Log In Script Asp

ASP Scripts

access.mdb

This is the database where the username and passwords are kept. It should be stored in a directory, where it can't be accessed directly by a user, but only accessed by scripts which are stored on the server.

If you want to set up the database yourself:
I have called the database access.mdb If you change this name, then ensure that you also change the references to it in addinguserproc.asp and loginproc.asp

I have called the table users. If you change this name, then ensure that you also change the references to it in addinguserproc.asp and loginproc.asp

The table has 3 fields:
userID which is an autonumber
Username which is a text field
Password which is also a text field
EmailAddress which is also a text field

I have kept it simple for these purposes, but in a real life situation you may want to make it slightly more complicated.

addinguser.asp

This is simply a form for a new user to add their information. More fields can be added if required by just adding more lines. For example:

<%Response.Write("Address <input type = ""Text"" name =""Address"">")%>

addinguserproc.asp

This script checks that the user has entered a password and username and email address. It then adds these values to the database as a new user and logs in that user in a similar way to loginproc.asp . It then redirects that user to success.asp to tell them that they are logged in

authenticate.asp

This should be included at the top of each file that you want to password protect. The asp file should have

<%Response.Write("<%@ Language=VBScript %>" & vbcrlf)Response.Write("
" & vbcrlf)Response.Write("<%Option explicit %>")%>

at the top and this should be included immediately after these two lines by putting:

<% Response.Write("<!-- #INCLUDE FILE = "authenticate.asp" -->") %>

delete.asp

This script is activated from viewusers.asp in order to delete users from the database.emailcheck.asp

This is a simple script to check that the person adding their email address is entering a valid email address. It checks that there is only one @ sign and also there there is a dot there

failure.asp

This tells the user, that they are not logged in if it is true or their username if they are logged in.

login.asp

This is a simple form for a user to log in. It requires a Username and password, however other fields can be added as with addinguser.asp .

loginproc.asp

This checks that a Username and Password were entered. It then checks them against the database to make sure that the Username exists and that the password entered is valid.If they are, then it writes a session variable of their username and redirects them to the success page

logout.asp

This page simply sets the session variable equal to "" . It then redirects the user to failure.asp to tell them that they are not logged in.

success.asp

This could say anything, but to show that the script is working, I have written the session variable produced by loginproc.asp to show the user name.

viewusers.asp

This shows all valid users in a table. For security, don't put this in a place which can be easily found by visitors. Alternatively, password protect this page by changing authenticate.asp to only allow access if there is a particular username that has been logged in. You are also able to delete users from this page, but once deleted, they are deleted permanently.

Any more questions please email scripts@grabthebasics.com

TITLE: Realm CMS Multiple Vulnerabilities - SecuObs

TITLE: Realm CMS Multiple Vulnerabilities SecuObs, France - Jun 10, 2008 ... by directly accessing the _db/compact.asp script. 4) Improper access restrictions are imposed when accessing the _RealmAdmin/login.asp page. ...

TITLE: eLineStudio Site Composer Multiple Vulnerabilities - SecuObs

TITLE: eLineStudio Site Composer Multiple Vulnerabilities SecuObs, France - Jun 20, 2008 1) Input passed to the "topic" and "button" parameters in ansFAQ.asp, and to the "id" and "txtEmail" parameters in login.asp is not properly sanitised ...

SilverAge Software announces HandyHTML Studio 2 - all-inclusive integrated web development environment

For immediate release Contact: Tanya Slinka Company: SilverAge Software Title: Public Relations Manager E-mail: press@silveragesoftware.com SilverAge Software announces HandyHTML Studio...

AnimalAttraction.com, A New Online Dating Site for Pet Lovers, to Distribute Free Video News Release Via C-band Satellite Feed

(PRWEB) August 18, 2004 -- Nearly 4 in 10 single Americans have used or are currently using online dating to meet their match. Now, a new company, AnimalAttraction.com, is helping pet lovers play...

Debug ASP Pages Remotely and Locally with Team Remote ASP Debugger

(PRWEB) August 18, 2004 -- Nearly 4 in 10 single Americans have used or are currently using online dating to meet their match. Now, a new company, AnimalAttraction.com, is helping pet lovers play...

WebDesign 2.6 Adds Improved Support for PHP, JavaScript, CSS, More

Toronto, Ontario (PRWEB) March 19, 2005 -- Rage Software today announced the immediate availability of WebDesign 2.6, A major update to the first HTML source code editor with an integrated Site...

Can You Keep Your Customers Away From the Competition with "Proactive Emotional Marketing"?

Miami, FL (PRWEB) August 25, 2005 -- On Friday, September 2, Business Retention Specialist, Lee Holden, an advocate of "Proactive Emotional Marketing," was a special guest on the new, live...

Team Remote ASP Debugger PRO, award-winning tool from Spline Technologies, addresses key web development issues.

(PRWEB) November 16, 2005 -- Spline Technologies Corporation has released a unique web development tool -- SplineTech JavaScript HTML Debugger -- that enables web developers who have been challenged...

WebDailyCalendar– ASP.NET 2.0 Calendar with Just the Right Functionality

Kraków, Poland (PRWEB) February 12, 2006 -- ComponentGo company announces release of version 1.1 of WebDailyCalendar. It uses ASP.NET 2.0 features to get maximum performance in Web...

RJL Software Incorporated Releases Message Manager Deluxe v3.00

Kraków, Poland (PRWEB) February 12, 2006 -- ComponentGo company announces release of version 1.1 of WebDailyCalendar. It uses ASP.NET 2.0 features to get maximum performance in Web...