Blog Entry: 3/25/2006 4:51:17 PM
ok, well if you want to test on your own.... in the ipn.asp file for the subscription folder you will see this area of code used for testing
' Un-comment this section and give this directory proper permissions to enable logging to a text file
' Very helpful for troubleshooting
' Set ObjMyFile = CreateObject("Scripting.FileSystemObject")
' LogFileName = ("paypal.txt")
' 'Open Text File.. If doesn't exist create it and append to it .. If exists just append to it
' Set WriteMyData = ObjMyFile.OpenTextFile(Server.MapPath("paypal.txt"),8,True)
' RowHeaderString = ""
' RowHeaderString = RowHeaderString & OrderID & vbTab
' RowHeaderString = RowHeaderString & Custom & vbTab
' RowHeaderString = RowHeaderString & User_ID & vbTab
' RowHeaderString = RowHeaderString & subscr_id & vbTab
' RowHeaderString = RowHeaderString & txn_type & vbTab
' RowHeaderString = RowHeaderString & subscr_date & vbTab
' RowHeaderString = RowHeaderString & Access_level & vbTab
' RowHeaderString = RowHeaderString & Groups
' WriteMyData.WriteLine(RowHeaderString)
' WriteMyData.Close
now that folder will need modify permissions for the text file to be written to but this is a good way to test if the ipn.asp page ever gets hit by paypal.
ITS REAL IMPORTANT THAT THE TEST FILE CAN BE WRITTEN TO OR DOING THIS WILL JUST CAUSE MORE ISSUES
To ensure the text file can be written to and permissions are correct for that folder you can make a new .asp in there and run this to see if the text file writing works
Set ObjMyFile = CreateObject("Scripting.FileSystemObject")
LogFileName = ("paypal.txt")
'Open Text File.. If doesn't exist create it and append to it .. If exists just append to it
Set WriteMyData = ObjMyFile.OpenTextFile(Server.MapPath("paypal.txt"),8,True)
WriteMyData.WriteLine("the file was written to")
WriteMyData.Close
Now, you can even change the location of the text file to place that does have permissions if you like.
This is what I would do if I was in there... then I would make some test payments using 1 cent and another paypal account (your allowed 2)
and see what happens
it is always possible the subscription code may have a bug in it. The last time I tested I only tested the single payment folder which worked perfectly. If I have time in the next couple days I am going to test the subscription stuff again. If there is something wrong I can cure it quickly.
The two routines share a lot of code in common.
cwilliams38421.6488773148,
I just added this line to the paypal1.asp
page
<input type="hidden" name="currency_code"
value="CAD">
and it worked. Clearly other values can be entered for other currencies.
Everything was listed in this manual https://www.paypal.com/en_US/pdf/subscriptions.pdf.
Cheers
Roy
,
well, assuming that function works and is vbscript not vb
(if it is vb code it may need some conversion work)
anyway
in "users/add_new_account.asp"
you would put the code for that function anywhere in the page.. it does not matter where as long as it is in code tags <% %>
then.. right under this part of the same page
If Zipcode_Postal_Code_Required = True Then
If Zipcode_Postal_Code = "" Then
ErrorMessage = ErrorMessage & Server.URLEncode("You need to enter a Zipcode_Postal_Code.\n\n")
End IF
End If
add this
If Check_Postcode(Zipcode_Postal_Code) <> True Then
ErrorMessage = ErrorMessage & Server.URLEncode("You need to enter a Valid Zipcode_Postal_Code.\n\n")
End If
No guarantees but that is the gist of it
cwilliams38381.6456828704, the reason being is because when I do installs I do not touch any of your existing content. I only install the base application and make sure everything in it working correctly and also that the example protected pages are working. I do not integrate it with your existing site or edit any of your existing web content. That is up to you
sorry about that, but it would be way too time consuming and editing people's existing pages is a good way to cause a lot of headaches for me and the customer if something goes wrong. Not only that but everyone uses the system differently and it wouldnt make sense for me to be the one doing that based on access levels, groups.. etc etc which will all be custom to how you want things set up.
more on installation policies here.
http://www.cjwsoft.com/installation_service.asp
, ummm.. ok.. Then this doesnt make sense. On two out of the three machines I have in house here, the images do not show up. They only show up on the server machine. I am using the constant url on all three machines. www.rfamilystuff.com Does it show up on your?
, OK, I updated the server with the SP 8 Jet updates and this had no effect.
Then I loaded the asptest file and put in the correct path. The results were:
Failed: Database could not be connected to....
Error reported from server:
Error source: Microsoft OLE DB Provider for ODBC Drivers
Error number: -2147467259
Error description: [Microsoft][ODBC Microsoft Access Driver]General error Unable to open registry key 'Temporary (volatile) Jet DSN for process 0x784 Thread 0x854 DBC 0x2101014 Jet'.
, Thanks for your rapid responses, your support is excellent!
It may be best that I stick with html then. You mention that is stresses the Version 7 software, would the unlimited version perform any differently if I use multiple zones?
Also, if I do go with a single zone, would either program be able to make sure each banner is unique, or would there by duplicates for each page view?
Sorry to post so many questions in one day.
, Permissions and Folder Locations
By default and to keep things clean we store everything in folder called "data"
That folder then has it in 4 sub folders
database (where the .mdb and temporary .ldb files are handled)
export (where the aspprotect export files are saved)
logfiles (where the aspprotect logfiles are saved)
user_pics (where the user pictures are saved)
Doing it this way makes it very easy for a system administrator to right click on one folder and set permissions for that folder and all of it's child folders.
Now, that being said.. you do not have to use these folders.
For example if you already have a folder in your web with modify permissions for the anonymous webserver account then you can use that one folder to store all of the 4 things above.
You'd simply edit your data connection string to point to that folder and then edit the other paths in the settings area of ASPProtect.
We did it that way so you would have options in case your hosting company was being difficult with your ASP hosting needs.
cwilliams38403.6837962963, here ya go
http://support.cjwsoft.com/code/moreinfo169-1.htm
, here is the next response to this which was emailed to me but should have been posted here
From: Mo Afifi
Sent: Sunday, October 23, 2005 4:47 PM
To: CJWSoft Support Info
Subject: Re: CJWSoft Support Info : SSL - Verisign Certifcates
Hello,
Thank you for responding to my posting. In the second line of your response you said “not start them off at an http:// url". I think what you meant is to "not start them off at an https:// url". If this is your intention then I agree with you 100%. I have revised my pages so the users will go first to a non-https page and then make a choice either to use secure or non-secure access. Please note that the site is not intended to be completely SSL protected but only the sign up pages. I have another problem though when I click on the "Secure Log In" and enter my log in information; the entire subsequent URLs will have https:// in them which I could not shake off. As I said the intention was to use the https for sign in only.
I realize that this issue does not have any thing to do with your product, but any input will be appreciated. Best,
, Hi Chris,
Thank you for your prompt response.
Our current project requires alot of customization.
Yes, the error is probably a data problem and not due to your code, because we needed to make modifications to the database. But that's why debugging would be helpful.
Basically our intent to modify the asp protect code stems from the fact that our client doesn’t want certain fields to be recorded or to appear: address, city, state, zip etc…
We are happy to be able to modify the HTML, but we also want to modify some other default behavior, such as which page opens when the "cancel" button is hit in the editaccountinfo.aspx page.
, This server is sitting in my den on a DSL circuit, so I don't have a hosting company. The install for Windows 2000 server is with default settings for all components installed.
I am not sure what you are referring to when you say:
"Does emailing work under the simplest scenario ? (directly from the users screen"
What user screen?
What settings are you referring to that I may have chosen?
, Not without changing a lot of code. If you didn't want encryption you really should have went with version 6. Encryption is a big new feature of Version 7 and it is inter-mixed with it the code in a lot of places.
As for doing the export and import you have to create a valid export file and then read through this very thread which explains how to import an export file with clear text passwords.
This is from the admin area regarding the text file format
The import/export file must be tab delimited with no text qualifiers. The 1st row containing field names and the following each being a new user. To create your own import file it must be in this exact format. To find out what field names and their order are simply create an export file using ASPProtect and take a look at it.
Generating an import file from your own database requires good knowlege and understanding of Access's Importing and Exporting functions. It is not something I cover as the process is different for everyone and not really very hard. , Yup everything looks ok - but why no error?
This just gets better - now the email a friend link says sent successfully and doesn't send out - what the heck...
What would cause it to 'think' it is doing the task yet still fail?
, OK, thanks.
Nick
, No rush, I have it out on the internet, but have not gone live with the site yet.
Thanks for responding,
Enjoy your well deserved break
, Got it working. 
Had purchased a long time ago and forgot about needing to run the userreg.exe. All is well and thanks for the follow up.
Lance
, New question...
When someone edits their personal information, such as address, is there any way to set it so that someone in the office can receive an e-mail noting the changes?
Thanks.
, There are problems with your sql server database then. It was not set up correctly.
The 1st problem relates to having "used stored procedures" checked in the settings page.. but not actually giving those stored procedure execute permissions which they need to run. That is something that must be done on the SQL enterprise manager side of things either by you if you are allowed or your hosting company.
If you can not get the execute permissions set on the stored procedures for the sql database user you are using then turn off that option in the settings page and try things without it.
The 2nd error I am not sure of at this point so correct the 1st issue and we will go from there. It could be another sql database issue (not created correctly) or it could be an asp code issue of some sort though I doubt that or other people would have had problems on that page as well. I also just tested it out and looked the code over and I did not have any issues here. , One problem that is appearing is that in the admin section, in the users.aspx page, only one user is showing up when there are in fact 9 users. Also, when I click the edit user or email icon, the page does not go to the edit screen, it remains on the same page.
Also, I’ve been trying to modify the code to adapt it for our application -- by removing fields that we do not need such as address, city, state, phone, but I am having trouble getting visual studio to compile. It could be due to the fact that the rest of the project is in C#. Or it could be due to some other factor in ASP Protect.
, "do you know a way around the BinaryRead problem with ASPProtect?"
Let me rephrase:
Do you know a way in which ASPProtect can be modified to get around the BinaryRead problem?
Thanks,
Michelle
, After turning off the friendly errors, here is the detail.
Active Server Pages error 'ASP 0131'
Disallowed Parent Path
/users/register.asp, line 16
The Include file '../dataconn_inc.asp' cannot contain '..' to indicate the parent directory.
ANSWER:
http://support.cjwsoft.com/forum/forum_posts.asp?TID=5&K W=Disallowed+Parent+Path+
lancem38310.6408101852, hi,
no.., not unless you come up with some clever way to handle it on your own
http://support.cjwsoft.com/code/code_info.asp?TID=369&KW =https
read 2nd to last post
The way ASPProtect ships it is designed to either be in http:// the whole time or https:// the whole time.... (there curently is no solution from me allowing going from one to the other)
sorry
, I would like to create a login form on the home page which will not be password protected to the site for members so that they can login right from the home page and not a password protected page like many sites have. And every portal I have seen.
Plus the login form looks really pretty and proffesional on the home page 
...
I can't find anything in the documentation that says how to do this or if it's even possible. Everything I have found says to password protect a page and then direct them there which isn't what I would like to do.
Here is the code of the login page which is an asp include file on the main page:
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=windows-1252">
</head>
<body>
<td><img src="images/a026.jpg" alt="" width="187" height="21"></td>
</tr>
<tr>
<td bgcolor="#EBEBEB"><table width="100%" border="0" cellspacing="0" cellpadding="3">
<tr>
<td><table width="180" border="0" cellpadding="0" cellspacing="0" bgcolor="#AAAAAA">
<tr>
<td><img src="images/spacer.gif" alt="" width="1" height="1"></td>
<td><img src="images/spacer.gif" alt="" width="178" height="1"></td>
<td><img src="images/spacer.gif" alt="" width="1" height="1"></td>
</tr>
<tr>
<td><img src="images/spacer.gif" alt="" width="1" height="1"></td>
<td bgcolor="#FFFFFF"><form name="form_login" method="post" action="">
<table width="100%" border="0" cellspacing="5" cellpadding="0">
<tr>
<td width="53%"><input name="textfield" type="text" class="style-01" value="username"></td>
<td width="47%"><a href="#" class="link-02">Forgot pass?</a> </td>
</tr>
<tr>
<td><input name="textfield2" type="text" class="style-01" value="password"></td>
<td><a href="#" class="link-02">Not registered?</a> </td>
</tr>
</table>
</form></td>
<td><img src="images/spacer.gif" alt="" width="1" height="1"></td>
</tr>
<tr>
<td colspan="3"><a href="#"><img src="images/a027.jpg" alt="" width="180" height="15" border="0"></a></td>
</tr>
</table></td>
</tr>
</table></td>
</body>
</html>
Does anybody know what values I would put in the form to send the correct login to AspProtect. And, if I would have to add any extra includes or code to it.
TIA 
, - I am using the original files that came with the software.
- The software ads items to the database flawlessly.
- ASPImage works great.
- When I try to remove an ad or an image it says it's been removed.
- The ad does not show up on the site anymore.
- BUT, when looking at the sql database the ad is still listed there.
Why is the software not deleting the columns from the database and the images from folder?
Note: My other tables for other projects, in the database, allow me to delete them.
, That's exactly what it was.
The site owner couldn't see their own ads because Norton was blocking anything with the word ad in it.
On another note: I changed the word 'ad' to 'listing' and got it to show even with Norton.
, I tried the iFrame method that you have shown, and it works great!!!!, I'm using Groups and would like to assign all new users to a particular group. How is this done? cwilliams38298.5087384259,
Thanks for the quick reply.
I will consider editing the code.
,
The only reason no one else
asked this many questions is possibly because they didnt NEED the functions i
am TRYING to do.
We offer tech support for
installation of the base application purchased in it's native form.
In other words were not planning on spending weeks holding your hand and
teaching you how to build your application or modify the one you bought. Not
because anyone wants to make it hard on you but because there is a practically infinite
number of things someone could be trying to do and the only way to give you the
exact answer would pretty much involve either writing it for you or having a
look at your code to see what the heck your doing. Sorry but my time isn’t cheap
nor do I have a lot to spare. I already gave you my approach on what to do and
what you should be looking at but obviously you’re not catching on. SO ONCE
AGAIN, PLEASE LOOK AT THE SOURCE CODE AND DECIDE HOW YOU WANT TO HANDLE YOUR
END OF THINGS BASED ON HOW THE APP DOES ITS THING. I really don’t know how I
can be more clear that that. I don’t have a crystal ball that can tell me where
you’re going with your own code, what the final requirements are... what field
you want to add or remove for the database etc. There is a demo up that
everyone can look at and play with so they can get a feel for how the things
behave and look. It’s not my fault your naivety led you to believe you could do
anything with it in ten seconds. I mean if I just add some wings to my car
maybe it will fly, and if you just add a shopping cart and a few products maybe
you can start your own Amazon.com with that software right? Sounds good to me…
It would take me longer to re-write YOUR code
than it would to have LEARNED ASP.NET and made MY OWN.
Well thats one thing we both agree on, I bet it would take you a long
time to rewrite the code when you dont know how to write it in the
first place. By you own admission you dont know enough about what your
doing to be messing
with a .NET app at this point. Maybe you should take your own advice
and LEARN
SOMETHING ABOUT IT. What’s even worse is that application isnt even
complicated, its 101 stuff honestly. One class, thats it! Your not
looking at thousands
and thousands of them that you will have to read and comprehend. If you
can
actually “read” the code we kept it lean and mean and to the point.
Nothing
strange or random, no references to a zillion things all sprinkled here
and
there. Its reads like a book if you know the language. That’s why
developers
buy these apps all the time. Not because they couldn’t write one
themselves,
but because they know their time is valuable as well and for $150 which
is less
than most get paid an hour they couldn’t be bothered. Furthermore we
both spend a lot of time making sure these apps are "dumbed down" so
that the average programmer without a lot of object oriented background
can pick up the coding style tweak it if they need to. Some people do
modify things to suite their needs and
others are
happy with our apps "as is".
Just to recap we already wasted two days yappin about your
jacked up servers and after you went through THREE of them and finally got one
working you said the code was working. Red lights started flashing in my office
by the time you got to the second screwed up machine, but hey weird things
happen so at that point I wasn’t 100% concerned. Technically we could have and
possible should have cut you off there as the policy in place is pretty clear
about us not being your tech support crew when it comes to getting your machine
working properly (especially one we cant even look at). Go check those posts
again both Chris and I were answering your questions and being as helpful as
anyone could possibly expect.
Several more days have been spent answering questions about
how to modify your application and again that’s not our responsibility and we don’t
support modified versions of the software for all the reasons that should be
obvious. No software company does and if I have to explain why that is well this
conversation is beyond hope.
Bottom line is the responsibility to support that
application ends the moment you get it running the way it was shipped. Were
pretty damn decent about going above and beyond and a lot of the time we go
into things we shouldn’t have to. If you have well thought out and specific
questions by all means ask, this isn’t some sort of thanks for your money now
get lost operation. CJWSoft has been around since the beginning of Microsoft’s
entrance into the web application market. We have thousands and thousands of
happy customers because we are developers and enjoy working with other
developers along the way.
You’re not the first N0oB to show up, but you’re the first
one I can think of that ever tried to tell us we didn’t write the apps we sell and essentially
wanted to argue that we don’t know what were talking about. Meanwhile you
should have been done with your thing days and days and days ago, not in here
yapping off and showing your ignorance to the other developers that regularly
browse these forums. You trying to tell me how CafePress works is a joke, I happened
to have been part of the team that worked on the first few revisions of that
site and again you really didn’t even understand what I was getting at in that
last post. LINK TO LOGIN PAGE not link to every protected page on the site.
If you think I am pissed off at you, your wrong. I'm
just irritated with the whining about this and that and rather than
admit your over your head you come back with half baked remarks that
only make sense to you. If you think you can
google
a few terms and come back here talking smack like you’re actually
someone that
knows what you’re talking about your just making a fool of yourself.
You sound like a guy from China trying to tell me how to speak
English... My
advice
is get a few books and start learning or try actually reading up and
listening
to the other bazillion knowledgeable developers out there that do a
great job
posting articles about the subject. You might just learn something and
actually
get your project finished before 2010 and when you do please come back
and
re-read your posts with "enlightened eyes" so you can see what a goofball you are for saying half
of the
things you have said. I am not in the mood to keep helping you get your
project done step by step. I have huge projects of my own going on and
if I thought you could actually provide a descent project specification
I might offer to make the changes for you at a serious discount so you
could go away and everyone would be happy. Problem is I dont get the
feeling you could explain your way out of a paper bag let alone provide
a group of programmer the techinal specs for your project.
Your best bet is to post a link to the start of
this thread at www.AngryCoder.com I'm sure a few of people over there would be more than willing to give you a ton of usefull advice 
Google 4GuysFromRolla… a great resource site with example, just
dont come back here telling me those guys/ladies posted things
that dont work either.
Chris has written hundreds of articles on PowerASP, a great
place to start looking as well… www.powerasp.com
I've been spitting out code for longer than I can remeber and I still look
thing up on this site because its LOADED with great info. That happens
to be one of the very first ASP sites that went up on the net so lets
just say he knows a bit or two about the subject.
I'm sure your frusturated but
your pushing your luck
seriously. 38 posts about this subject in a week and your over there
hacking away on your virus infested WaReZ machine which isnt exactally
the ideal development rig. I mean we provide the code and your supposed
to provide at
the least a very basic knowlege of what your doing and a production
grade platform to test it out on. To me thats like buying a
car and then asking how to drive it... then bugging the dealer to teach
you and when you smash the thing complaining because no one told you
that your not supposed to drive into a wall. I have the same policy as
the dealer, show me something wrong with the car from the factory and
we will fix it for you NO QUESTIONS at all with our appoligies, but
really once you take it off the lot what you do with it is your deal
and its not our responsability in the least.
, SQL Server Datareader Datawriter Permissions..
here is a screenshot that shows how to set datareader and datawriter permissions on a database using "SQL Enterprise Manager"
In this example we are making sure the aspbanneruser has those permissions on the aspbanner database in the SQL Server
cwilliams38390.5986921296, Dear Christofer
I already have send you the details you asked me for. Please let me know if you have received
, Sorry, you cannot, that is how it works and that is how it has to work for reasons I am not going to try to explain as it is pretty technical. (it works the same way even when not using paypal and using email authentication... nearly every registration system out there does it that way under an email authentication scenario or a PayPal IPN thing.)
Basically, if you are concerned about it you need to periodically manually check for accounts that were never activated and delete them. Maybe when I get some time some day I will make a little interface to help find those and clean them up at once.
, here is a thread that may help you if this is what you were getting at
http://support.cjwsoft.com/code/moreinfo389-1.htm
, ya, that firewall could mess that up.
just edit which ever style include you are using
(with a text editor)
it will be one of these depending on your settings.. and they are located in the "scripts" directory
view_album_style1_inc.asp
view_album_style2_inc.asp
view_album_style3_inc.asp
find this section of code and remove the part in red
If Last_Counter_IP <> Request.ServerVariables("REMOTE_ADDR") Then
Set CmdUpdateCounter = Server.CreateObject("ADODB.Recordset")
cmdTemp.CommandText = "SELECT " & tbl_label_albums & ".* FROM " & tbl_label_albums & " WHERE (Album_ID = " & Album_ID & ")"
cmdTemp.CommandType = 1
Set cmdTemp.ActiveConnection = ConnGallery
CmdUpdateCounter.Open cmdTemp, , 1, 3
CmdUpdateCounter.Fields("Album_Counter") = (Album_Counter + 1)
CmdUpdateCounter.Fields("Last_Counter_IP") = Request.ServerVariables("REMOTE_ADDR")
CmdUpdateCounter.Update
CmdUpdateCounter.Close
Album_Counter = Album_Counter + 1
End If
, This is a great article for newbies..
Hints & Tips when working with ASP
http://www.powerasp.com/content/hintstips/common_sense.asp
cwilliams38436.5949768519, sorry.. you just said above you were using XP SP2 so that is the article I referred you to as I just assumed you were talking about your local web server
here is my article on permissions regarding server 2003
http://www.powerasp.com/content/new/windows_2003_server_and_ permissions.asp
I can look at your installation monday if you like. In about an hour I leave for a wedding thingie and I wont be around again untill monday around noon
Try the uploading using VBSCRIPT method just for the heck of it. Perhaps there is an issue with the installation of the dundas component.
CJW
, My hosting company uses ASPEMAIL - and I am trying to setup the mailing settings on ASPPROTECT - but cant seem to get it to work. I've tried many different options - here are two that are the closest - but have issues:
1. If I use the settings:
I can get get notified when a new user logs in, email a user from aspprotect user screen if they are in my company and have a valid email -- but I can not send to the outside world - I get an relay prohibited error.
2. If i try to change the setting to use the Hosting Website email server - I get the following results: I dont get notified when a new user registers, I cant send to internal company people - but I can send to the outside world.
**any suggestions on what to do? I'm trying to work with the people who manage the mail servers - but since I dont know anything about them - its a bit difficult.
If you code support for it yes, the application comes with no paypal code or support built in.
If you think it will help you, you are welcome to a copy of the classic asp version which supports paypal subscriptions. Perhaps looking at the code would help you.
, 
