Home | Advertising Info119 USERS CURRENTLY ONLINE   
PowerASP
   Site Search Contact Us Sunday, August 18, 2019  

vbscript active server pages ASP vbscript SQL database informix oracle SQL Server Perl CGI Delphi PHP source code code sample samples program CJWSoft ASPProtect ASPBanner ASPClassifieds



Blog Entry: 3/25/2006 2:47:11 PM

I am running .asp pages and using the longer code method to display flash banners on my site.

I have noticed a considerable decrease in the loading of my index page when I have a banner called.  When I remove the banner, all is fine.

Any suggestions?

Dave

,

Have you thought about language file so users dont have to go into the code to put it in their language??

,



I am also getting the "Unspecified Error" message.  I just transferred my site to IIS 5.0 and I get that error now.  However it does not happen everytime.  I can click on a page and it opens fine and then I hit refresh in the browser and I get the "Unspecified Error" message.  What could be causing this?

 

 

,

I purchased and installed the full version ASPProtect 6.0 in Feb 05 (must have been just before 7.0 came out) and have been using CDONTS for email authorization during the registration process.

It was working fine for about three months. Now, after registering, the  email  authorization is NOT delivered to the new registrant. There are no error messages.It just doesn't arrive.

Any thoughts on the subject would be appreciated.

 

 

,

Greetings:

I am doing the initial set-up and have run into a problem. Everything has gone smoothly up to and including pulling up the get_me_in.asp page. When I enter the "PasswordEncryptionKey", nothing happens. The page just sits there without doing anything and the browser says it's opening the page, but never does. I have tried entering the value with and without the double-quotes. The value is the correct one from the config_inc.asp file. I did a copy paste from the file twice to insure I transferred it correctly.

I am running Windows 2000 server.

What now?

Warren

,


ok, here's a test page:
http://www.galvinelectricity.org/download_link.asp

user: test
password: test

Our company just got new computers, so everyone here has the same set-up, all Dells, all about 3 weeks old, all Windows XP.

But I did realize after reading your post that I am using Firefox and everyone else was using IE. When I used IE, I was able to duplicate the error.

But, alas, I am unable to resolve it. Client will be using IE, no doubt.

,

Your going to have a lot of problems and a lot of the code will have to be re-written.

There are a lot of things in the the code that the MYSQL database system does not support or has issues with . I know because I once made a version of ASPBanner work with MYSQL and it took weeks of work to get it stable.

Null field types can cause problems... but mostly ADO updates which I don't think MYSQL supports at all. All of the ADO stuff would have have to be rewritten.. etc etc

That's probably why you cant get much of the code to write to the database.


Here is a generic example.

An update to an existing record using ADO
http://www.powerasp.com/content/database/ado_update.asp

And update to an existing record using an update query.
http://www.powerasp.com/content/database/using_update.asp

All through the the code the ADO updates would have to converted to update queries which means a lot of work.

I used ADO a lot because I like it and it is little easier to validate data before it is written to the database.

It is also a little easier for customers to understand when they look at the code.


Anyway....

The app just was not designed to work with MYSQL.
It was specifically designed to work with MSSQL and MSACCESS only.

This holds true for all of our applications.

Your running off an IIS 5 Server so I would suggest just using MSACCESS as the database. The Photo Gallery app will run very well using MSACCESS. 

, Then you should have current enough code.

If you PM me the encryption key you are using and the plain text password for this user I can see if I can reproduce the error and come up with a fix.

I believe you found one of the rare examples where the encryption creates a strange character that messes up things. Sometimes those characters are not even visable.

Changing the password should solve the problem in the meantime.,

I have an asp page that includes other asp pages via an include.  for example:

snippet code: file name: collaboration.asp

 <table bgcolor="#bed1e4" border="0" cellspacing="0" cellpadding="10" marginwidth="0" marginheight="0" leftmargin="0" topmargin="0"> 
    <tr>
    <td>     
     <!--#include file="../../../filetransfer/directory_listing2.asp" -->
    <BR><BR>
     <!--#include file="../../../filetransfer/upload.asp" -->
    </td></tr>
   </table>

I can add the code below to collaboration.asp and it seems to work,but I cant seem to figure out how to protect the other files such as upload.asp at the same time. -- can you help?  - Note: as soon as I add the code below (and adjust the path) - I cant bring up the page.

This is the protection code I am using.

<!--#INCLUDE FILE="../../../../aspprotect/check_user_inc.asp"-->

Shirely

,

Chris,

Yesterday when I would access the get_me_in page with the password key, I was then taken to the default login page.  It did not give me the option to create a user. 

Today, when I entered the password key into the get_me_in page, I was taken right to the create user page.  So, yes the problem has been resolved.  I have no idea why though.

 

,

Dear Christofer

I already have send you the details you asked me for. Please let me know if you have received

, Hey, I thought I'd share this tip with the ASPProtect community...

If you'd like to remove, modify, or add fields to the "Users" view in the password_admin default.asp page, it's really easy to do. Well, at least it was for me. I'm using an MS Access database, by the way.

For me, I don't need "Company" info, but I do need last access and # of times accessed displayed. Therefore, I had to change the default page in three areas:

In /password_admin/default.asp, go to about line 185 or so, where you see stuff like:

[code]<td valign="bottom"><font face="Arial" color="#000000" size ="2"><b>First&nbsp;Name& lt;/b>&nbsp;</font></td> [/code]

OK, those are the column headings. Each one corresponds to a column from your USERS table in your database. There are two more areas to consider, both of which appear immediately after this section.

The next section has statements that look like this:

[code]<td valign="bottom"><a href="<% =THISPAGE %>?SORTBY=First_Name+ASC&MyPageSize=<% =MyPageSize %>&Keyword=<% =Server.URLEncode(Keyword)%>"><img border="0" src="../images/sort_ascending.gif" Alt="Sort Ascending"></a><a href="<% =THISPAGE %>?SORTBY=First_Name+DESC&MyPageSize=<% =MyPageSize %>&Keyword=<% =Server.URLEncode(Keyword)%>"><img border="0" src="../images/sort_descending.gif" Alt="Sort Descending"></a></td>[/code]

See the "First_Name" items? The first is for an ascending sort, the second for a descending. This particular line corresponds to the code snippet immediately above it. But all this does is handle the sorting. For the actual data, look lower for this stuff:

[code]    <td bgcolor="<% = Cellbgcolor %>"><font face="Arial" size="1">&nbsp;<%= CmdListUsers("First_Name") %& gt;&nbsp;</font></td> [/code]

It's a good ways down, so don't be impatient if you don't see it in 10 lines from the end of the last mentioned section. This stuff handles the display of the data from the database (where else ya gonna get data, anyway?)...

Now, to remove a field, you need to find the three sets that go with that data. The ascending/descending sort is potentially the trickiest, because it's the longest set of data and can take a number of lines. Just clear it from the start td to the end /td and you'll be fine.

To *add* a field, copy and paste the code from an existing field and modify it. In the first one, the column title, you can type whatever you want to describe your info. Nobody but you and your admins will see it. For the next two sections, though, you need to get the correct column heading from the USERS table and use that to correct the lines in the copied code you pasted in.

For example, when I added a column to show the number of times a user logged in, I copied the above snippets and pasted them in where I felt the column I needed should be. Then, in the first one, I changed "First Name" to "Logins". In the ascending/descending snippet, I changed First_Name to Counter. Same for the last snippet.

The result? A new column, showing the number of logins my users were successful with.

Of course, before you experiment, back up your existing default.asp file, JUST IN CASE.

Have fun!

,

I downloaded v7 3/7/2005

 

I entered a password that was supposed to be all caps with only first letter caps. 

 

it is odd, if I go to other user and enter wrong password that does not come up.  it apprpriately goes to a screen that says Access Denied.

thx

, Yes, I created it  using the scripts.
,

yes. what you are talking about has to do with norton ad blocking software.. it blocks images or paths that have the word "ad" in them.. and you see red x's where images should be on web sites.. usually

it is different then what this thread initially mentions which has to do with a code/server issue with the application variables.

, ok, it works fine here with that password encryption key and password you sent me. I also looked in the database and I got the same encrypted password password which definetly has a weird hidden line break in it. (for example if you copy and paste it only the 1st part shows up like when you pasted it above.. as it is really the same length as the that guys email address)

Maybe you do not have the newest code. (I added some code to check for those weird line breaks and take care of them) I am going to PM you the latest version. Please download it and just take the "check_user_inc.asp" file out and copy it into your existing install.

Then try logging in as that person again.

If that works you should also grab the new version of "password_admin/check_admin_inc.asp" as well,

Sounds cool.. post info when you get it sorted out

thx

hopefully someday I'll get the new version finished.. I just never seem to have time. Lately ASPProtect takes up all my time and now aspclassifieds seems to be in need of a new version more so than asp photo gallery

 

,

Parent Paths ?

http://support.cjwsoft.com/forum/forum_posts.asp?TID=5&P N=1


 

,

Please be more specific. What hit count are we talking about ?

User Logging ? Albums ? Something else ?

Please descriube the situation in detail. There are really no settings for any sort of hit count.

,

Thought this would be easy.  A few more pointers should get the database connection to work:

 

1) How do you decide whether it is a DSN (system datasource) or not? Does just putting the file in the ODBC make it so? 

 

2)We have other files in there for other server applications, does that mean we’re stuck using DSN’s or is the file independent of that control dialog?

 

3) Assuming we get rid of using DSN for this database (or not), does the code go referenced in your article http://www.powerasp.com/content/hintstips/permissions.asp apply here or should it just work?

 

What else are we missing?

,

If you are using an ACCESS Database try to avoid using a system DSN. They are much slower because they go through ODBC which then uses the Jet Drivers to access the database. They also have to do a registry lookup.

ttp://www.4guysfromrolla.com/webtech/070399-1.shtml

http://www.powerasp.com/content/database/dsn_vs_dnsless.asp



It's funny because in the 4guys article they ask the question..

"Hmmmm... so who was right, Microsoft or Wrox?"

I'll tell you who was right and who said it 1st.  It was me and I said it on my old powerasp.com site before anyone else ever did.

I found it out on my own by experimenting when I was the Systems Analyst for an large ISP. We we had web servers that were not running well. I didn't read about this solution anywhere because no one was talking about it at the time. Microsoft said use System DSN's so everyone just took their word for it.

I took a lot of heat for saying that back in the day but over time everyone started saying it.

,

You should not have single quotes around the "-1" because Album_Active is not a string field in the database. It's true/false or bit field in the database depending on the database you are using (MSSQL or ACCESS)

I'd do it a little more like this I think.

SELECT COUNT(Album_ID) AS Alb_Count FROM " & tbl_label_albums & " WHERE User_ID = " & CmdListUsers("User_ID") & " AND Album_Active = 1"

I took out the parentheses as well since I dont believe they are needed in a simple case like this

but is hard to say unless your the one testing it... my version might have a mistake as I am a little rusty with my SQL at the moment

also: in case your wondering...
depending on the situation and the odbc drivers the 1 and -1 should work either way but sometimes it's picky and you have to do it one way or the other

cwilliams38433.0564930556,

Sounds to me like you got some bad databases or something. Or your trying to open a database with too old of a version of msaccess.. not sure

Everything is stored in one database. And yes there is more than just the users table.

Also,  removing the "temp" password should be a piece of cake.

Email me for a new copy of the download file ? Use the contact from on the cjwsoft site. Please tell me your order details as well so I know who you are.

 

,

Sorry, there is no option for that.

I'll take it into consideration, but the way the banner rotation logic works would make adding such an option very complicated.

Just give it  an expiration date way into the future if you do not want an ad to expire anytime soon.

I usually just make all my ads expire in like 2020 or something like that since I don't want them to stop running either on some of my sites.

cwilliams38247.1116319444,

you do not run "check_user_inc.asp" by itself

Pages you protect include that file at the top.. when they someone goes  to a protected page if not logged in a user then sees a login prompt..

after loggin in they see that same page as normal

its an automated process..

now, that being said if you really want to you a specify a page to be redirected to after the 1st login when you edit a users info. You can also redirect anyone anywhere like using a simple ASP redirect statement in your code.

Personally I feel that redirecting people all over the place is poor site design. ASP is all about dynamic code and ASPProtect is all about dynamically tailoring pages to the current logged in users... so why redirect people all over the place.. it justs complicates things because you still need to password protect the places you send them to.... which means twice the work and twice the confusion.


Also, here is a Version 6 thread about redirecting manually that still applies to version 7.

http://support.cjwsoft.com/code/moreinfo17-1.htm

 

,

yes, usernames and passwords are both case sensitive. It increases security.

,

I checked through the code and could not find anything as well. 

However, I do think it may be related somehow to the code as I get the messages popping up in the error log only after I have edited a banner.

If there is nothing obvious, I may just set my error log to filter and automatically delete this type of error.  Not something I prefer to do.

Thanks for the quick response.

Otherwise the program is working very well and I'm happy with it.

 

, we ended up resolving it...

the physical path being used was invalid,

Protecting ASP Pages

To protect a page without using the Access_Level or Groups feature simply add this code to the top of that page.

Put this under the <%@ LANGUAGE="VBSCRIPT" %>

<!--#INCLUDE FILE="check_user_inc.asp"-->

This is an example of a File Server Side Include. You could also use a Virtual Server Side Include.

The following URL explains what Server Side Includes are.
http://www.powerasp.com/content/code-snippets/includes.asp

Now when someone runs that page they will prompted to login. They will not be allowed access to that page until they successfully logged in.

An example of doing this is provided in the "default.asp" file included in the root of the Password System.
Look at the source code with a text editor to see the working code. It is quite simple.


 Protecting ASP Pages Using Access Levels

To protect a page using the Access Level feature simply add this code to the top of that page.
You simply specify the Access Level before the include file is called. In this example we are protecting the page with Access Level 4.

Put this under the <%@ LANGUAGE="VBSCRIPT" %>

<% CHECKFOR = "4" %>
<!--#INCLUDE FILE="check_user_inc.asp"-->

This is an example of a File Server Side Include. You could also use a Virtual Server Side Include.

The following URL explains what Server Side Includes are.
http://www.powerasp.com/content/code-snippets/includes.asp

Now when someone runs that page they will prompted to login. They will not be allowed access to that page until they successfully logged in as a Level 4 user.

Examples of managing Access Levels are provided in the "multiple_access_levels" folder included in the root of the Password System.
Look at the source code of the ASP pages in that folder with a text editor to see the working code. Again, It is quite simple to follow.


Protecting ASP Pages Using Groups

Please see the code generators in the admin are for the code to do that.

cwilliams38403.6864351852,

I don't believe that the iframe method is supported in a .NET (aspx) implementation, is it?

JDooley

, "get_me_in.asp" just hangs during a new install. Nothing happens no matter how long you wait and IIS may temporarily hang up as well.

You may very well be running something like norton antivirus with norton script blocker on your server? Or something similar?

It can cause issues when ASP uses the filesystem object and cause never ending page hangs like you are having.

Read this..
http://www.aspfaq.com/show.asp?id=2180,

again I will ask you what is the real error??

see the link above when I asked you the 1st time.
(I need the error details and line number.. etc etc)

and what kind of a server are you trying to run it on ?
you mention xp pro but in a confusing way ?

,

((TITLE EDITED BY ADMIN))


it would be nice if there was an option for login abuse, where a login account would be flagged if it logged in from x number of different IPs over a period of time. I know many have dynamic IPs, but there's got to be a balance between legitimate logins and logins that are 'shared' for the sake of saving money (I sell subscriptions), in the end costing me.

Maybe searching the first two number groups in the IP (example, 209.168.*.*), and if finding more than an admin specified number of logins per week from IPs with different first two groups, the record would be flagged or locked...

 

,

I really need more info on what you have going on?

This can sometimes be cause by a slow server / bad data connection.

Sometimes caused when someone is using the option pack but did not make the proper changes to the database.

Sometimes caused when a user adds users the database on his own and does some "incorrect" things..

The more details you can provide the better. Think of anything and everything and describe it.

SQL or MSACCESS... version of either
Server OS
Using Option Pack or not
Did you have your host set permissions...

etc etc etc

cwilliams38300.5380092593, one more problem I see...

I think your login box on the main page is missing the hidden form variable

http://support.cjwsoft.com/code/moreinfo169-1.htm, Flash files cannot track clicks unless you edit the original flash file to link to the aspbanner system redirect URL.. feeding it the correct ID of the banner.

When that link is clicked on it will then track the click and redirect the user to the “link url” specified for that banner. 

The system actually generates the necessary ASPBanner URL for you. That link is shown on the banner edit screen.(you must save the banner at least once and come back to that screen to see the link though) 

Really the best way to show it is with an example as seen below.



Basically the flash banner file "powerasp.swf" highlighted in green needs to be edited to link to the banner redirect url which is highlighted in red.... the banner redirect url will then track the click and ultimately send the user to the Link_URL highligthed in blue.

All banners systems work this way when it comes to flash files.
It’s the nature of flash and the web browser, 

The flash source code must be edited to link to the redirect url in the ASPBanner system. There is no possible way any banner system can track a flash click unless the flash file links to the banner system 1st.... because that click is handled by Flash and the web browser. 

In some cases if you do have the original source file for the flash banner then you are out of luck as far as tracking clicks goes.



On a side note... if you create flash banners the way this article says you can actually feed a .swf flash file a link for it to click to. Instead of it being hardcoded.

http://www.macromedia.com/resources/richmedia/tracking/desig ners_guide/index.html

This is really the way everyone should design their flash banners from now on because the url it links to can be easily changed at any time without editing the flash file source code. 

cwilliams38325.740162037,

I really do not know to tell you the truth. I'll do some research.

The script only allows .jpg, .jpeg, and .gif extensions.

If someone uploads a file called... "filename.vbs.jpeg" with bad vbscript in it I seriously doubt anything can happen because of it because of the extension.

But I really do not know.

It has never happened to any sites I have or know of.

 

cwilliams38447.0491435185, No, Unfortunately.
I have seen your messages.
I have not edited the code at all.
Tomorrow I will install the sql database again from your script as I did before and I will try again. I will send all the details.
Thank you again.
, Interesting.. Yes, the SMTP service is turned on.  This is my boogle.  If they are both installed, then it should in theory work.  But for some reason, it is being subborn and not working.,

ERROR [HY000] [Microsoft][ODBC Microsoft Access Driver] Operation must use an updateable query.

Description: An unhandled exception occurred during the execution of the current web request. Please review the stack trace for more information about the error and where it originated in the code.

Exception Details: Microsoft.Data.Odbc.OdbcException: ERROR [HY000] [Microsoft][ODBC Microsoft Access Driver] Operation must use an updateable query.

Source Error:

An unhandled exception was generated during the execution of the current web request. Information regarding the origin and location of the exception can be identified using the exception stack trace below.

Stack Trace:

[OdbcException: ERROR [HY000] [Microsoft][ODBC Microsoft Access Driver] Operation must use an updateable query.]
   Microsoft.Data.Odbc.OdbcConnection.HandleError(IntPtr hHandle, SQL_HANDLE hType, RETCODE retcode) +27
    Microsoft.Data.Odbc.OdbcCommand.ExecuteReaderObject(CommandB ehavior behavior, String method) +838
   Microsoft.Data.Odbc.OdbcCommand.ExecuteNonQuery() +80
   aspprotectnet.aspprotectlogin.Login_Click(Object sender, EventArgs e) +2284
   System.Web.UI.WebControls.Button.OnClick(EventArgs e) +108
    System.Web.UI.WebControls.Button.System.Web.UI.IPostBackEven tHandler.RaisePostBackEvent(String  eventArgument) +57
   System.Web.UI.Page.RaisePostBackEvent(IPostBackEventHandler sourceControl, String eventArgument) +18
   System.Web.UI.Page.RaisePostBackEvent(NameValueCollection postData) +33
   System.Web.UI.Page.ProcessRequestMain() +1292


Version Information: Microsoft .NET Framework Version:1.1.4322.2300; ASP.NET Version:1.1.4322.2300

 

 

I am getting this error message when trying to log in as admin or registering a new user. I am using Windows Server 2003 and it is a DOMAIN CONTROLLER.

I have read that there is NO ASPNET account for a domain controller. In its place is the IIS_WPG account. I have given this account and the IUSR account FULL CONTROL.

STILL GETTING AN ERROR. ANY SUGGESTIONS???

,


Timecard Entry: 3/25/2006 2:47:11 PM

Lunch, yum yum time :-), Steady morning. quality checked sign ups, cancellations, reports, callbacks from voicemail, checked emails, taking sign ups, answering phone. , E-Mail, Schedule, took two calls... one will call back today when his GM gets in. Did more modem tests, and took a DPEC course., travel time to clayton, setup cathy's computer in clayton, Stayed until 11 because Dad forgot to put someone on between 10 &11. So Nate and I stayed until 11., Finalized and submitted Staples order. Readied money for Clayton. Filed customer paperwork. Answered phone., meeting with Nick and Sales/marketing team, Web site billings from timecards - enter, print invoices, Walking a new customer through how to use Front Page (doggsultans.com), Posted accts and did a detail of checks. Customer inquiries and change of addresses and other inquiries., callback to Scott Pooler at WSBNY, lunch, General, Email, customers, talked to other directors and employees., vacuumed and steamcleaned carpet, reviewed customer paperwork, cc decline report and letters, fixed and old deposit, Dinner, Installed win200, office, proxy, sql, emerald, total control manager, compaq 4000 manager, and icq on zena., sma2, still pretty busy here till about 10:45 when it died right down..., Responding to emails, Setting Jeff up with an affinity code and ability to use the partners site, Working on firm statistics report cleanup, Had a guy come in with a computer to help him with outlook problems... then had a good 45 minute block with calls about NS1 Authentication down., general tech support mostly, jetstream - efficient meeting., set up new GL accouints for USA1net, Watching Randy fix Paul's router.,

   Active Server Pages Rule The World
Contact Us  
All artwork, design & content contained in this site are Copyright © 1998 - 2019 PowerASP.com and Christopher J. Williams
Banner ads ,other site logos, etc are copyright of their respective companies.
STATS Unless otherwise noted - All Rights Reserved.

vbscript active server pages ASP vbscript SQL database informix oracle SQL Server Perl CGI Delphi PHP source code code sample samples program CJWSoft ASPProtect ASPBanner ASPClassifieds www.aspclassifieds.com, www.powerasp.com,www.cjwsoft.com,www.aspphotogallery.com,www.codewanker.com,www.aspprotect.com,www.aspbanner.com