maybe this is the issue...

do you realize that the descriptive name you give a group is not always going to be the same ID in the database ? The two are not related.

Perhaps what you named Group 1 is really group ID 3

You can tell for sure by generating protection code for group 1 and see what ID it tells you to use..



You also need to remember that you are testing this with different users and it is really easy to get confused so you need specifically log off using the log off page to ensure session info from the previous login doesn't show up and cause confusion when you log in with a different user... etc etc

in addition to logging off that way you may also want clear the session and application info via the code at the bottom of my article
http://www.powerasp.com/content/new/displaying-session-and-a pplication-variables.asp

and do that in between any user you log in as

Looks great. I can't wait until this will be released. Will there also be an easy way to migrate my current version ?

Hans

Whein I went by the numbers off of your directions, which work well up to that point, the import would time out.

At that point I tried to import directly into access...and then it hung trying to login.

okay so I've put in a clean database and created a new record for me as admin.

whether you use SSL or not really does not effect aspprotect in any way

I say, the smart thing to do there is too not start them off at a http:// url

one way to do it is put a simple ASP redirect on that default page and send them to an SSL version of the page instead...

http://www.powerasp.com/content/code-snippets/redirects.asp

another way would be not start them off on a protected page right off the bat and offer links to the the protected area...

in my opinion thats pretty odd to be starting them off on a protected page anyway
SLL maybe, but protected right from the time they hit the default page of the site.. thats just odd.. usually you want o say a little something about the site your at and then link people to protected areas or give them a login form which posts to a protected area.


Regardless if you always want users at your site under https:// you should have code on every single page in your site checking the url info at every page load. Then if someone ever hits a page and is not using the https://  you can do something about it like redirect them to the SSL home poge or redirect to that same page but with the https:// in the url..

Hello cwilliams, and thank you for the fast reply.

Well, i have tryed with the ASPImage enabled and disabled, with the same results. I have used gifs and jpgs in the tests.
I have made some different test. Some with uploading the picture over an excisting picture and some as the first picture. Same results.
Everytime, it´s the 2nd thumbnail that won´t show itself, but the large picture will show, if you press the thumbnail.

I have tryed to look in the code (view_ad.asp), but as far as i can see, everything seems just fine ?!

I know, it wasn´t much help i could give you, but i think i have tryed all the possibilities.

Best regards, Erling

you actually dont touch any of those
UploadDirectory = CmdGetConfiguration("UploadDirectory")
They get set from the config table in the database which gets edited in the admin area.

so...

I am talking about the settings area in the admin area of the applicaton.
Every setting there is descibed in detail. You get there and change serttings there via the web browser and by logging in as the admin.

Log in to the online demo as admin and check out the settings area if you are confused.
http://www.aspphotogallery.com/demo_pro.asp

Can I have the logon be in a top frame while having the protected pages displayed in a main frame?

Using frames with forms based authentication is not the best thing to be doing. Your much better off not using frames and using includes files to do a virtual frames sort of thing (search google) but if you are going to use frames I would suggest password protecting the frameset page as well as any pages it contains.

If you want to have a login form in a non protected top frame all the time.. that posts to a lower frame that is password protected.. you would do this
http://support.cjwsoft.com/code/moreinfo169-1.htm
but change the target of the form to one of your frames

personally though I think that would be a somewhat goofy setup to have going on


Also, how will it behave if a user moves in between a protected page to a public page and back to the protected page again?

As long as they have cookies enabled which is required for session variables to work... then you will have no issues because once they come back to a page they have permission to they will just be allowed in without login.. at least while that session is still active.. or for a longer time if they choose the remeber me option which keeps track of them with a cookie .

Really, the best thing to do is expirment and see how things behave.

ASPProtect v7.x runs on Microsoft IIS servers only.
That means Windows XP Pro, Windows 2000 server and Windows 2003 server. The web server must have ASP support enabled and support Data Connections. 99% of them do as it's a pretty normal thing, but you should ask and make sure your hosting plan supports it.


Before you even start please read this thread and do what it says.
If any errors show up it is important you see the real error instead of a useless HTTP 500 internal server error.
http://support.cjwsoft.com/forum/forum_posts.asp?TID=11& PN=1

Once doing that make sure to use Internet Explorer as you follow along with these directions.

Now, unzip your installation zip file that you downloaded from CJWSoft.
Use a program like winzip and be sure you have it set up to unzip the directories as well. You can also use windows xp's built in folder compression tools to unzip the archive.

When you unzip the application you should have all of the following folders and files. (more or less, it depends on the version)

Now, you can copy all of these files into the root of your website or if you like you can make a folder called "aspprotect" and put all of these folders and files in that folder. Either way it really does not matter.

Now, contact your web hosting company and instruct them that you need permissions set on the data folder that you copied into your website. This folder and all of its child folders need modify permissions set on it for the anonymous webserver account. It is very important that they set the permissions correctly and on all the child folders as well.

Here are some threads on exactly how these permissions are set.
If you run your own server or are developing locally you can do this yourself. If not most likely you need to put in a request to your hosting company as you CAN NOT set these permissions via Frontpage or FTP.

Windows 2003 Server and permissions
http://support.cjwsoft.com/forum/forum_posts.asp?TID=136& ; ; ; ; ; ; ; ; ; ; ; ; ; ; ; ; ; ; ; ; ; ; ; ; ; ; ; ; ; ; ; ; ; ; ; ; ; ; ; ; ;PN=1

Windows XP Pro and permissions
http://support.cjwsoft.com/forum/forum_posts.asp?TID=56& PN=1

Once permissions are set.. run this page via your web browser

http://www.mysite.com/data/setup_info.asp

Replacing the part in blue with your website info.

When this page is run it will report back a screen like so:



Now, take the connection string info it shows you.
Edit the "dataconn_inc.asp" file in the root of the ASPProtect system and use that data connection information. It should be valid for the server.

If you are using MSSQL server instead of Access please see the SQL database creation directions as you will need to create the MSSQL database and use a special connection string for that.
http://support.cjwsoft.com/forum/forum_posts.asp?TID=160& ; ; ; ; ; ; ; ; ; ; ; ; ; ; ; ; ; ; ; ; ; ; ;PN=1

Now, take the CookieEncryptionKey and PasswordEncryptionKey info that it gives you and enter it into the "config_inc.asp" file in the root of the ASPProtect system. These will be the unique keys that your encryption will be based off of.

Ok...

The files have been copied to your website, the permissions are set on the data folder, and the database connection is ready.

Now.. run this page

http://www.mysite.com/password_admin/get_me_in.asp

Replacing the part in blue with your website info.

This is a special page we use to get into the system for the 1st time.

If you get a nasty error when you run that page similar to this.

Error Type:
Active Server Pages, ASP 0131 (0x80004005)
The Include file '../dataconn_inc.asp' cannot contain '..' to indicate the parent directory.

Then parent paths are disabled on the webserver and you need to do an extra step to deal with that. Follow this link.
http://support.cjwsoft.com/forum/forum_posts.asp?TID=162& ; ; ; ; ; ; ; ; ; ; ; ; ; ; ; ; ; ; ; ; ;PN=1&TPN=1

If you get any other variery of "80004005" error then there is a problem with your data connection.
http://support.cjwsoft.com/forum/forum_posts.asp?TID=27& PN=1

Those errors are usualy related to database folder permissions or an imcorrect physical path to the database file specified though they can mean a lot of things.


Once you get the page running you will see a login prompt and one form field

You will need to paste the "PasswordEncryptionKey" value that you used in the "config_inc.asp" file in the form field and hit enter.

If all goes well you will see the admin area of ASPProtect.

Now that you are in the system you need to create an admin account.

Click on "ADD NEW USER".. fill out the info and add a user.
You really only need to fill out (first name,last name,email,username,and password)

Now save that user.

You should see a new user listed in the admin area. Click on Edit user to the left of the new account. On the edit screen check the "admin" checkbox and save the user.

You just created an Admin account.

Now click on the "log off" button on the top menu and click yes to log off.

Now close the browser. Then run this URL

http://www.mysite.com/password_admin/default.asp

Replacing the part in blue with your website info.

You should now be able to in to the admin area of the system using the new admin account you created.

You are now ready to go to the settings page so click on the settings tab in the menu. There are a lot of options and paths that need to be set on this page. Every setting is described in detail on this page. You need to go through the page and set things up properly. Anytime the page asks for a path to a url or file the page will auto generate what should be the path to use. (expected path) If your server has parent paths disabled a few of those auto generated paths will not show up. If that is the case run this url from your server and it should tell you the paths to use for those settings.

http://www.mysite.com/data/expected_paths.asp

Replacing the part in blue with your website info.

Once your all done and the system seems to be running fine you should go back and delete the following pages as they are no longer needed and pose a potential security risk.

http://www.mysite.com/data/setup_info.asp
http://www.mysite.com/data/expected_paths.asp
http://www.mysite.com/password_admin/get_me_in.asp

You should back up the original zip archive you got from CJWSoft in case you ever need those files again.

VERY IMPORTANT: The user passwords from now on will be encrypted using the "PasswordEncryptionKey" you specified in the "config_inc.asp" file.

If you ever change that key all of your passwords will be invalid and you can not get them back unless you know the key and put it back, so plan on never changing that key unless you really know what your doing and know how to decrypt/re-encrypt the passwords using a new key. (something we do not cover at the moment but probably will when we have time to make a tutorial) 

Chris:

The string is being saved and I get a .wav ring sound to confirm.  I have tried editing in "notepad" and then running the "data/show_path_info.asp" file after with the same results.

Ken

Hi Chris,

Alright.  We figured out how to work with both C# and VB, by creating a separate VB web project in VStudio, and then passing the aspprotectnet.dll to the C# project.

Ok.  I have another question:

How can our code determine the identity and user_id of the currently logged in user:

Is it Session["User_ID"].ToString() and Session["Username"].ToString()?

thank you

This first one may be an obvious one, but is it only .asp files that I can protect as in no HTML files.

Can the program be set to protect my whole https directory contents (though the answer to the last question may have bearing here - there are html files as well as .asp in there) as in http://secure.mydomain.com

Thanks in advance

The way the application ships there are no password confirmation areas anywhere ? Please be more specific as to what you have done and if any mods are involved ?

If you are talking about one of the MODS please realize they are not supported. http://support.cjwsoft.com/code/moreinfo459-1.htm

Even though they are not supported I look them over pretty closely and I know of no issue like you mentioned so I would suggest re-downloading the MOD. Perhaps you got a corrupt download or file.

I would also double check that you changed the field size correctly and on the correct database that is being used in the connection string

let's try this... edit that page with a text editor like notepad...

Carefully replace any instance of "Cint" with "CDbl".. I may have missed some of those when testing the last time I edited the code.

Hope the wedding went well.  I have one this weekend.

I was successful at performing an upload.  The free upload software was either not configure properly (probably) or not working.  I downloaded the trial version of softartisan's upload (which is like over $300) and it started working. 

Can more than one photo be uploaded at one time (like a whole folder full of photos) or does each have to be done individually?

Chris-

A general question - Can you have multiple instance of the gallery on the same server? 

Just an update,,,

the permission were all correct.... i left it and tried from my pc at work and it works fine... so i dont know what hahhpened.... thansk for your quick response

regards

Domenic

Sydney, Australia

actually  I just went to it again and it was somewhat slow coming up this time..

perhaps you have some issues with the sql database.

it should be instant.. like this one I run on my server
http://banserver.powerasp.com/aspbanner/

I suppose it could also have something to do with sql server resources but its hard to say..

Sorry, not really.. not without a lot of changes to the code.
the recent activity info recycles.. it is not meant to be day by day

My suggestion there would be to look at both the log files and the user activty screens...

I'm all set - after thinking about your replies - i checked a bit more and changed the email component type -- thanks again for all your help.

I think this addresses your question

http://support.cjwsoft.com/code/moreinfo144-1.htm

Christopher,

I can empathize. It can be a real pain to stablize a server and fend off hack attacks.

As for beta testing, I was referring to once you get to the point where you're ready to release it to the public whether it's this month, next month, etc.

Good Luck!

Al

I have purchased ASPProtect to secure a web site that I administor for a soccer league.  I am having a hard time getting the code to execute.  the instructions are to include this code at the top of the web page under the Language identifier.  Like this I think:

<%@ LANGUAGE="VBSCRIPT" %>

<!-- Begin ASPProtect Code -->
<!-- Groups with access to this page. ( * Admins * ) -->
<% GROUPACCESS = "4" %>
<!--#INCLUDE FILE="check_user_inc.asp"-->
<!-- End ASPProtect Code -->

However, nothing happens.  I am not sure if I am missing something. 

FYI:  the "Check_user_inc.asp" file is in the root directory of the site which is actually two levels down on the d: drive of the server.
      The web page code is located below.

Any help is greatly appreciated.

<html>
<head>
<title>TeamManagers</title>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
</head>
<body bgcolor="#006600">
<div id="Layer1" style="position:absolute; left:125px; top:109px; width:682px; height:597px; z-index:1">
  <table width="655" border="1" name="teambios" bgcolor="#FFFFFF" bordercolorlight="#FFFFFF" bordercolordark="#FFFFFF" height="312">
    <tr bordercolor="#006600">
      <td bgcolor="#006600" width="154" height="33"><b><font face="Arial, Helvetica, sans-serif" color="#FFFFFF">Division
        1</font></b></td>
      <td bgcolor="#006600" width="160" height="33"><b><font face="Arial, Helvetica, sans-serif" color="#FFFFFF">Division
        2</font></b></td>
      <td bgcolor="#006600" width="148" height="33"><b><font face="Arial, Helvetica, sans-serif" color="#FFFFFF">Division
        3</font></b></td>
    </tr>
    <tr>
      <td width="154" height="26">&nbsp;</td>
      <td width="160" height="26">&nbsp;</td>
      <td width="148" height="26">&nbsp;</td>
    </tr>
    <tr>
      <td width="154" height="26"><b><font face="Arial, Helvetica, sans-serif"><a href="/TeamManagers/BHawks/BHawks_search.htm">Black
        Hawks</a></font></b></td>
      <td width="160" height="26"><b><font face="Arial, Helvetica, sans-serif"><a href="/TeamManagers/Gunners/TFC_search.htm">Gunners</a ></font></b></td>
      <td width="148" height="26"><b><font face="Arial, Helvetica, sans-serif"><a href="/TeamManagers/InterFC/InterFC_search.htm">Inter
        FC </a></font></b></td>
    </tr>
    <tr>
      <td width="154" height="26"><font face="Arial, Helvetica, sans-serif"><img src="/Images/clearpixel.gif" width="1" height="1"><b><font face="Arial, Helvetica, sans-serif"><a href="/TeamManagers/DCove/DCove_search.htm">Deep
        Cove Brewers</a></font></b></font></td >
      <td width="160" height="29" valign="top"><b><font face="Arial, Helvetica, sans-serif"><a href="/TeamManagers/NSReds/NSReds_search.htm">North
        Shore Reds</a></font></b></td>
      <td width="148" height="26"><font face="Arial, Helvetica, sans-serif"><img src="/Images/clearpixel.gif" width="1" height="1"><b><font face="Arial, Helvetica, sans-serif"><a href="/TeamManagers/BFC%20Blackhawks/BFC_search.htm">LV
        BFC Blackhawks</a></font></b></font>< /td>
    </tr>
    <tr>
      <td width="154" valign="top" height="28"><b><font face="Arial, Helvetica, sans-serif"><a href="/TeamManagers/FatBoys/FatBoys_search.htm">Fat
        Boys</a></font></b></td>
      <td width="160" valign="top" height="28"> <p><b><font face="Arial, Helvetica, sans-serif"><a href="/TeamManagers/NSIndians/NSIndians_search.htm">Squam ish
          Nation United</a></font></b></p></td>
      <td width="148" valign="top" height="28"><b><font face="Arial, Helvetica, sans-serif"><b><font face="Arial, Helvetica, sans-serif"><b><font face="Arial, Helvetica, sans-serif"><a href="/TeamManagers/NSYoungGuns/NSYoungGuns_search.htm">N orth
        Shore Young Guns</a></font></b></font></b> </font></b></td>
    </tr>
    <tr>
      <td width="154" valign="top" height="29"><b><font face="Arial, Helvetica, sans-serif"><a href="/TeamManagers/LEI/LEI_search.htm">LEIFC</a>&l t;/font></b></td>
      <td width="160" valign="top" height="29"><b><font face="Arial, Helvetica, sans-serif"><a href="/TeamManagers/UFK/UFK_search.htm">UFK
        United</a></font></b></td>
      <td width="148" valign="top" height="29"><b><font face="Arial, Helvetica, sans-serif"><b><font face="Arial, Helvetica, sans-serif"><a href="/TeamManagers/Saints/Saints_search.htm">Northland
        Saints</a></font></b></font></b&g t;</td>
    </tr>
    <tr>
      <td width="160" height="27" valign="top"><b><font face="Arial, Helvetica, sans-serif"><a href="/TeamManagers/Lightning/Lightning_search.htm">Light ning</a></font></b></td>
      <td width="160" height="27" valign="top"><b><font face="Arial, Helvetica, sans-serif"><a href="/holding/UFK/UFK_search.htm">
        </a><a href="/TeamManagers/Warriors/Warriors_search.htm">Warrior s</a></font></b></td>
      <td width="148" height="29" valign="top"><b><font face="Arial, Helvetica, sans-serif"><b><font face="Arial, Helvetica, sans-serif"><a href="/TeamManagers/SoccerCityFC/SoccerCityFC_search.htm"> ;Soccer
        City FC</a></font></b> </font></b></td>
    </tr>
    <tr>
      <td width="154" valign="top" height="27"> <p><b><font face="Arial, Helvetica, sans-serif"><a href="/TeamManagers/QCHawks/QCHawks_search.htm">Q.C.
          Hawks</a></font></b></p></td>
      <td width="160" valign="top" height="27">&nbsp;</td>
      <td width="148" valign="top" height="27"> <p><b><font face="Arial, Helvetica, sans-serif"><a href="/holding/Cougars/Cougars_search.htm">
          </a></font></b></p></td>
    </tr>
    <tr>
      <td width="154" valign="top" height="32"><b><font face="Arial, Helvetica, sans-serif"><a href="/TeamManagers/OdlumBrownFC/OdlumBrownFC_search.htm"> ;Odlum
        Brown </a></font></b></td>
      <td width="160" valign="top" height="32">&nbsp;</td>
      <td width="148" valign="top" height="32"><b><font face="Arial, Helvetica, sans-serif"><b><font face="Arial, Helvetica, sans-serif"></font></b></font></b> ;</td>
    </tr>
    <tr valign="top">
      <td width="154" height="27"><b><font face="Arial, Helvetica, sans-serif"><a href="/TeamManagers/WestwardFC/WestwardFC_search.htm">Wes tward
        Utd F.C.</a></font></b></td>
      <td width="160" height="27">&nbsp;</td>
      <td width="148" height="27"><b><font face="Arial, Helvetica, sans-serif"></font></b></td>
    </tr>
  </table>
  <table width="655" border="1" name="teambios" bgcolor="#FFFFFF" bordercolorlight="#FFFFFF" bordercolordark="#FFFFFF" height="289" bordercolor="#000000">
    <tr bordercolor="#006600">
      <td bgcolor="#006600" height="29" colspan="2"> <p><b><font face="Arial, Helvetica, sans-serif" color="#FFFFFF">Over
          30's Division A</font></b></p></td>
      <td bgcolor="#006600" width="349" height="29" colspan="2"> <p><b><font face="Arial, Helvetica, sans-serif" color="#FFFFFF">Over
          30's Division B</font></b></p></td>
    </tr>
    <tr>
      <td height="15" colspan="2"><font face="Arial, Helvetica, sans-serif"><img src="/Images/clearpixel.gif" width="1" height="1"></font></td>
      <td width="349" height="15" colspan="2"><font face="Arial, Helvetica, sans-serif"><img src="/Images/clearpixel.gif" width="1" height="1"></font></td>
    </tr>
    <tr>
      <td valign="top" colspan="2" height="31"><b><font face="Arial, Helvetica, sans-serif"><a href="/TeamManagers/BBear/BBear_search.htm">Villa
        Roma FC</a></font></b></td>
      <td width="349" valign="top" colspan="2" height="31"><b><font face="Arial, Helvetica, sans-serif"><a href="/TeamManagers/Comrades/Comrades_search.htm">Comrade s</a></font></b></td>
    </tr>
    <tr>
      <td valign="top" colspan="2" height="30"><b><font face="Arial, Helvetica, sans-serif"><a href="/TeamManagers/JESpurs/JESpurs_search.htm">Maplewood
        Spurs</a></font></b></td>
      <td width="349" valign="top" colspan="2" height="31"><b><font face="Arial, Helvetica, sans-serif"><a href="/TeamManagers/NS%20Chiefs/NSChiefs_search.htm">NS
        Chiefs </a></font></b></td>
    </tr>
    <tr>
      <td height="29" valign="top" colspan="2"><b><font face="Arial, Helvetica, sans-serif"><a href="/TeamManagers/NSRangers/NSRangers_search.htm">N.S.
        Rangers</a></font></b></td>
      <td width="349" valign="top" colspan="2" height="30"><b><font face="Arial, Helvetica, sans-serif"><a href="/TeamManagers/SVikings/SVikings_search.htm">Screami ng
        Vikings </a></font></b></td>
    </tr>
    <tr>
      <td height="29" valign="top" colspan="2"><b><font face="Arial, Helvetica, sans-serif"><a href="/TeamManagers/RGullStrikers/RGullStrikers_search.htm"& gt;Rusty
        Gull Strikers</a></font></b></td>
      <td width="349" height="29" valign="top" colspan="2"><b><font face="Arial, Helvetica, sans-serif"><a href="/TeamManagers/Spareboy/Spareboy_search.htm">Sparebo y</a></font></b></td>
    </tr>
    <tr>
      <td colspan="2" valign="top" height="32"> <p><b><font face="Arial, Helvetica, sans-serif"><a href="/TeamManagers/Shysters/Shysters_search.htm">Shyster s</a></font></b></p></td>
      <td colspan="2" valign="top" height="32" width="349"> <p><b><font face="Arial, Helvetica, sans-serif"><a href="/TeamManagers/Titans/Titans_search.htm">Titans</ a></font></b></p></td>
    </tr>
    <tr>
      <td valign="top" colspan="2" height="30"><b><font face="Arial, Helvetica, sans-serif"><a href="/TeamManagers/Wanderers/Wanderers_search.htm">Wande rers</a></font></b></td>
      <td width="349" valign="top" colspan="2" height="30"><b><font face="Arial, Helvetica, sans-serif"><a href="/TeamManagers/VeniceFC/VeniceFC_search.htm">Venice
        F.C.</a></font></b></td>
    </tr>
    <tr valign="top">
      <td height="30" colspan="2">&nbsp;</td>
      <td width="349" height="30" colspan="2">&nbsp;</td>
    </tr>
  </table>
  <h1>Suspended Player Information</h1>
  <table width="650" border="0" height="71">
    <tr>
      <td width="157" height="45">&nbsp;</td>
      <td width="148" height="45">&nbsp;</td>
      <td width="171" height="45">&nbsp;</td>
      <td width="157" height="45">&nbsp;</td>
    </tr>
    <tr>
      <td width="157" height="30">&nbsp;</td>
      <td width="148" height="30">&nbsp;</td>
      <td width="171" height="30">&nbsp;</td>
      <td width="157" height="30">&nbsp;</td>
    </tr>
    <tr>
      <td width="157" height="30">&nbsp;</td>
      <td width="148" height="30">&nbsp;</td>
      <td width="171" height="30">&nbsp;</td>
      <td width="157" height="30">&nbsp;</td>
    </tr>
    <tr>
      <td width="157" height="30">&nbsp;</td>
      <td width="148" height="30">&nbsp;</td>
      <td width="171" height="30">&nbsp;</td>
      <td width="157" height="30">&nbsp;</td>
    </tr>
    <tr>
      <td width="157" height="30">&nbsp;</td>
      <td width="148" height="30">&nbsp;</td>
      <td width="171" height="30">&nbsp;</td>
      <td width="157" height="30">&nbsp;</td>
    </tr>
    <tr>
      <td width="157" height="30">&nbsp;</td>
      <td width="148" height="30">&nbsp;</td>
      <td width="171" height="30">&nbsp;</td>
      <td width="157" height="30">&nbsp;</td>
    </tr>
    <tr>
      <td width="157" height="30">&nbsp;</td>
      <td width="148" height="30">&nbsp;</td>
      <td width="171" height="30">&nbsp;</td>
      <td width="157" height="30">&nbsp;</td>
    </tr>
    <tr>
      <td width="157" height="30">&nbsp;</td>
      <td width="148" height="30">&nbsp;</td>
      <td width="171" height="30">&nbsp;</td>
      <td width="157" height="30">&nbsp;</td>
    </tr>
    <tr>
      <td width="157" height="30">&nbsp;</td>
      <td width="148" height="30">&nbsp;</td>
      <td width="171" height="30">&nbsp;</td>
      <td width="157" height="30">&nbsp;</td>
    </tr>
    <tr>
      <td width="157" height="30">&nbsp;</td>
      <td width="148" height="30">&nbsp;</td>
      <td width="171" height="30">&nbsp;</td>
      <td width="157" height="30">&nbsp;</td>
    </tr>
    <tr>
      <td width="157" height="30">&nbsp;</td>
      <td width="148" height="30">&nbsp;</td>
      <td width="171" height="30">&nbsp;</td>
      <td width="157" height="30">&nbsp;</td>
    </tr>
    <tr>
      <td width="157" height="30">&nbsp;</td>
      <td width="148" height="30">&nbsp;</td>
      <td width="171" height="30">&nbsp;</td>
      <td width="157" height="30">&nbsp;</td>
    </tr>
  </table>
  <p>&nbsp;</p>
</div>
<p><img src="/Images/ateammanag.png" width="235" height="46"><img src="/Images/MILLERS5.gif" width="410" height="53"></p>
<p><img src="/Images/Millersmenu5.gif" width="90" height="25">
<p>
<p><a href="/index.html"><img src="/Images/buttonhome.gif" width="93" height="20" border="0"></a></p>
<p><a href="/newLeagueInfo.html"><img src="/Images/button1.gif" width="93" height="29" border="0"></a></p>
<p><a href="/Schedule/SchedulesMain.asp"><img src="/Images/button2.gif" width="93" height="20" border="0"></a></p>
<p><a href="/newFields.html"><img src="/Images/button5.gif" width="93" height="29" border="0"></a></p>
<p><a href="/newTeamContacts.html"><img src="/Images/button6.gif" width="93" height="29" border="0"></a></p>
<p><a href="/newTeamInfo.html"><img src="/Images/button7.gif" width="93" height="29" border="0"></a></p>
<p><a href="/TeamRosters/newTeamRoster.html"><img src="/Images/teamrosterbtn.png" width="93" height="29" border="0"></a></p>
<p><a href="/newStandings.html"><img src="/Images/button3.gif" width="93" height="20" border="0"></a></p>
<p><a href="/Stats/stats_input.asp"><img src="/Images/playerstatbutton.png" width="93" height="29" border="0"></a></p>
<p><a href="/newTeammangers.html"><img src="/Images/Managerbutton.png" width="93" height="29" border="0"></a></p>
<p><a href="/newAdministrators.html"><img src="/Images/adminbutton.png" width="93" height="29" border="0"></a></p>
<p><a href="/newRefs.html"><img src="/Images/refereebutton.png" width="93" height="29" border="0"></a></p>
<p><a href="/newLinks.html"><img src="/Images/soccerlinks.gif" width="86" height="25" border="0"></a></p>
<p>&nbsp;</p>
<p>&nbsp;</p>
</body>
</html>

FYI:

The articles you references were read over by me like 3 hours ago... way passed that and prob. in deeper sh*t than i was since im trying everything possible without knowing the true reason this is not working.

ok, here is what is going on

you are password protecting an ".asp" page that requires querystring info to run correctly   (example - "somepage.asp?ID=3"")

that is something I never intended anyone to do.. while it does handle and repass the querystring info along during successful login it does not re-pass that info during a failed login as you have found out

this is all by design.. the only reason the system re-passes the querystring info at all is because I wanted to make it smart for the sake of the remember me/cookie feature.. so if someone was using that and bookmarked a page deep in your site with querstring info...then when they went back to that bookmark they would get authenticated and still see the page as intended with the querystring info in tact

it was a nice feature never intended to handle any situations other than what I just described...

now...
notice the url in the browser after failing a login.. then logging in successfully.. it is missing the querystring info

that more than anything is what is going on..  browser caching can cause some confusion when dealing with this because the browser likes to return you to the page minus the querstring info... when that happens a simple browser refresh at that time may very well solve the problem and then you see the page you are supposed to see...

To avoid all of this...

One solution to this is to always start people logging in to an ".asp" page that has no querystring info. That way this won't happen. Once they are logged in you can then offer them links to the pages they need to go to. (you of course still want to password protect those pages)

Another solution is to log them into a page with no querystring info and then do a response.redirect to the page with quersytring info.. thus accomplishing the same thing but without the possibility of the issue because of a failed login.

Another solutions is to do checks in your asp page for missing querstring info.. and if it isn't there do something about it like send them somewhere else.. or display a message about there being an error... etc etc

So,basically you don't want to tell people to login into such and such page with querstring info... and providing a username and password..... You can do it but like you found out it can cause an error if they mess up logging in the 1st time. The system just was not designed to handle that. There are complex reasons for that involving security that would just take me too long to explain.

I hope this makes some sense to you.. it is very hard to try and explain

Thank you so so much! I went to the admin area and changed the email component from CDOSYS (using remote server) to CDOSYS (using port 25 forwarding) and all is working great now!

Again, thanks!

yes, there is upgrade pricing
http://www.aspprotect.com/purchase_v7_upgrade_pricing.asp

and upgrade instructions here in the forums

if you install it in the same directory structure you wont have to make any changes to the pages in your site you have already protected.. because the code to protect a page will be the same

now, anytime you upgrade an application like this there is going to be a lot of work involved especially when there have been so many changes
http://support.cjwsoft.com/code/moreinfo173-1.htm
whether or not you upgrade is up to you

Like I said you can make version 6 work with CDOSYS and a remote email server. You just need to do some research on CDOSYS code and spend the time needed to make the code use it. I however am not going to spend time detailing all of that when I created a new version that does it.

here is the answer
http://www.iisanswers.com/IIS51.htm

CDONTS

CDONTS (Colloaborative Data Objects for NT Server) is a feature of NT and W2K that allows you to easily send mail from a web page using the SMTP server. The simplicity of the code and widespread availability of free scripts employing CDONTS has resulted in  CDONTS being widely adopted.

Quite a surprise to many administrators to discover that IIS 5.1 does not support CDONTS as do IIS 4.0 and IIS 5.0. This has been replaced by CDOSYS which appears to have more capability, but it is not quite as simple to use. See: http://support.microsoft.com/default.aspx?scid=kb;EN-US;q195 683 for more details.

You can enable CDONTS on XP by copying CDONTS.DLL from a Windows 2000 installation to your XP system’s Windows\System32 folder (default name). Then at command prompt Windows\System32 run REGSRV32 CDONTS.DLL. The extent of my testing on this was to deliver one piece of mail, so this should not be construed as a complete analysis of the effectiveness of this technique.

(FREE) Nov 23 2005 Update Files

If you purchased ASPProtect Version 7.x before Nov 23 2005 then you can download these Update Files.

(These are non-critical updates.. only update if you want the described changes below)

These updates do the following..

• Make the Tabs in the Admin area move up and down as you navigate around so they look more like tabs used in a file cabinet.
  
• Updates the import/export process so the tab delimited text files created now store the passwords in plain text instead of encrypted. I have been thinking about this one for a while now and I think it is better this way as it was confusing a lot of people. If can also kill the whole process if by chance the encrypted output of a password contains a line break of sorts. There is no way to deal with that scenario so this is way the import/export process is going to work from now on. This also means you should be VERY carfeful about leaving export files lying around as they will have the passwords in them.
  
• Updates the "expected_paths.asp" in the data folder because the paths it was generating had an extra "data/" in it.
  
• Updates the users page so it will not show the import/export link if you have not entered a path for the export files in the settings.
  
• Adds an Activity Tab if using the Activity Tracking features instead of the links it used to put on the users page that most people didn't see.

To install these just copy them in over the old files.

Now of course back up your existing files so can revert back if there is a problem or you do not like the changes. If you made any custom changes to any of your pages use your head and realize that copying these in over your existing files will overide any custom changes you made. (that is your business, I am just warning you)

2005-11-23_163025_ASPProtect_v7_11-23-2005_update.zip

That being said, ASPIN has a lot of problems with anonymous reviews so if you can please sign up with them and post an Authentic review as they carry a lot more weight. Authentic reviews involve responding to their validation email so when doing so use a real email address that you regularly check.

And sorry I made you use the forums, but as you can see this is exactly the sort of thread that will help someone else later on.. and that is why I require people to use the forums now instead of just email support. That way the conversations are out in the open where they can help everyone instead of buried in my outlook where no one will ever see them. And of course if information is sensitive you can always do a Private Message as you did earlier.

It is all about creating a knowlegebase of valuable information.

You can't unless you plan on editiing and custimizing the code.

The application is only designed to have one kind of admin and that kind has full access to the admin area.

You can of course give any user access to stats for their banners via the bannerstats page.

That is how it works. There are no other levels of admin access.

You really can not do something like that. You can not use client side code to change a server side session variable.

To make changes server side a form must be submitted or a link clicked on to another page. Then you can do whatever you like but you cant have an onlci event update a session variable like that.

Though I am not sure of exactly what you are trying to do I think you'll need to go about things a little differently.