| Blog News Main Page |
NEWS FROM 2006-03-25
Blog Entry: 3/25/2006 2:58:26 PM
(User Search & Contact Mod) for ASPProtect Version 7.x
This will allow an individual user to search for other users as well as email or call them.
Notes: This is a down and dirty mod. The users page from the admin area was used as a starting point. I then edited it up real quick to be used as a user search. The way it is it shows the user email as a regular email link. If you want to set it up so emailing is done from the application and emails are not actually shown you will have to do some extra work. If you don't want phone numbers shown you will have to remove that column which is not very difficult.
Back up your existing ASPProtect installation.
copy "search.asp" into your "users" folder
Direct your users there. They will have to be logged in to view the page., its no different than linking to an image or another page. you have to adjust the path to the include file based on what directory you are in.. or you get an error
WARNING: This has not been extensively tested for SQL Injection attacks.
I think it is perfectly fine the way it is by looking it over quickly, but use it at your own risk.
This is noted in the admin area on the code generator page which also gives you 2 examples of ways of calling the server side include. (Virtual or File include)
These threads below are also full of info. I found them by doing a quick search and they should help you out as well.
http://support.cjwsoft.com/code/code_info.asp?TID=236&KW =The+include+file ,
the no concurrent login feature is based on IP addresses.. if you logged in again using the same IP address it would let you in regardless. So for example if you were behind a rhome router and logged in to a site on the internet it would nt matter if you had multiple computers at home because they would all have the same external IP address... etc etc
In other words it is tricky to correctly test..
I really need more detailed info on everything going on. I real world scenarios there are no issues with that feature that I know of. At least according to customers so far. ,
More Info on Simple File Sharing
, well, like I said.. I am leaving in about 5 minutes for the wedding.
If you put this up on a live server that I can connect to I will look at it tommoro for you. I have told you everything I could possibly tell you so I dont think your going to figure it out based on the things you have told me so far.
Only other thing I can think of is make sure your not running anything goofy on that server 2003 box. Norton Antivirus script blocking... various ad blockers.. anti spyware applications... etc etc... They can cause problems as well. ,
Protecting ASP Pages
To protect a page without using the Access_Level or Groups feature simply add this code to the top of that page.
Put this under the <%@ LANGUAGE="VBSCRIPT" %>
This is an example of a File Server Side Include. You could also use a Virtual Server Side Include.
The following URL explains what Server Side Includes are.
Now when someone runs that page they will prompted to login. They will not be allowed access to that page until they successfully logged in.
An example of doing this is provided in the "default.asp" file included in the root of the Password System.
Look at the source code with a text editor to see the working code. It is quite simple.
Protecting ASP Pages Using Access Levels
To protect a page using the Access Level feature simply add this code to the top of that page.
You simply specify the Access Level before the include file is called. In this example we are protecting the page with Access Level 4.
Put this under the <%@ LANGUAGE="VBSCRIPT" %>
<% CHECKFOR = "4" %>
This is an example of a File Server Side Include. You could also use a Virtual Server Side Include.
The following URL explains what Server Side Includes are.
Now when someone runs that page they will prompted to login. They will not be allowed access to that page until they successfully logged in as a Level 4 user.
Examples of managing Access Levels are provided in the "multiple_access_levels" folder included in the root of the Password System.
Look at the source code of the ASP pages in that folder with a text editor to see the working code. Again, It is quite simple to follow.
Protecting ASP Pages Using Groupscwilliams38403.6864351852,
Please see the code generators in the admin are for the code to do that.
More Upgrade Info
To upgrade an existing ASPBanner system please follow these steps.
Back up your old system completely before starting.
Install the new system per the installation instructions that came with it.cwilliams38211.7525231481,
Once it is running simply use your old ASPBanner database with the new system.
You may also want to keep your banner images folder from before in the same location so your existing banners still link to valid image urls because the new system stores banner images in a new location.
Since the config table in the database is no longer used you will need to go to the settings screen of aspbanner again and configure things. The config table in your old database can be deleted or left alone. It won't be used anymore so it does not matter either way.
That is all there is to it. If you have any issues please ask in the forums and we will help you out.
It wasn't a complaint. I just bought it last night and installed it today. But, I must have missed the part about requiring Enterprise Manager for installing it on SQL.
If you want it the link to the Web Based SQL Manager is : http://www.aspenterprisemanager.com/ which is free and the Trialware that I tried is EMS SQL Manager.
Maybe that will help a little in not requiring that people have an MS SQL license to access their hosted MS SQL to install the software.
I really need more info on what you have going on?
This can sometimes be cause by a slow server / bad data connection.
Sometimes caused when someone is using the option pack but did not make the proper changes to the database.
Sometimes caused when a user adds users the database on his own and does some "incorrect" things..
The more details you can provide the better. Think of anything and everything and describe it.
SQL or MSACCESS... version of either
Using Option Pack or not
Did you have your host set permissions...
etc etc etccwilliams38300.5380092593, ok,
A correctly configured Microsoft SQL Database is critical to the correct operation of the ASPBanner system.
Table & Field settings must be exactly the way we set them in the database creation scripts provided with the ASPBanner system.
Below are screenshots of the design view settings for all the tables used in the ASPBanner system in case you want to double check them
In addition to the settings above each table has one field that is a primary key with an auto increment of one
In the screenshots above each of those fields has a yellow key next to it.
If the field does not have yellow primary key icon on you just right click and the option to make it one appears.
The SQL column settings for each one of the primary key fields must be set as follows
In addition to these settings the SQL scripts provided with the system auto populate the Banner_Users table with two users. This is very important because without the Admin user the scripts add you wont be able to log in to the ASPBanner system as an admin.
I would say that it isn't all that difficult using mySQL for the backend....the main thing is to make sure you set the primary keys for auto-incrementing in your database. Alos need to make sure that any DELETE SQL statements are formatted like this
DELETE FROM tblName WHERE tblField=SomeValue
DELETE * FROM tblName WHERE tblField=SomeValue
The same holds true for using MSSQL,
If you still cant see the upload buttons after checking the settings send me a PM with the info and I will take a look at your installation. It will have to be up on a live server of course.,
Testing for XML Parser Support
the microsoft xml parser is generally installed by default on all new server setups..
It allows ASP code to make calls to other pages anywhere on the new as well as a lot of other handy things..
download and run this ".asp" page to verfiy that it is installed and be sure it is available for you to use
Make sure you run it from your web server through the web browser
I have been having some display issues with the .NET version of ASPBanner. I set the size of the image, and I set the size of the banner and there is still white space above and below the image. I am not using a text link below the banner, so I have it set to blank.
Here is a link to my page.
Two of the three banners in the rotation on the main page have non-white backgrounds so it's easy to see the issue I'm talking about.
Is there a way to tighten up the formatting so that the image fits onto the page in the size specified?
Again, enspecified error are not very helpful.
An error usually tells you at least a line number and page or something.
Please read this as it might help do tell me more.
As for only happening once in a while. It could be a lot of things.cwilliams38414.6114930556, You do not run that page by itself. That is not how forms based authentication in .NET works. That is a special page used by the web.config file. It is automatically used when you protect one of your existing .NET pages but is not meant to run on itís own thus the error.
Version being used (when did you purchase.. what name/email was it under and I can look) ?
What banner method being used?
Access or MSSQL ?
How busy the site is ?
Server Resources ?
To answer your other question a user is not sent anywhere. You protect existing ASP.NET pages as shown in the documentation and the examples. If sent to any protected page they are either prompted with a login box or if logged in they see the page as usual. If they log in the form posts to itself and they end up at the same page after supplying proper login credentials. That is how ASP.NET forms based authentication works. I suggest you get a good book on ASP.NET that explains all of that if you are still confused.
Now, if you really want some sort of page to redirect them somewhere after login make a basic asp.net page.. protect it.. and then use a redirect statement. ,
Are there any problems with modifying the default database fields.
I need to have an update from net billing and they use different settings in the database than the default.
Will the interface still be functional?
, I have accessed the "get_me_in.asp" page and entered the password encryption key. Once I entered it, I was taken to the ASPProtect Admin Area Login. It does not give me the option to create a new user as is described in the general installation documentation. How do I access the program now?,
http://support.cjwsoft.com/code/moreinfo385-1.htm, one more problem I see...
I think your login box on the main page is missing the hidden form variable
http://support.cjwsoft.com/code/moreinfo169-1.htm, I use the group feature and would like to know if it is possible to change or delete members from a group in bulk. For example if I have 200 users registered for group 1 and 3 how could I delete all members from group 3 in one pass rather than editing 200 individual members?, [QUOTE=sdunham]
My hosting company uses ASPEMAIL - and I am trying to setup the mailing settings on ASPPROTECT - but cant seem to get it to work. I've tried many different options - here are two that are the closest - but have issues:
1. If I use the settings:
email component: aspemail
Mail remote server: my internal server name
*no smtp authentication
email mail notification - my email address on my internal server
***I get the following results:
I can get get notified when a new user logs in, email a user from aspprotect user screen if they are in my company and have a valid email -- but I can not send to the outside world - I get an relay prohibited error.
2. If i try to change the setting to use the Hosting Website email server - I get the following results: I dont get notified when a new user registers, I cant send to internal company people - but I can send to the outside world.
**any suggestions on what to do? I'm trying to work with the people who manage the mail servers - but since I dont know anything about them - its a bit difficult.
[/QUOTE] , I swapped a few emails with CJW regarding support for ASPMail.
This application works with this software. I host my site with a
private hosting company named 'Intermedia.net' and this is what I had
to do to make this application work.
The relay error is because when you send emails outside your email domain smtp authentication is required.
I suggest trying to use CDOSYS with the smtp authentication option. CDOSYS is on all servers by default and is really the way to go. Use a real email account and password to send the emails through the server. Be sure to check smtp authentication for cdosys and to specify all that info for your email account and password in the settings screen.
If you want to know about CDOSYS read my article.
1 - Change email settings to 'SASMTPMail' installed
2 - Find all instances of the following code:
If ASPMail_Installed = true then
&nbs p; Set Mailer =
&nbs p; Set Mailer =
Change this code to simply:
Set Mailer = Server.CreateObject("SMTPsvg.Mailer")
3 - that was about it. The files that I needed to change are:
I believe that's all i needed to change. Any questions I'd be
happy to try to help out. [CJW -- for some reason i needed a
restart on the server, it's all good now
http://www.iphotosite.com/galleryapp/default.asp. I'll be putting
in a redirect for that location/domain later today.
Umm, if your using MSACCESS your using MSACCESS
SQL server has nothing to do with it.,
Just an update,,,
the permission were all correct.... i left it and tried from my pc at work and it works fine... so i dont know what hahhpened.... thansk for your quick response
I just did a quick google search... found a ton of info on how to find the setting. Here is one...
These are directions for IIS6 but the process is similar for IIS4-5
- Click Start, click Administrative Tools, and then click Internet Information Services (IIS) Manager.
- Double-click your computer name in the left pane, and then double-click Web Sites.
- Locate the Web site and directory that houses the ASP application.
- Right-click the application site or directory, and then click Properties.
- Select Home Directory, and then click Configuration.
- Click Options, and then click to select the Enable Parent Paths check box.
- Click OK two times.
You really can not do something like that. You can not use client side code to change a server side session variable.
To make changes server side a form must be submitted or a link clicked on to another page. Then you can do whatever you like but you cant have an onlci event update a session variable like that.,
Though I am not sure of exactly what you are trying to do I think you'll need to go about things a little differently.
There really is no default width in general.
The thing to remember is that the default.asp page includes a lot of different pages.. and some of those pages also include pages.,
Now all of this gets wrapped by the header and footer include files so in a sense what you do there can effect everything inside to a certain degree.
Now there are some widths set here and there for different tables and what not on certain pages, but its really the kind of situation where you just have to dig around in the code and experiment until you eventualy find what you are looking for and get the desired result.
I'd love to tell you there is easy way to just set a width, but it is not that simple.
Maybe someday it will be. Just not in the current version.
I have seen that happen before though it usually just happens once and then after that it doesn;t show up. It's the asphttp component doing it. The ASPBanner system is not doing it. I would try using banner calling method such as the xml parser method. It's usually installed by default on 200 and 2003 servers.cwilliams38248.6400115741,
Most likely it is no longer supported on the web server. The web host probably moved you site to a windows 2003 server which does not support cdonts or they stopped running the IIS SMTP server.,
You usualy wont get an error..
it is also possible that cdonts is boned up as it is pretty flaky and that tends to happen. For example sometimes the emails it is suppost to send get caught up in the smtp pickup directory and never get sent out until the server is rebooted.
You should really ask the hosting company why cdonts has stopped working. It definetly has nothing to do with the code if it has been working all that time. If CDONTS still is supportd tell them you emails are in limbo. Ask them to look and see if a bunch of ".eml" files are stuck in the stmp pickup directly and if so to please reboot the server.
cdonts has been deprecated and now everyone uses cdosys.
see my article
Is this the full version 7.
Did you make any changes to the code ?
Is the User_ID field still an autonumber field in the Access database ?
I do not see how this could happen unless somehow the autonumber field setting for User_ID was changed in the database?,
If you bought ASPBanner Unlimited Version 7.3 Before August/01/2004 this file needs to be updated.
It fixes a bug where CODE type banners do not work correctly with a weight higher than 1.
Basically, blank banners will rotate and you will see nothing sometimes.
Copy this file into your ASPBanner folder over the existing file of the same name.cwilliams38209.5383680556, well, thats a network drive path and in my opinion a very poor way for them to have set things up. It can work as long as permissions get set there and they have the anonymous webserver accounts set up correctly to handle that scenario, but performance isn't the best because your accessing the access database over the network. Access databases are not just not meant to be connected to over the network in a web based scenario. Quality ASP hosting companies do not set up their servers that way and it can often be difficult to get things running as it is a more complex setup on their end. Meaning if they dont synchronize the IUSR_machine accounts correctly you'll have permission issues.
I will actually explain how to set access_levels and/or groups...
carefully edit with a text editor
find this part
CmdAddUser.Fields("Access_Level") = "4"
that is where the acess level gets set...
you can change the level or remove that line all together if you dont want one set
now for groups you would add this line in the same area
CmdAddUser.Fields("Groups") = "*3*"
CmdAddUser.Fields("Groups") = "*1*,*2*,*3*",
Groups access for a user is stored in one field in the database like you see above. If you are confused what you should be saving in that field I suggest simply setting a user to whatever groups you want via the admin area and then looking in the database to see what got saved in that field. It's pretty simple really how they are stored.
that user would be a member of groups 1,5, and 9
If you want to have a login form on a non protected page that posts
to a protected ".asp" page use code like this.
Change the action of the form to the page you want them to log into.
Make sure to page you send them to is protected by the "check_user_inc.asp" file.
<table border="0" width="400" height="200" bgcolor="#000000">
<form method="POST" action="memberarea.asp">
<input type="hidden" name="Status" value="Checkem">
<p align="center"><font face="Arial">ASPProtect Login</font></p>
<table border="0" bgcolor="#C0C0C0">
<td bgcolor="#EBEBEB"><strong><small><font face="Arial">Username</font></small></stro ng></td>
<td><input type="text" name="Username" size="10"></td>
<td bgcolor="#EBEBEB"><strong><small><font face="Arial">Password</font></small></stro ng></td>
<td><input type="Password" name="Password" size="10"></td>
<td bgcolor="#EBEBEB" colspan="2"><font face="Verdana, Arial, Helvetica" size="-1"><input type="checkbox" name="KEEPMESIGNEDIN" value="True">Keep
me signed in on this computer unless I log off.</font></td>
<p> <input type="submit" value="Login"></p>
After understanding how the count works i checked the IP in the db. They are all set to the same IP (my web server) no matter what ip is doing the viewing. This is probably due to my ISA2004 firewall that is posting the ip address of the web server with each log on. So, can you help me with where the code would be to modify so the db does not get updated? I risk the refresh problem, don't think it is an issue with me.
I've downloaded this neat little app, but I'm having troubles understanding what I should be using. Cassinni or IIS, can you help? I've tried to look at the help, but it is very vague on what to use in each situation.
Any help is appreciated.
Cheers, It looks like your product is perfect for my new site, but I have one question. One of the pages I want to protect on my site will be called by an application running on a remote server every 15 seconds. The application can include the username and password in the URL it is calling. Will your product allow access to the protected page on my server? ,
Well. fontpage publishing is evil. That you have found out.,
Do not use it. It usually wont work right when running asp code locally and also at the server because of differences with the paths and virtual directory structure. etc etc etc
You can definetly use frontpage to connect to the web site live and drag and drop files into it/edit them... but the sooner you stop using the publishing feature the better off you will be.
Timecard Entry: 3/25/2006 2:58:26 PM
EISSBROS.COM INITIAL WEBSITE DEVELOPMENT WITH PARTS FORM , rad log, phone, Moving, tried to get crystal reports on jim's computer, Posted accounts and did a detail of checks and cash for a bank deposit. Ans phone, coupon referrals and credit card authorizations. , billing, phones, Passport maint. & provisioning, met with kv on partners to determine actions by each. consulted with jw on corporate contract and execution of programs. email from jsnook, lm in regard to dsl questions. ann abbey referred to cb for dsl order., clean bathroom, Drive back to Clayton (40 miles), E-Mail, Voice-Mail, Packup., Marketing meeting, E-MAIL,ETC., read and sent emails, work with Tim, returned all my phone messages, same as above... got a good chunk of it finished. I will be leaving it with Steve Woodfin so maybe he can finish it for me when I am on Vacation., www.certowers.com developing portfolio and changes to graphic header scanning photos, making thumbnails, met with cavallerios, General - Proposal to CPH, wireless, dsl work, etc., tried to replace Sangoma card with 2 different cards in old imcnet-fr......newer cards do not like the wanpipe drivers on frame router. ran snooper to determine if cards were bad.....they weren't, working Company Lunch at Pizza Hut, timecards, call Ed re: problems with DUMAC, CREG stock transfer tax, Reseller Site, show Ben performance monitoring on new Total Control chassis, MBO - Howard, Randy, filed , two phones going to Watertown, watertown mail, timecard -mine, emailed messages to Paul , travel to Ingles Performace,