Please Note : Users with the option pack a new feature called groups that is much more powerful than access levels.


More On Access Levels

Again, Examples of managing Access Levels are provided in the "multiple_access_levels" folder included in the root of the Password System. Look at the source code of the ASP pages in that folder with a text editor to see the working code.

Access Levels and how they work can be re-coded to work in many different ways. However, you have to be a good ASP developer to make changes to it. Here is some information on how they work by default and also info on an alternate scenario we have provided.

In the "check_user_inc.asp" that comes in the root of this system Access Levels works as follows.

Level 1 has Access to - Level 1
Level 2 has Access to - Level 1,2
Level 3 has Access to - Level 1,2,3
Level 4 has Access to - Level 1,2,3,4
Level 5 has Access to - Level 1,2,3,4,5
Level 6 has Access to - Level 1,2,3,4,5,6
Level 7 has Access to - Level 1,2,3,4,5,6,7
Level 8 has Access to - Level 1,2,3,4,5,6,7,8
ADMIN has Access to - Level 1,2,3,4,5,6,7,8,ADMIN

The "check_user_inc.asp" included in the "extras" directory is an example of changing the access level checking code
to work differently. In that "check_user_inc.asp" Access Levels works as follows.

Level 1 has Access to - Level 1
Level 2 has Access to - Level 2
Level 3 has Access to - Level 3
Level 4 has Access to - Level 4
Level 5 has Access to - Level 5
Level 6 has Access to - Level 6
Level 7 has Access to - Level 7
Level 8 has Access to - Level 8
ADMIN has Access to - Level 1,2,3,4,5,6,7,8,ADMIN

If you get creative you can create some interesting access level checking scenarios.

Here is some additional info..

If the access levels are too restrictive you can ignore them all together and create your own totally custom solutions.
Here is a quick rundown of some of the things you can do.

Ok... so if you want to be really specific about what each user can see and
can't .. here's an example of what you can do

Don't use the access levels before the include file..
Don't worry about what you set a user to in the admin area since the access levels won't be used.

Do something like this..

Every time a user logs in session variables are set that you can access at
any time.. thus allowing you to know who they are.

So you could do something like this...


<%@ LANGUAGE="VBSCRIPT" %>

<!--#INCLUDE FILE="check_user_inc.asp"-->

<%
If Session("USERNAME") = "bob1267" or Session("USERNAME") = "carl45" or Session("ADMIN") = "True" Then
Session("PASSWORDACCESS") = "Yes"
Else
Session("PASSWORDACCESS") = "No"
Response.Redirect(Request.ServerVariables("script_name"))
End If
%>

The following URL explains what Redirects are.
http://www.powerasp.com/content/code-snippets/redirects.asp

That would in effect create totally custom access levels.. but you would
have to do it manually for each user.

You can also do things like this after a person logs in

Show custom html to any specific user based on either their username or
access level ... like so

say there was a menu and a certain link should only show up to username
"paully67"

you could do something like this


<HTML>
<HEAD>
<TITLE></TITLE>
</HEAD>
<BODY>


<br>
<a href="main.asp">Home Page</a>
<%
If Session("USERNAME") = "paully67" Then
%>
<br>
<a href="paullys_page.asp">Pauls Stats Page</a>
<%
End If
%>
<br>
<a href="links.asp">Links Page</a>

</BODY>
</HTML>

Or you can show custom HTML or links based on Access Levels or any other info.

You can do just about anything with if-then statements and
using the built in vbscript functions..

Hopefully this info will help to give you some ideas...

Bottom line is you have to do some work within your site to make the Access Level system really come alive.

this error really does not mean anything specific

Your browser must support a standard called RFC 1867. Please check with your browser vendor for support of this standard"

If you get an error its real weird that the file is being uploaded.
Generally if you get an error during upload it is because of one of these 3 things

Invalid physical path specified

Unsupported upload method chosen

Permissions

See my article on XP and permissions
http://www.powerasp.com/content/new/windows_xp_pro_and_permi ssions.asp

many people dont do their permissions right on XP Pro and that article covers everything

probably.. better than what we are accomplishing here LOL

or if you like send me the import file and your encrpytion key and I will try it out here and see what happens

either way PM me any sensitive info if any

The only reason no one else asked this many questions is possibly because they didnt NEED the functions i am TRYING to do.

We offer tech support for installation of the base application purchased in it's native form.  In other words were not planning on spending weeks holding your hand and teaching you how to build your application or modify the one you bought. Not because anyone wants to make it hard on you but because there is a practically infinite number of things someone could be trying to do and the only way to give you the exact answer would pretty much involve either writing it for you or having a look at your code to see what the heck your doing. Sorry but my time isn’t cheap nor do I have a lot to spare. I already gave you my approach on what to do and what you should be looking at but obviously you’re not catching on. SO ONCE AGAIN, PLEASE LOOK AT THE SOURCE CODE AND DECIDE HOW YOU WANT TO HANDLE YOUR END OF THINGS BASED ON HOW THE APP DOES ITS THING. I really don’t know how I can be more clear that that. I don’t have a crystal ball that can tell me where you’re going with your own code, what the final requirements are... what field you want to add or remove for the database etc. There is a demo up that everyone can look at and play with so they can get a feel for how the things behave and look. It’s not my fault your naivety led you to believe you could do anything with it in ten seconds. I mean if I just add some wings to my car maybe it will fly, and if you just add a shopping cart and a few products maybe you can start your own Amazon.com with that software right? Sounds good to me…

It would take me longer to re-write YOUR code than it would to have LEARNED ASP.NET and made MY OWN.

Well thats one thing we both agree on, I bet it would take you a long time to rewrite the code when you dont know how to write it in the first place. By you own admission you dont know enough about what your doing to be messing with a .NET app at this point. Maybe you should take your own advice and LEARN SOMETHING ABOUT IT. What’s even worse is that application isnt even complicated, its 101 stuff honestly. One class, thats it! Your not looking at thousands and thousands of them that you will have to read and comprehend. If you can actually “read” the code we kept it lean and mean and to the point. Nothing strange or random, no references to a zillion things all sprinkled here and there. Its reads like a book if you know the language. That’s why developers buy these apps all the time. Not because they couldn’t write one themselves, but because they know their time is valuable as well and for $150 which is less than most get paid an hour they couldn’t be bothered. Furthermore we both spend a lot of time making sure these apps are "dumbed down" so that the average programmer without a lot of object oriented background can pick up the coding style tweak it if they need to. Some people do modify things to suite their needs and others are happy with our apps "as is".

Just to recap we already wasted two days yappin about your jacked up servers and after you went through THREE of them and finally got one working you said the code was working. Red lights started flashing in my office by the time you got to the second screwed up machine, but hey weird things happen so at that point I wasn’t 100% concerned. Technically we could have and possible should have cut you off there as the policy in place is pretty clear about us not being your tech support crew when it comes to getting your machine working properly (especially one we cant even look at). Go check those posts again both Chris and I were answering your questions and being as helpful as anyone could possibly expect.

Several more days have been spent answering questions about how to modify your application and again that’s not our responsibility and we don’t support modified versions of the software for all the reasons that should be obvious. No software company does and if I have to explain why that is well this conversation is beyond hope.

Bottom line is the responsibility to support that application ends the moment you get it running the way it was shipped. Were pretty damn decent about going above and beyond and a lot of the time we go into things we shouldn’t have to. If you have well thought out and specific questions by all means ask, this isn’t some sort of thanks for your money now get lost operation. CJWSoft has been around since the beginning of Microsoft’s entrance into the web application market. We have thousands and thousands of happy customers because we are developers and enjoy working with other developers along the way.

You’re not the first N0oB to show up, but you’re the first one I can think of that ever tried to tell us we didn’t write the apps we sell and essentially wanted to argue that we don’t know what were talking about. Meanwhile you should have been done with your thing days and days and days ago, not in here yapping off and showing your ignorance to the other developers that regularly browse these forums. You trying to tell me how CafePress works is a joke, I happened to have been part of the team that worked on the first few revisions of that site and again you really didn’t even understand what I was getting at in that last post. LINK TO LOGIN PAGE not link to every protected page on the site.

If you think I am pissed off at you, your wrong. I'm just irritated with the whining about this and that and rather than admit your over your head you come back with half baked remarks that only make sense to you. If you think you can google a few terms and come back here talking smack like you’re actually someone that knows what you’re talking about your just making a fool of yourself. You sound like a guy from China trying to tell me how to speak English... My advice is get a few books and start learning or try actually reading up and listening to the other bazillion knowledgeable developers out there that do a great job posting articles about the subject. You might just learn something and actually get your project finished before 2010 and when you do please come back and re-read your posts with "enlightened eyes" so you can see what a goofball you are for saying half of the things you have said. I am not in the mood to keep helping you get your project done step by step. I have huge projects of my own going on and if I thought you could actually provide a descent project specification I might offer to make the changes for you at a serious discount so you could go away and everyone would be happy. Problem is I dont get the feeling you could explain your way out of a paper bag let alone provide a group of programmer the techinal specs for your project.

Your best bet is to post a link to the start of this thread at www.AngryCoder.com I'm sure a  few of  people over there would be more than willing to give you a ton of usefull advice

Google 4GuysFromRolla… a great resource site with example, just dont come back here  telling me those guys/ladies posted things that dont work either.

Chris has written hundreds of articles on PowerASP, a great place to start looking as well… www.powerasp.com I've been spitting out code for longer than I can remeber and I still look thing up on this site because its LOADED with great info. That happens to be one of the very first ASP sites that went up on the net so lets just say he knows a bit or two about the subject.

I'm sure your frusturated but your pushing your luck seriously. 38 posts about this subject in a week and your over there hacking away on your virus infested WaReZ machine which isnt exactally the ideal development rig. I mean we provide the code and your supposed to provide at the least a very basic knowlege of what your doing and a production grade platform to test it out on. To me thats like buying a car and then asking how to drive it... then bugging the dealer to teach you and when you smash the thing complaining because no one told you that your not supposed to drive into a wall. I have the same policy as the dealer, show me something wrong with the car from the factory and we will fix it for you NO QUESTIONS at all with our appoligies, but really once you take it off the lot what you do with it is your deal and its not our responsability in the least.

I'm using the groups protect feature on my pages. None of them seem to close the session after clicking 'logoff'. I can tell because if I hit the back button and return to the group-protected page, hit 'refresh', the page refreshes, I'm not asked to log in again.

On the other hand, when I open a page that's protected by an access level and click 'logoff' (uses same logoff asp file to logoff), it seems to work fine - if I go back a page and refresh, it asks me to log in.

Just wondering - is anybody else having problems like this? Maybe I screwed something up in the few adjustments I made a while back. Any idea what it might be?

Hello,

You are correct regarding what you noticed.. ASPBanner only allows one person to administrate. If if did what you are asking about it would probably cost more.
(you get the ASP source so if you really wanted that you could always add it on your own fairly easily, but it all depends on your skills)

AS for keyword advertising and different ads based on certain pages ASPBanner does not get into that. The main reason being performance as I built ASPBanner primarily as a performance banner rotation solution.
http://support.cjwsoft.com/forum/forum_posts.asp?TID=144& ; ; ; ; ;PN=1

Like that thread says, you could make different zones for different conditions.. then surround the banner calling code with if else logic so a different banner zone was called under certain conditions.

Regardless, if you really need something that has every bell and whistle. BanManPro is where it is at.

Everything seems to work fine and I thank you very much for you quick response!!!

grrrrrr

As far as the users thing... my fault that was setup wrong in the settings of the admin login page.

but still dont have a solution for what im trying to do

I have a customer who is asking the following:

... could you make a link from it to our website and is there a way to see what traffic goes from us to them.  They are going to pay a commission on sales, however I need to be able to track who views their site...

Wishful thinking or could you add code to track their IP address and display in the report section?  Not sure that would be enough to satisfy this request.   Suggestions?

Thanks, Lance

UPDATE... on very very busy sites these methods have been reported to fail once in a while..  meaning .NET gets overloaded and instead of a banner its shows some error code.

its not the banner system .. its the .net engine and the calling method

I was actually able to do similar thing by allowing our dedicated search engine to access the site unchallanged.

<%
If Trim(Left(Request.ServerVariables("HTTP_USER_AGENT"),11)) = "MYPASSWORD" Then  
 SearchFlag = True
End If
 
If SearchFlag <> True Then
If Session("Access_Level") > CHECKFOR or Session("Access_Level") = "" Then 
%>
<!--#include virtual="/Auth/check_user_Code.asp" -->
<head>
<title>My Title</title>

</head>

<body>

My Protected stuff here

</body>

</html>

For this to work, the search engine must pass the PW to the web site. I just was not sure how to do the same thing with IPs. I will play with the code and see what happens. If it works, I will post it here to help others, if this is OK with forum rules.

Thanks,

Mo

like I said you made changes to something to cause that...

users/user_area.asp

runs fine the way it ships "it is one of things I tested earlier when I looked at your installation for you"

If you want I'll go look via FTP and tell you what is wrong

You really should check out the documentation regarding the config file before you go any farther.

If the server supports ASP.NET you do not have to spend any money to have real fast loading thumbnails.


Also, licenses of ASPImage only cost 69.95 and regardless any quality host supporting ASP should have one of the 3 supported resizing components installed or else you should consider a better host like www.alentus.com Places like that have good hosting prices and give you access to 3000.00 worth of 3rd party asp components.

When I enter www.vickerylightning.com/aspgallery/dataconn_inc.asp on the screen it says "Not a valid bookmark"

as far as that goes I have no idea.. I have never seen that message before but you are not suppose to run that page by itself regardless.. it is an include file not meant to run on its own

Terribly sorry, but we are not software-technical.  So can you please tell us exactly which folder the database would be in.

Thanks in advance.

Ok, I was not aware of this domain controller issue as I have never had a customer have their web server set up that way. It is not a common situation under commercial hosting, thats for sure.

http://support.microsoft.com/default.aspx?scid=kb;en-us;3151 58

seems it was some sort of bug that was corrected in the the 1.1 .NET framework involving no ASPNET account being created. seems there are lots of work arounds involving making new accounts and editing machine config files. I found quite a few google articles as well.

http://www.kbalertz.com/kb_315158.aspx

http://www.15seconds.com/issue/030115.htm

I actually should have said "the framework installed" not "asp.net"

So, in the meantime I am asking John Evans what he thinks about this and I am going to ask you what version of the framework you have installed ? ASP.NET Framework 2.0 is the newest and you definetely should be running at least version 1.1 and probably should upgrade to 2.0.

I do not know why other ASP.NET code you have works ok. Your other code may not be using the odbc driver dll the same way ASPProtect.NET does. There are lots of possible reasons. At the end of the day I think the basic issue here is still a low level configuration/permissions issue and it can be corrected from what I am reading. It just may require a bit of trial and error regarding local and domain accounts and editing the machine config files... etc etc

On second thought guys, it would must easier to change the code using modulus as follows:

<% If PicIndex mod 6 = 0 THEN %> 
      </tr>    
      <tr>
<% End If %>

This will end each row and create a new row after each 6th picture. It'll be must easier code to work with and change.  This code must be placed in the PicIndex For Loop.

If you have any questions, JPortnoy@Checkernet.com

I did a google search and it turns out that error very well might have to do with ASP trying to send an email and that process failing.

That tells me your emailing from the application is not working so it is probably not something you edited incorrectly.

see this article...

80040211
http://www.aspfaq.com/show.asp?id=2026

Emailing was working as when I did your installation (I think I did it months ago, didn't I) so it must be some incorrect changes to your email settings in the admin settings screen. Try sending an individual email to a user from the admin users screen and see if it works. My guess is you will get the same error and means your email sending options are no longer correct or valid.

If that is the case I would ask you if you changed them or possibly something changed as far as your email setup goes. Passwords ? EMail Server .. etc etc etc

humm.. their FAQ is interesting...it looks like some sort of .NET configuration issue regarding security policies like you mentioned

Thats one of the big problems with hosting .NET. Some hosting companies just do do some oddball things. ASPProtect.NET works under default conditions but when hosts go around locking things down to the max there is bound to be trouble. This is the 1st I have heard of this.

Now, ASPProtect.NET does use the "System.Data.OleDb" and "System.Data.Odbc" which your host says they block because they require full trust.

All I can really say at the moment is go with a hosting company like www.alentus.com or www.maximumasp.com that does not restrict your .NET abilities so much.

In the meantime I am going to ask John Evans what he thinks about this.

Ohhh...

I was thinking it worked like this; A user goes to that page and logs in.. and from there they can then browse the site and do what they want..

So in order for it to work i need to edit a page say... members.aspx (i assume it needs to be an asp.net page) and in the header put that protect code and when a user accesses it, it will prompt them for their un and pw and then if correct will allow them to view the page... and likewise if they are still logged in will be able to use the page?

If that is how to works as i mentioned above thats great...

I understand the redirect principle...but say i have a log in box on the main page... you know like most pages have a user log in on the left hand side... i wanted to do that. But i cant obviously protect the main home page or else normal users will not be able to view it without logging in or registering

Humm, I can see all those pages loading just fine at both domains so you got me pretty confused at this point as you just said they didnt load.

regardless, the data connection tests are failing with both of them.

so let me ask you again how are you setting permissions on the database folders?

Christopher,

Thank you again Sir. Your quick responses and helpful demeanor add greatly to the value of your software.

I just installed ASPProtect on my site. The instructions were definately on the target. Very very good instructions.

But... Isn't there always a but ???

I needed to setup my site with MS SQL and it is hosted so I don't have Enterprise Manager. I tried the web based Enterprise Manager and any other one I could find. But, I kept getting errors when trying to use the SQL Script.

I finally had to go back to my work where we do have the licenses and get an SQL Admin to use Enterprise Manager to run the script and it worked finally.

I don't know if this is a common problem ??? But, maybe you would want to look at the SQL Server script or make a different version that would work with the Web Based SQL manager.

Thanks

Gotcha.

Can you set an expiration date on a subscription?

Thanks,

Jess

Login failed for user 'aspgallery'.

Okay, shouldn't this be trying to use aspgalleryuser?

Lance

I hear ya.. problem is it just does not fit into the banner rotation logic.

I know it sounds like a simple thing, but it is not because ASPBanner does it's rotation logic in a totolly unique way that no other system I know of does. It basically does everything in memory.

I just don't see anyway to do add what you are asking about without totolly re-writing how it works. The system would have to rely totally on complex (SQL queries / stored procedures) to do the banner rotation like every other poorly performing system out there.

It's really hard to explain, but I just no way I see to add it to the high performance application variable banner logic.  If I changed the system to not use those application variables there would be a tremendous performance loss because the database would be doing about 90% more work than it currently does.

As I have said before sacrificing performance is just not something I am willing to do.
http://support.cjwsoft.com/code/moreinfo144-1.htm

I built ASPBanner for performance and speed and that has always been it's main intention.

I leave the bloated features to the competition. If I lose sales because of it that is just unfortunate. I want the best performing system. The system I can be proud of. The system that can handle millions of impressions per day under a MSSQL or MYSQL installation and not even flinch. That is what ASPBanner is all about.

The other thing is pricing. The price is kept low partically because the feature set is low.

Maybe someday there will be a version with more features and less performace. I really do not know. Right now it's just not something I plan on doing.

Banners no longer show up on my site ?

If banners were working fine and now they are just not showing up.
1st check to see that you are calling a valid zone with live banners in it.
If you are then most likely this it what hapened.

The web server must have crashed or lost power and now the application variables are in limbo/not working.

I have seen this happen a few times.

Basically the application variable system gets messed up because it was not shut down properlly.

The way to cure it are as follows.

Edit and save a banner in the system. Hopefully that gets things going again.

How do I recover or reset admin password used for the aspprotected pages. I have installed it months and months ago, but now can not recall the password. Any help appreciated, as I do not feel like installing it again.

We have a site that currently runs ASPProtect and would like to install a second instance of it.  The reason is that the current one is set up to manually authorize new users (it is for applying discounts to the Trade), but we want a second instance that will allow new users to register freely (this is for personalization). 

Has anyone set up such a goofy scenario themselves?  Is this even possible?

Thank you!

ASPProtect v7 comes with working example code of protecting a file download.

This comes with the system as an example folder with some files in it.

(some of the initial purchaser's of the system might not have that directory.. if that is the case please ask)

Here is how it works...

Basically we protect the file download by only allowing a logged in user to download it. The special ".asp" page we use the stream the file is password protected. It also hides the true location of the file so you can keep your files out of your web or keep them in a folder in your web that does not allow file browsing. Under this scenario even if someone looks at the html source they can not tell where the file really came from and they can only download if they are logged in and you offered them the link to the file.

For the file download protection examples to work you may need to edit some values
in the stream_download.asp file that are valid for your setup.

Look at the source. The values you can edit are commented.

Now, you also need to call a valid "download file name" from the download_link.asp file which is an example of how make a download link to the streamed download.

btw: who is this hosting company anyway ?

and did they give you access to a control panel that lets you manage your site ? sometimes that is where you manage those permissions if their interface supports it

lastly, are frontpage extensions installed in your web so it can be connected to via frontpage ?

humm

expiration dates in the aspprotect system are not used at all when using paypal subscriptions.. all date handling is done on their end actually

and they of course send notices from their system to the user regarding their subscription and when it renews,cancels, etc etc

so I am pretty sure any errors with that would have more to do with the info you used for the subscription setup and possibly any paypal settings associated with it

its hard to say at this point

The smart thing to do I think.. would be to sign up someone using another PayPal account (your allowed 2)... and while doing it be very careful about the subscription setup data.. and then as soon as the subscription is created review all the info in the paypal system and see if the length of the subscription / expiration.. etc etc in the paypal system info looks right..

at least then you can begin to troubleshoot what is going on...

This isn't going to help you much but here is the deal.

The 2checkout support in ASPProtect actually is not supposed to work with 2checkout subscriptions and therefore does not need to use an item number.

It is intended to be used for single payments only with 2checkout as explained in this thread.
http://support.cjwsoft.com/code/moreinfo212-1.htm

Single payments with 2checkout use their shopping cart which allows for dynamic payments without needing an item number.

I agree with you that 2checkout's interface is confusing. It's actually about the worst system I have ever seen. I could not make a 2Checkout subscription system because their system is just too limited and I couldn't make it work the way it really needed to.