Home | Advertising Info4 USERS CURRENTLY ONLINE   
PowerASP
   Site Search Contact Us Saturday, May 21, 2022  

Active Server Pages asp source code database MS SQL MS Access .mdb adovbs.inc cookies calendar codes sql commands scripts asp programming tutorials iis web server components CJWSoft ASPProtect ASPBanner ASPClassifieds



Blog Entry: 3/25/2006 4:50:04 PM

new version is still not finshed as of the end of the year... I am not going to release it until I feel it is ready.,

The Double DIM needs to be removed for this code to work properly.

<%
Dim BannerZone, BannerConnectionString, BannerDatabaseType, ConnBannerSystem
Dim CmdCheckUser, CmdGetConfiguration, App_Name, Config_SQL, BodyTag, BanDataConn
Dim CmdBannerTemp, CmdGetZones, ZoneString, ZoneArray, ZoneIndex, CmdUpdateWaiting
Dim CmdUpdateExpired, CmdRetrieveImpLimitedAds, CmdRetrieveImpressions
Dim CmdUpdateImpHit, CmdRetrieveAds, CycleBannerTotal, CycleList, NewCycleList
Dim Dim LoopBanner, CycleLoop, CycleListArray, CycleListArrayIndex, BannerCycleData
Dim Banner_Array, CurrentBanner, NewCycleListArray, Banner_Array2, LocationIndex
Dim Stop_Processing, Keep_Processing, CmdUpdateStats
%>

,



That's because when the page rebuilds, it uses the default number of users per page setting. You'd have to modify that default setting to have it do things differently.  I used to have mine set to 500 users, until I got past 300... then it wasn't fun to show all users on the page anymore.  I now like 10 per page and searching for specific users as needed.

But that's me. If you hack a COPY of your default.asp file (with the original backed up as above), you can get the value set to one you prefer.

If you want me to find the value, post and I'll look for it later on. If you want to find it yourself, happy hunting! Just be sure to have a backup in case you do the wrongest thing possible in your haxxoring.
,

I was told by my ISP to use localhost and it should work and it does not. It does not require authentication to send e-mails.

Any other ideas?

 

 

Thanks

, just FYI -- i added in a new data table into the database.  I havent finished implementing the whole thing across the entire site, but it wasn't too difficult.  Once I have all of the functionality complete I'll post some details.  Some of the changes are the addition of a new album nav style which combines style 2 and some of the features of the new data table.

Very easy app to work with guys.
,

Sorry, I guess you did say you finally found them.
Regardless, sorry then, I tried

I dont know what else to tell ya.. except to search www.aspin.com

Perhaps you will find something you can use there.

,

Has anyone used the aspmail function to send and recieve emails from within your forms? If so what string did you use in the aspmail_host field in the connections database.

thank you
adam

,

Hello -

Believe it or not I finally can access the photogallery. You were right Chris regarding the unzipping of the files.

Now onto the next challenge! I have set up three categories and proceeded to create a test album. I uploaded a couple of pictures (yeah that worked!!!) but the album does not show up on the default.asp page under the category.

Please advise -
Rhona (rookie)

, If it stopped working it has nothing to do with the ASP code. YIf could have stopped for any number of reasons as hosts often change email server requirements and info. You need to go over the email settings. Of course make sure you and the person you are sending to have valid email addresses and try different methods/settings until you get emailing to work again.

Testing it by sending emails off from the users screen.. in each email type in what you are trying at that time so you know what worked if emails make it through. Also, be sure to check junk filters when testing to make sure the emails are not being put in any of those.

That's what I would do. CDOSYS is always your best bet for sending emails as it has so many options and all new server support it. , Well, you cant have a login box on the home page when using ASPProtect.NET.. there is no way to make that work. I tried all day to come up with something and it is not going to happen. I suggest you make a login button and link it directly to the protected page you want them to start on. The redirect or link them whereever from there. Either that or write your own forms based authentication solution that works exactly the way you want it to or edit the code accordingly since you have the source.  It is not a feature we advertise for the product regardless. It works the way it works. ,

It appears there was a flag problem. When reading it into SQL Server, it converted the True/False in Access to 1/0 in SQL Server.

 

,  I moved the password check file out of /user and am getting this message:

Microsoft VBScript compilation error '800a0400'

Expected statement

/asplog/check_user_inc.asp, line 404

End If
^
Is this a standard database connection error so I should ask my IIS to make sure permissions are correct?
Thanks..!
,

((TITLE EDITED BY ADMIN))


it would be nice if there was an option for login abuse, where a login account would be flagged if it logged in from x number of different IPs over a period of time. I know many have dynamic IPs, but there's got to be a balance between legitimate logins and logins that are 'shared' for the sake of saving money (I sell subscriptions), in the end costing me.

Maybe searching the first two number groups in the IP (example, 209.168.*.*), and if finding more than an admin specified number of logins per week from IPs with different first two groups, the record would be flagged or locked...

 

,

Not really sure how to do this.... i think you know what i am looking to do.. is there anyway you can show me or create that solution for me? It would prob. take you minutes as its been taking me hours

, I'm using Groups and would like to assign all new users to a particular group.  How is this done? cwilliams38298.5087384259,

I am having problems accessing the admin site at the following URL:

http://www.drsweisberg.com/password_admin/default.asp

It brings up the login page, but when I enter the admin/test, it times out.  The DB is the copy with no password and it resides in a directory on the same server hosting the site but it is not in a folder viewable by web users.  This is how the dataconn_inc.asp is set:

<%
'*** Below are the only two settings you need to edit in this file
 
ConnectionString = "DSN=drweisberg;Driver={Microsoft Access Driver (*.mdb)}"
DatabaseType = "MSACCESS"
%>

The ODBC is setup and the IUSR has read/write/modify permissions.

Any help would be greatly appreciated.

, Ok.. glad you got it working., [QUOTE=afifm]

I was actually able to do similar thing by allowing our dedicated search engine to access the site unchallanged.

<%
If Trim(Left(Request.ServerVariables("HTTP_USER_AGENT"),11)) = "MYPASSWORD" Then  
 SearchFlag = True
End If
 
If SearchFlag <> True Then
If Session("Access_Level") > CHECKFOR or Session("Access_Level") = "" Then 
%>
<!--#include virtual="/Auth/check_user_Code.asp" -->
<head>
<title>My Title</title>

</head>

<body>

My Protected stuff here

</body>

</html>

For this to work, the search engine must pass the PW to the web site. I just was not sure how to do the same thing with IPs. I will play with the code and see what happens. If it works, I will post it here to help others, if this is OK with forum rules.

Thanks,

Mo

[/QUOTE]

I just added couple of lines and it works fine

If (Request.ServerVariables("REMOTE_ADDR")) = "xxx.xx.xxx.xxx" Then 
 ' Session("PasswordAccess") = "Yes"
 SearchFlag = true
End If

, I believe that solved the problem as I have not heard from this person since I sent him the code.,

The redirection at 1st login feature is supposed to work like I explain in this thread.

http://support.cjwsoft.com/code/moreinfo385-1.htm

Though what you just said is a bit confusing it sounds like you have some sort of browser problem and it is doing the redirect every single time. ?

I would suggest reseting all your browser settings to normal and making sure cookies are enabled because forms based authentication uses session variables and cookies must be enabled for session variables to work correctly. If not something like this could happen as the redirection at 1st login would happen over and over every time.

So try it on other computers and try with firefox as well as IE. Many people go nuts with their browser settings and way too much stuff blocked which can cuse all sorts of issues. Also some script blocking and firewall software can cause problems so disable all of that when testing.

You may also have created some sort of endless loop. (I really need to know way more information on what you did to know that for sure)

You may also want to consider doing your redirects manually meaning you protect a a page and right after the protection you use regular ASP redirect statements to redirect the user whevever you like based on their session info which is available to easily check immediatly after someone gets through the authentication.

I still stand behind my statements that redirection is not good site design. You really really need to understand and plan your ASP pages as well as have a very good understanding of the session and how all of that works if you use redirection with a password authentication scenario. You should never be redirecting someone to an ".htm" pages except during testing because you wont be able to stop users who are not supposed to go there from going there directly.

,

ahh, I see..

that is not really something you should change.. it is pretty much always going to say read for any folder

It's hard to say, but adjusting settings like that could inadvertently change folder permissions in a way that could cause problems and be hard to correct. I really don't know that for sure but it is very easy to totally mess up permissions when trying different things. In the past I had to reinstall iis just to get things back to normal. I eventually over time learned what to do and what not to do and have never had a problem since. I am not saying you are one of those people but a lot of people have problems because they play around with things they shouldn't or they go nuts trying to give every account permission starting from root folders... overwriting important default permissions instead of just making changes to a few specific folders.. not understanding the importance of what they are doing..... etc etc

Sometimes you practically have to be a NT expert just to fully understand permissions. I know a lot and I can handle my own server but it's hard to explain the low level basic of NT permissions to others as there is a lot to it under the scenes. A lot of hard core NT/2000 users do all the permissions from the command prompt because there is a lot more control at that level.

Like I said earlier, what you showed me looks right but this isn't a complex issue and the error means what it means. Something isn't right with the permissions.

I would start from scratch if I were you. Perhaps consider doing an install in a new web instead of in your root like you showed me. Or try installing it on another machine for troubeshooting sake.

I am sorry I can't think of some amazing answer on this one, but I think this is just one of those weird situations that requires starting from scratch or trying it on another machine.

,

I just took a look and that is definetly what happened.
It has nothing to do with the registration process as far as I can see.

Just running this page triggers it and I know it does not do that the way it comes.
http://www.myvirtualtutor.com/aspprotect/users/user_area.asp

Please back up what you changed and put the user area back the way it came..

If error still happens then I can help you.. It it works fine with the default files from the zip archive then you messed something up in the code.

You have to be really careful when working with ASP code.

Also: just in case you did this. " you should not be password protecting any files in the users area that are already there " the users area does it's own thing and there is no reason to be doing anything like that to the files that are already there. You can do whatever you like to files you add on your own.

cwilliams38456.0957060185,

Hi,

I have just one quick question, I know this works with Paypal but does this work with Merchant Account?

How difficult it is to make it workable with Merchant account? I appreciate your answer.

Thanks.

 

 

 

, A nice addition for the listing script would be if the script would allow a "featured ad" or ads that would appear on the default page. ,

I did all that you sugessted and all failed, you  said "I did a sign up.. your verify URL is not saved/set in the application variables. is this somthing I can change manually?  below are the steps I performed......

1 - made sure the web is it's own application in IIS

2 - Reset IIS in command promt

3 - Restarted the server, the only thing is I have not waited perhaps long enough for it to kick in. but it should have with the restart.

I am running windows 2003 on the front end with wondows 2003 and Exchange 2003 on the back end, is there anything else that may be causing this issure?

Thank you!

Matt...

,

its part of how the skins load.. regardless you got bigger problems here..

I am beginning to wonder if you unzipped the download correctly because I see things in folders they should not be in...

you should have ended up with a bunch of folders and files...

It you just ended up with a ton of files in one directory you did not unzip the zip file correctly... if so check your zip program settings.. I mean that error is because it is looking for a file in the skins folder that isn't there and it should be there

better yet, unzip the downloaded zip file using windows xp built in unzipping features which will do it correctly...

,

Chris:

I just got done trying it myself and it worked great for me too. I was aware of the security issue, but I'd already planned on using SSL for this particular call, as well as for the secured pages accessed through the normal process, so the bad guys will be kept at bay.

Thanks for the help.

,

The application automatically generates all the code for you for each method of calling banners. It does this on the zones screen.

If you are using flash it also possible that the actualy flash file is what is causing things to slow up.

It really all depends... it could also be server resource related

using sql server or access.. ? etc etc

all important details

cwilliams38362.6615972222,

Hi,

I don't see any good reason to rename any of those files.

Changing them though may involve changes to the code recompiling, etc etc... it is not something I support.

,

I would say that it isn't all that difficult using mySQL for the backend....the main thing is to make sure you set the primary keys for auto-incrementing in your database.  Alos need to make sure that any DELETE SQL statements are formatted like this

DELETE FROM tblName WHERE tblField=SomeValue

and not

DELETE * FROM tblName WHERE tblField=SomeValue

The same holds true for using MSSQL

,

SQL Database Creation (NEW INSTALL)

If you are creating a new database do so using SQL enterprise manager.
Create a new database called whatever you like and keep all the default settings. If using an existing sql database skip that step.

Now open up SQL Query Analyzer

unzip the following sql script and open it in query analyser.
2005-02-20_132116_aspprotect_v7_sql_script.zip

VERY IMPORTANT
On the drop down box at the top right make sure your intended database is selected. Otherwise your changes may effect the wrong database in your SQL server.

Then load the script  into the Query Analyzer.  Click the green play button at the top. If everything goes well the response should read something like this.

******************************************************
(1 row(s) affected)
******************************************************

If so the tables have been created in your existing database.

Now make sure an existing or new SQL user has (public / datareader / datawriter) permissions for the new tables. You will be referencing this user in the asp code connection string so this user must be set up correctly. You may need your SQL server admins or hosting company to help you on this step as you may not have access to do this. You may not need to create a user and set permissions as the sql user you were logged in as to use query analyzer may by default get the correct permissions on anything you create.

Regardless, as you can see from this screenshot I made a SQL user called "aspprotectuser" and proceeded to set the permissions for that user. Under database access giving him (public,datareader, and datewriter permissions).


Now, in the ASP files provided with ASPProtect edit "dataconn_inc.asp" with a text editor and modify the connection string info. Be sure to change the info to match your server,username, and password.

Below is an example of valid connection string.

ConnectionString = "Provider=sqloledb;Data Source=poseidon;Initial Catalog=aspprotect;User Id=aspprotectuser;Password=temp;"

The  "Data Source" setting is either the Network Name for the SQL Server or the IP Address. For local servers you can sometimes use an IP of "127.0.0.1" or the name of the local server.

"Initial Catalog" is the name of your database.

Now, in the ASP files provided with ASPProtect edit "dataconn_inc.asp" with a text editor and set the DatabaseType variable to SQL like so.

DatabaseType = "SQL"

cwilliams38403.6834953704, download the free version...

check out this tutorial...
http://support.cjwsoft.com/code/moreinfo169-1.htm

If your application can post to the page and provide all the form variables needed to log in it may work out for you..

You'll have to try it out... all the form variables needed are in that login form example.

Basically you'd be posting to a protected (.asp) page..
and providing the following for the most part.. how your app creates it post data is on your end...

<input type="hidden" name="Status" value="Checkem">
<input type="text" name="Username" value="Yourusername">
<input type="Password" name="Password" value="YourPassword">



As an alternate scenario...

Now, by default the "check_user_inc.asp" file is looking for posted form data... for security reasons it is not looking for querystring info..

If you change this bit of code in that file

from

Username = Replace(Request.Form("Username"),"'","''")
Password = Request.Form("Password")

to

Username = Replace(Request("Username"),"'","''")
Password = Request("Password")


It will then grab either form or querystring data...

Meaning you wouldn't necessary have to create a true post to the page with form data. You could just access the page via a querysting like so

http://www.mysite.com/somepage.asp?Status=Checkem&Userna me=Yourusername&Password=Yourpassword

Of course that introduces security risks as the username and password would be passed in plain text over the net


Another option is...
You can also make a copy of the "check_user_inc.asp" page called whatever with those modifications just to use in pages you need your little application to post to... thus reducing the security concerns a a bit as the rest of yoru site could still have its pages protected under the normal scenario.

I hope this answers your question... I havent really ever tried any of this but that is how I think it would work... , well, I just tried a password using "abcdefghi" and like you said it did not work

I am looking into that.

Also, it seems I had the SQL scripts creating the "Old Password" field just in case someone needed it and I forgot about that. ,

Hi -

We are trying to set up ASPProtect 7 so that the user is redirected to a specific web page based on their group membership.

For example, immediately upon successful login:

Group 1 members are directed to page A
Group 2 members are directed to page B
Group 3 members are directed to page C

Users will only ever belong to one group.

We tried to use the Redirect_URL feature but it causes the browser to loop.

Could you let us know exactly how to do this.  We are not ASP programmers and need to work from an example.

Thanks!

,

It sounds like permissions... to the database folder specifically
they are not correct

It could also be that your odbc drivers are very new and you are not using a new enough version of the access Database. I recommened using the 2002-2003 verison of MSACCESS


Now.. if using a SQL Server Database permissions to certain tables are handled in enterpise manager

cwilliams38303.5892708333,

ok.. Chris.. I am now kicking myself in the butt.  In the setting section, I had to redirect certain urls and directories to the right spot.  I forgot that I renamed the root folder. 

 

Thank you, thus far for your continued help.  It is greatly appreciate.

 

, Hi, lets start with about when did you purchase and download the application so I know what version of the code you have.,

I had not rebooted after installing the Jet driver updates, so I tried that and the asptest page worked fine, and said that all the tests were successful and that the data connection was setup correctly. I then installed aspprotect again, but with the same results. I cannot log-in from the get_me_in.asp page. It still says that it is opening the page, but does not respons for an indefinite period. The asptest page is in the same directory.

I have looked for alternate databases for this product on your site, but I cannot seem to find them.

, I do not what see what this has to do with anything I sell ?

Those errors are all related to pages that have nothing to do with my ASP applications and code.,

I would kile to see more support for the groups function:

1. on the password_admin/default.asp page have a coulmn listing groups

2. ability to change groups in bulk eg change the expiry date for all group x members

Cheers

,


Timecard Entry: 3/25/2006 4:50:04 PM

getting a lot of 650's can't seem to pin it on one line?, E-Mail, Voice-Mail, Setup, Checking e-mail. Watching network a little., Renzi Bro's went down., One of the busiest times of the night, On and off phone with www.active4.com support for wwwprint and working with Randy to fix wwwprint on our servers, Daily routine, did stuff with my computer (defrag, etc), Still working on record cycling, Answered tech related calls. Checked and called customers in rad log. Emailed expring users., Lowville , lunch, folding and mailing invoices, answering phones, callbacks from voice mails., No calls... checked out the computer under the desk to see if we could put windows 3.1 on it and got a wierd pizza program that I couldnt do anything with., Watching the NOC, woRKED WITH DAVE ON mls STUFF, Vacation, Read and responded to emails, called Bell, Source Technology, 3Com for assistance on PRI for Total Control hub, FredericRemington.Org - Added feature to user manager for listing only new membership applicatants, with option to check-off user as validated., quite steady, nothing major, Adele Jacobs (SIIE), Meeting with Gary and Ron., Tim-McNally stuff and Carol questions, move office to CREG Systems, Reading and responding to emails and voice mail, general tech support did many calls some radlogs and expired users callback, deposit, Max Zeigker- go voer propoal and estimate, Watertown School District - Standards (billable),

   Active Server Pages Rule The World
Contact Us  
All artwork, design & content contained in this site are Copyright 1998 - 2022 PowerASP.com and Christopher J. Williams
Banner ads ,other site logos, etc are copyright of their respective companies.
STATS Unless otherwise noted - All Rights Reserved.

Active Server Pages what is asp programming how to sample asp example code scripts software asp forum mail sessions applications global.asa CJWSoft ASPProtect ASPBanner ASPClassifieds www.aspclassifieds.com, www.powerasp.com,www.cjwsoft.com,www.aspphotogallery.com,www.codewanker.com,www.aspprotect.com,www.aspbanner.com