I manage a site with a normal address like: www.mysite.com
I'm using a cookie to store nicks of my users, with a code like this:
----
Response.Cookies("mycookie").Expires = #January 1, 2030#
Response.Cookies("mycookie").Path = ""
Response.Cookies("mycookie").Secure = FALSE
Response.Cookies("mycookie")("nick") = nick
----
and I'm deleting it, if a user wants so, with:
----
Response.Cookies("mycookie").Expires = #January 1, 2003#
Response.Cookies("mycookie").Path = ""
Response.Cookies("mycookie").Secure = FALSE
Response.Cookies("mycookie")("nick") = ""
Response.Cookies("mycookie") = ""
----
(I know, there's too much stuff in the delete procedure!)
Now I'm going to open some new sections of my site, with subdomain
adresses, like search.mysite.com, shop.mysite.com... and I need that
cookie authentication for the main (www) address is working also in
these subdomains.
I red on the Internet that with the DOMAIN property, I can set my
cookie to make it work for every subdomain, with something like:
----
Response.cookies("mycookie").domain = ".mysite.com"
----
.... and it works!
My problem is when I try to DELETE it: after I set a cookie with
..domain property, it seems to become "read only": any my attempt to
delete (or modify) it seems to be ignored.
Results are the same when I try to write it from the subdomain that
created it (www), or when I try from the "chief" address (mysite.com,
without any subdomain).
Anyone know of a way to allow a cookie to be read by multiple domains, or even better a specific IIS server IP? We're looking to track users across multiple domains within our website group.
Does anyone have a successful experience in using XMLHTTP or ASPtear to read a cookie on another domain? Can it be done at all using these or similar technologies or can it only be done using the redirect trick?
if i create a cookie named myCompany and store several values like userLast and userFirst and then later want to add a new name-pair such as userPreference1, can i append the new name-pair without re-writing the userLast and userFirst name-pairs?
In other words, does a new name-pair to the same cookie over write other existing keys? Code:
I have a form that asks the website visitor for the name of the subdomain. I m storing that form variable value in a file. What I m looking for is how to create a subdomain of this name using ASP script?
Example: Suppose the website visitor enters "abc" in the form variable. After the form is submited and validated, I want to create a subdomain as "abc.mysite.com" using ASP Script.
I am developing a site for my employer in ASP, and we host our own servers. The company sells direct to people in the US, and we have authorized resellers sell to international customers. This site applies a customized header and footer (as include files) based on information collected in a cookie.
The point of these customized headers and footers is so that our authorized resellers can have their company info on our product pages. So as long as a visitor starts at a customized "launching page" for a particular reseller, the cookie will have that reseller's headers and footers on every page of our site. This all works fine.
My problem is the url in the browser address bar. It will still say "www.mycompany.com/whateverpage.asp", regardless of what headers and footers are applied. We want all references to "mycompany" erased when customers are looking at our authorized resellers' pages. My employer wants it to have a different url in the address bar that relates to the reseller.
What if we went the subdomain route, registered a more generic domain, and made subdomains off that domain for the resellers? Like, www.widgets.com with subdomains like www.acme.widgets.com? I know this is possible, but how then would I apply these new subdomain urls in the browser windows for pages that are on the www.mycompany.com site?
I have a complete website running in a directory on my webserver. Now i want to webforward an subdomein to this directory. When i directly open the site on my webserver it runs perfect
but the problem is that the sessions i save for the login are empty when i reach them through the subdomain. The problem only exists in ie, in forefox it works perfect.
I have a swf file in one domain and an ASP file in another domain; the swf doesn't not receive the variables form the ASP, how can solve the problem with crossdomain policy?
My code works in IE but not in Netscape. Can someone let me know what should be done in order to view the javascript function also in Netscape. Thanks. Script:
Quote: <script language="javascript"> function showurl(v){ var layers = document.all.tags("DIV"); layers['show'].style.visibility=v; } </script> Form:
When I set a cookie in global.asa in the sub session_onstart, even if I have "privacy" in IE 6.X set to "block all cookies" the cookie is still set, and I can get it on other pages.
I can't find an article that addresses this as a specific issue. Why does the browser get the cookie when it is set in the session_onstart event even when I have "block all cookies" set?
I have a web application mainly written in ASP. How can I prevent my pages like login.asp and other important pages from Cross-site scripting malicious attacks. What precautions should I take ?
At risk of being flamed for mentioning the N-word here ...
Has anybody yet cracked the knotty problem of sharing Session state between ASP and ASP.Net sites (within the same domain)?
Last time I looked, the two Session() mechanisms were totally divorced and separate, making step-by-step conversion of Session -dependent web sites from ASP to ASP.Net all but impossible.
I have just taken over an ASP application that has a form whereby the user on entering details submits it, where an administrator approves the form. lately I have been getting calls from people who on opening a Finalsed Form (non-editable) to copy similiar data to the new form, are finding the new form disapearing and the Finalised form taking on the new data.
Being new to ASP, I am assuming this would be a session thing, considering the Form number is held in a session variable, as are many other fileds of the form? Is this a common "break" in ASP - a user opening another copy of a form and ending up with cross-contamineted data? I havent included intracate details as at this stage I wouldnt know what to include without including the whole 20 pages of 1300+ lines of code...
Im in contact with the developer who built the other website and he is being helpful in writing the code on the payment confirmation (which only he has access to).
I need to be able to update my database when an order has been completed (from the confirmation page on the other domain). Can you update an access db from another domain? if so are there any security issues? what, if any, permission do i need to set up ie: on the database or on my domain? what is the code to do this?
I'm wondering if it is possible to have an ASP page that "links" to another ASP page on another domain that is generating variables (in the form of a URL string)?
iframes can connect to the ASP file on another domain, however, I don't know how to access that data in ASP.
I am trying to find a way to make an asp page on one computer access a database stored on a different computer and perform numerous operations on it. I am unsure if this is possible as up til now I've always used a database in the same folder as my .asp pages. Can anyone provide some insight into this?
What libraries would I need installed, or what configuration to the server is needed, to allow me to set a cookie on 'site1.com' that can be read on site2.com
No log-in, just using a cookie from a form on site 1 (name) and being able to print out their name on site 2, without messy querystrings. Is this possible? I cannot find proof that this is supported.
The problem is that the code for "change_school.asp" takes the user right to "portal.asp". I checked the code of "change_school.asp" and it does indeed set a cookie value for "school", but for some reason "default.asp" is still finding the old cookie stored and then redirecting...any ideas guys?
'code for change_school.asp...clears the cookie "school" and redirects to page (default.asp) where user can select a new school <% Response.Cookies("school")= "" Response.Redirect "default.asp" %>
'code for default.asp which allows user to select a new school, and if the cookie "school" has some value then they are redirected. <% If request.cookies("school") <> "" then Response.Redirect "portal.asp" end if %>
On this website i am building it has password protection on certain pages. So i have a "login" portion on the right side of the page, that is shown on every page. When someone logs in is it possible to change that little section to just say Welcome so and so? Instead of having the username and password form with submit button?? Or is this something that requires some java to hide it?
Part II When someone logs in i want them to recieve a cookie, in that cookie i want it to contain the person's name (wich i want the to be put next to the "welcome back on part I), email address, and up to four other numerical values. (some people will have greater access to sections of the site depending on who they are)
Is is possible to grab this information from the SQL database and put in the cookie? If so can anyone please show me, point me in right direction, ect?
I'm using FrontPage Database results wizards to retrieve data from Access. I have a cookie containing a number I'd like to insert in a custom query. Whenever the page opens, I want the query to run using the value in the cookie. I haven't been able to figure out how to transfer the cookie value into something the FP webbot will accept in the query.
What i am trying to do is this: I want to make a cookie. If someone comes back to a page (say after an hour after they left)i want them to get a specific popup. If someone comes back after than hour I want them to get a different popup, telling them something different.
I'm going to go down this route of Cookie detection
<%
If Request.Querystring("Check") = "" Then
Session("cookietest") = "True"
Response.Redirect("cookietest.asp?Check=True")
Else
If Session("cookietest") Then
<!-- Execute code if enabled -->
Else
<!-- Execute code if disabled -->
End If
End If
%>
I’m a little worried, do you know how spiders work with regards to this sort of thing? My site gets some traffic due to it being spidered by the likes of google and I don’t want to loose that flow.
If I use this at the entry point of my site to redirect browsers with cookies turned off to a page telling them to turn them on will that stop the spiders?
im trieng to delete it before the expired time has comed anyway i am trieng to delete it by setting the cookie to ""
like so: Response.Cookies("name") = "";
but its not working but...i found out that if i dont set the path it is being deleted but i have to set the path because from some reason without it i have issues where the cookie is not found in some pages.
