I've created an admin side for my ASP site and I use session vars to provide
page security.
Just as a bit of advice, I want to know if I should expire each admin page
so that others can't bring them up. I know the session var check will
bounce them back to the login page, but I'd rather they didn't even see this
page if they aren't authorised.
Is it possible to make a cookie NEVER expire? or not?
View Replies View Relatedhi im trying to make a cookie behave like a session so every time i load or reload the page it gives him this line:
Response.Cookies("name").Expires = Now() + 0.015
but its not working..
if i load the page at 10:00 the cookie expires at 10:20
even though i reload the page at 10:10
what can i do? or those a cookie expires can only be set once?
Is this an accurate article on making web pages expire?
View Replies View RelatedWhat causes asp pages to "expire" - for example, on some PCs (not all, not all the time), when you hit the back button you get a "page expired" message.
View Replies View RelatedI got admin's pages and users pages. If I haven't logged in as an admin first and i'm either not logged in at all or logged in as an user then when I try to enter an address of an admin's page then it redirects the user to the main page.
I tried solving the next problem with cookies andor with session but neither of them worked. Code:
How do you guys make listings such as product listings and their detail pages more crawler friendly, if they are genrated using dynamic asp pages.
If your ASP uses a format like this: www.mysite.com/products.asp?idnum=3444 to display detail pages, how can I apply SEO to this format??
I know unix hosts use the mod rewrite, but I do not have access to the server settings etc. BUt I can access a database etc.
I'm not sure if ASP would be the right code to do this but I'm gonna ask anyway.
I'm trying to make an admin section...the thing is I make this site but I don't get online that often to update the news. One person offers to do this. He doesn't have a clue on how to use FTP. So I'm looking for something that I can let him log in(on a browser) to update this specific file(only news.html), don't want him to see anything else there.
I can connect to my schools webserver via VPN, and edit the webcontent. However, I cannot connect to the SQL server. Does anyone know of an ASP script I can use to admin the database remotely?
View Replies View RelatedSome of our web site users are experiencing a strange behavior of IE 6 (Sp1 or not). It looks like their ASP Session Cookie expire before time.
Here are some details. The user connects to our web site and we keep his ID in the Session object. At the beginning of every page, we check the presence of this ID and if it is missing, we redirect the user to the connection page.
Somewhere in the site, we create a temporary cookie. At some point, this new cookie is deleted with the following ASP code :
Response.Cookies(STR_FICHR_TEMN_CONTX).Path = "/"
Response.Cookies(STR_FICHR_TEMN_CONTX) = ""
Response.Cookies(STR_FICHR_TEMN_CONTX).Expires = CDate
("2000-01-01")
When the user clics on an hyperlink, he is redirected to the connection page because his ASP cookie is no more (I have verified that in our IIS log : there is no request
logged after the execution of the above code).
Any ideas ? Could this be an Internet Explorer bug ?
understand that when one closes the browser, the session gets killed in ASP,
i encountered a scenario, where even after the browser was closed, the session was active, let me explain, i have written a code to check if the session variable contains the loginname then i am allowing access to a certain asp page to the user.
the code worked. thereafter i closed the browser, opened the browser again and accessed the same url, surprisingly it allowed access to the page and did not ask me for the login name, clearing the cache also did not help.
Further, I need to update some table as well when the user closes his browser window (an update query to set the flag to 0 for tracking user status). How can I do this. A sample code will be highly appreciated.!
Lastly, when the user clicks the logoff button, he successfully logout , but he can come back with the back button on the browser. Is there a way to prevent this,that is, once the user logout and tries to come back, he SHOULD NOT be allowed to do so rather he should be redirected to a page where he can login again.
Did anyone know how to set the page are expire after logout? or something that had been sent using form. user can not go back t oview it again by clicking at the back button. Like hotmail.com
when user log out and hit the back button, the page display that the page are expire.
I've searched the net for ways to expire a page immediately, so when the
user hit 'Back', they receive the "Page Has Expired" error page and I've
seen a number of posts on how to do it - with the code below:
<%
Response.ExpiresAbsolute = #1/1/1980#
Response.AddHeader "cache-control", "no-cache"
Response.AddHeader "pragma", "no-cache"
%>
However, when I try using this code, nothing happens, when I click 'Back',
it simply takes me back to the previous page. The "Expired Page" error page
should display, correct?
How can I set my cookies to expire when the the user leaves the site?
View Replies View Relatedhow can i set my cookie expire after 2 minutes?
Response.Cookies("KensSurvey").Expires=?
Whenever password is expired & force user to change NT password for the web server, it seems to be assumption that asp application gives "interanal server error". Is it true that forcing user to change password will generate "internal server" error? BTW..this is caused in our intranet site and it is NT authenticated site.
View Replies View RelatedI have a form that users fill and submit to a server side page. when a user uses the back button to go back to the form, I want the form page to expire. Pls how can i implement this.
View Replies View RelatedThis is a small Web Application, this contains basic XML functions using ASP including a XML driven user authentication, adding new records, viewing records, editing and deleting records. Code:
View Replies View RelatedI want to call the redirect to the selected page depending on the username. It is comeing from a text file I would like for the login to automatically be written in to the = ("<%login%>") but this is worn.What i have below wokrs for only admin and anyone else who is not admin. Or I would like to be able to add a third and fourth. I don't mind hard coding the login if i have to.
if Request("login") = ("admin") then
Response.Redirect "main.asp?action=login"
else
Response.Redirect "client.asp?action=login"
end if
I have an access database on my website.Its tied in to an asp calendar page where people can click on a date and send me an email wanting to book that date. Could i sent a text message from my mobile to add a new date into my access database to book that date instead of having to go onto my admin section and add it in?what i trying to explain. Is this possible or impossible.
View Replies View Relatedi have currently built a website with some administration. The user goes to a login page and put in there username/password. This then lets them access the admin stuff. Thats all ok. I then thought well instead of going to the login
www.blahblah.com/login.asp i would just type www.blahblah.com/adminarea.asp and low and behold i was in the admin are with no login required.
I want to expire a cookie collection in my asp page and I gave it like this;
Response.Cookies("whereq").Expires = Now()
and this "whereq" collection has 50 keys. The problem is my cookie didn't expire from the above code. I hope there should be a way to do so without writing 50 expire lines.
I would like to know how can I remove expires date from asp I am not this can be done in access or asp script. There are a field i n access datbase say p_expdate which I delete and replace p_date which display the current post date
Which specific file in asp should I modify I had look into the file like register.asp and search for p_expdate. I had rename to p_date. Do you think the setting on my datbase or value I need to set.
After moving my application from W2K / IIS5 to W2K3 / II6 the application works pefrectly BUT the user session expire prematurely (after about 2 mins) rendering the application unusable.
View Replies View RelatedSession expiring immediately. what could be the reason ?
View Replies View Relatedif user clicked the Sign Out button, the session abandon and the login page displays. If the user clicks the browser Back button, it won't show the previous page. It shows only the login page. How does is work?
View Replies View Relatedanyone know where can i get good iis admin control panel for monitoring multiple sites?
View Replies View RelatedCan I use the Website Administration tool to manage users and roles for
multiple ASP.NET applications using a single, common ASPNETDB?
If so, what changes do I have to make to the web.config files for these
various applications to allow authentication from that single ASPNETDB.
I'd also like to be able to maintain the users/roles and application access
from the web server rather than from my development computer. Right now it
seems like I have to make changes to user/roles in each web app and then
transfer the database and code over to the server, just to add a new user.
And each app seems to have it's own ASPNETDB which defeats the goal of a
single point of administration for the server.
I managed to find the problem with my script thanks to jmurray's help. However I am now left with a confusing puzzle and I cannot any information about a workaround.
The error I now get is:
Cannot modify or delete an object that was added using the COM+ Admin SDK
I know now the reason for this is because I changed the 'from' email address in my script. If I put it as 'service@safetouch.com' it works fine. If I change the address to ANYTHING else, I get the above error. Is this something that can be corrected through scripting? If not, any ideas where I should be looking?
I would like to create the facility for admins on my site to be able to edit certain html pages on there site. Is this possible and if so does anyone know of any good urls discussing this matter ?
View Replies View RelatedI'm a Win2000 professional user - sP 4. I can't delete some folders in
e:inetpubwwwroot....
I've created them by FrontPage2000 SR1. I enter Windows as Administrator, then I should be able to create /delete all objects. On the contrary, each time I attempt to erase the assigned folder Windows warns me so:
"Access is denied. The source file may be in use."
I have to come up with an admin cntrol panel so the staff can change ,update there website as needed. I would like to use asp to create the admin panelor if you guys can tell me of a better way like using php or somthing.
How would I go about letting them update/change the text. Do I have the site load it
from a database like access or sql or ? Remeber it should be user freidly no html coding just type and upload.
I have an ASP page that uses a COM componenemt on a Win2000 server. The same server contains my SQL Server 2000, which the COM object is querying on. I use a constant login/password to login into the SQL Server, so it shouldn't matter which domain user is using the page.
It works fine for every user -=that is defined in the Win2000 computer Admins list=- , it doesn't work at all for users that are not (Connection ailure)....
I am not sure why, since how I see it, it shouldn't matter to the SQL Server which user is trying to login (since I use the same constant user/password for all of them...).
It might be either an IIS or SQL Server problem (or maybe even Win2000 related), Anyone ever encountered such an issue