Originariamente inviato da maxolino
L'errore non credo che sia qui ma nella pagina login.asp
Prova a postare il codice di quella pagina!
<%
strUserName = Replace(Request.Form("txtUserName"), "'", "''")
Set rsCheckUser = Server.CreateObject("ADODB.Recordset")
strSQL = "SELECT password, ID, username, admin, suspend FROM tblUsers WHERE username ='" & strUserName & "'"
rsCheckUser.Open strSQL, adoCon
strActiveUser = "Select * From Active_Users Where User_ID='" & strUserName & "'"
Set rs1 = adoCon.Execute (strActiveUser)
If NOT rsCheckUser.EOF Then
If NOT rs1.EOF Then
Session("userGood") = False
Response.Redirect ("default.asp?mode=once")
ElseIf md5(Request.Form("txtUserPass")) = rsCheckUser("password") Then
If rsCheckUser("suspend") = 0 Then
Session("userGood") = True
Session("userID") = rsCheckUser("ID")
Session("userName") = rsCheckUser("username")
Session("userAdmin") = rsCheckUser("admin")
strLoginSql = "UPDATE tblusers SET last_login='" & now() & "' WHERE username ='" & strUserName & "'"
adoCon.execute (strLoginSql)
rsCheckUser.Close
Set rsCheckUser = Nothing
Set adoCon = Nothing
Response.Redirect"main1.asp"
Else
rsCheckUser.Close
Set rsCheckUser = Nothing
Set adoCon = Nothing
Session("userGood") = False
Response.Redirect("default.asp?mode=suspend")
End If
End If
End If
rsCheckUser.Close
Set rsCheckUser = Nothing
Set adoCon = Nothing
Session("userGood") = False
Response.Redirect"default.asp?mode=invalid"
%>
Rispondi quotando