid"), "'", "''")&"'"
rs2.open sql2,conn,1,3
rs2("pay")=""
rs2.update
rs2.close
conn.execute"delete from buy where id="&clng(request("id"))
conn.close
set conn=nothing
response.redirect"buyuser01ji.asp"
response.end
end if
%>
