Blog Entry: 3/25/2006 4:42:22 PM
Your users with Internet Explorer may have received the "Page Expired" error. For ASPProtect users, it happens when the user is not logged on and tries to invoke the target page. check_user_inc.asp puts up the login form, and IE sees it as part of the target page. Any later attempt to Back up and reload from cache gives the errror.
My solution was, after successful login, instead of falling through the bottom of check_user_inc.asp and running the target page, I issue a re-direct to reload the target page. I also added META tags on the dynamic login form to say no-cache and expire now, so the re-direct really does reload the target page. This time, of course, check_user_inc.asp does not need to put up the login form, and the new target page in cache contains no form at all. So, IE will not give a Page Expired error when Backing up to it later.
Netscape, and I gather other browsers, do not behave the same way, so I limited the solution to IE. Also, the solution only works if the target page has no form of its own.
I'm uploading my customized version of check_user_inc.asp that contains this solution. (In it, I also used the Javascript focus method to place the "cursor" in the Username field when the login form loads.)
2004-11-22_050940_check_user_inc.zip
cwilliams38313.494537037, again.. more custom code work would be required to handle it
,
Still not ready... I have no time to finsih it at the moment..
release date is unknown...
, When adding a new user I am taken to a form.
There are several "required fields".
First and last names are 2 of them.
This is not needed by me and I need the company name as a required field instead. I work and deal with company names, not individuals.
So, i am unable to add any users due to this.
How can I either do away with the names as a required field or swap the individual names with the company name as a required field?
I have customers wanting to be able to view their own stats, but I need to do away with the required fields to work with my customer base.
-john
, Help!.. I need to export the username and password fields to a mail merged letter so everyone knows their username and passwords. However whenever i access the database or do an export. The passwords showup as encrypted. Is there a way to access the list, un encrypted?
thanks
, Not to be pushy, but how's the new version progressing?
I'm hoping these features will be in it:
- possibly add the ability to move pictures around in an album. and maybe between albums, I must also remember to move the ratings and desc as well for that image.
- possibly add a feature to store 3 versions of images uploaded
thumbnail, medium res, and high res/original
-
add option to store the images orginal name in the images description area during upload
may be helpful to people that name their images in a somewhat descriptive way
-
add support for the ibulc bulk upload client that I recently discovered
If you could use a beta tester, I'm still just setting up my site and would be willing to run a beta.
Thanks
Al
, Noted:
I actually did not think you did.
As far as debugging goes.. thats all built into visual studio.net.
There is a tag you edit in the web.config file to enable project debugging
http://support.cjwsoft.com/code/moreinfo251-1.htm
Like I said though for changes to ASPProtect.NET I'd start off from scratch and stick with vb.net... using the visual.studio.net interface is not really vary hard to remove and change things you dont' need even if you are a C# coder. Especially simple stuff like you mentioned.
, You are NEVER supposed to move any files, especially that one. Of course that is going to break a lot of things.
Please put it back the way it was.
You change the path of the include file when you call it, never the location of the include file., Chris:
Quick question. I'm currently using navigation style 1 which
keeps everything within the 1 window. I'd like to take the text
descriptions and place them under the main photo when it is
displayed. Before i modify anything, I'd like to check if I'm in
the right neighborhood first. It looks like I need to:
- modify the behaviour of the 'onmouseover' function in the file 'view_album_style_1.asp'
- add in a few lines of code to take
FixStr(UserArray1(PicIndex - 1),"PrepareForJavaScript"), put it into a
text string and do a response.write under (or over) the photo in
question.
Question Part 2 -- if i wanted to use the first line of the description as a title could I:
- add in an input to the photo upload
- concatenate the 2 strings together (title and description)
- display the title under the thumbs
- bold the display of the title over the large version of the image.
Pretty complicated questions, but I'm coming along nicely (IMHO). Have a look at
http://www.iphotosite.com/galleryapp/default.asp
I really like the progress that I've been able to make with this app without really spending a huge amount of time.
Kurt
, Chris,
Ok new puzzle
. I have now managed to gonfigure it to get the admin screen and update members. All excellent news. Seems to work a treat.
But have used the code you give in your getting started guide to add at
the very top of an aspx page to be protected. The path is configured
correctly I am sure. the aspx file is in the root, the protect program
is in a folder now configured as an application (hence the steps
forward to get to the admin screens) on the root, so address should be
foldrname//protectpage.ascx.
Proble when I load that aspx page is as above. The exact same config error
,oww!
I am sure its a setting on my server now, but I dont know what to ask for, Any ideas...
So close now!
Andy
, Ok, I started the database tables from scratch. I did everything using sql enterprise manager and query analizer..
Same thing happens... certain passwords just do not work.
So I did a lot of testing and I have come to the conclusion that this has something to do with the regional settings of that SQL server.
Here is an example.. see the screenshot below.
Username "admin" password "petepetepete"
The top query done in Enterprise Manager is valid and shows the user.
The bottom query is also valid but it does not show the user.
And that is exactly what is happening from the ASP codes point of view.
Now, this means that even though that encrypted password is getting saved to the databse correctly this particular SQL server just cant deal with it from a QUERY.
It works fine on two different SQL servers that I have. It's just got to be something regional related like unicode characters not being dealt with correctly or something odd like that.
I tried changing the collation data for the "Password" field type on that SQL server and it looks right. I don't know what else to do but it is something about that SQL server. There may be a way to change the regional setting through the connection string but I cant find any articles on that right now.
One solution I have for you to get this working there is to eliminate the encryption factor then I dont think you will have these issues.
It's either that or find another SQL server with US type settings or use MSAccess. ASPProtect runs nearly as fast on Access as long as you do not have over 10,000 users or whatever. The system hardly ever accesses the database so it performance under MSAccess is always good.
Let me know what you want to do. I can shows you how to eliminate the encrypytion factor if you want to try that. I think if I make you a custom version of the RC4 function you can just replace that and then the system will use plain passwords.
Your call..
, Anyway,
How busy your site is actually won't be the only factor. Really the application should not restart unless something happens. If the IIS application is reseting alot it could very well be the ISP restarting the server or doing IISRESETS as well or other sites on the server causing the application pools to restart.. etc etc etc Quality ASP hosting is important. Regardless your hosting company most likely will not admit to anything be out of the ordinary.
As far as that directory deleting itself on you.. I doubt they will have an answer for that one. All I can tell for sure is I didn't put any code to delete it in there.
, It's not normal at all. My guess you accidently edited the code in a bad way.
(thats the same code the every guestbook in every application I sell uses including ASPGuest which gets downloaded for free about 50 times a day)
No one has ever said it acted funny.
I would do a default installation with the original code somewhere and see if the problem occurs. If it does I can take a look.
In the meantime I wouldn't be running that as it is probably using up massive processor time because of whatever is wrong with it.
cwilliams38454.954212963, I am using cdont to send email. what do i have to do send email to other display my full name instead of email address. In other word I want to see first name last name in their email client instead of email address.
thanks for your help
, Thanks
It wasn't a complaint. I just bought it last night and installed it today. But, I must have missed the part about requiring Enterprise Manager for installing it on SQL.
If you want it the link to the Web Based SQL Manager is : http://www.aspenterprisemanager.com/ which is free and the Trialware that I tried is EMS SQL Manager.
Maybe that will help a little in not requiring that people have an MS SQL license to access their hosted MS SQL to install the software.
Thanks
, Chris,
D'oh! How completely obvious!
I got it now. (In Step 4, by the way, you need to click on the web site, not the directory. The directory has its own Properties menu, which is competely different than the Properties menu for the web site.)
Thanks for the fast response!
Robert
, So do I just replace the four folders that came with aspprotect with the four (in my case domain directory) folders in the patch or just move the files?, Is there any way to extend the limit multiple login feature to a certain number instead all or none? In other words, i need to have a user be able to use the same login for x number of people. My customers are institutions and want to be able to have a single login for however many users they purchase for.
, If I also password protect the pricelist pages then someone will have to login twice.
nobody should have to log in twice... ?
session variables keep track of access... once your in - your in and you can browse to and from any password protected pages you like
If it is making you log in each time then cookies are most likely disabled.. session variables requires cookies being on to work.. cookies being on is a requirement of aspprotect and is how Formed Based Authentication works..
let me know if that is the issue there...
you shouldnt have to be logging in more than once per session
Thats the whole point of the application...
, no, you cannot unless you plan to write a lot of custom code.
That is why the option pack has groups which eliminate the need to use access levels because groups can do everything access levels can and more.
There is an article here regarding that.
http://support.cjwsoft.com/forum/forum_posts.asp?TID=32& PN=1
cwilliams38303.5555439815, You can't unless you plan on editiing and custimizing the code.
The application is only designed to have one kind of admin and that kind has full access to the admin area.
You can of course give any user access to stats for their banners via the bannerstats page.
That is how it works. There are no other levels of admin access.
, Hallo,
Can I change the number of the access levels?
I want to have about 20 levels...
, that wont work the way you did it because groups are not stored like like.
groups are stored "*1*"
or "*1*,*9,*"
so if you test for them you must do so using the InStr function of vbscript
example:
If InStr(Session("Groups"),"*1*") Then
' do whatever
End If
also.. as for the session variable
it should be Session("Groups")
And in Version 6.... (its all ready to go in version 7) that session variable must be saved in the check_user_inc.asp file near where all the others are saved. If it is not there by default "I dont remember if it is or not" you have to add it like so near where all the others are saved
Session("Groups") = CmdCheckUser("Groups")
If you are wondering if it is being saved correctly you can always response.write out the Session("Groups") to see if it holds a value
, well, assuming that function works and is vbscript not vb
(if it is vb code it may need some conversion work)
anyway
in "users/add_new_account.asp"
you would put the code for that function anywhere in the page.. it does not matter where as long as it is in code tags <% %>
then.. right under this part of the same page
If Zipcode_Postal_Code_Required = True Then
If Zipcode_Postal_Code = "" Then
ErrorMessage = ErrorMessage & Server.URLEncode("You need to enter a Zipcode_Postal_Code.\n\n")
End IF
End If
add this
If Check_Postcode(Zipcode_Postal_Code) <> True Then
ErrorMessage = ErrorMessage & Server.URLEncode("You need to enter a Valid Zipcode_Postal_Code.\n\n")
End If
No guarantees but that is the gist of it
cwilliams38381.6456828704, yes, dont worry about that. It is not checkking permissions just explaining things.
and dont worry about the extra slash it seems to be adding at the end of the path. That is normal. I guess I need to fix that so it does not add that extra slash., Are you reffering to the number of the left of the users name in admin.
I thought it was a counter at first but that number only displays the number of albums they have set up.
, its no different than linking to an image or another page. you have to adjust the path to the include file based on what directory you are in.. or you get an error
This is noted in the admin area on the code generator page which also gives you 2 examples of ways of calling the server side include. (Virtual or File include)
These threads below are also full of info. I found them by doing a quick search and they should help you out as well.
http://support.cjwsoft.com/code/code_info.asp?TID=349&KW =The+include+file
http://support.cjwsoft.com/code/code_info.asp?TID=303&KW =The+include+file
http://support.cjwsoft.com/code/code_info.asp?TID=236&KW =The+include+file , A nice addition for the listing script would be if the script would allow a "featured ad" or ads that would appear on the default page. , it is by design actually and something that can be improved
(I just never thought of it when I 1st designed the system and it is actually planned to be added in Version 8)
The trick would be to reset those session variables anytime someone edits and saves their information... not very hard at all
you would do it on the save code page for when a user edits themself.
you want to grab the info posted from the form and reset each session variable at the same time everything is re-saved to the database
example
Session("Company_Name") = Request("Company_Name")
, Regarding hosting companies..
Now.. obviously if you are hosting on someone elses server you may not be able to set permissions like this.
Ultimately, if you are hosting somewhere and ASP and Database connectivity is part of your hosting plan. It is the hosting company's responsibility to set these permissions for you when asked or to give you a special interface to do so on your own. If they are not helping you do this then maybe it is time to get a hosting company that is serious about your ASP Hosting Needs.
Also... JUST TO BE PERFECTLY CLEAR
The permissions we are talking about cannot be set via FTP or Frontpage access to your web site. They must be set like shown above or via a special interface meant to set the permissions correctly. For all you people out there messing with the permissions you see in FTP and Frontpage.. you are wasting your time and possibly creating problems in your web.
All ASP scripts that communicate with an Access Database, Upload Pictures, Modify Text files.... are going to need these permissions set in some way or another. We have no control over that fact.
cwilliams38360.69125, I have no idea to be honest, I just like the way it looks 
Good deal on the remote install, just dont pull the old "hangman" move
shutdown the machine on yourself around 4AM. Otherwise you be getting
in the car and going for a drive LOL
, The mass picyure import does not work like that. It involves no uploading component.
Only an admin can do a mass import on an album and they have to ftp the images into the site in that upload folder before they go do the mass import thing. , Yep, thats my thinking as well.
On the test server I have the site connected to a SQL 2000 db with the sa account, so it should have full control. But still no luck.
However, on the test server, I connected to the Access 2002 db and it works fine..adding user, adding categories, adding albums.
Weird
, I think its great to share a mod.
I will have few with the new album.
, Well. fontpage publishing is evil. That you have found out.
Do not use it. It usually wont work right when running asp code locally and also at the server because of differences with the paths and virtual directory structure. etc etc etc
You can definetly use frontpage to connect to the web site live and drag and drop files into it/edit them... but the sooner you stop using the publishing feature the better off you will be.
, After you click the link in the confirmation e-mail you are directed to
the Thank you page. Right above is a sign in link. When I
click this I get that funky error message.
I am trying to integrate the scripts with the look of my
site, if that is what you mean by changing things around too
much. But, I don't think I have done anything out of the ordinary.
Cheers,
Roy
, that variable comes from the settings acreen in the admin area. If you do not have it set properly things like what you are describing will happen., 1st off.. you appear to have some strange things going on with that domain. Looks like you have a frameset and are loading another domain in it which is always confuding especially if you are running the site off your home computer or something... I am not sure
That aside..
If I go to
http://www.bones.myftpsite.net/rfamilystuff/default.asp
and click on the "familiy" category
then right click on a broken image.. look at properties
Your linking the image to your localhost
see
http://localhost/rfamilystuff/pictures/Pic_3_1_thumb.jpg
and that is wrong, just like I said above
Nobody running the site off any computer but your development machine is going to see those pictures because the url isnt valid for them
My guess is in the settings you have the "PictureURL" set to
http://localhost/rfamilystuff/pictures
when it should be
http://www.bones.myftpsite.net/rfamilystuff/pictures
Good luck with this.. I am going to the bar.
If you need more help I probably will not be available until Monday.
cwilliams38394.7688773148, sorry for the confusion, but I am not that good with the tech explantions yet.
what it boils down to is I have an Access Database containing over 100
members names. I want only those people to be able to get into
the secure pages.
Thanks. Harvey
, Well, you cant have a login box on the home page when using ASPProtect.NET.. there is no way to make that work. I tried all day to come up with something and it is not going to happen. I suggest you make a login button and link it directly to the protected page you want them to start on. The redirect or link them whereever from there. Either that or write your own forms based authentication solution that works exactly the way you want it to or edit the code accordingly since you have the source. It is not a feature we advertise for the product regardless. It works the way it works. ,
Timecard Entry: 3/25/2006 4:42:22 PM
The calls came in spurts. It would be busy and then quiet. , timecards tasking Pauls messages, bye bye, Email/Voice Mail/Newsgroups, Corel Linux, Meeting with Paul,Bob Nelson, Beth, Chris B regarding SOftMLS2 software and various issues with our game plan., Meeting with Tara on Partner site information, Marketing, Still very slow...did some Net surfing for some more good sites for Gary. Practiced typing and studied. beth called and said she will be the NOC for rest of day., helped a few people with their email, painting, radlog, Lowenguth - delete old listings, and add new ones..., billing corrections, meet w/Ken Mills re: portal site for vermont dial up customers, Talking with Dennis, working out a time to talk him through working with a TSU at Dr. Maresca's, setting up computers to print in Clayton. Fixing Michele's computer., Proposal for CER Towers - given to Tom propsal for 1500.00 , helping organize office, mailing for new customers., worked on sof auto brochure with Beth, GiSCO Investors (New Soft Publisher)., checked out some things about reports, monday mtg, watching fr101 and other interfaces on imcnet-fr and talking to Randy remotely as he went to Syracuse to change DSU in co-location to see if it was part of the problem. Spoke with Sangoma concerning problems and made changes accordingly. frame router "seems" to be working a little better not dropping off., meeting with Jim and Randy concerning Alliance ATM network. Helped jim come up with a presales questionaire so the sales team knows what information we require from the customer in order to properly provision the circuits for services, slower afternoon, Trained with Randy and Ben., Lunch, customer support: energy initiatives graph control problems-meet w/Jan and make repairs, worked on keeping andy sane....T3 went down when some yokle cut fibre between watertown and syracuse......that's why they have federal rules and regulations!....also set up redhat on a machine, worked on weekly cancels, Took in only 2 calls that were very easy. Other then that i worked on expired accounts, reinstalled everythign for the customer that couldn't surf. did some radlogs,
