代码例子 - Ask For Login
新客网 XKER.COM 2003-04-17 来源: 收藏本文
The need for a security system is obvious if your pages include sensitive information.
This sample shows you how to setup some of your pages to ask for login if the user has not logged in yet.
2eNetWorX/dev site uses this kind of protection for interactive pages and file downloads.
Let's assume that we have a page where the visitors can ask questions. We want to make sure that the user
has logged in before being able to ask a question.
If the user has not logged in yet, we will ask for a login. After a successful login, we will redirect the
user to the page requested.
First, we will have a common file to check for login. You need to include this file into all the pages
that require login.
security.asp
<%
bLoggedIn = (len(session("UserName")) > 0)
if bRequireLogin then
'Login required
if Not bLoggedIn then
'Not logged in, ask for login
response.redirect "login.asp?comebackto=" & _
request.servervariables("script_name") & "?" & _
server.urlencode(request.querystring)
'Note how we construct the page to come back
end if
end if
%>
login.asp
First thing to do in our login.asp page is to get the page where the user is redirected from. The variable
sReferer is used to redirect back to the page the user has come from.
sGoBackTo variable will used in the <form> tag for persisting this location when we submit the login form.
<%
if request("comebackto") <> "" then
sReferer = request("comebackto")
sGoBackTo = "?" & request.querystring
end if
if request("cmdLogin") <> "" then
'Login Form submitted
sUserName = request("txtUserName")
sPassword = request("txtPassword")
'Check for username and password
if sUserName = "bill" And sPassword = "gates" then
bLoginSuccessful = True
end if
session("UserName") = sUserName
'After a successful login, let's send the user
'back to the page requested. The variable sReferer
'holds the page to go back, if it is empty, we should
'redirect the user to our default page.
if sReferer = "" then
response.redirect "index.asp"
else
response.redirect sReferer
end if
else
'Display the Login Form
%>
<form action="login.asp<%=sGoBackTo%>" method="post">
<input type="text" name="txtUserName"><br>
<input type="password" name="txtPassword"><br>
<input type="submit" name="cmdLogin"><br>
</form>
<%
end if
%>
testpage.asp
Now, all you need to do is setting bRequireLogin to True and including the security.asp file.
<%
bRequireLogin = True
%>
<!--#include file="security.asp"-->
Users should be logged in to see this text.
I hope this sample gives you a quick overview of a simple security system implementation with ASP.
You are always welcome to express your feedback!
by Hakan Eskici
This sample shows you how to setup some of your pages to ask for login if the user has not logged in yet.
2eNetWorX/dev site uses this kind of protection for interactive pages and file downloads.
Let's assume that we have a page where the visitors can ask questions. We want to make sure that the user
has logged in before being able to ask a question.
If the user has not logged in yet, we will ask for a login. After a successful login, we will redirect the
user to the page requested.
First, we will have a common file to check for login. You need to include this file into all the pages
that require login.
security.asp
<%
bLoggedIn = (len(session("UserName")) > 0)
if bRequireLogin then
'Login required
if Not bLoggedIn then
'Not logged in, ask for login
response.redirect "login.asp?comebackto=" & _
request.servervariables("script_name") & "?" & _
server.urlencode(request.querystring)
'Note how we construct the page to come back
end if
end if
%>
login.asp
First thing to do in our login.asp page is to get the page where the user is redirected from. The variable
sReferer is used to redirect back to the page the user has come from.
sGoBackTo variable will used in the <form> tag for persisting this location when we submit the login form.
<%
if request("comebackto") <> "" then
sReferer = request("comebackto")
sGoBackTo = "?" & request.querystring
end if
if request("cmdLogin") <> "" then
'Login Form submitted
sUserName = request("txtUserName")
sPassword = request("txtPassword")
'Check for username and password
if sUserName = "bill" And sPassword = "gates" then
bLoginSuccessful = True
end if
session("UserName") = sUserName
'After a successful login, let's send the user
'back to the page requested. The variable sReferer
'holds the page to go back, if it is empty, we should
'redirect the user to our default page.
if sReferer = "" then
response.redirect "index.asp"
else
response.redirect sReferer
end if
else
'Display the Login Form
%>
<form action="login.asp<%=sGoBackTo%>" method="post">
<input type="text" name="txtUserName"><br>
<input type="password" name="txtPassword"><br>
<input type="submit" name="cmdLogin"><br>
</form>
<%
end if
%>
testpage.asp
Now, all you need to do is setting bRequireLogin to True and including the security.asp file.
<%
bRequireLogin = True
%>
<!--#include file="security.asp"-->
Users should be logged in to see this text.
I hope this sample gives you a quick overview of a simple security system implementation with ASP.
You are always welcome to express your feedback!
by Hakan Eskici
最新相关文章- ·ASP+ACCESS数据库中文乱码问题解决
- ·编程实例 字母+数字验证码程序
- ·ASP连接数据库错误解决办法新法
- ·初学:ASP内建对象Response
- ·ASP网站Server object error的解决办法
- ·ASP技巧:让Len,Left,Right函数识别中文
- ·把网页中的电话号码生成图片的ASP程序
- ·ASP如何实现IE地址栏参数的判断
- ·细化解析:ASP连接11种数据库语法集锦
- ·ASP实现网页打开任何类型文件都保存
- ·ASP代码直接增加、删除ACCESS表和字段
- ·ASP:判断访问是否来自搜索引擎的函数
- ·ASP技巧:禁用页面缓存的五种方法
- ·学习ASP关于与变量子类型相关的函数
- ·ASP开发中的(VBScript)类基础学习
- ·ASP访问Excel文件
发表评论
评论内容:不能超过250字,需审核后才会公布,请自觉遵守互联网相关政策法规。
阅读排行
- 使用bcdedit 更改windows vista 的启动顺序
- Session丢失问题解决方案
- NTFS文件系统的安全属性
- 在DataGridView中获得DataGridViewCheckBoxColumn
- asp http 500 - 内部服务器错误 请求的资源在使用
- windows内核初窥(一)------体系结构
- WIN32下DELPHI中的多线程【线程的调度】(二)
- 一种Windows下线程同步的实现方法
- windows内核初窥(二)-----系统机制
- WIN32下DELPHI中的多线程【变量存储】(三)
- 【最新】IP 地址分配表(14)
- 关于DataGridView中如何接收处于编辑状态下的当前
- Microsoft Internet Transfer Control 使用简介(
- [小技巧]winfrom使用多线程
- 八大法则杜绝ASP网站漏洞入侵
随机推荐
实用信息推荐