<div>
This should be: 
In Login.asp 
Not 
In Login.php 
 
If you are interested in a good ASP Login script then have a look at: 
<a href="http://ee.cffcs.com/Q_24252782/login.asp" rel="ugc">http://ee.cffcs.com/Q_24252782/login.asp</a> 
code 
<a href="http://ee.cffcs.com/Q_24252782/Q_24252782.zip" rel="ugc">http://ee.cffcs.com/Q_24252782/Q_24252782.zip</a> 
Username = logincookie 
password = 12345678 
 
Let me know if you have any questions. 
 
Carrzkiss
</div>

<div>
thank you so much. This looks great, but how would I map it to my companies database? Yours runs off your database. Below is the login script currently. 

<pre><code class="code-10 nolinks" id="code-331290">&lt;!--#include file=&quot;../Connections/connBt.asp&quot; --&gt;
&lt;%
' *** Validate request to log in to this site.
MM_LoginAction = Request.ServerVariables(&quot;URL&quot;)
If Request.QueryString&lt;&gt;&quot;&quot; Then MM_LoginAction = MM_LoginAction + &quot;?&quot; + Server.HTMLEncode(Request.QueryString)
MM_valUsername=CStr(Request.Form(&quot;userName&quot;))
If MM_valUsername &lt;&gt; &quot;&quot; Then
 MM_fldUserAuthorization=&quot;&quot;
 MM_redirectLoginSuccess=&quot;welcome.asp&quot;
 MM_redirectLoginFailed=&quot;login.asp?valid=1&quot;
 MM_flag=&quot;ADODB.Recordset&quot;
 set MM_rsUser = Server.CreateObject(MM_flag)
 MM_rsUser.ActiveConnection = MM_connBt_STRING
 MM_rsUser.Source = &quot;SELECT users_email, users_password&quot;
 If MM_fldUserAuthorization &lt;&gt; &quot;&quot; Then MM_rsUser.Source = MM_rsUser.Source &amp; &quot;,&quot; &amp; MM_fldUserAuthorization
 MM_rsUser.Source = MM_rsUser.Source &amp; &quot; FROM bt.users WHERE users_email='&quot; &amp; Replace(MM_valUsername,&quot;'&quot;,&quot;''&quot;) &amp;&quot;' AND users_password='&quot; &amp; Replace(Request.Form(&quot;password&quot;),&quot;'&quot;,&quot;''&quot;) &amp; &quot;'&quot;
 MM_rsUser.CursorType = 0
 MM_rsUser.CursorLocation = 2
 MM_rsUser.LockType = 3
 MM_rsUser.Open
 If Not MM_rsUser.EOF Or Not MM_rsUser.BOF Then 
 ' username and password match - this is a valid user
 Session(&quot;MM_Username&quot;) = MM_valUsername
 If (MM_fldUserAuthorization &lt;&gt; &quot;&quot;) Then
 Session(&quot;MM_UserAuthorization&quot;) = CStr(MM_rsUser.Fields.Item(MM_fldUserAuthorization).Value)
 Else
 Session(&quot;MM_UserAuthorization&quot;) = &quot;&quot;
 End If
 if CStr(Request.QueryString(&quot;accessdenied&quot;)) &lt;&gt; &quot;&quot; And false Then
 MM_redirectLoginSuccess = Request.QueryString(&quot;accessdenied&quot;)
 End If
 MM_rsUser.Close
 Response.Redirect(MM_redirectLoginSuccess)
 End If
 MM_rsUser.Close
 Response.Redirect(MM_redirectLoginFailed)
End If
%&gt;
</code></pre>
</div>

<div>
CSharpGuru: 
Send me over a demo of your companies database. 
With at least 3 dummy users in it. 
I will implement the database to work with my Validation system. 
 
Carrzkiss
</div>

<div>
Here are the columns and their details if that helps. I will have to contact the owner of my company to get more if you need it. Thanks. 
 
COLUMNS: 
users_ID (int identitycol), users_firstName (nvarchar(50)), users_lastName (nvarchar(50)), users_jobTitle (nvarchar(50)), users_company (nvarchar(50)), users_address1 (nvarchar(50)), users_address2 (nvarchar(50)), users_city (nvarchar(50)), users_state (nvarchar(50)), users_zip (nvarchar(50)), users_country (nvarchar(MAX)), users_phone (nvarchar(50)), users_fax (nvarchar(50)), users_email (nvarchar(75)), users_comments (nvarchar(MAX)), users_challengeQuestion (nvarchar(MAX)), users_challengeAnswer (nvarchar(MAX)), users_password (nvarchar(50)), users_lastUpdate (datetime), users_ipAddress (nvarchar(50))
</div>

<div>
I see that there is no [Username]. 
Are you using the [Users_Email] &nbsp;as the [Username]?
</div>

<div>
yes I'm sorry I didn't make that clear.
</div>

<div>
OK. No problem. 
 
I will make you up a demo here in a few, I have 2 others here on EE that I am helping as well. 
So I will add yours into the bunch and have you something within the next hour or so.
</div>

<div>
thanks :) I'm testing it now. I will try it and then accept it as a solution. Thank you so much for all your help you've been simply amazing. If there is any other way to boost your rating or make you look better please let me know.
</div>

<div>
It works :) thank you very much.
</div>

<div>
This expert was just that, very knowledgeable and very quick to give me the solution. They even went out of their way to customize their current script to match my needs. A+++++++++++++
</div>

<div>
one more problem though, the old dreamweaver login runs off sessions, is there anyway of creating the session to make this work: 
&lt;% 
Dim rsUser__MMColParam 
rsUser__MMColParam = &quot;1&quot; 
If (Session(&quot;MM_Username&quot;) &lt;&gt;&nbsp;&quot;&quot;) Then 
&nbsp; rsUser__MMColParam = Session(&quot;MM_Username&quot;) 
? Thanks.
</div>

<div>
 
You made my day with that comment. Thank you so very much. 
Below is the code &quot;CHANGE&quot; for it to work in your site. 
Also everywhere you have this in your site 
&lt;%=Session(&quot;MM_Username&quot;)%&gt; 
Change to 
&lt;%=strUserName%&gt; 
Making sure that were every you have &lt;%=strUserName%&gt; at that you have 
&lt;!--#include file=&quot;IsLoggedIn.asp&quot;--&gt; 
In the head of the page. 
 
If you have something like this 
&lt;% 
If Session(&quot;MM_Username&quot;) &lt;&gt;&nbsp;&quot;&quot; Then 
%&gt; 
Change it to 
&lt;% 
If strUserName &lt;&gt;&nbsp;&quot;&quot; Then 
%&gt; 
 
That should cover it as well as the code change(s) below. 
It was a pleasure working with you, and if you need further assistance, let me know. 
Carrzkiss 
 
 
Author Comments: 
This expert was just that, very knowledgeable and very quick to give me the solution. They even went out of their way to customize their current script to match my needs. A+++++++++++++ 
 

<pre><code class="code-10 nolinks" id="code-332644">=-=-=-=-=-Change this code in all page(s)=-=-=-=-=-
In Login.php
&lt;%
' *** Validate request to log in to this site.
MM_LoginAction = Request.ServerVariables(&quot;URL&quot;)
If Request.QueryString&lt;&gt;&quot;&quot; Then MM_LoginAction = MM_LoginAction + &quot;?&quot; + Server.HTMLEncode(Request.QueryString)
MM_valUsername=CStr(Request.Form(&quot;userName&quot;))
If MM_valUsername &lt;&gt; &quot;&quot; Then
 MM_fldUserAuthorization=&quot;&quot;
 MM_redirectLoginSuccess=&quot;welcome.asp&quot;
 MM_redirectLoginFailed=&quot;login.asp?valid=1&quot;
 MM_flag=&quot;ADODB.Recordset&quot;
 set MM_rsUser = Server.CreateObject(MM_flag)
 MM_rsUser.ActiveConnection = MM_connBastech_STRING
 MM_rsUser.Source = &quot;SELECT users_email, users_password&quot;
 If MM_fldUserAuthorization &lt;&gt; &quot;&quot; Then MM_rsUser.Source = MM_rsUser.Source &amp; &quot;,&quot; &amp; MM_fldUserAuthorization
 MM_rsUser.Source = MM_rsUser.Source &amp; &quot; FROM bastechc.users WHERE users_email='&quot; &amp; Replace(MM_valUsername,&quot;'&quot;,&quot;''&quot;) &amp;&quot;' AND users_password='&quot; &amp; Replace(Request.Form(&quot;password&quot;),&quot;'&quot;,&quot;''&quot;) &amp; &quot;'&quot;
 MM_rsUser.CursorType = 0
 MM_rsUser.CursorLocation = 2
 MM_rsUser.LockType = 3
 MM_rsUser.Open
 If Not MM_rsUser.EOF Or Not MM_rsUser.BOF Then 
 ' username and password match - this is a valid user
 Session(&quot;MM_Username&quot;) = MM_valUsername
 If (MM_fldUserAuthorization &lt;&gt; &quot;&quot;) Then
 Session(&quot;MM_UserAuthorization&quot;) = CStr(MM_rsUser.Fields.Item(MM_fldUserAuthorization).Value)
 Else
 Session(&quot;MM_UserAuthorization&quot;) = &quot;&quot;
 End If
 if CStr(Request.QueryString(&quot;accessdenied&quot;)) &lt;&gt; &quot;&quot; And false Then
 MM_redirectLoginSuccess = Request.QueryString(&quot;accessdenied&quot;)
 End If
 MM_rsUser.Close
 Response.Redirect(MM_redirectLoginSuccess)
 End If
 MM_rsUser.Close
 Response.Redirect(MM_redirectLoginFailed)
End If
%&gt;
 
Authentication Script stored in each page (which after you access that page you only for some reason can access that authentication restricted page then login again)
 
&lt;%
' *** Restrict Access To Page: Grant or deny access to this page
MM_authorizedUsers=&quot;&quot;
MM_authFailedURL=&quot;login.asp&quot;
MM_grantAccess=false
If Session(&quot;MM_Username&quot;) &lt;&gt; &quot;&quot; Then
 If (true Or CStr(Session(&quot;MM_UserAuthorization&quot;))=&quot;&quot;) Or _
 (InStr(1,MM_authorizedUsers,Session(&quot;MM_UserAuthorization&quot;))&gt;=1) Then
 MM_grantAccess = true
 End If
End If
If Not MM_grantAccess Then
 MM_qsChar = &quot;?&quot;
 If (InStr(1,MM_authFailedURL,&quot;?&quot;) &gt;= 1) Then MM_qsChar = &quot;&amp;&quot;
 MM_referrer = Request.ServerVariables(&quot;URL&quot;)
 if (Len(Request.QueryString()) &gt; 0) Then MM_referrer = MM_referrer &amp; &quot;?&quot; &amp; Request.QueryString()
 MM_authFailedURL = MM_authFailedURL &amp; MM_qsChar &amp; &quot;accessdenied=&quot; &amp; Server.URLEncode(MM_referrer)
 Response.Redirect(MM_authFailedURL)
End If
%&gt;
=-=-=-=-=-Replace all of the above code(s) in all page(s) with=-=-=-=-=-
&lt;!--#include file=&quot;IsLoggedIn.asp&quot;--&gt;
</code></pre>
</div>

<div>
sorry. 
In the code view above. 
Replace all the BULK code with what is on line #64 of the code view. 
 
Carrzkiss
</div>

<div>
Thanks for all your help. Do you know why everything would work in Firefox but not in IE? 
Everything works beautifully in Firefox, but it won't work properly in IE for some reason...kind of odd b/c I was under the impression cookies and ASP were not based off certain browsers.
</div>

<div>
Made in IE6 
Tested IE7 
Firefox, Opera, Chrome, Safari 
 
What is the problem that you are experiancing? 
As it works perfect across all platforms. There is nothing in the code that can break in the other 
Browsers, except maybe the css coding. 
 
Let me know, and I will help as much as I can. 
Carrzkiss
</div>

<div>
nevermind. It works great. I don't know what happened. But thanks :)
</div>

<div>
Not a problem. 
Have a good one. 
Carrzkiss
</div>

<div>
<div class="content wysiwyg-content">
I need to change this login, it's just flat out terrible. It won't let me login site wide. It just authenticates the user to access one part of the site and I just want it to last for everything site wide. 

<pre><code class="code-10 nolinks" id="code-330389">In Login.php
&lt;%
' *** Validate request to log in to this site.
MM_LoginAction = Request.ServerVariables(&quot;URL&quot;)
If Request.QueryString&lt;&gt;&quot;&quot; Then MM_LoginAction = MM_LoginAction + &quot;?&quot; + Server.HTMLEncode(Request.QueryString)
MM_valUsername=CStr(Request.Form(&quot;userName&quot;))
If MM_valUsername &lt;&gt; &quot;&quot; Then
 MM_fldUserAuthorization=&quot;&quot;
 MM_redirectLoginSuccess=&quot;welcome.asp&quot;
 MM_redirectLoginFailed=&quot;login.asp?valid=1&quot;
 MM_flag=&quot;ADODB.Recordset&quot;
 set MM_rsUser = Server.CreateObject(MM_flag)
 MM_rsUser.ActiveConnection = MM_connBastech_STRING
 MM_rsUser.Source = &quot;SELECT users_email, users_password&quot;
 If MM_fldUserAuthorization &lt;&gt; &quot;&quot; Then MM_rsUser.Source = MM_rsUser.Source &amp; &quot;,&quot; &amp; MM_fldUserAuthorization
 MM_rsUser.Source = MM_rsUser.Source &amp; &quot; FROM bastechc.users WHERE users_email='&quot; &amp; Replace(MM_valUsername,&quot;'&quot;,&quot;''&quot;) &amp;&quot;' AND users_password='&quot; &amp; Replace(Request.Form(&quot;password&quot;),&quot;'&quot;,&quot;''&quot;) &amp; &quot;'&quot;
 MM_rsUser.CursorType = 0
 MM_rsUser.CursorLocation = 2
 MM_rsUser.LockType = 3
 MM_rsUser.Open
 If Not MM_rsUser.EOF Or Not MM_rsUser.BOF Then 
 ' username and password match - this is a valid user
 Session(&quot;MM_Username&quot;) = MM_valUsername
 If (MM_fldUserAuthorization &lt;&gt; &quot;&quot;) Then
 Session(&quot;MM_UserAuthorization&quot;) = CStr(MM_rsUser.Fields.Item(MM_fldUserAuthorization).Value)
 Else
 Session(&quot;MM_UserAuthorization&quot;) = &quot;&quot;
 End If
 if CStr(Request.QueryString(&quot;accessdenied&quot;)) &lt;&gt; &quot;&quot; And false Then
 MM_redirectLoginSuccess = Request.QueryString(&quot;accessdenied&quot;)
 End If
 MM_rsUser.Close
 Response.Redirect(MM_redirectLoginSuccess)
 End If
 MM_rsUser.Close
 Response.Redirect(MM_redirectLoginFailed)
End If
%&gt;
 
Authentication Script stored in each page (which after you access that page you only for some reason can access that authentication restricted page then login again)
 
&lt;%
' *** Restrict Access To Page: Grant or deny access to this page
MM_authorizedUsers=&quot;&quot;
MM_authFailedURL=&quot;login.asp&quot;
MM_grantAccess=false
If Session(&quot;MM_Username&quot;) &lt;&gt; &quot;&quot; Then
 If (true Or CStr(Session(&quot;MM_UserAuthorization&quot;))=&quot;&quot;) Or _
 (InStr(1,MM_authorizedUsers,Session(&quot;MM_UserAuthorization&quot;))&gt;=1) Then
 MM_grantAccess = true
 End If
End If
If Not MM_grantAccess Then
 MM_qsChar = &quot;?&quot;
 If (InStr(1,MM_authFailedURL,&quot;?&quot;) &gt;= 1) Then MM_qsChar = &quot;&amp;&quot;
 MM_referrer = Request.ServerVariables(&quot;URL&quot;)
 if (Len(Request.QueryString()) &gt; 0) Then MM_referrer = MM_referrer &amp; &quot;?&quot; &amp; Request.QueryString()
 MM_authFailedURL = MM_authFailedURL &amp; MM_qsChar &amp; &quot;accessdenied=&quot; &amp; Server.URLEncode(MM_referrer)
 Response.Redirect(MM_authFailedURL)
End If
%&gt;
</code></pre>
</div>
</div>

I need to change this login, it's just flat out terrible. It won't let me login site wide. It just authenticates the user to access one part of the site and I just want it to last for everything site wide.

New ASP login problems

Visual Basic is Microsoft’s event-driven programming language and integrated development environment (IDE) for its Component Object Model (COM) programming model. It is relatively easy to learn and use because of its graphical development features and BASIC heritage. It has been replaced with VB.NET, and is very similar to VBA (Visual Basic for Applications), the programming language for the Microsoft Office product line.

Visual Basic Classic

VBScript (Visual Basic Scripting Edition) is an interpreted scripting language developed by Microsoft that is modeled on Visual Basic, but with some important differences. VBScript is commonly used for automating administrative and other tasks in Windows operating systems (by means of the Windows Script Host) and for server-side scripting in ASP web applications. It is also used for client-side scripting in Internet Explorer, specifically in intranet web applications.

VB Script

Active Server Pages (ASP) is Microsoft’s first server-side engine for dynamic web pages. ASP’s support of the Component Object Model (COM) enables it to access and use compiled libraries such as DLLs. It has been superseded by ASP.NET, but will be supported by Internet Information Services (IIS) through at least 2022.