Blog Entry: 3/25/2006 4:28:28 PM
Are you reffering to the number of the left of the users name in admin.
I thought it was a counter at first but that number only displays the number of albums they have set up.
, I was actually able to do similar thing by allowing our dedicated search engine to access the site unchallanged.
<%
If Trim(Left(Request.ServerVariables("HTTP_USER_AGENT"),11)) = "MYPASSWORD" Then
SearchFlag = True
End If
If SearchFlag <> True Then
If Session("Access_Level") > CHECKFOR or Session("Access_Level") = "" Then
%>
<!--#include virtual="/Auth/check_user_Code.asp" -->
<head>
<title>My Title</title>
</head>
<body>
My Protected stuff here
</body>
</html>
For this to work, the search engine must pass the PW to the web site. I just was not sure how to do the same thing with IPs. I will play with the code and see what happens. If it works, I will post it here to help others, if this is OK with forum rules.
Thanks,
Mo
,
Glad your getting the hang of it.
no difference as far as that goes. It is just different ways to reference the server side include file and it's location on the server cwilliams38457.6019675926, I have set up a user to be redirected to a different page when logging in for the first time.
I assumed this function would count the number of times a user has logged in. When the login count was greater than 1, the user would be taken to the default.asp
This isn't happening. The user is always redirected. The user login count in the database is now 9.
What am I missing?
, it is not uncommon for folder permissions to be lost or changed on a server.. a lot of things can cause it
if it was working and now you can not edit or write new data to the database it is most likely permissions
I would triple check permissions... see my articles if there is any doubt on how permissions are set
http://support.cjwsoft.com/code/moreinfo136-1.htm
http://support.cjwsoft.com/code/moreinfo56-1.htm
, yes, there is upgrade pricing
http://www.aspprotect.com/purchase_v7_upgrade_pricing.asp
and upgrade instructions here in the forums
if you install it in the same directory structure you wont have to make any changes to the pages in your site you have already protected.. because the code to protect a page will be the same
now, anytime you upgrade an application like this there is going to be a lot of work involved especially when there have been so many changes
http://support.cjwsoft.com/code/moreinfo173-1.htm
whether or not you upgrade is up to you
Like I said you can make version 6 work with CDOSYS and a remote email server. You just need to do some research on CDOSYS code and spend the time needed to make the code use it. I however am not going to spend time detailing all of that when I created a new version that does it.
, maybe this is the issue...
do you realize that the descriptive name you give a group is not always going to be the same ID in the database ? The two are not related.
Perhaps what you named Group 1 is really group ID 3
You can tell for sure by generating protection code for group 1 and see what ID it tells you to use..
You also need to remember that you are testing this with different users and it is really easy to get confused so you need specifically log off using the log off page to ensure session info from the previous login doesn't show up and cause confusion when you log in with a different user... etc etc
in addition to logging off that way you may also want clear the session and application info via the code at the bottom of my article
http://www.powerasp.com/content/new/displaying-session-and-a pplication-variables.asp
and do that in between any user you log in as
, That helped very much. Thank you. Hope you enjoyed your dinner., thanks for posting this... Since "private" is the default setting from what I read and setting it to "public" cured the issue chances are leaving it at "public" is the way to go.
http://msdn.microsoft.com/library/default.asp?url=/library/e n-us/iissdk/html/33f2780a-eee8-4601-84b7-b489e4c756df.asp
http://www.w3schools.com/asp/prop_cachecontrol.asp
ALSO: since you are one the few people that has ever contributed anything helpful to the forums I am going to reward you with a free copy of the password expiration mod. I am sending you a PM with the download info.
, in the version you have changing it is not something we covered
I believe you will find it the "config_inc.asp" file in the root though... be careful with naming it though because if you use any spaces or weird characters it might cause issues with various functions in the application like emailing.. I recommend just using letter, numbers, and maybe dashes
, The only other thing I can think of if you are not getting any errors.
Is that you may have the path to the server include file correct but ASP server side code is not executing in that part of your web site.
You can do a simple test to tell if it is...
Make a simple ".asp" page in the same folder.
Put only this code in it.
<% Response.Write ("ASP is executing") %>
then run the page via the web browser thru the server..
If the text prints out ASP is running... if you don't see anything it is not
cwilliams38229.5820486111, I am trying to understand how/where the "Log_Off_URL" variable is set
I have searched the forum for that string but don't get real good
results...I think the _'s are replaced with spaces for the search.
I am learning how to use the groups options and have modified some of
your example access level examples to test out group stuff. At the
bottom of the default.asp page I see a "LOG OFF SYSTEM" link that is
filled with a link stored in the Log_Off_URL variable and it looks
like that is being set back to the default.asp file somehow. So when
I click on it it just refreshes the page and appears to keep my user
logged in.
Seems like it should log out the user and redisplay the
login page. Is there a way to log totally off and have the login page
show up again? I am sure I am missing some obvious thing
somewhere...I can see where the Log_Off_URL variable is being created
in the config_inc.asp file but did'nt know where to look for more
info. Can you point me to an existing forum link?
Thanks!!
, If a picture does not show after uploading it is one of the following things.
The upload method chosen is not supported on the server
or
The physical path specified to the pictures folder is not correct.
or
The URL to the Pictures folder is not correct.
or
Permissions to the pictures folder have not been set properly
Here is more information on how permissions are set.
http://support.cjwsoft.com/code/moreinfo136-1.htm
http://support.cjwsoft.com/code/moreinfo56-1.htm
Without more information and the settings you have entered and chosen that is all I can offer for now.
, Has this been resolved ?, Hi Chris,
Thank you for your prompt response.
Our current project requires alot of customization.
Yes, the error is probably a data problem and not due to your code, because we needed to make modifications to the database. But that's why debugging would be helpful.
Basically our intent to modify the asp protect code stems from the fact that our client doesn’t want certain fields to be recorded or to appear: address, city, state, zip etc…
We are happy to be able to modify the HTML, but we also want to modify some other default behavior, such as which page opens when the "cancel" button is hit in the editaccountinfo.aspx page.
, Glad it is working.. for anyone reading this the customer bascially did this
http://support.cjwsoft.com/forum/forum_posts.asp?TID=36& PN=1
That being said asp photo gallery actually has a few more places that send email that you going to need to modify as well. Off hand the reply to album, admin massemail, admin send email,and postcard features come to mind possibly as 3 of them.
using a multiple file search and replace utility like ReplaceEm would be the easy way to do all of this in one step and find all the instances
http://www.orbit.org/replace/
cwilliams38420.4424537037,
ok "ace45",
I just spent a bunch of time in your setup using SQL server and I didnt have a single issue. It all seems to be working perfectly to me.
I got into the system using the "get_me_in.asp" page like the instructions say to to.. then I deleted those two users you had there.
I created a new user called "admin".. then I edited that user to make him an admin.
I have logged off and back on as that user a bunch of times without issue.
admin
test
is the user info..
I just didnt see any problems whatsoever???
I also took the liberty of going into the settings page and setting all that up for you as well so all the url paths are right now and emailing from the application works.
I am going to wait an hour or so and try to log in a few more times but it honestly seems to be running perfectly to me. , No worries
then..
is there any way I can get rid of those information shown on User activity screen, so I can at least know who logged in current day?
thank you in advance
, As I already had directories in my web site root called 'images' and 'templates' I loaded the files into a sub directory called 'aspprotect' as suggested in the installation guide where it say 'either way it really doesn't matter'.
However, it does.
The scripts are often looking for a file which it can't find because the /aspprotect part of the path is missing. Example:
I can't find a way of editing all the scripts that need changing. I'm assuming it would be easier to change my site to avoid using subdirectories used by aspprotect and reinstalling from scratch straight into the root directory.
Anyone with any suggestions?
Many thanks
Ian
,
Access to some sections of the forums must be requested.
Please Click on the following link and read all of it carefully.
http://support.cjwsoft.com/
cwilliams38291.6121296296, Hi,
I have just one quick question, I know this works with Paypal but does this work with Merchant Account?
How difficult it is to make it workable with Merchant account? I appreciate your answer.
Thanks.
, You do not run that page by itself. That is not how forms based authentication in .NET works. That is a special page used by the web.config file. It is automatically used when you protect one of your existing .NET pages but is not meant to run on it’s own thus the error.
To answer your other question a user is not sent anywhere. You protect existing ASP.NET pages as shown in the documentation and the examples. If sent to any protected page they are either prompted with a login box or if logged in they see the page as usual. If they log in the form posts to itself and they end up at the same page after supplying proper login credentials. That is how ASP.NET forms based authentication works. I suggest you get a good book on ASP.NET that explains all of that if you are still confused.
Now, if you really want some sort of page to redirect them somewhere after login make a basic asp.net page.. protect it.. and then use a redirect statement. , Making progress. I have made the appropriate settings and now I have the option to upload. When I upload, I get the following message:
"Your upload did not succeed, most likely because your browser does not support Upload via this mechanism.
Your browser must support a standard called RFC 1867. Please check with your browser vendor for support of this standard"
I am using IE6 XP SP2. I also am using DUNDAS UPLOAD, ASPIMAGE.
I think I set permissions correctly bot not positive. I have given all auth to everyone for the database etc.
, Now, back in the dark ages we had to use the command prompt to setup the MySQL database and all that fun stuff. I am not going to show you that method.
What happened was 100 different 3rd party companies developed interfaces to work with the MySQL server visually. Within the past year MySQL actually released its own little GUI for doing just that so I am going to show you how to do things using that.
Let's download and install it.
Go here
http://www.mysql.com/products/tools/
and download Windows (x86) MySQL Administrator
(1.1 is the most current version at the time of this article)
Installing that is a no-brainer as well. Just stick to the defaults and it will do its thing.
Now that it is finished.. run MySQL Administrator from your start menu.
It will ask for your "root" password that we entered when we set up the server.
Hit OK
You should see this if your MySQL server is runnign and you entered the correct password.
Now select the Catalogs Icon on the right.. go down to the Schemata section.. right click in the lower white area and choose Create New Schema
It will look like this
Essentially this is your database name. I am going to call my database "aspbanner"
Hit ok
Your now have a new database with nothing in it. We now need to run the MySQL database creation scripts that I provide which will create the Tables and Fields needed.
The easiest way when using the MySQL Administrator is to select the Restore icon on the left.
The choose "Open Backup File" in the lower right corner.. Browse to the "aspbanner_mysql.sql" file we provide. You can also download that file here. 2006-03-14_164927_MySQL_Script.zip
Once you select that file choose open...
Now, it is very important you choose the database you created earlier. Also known as Target Schema.. in this case I choose "aspbanner"
Now hit "Start Restore"
Ok, now the database has Tables and Fields
Click on the Catalogs Icon on the left and then select aspbanner from the schemata area in the lower left
You'll see we now have tables in the aspbanner database, I am not talking about image resizing. I need to know if it is possible to limit the upload to images where their height or width is less than 500 PIX. , 1st off.. you appear to have some strange things going on with that domain. Looks like you have a frameset and are loading another domain in it which is always confuding especially if you are running the site off your home computer or something... I am not sure
That aside..
If I go to
http://www.bones.myftpsite.net/rfamilystuff/default.asp
and click on the "familiy" category
then right click on a broken image.. look at properties
Your linking the image to your localhost
see
http://localhost/rfamilystuff/pictures/Pic_3_1_thumb.jpg
and that is wrong, just like I said above
Nobody running the site off any computer but your development machine is going to see those pictures because the url isnt valid for them
My guess is in the settings you have the "PictureURL" set to
http://localhost/rfamilystuff/pictures
when it should be
http://www.bones.myftpsite.net/rfamilystuff/pictures
Good luck with this.. I am going to the bar.
If you need more help I probably will not be available until Monday.
cwilliams38394.7688773148, I sent you a PM, You need to make sure you created the SQL database using the SQL scripts we provide and that no errors occur whatsoever. That is extremely important. You must use our SQL creation scripts.
Then, when you create the user you need to go back to that user and make sure you check the admin account and save that user again. (many times when setting up a system for someone I find myself forgetting that step and then I have to go back in and check the admin box for the user I created.)
And of course create the user from the ASPProtect admin area web interface. Do not add the user to the database manually because you will have no way to enter the password correct as it is encrypted. And do not change the encryption key after making the user/.
It would also be wise to check the SQL server database at every step to make sure the user info gets created and that all the field info looks correct for the most part.
You also want to be sure to specify SQL as the database type side the connection string info as the SQL directions go over
a remote sql server should not an issue.
thats really all I can think of right now
, After turning off the friendly errors, here is the detail.
Active Server Pages error 'ASP 0131'
Disallowed Parent Path
/users/register.asp, line 16
The Include file '../dataconn_inc.asp' cannot contain '..' to indicate the parent directory.
ANSWER:
http://support.cjwsoft.com/forum/forum_posts.asp?TID=5&K W=Disallowed+Parent+Path+
lancem38310.6408101852, Thanks and glad that fixed it.
You can review this software at http://www.aspin.com/func/review?id=4952510
That being said, ASPIN has a lot of problems with anonymous reviews so if you can please sign up with them and post an Authentic review as they carry a lot more weight. Authentic reviews involve responding to their validation email so when doing so use a real email address that you regularly check.
And sorry I made you use the forums, but as you can see this is exactly the sort of thread that will help someone else later on.. and that is why I require people to use the forums now instead of just email support. That way the conversations are out in the open where they can help everyone instead of buried in my outlook where no one will ever see them. And of course if information is sensitive you can always do a Private Message as you did earlier.
It is all about creating a knowlegebase of valuable information.
, Okay, got it!! just in case anyone else is having the same
problem, after creating the new thumbnails using the
"generate_new_thumbnails.asp". Turn off the random photo
selection for a 10 minutes or so, and then turn it back on.
bwinklesky38324.5085069444, either that or send me your encyrption keys and the exact password entered that causes the problem and I will try to reproduce the behavior here, (FREE) Nov 23 2005 Update Files
If you purchased ASPProtect Version 7.x before Nov 23 2005 then you can download these Update Files.
(These are non-critical updates.. only update if you want the described changes below)
These updates do the following..
- Make the Tabs in the Admin area move up and down as you navigate around so they look more like tabs used in a file cabinet.
- Updates the import/export process so the tab delimited text files created now store the passwords in plain text instead of encrypted. I have been thinking about this one for a while now and I think it is better this way as it was confusing a lot of people. If can also kill the whole process if by chance the encrypted output of a password contains a line break of sorts. There is no way to deal with that scenario so this is way the import/export process is going to work from now on. This also means you should be VERY carfeful about leaving export files lying around as they will have the passwords in them.
- Updates the "expected_paths.asp" in the data folder because the paths it was generating had an extra "data/" in it.
- Updates the users page so it will not show the import/export link if you have not entered a path for the export files in the settings.
- Adds an Activity Tab if using the Activity Tracking features instead of the links it used to put on the users page that most people didn't see.
To install these just copy them in over the old files.
Now of course back up your existing files so can revert back if there is a problem or you do not like the changes. If you made any custom changes to any of your pages use your head and realize that copying these in over your existing files will overide any custom changes you made. (that is your business, I am just warning you)
2005-11-23_163025_ASPProtect_v7_11-23-2005_update.zip
, at this point I would say install a fresh untouched copy in the web in a different directory and lets see if it acts weird from scratch.. the we can go from there.. I dont know what is going on
, Can I copy the file into the export folder and then the import user function?, That would not happen unless you added a target to the login form or you're code had a base target set.
Like so..
<base target="_blank">
I would really need more detailed information. It's nothing the system does the way it ships under normal circumstances. For example you shouldn't see that behavior in any of the example protected ".asp" pages
that is unless you have something odd going on with your browser settings or you made changes to the login form or code around it causing it. (or you are using frames and dont have some of the targets and what not set correctly)
My guess is that it has to be something you added or did, but I really need to know more to offer more than that.
cwilliams38419.7687152778, I guess i am not being clear as to what i am trying to do. As far as the event thing... lets hold off on that for now. It seems Chris has answered my question and i am on my own for that one...
As far as the log in goes: I went to that site you mentioned;www.CafePress.com to see if they had what i was talking about. and they do. Notice on the bottom of the page it says "sign in to your account"
I want that option on my home page where users can sign in to go to their account. It will either take them to a page where they can update their info, or it will take them to a protected page. Pretty much instead of posting a link on the site to say... click here to go to members.aspx and have it return an "access denied" the user can enter their info from the main page and be automatically re-directed to that members.aspx page.
I know how the viewstate works and i also know what that returnURL thing does..pretty self-explanitory.
Hopefully that makes things easier. I just want a user to log in from the homepage and be redirected to either a protected page or their account page...
(as does that cafepress website)
, ... doesn't seem to be working on my site. I expect I did something wrong.
I've created some groups, "week", "month", and "year". Their IDS are 6, 5, and 4, respectivelty. When someone goes through the PayPal signup, he's assigned to one of those groups based on his subscription.
When I see a new subscriber and check the relevant group the person's supposed to be in, that person's not in that group. I'm adding them manually for now, but I'd sure like a solution for when I go to sleep...
My subscription code looks like this:
input type="hidden" name="custom" value="5,*4*,<% =User_ID %>
One-off code looks like this:
option selected value="7,4.95,1,*6*"
I've created the groups in my management console. Is there anywhere or anything else I'm missing?
, i took another look at the file, and realized that when i was looking at the data structure i had confused "banner_image_URL" with "banner_link_URL". i lengthened the latter, and now all is good.
sorry for the false alarm, and thanks for a very-to-work-with product.
, You are right.
I have SQL server.
From August to today I have used a very simple login system and now I come back to you for better.
I can insert, edit, delete users but it happens what I mentioned in my first message.
,
Timecard Entry: 3/25/2006 4:28:29 PM
Very slow, but steady day., Interview John., Monday's team meetings, Proof read and make changes to Chamber Mailer, working on email catchup, Class , phones, sign ups, some invoices, travel to watertown for meeting ith chriscross, teched calls, steady, Finished insurance forms for Orlando-gave to Michelle-holding until she hears from agent. Brochures mailed to Lee Pierce. Channel Partner info mailed to Superior Computers (entered in partner site). Emailed for confirmation of furniture order. Intial copies of pc bundle/parnters faxed to banks. , Kept an eye on all the usual activities. Cleaned and swept floor from debris left from when phone line was worked over to Ron's desk., phone calls, email, talk with Randy about network changes
, entered payroll in QB, same as above, prep for sovernet mtg, still playing catch up on all this stuff, wasted most of my morning trying to get samariatn problems straightened out, shopping cart, user group website, etc, NeighborhoodSuperMarkets.Com - Making seperate upload components for each category in opening page, Posted acct and did a detail of checks and cash for deposit. Customer inquiries and ans phones., Calls started coming in early because of Lowville. Alan said he was swamped this morning. , Travelling out to Watertown Office, Continue setting up laptop for development, installing thumbnail software, copying over existing webs, etc., worked on the bullets/actions from the meeting and emailed them for approval, Died right off at 11pm, read and sent emails, TIC w/ Darrel and Ed. Wasted time here and there. Discussed Bell on IMC and how to get info entered into Database, Getting people on Exchange in Clayton, setting up Carol's computer for the network. Looking for Quickbooks. Setting up Carol's and Kelly's computers for printing., *TaskForce - WAP Phone Development, Colligo.Net Development, Lunch, Checked mail. Worked with Amy to learn basics of GiSCO web site database. Used it to correct email addresses from KV's list. Revised copies mailed to BC, KV, SW and JG. Watertown Chamber added to database.,
