Session Page
Iv'e made an attempt here to create a session once a user has logged in. Code:
View RepliesIv'e made an attempt here to create a session once a user has logged in. Code:
View RepliesI have page for user to update his/her details. What i want is after idle for more than 20 mins, the page will redirect to login page automatically. So that the user knows that his/her session already expired and need to login again.
But it doesn't working. This is because if he/she update the details (after idle more than 20 mins), and click the Submit button, it will go to login page and all the data will be lost. Code:
I recently bought a new web server and am in the process of migrating
all of our websites over. We're going from Windows 2000 IIS 5.0 to
Windows 2003 IIS 6.0.
I've been able to get everything to work
correctly except for the SessionID's. For some reason I'm getting a
new SessionID on EVERY single page that I visit! Which makes it quite
difficult to login and add items to your cart...hehe.
Everything is running ASP, there is no ASP.NET pages, I don't even have
the 1.0 or the 2.0 Framework installed on the server yet. I verified
that the Globals.asa is on the server on and config'ed correctly.
I have an index page containing several IFRAMES that hold a couple of apps which require logins. To avoid having to login 3 or 4 times when the index page first loads, I had the IFRAMES load a page with a link to click to actually go to the page requiring login. The issue I have is that after you've logged in to a couple of these pages, when you refresh the index page, all the IFRAMES go back to the link page.
You don't have to log in again, but this makes you have to click the link again. What I'd like is a way to only show the link page the first time the index page loads it up, but after you've clicked on the link once and logged in, then the next time the index refreshes, you skip the link page and go straight to the app.
I am currently working on an online shopping cart. The working is like:-
1. First the user selects the things.
2. Next page is the detail of the things that he has selected.
Now the third page allows the user to check his address..but before that he has to log in(if he is not logged in). and after logging in he must be redirected to the checkaddress page with his details intact.
What could the likely cause of a session value being lost when one navigates
to another page and attempts to write that session out:
Page 1
session("u_name") = oRS.fields("u_name")
Navigate to Page 2
Response.write Session("u_name")
....."_name" seems to be empty on Page 2.
What am I doing wrong here?
I'm using the MSXML.XMLHTTP object to obtain the results of an ASP page from
an ASP page on the same server. The problem I have is that when the AP
refrenced by the XMLHTTP object is run it does now share the session with
the calling page ? How can I solve this ?
I have a login page that Test's for the username and then tests for the password. If these test true then I redirect them to the member area. What I want to test for is if there is 1 user logged in with Session("test") = 1 and another user logs in with the credentials to set Session("Test") = 1 then the first session will terminate. The new user will then be able to navigate the member area.There will also be other user on with a Session("Test") = xxx where xxx is the Primary key of the validation table.
View Replies View RelatedI have been using session variables to pass a user name from one ASP
page to another inside framesets for 9 months and it stopped working
this week. I have made no code changes but there was a "security
update" installed on the server a few days ago but I can't find out
exactly what it was.
In the research I have done I found many articles on the subject of
session variables in ASP pages inside framesets. From what I read a
new session will be started every time a new ASP page is accessed
until a session variable is set, once a session variable is set the
session will stay the same from page to page, even when using frames.
It is possible to start a session by setting a session variable in the
global.asa file.
My page 1 sets the session variable "username", this page calls page 2
which then uses the "username" variable. This still works on the two
test servers I have where no upgrades of any kind have been done. I
changed the code to display the Session.SessionID in both page 1 and
page 2. On my test systems I get the same session id number, on my
production system I get two different session id numbers and when I
turn on prompting for all cookies I get the session cookie prompt when
the second page is called. The two test systems are on the same
network as my workstation, the production machine on the internet at a
hosting site.
I have cookies enabled in my browser, session state is enabled in IIS
and there are no special characters in the domain name of the web
site. I did not have a global.asa file so I added one and I set a
session variable in the global.asa just to get the session started.
What I find interesting is if I display the variable I set in the
global.asa file I can see it on both page 1 and page 2 but on page 2
I can't see the variables set on page 1. I am completely stumped.
Does anyone have any idea what I can do to get this working again? .....
how to send a web page that uses Session variables in an email. The session variable that is used by the page I'd like to send contains a three dimensional array so cannot be passed easily in a querystring.
View Replies View RelatedI want to abandon session everytime when user come to login page. The problem is that if
1) user comes from login page to welcome page and session is created
2) but if he clicks the "back" button session is not abandoned. I have
Session.Abandon
on login page, but it does not work untill page refreshed. Is there any way to refresh page if user comes back to it using button "back" of browser? Or may be the right way is very different to what i try to do?
ASP Session/Cookies, Help to Protect Page from Non users I am a beginner and very urgently need some help
I have created a asp page, that takes in a username and password and validates it as follows and then if true continues to the pages requested.
Code:
'Read in the password for the user from the database
If (((Request.Form("txtUser")) = rsCheckUser("User_pass")) and (rsCheckUser("User_lev") = 1) ) Then
'If rsCheckUser("User_level") = 1 Then
'THE ABOVE CHECKS THE INFO IS CORRECT AND IT REDIRECTS TO THE PAGE BELOW and Session=True
'If the password is correct then set the session variable to True
Session("blnIsUserGood") = "True"
'Redirect to the authorised user page and send the users name
Response.Redirect"user_self_update_form.asp?ID=" & rsCheckUser("ID") & ""
'Close Objects before redirecting
Set adoCon = Nothing
Set strCon = Nothing
Set rsCheckUser = Nothing
End If
Now this code takes you to page :Response.Redirect"user_self_update_form.asp?ID=" & rsCheckUser("ID") & ""
Which is something like /project/user_self_update_form.asp?ID=1
Since after the login you do to this, you are allowed to see this page.
But The page user_self_update_form.asp?ID= can also be access if you just put the link on the browser. Lets say i log in as ID 2, and just change the ID to 3 on the address bar in the browser, i will log into someone elses page.
How to i block this from random access and only the SPECIFIC USER?
Code for user_self_update_form.asp (the protected page unless you are logged it):
The Session = False part just does not work here, so if you get this link of someone, you can just get it, and you are not redirected.
<%
'If the session variable is False or does not exsist then redirect the user to the unauthorised user page
If Session("blnIsUserGood") = False or IsNull(Session("blnIsUserGood")) = True then
'Redirect to unathorised user page
Response.Redirect"unauthorised_user_page.htm"
End If
%>
<%
'Dimension variables
Dim adoCon 'Holds the Database Connection Object
Dim rsGuestbook 'Holds the recordset for the record to be updated
Dim strSQL 'Holds the SQL query for the database
Dim lngRecordNo 'Holds the record number to be updated
'Read in the record number to be updated
lngRecordNo = CLng(Request.QueryString("ID"))
and all the other protected into here:
I need help with setting up a page where the viewer has to accept terms before they can access the rest of the website.
The page will have a bit of text explaining why they need to accept oor decline the terms and then have 2 buttons. ie. accept or decline.
What I need to be able to do is set this up so that if the viewer tries to bypass the accept/ decline page they will get re-directed to it. If they have clicked the accept button then they can view anywhere on the site.
I understand that 'sessions' in IIS don't actually close until about 20 mins after the user has left the site and can live with that. But if they come back the next day they must go through the accept/decline page to get into the site. It doesn't have to have usernames or password, they just have to accept.
I understand that you set up several pages to do this, i.e. the accept/decline page, a 'checkterms' page (which sets the session cookie?) and then some code on every other page on the site to check for the presence of the session cookie and let you view if it is there. If not, redirects you to the Accept/Decline page.
The problem I have is I don't know what code to write and where to put it into the page.
I do contract work for an organization that has some of the word code I have ever seen. I think they are using some sort of screwy CMS or something.
The code on their pages are pages stacked on pages, in other word one page loaded into a browser might have 3 <html><body></body></html> sets. Its really bad. So I started working on a page that has a form. It is included in the main page with this line of code:
I have a quick signup for a friends page, and at the end of the signup I wanna destroy all the session variables using the nice session.abandon then create two session variables for the username and password so they're already signed in, then redirect them to the index page already logged in. Problem is the session variables don't get saved on the redirect when the session has been abandoned on the page. If I take the abandon out and destroy the session variables individually everything works fine and the new session variables survive. But if I abandon the session then set the new variables they do not. Yes, they are being set after the abandon, and do exist as I've written them to the browser before the redirect. Its not that big a deal in such a small scale to delete all the variables individually, but theres gotta be a way incase it was hundreds of session variables right.
View Replies View Relatedhow to find the session expired or not without using any session varaibles?
View Replies View RelatedI have a site that I'm trying to migrate to ASP.NET from ASP, and the
foremost stumbling block I'm hitting is session state between the ASP
and ASP.NET applications. In order to access this information, I'm
doing a HttpWebRequest from the ASP.NET side into an .asp page,
passing the session name on the get in order to request it from the
ASP side and write it back to the response stream, giving ASP.NET
access to it. Of course I change sessions each time I make the call
from the ASP.NET side.
Soooooo, I'm thinking to myself, "Self, shouldn't you be able to fake
out the server by getting the session cookie from the initial usage of
the asp, pass that data to the ASP.NET, and use that to send a request
back the ASP side under the appropriate session?"
From a real high level, I enter the site via a .asp page. This page
in turn calls .aspx page from within a frame ......
I want to create an administration page which lists all the current users who are on the site at the moment.
I know coldfusion has this feature built in using the SessionTracker class... does ASP have something similar? If not... is there any way I can just iterate through all the session files on the server...?
I have a site developed using ASP, but each page I enter has a different session id when accessing the site using the domain name of the site. When accessing the site from my network and using the internal IP address, it is OK. Any ideas?
View Replies View RelatedI want the suggestion what is better for use between:
Session.abandon
&
Session.Contents.Remove
I created a web page from Excel2000, using "Save as web page..."...Publish
function. then, I moved htm file to my IIS web server. Then I added a form control, and submit button.
How can get the data on the excel file using ASP from server side?
For example, the value of Cell(1,2), Cell(2,3)....
What I want to be able to do is create a user control that will display an
entire page page within it. Does anyone know how to do this or better yet
have any same code?
I like to know how to write this specifc function on ASP where the user eg: display a set of records on the webpage. Example the data are ID, Name and address.
Lets say i display the data on the webpage and i set the Name as the <a href>. So when i click on the name, it will move to another page with the id of the specific name. Code:
I have an ActiveX control in my ASP page that has not been signed yet, so currently just for testing I set the Security for Intranet to "Low". When I run the ASP page on my machine (the IIS is in my machine), I have no problem, except the page prompted me with "An ActiveX control on this page might be unsafe to interact with other parts of the page. Do you want to allow this interaction?"
But, when I run the ASP page on another machine (even though the other machine is also a development machine that already has the ActiveX control and I set the Security for Intranet to "Low"), it did not prompt me the above message, and I got an error when accesing any method of the AX control (e.g Object doesn't support this property or method 'myAXControl.method').
Is this because I have to create a CAB file and mark the AX control as safe for scripting ?To create a CAB file for this AX control, do I need to create my own VB AX
Control project that contains this control and then create a cab file for this VB project ?
This is a standard ASP application that has several pages at the root
withthe global.asa. I set a session variable session("accountid") =
"123456" within an asp page and then response.redirect to the next page and
immediately response.write session("accountid") and I get back nothing.
But if I set a session variable session("accountid") = "123456" within an
asp page and response.redirect to a page in a sub directory and immediately
response.write session("accountid") I get back 123456 on the screen.
I am having a problem with a site that I am developing - my aim is for it to validate as XHTML Strict however, I am running into a couple of problems validating it; in my Response.Write ASP script, I am not including " 's to define page element tags as they keep throwing up errors in the page. Code:
View Replies View RelatedI've a strange problem with Windows Vista, running an ASP page on local
machine (http://localhost/test.asp), the page does not give me any error but
the asp code is not executed (simple code : <% response.write("hello") %),
it show me a blank page, I think I've put all the setttings correctly, but
maybe I must do something obvious to fix that.
I encounter a page reload situation in ASP. It is I need a way to differentiate whether the current page - "Application_Result.asp" got reloaded itself when user click on the browserRefresh button or is requested by the previous page "Application_Form.asp".
I tried using
<%if Request.ServerVariables("REQUEST_METHOD") = "POST" then%>
<!--it is requested from "Application_Form.asp, do something-->
<%else%>
<!--Application_Result.asp refreshed itself(such as user clicks on the
browser Refresh button, do something else-->
<%end if%>
However, in both cases, the IF statement above all evaluated as true. how to differentiate this two different behavior (Page Refresh versus Page requested by another Page) ?
I am working with a developer, on two portions to a site, he is working in PHP and my work is done in ASP.
Is it possible for my pages to request data from a cookie that was written by his pages that are PHP but residing on the same server? Just want to make sure before I spend too much time planning out the development on my end.
I have an application which allow users to search our database. Quite a lot
of search fields pull data from other tables. I don't want to populate the
dropdowns (total 14 of them) from the database everytime as it slow the page
load.
Instead I would like to have a link next to the text field which a
user and click and the choices can be displayed and whatever the user click
in the pop up I want to transfer it to the text box and close the popup.
For example there is a Textbox called country. The user can either type in
the country name or click on the link which will pull all the countries from
table in the database and which ever country user selects, the textbox is
popluated with the country name and the pop up closes automatically. Code:
I'm trying to write an asp page line by line, as one would create a
text file, only my file will end in .asp.
One line simply writes a close ASP code tag, or
FILECONTENTS=FILECONTENTS & "%>"
When this line processed, an error occurs saying that the string was
never terminated because the asp page attempting to write this line of
code to a NEW asp page reads that close ASP tag (%>), as an actual
close asp tag for itself, instead of a STRING value.
How do I write this %> symbol to a new asp file, while still
maintaining its purpose to close a group of asp code in the newly
created page?
This is my coding:
window.opener.location.reload(); window.close();
I don't want the IE to pop up the alert msg to false retry or cancel to reload the page.
I have tried:
1. window.opener.location = window.opener.location
2. window.opener.history.go(0)
But as i carry some data from previous previous page, when i use (window.opener.location = window.opener.location), it can't capture my data as it just load the page. It will pop up error as no data captured :
Microsoft VBScript runtime error '800a000d'
Type mismatch: '[string: ""]'
Any suggestion?
I am looking for a way to pass an ADO recordset that has been retrieved in
an ASP page to another HTML-page. Is there someone who can provide me with a
small sample or a link to see how this is done?