Hi,
I did do a search to see if this had already been addressed, but couldn't find it.
I has set up some very basic cookie security on several asp apps I worked on. Everything was working fine, didn't make any changes to the code. However, recently, our agency changed to Windows2000 Professional and my cookies are not working the same way. Basically, all I wanted to do was for it to look for the cookie, and if it doesn't find what it's looking for, it response.redirects to a page they can enter their password. It used to work fine, now it doesn't matter whether there's a cookie or not, it allows access to the application. Has anyone else had this problem or can you offer any suggestions.
Code snippet:
<%
'verify cookie hasn't expired, if it has send them to login
userID = Request.Cookies("ConfUserID"
sqlStr = "SELECT UID FROM ConfUsers WHERE UID = '" & userID & "'"
SET RSV = connectStr.Execute(sqlStr)
if (RSV.EOF or RSV.BOF) THEN
response.redirect("passentry.htm"
end if
%>
Thanks,
Jason
Austin, Texas
I did do a search to see if this had already been addressed, but couldn't find it.
I has set up some very basic cookie security on several asp apps I worked on. Everything was working fine, didn't make any changes to the code. However, recently, our agency changed to Windows2000 Professional and my cookies are not working the same way. Basically, all I wanted to do was for it to look for the cookie, and if it doesn't find what it's looking for, it response.redirects to a page they can enter their password. It used to work fine, now it doesn't matter whether there's a cookie or not, it allows access to the application. Has anyone else had this problem or can you offer any suggestions.
Code snippet:
<%
'verify cookie hasn't expired, if it has send them to login
userID = Request.Cookies("ConfUserID"
sqlStr = "SELECT UID FROM ConfUsers WHERE UID = '" & userID & "'"
SET RSV = connectStr.Execute(sqlStr)
if (RSV.EOF or RSV.BOF) THEN
response.redirect("passentry.htm"
end if
%>
Thanks,
Jason
Austin, Texas