Carrying Form Values Without Cookies Or Sessions.
Is it possible to send form values from PAGE1 to PAGE2, and then retain the
form info for PAGE3 without using cookies, sessions or DB storage? Also, I
dont want to repost page2 to page3 using hidden form fields.
Just curious! Want to know how to "simply" maintain user form inputs across
a web site even when security and privacy controls are set to MAXIMUM on the
browser. I know using databases would do it, but I would love to find a
simpler solution.
View Replies
ADVERTISEMENT
Using Session("variableName") to store data for the duration of a session. And using Response.Cookie("nameOfCookie") to store data as a "cookie" in ASP.....some questions here....
Session Variables. There's no disabling that CLIENT-SIDE is there? ASP Sessions are managed by the server, so as long as it's running fine, there's nothing the client can do to stop session variables from being created right?
"Session" Cookies? When using Response.Cookie, is that data actually written to the client's HDD like Javascript cookies would be? I noticed in MSIE 6 you can goto TOOL > INTERNET OPTIONS > PRIVACY > ADVANCED and Overide Session Cookie settings, but they don't seem to work.
I UNCHCKED to ALWAYS ALLOW SESSION COOKIES, and then did a
Code: ....
View Replies
View Related
i'm creating a shopping cart and i need to know when users add products to their shopping cart, does it load a session for each visitor, which when a new customer tries to add it opens a session for him and he closes the site the session closes enabling another visitor to start with an empty basket ?
or does it use cookies instead of sessions ?
my shopping cart does not work properly...
i need to fix it in this way, when a new visitor tries to add products to the shopping cart it doesn't display the previous products of the previous visitor.
noting that i'm not using any registration as yet......
how can i fix that?
i have a file called shop.asp which list the type of products available in the database and then when a type is clicked a list of products under this type will be displayed, then customers can add to the cart whatever they want.....
but this does not work properly because if another user tries to access the cart he'll see the previous products in there....
View Replies
View Related
I want to do something very simpel. Make a part of my website available
only for users with a username and password. The site is mainly ASP
based. The webserver is an IIS6 and I do NOT have access to server
settings (session timeout, security,...).
I use sessions to set the validation for the users. Basically you are
redirected to a form where you can give a username and password, this is
validated with the values in a database. If the password and username
are ok a session value is set <%=Session("Validated")=True%>*.
At the beginning of each secured page I start with:
<%If Session("Validated")=False Then Response.Redirect("Login.asp") End
If%>
So if the session value "validated" is true you can see the secured
pages, else you are redirected to the logon page.
The default timeout value for session is 20 minutes. Because the session
should stay alive during the complete time of the visit I was thinking
of puting the session.timeout to 60 minutes. I set this at the beginning
of every secure page: <%Session.timeout=60%>
Now, Users keep on contacting me saying that they have to relogon quiet
often. This also seems to happen when a user is not on the website for
20 minutes already (session expired). I tested it myself and have the
feeling the I am indeed regularly redirected. Sometimes after 10
minutes, other times 30 minutes, ... There seems not to be any logic in
the time that users are redirected to the logon page.
Because the website is used to fill in a lot of long HTML forms, it is
very frustrating for the users when they are completing a form and then
pressing "Submit" being redirected to the logon page and lose all
entered data.
Is there somebody who can give me more info on the strange session
behavior? For me it is not normal that a session times out in that
unlogic way.
The only solution I can think of is passing the post information to the
logon page and then redirect after validation back to the transaction
page.
How can you reset the timeout counter on a session in ASP? What I was
thinking was that I am doing it maybe wrong?
Now the session variable that let a user have access to the site is set
once at logon time: (<%=Session("Validated")=True%*>*). Then it is
checked on every page that the user opens (<%If
Session("Validated")=False Then Response.Redirect("Login.asp") End If%>)
Would it be a good idea to re-set the variable every time a user
accesses page? Like <%If Session("Validated")=False Then
Response.Redirect("Login.asp") Else Session("Validated")=True End If%>
Would this reset the timer that times out the session? Or do I have to
add something like <%Session.Abandon%> before setting the variable
again?
What would this do on the server performance?
Is this a good way of working with sessions?
Swicth to cookies i.o. sessions?
I am open for all suggestions, please help! In the future there are also
money transactions going over this website, so it has to be a secure
method! I will use a seperate HTTPS host for this.
View Replies
View Related
I have a button that takes me back to my login screen but the user can press back and get back in. I have done some research and looked around and the only way i have found is using sessions-by creating and loosing sessions.
I however use neither and pass my username via a textbox.
Is there a simple way to somehow logout securely without allowing the user to enter the back button?
View Replies
View Related
UserA has a PC running IE 6. This has the cookies disabled:
1 - Override automatic cookie handling: checked
2 - First party cookies: Block
3 - Third-party cookies: Block
4 - Always allow session cookies: Unchecked
The server runs a Classic ASP application running in IIS 5.x that uses the
session cache. These are different machines running within a LAN.
When UserA accesses the website, the ASP code retrieves some data from the
DB and puts it into the session cache and timestamps it (to give it a
time-to-live value).
When UserA accesses the site again, the ASP code checks the value of
Session("DatabaseSettings_DateAccessed") to see if the cache has expired.
Bizarrely, it picks up the correct date set on the previous visit.
I would have expected that, since UserA does not have session cookies
enabled, there should be no existing session identifier available for UserA.
So, how is IIS recognising UserA's session?
View Replies
View Related
Customer wants users to authenticate based on where they came from. They have several locations that the users will be coming from. They don't want anyone to be able to access their website from anywhere other than these locations. The locations ip addresses will be changing regularly. Is there a way to have a page on the INTRANET internally that the users will go to and it will start a session or place a cookie and pass them to the website. The website then looks for that session or cookie and lets them in or denies them based on the session or cookie. The sites that they will be coming from are ASP and .NET servers and it encrypts the URL that it is coming from. The website it is going to is on a PHP server and is built on PHP and MySQL. I have asked this in like every forum on the internet I can find and no one seems to have a solution.
View Replies
View Related
Its strange...I have experimenting with browser hawk by using the cookie sniffer method. However, even If adjust the security slider level in internet options or goto advanced in the privacy tab I cannot seem to prove the condition below....it is almost as if cookies don't want to die in my testing environment.
I did try closing the browser and relaunching but cookies and session ids seem alive and well....is this the usual hassle with testing cookies/sessions?
Option Explicit
Dim bh
set bh = Server.CreateObject("cyScape.browserObj")
bh.SetExtProperties "cookie_both"
bh.GetExtPropertiesEx
if not bh.cookiesEnabled then
response.write "COOKIES DEAD"
end if
View Replies
View Related
As I understand it IE stores the session id in a cookie on the user machine.
This identifies the session between pages.
If cookies are disabled then session variables don't work...
Is it possible to pass the session id between pages by posting them etc, and
manually force the session id on each page.
View Replies
View Related
Any body know of a resource that compares/benchmarks the expense (in terms of milli seconds, or server load) of using various programing options?
I know a lot of articles and forum posts reccomend best practices between functions and programming options, but I would be interested in some type of definitive benchmark to decide between various prgramming options, depending on the need.
For example, I can call a Recordset and quickly write it into an array, so that the connection can be closed even before I write the data to the HTML page. This would save conection time and server resources, but I'd like to be able to judge the worth when considering coding it.
Every time I do a Server.Transfer how expensive is it to the server? How much am I loading the server with Session varaibles? If I store some info in a cookie, but have to call it, how long will that take? Am I using up server resources by creating large arrays?
View Replies
View Related
Should i validate cookies values?
View Replies
View Related
Is there anyway to reset cookies values when window closes?
View Replies
View Related
I have two pages.
Page1.asp
Page2.asp
I have a form in page1.asp, there are 2 filed:
Name
Phone
Each time I click on submit it will take me to page2.asp.
now how can I carry what ever it was written in Name, to Page2.asp
View Replies
View Related
Even when I try using LTrim function, I have one variable that has two
mysterious spaces in front of it when i pass it to the next page in a
query string
<a
href="timestar-nevada-salesview.asp?resortname=<%=rstime("resortname")%>
&resortstate=<%=rstime("resortstate")
the resortname variable gets two spaces thrown in front of it for some
reason.
View Replies
View Related
I want to call a recordset so you can edit the details and then obviously pass the parameters onwards into the db. However, the user guide just says this:
To process other fields in the form, use the Form collection of the upload object the same way you would use the Form collection of the Request object. For example, if your form had a text element named UserName, your processing code would include: Code:
View Replies
View Related
I have a form that is dynamically generated since it is populated with values retrieved from a database. The form can of course also be submitted, which is where I run into some problems.
Since I never know in advance what the length of the form (or for that matter what the different elements' names and values) will be I don't know how to write the code in "receive.asp" to retrieve all values from the form correctly without excess use of "request.....".
I shouldn't have to write requests for every single potential element name that is stored in the DB. Please note that the form can sometimes also contain radio buttons and check boxes, even though they are not present in this short example Code:
View Replies
View Related
I have a form on an ASP page that has 5 text boxes, for data entry. I am trying to get data from the text box, and pass it to a hidden text box on the form.
The hidden text box is called "MyDateTime" (a SQL date and time value). I am attempting to concatenate data from two other textboxes (one for date and one for time) to give a string like : "8/8/2004 8:00 AM" I am trying to use the following: Code:
View Replies
View Related
I have an asp page with a form:
the username field must have the last user who connected ( saved using cookie)
When i press the "cancel " botton of the form this username should disappear and appear again once i close and open the browser again
I have a problem doing it: .....
View Replies
View Related
<%@Language=VBScript %>
<%option explicit%>
<%
MESSAGE = (Request.Form("type"))
MESSAGE=MESSAGE & vbcrlf & "Name" & (Request.Form("name"))
MESSAGE=MESSAGE & vbcrlf & (Request.Form("address"))
MESSAGE=MESSAGE & vbcrlf & (Request.Form("handphone"))
MESSAGE=MESSAGE & vbcrlf & (Request.Form("phonenumber"))
MESSAGE=MESSAGE & vbcrlf & vbcrlf & (Request.Form("comments"))
MESSAGE=MESSAGE & vbcrlf & vbcrlf
MESSAGE=MESSAGE & "____________________________________________"
Set objMail = Server.CreateObject("CDONTS.NewMail")
objMail.From =Request.Form(email)
objMail.To = "icepricessa@hotmail.com"
objMail.Subject = "Business/Career Enquiries"
objMail.Body = ""&MESSAGE&""
objMail.Send
Set objMail = Nothing
%>
but somehow i'm not able to send the mail....
View Replies
View Related
I have a table in which I count the rows, and for each record it finds it uses that number to dynamically name the form field. i.e.
<input type=text name="FirstName<%=i%>">
I got that to work just fine. What I'm trying to do now, is post the form, and on the new page dynamically create cookies based on the number of form fields there are. For example, my desired end result would look something like this..
response.cookies("First0")=request.form("FirstName0")
response.cookies("First1")=request.form("FirstName1")
and so on. Is there a way to do this by looping, instead of hardcoding? I have my feeble attempt below....
View Replies
View Related
I have a form on a page which I need to auto set certain fields from values stored in a Cookie.
<SCRIPT LANGUAGE="vbscript">
RegisterForm.Prefix.value = Request.Cookies("store")("id1")
</SCRIPT>
That is how it is in my file yet it just appears empty but I know there is valid data in the cookie as I printed it on screen using:
<%
Response.Write(Request.Cookies("store")("id1"))
%>
So I figured maybe it was something to do with the script tags so I tried using the <% %> tags instead and I got an error saying something like Microsoft VBScript runtime object required.
View Replies
View Related
I have an asp form mailer. when the form is submitted, it goes to a review page where the user can submit the mailer or print it out. the review page pulls the cookie information in fine. after its submitted, i get an email that just says:
Submit: Submit Form
here is the code on the review.asp page that brings in the code.
Code: ....
View Replies
View Related
I am new to asp. I am trying to setup a log-in screen and am having trouble figuring out how to set the session cookie. I found the bit of code below, and it works if I enter a specific 'email' and 'password' into the "if" statement, however we have multiple users logging into the section. How can I set it up so that if the form is successfully submitted using any of the multiple email/password combos then it creates the session?
Example found...
<%
Username=Request.Form("email")
Password=Request.Form("Password")
If email="emailaddress" AND Password="password" Then
Session("Loggedin")=True
End If
%>
View Replies
View Related
I have the following line of code in my asp page:
Dim ix
For ix = 1 to Request.Form.Count
fieldName = Request.Form.Key(ix)
fieldValue = Request.Form.Item(ix)
Response.Write fieldName
Response.Write fieldValue &
Next
Response.End
It is not returning the results of any field on the previous form page.
Does anyone know what I might look for?
View Replies
View Related
How can I getting parameter values from more than 1 HTML form onto the same ASP page?
View Replies
View Related
put the ASP part where Page 3-Displaying form values from one page on another
View Replies
View Related
we have a web system whena user submits a form, it's take to a page... if the user didn't fill in a particular form properly then resulting page tells them so. they then go back and fill in the remaining fields.this works for all but 1 user whose values disppear totally, having to do it all again.has he got his computer set up differently?
View Replies
View Related
I have created a asp page "AddUsers.asp" which allows the admin to create new user ids.The admin fills in all relevant details and clicks on submit.The form gets posted to a page "Insertusers.asp" which checks if the new entered userid already exists in a database.
If the userid already exists, page display a message saying "Userid already exists" and a back button(link to Addusers.asp).When the admin clicks on back button, it takes him to Addusers.asp and all the relevant details entered in a form are lost.Again he has to fill in all the details which i want to avoid.How can i retain the values entered in the form so that the admin can change only the userid and submit the form again?
View Replies
View Related
I have a problem where form values go missing. The are several forms on one page with indivdual names (i.e. form1, form2) but with the same fields. Whenever the form is submitted via post the values disappear. It only happens on this one particular page.
The odd thing is that if I do a response.write with the variable and then a response.end write after it it shows up perfectly. The page is just a basic record update page. If I do a response.flush() it works as well (up until the redirect). I am leaning towards a response buffer problem but still don't understand why it is happening.
View Replies
View Related
I came up with the new problem. I want to fetch all form values by using request.form("FormName") which is generated by javascript on runtime.
The attached zip code contains the working code of javascript creating dynamic form elements. So after generating a couple of textboxes when I click on the "Submit" button it should display all the values entered in the textboxes on the next page.
View Replies
View Related
I am trying to create a page that displays the values the user has just selected from my form. The form consists of three drop down lists. Upon clicking the submit button, I would like to go to a new page that says something along these lines:
"Thank you for filling out the form. You have successfully transfered account _____ (value from one drop down) from ______ (another value) to ________ (the last value)." How would i go about doing something like this?
View Replies
View Related
Does anyone have the code to write all the form values to variables of the same name. So for example request.form("myname") would be stored in a variable called myname after running this. It should just save time from doing the request for all the fields.
View Replies
View Related
Is it possible to save all the names/values of a form to another memo textfield before a Insert to the database then when required on another page split that memo textfield into the name and their corresponding values retrieved from the recordset ?
View Replies
View Related