Home | Advertising Info230 USERS CURRENTLY ONLINE   
PowerASP
   Site Search Contact Us Thursday, October 17, 2019  

Active Server Pages ASP ASP.NET .aspx .ascx Web HTML Developer Internet Microsoft Web Services Visual Studio .NET CJWSoft ASPProtect ASPBanner ASPClassifieds



Blog Entry: 3/25/2006 1:48:05 PM

When using this code:

<!------- ASPBanner Ad code ------------->
<script language="JavaScript"> var code = '';
var now = new Date();
var nIndex = now.getTime();
document.write('<s' + 'cript src=" http://www.poconocommuter.com/aspbanner/injectbanner.asp?Ban nerZone=6&nocache=' + nIndex + '">');
document.write('</' + 's' + 'cript>');
</script>
<script language="JavaScript">document.write(jscode);</script& gt;
<!--------- End ASPBanner Ad code --------------->

I receive an error that jscode is undefined. The banner will not display.

Any ideas how to fix this?

 

,

Yes, you are right.

We have now tested it using the DSN less connection with Access 2002 and it works fine. We have also tested it again with a DSN using 2002 and this also seems to work.

The comment about speed is a consideration although I have not noticed any differences. ( we only have a few database entries at this time).

Thanks for your help

,



If you are using version 6 CDOSYS is not supported. That is one reason why version 7 came out. If you want to rewrite the code to work with CDOSYS in version 6 that is something you need to sort out on your own as I do not support custimization to the code.

, I would like to have the ability to give a user 1 album with the default # of photos in it.

Is the best way to implement this to just add in an album creation routine during the sigup/registration process and turn off the ability to create a new album?  Or is a user setting prebuilt into the system for this?
, Hi,
I really look forward to installing V7...
I would like to test V7 by copying my existing V6 to a NEW directory, including the database with new connection, and using this duplicate to do an upgrade for TESTING PURPOSES ONLY before commiting to upgrading the main system.

Should this cause any problem?

Tx,
Leon


,

ok... lets forget about all this redirecting business for a minute

when I go to "GP01.asp" directly via your web site I get a big nasty error that says this

Microsoft VBScript compilation error '800a0411'

Name redefined

/protect/config_inc.asp, line 15

Dim  Address_Required,CDONTS_Installed,City_Required,Registration _Type,VerifyURL,Log_Off_Page
----^ 








then when I look at what you did in that file I see why



you have this code which is totally wrong because you cannot include the password protection file twice
<%@ LANGUAGE="VBSCRIPT" %>
<!--#INCLUDE FILE="check_user_inc.asp"-->
<% GROUPACCESS = "*1*" %>
<!--#INCLUDE FILE="check_user_inc.asp"-->



 
it should be
<%@ LANGUAGE="VBSCRIPT" %>

<% GROUPACCESS = "*1*" %>
<!--#INCLUDE FILE="check_user_inc.asp"-->
and that is probably the root of this entire problem.. the redirection was working...
but you were sending them to invalid pages with errors

all those pages are wrong...
if you dont see the real error above see this
http://support.cjwsoft.com/code/moreinfo11-1.htm


if you look over the aspprotect 7 installation instructions that is the very 1st thing I tell people to do


hopefully this is the info you need to continue and get some work done
,

Hi,

How do you know permissions are ok in that folder ?
Please tell me more on how they were set.

Please read through my article on how they are set correctly.
http://support.cjwsoft.com/code/moreinfo136-1.htm

Often times they are not set correctly or people thingk they set them somehow but in fact did not do it the correct way.

I would also suggest using the "test_physical_path.asp" page in the "extras" folder to verify if the path you are using to the database mdb file is in fact correct. That page should work whether permissions are set or not. At least then you will know if the path is correct or not and you can go from there.

, YAY! I FOUND A BUG IN MY TESTING!!! Do I get a cool t-shirt or a coupon for Ben & Jerry's Ice Cream? 

Hehehe... seriously, thanks for digging deeper and spotting the error. You got some mad skillz and some excellent service, Mr. Cwilliams!
,

It's just a generic error that means one of 1000 different things is wrong.. there is a lot of information on in in these forums as well as links to articles about it.

http://support.cjwsoft.com/forum/forum_posts.asp?TID=27& PN=1

usually it means permissions to the database folder are incorrect or the physical path you are specifying for your dsn-less connection is invalid..

everything has to be perfect

 

cwilliams38370.5271296296,
Using just ASP (Form Based Authentication) you can only protect the actual content of the ".asp" files.
 
You can however use some ASP tricks to stream other types of files to the users.
That way the actual file locations are never known and they can only get them/see these files when they are logged in as you would be streaming files to them after they logged in.
 
Below are informative links I have collected on the subject in an email I sent to another customer a while back.
 
 

Using Active Server Pages you can only protect ".asp" pages.
You can however password protect ".asp" pages that stream files to the user using code like in these examples therefore keeping the actual file name a secret.
 
 
 
 
 
 
And from another email I sent...
 
ASPProtect only protects the content of ".asp" pages. Directory protection is not possible using just ASP.
Other file extensions can not be protected using just ASP.
 
 
There are ways to get around this.
 
You'd want to do a technique like this to stream non ".asp" files to the users.
 
 
The safileup component from softartisans can actually do something similar as far as streaming the files go.
 
Then use something like ASPProtect to protect the ASP files that streams the files.
 
The actual location of the files is never known to the users and of they don't have access to the asp pages they can not see or get those other types of files.
 
Very doable, but nothing ASPProtect takes care of automatically.
This info above should get ya on track.
 
cwilliams38344.8751736111,

you dont want to use the virtual smtp virtual server method... you want to use a real remote email server with valid MX records..

ultimately though after all that is going is it is out of the hands of the asp code and it becomes issues other then the code sending the email... regarding to whether or not emails get blocked by certain organizations

For example:
I have many aol users sign up for various systems I have running without issue. I use CDOSYS with my own server mail.cjwsoft.com which has proper MX records set up.

I would also try to determine the difference between blocking and spam/junk email filtering. It is impoirtant to truly know what is going on.
Sometimes adding more information to the body of the emails going out will eliminate the junk mail filters from gettings the emails.

Then you have the various open relay lists that places like AOL use. If your email server or IP sending the email is on those lists for spamming you do not stand a chance. That is all out of the hands of the ASP code.

,

This first one may be an obvious one, but is it only .asp files that I can protect as in no HTML files.

Can the program be set to protect my whole https directory contents (though the answer to the last question may have bearing here - there are html files as well as .asp in there) as in http://secure.mydomain.com

Thanks in advance

, that variable comes from the settings acreen in the admin area. If you do not have it set properly things like what you are describing will happen., ok.

sorry then..

I just had a series of fraudulant orders this past week including today and the whole thing has me on edge. (foreign people getting my code for free and doing who knows what with it) When you mentioned calling the cc company it pushed all the right buttons.

Merry Christmas,

Got it working.  Embarrassed  Had purchased a long time ago and forgot about needing to run the userreg.exe.  All is well and thanks for the follow up.

Lance

,

I will actually explain how to set access_levels and/or groups...

in "users/add_new_account.asp"

carefully edit with a text editor
find this part
 
CmdAddUser.Fields("Access_Level") = "4"
 
that is where the acess level gets set...
you can change the level or remove that line all together if you dont want one set
 
now for groups you would add this line in the same area
 
CmdAddUser.Fields("Groups") = "*3*"
 
or
 
CmdAddUser.Fields("Groups") = "*1*,*2*,*3*"

Groups access for a user is stored in one field in the database like you see above. If you are confused what you should be saving in that field I suggest simply setting a user to whatever groups you want via the admin area and then looking in the database to see what got saved in that field. It's pretty simple really how they are stored.

*1*,*5*,*9*

that user would be a member of groups 1,5, and 9
,

If things are not perfect there will be no log files and no errors.. it can only be one of these things really
http://support.cjwsoft.com/code/moreinfo313-2.htm

You may also want to make your the filesystem on the server is working and not disabled by norton script blocking or anything random like that. Testing the filesystem object is best done by writing a simple text file to a folder. Plenty of examples of doing that can be found at www.aspin.com

Recent activity is temporary and admin activity in the admin area is not tracked. If your application in IIS has reset or there has been no activity in the users area or in pages you protected there will be nothing there. The busier your site the more chance something will be there. For example usually our online demo has something there except right after 4am when my server does an iisreset.

,

I have just started to move my sites to a new dedicated Windows 2003 box.  I have parent paths enabled, SSI turned on but I still can't get ../ to work with server side includes.  Everything I read online says that I need to turn on parent paths but again, they are already turned on.

The hosting company where the server is located can't tell me anything, they just say that that is the way it is with Windows 2003.  I don't buy it!

Can anyone tell me anything on this issue to help enable the ../ for serverside includes? 

, I posted this in the wrong forum. Sorry.

I have installed ASPProtect on a client's website and I have been notified that some of their customers have been unable to login to the protected pages.

On testing it seems that the issues seem to be related to how cookies are being stored by IE 6.

ASPProtect is being used to protect particular template files within a Content Mangement System. 90% of the time it is working fine but on the odd occassion particular cutomers are unabe to login.

After quite a bit of testing I have managed to find the scenario in which it starts to have problems and was hoping you may be able to provide a solution.

If a customer enters the wrong password, then reenters the correct username and password, they receive a message "template can not be found" from the Content Management System. This message is generated when a url is entered that contains a link to a template file that does not exist. In this case the template does exist. If I remove the ASPProtect code the page opens without error.

Everytime they re-enter the details they receive the same message.

If they close down the browser and then reenter the correct details in some instances the page will open correctly.

More often than not, they have to delete cookies and temporary files and  close the browser. This seems to fix the problem again for most users. For users who's web access is heavily cached by an internal server, even this does not work.

Have you come across this problem before and can you suggest a remedy.

If you can email me privately I can give you the URL and access codes.

Thanks,

Stuart ,

all I can say is try other things...  like

mail.yoursite.com

or

smtp.yoursite.com

etc etc etc

replacing yoursite with the name of your domain of course


the settings for sending email via ASP are no different then the settings you would use in outlook or something... except sometimes on the server level localhost works as the email server because they set it up to allow that

and of course those 3rd party emailing components need to actually be installed on the server

, It is common when testing a site that this happens because of the nature of session variables.

Admins have access to EVERYTHING so it is very important when testing different user accounts that you specifically log out... and then close every single browser window before logging in as a different user. This is to ensure session info from the previous user does not overlap in any areas.
(The session variable for admin access being the main one)

Under normal circumstances a user would not log in with many different accounts on the same computer this this would only be a problem for a developer who is testing.

So make sure you go to the to log-off page and log off.. then close all browser windows.. then test another user.

If all this is not the case then something else is going on and I will need more information. I pretty much know the level checking code for ASPProtect Version 6 is correct as there has been no reason to change any of it in over a year. I would have heard reports of problems with it. ,

If you re-start the web via IIS, reboot the server, or (possibly) just add and remove a category... that will clear up.

ASPClassifieds and ASPListings must be installed in seperate IIS applications if they are the same web. Otherwise the category caching system of each system will interfere with each other. They were never intended to be installed in the same web together since ASPListings is merely a stripped down version of ASPClassifieds and they share a lot of the same code. Like I said though if different IIS applications are set up in the web site you can do it because each IIS application will have it's own set of application and session variables.

,

Have SQL 2000 backend...
We just moved from Windows 2000 to Windows 2003, used import data routine in SQL to move data.

Logged into admin area. When adding new user, no record is created. However, editing record works just fine.

Any ideas would be appreciated.

,

If a picture does not show after uploading it is one of the following things.

The upload method chosen is not supported on the server
or
The physical path specified to the pictures folder is not correct.
or
The URL to the Pictures folder is not correct.
or
Permissions to the pictures folder have not been set properly


Here is more information on how permissions are set.

http://support.cjwsoft.com/code/moreinfo136-1.htm
http://support.cjwsoft.com/code/moreinfo56-1.htm

Without more information and the settings you have entered and chosen that is all I can offer for now.

, Humm..

I have no idea where links to hose graphics are being called.

I checked the source of edt_banner.asp and I see no calls to any images named like that

I didnt see any calls in the header and footer files either...

,

Kurt,

There really is no default width in general.

The thing to remember is that the default.asp page includes a lot of different pages.. and some of those pages also include pages.

Now all of this gets wrapped by the header and footer include files so in a sense what you do there can effect everything inside to a certain degree.

Now there are some widths set here and there for different tables and what not on certain pages, but its really the kind of situation where you just have to dig around in the code and experiment until you eventualy find what you are looking for and get the desired result.

I'd love to tell you there is easy way to just set a width, but it is not that simple.

Maybe someday it will be. Just not in the current version.

CJW

,

I have a user who is trying to login. However, I am getting a error that I can't seem to find.
Username: executive.barcheski
Password: executive@amcpc.com

Encrypted Password: ?=`م

Error on check_user_inc.asp line 114

If (Request.Cookies("PASSWORDSYSTEMCOOKIE")("KEEPMESIGNEDIN") = "True") And (Request.Cookies("PASSWORDSYSTEMCOOKIE")("COOKIE_USERNAME") <> "") And KeepSignedInOption And Status <> "Checkem" Then
CheckUserSQL = "SELECT " & tbl_label_users & ".* FROM " & tbl_label_users & " WHERE (Username = '" & RC4(Request.Cookies("PASSWORDSYSTEMCOOKIE")("COOKIE_USERNAME "), CookieEncryptionKey) & "') And (Password = '" & Replace(RC4(RC4(Request.Cookies("PASSWORDSYSTEMCOOKIE")("COO KIE_PASSWORD"), CookieEncryptionKey), PasswordEncryptionKey),"'","''") & "')"
Else
CheckUserSQL = "SELECT " & tbl_label_users & ".* FROM " & tbl_label_users & " WHERE (Username = '" & Username & "') AND (Password = '" & Replace(RC4(Password, PasswordEncryptionKey),"'","''") & "')"
End If

CmdCheckUser.Open CheckUserSQL, ConnPasswords

error received: unclosed quote after '?=

Any ideas

Jason Johnson

,

Has anyone used the aspmail function to send and recieve emails from within your forms? If so what string did you use in the aspmail_host field in the connections database.

thank you
adam

,

when I go to that url is seems fairly fast and somewhat normal.. even when I try to log in it pops right back up asking for login info again..

I would check to make sure you are not running anything that might be effecting your web browsing.. software firewalls.. ad blockers.. script blockers... norton internet security.. zone alarm... anything like that

they can all effect a lot of things regarding how web browsers act.

,

Glad it worked

cwilliams38406.5549074074, 1st. Please understand you have to purchase two licenses to do such a thing as each installation will need a valid license purchased.

Moving on:

ASPProtect using a industry standard concept called "Forms Based Authentication"

This primarily relies on session variables keeping track of login status.

Each installation must be in it's own unique "IIS Application" so it will have it's own set of application and session variables.

That is often not possible with shared hosting plans as the server admins may not be willing to set a folder in your web as a separate IIS application. You would need to ask. It is going to depend on the quality of your hosting plan whether they do it or not.

technically it takes about 1 minute to open up the "IIS Console" and set up a folder in your web as a separate "application"



Based on what you are telling me that you want to do I think it would make a lot more sense to have one installation and one user database and customize your sites so ASPProtect users that are part of certain "groups" have access to things others do not or see things on pages other users would not. That is after all the entire point of Dynamic web sites and also why ASPProtect has "groups".

Then as far as the registration differences go you would make a copy of the users area folder area and manual customize it to register users in an alternate fashion than the main "users" folder. And then send people there if that is how you want them to register.

I don't support customizations but that is the gist of it. It's really not difficult work, but you have to be good with ASP., I dont get it.. I am still looking into it..

I think this has something to do with your original experience when things would work and then not work.

something weird is going on
,

While attempting the database connection test, I receive the following error:

Server Error in '/' Application.

Security Exception

Description: The application attempted to perform an operation not allowed by the security policy. To grant this application the required permission please contact your system administrator or change the application's trust level in the configuration file.

Exception Details: System.Security.SecurityException: Security error.

Source Error:

An unhandled exception was generated during the execution of the current web request. Information regarding the origin and location of the exception can be identified using the exception stack trace below.

Stack Trace:

[SecurityException: Security error.]
   aspprotectnet.DBConnectTest.Page_Load(Object sender, EventArgs e) +0
   System.Web.UI.Control.OnLoad(EventArgs e) +67
   System.Web.UI.Control.LoadRecursive() +35
   System.Web.UI.Page.ProcessRequestMain() +2112
   System.Web.UI.Page.ProcessRequest() +218
   System.Web.UI.Page.ProcessRequest(HttpContext context) +18
    System.Web.CallHandlerExecutionStep.System.Web.HttpApplicati on+IExecutionStep.Execute() +179
   System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously) +87


Version Information: Microsoft .NET Framework Version:1.1.4322.2300; ASP.NET Version:1.1.4322.2300

My guess is that this is an issue with the fact that I'm in a shared hosting environment that is restricted by CAS.  Before I move to a dedicated server, I'd like to verify that this is the issue.  I'd appreciate your input.

My host is 1and1 Internet.  You may find this FAQ helpful: http://faq.1and1.com/scripting_languages_supported/_net/16.h tml.

 

, Bingo! that did it.  Somehow the data must have gotten corrupted. 

Hopefully that will do for me. Seems like everything is humming along and looks great!

Thanks again,

Laura
, recently i've been getting a lot of unspecified errors.  i've been running aspbanner for about a year and a half now.  i don't know what would have caused all these problems.  also, for some reason it won't maintain my log-in, ever time i got from page to page or try to submit a form it asks me log-in again.

Jason S.
cwilliams38389.8791550926,

I have written asp.net application pages- obviously i knew what viewstate was, or else when they made a mistake on that page it would not have saved their filled in info. Same thing for after they submitted, when they hit the back button their info would be gone.

For someone who wrote this software it seems you are not able to do simple things. Im begining to think you didn't write it. The only reason no one else asked this many questions is possibly because they didnt NEED the functions i am TRYING to do.

I know how the log boxes work. Esp. reg ASP... they all allow you to enter your username and password and then when you hit submit it gets verified and transfers you to your destination. ASP.NET has that capability also.. i didn't purchase a program to go and have to re-write it in visual studio. It would take me longer to re-write YOUR code than it would to have LEARNED ASP.NET and made MY OWN.

The program seems to have some great complex features, however, your not able to incorporate this easy login from a diff. page function... fishy

, Great!  Sounds good Chris.  ,

I just purchased the software and it looks great however, I have been fighting for 4 hours trying to get a protected page to do what it is supposed to.

I was trying the examples you provided and they worked fine, then I would use the code at the top of my pages with no luck.

When I installed the software, I used an FTP package as I have found lately that anything with a database gets all messed up when I publish with FP.

On a whim, I took the page I was publishing in FP and published the same page with my FTP program.  It worked!  What I can't figure out is what FP does to the files to screw them up so they won't function.  Is there a setting in FP that I have to change to get it to work?  The files look the same, but they are different sizes when I overwrite them with FTP.

Any ideas?  I don't want to have to publish my entire site with FTP as it is a FP template site.

Thanks,

Dave

,

I am having severe trouble with the SQL database connection for ASPlisting (generic version).

I have used all of the suggested connection strings but still get error messages such as:

[DBNETLIB][ConnectionOpen (Connect()).]Specified SQL server not found.

I have set up the tables in the database, although the database existed already with many other tables in it as it costs me per database per month so one has to suffice with many tables in it.

I use SQL a fair amount on my site but have not suffered any probs like this yet.

Any advise or help would be useful.

, Oh snap. Tried the blank database and got the same errors. Fixed THE FILE PATHS to conform to the AspProtect 7 setup, and it worked like a champ. I still need to copy and paste the info, but it's working just fine with the ones I add manually.

Moral of the story: FOLLOW INSTRUCTIONS TO THE LETTER.
,


Timecard Entry: 3/25/2006 1:48:05 PM

Uploading the eps to the to the times directory, travel back, technical support supervisor duties. helped techs with issues, maintained and managed --- qlight, radlog, new user call backs, expired user call backs, dial up issues, ask us a questions, voice mail, emails, emonitor, NOC calls, follow ups on noc and customers, customer calls in, calls made out to the customer, radlog, open incidents...., Entered bills, edavisproducts.com - reworking public pages to detect between fragrance, description, and packaging field options. (billable), email and voicemail my own timecard, checked modems and filled in the modem maintenance report., lunch, not a lot happening. ran over to the other building a few times. took a few general calls, Golfwith your buddies- go voer wth jim navara- send him email in instructions ?Watertown Animal hospital set up appoinemnt with sue for thrudsay Jacob Brewster house- meeting for monday at11:00am - web site info and design Rick Woodward- info for domain set up and hosting prices Tughill.org- problem with ftp sent trouble ticket to randy Sahne sanford- meeting to add another link to email Network solutions- reregister 4 domains names , Meeting with Bob nelson. We spent 2 hours going over all of the imput sheets fields.. organizing them..deleting some...adding new ones... etc etc etc This was very helpgull for me., Looking up info on modem testing software., SoftMLS2 AT HOME... Working on all those changes and fixes, pat, Frame router down, nips at Skeemers, Reset FrontPage perms for pizzagalli site, Clayton Chamber of Commerce- trianing on upload manager, statstracker, and go over billing, Burned CDs of files, created disk, ran software, new/closeout w/o's, tng, meet with graphic dev team, u/d timecard hours to website tracker, meet with personnel (h&r), e-mail, teched phone calls, problems with wireless network, YACHTING OPERATION WEBSITE DEVELOPMENT, Lowville is still down., Chris cross- go over storefront info, worked on answering voice mails, setting up usernames and passwords for three new employees, and domain accounts. setting up vstats servers , researched Access databasing with ASP for USA1Net site, Prepped OCCE router for shipping, wrote notes to go with it., Phones, Phones, Phones. Mark Holberg, Logical Net, Bell Atlantic, Ken Mills, Frontenac, Andrea, Howard, Michele, and seems like a million other people... wouldn't stop ringing, and when it did I had to dial out. Did Timesheets too... and still have the intern from Sakets Harbor (no her name is not Monica!).,

   Active Server Pages Rule The World
Contact Us  
All artwork, design & content contained in this site are Copyright 1998 - 2019 PowerASP.com and Christopher J. Williams
Banner ads ,other site logos, etc are copyright of their respective companies.
STATS Unless otherwise noted - All Rights Reserved.

Active Server Pages asp search engine active server page asp application components tutorial CJWSoft ASPProtect ASPBanner ASPClassifieds www.aspclassifieds.com, www.powerasp.com,www.cjwsoft.com,www.aspphotogallery.com,www.codewanker.com,www.aspprotect.com,www.aspbanner.com