Blog Entry: 3/25/2006 1:48:38 PM
Different Versions of the Access Database
Below is a zip file with many alternate versions of the Access Database provided to help with installation and general usage.
2005-02-20_155310_ASPProtect_Database_Versions.zip
ASPProtect.mdb is saved as an Access97 database (password "temp")
ASPProtect_access2000.mdb is saved as and Access 2000 database (password "temp")
ASPProtect_access2000.mdb is saved as and Access 2002-2003 database (password "temp")
ASPProtect_access2002_no_password.mdb is saved as and Access 2002-2003 database with no password set on it
Try to use the newest version as server odbc drivers sometimes have to use the newest version for everything to work correctly. No password version is provided because sometimes there are issues connecting to a database with a password set on it.
Default username for access databases is of course "admin" but you really dont use that except in the data connection information.
cwilliams38403.6840277778, Chris:
The string is being saved and I get a .wav ring sound to confirm. I have tried editing in "notepad" and then running the "data/show_path_info.asp" file after with the same results.
Ken
,
Chris.
After I had you install ASPProtect I added the ASP protecting code to the top of my home page:
<%@ LANGUAGE="VBSCRIPT" %>
<% CHECKFOR = "1" %>
<!--#INCLUDE FILE="../../check_user_inc.asp"-->
Then I made my index.html page my login page buy using the script "Login form on a non protected page" on that I changed <form method="POST" action="memberarea.asp"> to <form method="POST" action="home.html">.
When I try to log on to that page I get en error page HTTP Error 405 - The HTTP verb used to access this page is not allowed. Internet Information Services (IIS). I checked with my hosting company GoDaddy.com and they informed me that due to the fact that they do not have ASPProtect instaled on there systems they can not support it. In recent conversations you told me that you have customers that do use godaddy and you products.
Can you please tell me what I can do to get this working?
Thank you for your time and help.
, What am i supposed to do now... i do have another member server that is not a domain controller-
However, i have like 5 websites running on this domain controller already. I have thought about this before how its a HUGE security risk but it will take too long to configure everything on the other computer :(
, The links to view that info are on the main users screen of the admin area.
Down below...
They wont show up unless you have that stuff enabled in the settings screen as well.
, I dont know about the unspecified errors. I really need more detailed information. (Since it has been working fine for quite a long time you might want to consider installaing the application from scracth again and see if you still get errors)
As for the log in not persiting. Did you by chance turn off cookies in your browser ? They are required for forms based authentication to function. Otherwise, yes you would need to log in to each and every page as you moved around.
cwilliams38414.6054166667, Please Note : Users with the option pack a new feature called groups that is much more powerful than access levels.
More On Access Levels
Again, Examples of managing Access Levels are provided in the "multiple_access_levels" folder included in the root of the Password System. Look at the source code of the ASP pages in that folder with a text editor to see the working code.
Access Levels and how they work can be re-coded to work in many different ways. However, you have to be a good ASP developer to make changes to it. Here is some information on how they work by default and also info on an alternate scenario we have provided.
In the "check_user_inc.asp" that comes in the root of this system Access Levels works as follows.
Level 1 has Access to - Level 1
Level 2 has Access to - Level 1,2
Level 3 has Access to - Level 1,2,3
Level 4 has Access to - Level 1,2,3,4
Level 5 has Access to - Level 1,2,3,4,5
Level 6 has Access to - Level 1,2,3,4,5,6
Level 7 has Access to - Level 1,2,3,4,5,6,7
Level 8 has Access to - Level 1,2,3,4,5,6,7,8
ADMIN has Access to - Level 1,2,3,4,5,6,7,8,ADMIN
The "check_user_inc.asp" included in the "extras" directory is an example of changing the access level checking code
to work differently. In that "check_user_inc.asp" Access Levels works as follows.
Level 1 has Access to - Level 1
Level 2 has Access to - Level 2
Level 3 has Access to - Level 3
Level 4 has Access to - Level 4
Level 5 has Access to - Level 5
Level 6 has Access to - Level 6
Level 7 has Access to - Level 7
Level 8 has Access to - Level 8
ADMIN has Access to - Level 1,2,3,4,5,6,7,8,ADMIN
If you get creative you can create some interesting access level checking scenarios.
Here is some additional info..
If the access levels are too restrictive you can ignore them all together and create your own totally custom solutions.
Here is a quick rundown of some of the things you can do.
Ok... so if you want to be really specific about what each user can see and
can't .. here's an example of what you can do
Don't use the access levels before the include file..
Don't worry about what you set a user to in the admin area since the access levels won't be used.
Do something like this..
Every time a user logs in session variables are set that you can access at
any time.. thus allowing you to know who they are.
So you could do something like this...
<%@ LANGUAGE="VBSCRIPT" %>
<!--#INCLUDE FILE="check_user_inc.asp"-->
<%
If Session("USERNAME") = "bob1267" or Session("USERNAME") = "carl45" or Session("ADMIN") = "True" Then
Session("PASSWORDACCESS") = "Yes"
Else
Session("PASSWORDACCESS") = "No"
Response.Redirect(Request.ServerVariables("script_name"))
End If
%>
The following URL explains what Redirects are.
http://www.powerasp.com/content/code-snippets/redirects.asp
That would in effect create totally custom access levels.. but you would
have to do it manually for each user.
You can also do things like this after a person logs in
Show custom html to any specific user based on either their username or
access level ... like so
say there was a menu and a certain link should only show up to username
"paully67"
you could do something like this
<HTML>
<HEAD>
<TITLE></TITLE>
</HEAD>
<BODY>
<br>
<a href="main.asp">Home Page</a>
<%
If Session("USERNAME") = "paully67" Then
%>
<br>
<a href="paullys_page.asp">Pauls Stats Page</a>
<%
End If
%>
<br>
<a href="links.asp">Links Page</a>
</BODY>
</HTML>
Or you can show custom HTML or links based on Access Levels or any other info.
You can do just about anything with if-then statements and
using the built in vbscript functions..
Hopefully this info will help to give you some ideas...
Bottom line is you have to do some work within your site to make the Access Level system really come alive.
cwilliams38114.6506712963, Glad it worked
cwilliams38406.5549074074, Advertising ?? oh really.
It was named that because that way if you already have a login.aspx file for whatever reason it does not interfere which is a good thing. It has nothing to do with advertising.
Next off you never mentioned having an issue with it saying aspprotect in it. I am EXTREMELY clear about what I support and do not regarding ASPProtect.NET. If you are upset because I didn't tell you exactly what to edit and change in visual studio.net and hold your hand you are out of line. My god, I sent you to like the best and most detailed tutorial on how to setup and use the application with VS.NET that could ever exist. That took forever to put together. I even responded to your post on Christmas on a Sunday. I doubt too many companies would have responded on Christmas.
More importantly than that when you purchase code from CJWSoft you are purchasing digital source code and there are no refunds. Every single page in the CJWSoft family states that very cleary in the footer. I do not appretiate it when someone threatens a chargeback and as far as I am concerned anyone that does that is commiting a crime of theft. I also do not appretiate smart comments saying it's "obvious" etc etc
If you wanted to strike a nerve with me you did. If you want to commit a crime and be a thief that is your business as well. Obviously I can not stop that and the credit card company will take your side. I work very hard on the source code I sell and my policies on everything are VERY clear.
Advertising ??
Calling the credit card company ??
Obvious ??
nice, real nice
, Once you have the LANGUAGE = VBSCRIPT and Checkfor = 1 on your page,
you'll have it secured. I've got over 1600 pages secured in such a
manner, thanks to ASPProtect!
, To finalize this thread.. a target was added to the form by the customer by accident thus causing the situation, I am having severe trouble with the SQL database connection for ASPlisting (generic version).
I have used all of the suggested connection strings but still get error messages such as:
[DBNETLIB][ConnectionOpen (Connect()).]Specified SQL server not found.
I have set up the tables in the database, although the database existed already with many other tables in it as it costs me per database per month so one has to suffice with many tables in it.
I use SQL a fair amount on my site but have not suffered any probs like this yet.
Any advise or help would be useful.
, Not without changing a lot of code. If you didn't want encryption you really should have went with version 6. Encryption is a big new feature of Version 7 and it is inter-mixed with it the code in a lot of places.
As for doing the export and import you have to create a valid export file and then read through this very thread which explains how to import an export file with clear text passwords.
This is from the admin area regarding the text file format
The import/export file must be tab delimited with no text qualifiers. The 1st row containing field names and the following each being a new user. To create your own import file it must be in this exact format. To find out what field names and their order are simply create an export file using ASPProtect and take a look at it.
Generating an import file from your own database requires good knowlege and understanding of Access's Importing and Exporting functions. It is not something I cover as the process is different for everyone and not really very hard. , Christopher,
I have a follow-up to this question.
Is there a way to get the photo descriptions to save with actual spaces instead of the HTML space code all of the time?
I know that is does this if you hit Enter while typing a description, because it creates a 'br' tag. The main reason I am asking is because if the user does not enter a line break, the description is saved a single long string and the pic_window.asp page is generated with one long description which makes the page very wide.
I tried to get around this by changing the description style in pic_window.asp to reflect a value like 50% or 200 pixels, and I have tried putting it into a table with a fixed width, but there is no effect.
Thanks!
- Jason
, Chris, I'm having problems getting this to work. When I plug in the redirect URL and then try to load the web page, the Flash ad never loads successfully - just its black background in the 468 x 60 space. Here's an example of what I'm seeing:
http://www.innovationtools.com/Articles/ArticleHeadlines.asp
Just keep refreshing the page until the black rectangle appears. And here is the code I've loaded for this flash ad:
<OBJECT classid="clsid:D27CDB6E-AE6D-11cf-96B8-444553540000"
codebase=" http://active.macromedia.com/flash2/cabs/swflash.cab#version =4,0,0,0" ID=banner WIDTH="468" HEIGHT="60">
<PARAM NAME=movie VALUE=" http://www.innovationtools.com/aspbanner/aspbanner/banner_re direct.asp?Banner_ID=25">
<PARAM NAME=quality VALUE=high>
<PARAM NAME=bgcolor VALUE=#000000>
<embed src=" http://www.innovationtools.com/aspbanner/aspbanner/images/ba nners/mindmatters_innovation3.swf "
quality="high" bgcolor="#3CBDCD" WIDTH="468" HEIGHT="60" TYPE="application/x-shockwave-flash" PLUGINSPAGE=" http://www.macromedia.com/shockwave/download/index.cgi?P1_Pr od_Version=ShockwaveFlash">
</OBJECT>
What am I doing wrong? By the way, I'm using the standard version of ASPBanner. Not sure of the version, but it dates from about 2002.
, Just want to be able to log users in from the home page via a username and password box somewhere say on the left hand side with a login button. Like most sites have.... i cant seem to figure out how to do that with the software.
My other question is..Is there a way to incorporate this software into an event registry? What i mean is this:
Say a company is having a pool party, BBQ, and tennis lessons (just examples)
When a user registers with aspprotect i want him/her to have the option to register for one of the events. Also, I as the admin, would like to be able to view who and how many registered for each event... Here is what i am talking about (and it has a payment option to charge for an event which would be PERFECT if you could do) http://www.cescripts.com/demo/registration/view-events.php
Please let me know if there is a way to add this option or create...
, Thanks Chris.
Your solution worked!
, Hello,
If you see that when doing a view source then that code is not running.
I will need to go into your site and look as something is very wrong on a low level and I have no more ideas.
PM or email me the info and I will figure out what is going on.
I'll need ftp or frontpage access to the site.
I'll also need to know the urls for the asprotect system as well as the page you are trying to protect.
CJW
cwilliams38229.7996064815, Thank you.... yes it does
Is there a limit in the number of Zones you can have in the database.
thanking you
, I'm using ASPimage and have the maximum width set to 320 in the settings. Also using SAFileUP ver. 4.0.
Files upload okay, and the script displays a confirmation that the image was resized to 320, but the actual image uploaded is displaying full size rather than reduced to 320.
Also, the thumbnails are not displayed in the Picture Manager. Would indicated ASPImage is not working or the script is not communicating with it.
Suggestions?
lancem38326.9070486111, You cant do it from initial lohin, but you can do it from the time of registration signup.
http://support.cjwsoft.com/code/moreinfo170-1.htm
As for the emailing thing it is most likely an email sending issue more than a code problem. For example spam filters incorrectly grabiing those emails or something of that nature..
Best thing to do is try different things for emailing options until you get something that works. I suggest using CDOSYS with a real email server and using a valid email account for yourself at that email domain. SMTP authentication if necessary. This will ensure the emails sent have valid MX records and dont get treated as spam.
, 1st off.. you appear to have some strange things going on with that domain. Looks like you have a frameset and are loading another domain in it which is always confuding especially if you are running the site off your home computer or something... I am not sure
That aside..
If I go to
http://www.bones.myftpsite.net/rfamilystuff/default.asp
and click on the "familiy" category
then right click on a broken image.. look at properties
Your linking the image to your localhost
see
http://localhost/rfamilystuff/pictures/Pic_3_1_thumb.jpg
and that is wrong, just like I said above
Nobody running the site off any computer but your development machine is going to see those pictures because the url isnt valid for them
My guess is in the settings you have the "PictureURL" set to
http://localhost/rfamilystuff/pictures
when it should be
http://www.bones.myftpsite.net/rfamilystuff/pictures
Good luck with this.. I am going to the bar.
If you need more help I probably will not be available until Monday.
cwilliams38394.7688773148, ... in addition it is a virtual include not a file. I just tried to use file instead of virtual and then the ../ includes worked on the asp pages.
This is strange because they used to work like that on the 2000 server I had these sites running on.
, I believe what happened is we received the older copy of ASP Banner iwht our purchase of ASP Protect and were notified of a free update to download aspbanner_unlimited_v8.2_feb_26_2005.zip which we did, and that's the one i recently put on our site.
Sounds from your reply that something technical is going on to the point where I will have to hire one of our Web consutants to dissect for us. We'll try again and track our issues and send another request for information when we can show you a specific example of what is happening. I'll be in touch.
, There are several pages on my website that a user may go to that are not protected (e.g. home page). If the user has indicated that they want to be saved on this computer (until they explicitly log off), and their 1st entry point is to an unprotected page, how do I determine whether they have logged in before, and extract the info from the cookie / session variables without forcing them to log in or making the entry page protected?
, That's excellent!
I did learn that parent paths were disabled on my test 2003 server...
But on the hosted server, it looks like parent paths are supported as I change the file location of the language file in the forum common.asp as such, and obviously moved the file as well:
from:
<!--#include file="language_files/language_file_inc.asp" -->
to:
<!--#include file="../language_file_inc.asp" -->
Everything seems to work fine and I thank you very much for you quick response!!!
Ok, time to buy...thanks again!
- Jason
, I've downloaded this neat little app, but I'm having troubles understanding what I should be using. Cassinni or IIS, can you help? I've tried to look at the help, but it is very vague on what to use in each situation.
Any help is appreciated.
Cheers
, Also, I found this page which specifically talks about hidden IPN form values to change currencies
https://www.paypal.com/us/cgi-bin/webscr?cmd=p/acc/ipn-info
| mc_currency |
For payment IPNs, this is the currency of the payment. For non-payment subscription IPNs, this is the currency of the subscription. |
| "USD" |
The currency of the payment is U.S. Dollars. |
| "CAD" |
The currency of the payment is Canadian Dollars. |
| "GBP" |
The currency of the payment is Pounds Sterling. |
| "EUR" |
The currency of the payment is Euros. |
| "JPY" |
The currency of the payment is Yen. |
cwilliams38459.9616087963, Thanks for that. The upload size is just as effective and possibly a better solution to maintain server space.
What about individual gallery permissions. So only 1 member can post in only 1 gallery. I have a forum of 500 plus members so if they want to add a gallery than setting a permission would be idea for each gallery.
, ya it should have uploaded that no problem...
what about something blocking the use of the filesystem object and causing these timeouts ?
Your not running anything like Norton Script Blocker are you ?
Its part of Norton Antivirus or Internet Security and causes all sorts of problems with ASP when it is running on a server. Especailly when using the filesystem object to deal with text files and when uploading via pure asp.
It could be the cause of the all these problems or something like it ?
It will cause a timeout like your getting and give no real reason why.
More info on that.
http://www.aspfaq.com/show.asp?id=2180, I am having an issue with the Thumbnailing process. My host does not support ASPImage so I have to use something called asp thumbnailer which is similar to ASPImage. I am trying to modify the Dundas upload to automatically reduce the images to create thumbnails. I ripped out the asp image code and replaced with the bottom. The main issue I believe is grabbing the image files. I am not sure how to name the actual image file that is already uploaded by the dundas upload. the code is below:
The peices in red are where the issue is I believe. What you see below is my attempt to identify the exact image and then rename it tthumbnail. My optimal solution would be to take the picture, resize it and rename it exactly what it was named before.
Any ideas
Thanks
<% Else %>
<%
Dim thumbObj
Set thumbObj = Server.CreateObject("ASPThumbnailer2.Thumbnail")
If thumbObj.LoadFromWeb("../pictures/" & Filename) Then
thumbObj.ThumbMaxDimension = 140
If thumbObj.CreateThumbnailToWeb("../pictures/Thumbnail.jpg") Then
Response.Write("Thumbnail successfully created.")
Else
Response.Write("There was an error creating the thumbnail.")
End If
Else
Response.Write("<p><hr><b>Unable to load the original image.</b><hr>")
End If
Set ConnClassified = Server.CreateObject("ADODB.Connection")
ConnClassified.Open ConnectionString
Set cmdTemp = Server.CreateObject("ADODB.Command")
Set CmdSetImageInfo = Server.CreateObject("ADODB.Recordset")
cmdTemp.CommandText = "UPDATE Ads SET Image" & PicNumber & "_Uploaded = 1, Image" & PicNumber & "_FileExtension = '" & FileExtension & "' WHERE (Ad_ID = " & Ad_ID & ")"
cmdTemp.CommandType = 1
Set cmdTemp.ActiveConnection = ConnClassified
CmdSetImageInfo.Open cmdTemp, , 1, 3
%>
, so, on control_pics.asp where you see
<% =TempDesc %>
you could try doing this instead
<% =Replace(TempDesc," ","") %>
, Larry,
I have a new computer up and running and am back on the Internet full time. I am here to help when you are ready to continue with this.
I went to your site to look around and "try it" like you mentioned but I can not really try anything as the admin username/password seems to be something other than the default
, ummm.. ok.. Then this doesnt make sense. On two out of the three machines I have in house here, the images do not show up. They only show up on the server machine. I am using the constant url on all three machines. www.rfamilystuff.com Does it show up on your?
, I have been told it does as I got about 5 people or so who upgraded but I have not used SQL 2005 yet. I'll order a copy., ok, well if you want to test on your own.... in the ipn.asp file for the subscription folder you will see this area of code used for testing
' Un-comment this section and give this directory proper permissions to enable logging to a text file
' Very helpful for troubleshooting
' Set ObjMyFile = CreateObject("Scripting.FileSystemObject")
' LogFileName = ("paypal.txt")
' 'Open Text File.. If doesn't exist create it and append to it .. If exists just append to it
' Set WriteMyData = ObjMyFile.OpenTextFile(Server.MapPath("paypal.txt"),8,True)
' RowHeaderString = ""
' RowHeaderString = RowHeaderString & OrderID & vbTab
' RowHeaderString = RowHeaderString & Custom & vbTab
' RowHeaderString = RowHeaderString & User_ID & vbTab
' RowHeaderString = RowHeaderString & subscr_id & vbTab
' RowHeaderString = RowHeaderString & txn_type & vbTab
' RowHeaderString = RowHeaderString & subscr_date & vbTab
' RowHeaderString = RowHeaderString & Access_level & vbTab
' RowHeaderString = RowHeaderString & Groups
' WriteMyData.WriteLine(RowHeaderString)
' WriteMyData.Close
now that folder will need modify permissions for the text file to be written to but this is a good way to test if the ipn.asp page ever gets hit by paypal.
ITS REAL IMPORTANT THAT THE TEST FILE CAN BE WRITTEN TO OR DOING THIS WILL JUST CAUSE MORE ISSUES
To ensure the text file can be written to and permissions are correct for that folder you can make a new .asp in there and run this to see if the text file writing works
Set ObjMyFile = CreateObject("Scripting.FileSystemObject")
LogFileName = ("paypal.txt")
'Open Text File.. If doesn't exist create it and append to it .. If exists just append to it
Set WriteMyData = ObjMyFile.OpenTextFile(Server.MapPath("paypal.txt"),8,True)
WriteMyData.WriteLine("the file was written to")
WriteMyData.Close
Now, you can even change the location of the text file to place that does have permissions if you like.
This is what I would do if I was in there... then I would make some test payments using 1 cent and another paypal account (your allowed 2)
and see what happens
it is always possible the subscription code may have a bug in it. The last time I tested I only tested the single payment folder which worked perfectly. If I have time in the next couple days I am going to test the subscription stuff again. If there is something wrong I can cure it quickly.
The two routines share a lot of code in common.
cwilliams38421.6488773148, again.. more custom code work would be required to handle it
, On second thought guys, it would must easier to change the code using modulus as follows:
<% If PicIndex mod 6 = 0 THEN %>
</tr>
<tr>
<% End If %>
This will end each row and create a new row after each 6th picture. It'll be must easier code to work with and change. This code must be placed in the PicIndex For Loop.
If you have any questions, JPortnoy@Checkernet.com
, Totally 100% depends on what you are doing.. you certainly can't be renaming any fields unless you plan on editing a lot of code that references them. Adding new fields is nothing to worry about.
Also, you really should post a question like this under the forum section for the application you are referring to as well as specify exactly what changes you are talking about. For example I don't even know what application you are referring to.
I sell about 8 applications., I have accessed the "get_me_in.asp" page and entered the password encryption key. Once I entered it, I was taken to the ASPProtect Admin Area Login. It does not give me the option to create a new user as is described in the general installation documentation. How do I access the program now?,
Timecard Entry: 3/25/2006 1:48:39 PM
Finished z93 events calendar., Setting up guestbook for Jason., returned some calls for Paul and appts, Reset Microcoms, Netservers, Total Controls, and Compaq's., Travel back from Rochester, traveled back to syracuse to meet with jeff and bob, Remington Museum - Checking all features of site (for 100th time) to make sure everything is working. Store and customer email confirmations working, image uploads working. No problems found., nysar presentation, Finshed it up, tech supervisor duties, helped techs, dial up issues (none) ask us a questions(none), voice mail (none), dsl contracts, radlog, callbacks, follow up issues, qlight, incoming calls, emails, open incidents.
good night and painted when had free time, teched phone calls, traveled back to lowville
total miles today.252, TI Comm Team Mtg, Submitwolf for TIMUSEUM
Ok..
I made up some keywords and descriptive tags..
I added them to ALL pages within the site.
Then I ran the submitwolf using the latest search engine script updates.
http://www.thousandislands.com/timuseum/submitwolf/timuseum.htm, Travel between offices (10 miles), did some "r and d" on the best solution for solving Seacomm's text file dilema (seacomm.org, non-billable), more callbacks, Meeting with Chris B and Compnay discussing the SofTMedia Division and it's goals over the next 3 months., BILLABLE install report system for thousand islands school, Attended the Creg meeting this morning, did some radlogs. helped a few people with simple connection problems, Switchboard, billing calls, call back charting, reconcile savings, went over things with Paul/got some receipts/ Staples order for George's office.Put away Lyngs order., working on new router trying to get Sangoma to work correctly and correct routing issues., Traveling to house to get ready to leave for Vermont, Worked on marketing plan for the wirless candidates- reviewed signed DSL contracts that may be eligable for DSL- contacted phil sprague of mass mutual by phone and email- wrote up quote for him, Wrote up quote for chris to give to the radio broadcast center- gave amy a quote for Cerow agency- contacted Mr. Holcombe about Wirless and DSL. review nortel list to creat wirelss marketing list, went over the logos for wireless with Jason and Chris, spoke to jenifer stevenson - realtor in Oburg looking for Centrex which is no longer available- she was promised it was available when she signed up for the MLS program sent out emails to Jeff about the Watertower anntenna and the Samaritan Antenna, Travel from Watertown to
Syracuse with Darrel C., Answered phones, change pricing on storefront for gold cup farms need to charge 55.00,
