Solved

response.redirect - If login successful, then load 'page1', else 'page2'

Posted on 2006-11-15
4
302 Views
Last Modified: 2012-06-27
I have the following logic that doesn't truly work perfectly as I want it to.

What I am trying to accomplish:

User logs in, and is username and password match, then redirect to [http://success.asp]
User logs in, and if username and password DO NOT match, then redirect to [http://fail.asp]
User logs in, enters username, BUT no password, then redirect to [http://fail.asp]

What I am working with:

SQL Server: SERVER123
DB NAME: SCHEMA
DB USERNAME: SCHEMA
DB PASSWORD: SCHEMA
SQL Table: SCHEMA.SURVEY_USERS
Columns in SCHEMA.SURVEY_USERS: "survey_username" AND "password"
Example of data in survey_username: jdoe
Example of data in password: fixme

The following is the logic I have so far, but doesn't seems to work properly. Right now, as I have it, it allows for user to login with the correct username and wrong password.

-----------------------------------------------------------
<%@ LANGUAGE="VBScript" %>
<%
 
  dim objConn, UserName
 
  set objConn = Server.CreateObject("ADODB.Connection")
  objConn.provider = "sqloledb"
  objConn.properties("Data Source").value = "SERVER123"
  objConn.properties("User ID").value = "SCHEMA"
  objConn.properties("Password").value = "SCHEMA"
  objConn.Open
 
  VUserName = ucase(trim(request.form("survey_username")))
  vPassword = ucase(trim(request.form("password")))
 
  session("UserName") = vUserName
 
  strSQL = "SELECT * FROM SCHEMA.SURVEY_USERS WHERE survey_username = '" & VUserName & "' and password = '" & vPassword & "'"
 
  set rsUsers = objConn.Execute (strSQL)
 
  if not rsUsers.EOF then
 

    response.redirect "http://success.asp"
 
        else
 

    response.redirect "http://fail.asp"
 
  end if
 

%>
---------------------------------------------------------------------------
 
0
Comment
Question by:super786
  • 2
  • 2
4 Comments
 
LVL 22

Accepted Solution

by:
WMIF earned 500 total points
ID: 17951041
have you tried running that query directly against the db qith query analyzer?
0
 
LVL 1

Author Comment

by:super786
ID: 17951137
Gosh! It must be "silly mistake" day. There was a typo in my logic. Table is Survey_User, and I put in Survey_Users (note the "s"). Fixed. Done.
0
 
LVL 1

Author Comment

by:super786
ID: 17951142
wmif - I'll still give you points anyways, coz only after you said it I ran it in QA and that's when I figured out what the problem was. So I guess Thanks.
0
 
LVL 22

Expert Comment

by:WMIF
ID: 17951177
hmm, thats weird that it didnt give you any kind of error message.  do you have "on error resume next" anywhere on the page?
0

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
format nvarchar field as mm/dd/yyyy 4 78
Why Bundles is not working on certain files - ASP MVC 3 60
wordpress display sub menu only when click 12 49
age from date of birth 4 51
I have helped a lot of people on EE with their coding sources and have enjoyed near about every minute of it. Sometimes it can get a little tedious but it is always a challenge and the one thing that I always say is:  The Exchange of information …
This demonstration started out as a follow up to some recently posted questions on the subject of logging in: http://www.experts-exchange.com/Programming/Languages/Scripting/JavaScript/Q_28634665.html and http://www.experts-exchange.com/Programming/…
Two types of users will appreciate AOMEI Backupper Pro: 1 - Those with PCIe drives (and haven't found cloning software that works on them). 2 - Those who want a fast clone of their boot drive (no re-boots needed) and it can clone your drive wh…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

856 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question