Blog Entry: 3/25/2006 4:38:50 PM
I am brought to a logon page in which I cannot access the page. This must be due to the check_user_inc.asp include. Without the include I get a blank page.
, Did you see this thread. It shows how to set up the project in Visual Studio in detail.
http://support.cjwsoft.com/code/moreinfo85-1.htm
,
Humm, Did you make any changes to the code ?
Solid Black is not the default so it must have changed at least once.
Otherwise it might be some sort of application variable problem.
I would make sure the web is and "application" in the IIS console.
, I would like to delete the SQL tables and set them up from scratch using enterprise manager and sql query manager and see what happens
If that is ok with you let me know.
Something is wrong like I said... almost seems like the database is caching old password info from the field., I log all 404 errors on my site and since installing ASPBanner, I get a lot of the following error:
/aspbanner/edit_banner.asp?Banner_ID=11&User_ID=1 contains a broken link:
/aspbanner/right1.gif
ID changes and there are various missing links. Some missing links include:
/aspbanner/drop2.gif
/aspbanner/left1.gif
/aspbanner/right2.gif
etc.
While not critical, these are filling up my error logs and it takes time for me to sort through them.
, Regarding hosting companies..
Now.. obviously if you are hosting on someone elses server you may not be able to set permissions like this.
Ultimately, if you are hosting somewhere and ASP and Database connectivity is part of your hosting plan. It is the hosting company's responsibility to set these permissions for you when asked or to give you a special interface to do so on your own. If they are not helping you do this then maybe it is time to get a hosting company that is serious about your ASP Hosting Needs.
Also... JUST TO BE PERFECTLY CLEAR
The permissions we are talking about cannot be set via FTP or Frontpage access to your web site. They must be set like shown above or via a special interface meant to set the permissions correctly. For all you people out there messing with the permissions you see in FTP and Frontpage.. you are wasting your time and possibly creating problems in your web.
All ASP scripts that communicate with an Access Database, Upload Pictures, Modify Text files.... are going to need these permissions set in some way or another. We have no control over that fact.
cwilliams38360.69125, I have accessed the "get_me_in.asp" page and entered the password encryption key. Once I entered it, I was taken to the ASPProtect Admin Area Login. It does not give me the option to create a new user as is described in the general installation documentation. How do I access the program now?, Where is the system getting the random user name and password, and why does it keep selecting the same user name and password every time?
, Thankyou, that was very helpful, Another good tip is to make a copy of the "password_admin/default.asp" named whatever you like..
"default2.asp" would work...
then maybe add a link to it from the header_inc.asp file
then you can modify that one all you want and your will still have the original around.
That concept works for a lot of things.. for example you could make a copy of the "users" folder and call it "users2" granted a few paths might need to be changed here and there but really not a lot. (how do you think the paypal signup folders were created, they started as a copy of the "users" folder of course)
You can even make a copy of the "check_users_inc,asp" file if you like. Then make a copy of the "scripts/login_form_inc.asp" file... then make your new "check_user_inc.asp" file reference it.
Then you can password protect pages using different versions of the "check_user_inc.asp" file. Why ? well maybe you want different looking logn forms for different parts of your website or you want to make a lot of changes to the "check_user_inc.asp" file and want to leave the original alone.
The sky is the limit really. When it comes down to it besides the actual guts of the "check_user_inc.asp" file ASPProtect is nothing but html tags and chunks of simple server side code that produce more html dynamically. What your browser ends up with is basic html. (some client side javascript in certain cases, but that is pretty basic stuff too.)
cwilliams38422.509525463, Nope,
No changes to any scripts - just a response.write added to Email_Password.asp to print out the SQL.
Sure - here's the address.
www.omegaphibeta.net/aspprotect/users/Email_Password.asp
-Toni
P.S. E-mail address to look for is serena_5@hotmail.com
, its just an example connection string in the datacon_inc.asp file
you have the edit it to make sense for you..
the readme.txt file with the sql directions tells you this if you use that script
------------------------------------------------------
Examples of using DSN-LESS connections.
The "SERVER" and "Data Source" settings are either the Network Name for the SQL Server or the IP Address.
For local servers you can also use an IP of "127.0.0.1"
GalleryConnectionString = "Driver={SQL Server};UID=aspphotogalleryuser;password=temp;DATABASE=aspph otogallery;SERVER=127.0.0.1"
or
GalleryConnectionString = "Provider=sqloledb;Data Source=127.0.0.1;Initial Catalog=aspphotogallery;User Id=aspphotogalleryuser;Password=temp;"
------------------------------------------------------
cwilliams38325.8980324074, This is the error that I am getting when I try to add a banner...
[code]Microsoft OLE DB Provider for SQL Server error '80040e09'
EXECUTE permission denied on object 'sp_ASPBanner_GetZones', database
'aspbanner', owner 'dbo'.
/aspbanner/appinfo_inc.asp, line 67[/code]
also, when i go to the banners tab i see this in the banner list...
[code](3 Banners Found)
Microsoft OLE DB Provider for SQL Server error '80040e14'
Line 1: Incorrect syntax near '='.
/aspbanner/banners.asp, line 306[/code]
Help., LOL
, okay thanks, I'll try to help when I get back tues night,, see the contact page for info on where I am
http://www.cjwsoft.com/contact/default.asp?Subject=CJWSoft+G eneral+Inquiry
, You do not say something like that in a support forum for a legitimate software product. I don't think piracy is funny in the least bit. It is something I deal with every day with my own software. If you want to joke about it please do it someplace else. If you are downloading things via p2p do not talk about here. I don't want to know about it period., Oh big deal !!... John mentioned some site and you feel like you proved some sort of point. Aren't you special ?
Look, I am telling for the 3rd time you can't do what you are talking about with ASPProtect.NET. Are you braindead cause I really am beginning to think you are and I for one am done trying to be somewhat nice to you ??????
I am also willing to bet you had no idea what viewstate even was until I mentioned it and then you probably went and read up about it so quit trying to pretend like you know what is going on! If you knew what was going on you would not be asking more questions about ASPProtect.NET than any customer in the history of selling the application.
As a matter of fact you should send me like 400.00 just for all my time you have taken up because you are totally frigin clueless !!!!!
I should have cut you off the instant you offered me illegal software from p2p right in a forum post., Yep, thats my thinking as well.
On the test server I have the site connected to a SQL 2000 db with the sa account, so it should have full control. But still no luck.
However, on the test server, I connected to the Access 2002 db and it works fine..adding user, adding categories, adding albums.
Weird
, no, its part the concurrent login checking system.
currently when that is on logging off does not come into play..
(pretty much because it is such a complex system I wasnt able to make it quite that intelligent this time around)
when concurrent login checking is enabled the only way to log in again at another system with the same username and with a different IP is to wait till that time period is over
sorry
as you may recall it was rush feature at the last moment before I got version 7 finished. Hopefully I can improve on the feature in the next version but I dont really see it as being a big issue at the moment. Sometimes when you want maximum security you have to make some tradeoffs and that is why the feature is optional.
,
|
These Settings:
Picture upload feature settings. |
| Use_Picture_Upload |
< = value=True name=Use_Picture_Upload> Check this if you will be using the picture uploading feature. |
| UploadDirectory |
< size=60 value=C:\Inetpub\virtuals\aspphotogallery.com\Web\demo\pictu res name=UploadDirectory>
Example: "C:\Inetpub\wwwroot\ASPPhotoGallery\pictures"
Ask your server admin if you are not sure.
This directory needs proper permissions for the SAFILEUP component or the VBSCRIPT solution to work correctly. It basically needs to same permissions as the database directory would need when using Microsoft Access. |
| PictureURL |
< size=60 value=http://www.aspphotogallery.com/demo/pictures name=PictureURL>
Example: "http://p600laptop/ASPPhotoGallery/pictures"
This is the web URL of the the upload directory specified above. |
| Use_SAFILEUP_Upload |
< = value=SAUP name=Upload_Solution>
This option will enable file uploads using a component called SAFILEUP which is high end upload component available from www.softartisans.com. It is far superior in performance and reliability compared to the VBSCRIPT file upload solution.It is highly recommended for a busy site. If you enable this component and do not have it installed on your web server you will cause an error. |
| Use_ASPUPLOAD_Upload |
< = value=ASPUPLOAD name=Upload_Solution>
This option will enable file uploads using a component called ASPUPLOAD which is high end upload component available from www.persits.com. It is also far superior in performance and reliability compared to the VBSCRIPT file upload solution.It is highly recommended for a busy site. If you enable this component and do not have it installed on your web server you will cause an error. |
| Use_DUNDAS_Upload |
< = value=DUNDAS name=Upload_Solution>
This option will enable file uploads using a (FREE) component called DUNDAS UPLOAD which is a high end upload component available from www.dundas.com. It is also far superior in performance and reliability compared to the VBSCRIPT file upload solution.It is highly recommended for a busy site. If you enable this component and do not have it installed on your web server you will cause an error. |
| Use_VBSCRIPT_Upload |
< = value= name=Upload_Solution>
This option will enable file uploads using a pure VBSCRIPT solution. It requires VBSCRIPT version 5 or higher to be installed on the server. The solution usually works fine, but has been reported to cause memory leaks on XP machines. |
, I am getting the same error looking at the previous post, I looked in settings and my Registration-URL is pointing at the correct location.
Is there any other thoughts on this issue
Thank you!
Matt2112
, I was able to get it all figured out. Thanks a lot for your help, I really appreciate it. I ended up copying the database with the password to the directory and used the user/password connection code and it works great. I believe it was related to that but I cannot be sure. Thanks again!
,
I encountered a problem that I haven't been able to solve.
I'm trying to get .pdf files to byte serve (page-by-page load in the browser)
but unable to do so. I've narrowed it down to stream download file where it
creates the header object. I haven't made any success with the changes I've
tried. Any help would be very nice.
This maybe useful:
http://msdn.microsoft.com/library/default.asp?url=/library/e n-us/act/htm/actml_ref_href.asp
, Yes, that was it! I had not created the banner for that zone yet. Once I did it came up fine. Do I win the Bonehead of the Year award?
I am just implementing the product, and I deleted the included zones instead of renaming them. That is why it is up to 6. I am migrating banners from my current system before I implement the code onto my pages.
If I may, I'd like to ask another question. I use rotation on all pages of my site except for the home page, where the banners are all smaller and static - an advertiser can expect their banner to always be in the same spot on the page.
I am currently hard coding this via html, but then I do not have the ability to collect stats on home page banner clicks, so I want to use ASPBanner. My question is, can I do this without creating a seperate zone for each banner? In other words, is there a way to modify the html code (that works just fine) so that in addition to indicating the zone, it can indicate the specific banner I want to appear? I would then paste the code in each cell of the table, and alter the banner #. If I do this with just the zone, I expect that the page will randomize the position of each banner across the page. You can see what I'm talking about by clicking here: http://www.PoconoCommuter.com/
Thanks for your help!
, I think I've got it to work somewhat. I modified the 2checkout1 & 2 asp file to use and pass Product_id. It now identifies the product correctly. I'm good fo now. Thanks for the info though.
-Jason
, Hey, I thought I'd share this tip with the ASPProtect community...
If you'd like to remove, modify, or add fields to the "Users" view in
the password_admin default.asp page, it's really easy to do. Well, at
least it was for me. I'm using an MS Access database, by the way.
For me, I don't need "Company" info, but I do need last access and # of
times accessed displayed. Therefore, I had to change the default page
in three areas:
In /password_admin/default.asp, go to about line 185 or so, where you see stuff like:
[code]<td valign="bottom"><font face="Arial" color="#000000"
size
="2"><b>First Name& lt;/b> </font></td> [/code]
OK, those are the column headings. Each one corresponds to a column
from your USERS table in your database. There are two more areas to
consider, both of which appear immediately after this section.
The next section has statements that look like this:
[code]<td valign="bottom"><a href="<% =THISPAGE
%>?SORTBY=First_Name+ASC&MyPageSize=<% =MyPageSize
%>&Keyword=<% =Server.URLEncode(Keyword)%>"><img
border="0" src="../images/sort_ascending.gif" Alt="Sort
Ascending"></a><a href="<% =THISPAGE
%>?SORTBY=First_Name+DESC&MyPageSize=<% =MyPageSize
%>&Keyword=<% =Server.URLEncode(Keyword)%>"><img
border="0" src="../images/sort_descending.gif" Alt="Sort
Descending"></a></td>[/code]
See the "First_Name" items? The first is for an ascending sort, the
second for a descending. This particular line corresponds to the code
snippet immediately above it. But all this does is handle the sorting.
For the actual data, look lower for this stuff:
[code] <td bgcolor="<% = Cellbgcolor
%>"><font face="Arial" size="1"> <%=
CmdListUsers("First_Name")
%& gt; </font></td> [/code]
It's a good ways down, so don't be impatient if you don't see it in 10
lines from the end of the last mentioned section. This stuff handles
the display of the data from the database (where else ya gonna get
data, anyway?)...
Now, to remove a field, you need to find the three sets that go with
that data. The ascending/descending sort is potentially the trickiest,
because it's the longest set of data and can take a number of lines.
Just clear it from the start td to the end /td and you'll be fine.
To *add* a field, copy and paste the code from an existing field and
modify it. In the first one, the column title, you can type whatever
you want to describe your info. Nobody but you and your admins will see
it. For the next two sections, though, you need to get the correct
column heading from the USERS table and use that to correct the lines
in the copied code you pasted in.
For example, when I added a column to show the number of times a user
logged in, I copied the above snippets and pasted them in where I felt
the column I needed should be. Then, in the first one, I changed "First
Name" to "Logins". In the ascending/descending snippet, I changed
First_Name to Counter. Same for the last snippet.
The result? A new column, showing the number of logins my users were successful with.
Of course, before you experiment, back up your existing default.asp file, JUST IN CASE.
Have fun!
, When I add a user, I can not activat it.
What do you have the registration type set to in the settings ?
They wont be activated automatically unless you have "automatically" selected ?
It sends me back to log on and will now allow me to log in as admin???
I am not quite sure I understand ? Seems to me like that would be normal because you can always log in as the admin at any time. If you cant log in as the user you just signed up as that could be for a couple reasons relating to the registration type you have slected in the settings. There are 3 types all epxlained in the settings screen. Some require manual activation byt the admin, some involve a registration email.. etc etc
I can restart the APP and log in as Admin, but the user I added
is still not activated??
How and why are you restarting the applicaton ? Please explain what your doing there.
My system will also not allow me to set the Stay Loged in FLag.
It just ignores it....
As I told you in an email earlier cookies must be enabled for authentication to work. You mentioned now you can not log off ? I am not sure I know what you mean by that. I assume you know to close all browser windows when testing things like this and I assume you know you have specifically log off and confim it in order to remove the remember me cookie and have to log in again when you return to the site.
, Your assumption was incorrect.... the login count has nothing to do with that. The login count only has one purpose and that is to limit the amount of times a user can log in if you want to do that.
Logging in for the 1st time means the time at which they 1st login and their session at the site is created... If there session ends and they come back and login they will get redirected because it will be the 1st time again.
Forms Based Authentication is all about sessions and session variables.
If you only want them redirected somewhere based on the login count that is something you have to work out and check on your own. It's very doable.
Seems like now I should have explained that better but I never thought anyone would think it meant what you thought., Just got back 10 minutes ago..
Missed plane yesterday because of traffic and the flight today was 3 hours plus 4 hours of driving
The fact that you are using Server 2003 is not relevant. I am very familiar with it and all my sites run on it.
The ASPNET account will be there by default once the .NET framework is installed. It won’t just show up in the list, you have to search for it like my article mentions.
http://www.powerasp.com/content/new/windows_2003_server_and_ permissions.asp
That error really means exactly what it says. You have to give that account permissions correctly. , I checked through the code and could not find anything as well.
However, I do think it may be related somehow to the code as I get the messages popping up in the error log only after I have edited a banner.
If there is nothing obvious, I may just set my error log to filter and automatically delete this type of error. Not something I prefer to do.
Thanks for the quick response.
Otherwise the program is working very well and I'm happy with it.
, You should read my article on server side includes… the path to the include file must of course be adjusted depending on where in your web you are.
http://www.powerasp.com/content/code-snippets/includes.asp
You will also notice if you look at the provided example pages that the include paths have been adjusted to make sense.
If it is 2 directories down it should probably look different..
example:) "../../checkuser_inc.asp"
It’s weird that if you are not getting an error because if the path to the server side include is wrong you should get a nasty server error.
Also..
The ASPProtect system and any pages it protects must also be part of the same Application in IIS. It’s the nature of forms based authentication. Do a google search if you are not sure what an application is in IIS.
Lasty…. If you are logged in at the time
Whether your current session at the site is still active… or you have the cookie set to remember you.
Well, nothing will happen… cause your already logged in and you will just see the page as normal.
Perhaps things are working and you just don’t understand that part ?
You need to go to the log off page.. log off… then close all instances of the web browser windows..
Then come back to the site… then see if it prompts you to log in.
cwilliams38228.9837152778, I have just started to move my sites to a new dedicated Windows 2003 box. I have parent paths enabled, SSI turned on but I still can't get ../ to work with server side includes. Everything I read online says that I need to turn on parent paths but again, they are already turned on.
The hosting company where the server is located can't tell me anything, they just say that that is the way it is with Windows 2003. I don't buy it!
Can anyone tell me anything on this issue to help enable the ../ for serverside includes?
, Hi - When I try the mass email feature, I get an error that says:
ODBC Microsoft access driver) too few parameters expected 1
/aspprotect/password/admin/send_mass_email.asp line 280
Oddly...this feature works fine when I use the original admin user that you setup.
But I setup another one with my username and password (not test) - because I was afraid anything with "test" could get deleted.
Any ideas on why the new admin userid would not work? Note: I have not change any code from the original installation.
, site looks fine in ie and also firefox from a windows machine..
I dont have a mac and I have not heard of that browser before
Sounds like an issue with the way that browser handles and puts together html/flash in relation to the layout of your site which is fairly complex
less likely - could also be related to computer processor/resources as that is a decent sized flash file and could bog down certain machines on the client level.. internet connection as well ?
those are my guesses.. I dont see anything wrong from windows xp web browsing from a fast machine and on broadband.. looks pretty nice actually , IT worked just as cwilliams said. I did see the IP address being stored in the table but it didn't dawn on me that it was tied in to the view count, I tried it from a different IP address and it worked great .
Good coding Christopher
Thanks
John
, humm.. their FAQ is interesting...it looks like some sort of .NET configuration issue regarding security policies like you mentioned
Thats one of the big problems with hosting .NET. Some hosting companies just do do some oddball things. ASPProtect.NET works under default conditions but when hosts go around locking things down to the max there is bound to be trouble. This is the 1st I have heard of this.
Now, ASPProtect.NET does use the "System.Data.OleDb" and "System.Data.Odbc" which your host says they block because they require full trust.
All I can really say at the moment is go with a hosting company like www.alentus.com or www.maximumasp.com that does not restrict your .NET abilities so much.
In the meantime I am going to ask John Evans what he thinks about this.
, While my host says the permissions are now correct....its still trying to download the setup ASP file instead of executing it.
I really need to get this application working asap too. I noticed the purchasing page said that install came free.....so any help would reaallly be great.
re
, ADODB.Recordset error '800a0cc1'
Item cannot be found in the collection corresponding to the requested name or ordinal.
/aspprotect/password_admin/default.asp, line 287
I'm doing an upgrade from an OOOOOOOOOOLD version (not sure if it was 6 or not) and it read my database OK prior to adding a new user. Now I get this error message. I was able to run the password encryption function OK, but I still get this error when I try to view the password_admin stuff. I can log in via the "get_me_in" asp page just fine, but I get the above error.
If I try to log in with my admin account, I get
ADODB.Recordset error '800a0cc1'
Item cannot be found in the collection corresponding to the requested name or ordinal.
/aspprotect/password_admin/check_admin_inc.asp, line 166
*****
OK, my question is this... if I retype all the info from the old DB into a brand new one, never before used, that would work, right? I only have 108 users, so that's about an hour of work. Or is there a 5-minute fix that I can try? I've done some messing around that got nowhere and returned all edited files to their original state, with the exceptions of the ones calling the DB location.
I'll start the C&P process and await your reply... 
On a side note, I really love the new format and am excited about the new features. I'm not married to upgrading the DB and if copy and paste is faster (I just need first name, last name, username, password, email, and expiration date), then I'm using v.7 that much faster.
cwilliams38457.6090509259, When using the ASPProtect admin panel. My firewall software is going crazy or Blocking it on the Mass E-Mail, Newsletter, and other pages.
Here are some of the messages:
[Unauthorized Access Attempt] This signatures detects an attempt by a web server to deliver a malicious HTML page to a browser client, in an
[Suspicious Activity] This signature detects HTML documents attempting to spoof a link destination in the browser's status bar.
I am using Black Ice...
Will users also get this kind of activity from the pages ??? Or is it only because of using the Admin Interface of the software ???
Thanks
,
Timecard Entry: 3/25/2006 4:38:50 PM
radlog, dial up issues, ask us a question, email, phones., answer alarm call for park find out who did and comeon meet copers, Steady morning. , * Bio Tek: Vax Data - list an Invoice Report, Planning the tech room, and the billing room, and more phone system., ADVERTISING, PRODUCED NEW RADIO ON ALL STATIONS, CH 7 NEW AD COPY, NEW PRINT ADS, INSERTS INTO NNYBE AND GWCC, steady morning. , Check Voice Mail/email
clayton Chamber- go over info for meeting/links- contact Karen about street meet- Have Tim complete info.-
Dr. Moore- Jefferson Continuing Education- information about class- need presenation for July 6th Class.
Renzi Bros- link two sites together- modifiicarion form sent
Pen Clark- trouble reprt sent to Randy and ben -= permsiion set up ,
Peter Levos- search eninge registration
Tom Ross- front page access for rossassociates- send email to nadrea to start billing
do work order for ti bait and others
, teched phone calls, NT Service, meeting in clayton with fred c, Powerpoint templates, worked on MLS roster page, teaching Beth how to setup FTP on Neptune and on tycho. Also taught her how to use the computer console in 2000 to fix services on another 2000 server when you can't term or use emonitor, Short break and checked out what was left for snacks., Picked up mail and opened. Posted accounts, ans. phone, credidt card authorizations,and customer inquries. Did a detail of checks and cash for a bank deposit. Made the bank deposit., normal afternoon., Meet with Paul Barton, helped michele clean up bugs with inventory, Cutover Stats to new server, tested out ok, will change DNS shortly, cphospital.org, updating my task list and helped David fix chapindrip.com ftp problem.....wasn't setup in serve-u correctly...showed him what was wrong, Riveredge - Modifications to ad in Vacation Guide, Meet with Tara about Syracuse Business Fair ideas, CFM FOODS DESIGNING WEBSITE AND MEETING WITH CLIENT, answered tech related phone calls. checked and called on rad log, online issues, aks a question emails, and voice mail. Busy at the end- Ogdensburg 393-6504 went down., business cards - printer set up, did a setup. had a billing question. quite a few calls about email. 2360 was messed up too, called back expired customers, Figuring out how to use the brackets that Dave dropped off. Waited for Drew to drop off the car so we could go back to McQuade. Put together another parabolic so it's ready to go,
