<% If Request.Querystring("logout") = "y" Then Session.Abandon Response.Redirect("/index.html") Response.End End If If Request.ServerVariables("REQUEST_METHOD") = "POST" Then myname = ValidateSQL(Trim(Request.Form("username"))) mypassword = ValidateSQL(Trim(Request.Form("password"))) If Request.Form("username") = "" Or Request.Form("password") = "" Then Response.Redirect("/login.asp") End If mySQL = "SELECT * FROM tLogins WHERE (Username='" & myname & "') AND (Password='" & mypassword & "') AND (IsActive = 1) " Set Conn = Server.Createobject("ADODB.Connection") Conn.ConnectionTimeout = 15 Conn.CommandTimeout = 30 Conn.Open DSN If (myname <> "" And mypassword <> "") Then Set rstemp = Server.Createobject("ADODB.Recordset") rstemp.Open mySQL, Conn, 1, 3 If Not rstemp.EOF Then Session("UserID") = rstemp.Fields.Item("id").value Session("SecLvl") = rstemp.Fields.Item("SecLvl").value Else Session.Abandon Response.Redirect("/login.asp?status=Your login was not located. Please try again.") Response.End End If rstemp.Close Set rstemp = Nothing End If Conn.Close Set Conn = Nothing If Session("UserID") <> "" Then Response.Redirect("files.asp") Else Response.Redirect "/login.asp?status=Your login was not located. Please try again." End If End If %> Nutrition Innovation - Credentials





<%= Request.Querystring("status") %>
USERNAME 
PASSWORD 

                     








 


© Copyright 2012 Nutrition Innovation