Active InfoActive Info  Display List of Info MembersMemberlist  Search The InfoSearch  HelpHelp
  RegisterRegister  LoginLogin
ASPProtect Full 7.x Support (Info Locked Info Locked)
 CJWSoft Support Info : ASPProtect Full 7.x Support
Subject Info: Automated Log-in A d d - P o s tAdd P o s t
Author
Message << Prev Info | Next Info >>
werosen
New User
New User
Avatar

Joined: March/14/2006
Location: United States
Online Status: Offline
Info: 32
Added: March/14/2006 at 3:44pm | IP Logged Quote werosen
It looks like your product is perfect for my new site, but I have one question. One of the pages I want to protect on my site will be called by an application running on a remote server every 15 seconds. The application can include the username and password in the URL it is calling. Will your product allow access to the protected page on my server?

__________________
Warren
Back to Top View werosen's Profile Search for other info by werosen Visit werosen's Homepage
 
cwilliams
Admin Group
Admin Group
Avatar
CJWSoft Web Software Developer

Joined: April/06/2004
Online Status: Offline
Info: 1729
Added: March/14/2006 at 3:50pm | IP Logged Quote cwilliams
download the free version...

check out this tutorial...
http://support.cjwsoft.com/code/moreinfo169-1.htm

If your application can post to the page and provide all the form variables needed to log in it may work out for you..

You'll have to try it out... all the form variables needed are in that login form example.

Basically you'd be posting to a protected (.asp) page..
and providing the following for the most part.. how your app creates it post data is on your end...

<input type="hidden" name="Status" value="Checkem">
<input type="text" name="Username" value="Yourusername">
<input type="Password" name="Password" value="YourPassword">



As an alternate scenario...

Now, by default the "check_user_inc.asp" file is looking for posted form data... for security reasons it is not looking for querystring info..

If you change this bit of code in that file

from

Username = Replace(Request.Form("Username"),"'","''")
Password = Request.Form("Password")

to

Username = Replace(Request("Username"),"'","''")
Password = Request("Password")

It will then grab either form or querystring data...

Meaning you wouldn't necessary have to create a true post to the page with form data. You could just access the page via a querysting like so

http://www.mysite.com/somepage.asp?Status=Checkem&Userna me=Yourusername&Password=Yourpassword

Of course that introduces security risks as the username and password would be passed in plain text over the net


Another option is...
You can also make a copy of the "check_user_inc.asp" page called whatever with those modifications just to use in pages you need your little application to post to... thus reducing the security concerns a a bit as the rest of yoru site could still have its pages protected under the normal scenario.

I hope this answers your question... I havent really ever tried any of this but that is how I think it would work...

__________________
Best Regards, Christopher Williams www.CJWSoft.com
Back to Top View cwilliams's Profile Search for other info by cwilliams Visit cwilliams's Homepage
 

Sorry, you can NOT post info.
This info has been locked by a info administrator.

  A d d - P o s tAdd P o s t
Printable version Printable version

Info Jump
You cannot add new info in this area
You cannot add to info in this area
You cannot delete your info in this area
You cannot edit your info in this area
You cannot create polls in this area
You cannot vote in polls in this area

Active Server Pages ASP a directory of ASP tutorials applications scripts components and articles for the novice to professional developer. CJWSoft ASPProtect ASPBanner ASPClassifieds www.aspprotect.com, www.powerasp.com,www.aspclassifieds.com,www.aspphotogallery.com,www.codewanker.com