BIEB Login

<%@ LANGUAGE = "VBScript"%> <%ENABLESESSIONSTATE = False 'Response.Buffer = True 'Response.ExpiresAbsolute = Now() - 1 'Response.Expires = 0 'Response.CacheControl = "no-cache" 'Response.AddHeader "cache-control", "no-store, must-revalidate, private" 'Response.AddHeader "Pragma", "no-cache" session.contents("login")="" session.contents("userID")="" session.contents("AccessRights")="" Set objFSO = Server.CreateObject("Scripting.FileSystemObject") Set objTextStream=objFSO.OpenTextFile(Server.MapPath("\ruaf_bieb\incl\system.asp"), 1) varMaintenance=trim(objTextStream.ReadLine) objTextStream.close set objTextStream=nothing set objFSO=nothing %> BIEB Login <% dim gotUName dim gotPass dim gotSubmit gotUName=request.form("txtUName") gotPass=request.form("txtPassword") gotSubmit=request.form("cmdLogin") if trim(gotSubmit)="Login" then if gotUName="" and gotPass="" then gotMessage="Missing user name and password" end if if gotUName="" and gotPass<>"" then gotMessage="Missing user name" end if if gotUName<>"" and gotPass="" then gotMessage="Missing password" end if if gotUName<>"" and gotPass<>"" then mySelect="SELECT tblUserAdmin.fldUserID, tblUserAdmin.fldRealName, tblUserAdmin.fldOrganisation, " &_ "tblUserAdmin.fldUserName, tblUserAdmin.fldPassword, tblUserAdmin.fldRights" myFrom=" FROM tblUserAdmin" myWhere=" WHERE tblUserAdmin.fldUserName='" & gotUName & "' AND tblUserAdmin.fldPassword='" & gotPass & "';" mySQL=mySelect & myFrom & myWhere Set Conn = Server.CreateObject("ADODB.Connection") Conn.ConnectionString="Provider=Microsoft.ACE.OLEDB.12.0; Data Source=" &Server.MapPath("\..\database\sida_bibliogr.mdb")& "; User ID=admin; Password=;" Conn.open Set rst = Server.CreateObject("ADODB.Recordset") rst.locktype=adLockReadOnly rst.cursortype=adOpenForwardOnly rst.cursorlocation=aduseclient rst.cachesize=5 rst.open mySQL, Conn If Not rst.EOF And Not rst.BOF Then session.contents("login")="1" session.contents("userID")=rst("fldUserID") session.contents("AccessRights")=rst("fldRights") varName=rst("fldRealName") varOrg=rst("fldOrganisation") Dim objFSO Const fsoForAppend = 8 Set objFSO = Server.CreateObject("Scripting.FileSystemObject") 'Open the text file Set objTextStream = objFSO.OpenTextFile(Server.MapPath("\..\database\login.txt"), fsoForAppend, true) objTextStream.WriteLine rst("fldUserID") & ", " & now() 'Close the file and clean up objTextStream.Close Set objTextStream = Nothing Set objFSO = Nothing rst.close set rst=nothing Conn.close set Conn=nothing gotMessage="Login OK!" else Set objFSO = Server.CreateObject("Scripting.FileSystemObject") 'Open the text file Set objTextStream = objFSO.OpenTextFile(Server.MapPath("\..\database\login.txt"), fsoForAppend, true) objTextStream.WriteLine "Not outhorised access" & ", " & now() 'Close the file and clean up objTextStream.Close Set objTextStream = Nothing Set objFSO = Nothing gotMessage="Not authorised user!" end if end if end if %> Logo

RUAF Bibliography Login

<% select case session.contents("AccessRights") case "1" if varMaintenance="0" then response.write "" response.write "" response.write "" response.write "" response.write "" response.write "" response.write "" response.write "" response.write "" else gotMessage="The database is down for maintenance" end if case "2", "3" if varMaintenance="0" then response.write "" response.write "" response.write "" response.write "" response.write "" response.write "" response.write "" response.write "" response.write "" response.write "" response.write "" response.write "" else gotMessage="The database is down for maintenance" end if case "9" response.write "" response.write "" response.write "" case else response.write "" response.write "" response.write "" end select %>

<% if session.contents("login")="1" then response.write "

Welcome " & varName & "!

" end if %>

<% if session.contents("login")="1" then response.write "

Your access level permits you to:

" end if %>

" response.write "

Add new titles

" response.write "