?
Solved

Block multiple login attempts

Posted on 2009-05-20
5
Medium Priority
?
677 Views
Last Modified: 2012-05-07
Need script to block multiple login attempts after 3 tries. I have the login process set up in Coldfusion. Help.
<CFIF ISDEFINED("Form.userProvided")>
<CFSET userProvided =  #parsecfmsql(Form.userProvided)#>
<CFSET pwProvided =  #parsecfmsql(Form.pwProvided)#>
 <CFQUERY NAME="Check" datasource="datasourcename">
 SELECT *
 FROM Users 
 WHERE userProvided = '#userProvided#'
 AND pwProvided = '#pwProvided#'
 </CFQUERY>
 <CFIF CHECKADMIN.RECORDCOUNT IS 1>
  <CFSET SESSION.LoggedIn="Yes">
  <CFSET SESSION.UserId=Check.Id>
  <cflocation url="gotopage.cfm" addtoken="No">
 <CFelse>
  <script language="JavaScript">
    alert( 'Please try again.');
    self.location="backtologin.cfm";
  </script>
  </cfif>
</CFIF>

Open in new window

0
Comment
Question by:tartarus78
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
5 Comments
 
LVL 63

Accepted Solution

by:
Zvonko earned 1000 total points
ID: 24434885
How about this:
<CFIF ISDEFINED("Form.userProvided")>
<CFSET userProvided =  #parsecfmsql(Form.userProvided)#>
<CFSET pwProvided =  #parsecfmsql(Form.pwProvided)#>
 <CFQUERY NAME="CHECKADMIN" datasource="datasourcename">
 SELECT *
 FROM Users 
 WHERE userProvided = '#userProvided#'
 AND pwProvided = '#pwProvided#'
 </CFQUERY>
 <CFIF CHECKADMIN.RECORDCOUNT IS 1>
  <CFSET SESSION.LogCount=0>
  <CFSET SESSION.LoggedIn="Yes">
  <CFSET SESSION.UserId=Check.Id>
  <cflocation url="gotopage.cfm" addtoken="No">
 <CFelse>
  <cfparam name="SESSION.LogCount" value="0" >
  <CFSET SESSION.LogCount=SESSION.LogCount+1>
  <cfif SESSION.LogCount GT 3 >
    <cflocation url="quitlogin.cfm" >
  </cfif>
  <script language="JavaScript">
    alert( 'Please try again.');
    self.location="backtologin.cfm";
  </script>
  </cfif>
</CFIF>

Open in new window

0
 

Author Comment

by:tartarus78
ID: 24435530
Wonderful, thanks Zvonko!!!

I changed value="0" to default="0" in CFPARAM. Any idea why the JavaScript ALERT is not working?
0
 
LVL 63

Expert Comment

by:Zvonko
ID: 24436474
Uhps, sorry for the default.

Do you have method=post in your form tag?
I do get the alert() in my tests.

0
 

Author Comment

by:tartarus78
ID: 24442373
Yes, I do have method=post on my form tag. Very weird.
0
 
LVL 63

Expert Comment

by:Zvonko
ID: 24444425
Look into browser html page source where you expect the alert() and look for broken html tags. Sometimes it is a simple missing closing " for the string to prevent whole script form execution.

Post here the html page source and I can check for you.

0

Featured Post

On Demand Webinar: Networking for the Cloud Era

Ready to improve network connectivity? Watch this webinar to learn how SD-WANs and a one-click instant connect tool can boost provisions, deployment, and management of your cloud connection.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

FAQ pages provide a simple way for you to supply and for customers to find answers to the most common questions about your company. Here are six reasons why your company website should have a FAQ page
Originally, this post was published on Monitis Blog, you can check it here . It goes without saying that technology has transformed society and the very nature of how we live, work, and communicate in ways that would’ve been incomprehensible 5 ye…
The viewer will learn how to dynamically set the form action using jQuery.
The viewer will learn how to count occurrences of each item in an array.
Suggested Courses

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question