PDA

View Full Version : Verify login id and password

wanye
04-09-2003, 09:34 AM
hi, i am a newbie in ASP. i need help on verifying login with database upon user key in his id n pw... i am stuck with the script halfway done, can anyone pls help me with it?

<%
dim strUserID,strPassword,sql,conn,rs

strUserID=request.form("uname")
strPassword=request.form("pwd")
set conn=Server.CreateObject("ADODB.Connection")
set rs=Server.CreateObject("ABODB.Recordset")
conn.Provider="Microsoft.Jet.OLEDB.4.0"
conn.open(Server.Mappath("shoppingcart.mdb"))
sql=








%>
raf
04-09-2003, 10:19 AM
This is what i use. The sessionvariable things after validation are optional.




<%@ LANGUAGE="VBSCRIPT" %>
<% Response.Buffer=True %>
<html>

<head>
<meta http-equiv="content-type" content="text/html;charset=iso-8859-1">
<meta name="generator" content="Adobe GoLive 4">
<title>Login asp</title>

</head>

<body>

<%
Dim user, password
password=request.form("password")
user=request.form("user")

if len(user) = 0 then
response.write("<font color='red'>Please enter your username.<br><br></font>")
response.write("<a href='javascript:history.back();'>Back</a>")
else
if len(password) = 0 then
response.write("<font color='red'>Pleas enter your pasword.<br><br></font>")
response.write("<a href='javascript:history.back();'>Back</a>")
else
%>
<!--#include file='conadmin.inc'-->

<%


dim rsLogin
set rsLogin = server.CreateObject("adodb.recordset")

dim sql
sql="select id, user, password, profile from users where user='loginuser'"
sql=replace(sql,"loginuser",user)
rsLogin.Open sql, conadmin

if rsLogin.EOF=true then
Response.Write("<font color='red'>Your username is incorrect.</font>")
response.write("<br><br><a href='javascript:history.back();'>Back</a>")
else

if password <> rsLogin.Fields("password") then
session("logintrys")= session("logintrys") + 1
if session("logintrys") < 3 then
response.write("<font color='red' size='15'>Your password is incorrect.Remember that paswords are 'case sensitive'.</font>")
response.write("<br><br><a href='javascript:history.back();'>Back</a>")
else
response.write("<font color='red' size='15'>You entered three incorrect passwords. You can not proceed.</font>")
response.write("<br><br><a href='javascript:window.close();'>Exit</a>")
end if
else
session("logintrys")="0"
'session("user")=rsLogin.Fields("user") Session variable not used further
'session("userID")=rsLogin.Fields("id") Session variable not used further
session("logonadmin")=2
session("profile")=rsLogin.Fields("profile")

response.redirect("adminmain.asp")


end if
end if
rsLogin.Close
conadmin.Close

set rsLogin=nothing
set conadmin = nothing
end if
end if


%>
</table>
</body>

</html>