Solved

response.redirect - If login successful, then load 'page1', else 'page2'

Posted on 2006-11-15
4
304 Views
Last Modified: 2012-06-27
I have the following logic that doesn't truly work perfectly as I want it to.

What I am trying to accomplish:

User logs in, and is username and password match, then redirect to [http://success.asp]
User logs in, and if username and password DO NOT match, then redirect to [http://fail.asp]
User logs in, enters username, BUT no password, then redirect to [http://fail.asp]

What I am working with:

SQL Server: SERVER123
DB NAME: SCHEMA
DB USERNAME: SCHEMA
DB PASSWORD: SCHEMA
SQL Table: SCHEMA.SURVEY_USERS
Columns in SCHEMA.SURVEY_USERS: "survey_username" AND "password"
Example of data in survey_username: jdoe
Example of data in password: fixme

The following is the logic I have so far, but doesn't seems to work properly. Right now, as I have it, it allows for user to login with the correct username and wrong password.

-----------------------------------------------------------
<%@ LANGUAGE="VBScript" %>
<%
 
  dim objConn, UserName
 
  set objConn = Server.CreateObject("ADODB.Connection")
  objConn.provider = "sqloledb"
  objConn.properties("Data Source").value = "SERVER123"
  objConn.properties("User ID").value = "SCHEMA"
  objConn.properties("Password").value = "SCHEMA"
  objConn.Open
 
  VUserName = ucase(trim(request.form("survey_username")))
  vPassword = ucase(trim(request.form("password")))
 
  session("UserName") = vUserName
 
  strSQL = "SELECT * FROM SCHEMA.SURVEY_USERS WHERE survey_username = '" & VUserName & "' and password = '" & vPassword & "'"
 
  set rsUsers = objConn.Execute (strSQL)
 
  if not rsUsers.EOF then
 

    response.redirect "http://success.asp"
 
        else
 

    response.redirect "http://fail.asp"
 
  end if
 

%>
---------------------------------------------------------------------------
 
0
Comment
Question by:super786
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 22

Accepted Solution

by:
WMIF earned 500 total points
ID: 17951041
have you tried running that query directly against the db qith query analyzer?
0
 
LVL 1

Author Comment

by:super786
ID: 17951137
Gosh! It must be "silly mistake" day. There was a typo in my logic. Table is Survey_User, and I put in Survey_Users (note the "s"). Fixed. Done.
0
 
LVL 1

Author Comment

by:super786
ID: 17951142
wmif - I'll still give you points anyways, coz only after you said it I ran it in QA and that's when I figured out what the problem was. So I guess Thanks.
0
 
LVL 22

Expert Comment

by:WMIF
ID: 17951177
hmm, thats weird that it didnt give you any kind of error message.  do you have "on error resume next" anywhere on the page?
0

Featured Post

Online Training Solution

Drastically shorten your training time with WalkMe's advanced online training solution that Guides your trainees to action. Forget about retraining and skyrocket knowledge retention rates.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

I recently decide that I needed a way to make my pages scream on the net.   While searching around how I can accomplish this I stumbled across a great article that stated "minimize the server requests." I got to thinking, hey, I use more than one…
Have you ever needed to get an ASP script to wait for a while? I have, just to let something else happen. Or in my case, to allow other stuff to happen while I was murdering my MySQL database with an update. The Original Issue This was written…
I've attached the XLSM Excel spreadsheet I used in the video and also text files containing the macros used below. https://filedb.experts-exchange.com/incoming/2017/03_w12/1151775/Permutations.txt https://filedb.experts-exchange.com/incoming/201…
Exchange organizations may use the Journaling Agent of the Transport Service to archive messages going through Exchange. However, if the Transport Service is integrated with some email content management application (such as an antispam), the admini…

739 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question