Blog Entry: 3/25/2006 4:50:56 PM
Your assumption was incorrect.... the login count has nothing to do with that. The login count only has one purpose and that is to limit the amount of times a user can log in if you want to do that.
Logging in for the 1st time means the time at which they 1st login and their session at the site is created... If there session ends and they come back and login they will get redirected because it will be the 1st time again.
Forms Based Authentication is all about sessions and session variables.
If you only want them redirected somewhere based on the login count that is something you have to work out and check on your own. It's very doable.
Seems like now I should have explained that better but I never thought anyone would think it meant what you thought., ok, I am going to do that in the next few hours. I cant do it right now as I have a few other business's and something else needs my attention right now.
Chris,
Ok nevermind that... i got by that wasn't paying attention...
The problem is even before this which i didn't know until now.
I placed the protect tag in a page i called members.aspx
When i go to this page is says ACCESS DENIED etc etc etc.
When i go to login to view this page i get the error..which i DIDNT know because i assumed it was working. This is the error im getting:
Server Error in '/MAP' Application.
The resource cannot be found.
Description: HTTP 404. The resource you are looking for (or one of its dependencies) could have been removed, had its name changed, or is temporarily unavailable. Please review the following URL and make sure that it is spelled correctly.
Requested URL: /map/users/aspprotectlogin.aspx
Version Information: Microsoft .NET Framework Version:2.0.50727.42; ASP.NET Version:2.0.50727.42
btw it says /map because that is the subfolder within the root folder , Hi, lets start with about when did you purchase and download the application so I know what version of the code you have., i downloaded the latest version. i also downloaded the sql script provided and ran in sql query analyser to create the tables.
After that i ran a special page to intially get into the system,
then setup a new user, then make them an admin,
and after that i logged out and again when i try to login iam not able to login. When i check the ASpp_User table I noticed that the values in the fields "Login_limit" and "Active" in the ASPP_Users table in the SQL changed to NULL and 0. But if the value are Nulls or 0 it means it's not active and it's not allowing me to login.
Pls advice
, upgrade pricing is here
http://www.aspbanner.com/purchase_unlimited_v8.1_classic_upg rade.asp
what is different
http://www.aspbanner.com/v8_notes.asp
the changes to make it work with MySQL were vast to say the least
more on that from an old thread
http://support.cjwsoft.com/code/code_info.asp?TID=37&PN= 1&TPN=1
just please remember use of MySQL is just not supported
http://www.aspbanner.com/mysql.htm
I can assure you it works well as I have people using it
, ok, thats actually just the xml parser component barfing out on you.. it can't handle the load of being called so much on that server
you might want to try some of the other methods of calling banners, No problem. I get it now.
I added a Session Variable for "Counter". Then wrote an If statement around that. When the user logs on for the first time they see a window pop, after that the normal start page.
Thanks
, Hello..
I actually noticed something was up with your install earlier...
(I saw you in my log files when you clicked to cjwoft from the docs)
I need more info... like what uploading method your using.. what image resizing component, what widths yoru resizing things to... etc
have you tried it while telling it to delete the pics and also while not telling it not to delete them from the import folder
I might have to take a look tommoro as well to really figure it if that is ok
I have to go the bar to meet some friends so I wont be of much more help tonight :)
I been working steady all week and need a few.
CJW , Need to know more about ASP ?
Check out these links.
| |
15 Seconds
Free resource for developers working with Microsoft Internet Solutions. 15 Seconds is the biggest IIS and ASP development resource in the world. |
| |
ASP FAQ
Have a question about ASP? Check the ASP FAQ site. They've probably got the answer. |
| |
ASP Free
Your 1st source for free ASP and ASP.NET live demos, downloads and more!!! |
| |
ASP Connections
ASP Connections Conference for the ASP Developer features sessions on ASP Performance, IIS 5.0, ASP 3.0, XML, ADO, E-Commerce, VID, COM, COM+, MTS, DHTML, load balancing, and more. Speakers include Mike Amundsen, Wayne Berry, Charles Carroll, Michael Corning, Jeff Niblack, & Ken Spencer. |
| |
4GuysFromRolla
4GuysFromRolla: Web Technology, Programming, Humor... All this and it counts as work! |
| |
CoverYourASP.com
A great new site. It's got some great stuff and is using JScript! A must see! |
| |
askASP
Promising new site! Check out the question archives! |
| |
CodeHound
CodeHound ASP - The ASP Developer's Search Engine! |
| |
CodeAve.com
A neat ASP reference with some interesting features. Check out their "Script Writers" |
| |
ASPZone
The website for advanced ASP developers. |
| |
DevASP
A relatively new ASP site. Straight forward and informative. |
| |
www.LearnASP.com
This in another site maintained by Charles Carroll, and it specializes in Active Server Pages programming issues. Contains links to a wide range of resources and articles. |
| |
ASPin.com
The ASP Resource Index. Here you will find the stuff you need to take advantage of ASP and make your website an interactive mecca. |
| |
ASP Sites
A great place to go to find ASP resources fast! |
| |
Macromedia - DevNet
While much of the content is Dreamweaver MX-centric, they also have a fair amount of plain vanilla ASP.NET content as well. |
cwilliams38431.8787152778, Ok, have contacted the web hosts. Thank you for your help so far
Regards
Andy
, A nice addition for the listing script would be if the script would allow a "featured ad" or ads that would appear on the default page. , you would have to edit the application in visual studio.net.. change some things around and recompile the application... in the process figuring out how you want to handle all of that (probably combining the username and email fields just on the registration form then saving both values to the database)
very doable.. just not anything documented or supported as it is custimization
I do have a very nice article on the forums on how to set up a project in visual studio.net with the application.. it is in the forums, Chris: You are right about a little extra coding to make it work. I am still learning .ASP coding, so I did a little web searching and used IF THEN statments to confirm a member logged in with a valid Access Code. If valid, the protected page executes, with the Member's Name and Access Level on a single line at the top of that page. Looks sharp! If not logged in, or a non member (who found the page via Google), I used a Redirect to send s/he to a login page with optional links as you suggested (http://www.vspa.com/aspprotect/vspa-password-failed.asp) . I couldn't get it to work when using Group Access, but I am sure that is just because I am a novice at .ASP (I will post that example when I figure it out). Meanwhile, here's the code I used that works:
<%@ LANGUAGE="VBSCRIPT" %>
<!--#INCLUDE FILE="dataconn_inc.asp"-->
<!--#INCLUDE FILE="check_user_inc.asp"-->
<!--#INCLUDE FILE="config_inc.asp"-->
<% =Session("First_Name") %> <% =Session("Last_Name") %>:
<%
If Session("Access_Level") = "6" Then
Response.Write "VSPA Active Member Access Level 6"
End If
If Session("Access_Level") = "7" Then
Response.Write "VSPA Life Member Access Level 7"
End If
If Session("Access_Level") = "8" Then
Response.Write "VSPA Officer/Staff Access Level 8"
End If
If Session("Access_Level") < "6" Then
Response.Write "Access Level 1-6 NOT AUTHORIZED RESTRICTED AREA ACCESS"
Response.Redirect("vspa-password-failed.asp")
End If
%><!-- http://www.vspa.com/aspprotect/vspa-password-enter.asp -->
<!-- *** End ASPProtect Code *** -->
<html>
<head>
, Christopher
Many Thanks
Seems like its working just got to test it bit to see, though it wasnt going to work as I had one too many End If's after the last part of the code you done for me. But even I eventually sussed it, nothing to do with your bit just another mistake on my part
Great to get support like this especially on a Saturday
regards
John , O.K. , I register myself as a user. No problem, Iget an e-mail saying account active. No problem. I click the link in the e-mail. No problem. I click sign in and get this message. Big problem!!
Microsoft VBScript compilation error '800a0411'
Name redefined
/aspprotect/config_inc.asp, line 15 Dim Address_Required,CDONTS_Installed,City_Required,Registration _Type,VerifyURL,Log_Off_Page
----^ cwilliams38456.0969444444, Redirecting is not something ASPProtect does because you can
do that sort of thing using simple ASP redirects.
In all of these examples you are going to want to protect the pages you send these users to accordingly.
So that if they know the url they just cant go their directly without loging in.
Redirecting example..
This page will redirect admins or level 4 users to a certain page and anyone else to
another page.
<%@ LANGUAGE="VBSCRIPT" %>
<!--#INCLUDE FILE="check_user_inc.asp"-->
<%
If Session("Admin") = "True" or Session("Access_Level") = "4" Then
Response.Redirect("sompage.asp")
Else
Response.Redirect("someotherpage.asp")
End If
%>
Redirecting example..
This page will redirect level 1 users to a certain page. level 2 users to certain page, and anyone else to
another page.
<%@ LANGUAGE="VBSCRIPT" %>
<!--#INCLUDE FILE="check_user_inc.asp"-->
<%
If Session("Access_Level") = "1" Then
Response.Redirect("level1.asp")
ElseIf Session("Access_Level") = "2" Then
Response.Redirect("level2.asp")
Else
Response.Redirect("allothers.asp")
End If
%>
Redirecting example..
This page will redirect user "PistolPete" to a certain page.
<%@ LANGUAGE="VBSCRIPT" %>
<!--#INCLUDE FILE="check_user_inc.asp"-->
<%
If Session("Username") = "PistolPete" Then
Response.Redirect("somedirectory/somepage.asp")
End If
%>
then just make sure the page you send the user to to also checks to see if the user is the right user.... to make sure others users can't access each others pages
<%
If Session("Username") <> "PistolPete" Then
Response.Write("You do not have access to this page.")
Response.End
End If
%>
etc etc etc.... these code snippets should point you in the right direction...
, Can I have the logon be in a top frame while having the protected pages displayed in a main frame?
Using frames with forms based authentication is not the best thing to be doing. Your much better off not using frames and using includes files to do a virtual frames sort of thing (search google) but if you are going to use frames I would suggest password protecting the frameset page as well as any pages it contains.
If you want to have a login form in a non protected top frame all the time.. that posts to a lower frame that is password protected.. you would do this
http://support.cjwsoft.com/code/moreinfo169-1.htm
but change the target of the form to one of your frames
personally though I think that would be a somewhat goofy setup to have going on
Also, how will it behave if a user moves in between a protected page to a public page and back to the protected page again?
As long as they have cookies enabled which is required for session variables to work... then you will have no issues because once they come back to a page they have permission to they will just be allowed in without login.. at least while that session is still active.. or for a longer time if they choose the remeber me option which keeps track of them with a cookie .
Really, the best thing to do is expirment and see how things behave.
, I apologize if I've missed this, but I would love to see the ability to auto-e-mail the advertiser at some randomly set interval before the banner expires. Ideally, I would also be cc'd on this e-mail so I can stay in touch. If the advertiser wants to renew, I can receive payment and change the expiration date without their banner ever falling out of service.
Since e-mail is already built into the program, would it be difficult to add a routine that checks for expiring banners at some daily interval, and contacts the advertiser?
To get really fancy, the e-mail could include the ability for me to add a button for paypal, allowing the advertiser to easily click and send off another payment.
Best,
Wayne , Thanks for the info. We'll do as you suggest.
NPA , pretty clever...
If anyone is interested in what the Mod function actually does this article explains it nicely. They even use it for the same purpose in the examples.
http://www.asp101.com/articles/steven/mod/default.asp cwilliams38210.6791898148, I'm using version 6 upgrade and recently some of the users complained that their passwords are no longer working. I was able to replicate the problem as I also experienced the same thing with my account.
Once I reset the password thru e-mail (Forgotten your password?), I am able to login but it fails later. This is weird as I have an identical copy of the code running flawlessly  on my test server.
The only change which I made to the original downloadable code is by adding password encryption using Base 64 encryption.
Any ideas what might be the problem  , Okay, I did that, now I get:
Microsoft VBScript runtime error '800a004c'
Path not found
/aspprotect/password_admin/upload_post.asp, line 292 , The PayPal feature that is in ASPClassifieds has always been labeled as experimental and has never been supported as the documentation says. About a year ago I stopped even mentioning the feature on the product pages or in the live demo because I didn't like how it worked and I decided I would just market the application as a free based classifieds. It’s just not something I can support or talk about. To work really well it really needs to be coded to use PayPal IPN and a credit system. Where ads and various extra features cost so many credits and people have to buy credits before they can post any ads.
That’s about all I can tell you. It's just not something I support. , Ahhh, I see it, thanks that was the ticket.
, all that docmunetation is online as well right here so you dont really need the chm file
http://support.cjwsoft.com/code/info24.htm
the chm format is a windows format that can only be viewed on windows pcs. I do not know why you can not see it. I would do reseach on viewing CHM files on whatever operating system and version you are running because perhaps you are using a mac or linux operating system which can not natively view chm files ?
, ok, Is there a possibility to build in a option that the administrator will be notifed when a banner expired.
, When using the ASPProtect admin panel. My firewall software is going crazy or Blocking it on the Mass E-Mail, Newsletter, and other pages.
Here are some of the messages:
[Unauthorized Access Attempt] This signatures detects an attempt by a web server to deliver a malicious HTML page to a browser client, in an
[Suspicious Activity] This signature detects HTML documents attempting to spoof a link destination in the browser's status bar.
I am using Black Ice...
Will users also get this kind of activity from the pages ??? Or is it only because of using the Admin Interface of the software ???
Thanks
, also.. you could try chaning your connection string to set the current language to english like in this example..
BannerConnectionString = "Provider=sqloledb;Data Source=127.0.0.1;Initial Catalog=aspbanner;User Id=aspbanneruser;Password=temp;Current
Language=English;"
I do not know if that actually works but from what I have been researching it looks valid and it may solve your problem.
Also: The value may need to be Current Language=us_english
You'll have to try them, its part of how the skins load.. regardless you got bigger problems here..
I am beginning to wonder if you unzipped the download correctly because I see things in folders they should not be in...
you should have ended up with a bunch of folders and files...
It you just ended up with a ton of files in one directory you did not unzip the zip file correctly... if so check your zip program settings.. I mean that error is because it is looking for a file in the skins folder that isn't there and it should be there
better yet, unzip the downloaded zip file using windows xp built in unzipping features which will do it correctly... , I have imported like 50,000 users into an access database when testing... it took like 4-5 minutes but worked..
course it really all depends on the setup how many you can get away with
something must still be wrong
have you tried just importing 1 or 2 users for troubleshooting sake ?
I would also recommend that after any timeout you reboot the server or at the very least do an "iisreset" to get things back to normal , One month later, things are running very smoothly. Color me "satisfied customer"!
, Can you do a better price deal for that version in place of the one I've just purchased ie for a single licence rather than unlimited Christopher?
Or failing that can you give me an idea of how many changes you had to make to convert 7.3 to work with Mysql?
Regards,
Dave , If logfiles do not get created it is most likely one of 3 things
- invalid physical path specified
- permisssions
- filesystem object is disabled on the server
that path doesn't look correct to me for a live professionally set up server but only you or your server admins can know that for sure
you will not get any errors when things arent perfect.. just no physical logs
RecentActiveUsers and RecentPageRequrests are not related to the stored logfile feature.. Recent Activity is a different thing , on that particular page check the session variables manually (not using the include)
that way you are keeping the login access checking to an absolute minimum, elminating any form processing from the login procedure, and keeping the upload script happy
like so
<%
If Not InStr(Session("Groups"),"*1*") Then
' do whatever
End If
%>
you could response.write something followed by a response.end
or you might even want to response.redirect them to some other page that using the "check_user_inc.asp" where they can log in
And if you are going to be using a free asp upload script use this one as it is probably the best pure code upload solution available as far as performance goes.
http://www.freeaspupload.net
, you can not limit image size using the pure code upload method. Its not possible using a pure asp method that I know of.
You would have to be using one the supported commercial upload components and edit the upload code accordinly to limit upload sizes (you would do this by looking through their documentation and samples) I didnt include any support for upload file size limitations with the supported 3rd party upload components because in my testing I found it problematic with all but aspupload from persits software. (I have example coe for that component I can provide that limits the upload size and seems to do it well) I am sure it could work with safileup and dundas as well but I gave up trying.
As for image resizing..
Image resizing requires the use of one of the supported 3rd party image resizing components. You didnt mention if you are using one or not. If you dont have one available image resizing is just not possible as asp can not do that on its own. , [QUOTE=cwilliams]
Every application we sell that has a password on the database uses "temp"
Also, the password is in the connection string in the dataconn_inc.asp file.
After all, the ASP code needs to know the password just like anyone that wants to open the database would.
[/QUOTE]
That i have, my question revolves around the all the users and passwords that I in that database. I need to be able to export that list to word for a mail merge list, but when I do the passwords show up encrypted. I need to be able to get an unencypted list.
thanks , Some of our users complained that their users id and passwords are sent in the clear. So we decided to invest in an SSL certificate from Verisign. It has been tested fine with all forms and pages in ASPProtect version 6. The only remaining page which I am not sure how to protect is the home page. Let's say my home page is http://www.MyDomain.com/index.asp. When the user goes to this link he/she will be presented with the check_user_inc.asp page so he/she can enter their ID and PW. So how to make the login information send from this page thru HTTPS? ,
Timecard Entry: 3/25/2006 4:50:56 PM
Reset modems, sat in the NOC room, and went over to IMC and DANC ...... AGAIN., Online issues were blank along with Radlog, Emails, Tasks, check e-mail, worked on screen shots for help pages, worked on newsletter for customers, enter bills, Fiasco w/ Doldo Insurance. Talked w/ Paul also., check and reply to e-mail, Review notes from Eric Mower meeting, OSSN Specs, Billing System Review PCS, General - RFP, Bell Atlantic, LUNCH, MLS Site Inspection, Took tech calls, checked RAD, AUAQ, DUI, and Voice Mail. It was pretty slow. , Sorted envelopes until after 12 because Jon came in at 1030 and I was logged on as well and my phone didn't ring so I kept on sorting., Another email from Mark Holberg regarding view/edit stats area of the site., readied money for clayton, finalized and submitted staples order, checked accts in imail, filed customer paperwork, filed for jwood, called to have quotes for trash removal faxed/mailed, answered phone, signups, cancels, acct changes, took customer payments., Resetting open modems., TRAVELED BACK TO WATERTOWN, billing issues, answered tech related calls. checked and called on rad log, voice mail, ask a question emails, and online issues. Steady with calls on Lowville and Madrid., techcalls, online issues and Radlog, Took tech calls, monitored RAD, DUI, AUAQ, and Voice mail. Kinda slow today. , holiday, Worked with tara kelly and Steve on instructions for the pc bundle site., space age pools- gather info for web iste and design, checked the microcoms in clayton and reset ones that were idle..., travel back to watertown, travel to lafargevlle, Resetting open modems. Checking 779-2360. Busying out a problem modem.,
|
