I have created an Intranet in my office using ASP (of course). Within it is a booking system, allowing booking of conference rooms, digital camera and other equipment. It works perfectly...almost, as there is no way to prevent double bookings.
I really don't know where to begin with this one. All bookings go to an Access DB, into a single table. The bookings have a start time and an end time (24hr).
I would like it so that when the user submits the form, if there is a clash in times instead of saying, thanks for your booking, to redirect them back to the booking page saying there is already a booking for this time and that I am very sorry!
I guess I have to check some value in access and return the info back to the webpage before it chooses where to redirect the user.
Got a bit of a problem, and hoping someone out there can shed some light on the matter. I've set up a simple aircraft booking system, and have got to the part where the database searches for conflicting bookings. Code:
I'm using if for when the user deletes a record from the database. People using the website try and delete more than one record at a t time by placing commas between the IDnumber ie. 1,2,5,9 etc.
This creates an error. So instead of this error appearing, how can I get a small alert box telling hte user he/or she has entered the wrong data type?
In ASP classic pages,I want to know if it's possible to prevent session variables from becoming zero length strings? I have tried setting the Session.Timeout to a large value, but alwas, after 20 minutes, my session variable times out. I also tried setting the session timeout in IIS manager to a high value, but this did no good either.I just want to allow one particular session variable to last a long time.
I have a permission tracking app that I am working on, and I have made the insert page for it. I am having issues on how to prevent duplicates from getting entered.
Currently the interface for the app has a mixture of select boxes, list boxes and checkboxes. The form submits the page to processAIMR.asp and then does the inserting. I am using a loop to insert a new record for each checkbox checked or listbox entry selected. Code:
Does anyone know how to prevent the browser from automatically adding the password to a form after a user name is entered? I need to be able to over ride the brower setting so turning off the option in IE is not really a solution.
I have a form that sends info to a preview page, then to a thank you page. The thank you page gets the data passed from the rpeview page and sends an email.
How can I prevent the user from refreshing the page, so it doesn't send the email again.
I would like to prevent a user from logging in with their user/password combination on a different computer or even a different browser window, if they are already logged in. I have a login page, from which I use a DB check to verify user/password info. Also, I have a bit loggedIN field in the DB, which I use to see if they are currently logged in; if so, I prevent them from logging in a second time.
Unless they click the "Log Out" button, then the DB value does not get changed. Any suggestions as to how I can log them out, even if they simply close the browser window or jump to a different page?
For instance here's a simple select statement Code:
("SELECT a, b,c d, e, f FROM Table WHERE a = "&CInt(j)&" and c= 0")
j is a dimmed variable which is a and it's numeric. Is the above protected against any non numeric instances? Like j=2,345..i've tested this and it works i'm just trying to see if i've covered all my tracks.
How do people go about preventing the user from submitting a form for a 2nd time? For example, the user submits a form, clicks on the back button, and the submits the form again. I have used various techniques in the past (depending on circumstances) but I'd be interested in the techniques you guys currently use.
Is there a way in ASP to prevent including the same file more than once?
Example:
dbutil.asp needs constants.asp, so I include constants.asp inside dbutil.asp.
transact.asp also needs constants.asp, so I include constants.asp inside transact.asp.
transact.asp doesn't need stuff in dbutil.asp, and dbutil.asp doesn't need stuff in transact.asp.
Then later I might have a main.asp that needs both dbutil.asp and transact.asp. So I include them both. However, the constants.asp will be found to be included twice!
What can I do to creatively prevent multiple inclusion of the same file in ASP? I know how to do it in C and C++, but I can't apply that to ASP, it seems.
I am developing a Simple ASP Website with a login page. I want to know how can I change Session ID after login and also Close the current Session after User closes the Window or gets logged out of the Website. So that every time user logs in into the website, Session ID will be unique.
My client received an email from a user who mentioned that by accident they had been typing (over the querystring I guess), and the url had become:
default.asp?pageid='asd
They then received a SQL Server error message.
My client contacted their webhost, who came back to them promptly and talked of 'SQL Injection', they said that we would need to secure the code as well as the permissions on the database(which I believe they have done)..
This is something I had over looked, and started to write a fix for a couple of nights ago...but I dont think its 100%....
Basically I now do this at the top of my default.asp page ...
I've seen plenty of articles and utilities for preventing form injections for ASP.NET, but not too much for classic ASP. Are there any good input validation scripts that you use to avoid form injection attacks? I'm looking for good routines I can reuse on all of my form processing pages.
We have 2 domains for internal purposes: one for users (have to login and domain has SSL) and another for sponsors (have to login and domain does NOT have SSL).
Now when a user logs in and there are pages that have info from the sponsors domain, users are asked to login again with a warning message saying if they want to see secure and nonsecure information. How can I bypass the second login? Is there something I can do in active directory, IIS, or ASP to not have the second login appear?
How can I prevent this from happening? For example when the asp application works in a public terminal where we don't want successive users to know the login password and user name of the previous ones?
I have a form online, and I don't know if people are double clicking the submit button or what is happening really, but sometimes I will have two or more matching entries in a row. Is there any code I can use to filter out double clicks or tripple clicks even? These forms are done in asp and sent to sendcontactform.asp to process.
I am using an HTML form to post data to my database, but when a users enter contact info into my database I am getting the same info twice, although the user only submits once. Here is my code:
I'm trying to pass data from a <textarea> box to a confirmation page and then pass the same information from the confirmation page to a final page.
When the information gets passed to the final page it is truncating it where there are double quotes. I've tried to do a replace() function to try and escape the quotes out but it's not working.
What I would like to do is the following: Menu box 1 populates all 50 states from an SQL table. Use selects State. Menu box 2 gets populated from SQL table with Al counties in that State. User selects prefered county then hits submit The part I am having trouble with is populating the county menu box.
I have a active server page where records are displayed from a query. The display right now is read only. However, with text box this display can also be edited. The first column shows category while the second category shows category total sales.
I would like to double click on category field to get to another asp page that would show the details of sales for that category value double clicked.
My question is: If there is any double click event that would allow me to pass values to open another asp page.
I have an order form that dynamically populates item names and item ids from my MS SQL database. These values get put into three arrays that are looped based on the qty selected for insert into a cart table. Everything works except that the values are inserted into the database twice. Here's the insert code:
I am trying to convert the date in DD/MM/YYYY format so it is always displayed as 01/01/2004 instead of 1/1/2004.The script I am trying to embed this into has similar attributes to the Calendar on this site located at http://www.asp101.com/samples/calendar.asp.and the objects that require to be double digits are iCurrent and Month(dDate).
