Blog Entry: 3/25/2006 4:49:50 PM
The reason is obvious, the file is called aspprotectlogin.aspx. It is self advertising for your product which is against the law for me to do on a government support website such as mine. Every other login system I have come across uses the login.aspx file. If I canít change it I will file with the credit card company and return your product. I do like your product and hope to stay one of your customers. I will let you know, thanks for your help.,
I've got an ecommerce module that's running on it that uses access for the db. Connecting into that thing is slow as well, but I figured that's because of the complications and volume it handles.
So as far as importing on a faster machine and copying it over to the server...what suggestions do you have?,
You see, an include file is no different then a link to an image or graphic. The path to the include file must of course be valid. That file isn't in the same directory as that page so you get an error.
You simply need to make the call to the include file valid.
See my article on server side includes.
You should also look at some of the provided example pages and see how the paths to the include files are done.
You can also use a virtual include if you figure out the page for that. See my article for the difference between a file include and a virtual include.
The code generator in the admin area shows examples of both but depending on your site structure the paths may need to be slightly edited.
Server Side Includes are a fundamental part of using ASP and they are used a lot. Once you understand how include files are used you will think it is the simplest thing.
More articles on server side includes
yup. that is correct... they can't log in so they can't see any pages you protect
its the nature of forms based authetication,
Thanks, the DESC addition did the trick!
so use the connection string the readme.txt in the sql installation folder file tells you to... it has the correct username.. I just posted that info above
or change the username in the connection string so its rigfht
or go into sql and give any user you want access to the database and use them
Any connection strings that come in the datacon_inc.asp file the way it ships are examples. We fully expect people to edit them.
Also.. the SQL scripts primarly goal is give you a properly set up database with correct files and table settings. Users and permissions often need a little extra attention from the installer as that part doesn't always get set right by the scripts It really all depends on what sql user you are when you execute the scripts. Many times the user someone logs in with doesn't have permission to make users and set permissions.
I am an experienced ASP developer. Can you tell me whether this would be a very involved process, or whether it is pretty straightforward? I don't yet have a merchant account, so I am not yet familiar with any aspect of accepting credit cards online.
Got it working. Had purchased a long time ago and forgot about needing to run the userreg.exe. All is well and thanks for the follow up.
Lance, Bingo! that did it. Somehow the data must have gotten corrupted.
Hopefully that will do for me. Seems like everything is humming along and looks great!
I am also getting the "Unspecified Error" message. I just transferred my site to IIS 5.0 and I get that error now. However it does not happen everytime. I can click on a page and it opens fine and then I hit refresh in the browser and I get the "Unspecified Error" message. What could be causing this?
(( TRY THIS AT YOUR OWN RISK !!))
This is an Expirmental MOD for ASPBanner Version 7.3 Only
Do not use it on other versions....
It encodes CODE Banner information before saving it into the application variables that handle banner rotation. It then decodes that information before displaying them on your web pages.
Unless your having a problem don't use this mod. It is not officially supported in any way.
-- DIRECTIONS --
( COPY THESE FILES INTO YOUR ASPBANNER DIRECTORY AND BACK UP ALL THE FILES THAT YOU WILL BE REPLACING ))
(( SO YOU CAN REVERT BACK IF THERE IS TROUBLE ))
If you are wondering if the "appinfo_inc.asp" included has the weight banner bug fix applied to it already. That is a bug mentioned in our forums
(( YOU CAN NOT USE THE INCLUDE METHODS OF CALLING BANNERS WITH THIS CODE ))
(( USE ONE OF THE OTHER METHODS ))
(Indemnification Agreement Mod)
This very simple mod will add an Indemnification Agreement Pop-up to the registration signup form which must be agreed to before continuing. This is often done for legal reasons to help cover yourself if something should come up later on.
Download 2006-03-19_212700_Indemnification_Agreement_Mod.zip which contains "terms.js" and put it in your scripts folder. It contains the text that will be displayed in the pop-up. You can of course carefully edit it with a text editor to say whatever you like.
Now carefully edit "users/register.asp" with a text editor. Add this bit of code in blue right after the include to the "footer_inc.asp" file like so. It will be near the bottom of the page.
<% If ErrorMessage = "" Then %>, You would have to carefully edit the asp code in the "add_new_account.asp" file. It you look that file over with a text editor it is pretty easy to see where the text to edit is. Just make sure you edit it in the section for the email component you are using. Back the file up before you make any changes to it so you can revert back if you mess anything up., Just checked XML Parsing with your file. Got a clean bill of health on that: It's working.
<% End If %>
Your done, that's it. Now when "users/register.asp" is run for the 1st time the pop-up will come up.
Got the right code for the location of the ipn.asp in my paypal1.asp, from http:// all the way to .asp.
I think since everything is set up properly from the looks of things,
I'll wait and see. If I get another one who flubs things, then I'll
start the testing of the account. But if it goes through just fine,
then maybe the Internet just hiccoughed on the first guy... thanks
I am trying to find out where I can enter the ttle for the application.
There is a variableor field called App_Name into which it would be good to insert a generic name. Can this be edited?
I have searched high and low but cannot find anything to do with it.,
I finally spoke with someone who knew what I was asking for and they set the rights and all is fine.
Thanks for your help. Wish all business' had customer support like here,
It's custimization work. and just not something I can support.cwilliams38437.0929282407,
Basically it is basic ASP/Database work.
Something you kind of need to figure out on your own. It's not difficult work for a good asp coder but there is no easy way and it is time comsuming.
I wouldn't use the custom fields though. I would make your own.
It's simpler that way.
This isn't going to help you much but here is the deal.,
The 2checkout support in ASPProtect actually is not supposed to work with 2checkout subscriptions and therefore does not need to use an item number.
It is intended to be used for single payments only with 2checkout as explained in this thread.
Single payments with 2checkout use their shopping cart which allows for dynamic payments without needing an item number.
I agree with you that 2checkout's interface is confusing. It's actually about the worst system I have ever seen. I could not make a 2Checkout subscription system because their system is just too limited and I couldn't make it work the way it really needed to.
I was told by my ISP to use localhost and it should work and it does not. It does not require authentication to send e-mails.
Any other ideas?
Thanks, sorry for the confusion, but I am not that good with the tech explantions yet.
what it boils down to is I have an Access Database containing over 100
members names. I want only those people to be able to get into
the secure pages.
(Capcha Security Image Mod)
This mod will add a Capcha Security Image to the registration signup form.
Download the latest version of the ASP Security Image Generator from this site. http://www.tipstricks.org/
Unzip that download and copy "aspcaptcha.asp" and "aspcaptcha_distort.asp" into the aspprotect "users" folder.
Now edit "users/register.asp" with a text editor and add the code shown below in blue. The code to add goes near the bottom of the form right above the submit button. Just add the blue code. The code around it is shown to help you find the area of code where it gets placed.
<td valign="top" align="right"><font face="Arial" size="2"><strong>
Newsletter</strong></font></td> ; ; ; ; ; ; ;
<input type="checkbox" name="Newsletter" value="True" checked>
<font face="Arial" size="1">Do you want to be subscribed to the
<td valign="top" align="right"></td>
<td valign="top"> <img src="aspcaptcha.asp" alt="" width="86" height="21" />
<font face="Arial" size="2" color="#000000">Type the characters shown in image for verification.</font><br>
<input name="strCAPTCHA" type="text" id="strCAPTCHA" maxlength="8" /></td>
<td colspan="2" bgcolor="#FFFFFF">
<p align="center"><input type="submit" value="Register"></p>
ok, now edit "users/add_new_account.asp" with a text editor and add the code shown below in blue. Just add the blue code. The code around it is shown to help you find the area of code where it gets placed.
If User_Custom6_Used = True Then
If User_Custom6_Required = True Then
If Custom6 = "" Then
ErrorMessage = ErrorMessage & Server.URLEncode("You need to enter a " & User_Custom6_Name &".\n\n")
strCAPTCHA = Trim(Request.Form("strCAPTCHA"))
if strCAPTCHA = Trim(Session("CAPTCHA_" & Session.SessionID)) then
ErrorMessage = ErrorMessage & Server.URLEncode("You did not type in the verification info correctly.\n\n")
If ErrorMessage <> "" Then
Response.Redirect "register.asp?" & Request.Form & "&ErrorMessage=" & ErrorMessage
Your done. You just added a Capcha Security Image to your signup form. If you would like a more distorted image that is more difficult for an automated program to figure out change the image tag to call the "aspcaptcha_distort.asp" page instead. It will look more like this.
Microsoft has a free version of SQL server 2000 than you can run on a development machine.
This is really the same thing as the MSDN version of SQL server that comes with Visual Studio
No single database can exceed 2 gigabytes in size. However, each Desktop Engine server instance can contain many databases, each of which can be up to 2 gigabytes in size. Each computer can host up to sixteen instances of Desktop Engine.
Performance will rapidly decline when more than five simultaneous users use the database engine at the same time. With five users or less Desktop Engine will operate with full SQL Server speed.
It is limited in two ways.
After you install this your going to need a way to connect to your sql server as well as a way to run queires on it.
I suggest either install the client tools off any SQL 2000 Installation Disc (giving you enterprise manager and query manager)
or use the FREE SQL Server Web Data Administrator which will do amost everything you will need to do. It is really very slick
http://support.cjwsoft.com/forum/forum_posts.asp?TID=127& ; ; ;PN=1
Then you have a pretty sweet setup for testing and developing locally using SQL server.
If you are wondering why someone with a real SQL Server 2000 cd wouldn't just install the real SQL server locally it is because the server part will usually not install on XP Pro or non server versions of windows for licensing reasons. (at least every SQL 2000 CD I have is like that regardless of whether it is standard or enterprise) But the client side tools on the cd are invaluable so I just install the Desktop Version of SQL along with the client side tools and everything works great., ok thanks,
Okay, thanks, I'm going to change the method tonight and see if it makes a difference
I'll report back
Dave, Hey, I thought I'd share this tip with the ASPProtect community...
If you'd like to remove, modify, or add fields to the "Users" view in
the password_admin default.asp page, it's really easy to do. Well, at
least it was for me. I'm using an MS Access database, by the way.
For me, I don't need "Company" info, but I do need last access and # of
times accessed displayed. Therefore, I had to change the default page
in three areas:
In /password_admin/default.asp, go to about line 185 or so, where you see stuff like:
[code]<td valign="bottom"><font face="Arial" color="#000000"
="2"><b>First Name& lt;/b> </font></td> [/code]
OK, those are the column headings. Each one corresponds to a column
from your USERS table in your database. There are two more areas to
consider, both of which appear immediately after this section.
The next section has statements that look like this:
[code]<td valign="bottom"><a href="<% =THISPAGE
border="0" src="../images/sort_ascending.gif" Alt="Sort
Ascending"></a><a href="<% =THISPAGE
border="0" src="../images/sort_descending.gif" Alt="Sort
See the "First_Name" items? The first is for an ascending sort, the
second for a descending. This particular line corresponds to the code
snippet immediately above it. But all this does is handle the sorting.
For the actual data, look lower for this stuff:
[code] <td bgcolor="<% = Cellbgcolor
%>"><font face="Arial" size="1"> <%=
%& gt; </font></td> [/code]
It's a good ways down, so don't be impatient if you don't see it in 10
lines from the end of the last mentioned section. This stuff handles
the display of the data from the database (where else ya gonna get
Now, to remove a field, you need to find the three sets that go with
that data. The ascending/descending sort is potentially the trickiest,
because it's the longest set of data and can take a number of lines.
Just clear it from the start td to the end /td and you'll be fine.
To *add* a field, copy and paste the code from an existing field and
modify it. In the first one, the column title, you can type whatever
you want to describe your info. Nobody but you and your admins will see
it. For the next two sections, though, you need to get the correct
column heading from the USERS table and use that to correct the lines
in the copied code you pasted in.
For example, when I added a column to show the number of times a user
logged in, I copied the above snippets and pasted them in where I felt
the column I needed should be. Then, in the first one, I changed "First
Name" to "Logins". In the ascending/descending snippet, I changed
First_Name to Counter. Same for the last snippet.
The result? A new column, showing the number of logins my users were successful with.
Of course, before you experiment, back up your existing default.asp file, JUST IN CASE.
Also.. if you want to customize each person's experience individually it really does not make sense to use groups or access levels for that purpose alone.
I mean, why bother making a group or access level for every user and worrying about keeping track of it all when you can just access the available session info about the user to create dynamic pages specific to that user.
http://support.cjwsoft.com/forum/forum_posts.asp?TID=198& ; ; ; ;PN=1
That is why that information is there.cwilliams38433.6259606481, aspprotect does not use a global.asa file
You can of course use some combination of the two technologies as well should you have groups of users that you want to have a slightly different experience.
I would start by looking there and seeing what is going on ... with line 33
I dont see how it could be related to aspprotect in any way
Global.asa files fire on their own and what they do depends on what code is put in them, FYI. There is a typo in the upgrade (6.0 to 7.0) instructions. It specifies adding a field named "passwords". Should be "password".,
You can't do that. ASPProtect 7 does not work with ASP.NET.
It is a classic ASP application. As the web site states it can only be used to protect ".asp" pages written using vbscript.
ASP and ASP.net are completely different animals.
Thats why we have a .NET version.
Is there a way I can include the username and password in the URL of a protected page to gain access to a that page without going through the log-in page?
I'm not quite sure what the syntax would be in the URL.
Warren, Not without changing a lot of code. If you didn't want encryption you really should have went with version 6. Encryption is a big new feature of Version 7 and it is inter-mixed with it the code in a lot of places.
As for doing the export and import you have to create a valid export file and then read through this very thread which explains how to import an export file with clear text passwords.
This is from the admin area regarding the text file format
The import/export file must be tab delimited with no text qualifiers. The 1st row containing field names and the following each being a new user. To create your own import file it must be in this exact format. To find out what field names and their order are simply create an export file using ASPProtect and take a look at it.
Generating an import file from your own database requires good knowlege and understanding of Access's Importing and Exporting functions. It is not something I cover as the process is different for everyone and not really very hard. ,
ok, well if you want to test on your own.... in the ipn.asp file for the subscription folder you will see this area of code used for testing
' Un-comment this section and give this directory proper permissions to enable logging to a text file
' Very helpful for troubleshooting
' Set ObjMyFile = CreateObject("Scripting.FileSystemObject")
' LogFileName = ("paypal.txt")
' 'Open Text File.. If doesn't exist create it and append to it .. If exists just append to it
' Set WriteMyData = ObjMyFile.OpenTextFile(Server.MapPath("paypal.txt"),8,True)
' RowHeaderString = ""
' RowHeaderString = RowHeaderString & OrderID & vbTab
' RowHeaderString = RowHeaderString & Custom & vbTab
' RowHeaderString = RowHeaderString & User_ID & vbTab
' RowHeaderString = RowHeaderString & subscr_id & vbTab
' RowHeaderString = RowHeaderString & txn_type & vbTab
' RowHeaderString = RowHeaderString & subscr_date & vbTab
' RowHeaderString = RowHeaderString & Access_level & vbTab
' RowHeaderString = RowHeaderString & Groups
now that folder will need modify permissions for the text file to be written to but this is a good way to test if the ipn.asp page ever gets hit by paypal.
ITS REAL IMPORTANT THAT THE TEST FILE CAN BE WRITTEN TO OR DOING THIS WILL JUST CAUSE MORE ISSUES
To ensure the text file can be written to and permissions are correct for that folder you can make a new .asp in there and run this to see if the text file writing works
Set ObjMyFile = CreateObject("Scripting.FileSystemObject")
LogFileName = ("paypal.txt")
'Open Text File.. If doesn't exist create it and append to it .. If exists just append to it
Set WriteMyData = ObjMyFile.OpenTextFile(Server.MapPath("paypal.txt"),8,True)
WriteMyData.WriteLine("the file was written to")
Now, you can even change the location of the text file to place that does have permissions if you like.cwilliams38421.6488773148,
This is what I would do if I was in there... then I would make some test payments using 1 cent and another paypal account (your allowed 2)
and see what happens
it is always possible the subscription code may have a bug in it. The last time I tested I only tested the single payment folder which worked perfectly. If I have time in the next couple days I am going to test the subscription stuff again. If there is something wrong I can cure it quickly.
The two routines share a lot of code in common.
I was able to get it all figured out. Thanks a lot for your help, I really appreciate it. I ended up copying the database with the password to the directory and used the user/password connection code and it works great. I believe it was related to that but I cannot be sure. Thanks again!, Then you should have current enough code.
If you PM me the encryption key you are using and the plain text password for this user I can see if I can reproduce the error and come up with a fix.
I believe you found one of the rare examples where the encryption creates a strange character that messes up things. Sometimes those characters are not even visable.
Changing the password should solve the problem in the meantime.,
Ahhh....yes, I always forget about the cache. That's exactly what it was.
I had made modifications to the import_pics.asp file, because I added more fields to the db, and made the import folder path dynamic, but I seem to have forgotten to add in the response.expires=0
Once I added this back in it has stopped messing up.
What was happening was, it wasn't overwriting the files, nor were they too big, but you would click on one thumbnail in an album(category) and it would display a picture from a totally different category. It seems browser cache was the culprit, however.
Thanks for the quick reply, great product tooo!!!,
We are actually having a lot of problems with this software.
Apart from the above problem of the email not being in the database as details above we also do not get any reply emails from any forms, the mass email button does not appear and the forgotten password does not send emails either.
We have CDONTS Version: 2.80 Installed as the email system, this is operational on the server. I have tested this with server_info.asp to check.
I can email you direct any other information you may need.
You really should just look at the documentation that came with the application. It tells you everything you need to know.,
it is in the docs folder in html format.. it is also linked to from the aspclassifieds website
You are right, there are NO entries in the "PayPal_Subscriber_ID" field at all. Any way of fixing this?,
Suprising I started this tread off on ASPImage, but I resolved my issue and forgot to change the thread topic. I will try your suggestion.
I noticed that is grabbing the wrong URL for some reason. Even when i mouse over the URL its somehow getting the users sub directory. How.. i dont know... when i erase that users in the url it works perfectly.
I am looking at the code in the .vb file and i dont see anything that could be causing it to do that... but then again i am no programmer LOL
Its obviously kicking in that users subdirectory somehow... what are your thoughts?,
Timecard Entry: 3/25/2006 4:49:50 PM
time tracking, Put together quote for SeaComm FSU, SoftMLS - Listing change histories., fixing miscellaneous server problems, broken mailboxes on mail.gisco.net, making adjustments to ns1.imcnet.net DNS., put SoftMarine database on wrattenrvsales.com web site for Lisa, Setting up Andrea's and Michele's computers to use the exchange server. Wanted to do it when I wouldn't bother them., lunch, 25 miles68845-68860, Help Lee Pierce with a customer question, Management of Projects and GiSCO Infrastructure and Employees., maintainance of wireless antenna, YMCA, email, voicemail, call backs, general admin abay chamber,, chow, Meet w/Amy about Watertown School District, Place Order for POTS in Syracuse POP, TICC Lunch All But Andy Made it!, timecards and payroll, dial up issues radlog, traveled 53 miles to meeet with the EO of Oswego board of realtors Gene Friske. , worked on backing up, reformatting and reinstalling Windows2000 and all applications and files, ST.LAWRENCE COUNTY WEBSITE DEVELOPMENT, General wireless duties and researching. Updating my laptop with Orinoco software and Windows updates. Talking with Ed about today's objectives and figuring out where we have to go, travel time to Carthage 35 miles, to State Tower Bldg, Vacummed hallway and tech room. Need more vac. bags!! Scrubbed down the bathroom and kitchen., Creation of Key Bank banner ad for NNYMLS site, Reading through some ASP material and studying in my book, Lance Evans wanted some changes on nnymls.com site. Asked Steve and Cris for help. Called Lance back, Resetting modems., researching Flash/Design seminars/conferences,