Blog Entry: 3/25/2006 1:41:12 PM
I did the initial steps of downloading the sql scripts and running it in Query Analyser, tables created fine.
I can login for the first time. I exit from the browser and then I cannot login again. This happens for every user and admin.
I noticed that the values in the fields "Login_limit" and "Active" in the ASPP_Users table in the SQL changed to NULL and 0 when login and remained in those values after close the browser.
So iam just struck not able to log in. Pls advice.
, Why all the pages at the directory .../password_admin/ are very slow to open online? vaghelis38300.5280208333,
Just wanted to let you know that after modifying the remote host string in the email pages and getting the correct connection from my server, everything is running fine.
I hope you enjoyed your vacation.
thank you
adam , new version is still not finshed as of the end of the year... I am not going to release it until I feel it is ready., I do not what is going on at this time. It is not a known issue.
If is is not working it would seem to be a problem with the application variables on the server possibly and your web.
Perhaps try installing it on a local machine and see if it works for testing sake.
Also.. if your stuck with the black skin you could always just edit the information in the that skins folder to get the app looking the way you want.
That and the header and footer files that comes with the app are what control the look of the system.
cwilliams38294.5880208333, Hello cwilliams, and thank you for the fast reply.
Well, i have tryed with the ASPImage enabled and disabled, with the same results. I have used gifs and jpgs in the tests.
I have made some different test. Some with uploading the picture over an excisting picture and some as the first picture. Same results.
Everytime, it´s the 2nd thumbnail that won´t show itself, but the large picture will show, if you press the thumbnail.
I have tryed to look in the code (view_ad.asp), but as far as i can see, everything seems just fine ?!
I know, it wasn´t much help i could give you, but i think i have tryed all the possibilities.
Best regards, Erling
, sorry for the confusion. I completely forgot about that flag setup, and how different it is between the two databases., Please forgive any ignorance on my part.
Using the live demo, it seems that with the banner software my advertisers would only have access to reports, but no ability to upload banners, specify keyword triggers or zones, what have you. Is this correct?
The other thing I couldn't quite figure out, assuming I had a categorized directory on my site, is this system configurable to display different banners based on category? Perhaps through keyword triggers?
Thank you in advance for any assistance. , Hello,
I dont know exactly how you go about that and it would really depend on a lot of things like when the ad started and how yu wanted t handle that. it would involve custom coding though, not a change in the database. , I checked with our web hosting company and CDOSYS is installed and properly registered on the Windows 2003 Server our site resides on.
How do I go about changing the ASPProtect code to use CDOSYS?
Please advise.
, See, and that's what I thought. What's interesting is that if I call either an aspx page or an asp page in the iframe tag, it asks me if I want to open the page, it doesn't display it. I'm using IE6 so there's not problem with the support for the tag.
I'll keep looking to find out what's going on. I think the iframe method might work best.
JDooley , Okay, here's the problem. The out of the box sql script creates a catalog called aspphotogallery and a user id aspphotogalleryuser.
The out of the box GalleryConnectionString tries to access a catalog called aspgallery and a user id aspgallery
'*** GalleryConnectionString = "Provider=sqloledb;Data Source=p600laptop;Initial Catalog=aspgallery;User Id=aspgallery;Password=temp;"
I see the readme.txt has been corrected but the line in dataconn_inc.asp still needs to be changed. lancem38325.9032986111, Is there a possibility to build in a option that the administrator will be notifed when a banner expired.
, Ahhh....yes, I always forget about the cache. That's exactly what it was.
I had made modifications to the import_pics.asp file, because I added more fields to the db, and made the import folder path dynamic, but I seem to have forgotten to add in the response.expires=0
Once I added this back in it has stopped messing up.
What was happening was, it wasn't overwriting the files, nor were they too big, but you would click on one thumbnail in an album(category) and it would display a picture from a totally different category. It seems browser cache was the culprit, however.
Thanks for the quick reply, great product tooo!!! , so you are using the subscriptions signup directory right ?
"paypal_signup2" ?
1st.. I would check that the xml parser is working.
It is required for making the post back to paypal.
It is installed on windows 2000 and 2003 and XP by default.
http://support.cjwsoft.com/forum/forum_posts.asp?TID=134& ; ; ; ; ; ;PN=1
Then I would check the actual form page to paypal to make sure it is generating a valid IPN url as a hidden form value. It's the payment page you actually click on that actually takes you to paypal. For the subscription signup system that page is called "paypal1.asp"
You'll want to go through the process starting with the default.asp of the signup folder untill you get to that page. Then you want to look at the html source of that page in Internet Explorer. Your looking for something like this in the source code and you want to make sure it is valid.
<input type="hidden" name="notify_url" value=http://www.mysite.com/aspprotect/paypal_sub_signup/ipn.asp>
It also has to a url on the internet that paypals server can see. It can not be a local url for your machine. Also: If it is not valid we can try hard coding it.
If all of these things are good I'll have to take a look. I have some text file logging I can do when paypal hits your IPN url that can tell us if it is actually hitting that page like it is supposed to. And I can test the system for you by making some 1 cent payments using my own paypal account until we find out what is going wrong.
cwilliams38421.5686921296, It appears there was a flag problem. When reading it into SQL Server, it converted the True/False in Access to 1/0 in SQL Server.
, I have tried everything to get your CJWSoft code working..I purchased the auto listings software and I am stumped, and actually you stumped my hosting provider, my database is stored in the database directory on the root.
I have even tried your ASPtest and still cannot connect. My have connected other databases without an issue on this same host, I have named a DNS Auto for my database and ponted to that in my code but get the following error you see at http://www.burkesauto.com and even when i try you test script found here at http://www.burkesauto.com/asptest.asp . cwilliams38145.8522800926, ASPProtect v7 comes with working example code of protecting an image from being downloaded and also protects the true file location of the image on your server..
This comes with the system as an example folder with some files in it.
(some of the initial purchaser's of the system might not have that directory.. if that is the case please ask)
Here is how it works...
Basically we protect the image in 2 ways.
- We use Javascript right click disabling code that works in both IE and Firefox.
- We stream the image via a special password protected ".asp" page and use an image tag to call it. This hides the true location of the file. You can therefore keep your images out of your web or keep them in a folder in your web that does not allow file browsing. Under this scenario even if someone looks at the img tag html source they can not tell where the file came from. Doing all of this allows you to offer certain images only to people that are logged in.
All in all this is should be very effective protection. Yes, there are still ways to get the images like doing screen captures, but this will ensure that people viewing images are logged in to your site. This will in most cases keep them from right clicking and saving the images. This will ensure that people can not tell other people the image's url location and it will ensure other sites can not leach your images and bandwidth.
For the image protection examples to work you may need to edit some values
in the stream_pic.asp file that are valid for your setup.
Look at the source. The values you can edit are commented.
Now, you also need to call a valid "image file name" from the call_pic.asp file which is an example of how you protect a page with javascript and call a streamed image using an image tag.
Lasty, here is a great article I found on image protection and some of the things you can do about it and some of things you cannot.
http://pubs.logicalexpressions.com/Pub0009/LPMArticle.asp?ID =41 , When a new user adds themselves to the db thru the registration page, no user id is assigned in the User_id field. I can't access the page on-line due to an user_id related error on the page. I must use access itself and add the user id. After that, everything works as expected.
What have I done? ,
I have switched to Alentus and have the permissions set correctly and Parent paths turned on. I cannot figure out how to connect to the database. Should I have the database in the aspprotect/data/database folder, or in the data folder that Alentus has in my root directory? once that is determined, how do I decide what the path to that database is? I have tried many things, but this is what the setup page tells me to enter in the data_conn file DBQ=D:\Websites\www.mysite.com\aspprotect\data\database\ASPP rotect_access2002.mdb;Driver={Microsoft Access Driver (*.mdb)};UID=Admin;Password=temp
Thank You , It looks like your product is perfect for my new site, but I have one question. One of the pages I want to protect on my site will be called by an application running on a remote server every 15 seconds. The application can include the username and password in the URL it is calling. Will your product allow access to the protected page on my server? , Bingo! that did it. Somehow the data must have gotten corrupted.
Hopefully that will do for me. Seems like everything is humming along and looks great!
Thanks again,
Laura
, Thought this would be easy. A few more pointers should get the database connection to work:
1) How do you decide whether it is a DSN (system datasource) or not? Does just putting the file in the ODBC make it so?
2)We have other files in there for other server applications, does that mean we’re stuck using DSN’s or is the file independent of that control dialog?
3) Assuming we get rid of using DSN for this database (or not), does the code go referenced in your article http://www.powerasp.com/content/hintstips/permissions.asp apply here or should it just work?
What else are we missing? , Yep, thats my thinking as well.
On the test server I have the site connected to a SQL 2000 db with the sa account, so it should have full control. But still no luck.
However, on the test server, I connected to the Access 2002 db and it works fine..adding user, adding categories, adding albums.
Weird  , Hi, its just not something i can suppport as I do not support custmizations to the code epecially when dealing with an image component that is not supported by the application.
Sorry, its something you have to figure out. Bascially I would suggest looking at the existing asp image resizing code and using that as a guide.
Have you considered just buying a license of ASPImage and asking the host if they will install it after you purchase it. It sounds like it may save you a lot of time.
If you are ever looking for a good host for ASP. www.alentus.com is one of the best. There 9.95 plan gives you access to 3000.00 of commercial quaility asp components also which is nice.
, I disagree...
It would be 20 hours + of conversion and testing. Maybe more.
Like I said, I converted a version fo ASPBanner once to work with MYSQL. It took forever to change all the code (2 weeks of messing around) and get it working. There were also a lot of issues with null values in the database, ado update code that had to be rewritten, cursor type issues, recordcounts not working, etc etc that had to be sorted out. There was a ton of situations where things seemed to be working but later on I noticed there were minor bugs to deal with. It was a lot of work.
ASP Photo Gallery has a ton of asp pages. It is a much larger app then ASPBanner. If you convert it to work with mysql I highly doubt you could have it running well with less than 20+ hours of work. I wrote the app and it would at least take me that long and there would still be bugs at that point.
If you think you could your not used to my style of coding and don't realize exactly how much stuff needs to be rewritten.
Granted, you could get some of the basics running off mysql in a few hours or less but there is just so much little stuff that would give you trouble. cwilliams38243.9065277778, I get this error, Any ideas?
Microsoft OLE DB Provider for ODBC Drivers error '80004005'
[Microsoft][ODBC Microsoft Access Driver] '(unknown)' is not a valid path. Make sure that the path name is spelled correctly and that you are connected to the server on which the file resides.
/guestbook/save.asp, line 109 , A nice addition for the listing script would be if the script would allow a "featured ad" or ads that would appear on the default page. , it probably means the page you are trying to protect is (not in an iis application or not in the same iis application) which it needs to be
for a situation like using ASPProtect you really want your root of your virtual directory set up as one big application in IIS. (after you inquired about it your hosting company probably went and set the ASPProtect folder as an application in IIS which means any pages you protect need to be in there as well. (truth is they should have had your entire web starting from the root set as one in the 1st place..... its standard practice for any experienced hosting company) cwilliams38456.9306828704, I agree -- don't use the code as is. I provided it only as an idea for a work-around if your ASPProtect users with Internet Explorer complain about the Page Expired message.
I did not test it to be sure the parms coming into the target page (which would be part of the URL when bookmarking) are properly preserved. It would be easy to make sure they are preserved, but I am not sure the code in the example does that. I also customized the code with my own page header and footer.
I have the Option Pack but the site does not need it yet so I haven't applied it. I don't expect many problems re-applying my few lines of modifications.
The IE behavior is not a big deal if you provide an explicit login page, since users would have less interest in paging back to that. In my case, I simply gave a link to a protected part of the site, and when they take that link, they instead get the login form if they aren't logged on. Once they log on, they get their desired content page, to which they sometimes want to page back later on.
From searching the Microsoft Knowledge Base and other sources, I could not find a way (using HTML) to turn off IE's behavior of refusing to quietly reload a page containing form data. Netscape does not do this. So my IE workaround is to ensure my target page does not contain the login form. It does not solve the cause of the problem, but in this case it gets rid of the Page Expired error message for my IE users.
I also purchased ASPProtect for another site, and I'm using that "out of the box" unmodified. I'm very pleased with ASPProtect's functionality and the fact that it works completely without the need to customize. However, I've found it is very easy to customize if I want to.
Jim
Puli Club of America , When a user 1st signs up a proper case function is run on certain fields.
This is only once on user signup and never done in the admin area.
It's goal is to keep things entered in Proper Case,
so if someone enters "chris williams" it becomes "Chris Williams"
It's not perfect but it helps a lot to keep the data clean and more consistent. Since it only happens during registration those values can be changed later by the admin or the user if someone wants to.
The function is only applied to the fields that it makes sense to apply it to....
In your case adding a drop down menu means you want exactly what is in your drop down to appear so you wouldn't want it happening.
That being said, it is really easy to remove this situation from any field it is happening to during registration.
So edit "users/add_new_account.asp" with a text editor
find
CmdAddUser.Fields("Company_Name") = PCase(Company_Name)
and change it to
CmdAddUser.Fields("Company_Name") = Company_Name
That is all that is needed to made the change cwilliams38421.5069328704, UPDATE... on very very busy sites these methods have been reported to fail once in a while.. meaning .NET gets overloaded and instead of a banner its shows some error code.
its not the banner system .. its the .net engine and the calling method cwilliams38326.8618865741, While I originally thought the login form on a non-protected page idea may be similar in setup to how our Classic ASP version of ASPProtect works I could not have been more incorrect. Truth is I forgot that it works a lot differently.
ASP.NET Web forms are meant to post to themselves and there is thing called the viewstate. (google it.. its a hidden variable the server creates in the form code that is required when the form posts back to itself.. and hold all sorts of information the server uses) Doing what you are asking about means disabling the viewstate and that can have big consequences and break certain things.
Basically you cant just put a form on a non-protected page and post to a protected page if the viewstate is enabled. Disabling it can break certain web controls like data grids .etc etc.. and can also have an effect on how the session is managed at the site and sometimes disabling it is not possible depending on what is going on cause you need it.
I am still doing research on the whole thing, but it looks to me like doing that is going to have a tradeoff of some sort.
That does not mean this isn't possible somehow. I am still researching and I am also going to see what John Evans thinks.
I told you .NET was complicated.
As for your other question that is something you have to sort out on your own by editing the code and recompiling it based on your custom project needs. It is not something I can help you with. , An email I just received from eastcoastguy.. to keep this thread up to date
Your quick reply was greatly appreciated... I removed the password and was able to use a DSN...I will look into a DSN-less connection later..once i get this working !
Cheers
eastcoastguy
cwilliams38146.6165509259, yes, PM me the encryption and cookie keys if you don't mind.
I can add it to my combinations that cause trouble.
it might help me to figure this problem out. , I am not sure. I can tell you that I run windows 2003 server and I have never had any issues setting permissions for ASP.NET files and folders. This very server is 2003 and the ASPProtect.NET demo runs on this server as well.
Course, I can't say that I have specifically tried to remove ASP.NET READ permissions on the database folder as it's just not something I would not have a reason to do. Why are you trying to do that? The ASP.NET account needs that permission. If you are trying to stop file browsing and downloading in that folder that is not how you do that. The best way to do that is by keeping the database somewhere else on the server that is not part of the http web. , Okay, thanks, I'm going to change the method tonight and see if it makes a difference
I'll report back
Dave , Oh also, I tried to run the asp on my machine (win XP) and unless I'm missing something fairly obvious, I cannot get it to run correctly...when previewing it, I see all the code instead of what I should be seeing., How do I change the character length for the description field? , I purchased two site licenses for ASP Protect a while back and am now trying to implement the application.
The connection to the database is fine, because it recognizes the user and displays the user name. However, there must be a problem with the permission because I get the DNS error information from the On Error in the check_user_inc.asp file.
I set the permissions on my PC as you indicated, both on the folder and the database file. But get the error and cannot access the database to view or modify. I also uploaded the file to my web server and set the permissions as well, but get the same problem.
You mention on your forum that it is not the code, but I don't understand if the code is correct and if it finds the database and the permissions have been set as you indicate, why doesn't the code work? ,
Timecard Entry: 3/25/2006 1:41:12 PM
in vermont, Caught up with Paul outside, email voicemail, Called expiring users., meeting with Allen re:web development, JEFFLEWIS MEDIATION GRAPHICAL WORK ON ALL IMAGES, CROPPING, STROKING OUTLINES, ETC. NEW COLOR FOR LOGO.. CLIENT CHANGED COLORS ON NAVIGATION AND ORDER OF BUTTONS PLUS BUTTONS RENAMED.. NEW INFO ADDED IN DIFFERENT SECTIONS, BOOKMARKS MADE ON DIFFERENT PAGES (PLEASE ONLY BILL 4 HOURS) SALES UNDERESTIMATED JOB, entered invoices, go over fire suppression system disables and enables with saunders guy, HAD A MEETING WITH PEG CONCERNING PROCEDURES, Peter Parker (SIIE), meeting with Crown Point Telco - , On phone with Dell order servers and getting our savings increased, very busy...lots of people unable to authenticate...still seems to be problems with 5000., voice & emails,copies & filing.
Recieving,& Data entry.
, Showing Bill and Dave SoftVendor package. Letting Bill install on his machine so can see how code works. Going to let them try to fix email checkout problem., Meet w/ Bill Delsolar about Jeff Lewis Teachers Center, Enter bills/ TICC, Downstate Mailer, sorry ron, i think i missed the goal of the comment section before. lowville back up - authenticator down and back up., speak with pat schermhorn about rates- fax instructions to renzi brothers about virtual email
left message for jim- 401 k enriollment guy set up meeting for web site, Returned to Clayton 90Miles, worked on changes to Hacketts site including setting up an admin for changing the office hours, changing fields on gift certificate (which included having to put it on the secure server), change left navigation image (including image map links), change multiple static links in store to point to home page rather than store front page (hackettsonline.com, secure.gisco.net/hackettsonline, programming, billable), training at Nortel, CVX, mostly tech calls on Lowville i called logical net about the issue and left a voicemail... about 4 hours later it still was not fixed nor had i heard anythin from the technicians so i sent an email about the issue to Dan, Talked to Kelly about Cortlandmls.com requested changes. They have requested a frustrating number of tweaks., traveled to cauga and the finger lakes boards to meet the major realtors, Review Bills w/ Carol. Generate invoices for customers and setup new info on IBS Telecom., Troubleshoot O'Reilly SSL issue, cleaned up in the basement -shirts (20shirts for RNB), BOCES - Secure server adult education form submission system completed., Worked on putting together materials for Dave to set up the site for the forum- proof read listings on the calendar,
|
