<%@ Language=VBScript %>
<%
If Request.Form("SM") = "Yes" Then
dblocked = False
derror = ""
'check for missing entries
If Request.Form("User") = "" or Request.Form("Pass") = "" Then
derror = "Enter both Username and Password."
End If
If derror = "" Then
' check for locked database
Set DBConn = server.CreateObject("ADODB.Connection")
DBConn.Open Application("Access_ConnectionString"), Application("Access_RuntimeUserName"), Application("Access_RuntimePassword")
Set RcdSetc = Server.CreateObject("ADODB.RecordSet")
SQL = "SELECT * From Control;"
RcdSetc.Open SQL, DBConn
If not RcdSetc.EOF Then
dblocked = RcdSetc.Fields("Locked").Value
end if
Session("DBLocked") = dblocked
Set RcdSetc = Nothing
' get username and password
Set RcdSet = Server.CreateObject("ADODB.RecordSet")
SQL = "Select * From Users Where User='" & Request.Form("User") & "'"
RcdSet.Open SQL, DBConn
If RcdSet.EOF = True Then
derror = "Username or Password is not correct!"
End If
If derror = "" Then
dpass = lcase(RcdSet.Fields("Password").Value)
If RcdSet.Fields("Password").Value <> Request.Form("Pass") Then
derror = "Password or Username is not correct!"
End If
End If
If derror = "" Then
If RcdSet.Fields("AccessLevel").Value < 9 And Session("DBLocked") = True Then
derror = "Member List is temporarily unavailable. Try again later."
End If
End If
If derror = "" Then
Session("User") = RcdSet.Fields("User").Value
Session("UserLoggedIn") = RcdSet.Fields("User").Value
Session("Password") = RcdSet.Fields("Password").Value
Session("AccessLevel") = RcdSet.Fields("AccessLevel").Value
Session("FirstName") = RcdSet.Fields("FirstName").Value
Session("LastName") = RcdSet.Fields("LastName").Value
End If
Set RcdSet = Nothing
Set DBConn = Nothing
If derror = "" Then
Session("LoggedIn") = True
If dpass = "newuser" Then
' key word newuser requires password change
Response.Redirect "UpPass.asp"
end if
Response.Redirect "IndexLI.asp"
End If
End If
End If
%>
Log In to Member List