Blog Entry: 3/25/2006 1:49:23 PM
ok, here's a test page:
http://www.galvinelectricity.org/download_link.asp
user: test
password: test
Our company just got new computers, so everyone here has the same set-up, all Dells, all about 3 weeks old, all Windows XP.
But I did realize after reading your post that I am using Firefox and everyone else was using IE. When I used IE, I was able to duplicate the error.
But, alas, I am unable to resolve it. Client will be using IE, no doubt.
, Your SQL statement to the database is the key.
You want to change the sortby hyperlink on that page so that it will in turn change the dynamic sql statement to sort the way you want
Find
?SORTBY=Date_Created
change it to
?SORTBY=Date_Created+ASC
or maybe
?SORTBY=Date_Created+DESC
One of them is the default anyway, but I cant remember which is which off hand so just try them both till you get the desired result
near the top you can also change the default sortby when thet page is loaded
SORTBY = Request("SORTBY")
If SORTBY = "" Then
SORTBY = "Name"
End If
there you would use a space though.. not a "+" sign when adding the ASC or DESC
The + sign is only used in the hyperlinks because it means a space for browsers that can't deal with spaces in links cwilliams38406.6011458333,
I do not have any programming knowledge and have what might be a simple question.
I am having a hard time getting my hosting company to modify the rights on the data folder. They state they support ASP and access databases however this is the response I got when I requested the modify permissions set for the internet guest account:
Were the rights changed on the data folder? No, we do not manage rights to folders.
My question to you is: Doesn't supporting asp require those permissions be set on the database folder or can asp (not just aspprotect) work without those rights modified?
Thanks , okay thanks, Windows 2000 server you said ? Just checking on that one ?, While attempting the database connection test, I receive the following error:
Server Error in '/' Application.
Security Exception
Description: The application attempted to perform an operation not allowed by the security policy. To grant this application the required permission please contact your system administrator or change the application's trust level in the configuration file.
Exception Details: System.Security.SecurityException: Security error.
Source Error:
An unhandled exception was generated during the execution of the current web request. Information regarding the origin and location of the exception can be identified using the exception stack trace below. |
Stack Trace:
[SecurityException: Security error.]
aspprotectnet.DBConnectTest.Page_Load(Object sender, EventArgs e) +0
System.Web.UI.Control.OnLoad(EventArgs e) +67
System.Web.UI.Control.LoadRecursive() +35
System.Web.UI.Page.ProcessRequestMain() +2112
System.Web.UI.Page.ProcessRequest() +218
System.Web.UI.Page.ProcessRequest(HttpContext context) +18
System.Web.CallHandlerExecutionStep.System.Web.HttpApplicati on+IExecutionStep.Execute() +179
System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously) +87
|
Version Information: Microsoft .NET Framework Version:1.1.4322.2300; ASP.NET Version:1.1.4322.2300
My guess is that this is an issue with the fact that I'm in a shared hosting environment that is restricted by CAS. Before I move to a dedicated server, I'd like to verify that this is the issue. I'd appreciate your input.
My host is 1and1 Internet. You may find this FAQ helpful: http://faq.1and1.com/scripting_languages_supported/_net/16.h tml.
, If you bought ASPBanner Unlimited Version 7.3 Before August/10/2004 this file needs to be updated.
It fixes a bug where the JavaScript method is not properlly closing an html Image tag. It can cause other hyperlinks on your web page to link to the same place the banner links to. This does not always happen but this fix is the way the code should be so it is best to update it.
Copy this file into your ASPBanner folder over the existing file of the same name.
2004-08-10_125304_injectbanner.zip cwilliams38209.5378009259, hello,
There is no built in option. You would have to add code to do that.
Its not difficult but custimization like that is not something I support. , [QUOTE=cwilliams]Humm, Did you make any changes to the code ?
Solid Black is not the default so it must have changed at least once.[/quote]
I did change the top_logo.gif and the associated link. That was on the default page not the Solid Black skin which is unchanged. After downloading/uploading the skins I tried changing it to one of the Beach skins and that's when it changed to Solid Black and has been stuck there ever since.
[quote]Otherwise it might be some sort of application variable problem.
I would make sure the web is and "application" in the IIS console.[/quote]I don't have access to the Microsoft IIS console as this is a host site. I can access the site's "control panel" but it does allow for those type of settings. Mostly just permissions, DSN entries, etc.
Thanks.
Al , Post a request in the "custom code work" forum.
Perhaps another customer will want to do the work or help you out with some code.
I am just too busy to do any custom work for quite a while.
, Humm, Did you change something in a bad way? Thats my guess.
I need more information on what is going on because by default it does not do that ?
The only possible way I can think of that could cause that is if you changed things around too much and the config_inc.asp file is getting run/included twice on that page your logging in to.
Also, when you sign in "where" ? What page ?
cwilliams38456.0906712963, Hi,
Actually that is not a feature at this time. Only the admin can add an image for user. If you look at the code for that you could adapt it for individual user use fairly easily provided you are decent with ASP.
That feature will probably be added some day, but there was no time to add it to into the current version and I can not give you a time on when it will be added. The complicated part is making some sort of approval process in case a user adds something undesirable and also limited file sizes which is hard to do without somesort of 3rd party uplaod component being involved. , Something very strange is happening. Some users can't see the classified ads in their browser. This is specific to the user's computer, and they can check other computers and see it fine.
In each case, the user is using windows explorer 6.0 browser with windows xp.
they can't see the ads listed on the ads page, but they can see the categories.
also, they can't see the place ad link on some pages.
Do you think that their browser is blocking the javascript for the mouseover message?
thanks. , You should email me and I can give you a copy of the original application., It is common when testing a site that this happens because of the nature of session variables.
Admins have access to EVERYTHING so it is very important when testing different user accounts that you specifically log out... and then close every single browser window before logging in as a different user. This is to ensure session info from the previous user does not overlap in any areas.
(The session variable for admin access being the main one)
Under normal circumstances a user would not log in with many different accounts on the same computer this this would only be a problem for a developer who is testing.
So make sure you go to the to log-off page and log off.. then close all browser windows.. then test another user.
If all this is not the case then something else is going on and I will need more information. I pretty much know the level checking code for ASPProtect Version 6 is correct as there has been no reason to change any of it in over a year. I would have heard reports of problems with it. , I am out of the server now and I have to get up early to help friends pour concrete in a huge building in 20-30 degree weather (woo hoo)
So I am going to take a break on this until later tommoro.
In the mean time try connecting to the access database with no password on it as well as the access 97 version that I put in the data folder... and see if it runs any faster...screens like the user screen should load fast... not after 15 seconds of waiting like they seem to be doing right now
If none of that helps which it probably wont I can set up the database for you here including the importing later tommoro when I am done pouring concrete
, Now that I think about you may very well be able to use the existing login_form_inc.asp page
the header and footer files for the users area may be ok as well.
probably the smart thing to do is try your old ones and compare them to the new and see if everything you need is there. If not add it by looking at the source html and comparing.
All other files should definetly be replaced with the new. ,
I am successfully using ASP protect on our site. I have one question:
The file Check_user_inc.asp looks a bit bland as I can't seem to use the sites Dreamweaver template. If I apply a template to this page, it is duplicated on other pages with this template.
How can I apply a template to this page?
Thanks
Clark
, Which page should a user see next after completing a Paypal transaction? Where do I set that?
Nick
, Am very interesting in purchasing ASPProtect, but am curious as to whether anyone has had success/failure with Network Solutions "standard windows hosting" solution? Thought I would ask just in case someone has had recent experience. thx, , You need to make sure you created the SQL database using the SQL scripts we provide and that no errors occur whatsoever. That is extremely important. You must use our SQL creation scripts.
Then, when you create the user you need to go back to that user and make sure you check the admin account and save that user again. (many times when setting up a system for someone I find myself forgetting that step and then I have to go back in and check the admin box for the user I created.)
And of course create the user from the ASPProtect admin area web interface. Do not add the user to the database manually because you will have no way to enter the password correct as it is encrypted. And do not change the encryption key after making the user/.
It would also be wise to check the SQL server database at every step to make sure the user info gets created and that all the field info looks correct for the most part.
You also want to be sure to specify SQL as the database type side the connection string info as the SQL directions go over
a remote sql server should not an issue.
thats really all I can think of right now , Humm, Did you make any changes to the code ?
Solid Black is not the default so it must have changed at least once.
Otherwise it might be some sort of application variable problem.
I would make sure the web is and "application" in the IIS console.
, I purchased and installed the full version ASPProtect 6.0 in Feb 05 (must have been just before 7.0 came out) and have been using CDONTS for email authorization during the registration process.
It was working fine for about three months. Now, after registering, the email authorization is NOT delivered to the new registrant. There are no error messages.It just doesn't arrive.
Any thoughts on the subject would be appreciated.
, Sorry, you cannot, that is how it works and that is how it has to work for reasons I am not going to try to explain as it is pretty technical. (it works the same way even when not using paypal and using email authentication... nearly every registration system out there does it that way under an email authentication scenario or a PayPal IPN thing.)
Basically, if you are concerned about it you need to periodically manually check for accounts that were never activated and delete them. Maybe when I get some time some day I will make a little interface to help find those and clean them up at once.
, we ended up resolving it...
the physical path being used was invalid, Just having the database with members does not protect the page. You need to add the appropriate code to every page you want to restrict access to.
You need to click on the Groups tab in Admin.
Click on Generate PW protection code.
Click on the basic button if you don't want to include levels or groups or choose a level or group(s) and click the appropriate button.
Paste the code that's generated into the top of an ASP page in code view.
Is that what you're looking for?
Michelle , My ISP uses ASPSmartMail. The email confirmation works except when I try to register an AOL user the server returns an error 500.
, I'm in the process of incorporating the ASP Gallery functionality within my current site design.
To begin this process I'm taking each page and I'm wrapping the ASP
Gallery code with my site design [essentially I'm allocating this
application the center of the page]. When I pull in the
default.asp into the site the contents of this page make the entire
page too wide. I can't see where ASP Gallery assigns itself a
width.
I'm working on this as a side project so I'm not terribly far along
since I need to change all of the font assignments within the system to
style assignments and it's a slow go.
Any insight would be a great help, there's a lot of re-write in what I'm doing and i don't want to affect functionality.
if you want to see the page and what happens -- http://www.iphotosite.com/galleryapp/default.asp
Don't go to www.iphotosite.com because I havent moved it to its own location yet.
, I was able to get it all figured out. Thanks a lot for your help, I really appreciate it. I ended up copying the database with the password to the directory and used the user/password connection code and it works great. I believe it was related to that but I cannot be sure. Thanks again! , Really awesome, thanks..
If possible please be sure to respond to the email they send so the review ends up authenticated
, Aspprotect issue
I need the ability to allow users to view url links on a page, based on the
group(s) they are a member of. If the user is the member of one group (group 1 in the following example) the code works fine.
<% If Session("GROUPS") = "*1*" then %> "view link #1"
However, if the user is a member of more than one group (let's say 1 & 5), I cannot make the code work.
I have tried various versions of wildcards, nothing seems to get me there.
I fairly new at ASP, and I am sure I'm missing something simple.
Any help would be appreciated.
, question 2 is answered best here
http://support.cjwsoft.com/code/code_info.asp?TID=319&KW =paypal
Ok, got it. Didn't know if there was something already set up for this that I was missing.
>>I should also mention that the paypals scenarios used in ASPProtect can not be tested using PayPal's sandbox.
Ok. Thanks.
>>Also test using two real PayPal accounts and on a live setup. (You'll allowed two paypal accounts) then you can log into the other and refund the transctions and of
course it makes sense to use low amount like 1 cent and what not.
Yeah, been messing around with
that. Got everything going except the return page which I can't
do until the site is live. 
>>Also, I'd love to see what you came up with with the
integration. I have been working on it here as well and took it in a
different direction as I plan to sell directions for it as an add-on
for aspprotect.
Ok. Will email you with a username and password for access to the site once it's live.
Sounds like a great add-on for ASPProtect!
Thanks!
Michelle
, Hi,
I have a question re ASP Protect, I have got it up and running on a dev server which also hosts a e-com engine (ASP / Access), when users check out they are presented with the e-com log in screen (which is sharing the same ASPP_User table). All's well and registration and editing user details is fine both in the Admin section and the front end of ASP and if I request an email reminder from the ecom scripts I get back the encrypted password.
I'm using <% = Session("Email") %> and <% = Session("Password") %> to populate the fields on the ecom log in page so users can click though and progress, the checkout process needs the username/password, all user info shows up ok, however, when I proceed with these credentials, it doesn't work, even though I know these to be correct and even without requesting a password reminder and using the one that gets me in everywhere else, I still can't get through? do I need some code re the crypto so the ecom can decode??
Any help would be great - I've been on it for about 10 hours, and checked through the posts here but can't fathom it out?
Thanks Craig , The Double DIM needs to be removed for this code to work properly.
<%
Dim BannerZone, BannerConnectionString, BannerDatabaseType, ConnBannerSystem
Dim CmdCheckUser, CmdGetConfiguration, App_Name, Config_SQL, BodyTag, BanDataConn
Dim CmdBannerTemp, CmdGetZones, ZoneString, ZoneArray, ZoneIndex, CmdUpdateWaiting
Dim CmdUpdateExpired, CmdRetrieveImpLimitedAds, CmdRetrieveImpressions
Dim CmdUpdateImpHit, CmdRetrieveAds, CycleBannerTotal, CycleList, NewCycleList
Dim Dim LoopBanner, CycleLoop, CycleListArray, CycleListArrayIndex, BannerCycleData
Dim Banner_Array, CurrentBanner, NewCycleListArray, Banner_Array2, LocationIndex
Dim Stop_Processing, Keep_Processing, CmdUpdateStats
%> , Thanks.
Nick , (User Search & Contact Mod) for ASPProtect Version 7.x
This will allow an individual user to search for other users as well as email or call them.
Notes: This is a down and dirty mod. The users page from the admin area was used as a starting point. I then edited it up real quick to be used as a user search. The way it is it shows the user email as a regular email link. If you want to set it up so emailing is done from the application and emails are not actually shown you will have to do some extra work. If you don't want phone numbers shown you will have to remove that column which is not very difficult.
Directions:
Back up your existing ASPProtect installation.
copy "search.asp" into your "users" folder
2006-03-10_143253_User_Search_Contact_Mod.zip
Direct your users there. They will have to be logged in to view the page.
WARNING: This has not been extensively tested for SQL Injection attacks.
I think it is perfectly fine the way it is by looking it over quickly, but use it at your own risk.
, how you connecting... lets see the connection string...
could be permissions related too.. if they are not set correctly
(always give them to the folder, never just the mdb file)
Some of this might help...
http://support.cjwsoft.com/code/moreinfo11-1.htm
http://support.cjwsoft.com/code/moreinfo136-1.htm
http://support.cjwsoft.com/code/moreinfo56-1.htm
you may want to download some of the different versions of the access database from the support area and try connecting to them as you may have older odbc drivers on the server
You may also want to try to get ASPTest from our website working before you go any further , the sql databse is the same.. the sql script is the same for any version
as the site says they are essentially the same app with very minor changes... if you are trying to share the same sql database with both it's not gonna happen because the table names are the same
truthfully:
that app runs nealry as well with msaccess as it does with sql so I wouldnt get too excited about running it withe sql. You will not see any benefits unless you have a ton of simultaneus (sp) users. cwilliams38312.1125115741, how's it going ?, you have to do it like I show above... your not specifying the field name to be searched in the instr function so what you just showed me will not do anything
You also should not have the > 0 stuff in the function because it is testing the result of the function.
You have to do it just like I showed ,
Timecard Entry: 3/25/2006 1:49:23 PM
visit with the lowville chamber droped off new color brochures., changing IP's on Total Controls and Comaq Comm Servers so they are now in one Supernet, channel 7 contnet for web site, USA Datanet, Going over email/homepage examples from sunashield.com., NEIGHBORHOOD SUPERMARKETS MAKE PAGES AND HEADER, Co-Ordinating through e-mail w/ Bell and Tim Badour about the DSL class., lunch, NYSAR Meetings, Follow up on mtg w/ Steve & Peggy., working on dsl at my house, Talked with Steve about some projects and about picking up my computer, Picked up mail and opened. Posted accounts, an. phone and customer inquiries., answering phone, taking sign ups, callbacks from voicemail, checked emails, cc report, cancellation of invoices, incident report. quality checked sign ups,, task force demo, watching the NOC, Comp Day, using 1 marble., niagra falls to sign contract , Trying to fix WEPTV's stream. Figuring out how to up the buffer on the streaming server. Checking e-mail. Checking voice mail. Checking and resetting open modems. Reading literature on the streaming server., Review reciprocal compensation law developments, had a user with network problems. general stuff, revise letter to customers, contact randy, made some updates on Help Pages, left for home to miss storm (as per Jim's permission), E-Mail, Voice-Mail, Setup, Emails, home.gisco.net - Getting server back up for ASP, enter timecards for 11-10, 11-11, 11-12, 11-15, Calling and talking with Bell Atlantic. Getting them to have someone dispatch ASAP. Ticket number 60247., Realtor very interested in iPix virtual tours. Did some research; asked Jeff and Chris W what we need to do from our end., Jackie and the bounced checks and servicelss accts,
| 
