| Blog News Main Page |
NEWS FROM 2006-03-25
Blog Entry: 3/25/2006 2:36:18 PM
Sounds cool.. post info when you get it sorted out
hopefully someday I'll get the new version finished.. I just never seem to have time. Lately ASPProtect takes up all my time and now aspclassifieds seems to be in need of a new version more so than asp photo gallery
Yes, that is how it works. Unless you make modifications to the code there is no way to easily do what you are talking about.
If you design the site to be intelligent that scenario should never happen.
For example.. you should only be offering links to pages that the current logged in user has access to. You do this by checking the session variables and with simple if-else logic around your html links.
It requires some work but if you dont give them links to pages they dont have access to what you are talking about will not happen.
Here are some simple examples.
Here is an example using access levels.
If Session("Access_Level") = "1" Then
' show links to pages that allow access level 1
And one for groups..
If Instr(Session("Groups"),"*6*") or Instr(Session("Groups"),"*7*") Then
' show links to pages that allow groups 6 and 7
Your actually confusing me with the whole "joe bloe" thing and user access. I just do not get what you are trying to tell me. Perhaps you can explain in a less confusing way. Your just not technically explaining it andand thats what I need to know to possibly help.,
As for the subweb thing you just can not do that. Subwebs have their own sets of application and session variables. An ASPProtect installation and any pages you protect with it are required to be in the same "application" in IIS. Sicne subwebs have their own "applications" in IIS that won't work. It is the nature of "forms based authentication" A sub web is alo considered by our licensing to be a seperate web site and ASPProtect is licensed per web site.
As for breaking pages.. you really shouldnt be editing any pages in the admin area as you will break them unles you are very good with ASP. (does not sound like you are..no offense meant at all)
Pages in the "users" folder are less complex and it is usually ok to edit them carefully.
Pages of your own that you password protect can still be edited in your usualy way though without effecting anything.
Truth is if you back things up before you start editing how can you go wrong ? That's how you learn.
When did you download the ASPProtect Version 7 zip file ?
what did you enter as a wrong password to make that happen ?
does it it do it when other wrong passwords are entered ?
cwilliams38452.722037037, Well you can put a link on all your pages that links to the login page?
modify the code in the login page so the return page is members.aspx or
whatever you need and thats it?
I dont see your point? probably because I understand how the program works and your not 100% up to speed on how it works.
I had a question about user registration and how it works, mainly because I am having a problem.
When a user registers, with the email verification setting, I am assuming that there is supposed to be a new record created in the USERS table in the database. What could cause this not to happen?
Actually, in testing further I found that with the setting at Auto, Manual, or email, the record is not added to the table. And, if I am logged in as admin, the Add User button does not do anything.
I can however edit and delete user records...
Hmmm, adding a Category yields the same thing. And loggin in as a non-admin user still displays some of the menu items for admin, but then gives a page can not be found error if you click on one (ie, approve).
This looks like a db issue to me, I will have to try this with access and on a test server...
Rather than bill customers through my PayPal account in $$$ can I get ASPProtect to send through the amount to PayPal in £ (pounds sterling)?
I am using PayPal (non-subscription) [paypal_signup]
Thank you.... yes it does
Is there a limit in the number of Zones you can have in the database.
I did a sign up.. your verify URL is not saved/set in the application variables.
try saving the admin settings page again.. or reboot the server so the settings get reloaded
if you can make sure the web is it's own application in IIS, Guess who!
if it is your server do and "iisreset" from the command prompt
if all else fails you got iis application issues with the site... wait till tommoro to see if the setting gets loaded
I have a user/client who can't access stats. Even when I give them a
new username, I get the message that their username has expired.
In the notes of the account it says "Level 1 access" and I can't
figure out what that is and where it is edited or set or even what it
means. Seems like I must have hit something somewhere that goofed
up this account. I could just delete the account/user and set it
back up but I'm worried I'd just make this same mistake later and
figured I'd get the info on it. Any ideas?
TIA! (So far, I'm VERY happy with this product)
, yea.. keep us posted... thats weird,
New Power Supply and a new (CPU Fan/Heat Sink) seemed to do the the trick. She's running like a champ now...
Hopefully it keeps doing so. Only time will tell.cwilliams38296.9772800926, Its a great idea. I didnt really check the counter until the album started working. Its a great concept though.,
It she's stable I can get back to designing some new software.
yes, like macnap says.... you have to protect your ".asp" pages the way the directions tell you to...
and like in the "example" protected pages we provide
or they will not be protected and nothing will happen as far as ASPProtect goes
I guess I just didnt understand what you were talking about
Honestly cannot comment much about v7 since it was just installed on a new server. We have been running 5.03 for years so I'm looking forward to the new features in v7.
Lance, oh, its timing out during the import ??
I didnt know that. I thought you said it was timing out after when you tried to log in.
That changes everything...
Let me start again cause I think I know the problem.,
if it is your own XP machine there is no reason you should edit that config file manually.,
simply set permissions on the data folder and all the folders in it and the application will write to the config files on its own... if you are having problems chances are you are not setting permissions correctly.. please read all of this
if is not an XP machine (your post was confusing and I am not sure) then this is an article for 2003 server
Most importantly whats the real error ? error 500 does not help figure out anything
lastly make sure you go into iis and make that web its own application
The string is being saved and I get a .wav ring sound to confirm. I have tried editing in "notepad" and then running the "data/show_path_info.asp" file after with the same results.
I'm all set - after thinking about your replies - i checked a bit more and changed the email component type -- thanks again for all your help.,
Just bought ASPProtect 7.0 last week and just got around to installing it. I've gotten through the installation and am now trying to test the (Forgot Password) functionality.
I get the following error when I type in the e-mail (or in some cases the username) and Post the form.
Error was  Valid name, no data record of requested type
I know that the add user functionality is pointing to the correct database (I see the additional rows via SQL Enterprise Manager) and that the e-mail address I am looking for is in the SQL database.
Any ideas? Any other information you need?
Hi - I am a recent user of your software. I administer it for the owner. I probably missed something in your forums somewhere - but I'd like to know how to stop the software from sending an "accept registration" e-mail (after they fill out the registration page) from going out so fast - usually within minutes. I'd like to know how to defer the message for 24 hours, more or less, so that our company can go over the registration details and decide whether to allow the person registering to actually have access to our protected website pages. The program is working very well and we are excited about it. So far, no problems (knock on wood!).
Thanks so much for your help!,
you have to check the session variables for groups a little differently.. info on that is here,
Hi, its just not something i can suppport as I do not support custmizations to the code epecially when dealing with an image component that is not supported by the application.
Sorry, its something you have to figure out. Bascially I would suggest looking at the existing asp image resizing code and using that as a guide.
Have you considered just buying a license of ASPImage and asking the host if they will install it after you purchase it. It sounds like it may save you a lot of time.
If you are ever looking for a good host for ASP. www.alentus.com is one of the best. There 9.95 plan gives you access to 3000.00 of commercial quaility asp components also which is nice.
Thought that was already done....
Back to the drawing board...,
(Indemnification Agreement Mod)
This very simple mod will add an Indemnification Agreement Pop-up to the registration signup form which must be agreed to before continuing. This is often done for legal reasons to help cover yourself if something should come up later on.
Download 2006-03-19_212700_Indemnification_Agreement_Mod.zip which contains "terms.js" and put it in your scripts folder. It contains the text that will be displayed in the pop-up. You can of course carefully edit it with a text editor to say whatever you like.
Now carefully edit "users/register.asp" with a text editor. Add this bit of code in blue right after the include to the "footer_inc.asp" file like so. It will be near the bottom of the page.
<% If ErrorMessage = "" Then %>, It runs on either... I used IIS
<% End If %>
Your done, that's it. Now when "users/register.asp" is run for the 1st time the pop-up will come up.
I dont remember much about installing it except it went pretty smoothly / no issues,
(( TRY THIS AT YOUR OWN RISK !!))
This is an Expirmental MOD for ASPBanner Version 7.3 Only
Do not use it on other versions....
It encodes CODE Banner information before saving it into the application variables that handle banner rotation. It then decodes that information before displaying them on your web pages.
Unless your having a problem don't use this mod. It is not officially supported in any way.
-- DIRECTIONS --
( COPY THESE FILES INTO YOUR ASPBANNER DIRECTORY AND BACK UP ALL THE FILES THAT YOU WILL BE REPLACING ))
(( SO YOU CAN REVERT BACK IF THERE IS TROUBLE ))
If you are wondering if the "appinfo_inc.asp" included has the weight banner bug fix applied to it already. That is a bug mentioned in our forums
(( YOU CAN NOT USE THE INCLUDE METHODS OF CALLING BANNERS WITH THIS CODE ))
(( USE ONE OF THE OTHER METHODS ))
This server is sitting in my den on a DSL circuit, so I don't have a hosting company. The install for Windows 2000 server is with default settings for all components installed.
I am not sure what you are referring to when you say:
"Does emailing work under the simplest scenario ? (directly from the users screen"
What user screen?
What settings are you referring to that I may have chosen?, Oh, I just remembered something..
It's been a while since I did this... :)
Nevermind what I said above as that is a different sort of "debug"
When you want to debug like your talking about find this section in the "web.config"
<compilation defaultLanguage="vb" debug="false" />
change it to this
<compilation defaultLanguage="vb" debug="true" />
When you run the code in a production environment change it back though
All of the fields with the expected paths show the correct file structure, so now I've put them in them in the boxes,
thats a new one... I need some sort of error to go on..
No error ever ? It must eventually show something ?,
What other information do you have ?
Details are very important.
Info on situations where it works... like OS, browser version.. etc etc
Info on situations where it does not work... same stuff
size of the PDF files ?
server info ?
Maybe protect a page and offer a PDF file so myself and some of the forum users can try it and report back what happens.
Also, Many people zip up PDF files when letting people download them as browsers can act pretty odd at times with them. Perhaps that is an option.,
This is what it says in that thread I pointed you to
This zip file contains 3 sets of alternate files depending on your situation. You simply replace your existing aspprotect v7.x files with these new ones.,
I really dont see what is confusing about it. I think I explained it all in detail in that thread.
where is your site ? I'll taka a look, recently i've been getting a lot of unspecified errors. i've been running aspbanner for about a year and a half now. i don't know what would have caused all these problems. also, for some reason it won't maintain my log-in, ever time i got from page to page or try to submit a form it asks me log-in again.
Yep, thats my thinking as well.
On the test server I have the site connected to a SQL 2000 db with the sa account, so it should have full control. But still no luck.
However, on the test server, I connected to the Access 2002 db and it works fine..adding user, adding categories, adding albums.
ASPProtect and PayPal are fully automated and ready to go.cwilliams38421.530787037,
Accounts will automatically get activated after payment.
We actually do not tell you to put nothing in the PayPal system for the IPN URL. Something has to be there or PayPal will not let you enable IPN. We actually tell you in you PayPal settings to turn on IPN and make up an IPN url because something has to go there. (I think we suggested making a blank asp page on you're site to send it to) It really doesn't matter where you send that but it might as well be a valid page on your site to avoid any 404 errors in your logs when a non ASPProtect payment comes in.
You see, we dont set that IPN url set in the PayPal system because each ASPProtect signup script directory (single payment and subcription) uses it own IPN url and that all gets set on the fly by the aspprotect system. There is a way to overide the defaul IPN url is what I am saying.
A lot of people already have something there and we didn't want the ASPProtect system to interfere with things they already had going on.
How to set a new users expiration date.
You'll need to edit the "users/add_new_account.asp" with a text editor.
Find this section..
CmdAddUser.Fields("ValidateEmailCode") = ValidateEmailCode
CmdAddUser.Fields("Access_Level") = ""
' PUT YOUR CODE HERE
ID = CmdAdduser("ID")
Set CmdAdduser = Nothing
Set ConnPasswords = Nothing
You'll want to add code like this right between the Acccess_Level and Updates section
CmdAddUser.Fields("Expiration_Date") = Date + 60cwilliams38403.6828587963,
That will give take todays date and add 60 days to it.
You can of course do whatever you want here.
Actually, any database value for the user can be set during registration.
You can also change the default Access_Level to whatever you like.
I was actually able to do similar thing by allowing our dedicated search engine to access the site unchallanged.
If Trim(Left(Request.ServerVariables("HTTP_USER_AGENT"),11)) = "MYPASSWORD" Then
SearchFlag = True
If SearchFlag <> True Then
If Session("Access_Level") > CHECKFOR or Session("Access_Level") = "" Then
<!--#include virtual="/Auth/check_user_Code.asp" -->
My Protected stuff here
For this to work, the search engine must pass the PW to the web site. I just was not sure how to do the same thing with IPs. I will play with the code and see what happens. If it works, I will post it here to help others, if this is OK with forum rules.
that would probably work...
any ".aspx" page can grab that data after someone logs in..
anything you see set in the "aspprotectlogin.aspx.vb" file will be there
any data not set there would have to be added and then the project recomplied so that data gets saved...
Timecard Entry: 3/25/2006 2:36:18 PM
* Energy Initiatives development, evening meeting, TIIC SHOW AT BOLDT CASTLE, enter bills, Checking status of Baldwinsville Chamber, Kelly says he can't login with assigned username and password but working fine from here., Admin (emails and organize), Met with Mike Linahan in Watertown Re DSL, Look at ideas for Bob Nelson's Questionaire for Orlando, file invoices; timecard, changed Home Page link to a different address on Chris Cross Creations web site (not sure if billable, no w/o # assigned), To Burlington, overnight Sovernet to Ken, faxed cancel summary to Mary, emailed some billing to Jackie for payment, SQL Self-Study, email/
fulton eal estate- change sto web site spoke with connie- delet 4 pictures and chenge acres
Caskinett auto- changes to web site check on forms
Dorthy realty0 spokew ith terry about upload photos problem gave number , sent email
Liverpool chamber- spoke with sally sent disck out for her toi get connected
Onsite site testing =fax info for tips, rick- edgewood sent email on tips for marketing
Sister gregory- holy family school.gave ftp access code to sister ellen
Bradl;eys military- frontpage [assword- gave to buill, call andy
, pull pd invoices to clear file, called expired accounts. answered customer emails that were sent to me, put the rest of the techs into the exchange server, AlexBay.Com, back to Clayton, Fit in some food time..., Working with Dell to add a tape backup system to the quote finding which one will fit our needs the best, meeting with darrel,howard,paul... go over usdatanet problem, check out work jason did on logos, dissus what direction ppl in the phone side of company is going and whats coming up with it. , Contact Computer Guys in Potsdam and fax Channel Partner Agreement, weekly planning, Working w/ Ivan Sein re: circuit due dates., Talked to Nic and Steve about customizations. All called Bill White to talk about their site. Then discussed a physics problem., catchup on some outstanding web site work, did not get to work at 7 am due to car-deer
accident i was involved in , General wireless duties, Talking with Ed about some new antennas that he found,