Blog Entry: 3/25/2006 4:30:33 PM
UPDATE
Version 8.1 has code generators for these new methods built in... , Humm.. that should have worked fine
why are you getting a "OLE DB" error I wonder ?
I need more information.
Database being used and version ?
Server OS Version?
Connection String being used ?
etc etc ,
Sorry, there is not any documentation on that.. it is basic asp/database work and customization like that is not supported. I recommended looking at what is already there and using that as a guide to produce more fields. etc etc , In addition to that I just noticed the </href> you have in there.. man that is some scary stuff you came up with.. that may appear to work and make a link but it is not correct. Each link will work but never truly be closed.
That is just not valid proper use of the anchor tag.
You make a link in html like so
<a href = "somepage.htm">somepage.htm</a>
http://www.w3schools.com/tags/tag_a.asp
Then your surrounding each link with <span lang="en-us"> </span>
Not sure why ? , While my host says the permissions are now correct....its still trying to download the setup ASP file instead of executing it.
I really need to get this application working asap too. I noticed the purchasing page said that install came free.....so any help would reaallly be great.
re , If I would like a link on my web page that will take someone to the login page (I would also like this page to contain forgot passord? and register) I am not entirely clear what file to link to to do this. Would it be check_user_inc.asp?
Thanks in advance?
cwilliams38456.0972106481, Ok, I was not aware of this domain controller issue as I have never had a customer have their web server set up that way. It is not a common situation under commercial hosting, thats for sure.
http://support.microsoft.com/default.aspx?scid=kb;en-us;3151 58
seems it was some sort of bug that was corrected in the the 1.1 .NET framework involving no ASPNET account being created. seems there are lots of work arounds involving making new accounts and editing machine config files. I found quite a few google articles as well.
http://www.kbalertz.com/kb_315158.aspx
http://www.15seconds.com/issue/030115.htm
I actually should have said "the framework installed" not "asp.net"
So, in the meantime I am asking John Evans what he thinks about this and I am going to ask you what version of the framework you have installed ? ASP.NET Framework 2.0 is the newest and you definetely should be running at least version 1.1 and probably should upgrade to 2.0.
I do not know why other ASP.NET code you have works ok. Your other code may not be using the odbc driver dll the same way ASPProtect.NET does. There are lots of possible reasons. At the end of the day I think the basic issue here is still a low level configuration/permissions issue and it can be corrected from what I am reading. It just may require a bit of trial and error regarding local and domain accounts and editing the machine config files... etc etc , no worries from me. As with most software projects, i tweak the
heck out of them and then have to make a big decision about whether or
not i even want/need to upgrade.
KT
, Is it actually possible, with your product, to password-protect the folder that has the actual database without having to require customers browsing the listings to enter a password, or will password-protecting the database folder prevent customers from browsing the classifeds listings? , You really should just look at the documentation that came with the application. It tells you everything you need to know.
it is in the docs folder in html format.. it is also linked to from the aspclassifieds website
http://www.aspclassifieds.com/demo/docs/ , Whein I went by the numbers off of your directions, which work well up to that point, the import would time out.
At that point I tried to import directly into access...and then it hung trying to login.
okay so I've put in a clean database and created a new record for me as admin. , Then you should have current enough code.
If you PM me the encryption key you are using and the plain text password for this user I can see if I can reproduce the error and come up with a fix.
I believe you found one of the rare examples where the encryption creates a strange character that messes up things. Sometimes those characters are not even visable.
Changing the password should solve the problem in the meantime., umm.. rename the pages to ".asp"
After all these are ASP scripts we are dealing with and the product is called ASPProtect.
The web site says it is used to protect ".asp" pages
And the directions tell you to put the protection code on ".asp" pages.
ASP can not run in ".html" pages
If you do not know basic things like this you should really learn the basics of ASP before you try to use the application. I would suggest a good book or two. ASPProtect is for people that have at least some experience with Active Server Pages. , Well you can put a link on all your pages that links to the login page?
modify the code in the login page so the return page is members.aspx or
whatever you need and thats it?
I dont see your point? probably because I understand how the program works and your not 100% up to speed on how it works.
,
ok "ace45",
I just spent a bunch of time in your setup using SQL server and I didnt have a single issue. It all seems to be working perfectly to me.
I got into the system using the "get_me_in.asp" page like the instructions say to to.. then I deleted those two users you had there.
I created a new user called "admin".. then I edited that user to make him an admin.
I have logged off and back on as that user a bunch of times without issue.
admin
test
is the user info..
I just didnt see any problems whatsoever???
I also took the liberty of going into the settings page and setting all that up for you as well so all the url paths are right now and emailing from the application works.
I am going to wait an hour or so and try to log in a few more times but it honestly seems to be running perfectly to me. , Hi Chris,
Thank you for your prompt response.
Our current project requires alot of customization.
Yes, the error is probably a data problem and not due to your code, because we needed to make modifications to the database. But that's why debugging would be helpful.
Basically our intent to modify the asp protect code stems from the fact that our client doesn’t want certain fields to be recorded or to appear: address, city, state, zip etc…
We are happy to be able to modify the HTML, but we also want to modify some other default behavior, such as which page opens when the "cancel" button is hit in the editaccountinfo.aspx page.
, how's it going ?, Yes, thats cool.. post it here for sure.
Also, the way you allowed for your search engine is clever and probably was the easiest way to go.
You could do the same thing with the IP. Much easieri than the way I was thinking of doing it.
, What application you talking about ? I'll assume ASPProtect. In the future please specify what application you are talking about.
ASPProtect 7 already has protection that is quite effective. The no concurrent login feature which will not let the same username under a different ip log in at the same time. Meaning if someone gives out their info they will screw themslves over because eventually they won't be able to log in. Only one unique ip at a time can log in so even of 100 people know the info it won't really do anyone much good except the lucky one that logged in 1st and stayed logged in. The username/password will eventually become more and more useless as more and people know it.
In addition to that is is a good idea to monitor the daily logs and single out a user you see logging in a lot. The more ips you see for that user the more chance it is multiple people logging in and you should take action. , Thanks, I'll take a look.
Nick , This issue came up once before and when I investigated I could find no error in the html that aspprotect generates and those files do exist where they are supposed to. We concluded it was a parsing error from the log file system.
There just really isn't anything I can do about it. I spent a week trying to figure it out. It is just the log parser screwing up under certain circumstances where there is no reason anything is wrong. They have trouble dealing with some of the complex URL/querystrings that the ASPProtect admin area uses. They think there is a 404 eror when there isn't... etc etc , OK, I figured out the problem. Not running ASP becasue the pages are not saved as ASP but rather HTM... OK so I am smart like a tractor but strong like an ox. cwilliams38229.9128819444, Just want to be able to log users in from the home page via a username and password box somewhere say on the left hand side with a login button. Like most sites have.... i cant seem to figure out how to do that with the software.
My other question is..Is there a way to incorporate this software into an event registry? What i mean is this:
Say a company is having a pool party, BBQ, and tennis lessons (just examples)
When a user registers with aspprotect i want him/her to have the option to register for one of the events. Also, I as the admin, would like to be able to view who and how many registered for each event... Here is what i am talking about (and it has a payment option to charge for an event which would be PERFECT if you could do) http://www.cescripts.com/demo/registration/view-events.php
Please let me know if there is a way to add this option or create...
, Hello,
I have ASPprotect 7 installed on my remote server. I am able to go to the examples/default.asp page and login in without any difficulties. If I copy the code from that page and paste it in a new page called the same thing but in a different folder, I get this error; (Keep in mind that this is essentially the same exact page in a different location of the website)
Error Type:
Active Server Pages, ASP 0126 (0x80004005)
The include file '../../check_user_inc.asp' was not found.
/aspprotect/Pages/default.asp, line 3
I get the same error if I paste the "protection code" I have generated into the top of a current (.asp) page in my site.
Basically, the only pages that work are the ones that came with the program as examples. Thats great, but now I need to make it work for my pages. Any thoughts?
, Hi,
I basically explained how I thought that might work here where I went over everything I could think of and suggested you download the free version and see if you could get it working
http://support.cjwsoft.com/code/moreinfo488-1.htm
The part about using the alternate scenario involving querystring info from a url.
I have never done anything like that and that is why I told you what I knew and suggested you try it with the free version... ,
I just added this line to the paypal1.asp
page
<input type="hidden" name="currency_code"
value="CAD">
and it worked. Clearly other values can be entered for other currencies.
Everything was listed in this manual https://www.paypal.com/en_US/pdf/subscriptions.pdf.
Cheers
Roy
, Protecting ASP Pages
To protect a page without using the Access_Level or Groups feature simply add this code to the top of that page.
Put this under the <%@ LANGUAGE="VBSCRIPT" %>
<!--#INCLUDE FILE="check_user_inc.asp"-->
This is an example of a File Server Side Include. You could also use a Virtual Server Side Include.
The following URL explains what Server Side Includes are.
http://www.powerasp.com/content/code-snippets/includes.asp
Now when someone runs that page they will prompted to login. They will not be allowed access to that page until they successfully logged in.
An example of doing this is provided in the "default.asp" file included in the root of the Password System.
Look at the source code with a text editor to see the working code. It is quite simple.
Protecting ASP Pages Using Access Levels
To protect a page using the Access Level feature simply add this code to the top of that page.
You simply specify the Access Level before the include file is called. In this example we are protecting the page with Access Level 4.
Put this under the <%@ LANGUAGE="VBSCRIPT" %>
<% CHECKFOR = "4" %>
<!--#INCLUDE FILE="check_user_inc.asp"-->
This is an example of a File Server Side Include. You could also use a Virtual Server Side Include.
The following URL explains what Server Side Includes are.
http://www.powerasp.com/content/code-snippets/includes.asp
Now when someone runs that page they will prompted to login. They will not be allowed access to that page until they successfully logged in as a Level 4 user.
Examples of managing Access Levels are provided in the "multiple_access_levels" folder included in the root of the Password System.
Look at the source code of the ASP pages in that folder with a text editor to see the working code. Again, It is quite simple to follow.
Protecting ASP Pages Using Groups
Please see the code generators in the admin are for the code to do that. cwilliams38403.6864351852, You might just learn something and actually get your project finished before 2010 
your over there hacking away on your virus infested WaReZ machine
LOL thanks for the good laugh-- i guess its time to do some reading and making my own mods to the program..
btw i never insulted cafrepress.. not sure where you got that from- just advised that what they have is exactly what i want to have done. How much for your service? , Hi Chris:
Is there a way I can include the username and password in the URL of a protected page to gain access to a that page without going through the log-in page?
I'm not quite sure what the syntax would be in the URL.
Warren , its one or the other... you cant protect upload.asp at the same time if upload.asp is included in another page..
I mean sure you can protect upload.asp from running when another page calls it by password protecting the page calling it.
And sure you can protect upload.asp by itself if it also runs all by itself. But you can not include the "check_user_inc.asp" more than once in any order of execution scenario. That includes pages being included.
Generally anytime a page is included in another that included page is not meant to run by itself and wouldn't produce any outcome if run by itself so this would never be an issue.
if you don't want "upload.asp" to ever be run by itself in that scenario put it somewhere in your web site that is not web browser accessible.
I would also suggest you look into using Virtual includes. It will save you a lot of time figuring out this sort of thing "../../../../../" becuase once you figure out the virtual include path you can use the same server side include from any directory level.
http://www.powerasp.com/content/code-snippets/includes.asp
, I'm using version 6 upgrade and recently some of the users complained that their passwords are no longer working. I was able to replicate the problem as I also experienced the same thing with my account.
Once I reset the password thru e-mail (Forgotten your password?), I am able to login but it fails later. This is weird as I have an identical copy of the code running flawlessly  on my test server.
The only change which I made to the original downloadable code is by adding password encryption using Base 64 encryption.
Any ideas what might be the problem  , well, thats a network drive path and in my opinion a very poor way for them to have set things up. It can work as long as permissions get set there and they have the anonymous webserver accounts set up correctly to handle that scenario, but performance isn't the best because your accessing the access database over the network. Access databases are not just not meant to be connected to over the network in a web based scenario. Quality ASP hosting companies do not set up their servers that way and it can often be difficult to get things running as it is a more complex setup on their end. Meaning if they dont synchronize the IUSR_machine accounts correctly you'll have permission issues.
http://www.aspfaq.com/show.asp?id=2168 , I've downloaded this neat little app, but I'm having troubles understanding what I should be using. Cassinni or IIS, can you help? I've tried to look at the help, but it is very vague on what to use in each situation.
Any help is appreciated.
Cheers , It is refered to as the internet guest account but that isn't the actual username. The username is different for every machine. It usually starts off with "IUSR_" and then your machine name. "Internet Guest Account" is always the account's full name as labeled by IIS when it is installed.
Regardless,
If an account isn't listed you have to add it.
Click (add-advanced-find now) and it will list off all the user accounts on the machine
You can also click (add-advanced) and simply type in the account name or part of it.
Some more tips:
If on a local machine you always just give the "everyone" account full control which is pretty much going to make anything work.
You can also go to computer management in your server's administrative tools and view all of the accounts and groups there under "Local Users and Groups".
cwilliams38417.7186689815, How about the option to add an unsubscribe link to the end of newsletters that are sent out and a function that will uncheck the newletter field for that record if they click on the link?
Please??? 
Thanks,
Michelle , who knows, thanks for your input, I am further than I was when I started talking to you!, Great! Sounds good Chris. , someone has to do something other than me.. i've given up
if i give u the username/pw can you set this up on the network solutions host and ask them to set whatever permissions are needed?
cant do it anymore.... , Your SQL statement to the database is the key.
You want to change the sortby hyperlink on that page so that it will in turn change the dynamic sql statement to sort the way you want
Find
?SORTBY=Date_Created
change it to
?SORTBY=Date_Created+ASC
or maybe
?SORTBY=Date_Created+DESC
One of them is the default anyway, but I cant remember which is which off hand so just try them both till you get the desired result
near the top you can also change the default sortby when thet page is loaded
SORTBY = Request("SORTBY")
If SORTBY = "" Then
SORTBY = "Name"
End If
there you would use a space though.. not a "+" sign when adding the ASC or DESC
The + sign is only used in the hyperlinks because it means a space for browsers that can't deal with spaces in links cwilliams38406.6011458333, 1st: try it with a normal dsn-less connection like we show in the example.. dont use that OLEDB.4.0 connection string.. connecting like that can cause a lot of problems and is not as great as everyone thinks it is and it can sometimes be difficult to get it working when the database has a password set on it
For the sake of troubleshooting just connect like so: (fixing the path of course)
ConnectionString = "DBQ=C:\Inetpub\wwwroot\aspprotect\data\database\ASPProtect_ access2002.mdb;Driver={Microsoft Access Driver (*.mdb)};UID=Admin;Password=temp"
ASPProtect will generate the actual connection string you should use when you run this page
http://www.mysite.com/data/setup_info.asp
Replacing the part in blue with your website info.
2nd: any IIS server setup to have the access database over the network path like that has a poor setup... and that can cause all sorts of problems as well, access is not designed to run over the network like that.. for more on that read this thread - Start 5 posts down
http://support.cjwsoft.com/code/code_info.asp?TID=479&KW =OLEDB%2E4%2E0
3rd: If the app does not run using the connection string like I say to use then the problem is 100% on their end and is either related to permissions or the fact they are keeping the access database on a network path which is BAD BAD BAD... no quality host that knew what they are doing would set it up that way.. ultimately you don't want to host asp with a place that has a setup like that
4th: If you want to try some other stuff out we have a free guestbook, asptest, and a free version of aspbanner you can try out as well... www.cjwsoft.com
5th: If you need a quality asp host that knows what they are doing and offers great asp support www.alentus.com is the place
6th: Your right, it is not the code, its the data connection ,
Timecard Entry: 3/25/2006 4:30:33 PM
breaking down boxes, cleaning side walk, vacumeing, filing, sign-ups, cancellations
go over procedures, 67892-67898, Looking at projects and deadlines in the work request system, Met with crowley computers about the channel partner program, work on madrid problems and clayton problems frame relay circuits went down twice., soup / ham sandwich, sma2, Research a fix for mail problem on Kenny, busy day, calls, Working n Softmls2.. been calling Wlydfyre and leaving messages. Been working on input sheets and summary sheets and the customizable features that make that part so darm complicated and hard to get working. , E-Mails, Inventory Labels, Breeze Com and Teknema Review
Cisco Switch Media Review, Dave's Pool- info for web site- redesign website - go over changes- register domain name, Prepare for and attend Governing Board Meeting, meeting with channel 7 owners, the border, anne george verizon, car freshner, rrp, 60 miles to syracuse to meet with j&m Schaffer guy, Phone call from Tim about some SoftMLS spreadsheets Jim McNally requested., 23 miles to Clayton, Taylor Concrete gathering info and graphics development, Took in some tech calls and calls regarding accounts. Worked on expired accounts from Radlog and checked all other activities. Emonitor also went red earlier in the evening and Andy was called., Network Monitoring & Trouble Shooing, cc report, cancellation of inovices, incident report, checked emails, answering phone, taking sign ups. quality checked sign ups, , Checking Email, Voice Mail, Phone Calls, Time Sheets, printing reports & schedules & general admin. related duties., emails, filing, Costguard - phone call with project manager, in-office break, Checked online issues. Alan was already on top of things, Freislich Meeting,
| 
