JOEJOETHEJOEY
IS-IT--Management
Hi there,
I've been struggling with the code below to perform what I need to do.
Firstly, I need the page to find out whether the user is logged into the website already by looking for the username and password in the cache.
- If yes, then the user's details will be displayed on the page ready for updating.
- If not, and the user has already registered before, but isn't logged in, then the user can enter his username and password and click on update and the page will show all his details from the database ready for updating.
- If not, and the user "hasn't" registered before, then the fields will be empty and the details entered will be stored into the database.
I have managed to get the page to display the user's details when they have logged in or when they enter their username and password into the page, but I can't get it to:
- Update these details.
- Add new user's details to the database.
The CODE is as shown here "mypage.asp" :
===============================================================
<!-- #INCLUDE FILE="adovbs.inc" -->
<!-- #INCLUDE FILE="storefuncs.asp" -->
<%
'Get User ID
userID = TRIM( Request( "uid" ) )
'Get Login Info
login = TRIM( Request( "login" ) )
IF login <> "" THEN
username = TRIM( Request( "username" ) )
password = TRIM( Request( "password" ) )
ELSE
username = TRIM( Request( "nusername" ) )
password = TRIM( Request( "npassword" ) )
END IF
mypage = TRIM( Request( "myypage" ) )
error = TRIM( Request( "error" ) )
register = TRIM( Request( "register" ) )
IF username = "" THEN
username = request.cookies("username"
password = request.Cookies("password"
END IF
' Open Database Connection
Set Con = Server.CreateObject( "ADODB.Connection" )
Con.Open "Provider=Microsoft.Jet.OLEDB.4.0; Data Source=" & Server.Mappath("storeDB.mdb"& "; Jet OLEDBatabase Password="
' Check for update code
IF mypage <> "" AND error = "" THEN
updateUser
END IF
IF register <> "" AND error = "" THEN
adduser
END IF
' Get User ID
userID = checkpassword( username, password, Con )
' See if user exists in database, or if info was actually passed
IF userID > 0 THEN
SET RS = Con.Execute("SELECT * FROM Users WHERE user_ID = "&userID)
'Set string values with existing settings
nusername = RS("user_username"
npassword = RS("user_password"
email = RS("user_email"
street = RS("user_street"
town = RS("user_town"
county = RS("user_county"
postcode = RS("user_postcode"
cctype = RS("user_cctype"
ccnumber = RS("user_ccnumber"
ccexpires = RS("user_ccexpires"
ccname = RS("user_ccname"
END IF
%>
<html>
<head><title>My Account Page</title></head>
<body bgcolor="white">
<center>
<table width="500" border=0
cellpadding=4 cellspacing=0>
<tr>
<td bgcolor="darkgreen">
<font color="white" face="Arial">
<b>Update</b>
</font>
</td>
</tr>
<tr>
<td>
<form method="post" action="<%=submitpage%>">
<input name="mypage" type="hidden" value="1">
<input name="pid" type="hidden" value="<%=productID%>">
<font face="Arial" size="2">
Please make any changes to your details and click on "Update" to submit.
</font>
<font face="Arial" size="2" color="darkgreen">
<p><B>Login Information:</B>
</font>
<font face="Courier" size="2">
<br><B>Username:</B>
<input name="nusername" size="20" maxlength="20"
value="<%=nusername%>">
<br><B>Password:</B>
<input name="npassword" size="20" maxlength="20"
value="<%=npassword%>">
<br><B>Email address:</B>
<input name="email" size="30" maxlength="75"
value="<%=email%>">
</font>
<font face="Arial" size="2" color="darkgreen">
<p><B>Address Information:</B>
</font>
<font face="Courier" size="2">
<br><B>Street:</B>
<input name="street" size="20" maxlength="50"
value="<%=street%>">
<br><B>Town:</B>
<input name="town" size="20" maxlength="50"
value="<%=town%>">
<br><B>County:</B>
<input name="county" size="20" maxlength="50"
value="<%=county%>">
<br><B>Postcode:</B>
<input name="postcode" size="20" maxlength="10"
value="<%=postcode%>">
</font>
<font face="Arial" size="2" color="darkgreen">
<p><B>Payment Information:</B>
</font>
<font face="Courier" size="2">
<br><B>type of credit card:</B>
<select name="cctype">
<option value="1"
<%=SELECTED( cctype, "1" )%> > VISA
<option value="2"
<%=SELECTED( cctype, "2" )%> > MasterCard
</select>
<br><B>Credit Card Number:</B>
<input name="ccnumber" size="20" maxlength="20" value="<%=ccnumber%>">
<br><B>Credit Card Expiry Date:</B>
<input name="ccexpires" size="20" maxlength="20" value="<%=ccexpires%>">
<br><B>Name on card:</B>
<input name="ccname" size="20" maxlength="20" value="<%=ccname%>">
<br>
<br>
<input type="submit" value="Update">
</font>
</FORM>
</td>
</tr>
</TABLE>
</center>
</body>
</html>
===============================================================
The addUser and updateUser functions are contained in the "storefuncs.asp" page with this code:
===============================================================
SUB addUser
' Get Registration Fields
nusername = TRIM( Request( "nusername" ) )
npassword = TRIM( Request( "npassword" ) )
email = TRIM( Request( "email" ) )
street = TRIM( Request( "street" ) )
town = TRIM( Request( "town" ) )
county = TRIM( Request( "county" ) )
postcode = TRIM( Request( "postcode" ) )
cctype = Request( "cctype" )
ccnumber = TRIM( Request( "ccnumber" ) )
ccexpires = TRIM( Request( "ccexpires" ) )
ccname = TRIM( Request( "ccname" ) )
' Check For Required Fields
backpage = Request.ServerVariables( "SCRIPT_NAME" )
IF nusername = "" THEN
errorForm "You must enter a username.", backpage
END IF
IF npassword = "" THEN
errorForm "You must enter a password.", backpage
END IF
IF email = "" THEN
errorForm "You must enter your email address.", backpage
END IF
IF street = "" THEN
errorForm "You must enter your street address.", backpage
END IF
IF town = "" THEN
errorForm "You must enter your town.", backpage
END IF
IF county = "" THEN
errorForm "You must enter your county.", backpage
END IF
IF postcode = "" THEN
errorForm "You must enter your postcode.", backpage
END IF
IF ccnumber = "" THEN
errorForm "You must enter your credit card number.", backpage
END IF
IF ccexpires = "" THEN
errorForm "You must enter your credit card expiration date.", backpage
END IF
IF ccname = "" THEN
errorForm "You must enter the name that appears on your credit card.", backpage
END IF
' Check for Necessary Field Values
IF invalidEmail( email ) THEN
errorForm "You did not enter a valid email address", backpage
END IF
IF NOT validCCNumber( ccnumber ) THEN
errorForm "You did not enter a valid credit card number", backpage
END IF
IF NOT isDATE( ccexpires ) THEN
errorForm "You did not enter a valid credit card expiration date", backpage
END IF
' Check whether username already registered
IF alreadyUser( nusername ) THEN
errorForm "Please choose a different username.", backpage
END IF
' Add New User to Database
sqlString = "INSERT INTO Users ( " &_
"user_username, " &_
"user_password, " &_
"user_email, " &_
"user_street, " &_
"user_town, " &_
"user_county, " &_
"user_postcode, " &_
"user_cctype, " &_
"user_ccnumber, " &_
"user_ccexpires, " &_
"user_ccname " &_
" VALUES ( " &_
" '" & fixQuotes( nusername ) & "', " &_
" '" & fixQuotes( npassword ) & "', " &_
" '" & fixQuotes( email ) & "', " &_
" '" & fixQuotes( street ) & "', " &_
" '" & fixQuotes( town ) & "', " &_
" '" & fixQuotes( county ) & "', " &_
" '" & fixQuotes( postcode ) & "', " &_
" '" & cctype & "', " &_
" '" & fixQuotes( ccnumber ) & "', " &_
" '" & ccexpires & "', " &_
" '" & fixQuotes( ccname ) & "')"
Con.Execute sqlString
' Use the new username and password
username = nusername
password = npassword
' Add Cookies
addCookie "username", username
addCookie "password", password
END SUB
SUB updateUser
' Get Registration Fields
street = TRIM( Request( "street" ) )
town = TRIM( Request( "town" ) )
county = TRIM( Request( "county" ) )
postcode = TRIM( Request( "postcode" ) )
cctype = Request( "cctype" )
ccnumber = TRIM( Request( "ccnumber" ) )
ccexpires = TRIM( Request( "ccexpires" ) )
ccname = TRIM( Request( "ccname" ) )
' Check For Required Fields
backpage = "checkout.asp"
IF street = "" THEN
errorForm "You must enter your street address.", backpage
END IF
IF town = "" THEN
errorForm "You must enter your town.", backpage
END IF
IF county = "" THEN
errorForm "You must enter your county.", backpage
END IF
IF postcode = "" THEN
errorForm "You must enter your postcode code.", backpage
END IF
IF ccnumber = "" THEN
errorForm "You must enter your credit card number.", backpage
END IF
IF ccexpires = "" THEN
errorForm "You must enter your credit card expiration date.", backpage
END IF
IF ccname = "" THEN
errorForm "You must enter the name that appears on your credit card.", backpage
END IF
' Check for Necessary Field Values
IF INSTR( ccnumber, "*" ) = 0 THEN
IF NOT validCCNumber( ccnumber ) THEN
errorForm "You did not enter a valid credit card number", backpage
ELSE
ccnumber = "'" & ccnumber & "'"
END IF
ELSE
ccnumber = "user_ccnumber"
END IF
IF NOT isDATE( ccexpires ) THEN
errorForm "You did not enter a valid credit card expiration date", backpage
END IF
' Update user information in the database
sqlString = "UPDATE Users SET " &_
"user_street='" & fixQuotes( street ) & "', " &_
"user_town='" & fixQuotes( town ) & "'," &_
"user_county='" & fixQuotes( county ) & "'," &_
"user_postcode='" & fixQuotes( postcode ) & "'," &_
"user_ccnumber='" & ccnumber & "', " &_
"user_cctype=" & cctype & ", " &_
"user_ccexpires='" & ccexpires & "'," &_
"user_ccname='" & fixQuotes( ccname ) & "' " &_
"WHERE user_id=" & userID
Con.Execute sqlString
END SUB
===============================================================
I hope I have provided enough info for some help. Thanks in advance!!
Joe
I've been struggling with the code below to perform what I need to do.
Firstly, I need the page to find out whether the user is logged into the website already by looking for the username and password in the cache.
- If yes, then the user's details will be displayed on the page ready for updating.
- If not, and the user has already registered before, but isn't logged in, then the user can enter his username and password and click on update and the page will show all his details from the database ready for updating.
- If not, and the user "hasn't" registered before, then the fields will be empty and the details entered will be stored into the database.
I have managed to get the page to display the user's details when they have logged in or when they enter their username and password into the page, but I can't get it to:
- Update these details.
- Add new user's details to the database.
The CODE is as shown here "mypage.asp" :
===============================================================
<!-- #INCLUDE FILE="adovbs.inc" -->
<!-- #INCLUDE FILE="storefuncs.asp" -->
<%
'Get User ID
userID = TRIM( Request( "uid" ) )
'Get Login Info
login = TRIM( Request( "login" ) )
IF login <> "" THEN
username = TRIM( Request( "username" ) )
password = TRIM( Request( "password" ) )
ELSE
username = TRIM( Request( "nusername" ) )
password = TRIM( Request( "npassword" ) )
END IF
mypage = TRIM( Request( "myypage" ) )
error = TRIM( Request( "error" ) )
register = TRIM( Request( "register" ) )
IF username = "" THEN
username = request.cookies("username"
password = request.Cookies("password"
END IF
' Open Database Connection
Set Con = Server.CreateObject( "ADODB.Connection" )
Con.Open "Provider=Microsoft.Jet.OLEDB.4.0; Data Source=" & Server.Mappath("storeDB.mdb"
& "; Jet OLEDBatabase Password="' Check for update code
IF mypage <> "" AND error = "" THEN
updateUser
END IF
IF register <> "" AND error = "" THEN
adduser
END IF
' Get User ID
userID = checkpassword( username, password, Con )
' See if user exists in database, or if info was actually passed
IF userID > 0 THEN
SET RS = Con.Execute("SELECT * FROM Users WHERE user_ID = "&userID)
'Set string values with existing settings
nusername = RS("user_username"
npassword = RS("user_password"
email = RS("user_email"
street = RS("user_street"
town = RS("user_town"
county = RS("user_county"
postcode = RS("user_postcode"
cctype = RS("user_cctype"
ccnumber = RS("user_ccnumber"
ccexpires = RS("user_ccexpires"
ccname = RS("user_ccname"
END IF
%>
<html>
<head><title>My Account Page</title></head>
<body bgcolor="white">
<center>
<table width="500" border=0
cellpadding=4 cellspacing=0>
<tr>
<td bgcolor="darkgreen">
<font color="white" face="Arial">
<b>Update</b>
</font>
</td>
</tr>
<tr>
<td>
<form method="post" action="<%=submitpage%>">
<input name="mypage" type="hidden" value="1">
<input name="pid" type="hidden" value="<%=productID%>">
<font face="Arial" size="2">
Please make any changes to your details and click on "Update" to submit.
</font>
<font face="Arial" size="2" color="darkgreen">
<p><B>Login Information:</B>
</font>
<font face="Courier" size="2">
<br><B>Username:</B>
<input name="nusername" size="20" maxlength="20"
value="<%=nusername%>">
<br><B>Password:</B>
<input name="npassword" size="20" maxlength="20"
value="<%=npassword%>">
<br><B>Email address:</B>
<input name="email" size="30" maxlength="75"
value="<%=email%>">
</font>
<font face="Arial" size="2" color="darkgreen">
<p><B>Address Information:</B>
</font>
<font face="Courier" size="2">
<br><B>Street:</B>
<input name="street" size="20" maxlength="50"
value="<%=street%>">
<br><B>Town:</B>
<input name="town" size="20" maxlength="50"
value="<%=town%>">
<br><B>County:</B>
<input name="county" size="20" maxlength="50"
value="<%=county%>">
<br><B>Postcode:</B>
<input name="postcode" size="20" maxlength="10"
value="<%=postcode%>">
</font>
<font face="Arial" size="2" color="darkgreen">
<p><B>Payment Information:</B>
</font>
<font face="Courier" size="2">
<br><B>type of credit card:</B>
<select name="cctype">
<option value="1"
<%=SELECTED( cctype, "1" )%> > VISA
<option value="2"
<%=SELECTED( cctype, "2" )%> > MasterCard
</select>
<br><B>Credit Card Number:</B>
<input name="ccnumber" size="20" maxlength="20" value="<%=ccnumber%>">
<br><B>Credit Card Expiry Date:</B>
<input name="ccexpires" size="20" maxlength="20" value="<%=ccexpires%>">
<br><B>Name on card:</B>
<input name="ccname" size="20" maxlength="20" value="<%=ccname%>">
<br>
<br>
<input type="submit" value="Update">
</font>
</FORM>
</td>
</tr>
</TABLE>
</center>
</body>
</html>
===============================================================
The addUser and updateUser functions are contained in the "storefuncs.asp" page with this code:
===============================================================
SUB addUser
' Get Registration Fields
nusername = TRIM( Request( "nusername" ) )
npassword = TRIM( Request( "npassword" ) )
email = TRIM( Request( "email" ) )
street = TRIM( Request( "street" ) )
town = TRIM( Request( "town" ) )
county = TRIM( Request( "county" ) )
postcode = TRIM( Request( "postcode" ) )
cctype = Request( "cctype" )
ccnumber = TRIM( Request( "ccnumber" ) )
ccexpires = TRIM( Request( "ccexpires" ) )
ccname = TRIM( Request( "ccname" ) )
' Check For Required Fields
backpage = Request.ServerVariables( "SCRIPT_NAME" )
IF nusername = "" THEN
errorForm "You must enter a username.", backpage
END IF
IF npassword = "" THEN
errorForm "You must enter a password.", backpage
END IF
IF email = "" THEN
errorForm "You must enter your email address.", backpage
END IF
IF street = "" THEN
errorForm "You must enter your street address.", backpage
END IF
IF town = "" THEN
errorForm "You must enter your town.", backpage
END IF
IF county = "" THEN
errorForm "You must enter your county.", backpage
END IF
IF postcode = "" THEN
errorForm "You must enter your postcode.", backpage
END IF
IF ccnumber = "" THEN
errorForm "You must enter your credit card number.", backpage
END IF
IF ccexpires = "" THEN
errorForm "You must enter your credit card expiration date.", backpage
END IF
IF ccname = "" THEN
errorForm "You must enter the name that appears on your credit card.", backpage
END IF
' Check for Necessary Field Values
IF invalidEmail( email ) THEN
errorForm "You did not enter a valid email address", backpage
END IF
IF NOT validCCNumber( ccnumber ) THEN
errorForm "You did not enter a valid credit card number", backpage
END IF
IF NOT isDATE( ccexpires ) THEN
errorForm "You did not enter a valid credit card expiration date", backpage
END IF
' Check whether username already registered
IF alreadyUser( nusername ) THEN
errorForm "Please choose a different username.", backpage
END IF
' Add New User to Database
sqlString = "INSERT INTO Users ( " &_
"user_username, " &_
"user_password, " &_
"user_email, " &_
"user_street, " &_
"user_town, " &_
"user_county, " &_
"user_postcode, " &_
"user_cctype, " &_
"user_ccnumber, " &_
"user_ccexpires, " &_
"user_ccname " &_
"
VALUES ( " &_" '" & fixQuotes( nusername ) & "', " &_
" '" & fixQuotes( npassword ) & "', " &_
" '" & fixQuotes( email ) & "', " &_
" '" & fixQuotes( street ) & "', " &_
" '" & fixQuotes( town ) & "', " &_
" '" & fixQuotes( county ) & "', " &_
" '" & fixQuotes( postcode ) & "', " &_
" '" & cctype & "', " &_
" '" & fixQuotes( ccnumber ) & "', " &_
" '" & ccexpires & "', " &_
" '" & fixQuotes( ccname ) & "')"
Con.Execute sqlString
' Use the new username and password
username = nusername
password = npassword
' Add Cookies
addCookie "username", username
addCookie "password", password
END SUB
SUB updateUser
' Get Registration Fields
street = TRIM( Request( "street" ) )
town = TRIM( Request( "town" ) )
county = TRIM( Request( "county" ) )
postcode = TRIM( Request( "postcode" ) )
cctype = Request( "cctype" )
ccnumber = TRIM( Request( "ccnumber" ) )
ccexpires = TRIM( Request( "ccexpires" ) )
ccname = TRIM( Request( "ccname" ) )
' Check For Required Fields
backpage = "checkout.asp"
IF street = "" THEN
errorForm "You must enter your street address.", backpage
END IF
IF town = "" THEN
errorForm "You must enter your town.", backpage
END IF
IF county = "" THEN
errorForm "You must enter your county.", backpage
END IF
IF postcode = "" THEN
errorForm "You must enter your postcode code.", backpage
END IF
IF ccnumber = "" THEN
errorForm "You must enter your credit card number.", backpage
END IF
IF ccexpires = "" THEN
errorForm "You must enter your credit card expiration date.", backpage
END IF
IF ccname = "" THEN
errorForm "You must enter the name that appears on your credit card.", backpage
END IF
' Check for Necessary Field Values
IF INSTR( ccnumber, "*" ) = 0 THEN
IF NOT validCCNumber( ccnumber ) THEN
errorForm "You did not enter a valid credit card number", backpage
ELSE
ccnumber = "'" & ccnumber & "'"
END IF
ELSE
ccnumber = "user_ccnumber"
END IF
IF NOT isDATE( ccexpires ) THEN
errorForm "You did not enter a valid credit card expiration date", backpage
END IF
' Update user information in the database
sqlString = "UPDATE Users SET " &_
"user_street='" & fixQuotes( street ) & "', " &_
"user_town='" & fixQuotes( town ) & "'," &_
"user_county='" & fixQuotes( county ) & "'," &_
"user_postcode='" & fixQuotes( postcode ) & "'," &_
"user_ccnumber='" & ccnumber & "', " &_
"user_cctype=" & cctype & ", " &_
"user_ccexpires='" & ccexpires & "'," &_
"user_ccname='" & fixQuotes( ccname ) & "' " &_
"WHERE user_id=" & userID
Con.Execute sqlString
END SUB
===============================================================
I hope I have provided enough info for some help. Thanks in advance!!
Joe