Blog Entry: 3/25/2006 4:38:05 PM
you have to check the session variables for groups a little differently.. info on that is here
http://support.cjwsoft.com/code/moreinfo198-1.htm
, ok,
It appears there is an auto logout after inactivity for a period of time. How does one change the default time allowed for inactivity?
thx , when I go to that url is seems fairly fast and somewhat normal.. even when I try to log in it pops right back up asking for login info again..
I would check to make sure you are not running anything that might be effecting your web browsing.. software firewalls.. ad blockers.. script blockers... norton internet security.. zone alarm... anything like that
they can all effect a lot of things regarding how web browsers act. , Another good tip is to make a copy of the "password_admin/default.asp" named whatever you like..
"default2.asp" would work...
then maybe add a link to it from the header_inc.asp file
then you can modify that one all you want and your will still have the original around.
That concept works for a lot of things.. for example you could make a copy of the "users" folder and call it "users2" granted a few paths might need to be changed here and there but really not a lot. (how do you think the paypal signup folders were created, they started as a copy of the "users" folder of course)
You can even make a copy of the "check_users_inc,asp" file if you like. Then make a copy of the "scripts/login_form_inc.asp" file... then make your new "check_user_inc.asp" file reference it.
Then you can password protect pages using different versions of the "check_user_inc.asp" file. Why ? well maybe you want different looking logn forms for different parts of your website or you want to make a lot of changes to the "check_user_inc.asp" file and want to leave the original alone.
The sky is the limit really. When it comes down to it besides the actual guts of the "check_user_inc.asp" file ASPProtect is nothing but html tags and chunks of simple server side code that produce more html dynamically. What your browser ends up with is basic html. (some client side javascript in certain cases, but that is pretty basic stuff too.) cwilliams38422.509525463, Where is the system getting the random user name and password, and why does it keep selecting the same user name and password every time?
, Look in the "check_user_inc.asp" file..
You'll see the name of the cookie there and also get an idea how to access it.
In most versions it looks like this.
Request.Cookies("PASWORDSYSTEMCOOKIE")("COOKIE_USERNAME")
You'll want the cookie for the username because the session variable will not exist unless they have actually gone to a protected page during that session at the site.
It would probably be best the check for both the session and the cookie. That will make sure people logged in that arent using the cookie option still see the message you want to display.
Sorta like this..
GetUsername = ""
If Request.Cookies("PASWORDSYSTEMCOOKIE")("COOKIE_USERNAME") <> "" Then
GetUsername = Request.Cookies("PASWORDSYSTEMCOOKIE")("COOKIE_USERNAME")
Else If Session("Username") <> "" Then
GetUsername = Session("Username")
End If
Response.Write GetUsername cwilliams38298.9175, Larry,
I have a new computer up and running and am back on the Internet full time. I am here to help when you are ready to continue with this.
I went to your site to look around and "try it" like you mentioned but I can not really try anything as the admin username/password seems to be something other than the default , I do not have any programming knowledge and have what might be a simple question.
I am having a hard time getting my hosting company to modify the rights on the data folder. They state they support ASP and access databases however this is the response I got when I requested the modify permissions set for the internet guest account:
Were the rights changed on the data folder? No, we do not manage rights to folders.
My question to you is: Doesn't supporting asp require those permissions be set on the database folder or can asp (not just aspprotect) work without those rights modified?
Thanks , humm, I am curious
If these people are employees and sales reps why are are you using expiration dates at all ? and why the renewing issues... etc etc
I am sure there is a reason but you did not explain.
it might help me to better understand and possibly think about new features for new versions in the future., How can i get to this to register someone in the database only after the Paypal payment has been accepted. I was testing it out to see if it makes it to my Paypal account (which it did just fine) then I closed Paypal before paying. I logged in as the administrator and looked at the member list and the account was created anyway. How can I stop this from being created until "only" after the Paypal payment has been "approved"?
What if this person never comes back to "try again"? Now the username he used (and is inactive) is not available for anyone else to use. And it takes up database space.
I am using the Paypal (non-subscription)
Thanks in advance,
scottyFlasher , recent activity infomation is temporary and mantains itself per application start up.. when the web application restarts for whatever reason the info is reset
a reboot, an iisreset on the server, application pool restarts, etc etc
this is done because if that info was saved in the database your database would get huge real quick
logfiles however do not do that and are permanent , It's not working because i guess im copying the viewstate also...and it comes up
Validation of viewstate MAC failed. If this application is hosted by a Web Farm or cluster, ensure that <machineKey> configuration specifies the same validationKey and validation algorithm. AutoGenerate cannot be used in a cluster. , Did you ever figure out the process for VS2005?, Your actually confusing me with the whole "joe bloe" thing and user access. I just do not get what you are trying to tell me. Perhaps you can explain in a less confusing way. Your just not technically explaining it andand thats what I need to know to possibly help.
As for the subweb thing you just can not do that. Subwebs have their own sets of application and session variables. An ASPProtect installation and any pages you protect with it are required to be in the same "application" in IIS. Sicne subwebs have their own "applications" in IIS that won't work. It is the nature of "forms based authentication" A sub web is alo considered by our licensing to be a seperate web site and ASPProtect is licensed per web site.
As for breaking pages.. you really shouldnt be editing any pages in the admin area as you will break them unles you are very good with ASP. (does not sound like you are..no offense meant at all)
Pages in the "users" folder are less complex and it is usually ok to edit them carefully.
http://www.powerasp.com/content/hintstips/common_sense.asp
Pages of your own that you password protect can still be edited in your usualy way though without effecting anything.
Truth is if you back things up before you start editing how can you go wrong ? That's how you learn. , Editing the look of the login page.
In this version editing the look of the login page is very easy.
You can make this login page look exactly like you web site if you like.
You want to edit the "scripts/login_form_inc.asp" file.
It can be edited with any editor as long as the existing bits of server side code in it and the login form remain in tact.
The best thing to do is back it up before you start editing it.
Then if you goof it up you can revert back to the original.
If you edit this page with FrontPage enable the "show all" feature.
Its the little PIE sign in your icons. It will show the server side code as yellow things on the screen so you know where they are and can be careful not to delete them.
see screenshot
 cwilliams38448.8132638889, Hello,
It is very possible, however there may be some issues such as the session variables specific to a particular user would not be able to be created because there would not be a specific user.
I can't tell you exactly how to do it as it would probably take a few hours of messing around with the code to sort it out. Bascially, it's not something I could tell you how to do real quick and I do not support custimizations to the code.
But, it is very possible. You want to check the server variable for the IP address. The tricky part would be where and how this all just integrated into the "check_user_inc.asp" file , If you run asplistings auto in its own folder with its own application in IIS. Connected to its own database.
And you run your other version of ASPListiings in its own folder with its own application in IIS. Connected to its own database.
You will have zero major changes to make to anything... other than what you did above..
But remember theyare the same app and share a lot of thing including sessions and application variables.. that is why if they are installed in the same domain each one needs its own application set in the IIS console so they run seperately of one another. cwilliams38312.5189814815, Hello,
I think you’ll definitely like aspbanner. It's very easy to setup and use and it should work great with your portal.
You’ll have banners rotating in no time. All you have to do is add banner calling code in your pages where you want the banners to show. There are enough methods that you will definitely find a few that work well for you.
BTW, there are actually 7 methods now as we have a new one.
Information about it can be found in our ASPBanner support forums cwilliams38455.9049884259, lmao ... ya that has never happend to me before.... , I think its great to share a mod.
I will have few with the new album. , Yep, thats my thinking as well.
On the test server I have the site connected to a SQL 2000 db with the sa account, so it should have full control. But still no luck.
However, on the test server, I connected to the Access 2002 db and it works fine..adding user, adding categories, adding albums.
Weird  , We do not have plans to support recurring payments via 2checkout because their system is not flexible enough to allow it to function correctly. Basically their system will not send notifications to our system when a recurring payment fails and therefore there is no way to automatically disable a user that cancels or does not pay. etc etc.. , one last thing... if you did an upgrade from a previous version and didnt do the whole database field thing right during the upgrade process as stated here you could have trouble.
http://support.cjwsoft.com/code/moreinfo174-1.htm
Meaning you should check your new database with the field structure of an unmodified new database and make sure all field names match up perfectly.. especially paying attention to the username and password fields
One last thing..
If you did an import via text file and didn't import all the fields ASPProtect needs you could possibly have problems as well.. though I don't think this relates to the timeout so it probably is not the case , Along with being able to set an expiry date or number of impressions, is it possible to add another option for a banner to be "non-expiring"?
With our current ad software (which we are transferring all data from to ASPBanner), we run banners for both paid advertisers, and for our own services. The banners relating to our own services, we would like to set to "non-expiring" so they appear all the time. , Thanks for the info. We'll do as you suggest.
NPA , its no different than linking to an image or another page. you have to adjust the path to the include file based on what directory you are in.. or you get an error
This is noted in the admin area on the code generator page which also gives you 2 examples of ways of calling the server side include. (Virtual or File include)
These threads below are also full of info. I found them by doing a quick search and they should help you out as well.
http://support.cjwsoft.com/code/code_info.asp?TID=349&KW =The+include+file
http://support.cjwsoft.com/code/code_info.asp?TID=303&KW =The+include+file
http://support.cjwsoft.com/code/code_info.asp?TID=236&KW =The+include+file , Humm, I dont see how moving to a new server could have anything to do with that.
What method of displaying the banners are you using. Perhaps try some of the other ones.
Don't use the javascript method with a javascript based ad like google.. that's for sure. cwilliams38454.8903472222, SQL Server Datareader Datawriter Permissions..
here is a screenshot that shows how to set datareader and datawriter permissions on a database using "SQL Enterprise Manager"
In this example we are making sure the aspbanneruser has those permissions on the aspbanner database in the SQL Server
cwilliams38390.5986921296, I've been working on it for quite some time.... doesn't seem to be working as of yet :(, It runs on either... I used IIS
I dont remember much about installing it except it went pretty smoothly / no issues,
- What kind of encryption do you use with version 7?
- If I purchase version 7 and use it on my site with a new SQL database then migrate the old records from version 6 so I can by-pass the issue with my home-grown Base 64 encryption, do you forsee other issues with the upgrade?
, Something very strange is happening. Some users can't see the classified ads in their browser. This is specific to the user's computer, and they can check other computers and see it fine.
In each case, the user is using windows explorer 6.0 browser with windows xp.
they can't see the ads listed on the ads page, but they can see the categories.
also, they can't see the place ad link on some pages.
Do you think that their browser is blocking the javascript for the mouseover message?
thanks. , you can edit the look of it but because it is licensed software the links to aspbanner and the aspbanner logo.. etc etc must remain otherwise change it all you like., ok, here is what is going on
you are password protecting an ".asp" page that requires querystring info to run correctly (example - "somepage.asp?ID=3"")
that is something I never intended anyone to do.. while it does handle and repass the querystring info along during successful login it does not re-pass that info during a failed login as you have found out
this is all by design.. the only reason the system re-passes the querystring info at all is because I wanted to make it smart for the sake of the remember me/cookie feature.. so if someone was using that and bookmarked a page deep in your site with querstring info...then when they went back to that bookmark they would get authenticated and still see the page as intended with the querystring info in tact
it was a nice feature never intended to handle any situations other than what I just described...
now...
notice the url in the browser after failing a login.. then logging in successfully.. it is missing the querystring info
that more than anything is what is going on.. browser caching can cause some confusion when dealing with this because the browser likes to return you to the page minus the querstring info... when that happens a simple browser refresh at that time may very well solve the problem and then you see the page you are supposed to see...
To avoid all of this...
One solution to this is to always start people logging in to an ".asp" page that has no querystring info. That way this won't happen. Once they are logged in you can then offer them links to the pages they need to go to. (you of course still want to password protect those pages)
Another solution is to log them into a page with no querystring info and then do a response.redirect to the page with quersytring info.. thus accomplishing the same thing but without the possibility of the issue because of a failed login.
Another solutions is to do checks in your asp page for missing querstring info.. and if it isn't there do something about it like send them somewhere else.. or display a message about there being an error... etc etc
So,basically you don't want to tell people to login into such and such page with querstring info... and providing a username and password..... You can do it but like you found out it can cause an error if they mess up logging in the 1st time. The system just was not designed to handle that. There are complex reasons for that involving security that would just take me too long to explain.
I hope this makes some sense to you.. it is very hard to try and explain ,
Ok, set up a new web.config in root, with just the suggested code.
that worked to get this....
Configuration Error
Description: An
error occurred during the processing of a configuration file required
to service this request. Please review the specific error details below
and modify your configuration file appropriately.
Parser Error Message: It
is an error to use a section registered as
allowDefinition='MachineToApplication' beyond application level. This
error can be caused by a virtual directory not being configured as an
application in IIS.
Source Error:
Line 409:
Line 410:
Line 411: <authentication mode="Forms">
Line 412:
Line 413: <!-- DO NOT CHANGE UNLESS INSTRUCTED TO DO SO -->
|
Source File: D:\hshome~aspnetprotect\web.config Line: 411
any ideas?
Andy
, All of the fields with the expected paths show the correct file structure, so now I've put them in them in the boxes , Done!
I was able to put my experience was based on *40 months* of usage! I
think I bought a version way back in 2001, IIRC, so it's been a long,
happy trip with ASPProtect for me!
, Your customer should set up a special page that you send banner clicks to. That page is the page that should record the ip and whatever other info needed.
I suppose you could make a page on your end that records that info and finally redirects them to the intended url as well.
All using simple asp. It's really not that dificult to do, but it is a loit easier if you do it this way and keep it seperate from the banner system.
Here is some interesting information not totally related to answering your question.
The banner system does not track IPs on individual clicks because if it did.. 100 clicks on a paricular banner in one day would result in 100 rows in the stats database instead of just 1 row. That may not seem like a lot, but imagine 30 banners all doing the same thing mulipled by 30 days. Your talking 90000 rows in the database instead of 900. It all comes down to what ASPBanner was designed for which is performance and low resource use.
Some banner systems out there even keep track of individual IP's per banner display. Try to imagine how much that effects performance and how much extra space is used in the database for stats. It's crazy and also the reason that the more little features a banner system offers the slower and slower it begins to run.
I am sure I lose sales all the time because I offer less features, but the truth is I know those features will eventually defeat the purpose of why I created this banner system in the 1st place and that i just not something I want to do.
The banner systems with every little feature are just not well suited to very busy sites no matter how well they are designed.cwilliams38324.8386689815, I'm trying to use CDOSYS.
It seems to work fine on the web page, however the mail never gets
delivered.
I can see my messages sitting in c:\inetpub\mailroot\pickup but they never leave it.
I found another folder after doing a search for "pickup".... it is:
d:\program files\Exchsrvr\Mailroot\vsi 1\PickUp If I paste the files
into there, they get delivered.
How can I get the email to be delivered without doing the cut and paste?
I've tried it both with and without authorization.
I am running a Windows 2000 server with Exchange 2000.
Thanks. ,
Timecard Entry: 3/25/2006 4:38:05 PM
FX CAPRARA - creating push, pull, drag banner ad..., Help in preparations for Orlando, Reinstalled the modem in Ron Q.'s laptop and installed win 2000 on Denise's laptop., timesheets updates, Marty McDermott... real estate in Syracuse (State Tower building), Insurance meeting. , Checking & responding to e-mail from customers., Put the results of modem checks in the maintenance report in Outlook., **Agency Ideas - still trying to get users add to local groups, checking MOPs Beth has been working on....made some changes and gave them back to her. , very busy, Nortel Network Paul, Final Drawing of Network, billing calls, call backs, GraysFlowerShop.Com - Shopping Cart (billable), Working on pocket Real Estate SoftMLS export file specifications.. talking to them on phone as well... left messages, Meet w/Bruce from Freislich, trvl to watertown 23 miles, More work w/ Verizon, orders., floating holiday, please, Posted accts, customer inquiries, and ans. phone. Lots o f payments, Back to North Country Now, met with Howard briefly to let him know how things were laid out down in Syracuse, Phone call with Steve Rose RE ODMLS issues - cleaning up data & customizations & fixes., fx caprara, contacts for errol, steve adams leads, consumer carl, bernier carr, pricing for wtn city school district, Working on SoftMLS.... making changes to CMA and fixing contact manager in house-now.com, Policies meeting, On phone w/Jumpin J` from Forever Broadcasting. Discussing updates to 790wtny and changes that they want made., insurance reviews and searches, Installed Adobe Acrobat Writer and began figuring out how it works for SoftMLS newsletter, NY Air Brake engineering. Problems and troubleshooting w/ Howard, Jeff,
|
