Session Cookies

Ragol1 · Jun 12, 2002

I use this code below to do member login but it doesnt save the username and password as a cookie.
Can someone please show me how to save the username and password as a cookie or have a check box asking them if they want it saved.

Thanks

<%@LANGUAGE="VBSCRIPT"%>
<%

Dim Members__strUserID
Members__strUserID = "xyz"
if(Request.Form("UserID&quot

<> "&quot

then Members__strUserID = Request.Form("UserID&quot

Dim Members__strPassword
Members__strPassword = "123"
if(Request.Form("Password&quot

<> "&quot

then Members__strPassword = Request.Form("Password&quot

%> <%
set Members = Server.CreateObject("ADODB.Recordset&quot

Members.ActiveConnection = "dsn=Members;"
Members.Source = "SELECT * FROM Members WHERE UserID = '" + Replace(Members__strUserID, "'", "''&quot

+ "' AND Password = '" + Replace(Members__strPassword, "'", "''&quot

+ "'"
Members.CursorType = 0
Members.CursorLocation = 2
Members.LockType = 3
Members.Open
Members_numRows = 0
%>
<%
If Members__strUserID <> "xyz" then
If Not Members.EOF Then
Session("svUserID&quot

= (Members.Fields.Item("UserID&quot

.Value)
Session("svPassword&quot

= (Members.Fields.Item("Password&quot

.Value)
Session("svAccessGroup&quot

= (Members.Fields.Item("AccessGroup&quot

.Value)
Session("ID&quot

= (Members.Fields.Item("ID&quot

.Value)
strHomepage = Members.Fields.Item("HomePage&quot

.Value
Session("blnIsUserGood&quot

= True
Response.Redirect(strHomePage)
Else
Response.Redirect "login.asp"
End If
End If
%>

jkl · Jun 12, 2002

Well the way you're doing it now, the username and password are stored in session variables, which are not persistent once the session ends.

Replace: Session("svUserID&quot

with: Response.Cookies("svUserID&quot

This will write the info to a cookie on the client's computer. You can read the value of this cookie using

Request.Cookies("svUserID&quot

Ragol1 · Jun 12, 2002

OK I have added Response.Cookies("svUserID&quot

But it doesnt remember.

?
Thanks

jkl · Jun 12, 2002

Use Response.Cookies on this page, then bring up another page (for testing) that uses request.cookies and write it to the screen.

But of course all this will only work if the user has cookies enabled in their browser.

JuanitaC · Jun 12, 2002

You have to set the expiry date of the cookie. If you don't set the expiry date, the cookie ends when the session ends.

Check out DevGuru for more info on the cookies collection:

http://www.devguru.com/Technologies/asp/quickref/response_cookies.html

Ragol1 · Jun 12, 2002

ok now im confused this is what I have
Response.Cookies("svUserID&quot

= (Members.Fields.Item("UserID&quot

.Value)
Response.Cookies("svPassword&quot

= (Members.Fields.Item("Password&quot

.Value)

All I want is for the two input boxes to be filled with the userid and password of the users when they come back to the site.

Because of the session and access groups they have to hit the submit button everytime, I just want to make it where it remembers who they are and the password.

it posts to the same page on one login and to another page on another login

JuanitaC · Jun 12, 2002

Well, first off when you write your cookie, you are actually writing two cookies. You could do this:

After you validate their login, write the cookie:
Response.cookies("UserInfo&quot

("UserName&quot

= Members.Fields.Item("UserID&quot

.Value
Response.cookies("UserInfo&quot

("Password&quot

= Members.Fields.Item("Password&quot

.Value
Response.cookies("UserInfo&quot

.expires = Date() + 365
'expires in 1 year

On your login page, get the values:
strUserName = Request.cookies("UserInfo&quot

("UserName&quot

strPassword = Request.cookies("UserInfo&quot

("Password&quot

Then use these variables to populate your text boxes.

Is that what you are looking for?

jkl · Jun 12, 2002

Try something like this for your login page.

loginForm.asp
--------------------
<%
If (Request.Form("frm_UserName&quot

<> "" AND Request.Form("frm_Password&quot

<> "" ) then
Response.Cookies("User&quot

("userName&quot

= Request.Form("frm_UserName&quot

Response.Cookies("User&quot

("password&quot

= Request.Form("frm_Password&quot

Response.Cookies("User&quot

.Expires = DateAdd( "d",365,Now() )

End If

Dim strUserName, strPassword

strUserName = Request.Cookies("User&quot

("userName&quot

strPassword = Request.Cookies("User&quot

("password&quot

%>

<form method="post" action="loginForm.asp">
<input type="hidden" name="frm_Submitted" value="yes">
<input type="textbox" name="frm_UserName" value="<%=strUserName%>" ...>
<input type="password" name="frm_Password" value="<%=strPassword%>" ...>
<input type="submit" value="Submit">
</form>

---------------------

Ragol1 · Jun 12, 2002

thanks but on one login page it posts to it self do i need it to post somewhere else to validate?

jkl · Jun 12, 2002

Yes, you'll need top put the validation process in there somewhere.

<%
If (Request.Form("frm_UserName&quot

<> "" AND Request.Form("frm_Password&quot

<> "" ) then

[VALIDATION CODE HERE]

IF ([Valid Login] AND [User Wants Login Info Saved]) THEN

Response.Cookies("User&quot

("userName&quot

= Request.Form("frm_UserName&quot

Response.Cookies("User&quot

("password&quot

= Request.Form("frm_Password&quot

Response.Cookies("User&quot

.Expires = DateAdd( "d",365,Now() )

END IF

End If

...

Ragol1 · Jun 12, 2002

OK this is what I have

on the login page

I have
<%Dim strUserName, strPassword

strUserID = Request.Cookies("User&quot

("UserID&quot

strPassword = Request.Cookies("User&quot

("Password&quot

%>
<form name="form1" method="post" action="loginpost.asp">
<input type="hidden" name="frm_Submitted" value="yes">
<input type="textbox" name="UserID" value="<%=strUserID%>" ...>
<input type="Password" name="Password" value="<%=strPassword%>" ...>

<input type="submit" name="Submit" value="Submit">
<input type="submit" name="Reset" value="Reset">

Then on the loginpost page I have
-----------------------------------------------------
<%@LANGUAGE="VBSCRIPT"%>

<%If (Request.Form("UserID&quot

<> "" AND Request.Form("Password&quot

<> "" ) then

<%

Dim Members__strUserID
Members__strUserID = "xyz"
if(Request.Form("UserID&quot

<> "&quot

then Members__strUserID = Request.Form("UserID&quot

Dim Members__strPassword
Members__strPassword = "123"
if(Request.Form("Password&quot

<> "&quot

then Members__strPassword = Request.Form("Password&quot

%> <%
set Members = Server.CreateObject("ADODB.Recordset&quot

Members.ActiveConnection = "dsn=Members;"
Members.Source = "SELECT * FROM Members WHERE UserID = '" + Replace(Members__strUserID, "'", "''&quot

+ "' AND Password = '" + Replace(Members__strPassword, "'", "''&quot

+ "'"
Members.CursorType = 0
Members.CursorLocation = 2
Members.LockType = 3
Members.Open
Members_numRows = 0
%>
<%
If Members__strUserID <> "xyz" then
If Not Members.EOF Then
Session("svUserID&quot

= (Members.Fields.Item("UserID&quot

.Value)
Session("svPassword&quot

= (Members.Fields.Item("Password&quot

.Value)
Session("svAccessGroup&quot

= (Members.Fields.Item("AccessGroup&quot

.Value)
Session("ID&quot

= (Members.Fields.Item("ID&quot

.Value)
strHomepage = Members.Fields.Item("HomePage&quot

.Value
Session("blnIsUserGood&quot

= True
Response.Redirect(strHomePage)
Else
Response.Redirect "login.asp"
End If
End If
%>
<%
Response.Cookies("User&quot

("UserID&quot

= Request.Form("UserID&quot

Response.Cookies("User&quot

("Password&quot

= Request.Form("Password&quot

Response.Cookies("User&quot

.Expires = DateAdd( "d",365,Now() )

END IF

%>

And it doesnt work?
What am I doing wrong...

Ragol1 · Jun 12, 2002

I changed the Dim Username to UserID

No luck..

JuanitaC · Jun 12, 2002

You are trying to write your cookie after you redirect away from this page. Maybe move your cookie writing code to the same place you are setting your sessions.

jkl · Jun 12, 2002

How about this?

==================
<% @LANGUAGE="VBSCRIPT" %>

<%
Dim Members__strUserID: Members__strUserID = ""
IF(Request.Form("UserID&quot

<> "&quot

THEN Members__strUserID = Request.Form("UserID&quot

Dim Members__strPassword: Members__strPassword = ""
IF(Request.Form("Password&quot

<> "&quot

THEN Members__strPassword = Request.Form("Password&quot

IF (Members__strUserID <> "" AND Members__strPassword <> "" ) THEN

SET Members = Server.CreateObject("ADODB.Recordset&quot

Members.ActiveConnection = "dsn=Members;"
Members.Source = "SELECT * FROM Members WHERE UserID = '" + Replace(Members__strUserID, "'", "''&quot

+ "' AND Password = '" + Replace(Members__strPassword, "'", "''&quot

+ "'"
Members.CursorType = 0
Members.CursorLocation = 2
Members.LockType = 3
Members.Open

Members_numRows = 0

IF Not Members.EOF THEN

Session("svUserID&quot

= (Members.Fields.Item("UserID&quot

.Value)
Session("svPassword&quot

= (Members.Fields.Item("Password&quot

.Value)
Session("svAccessGroup&quot

= (Members.Fields.Item("AccessGroup&quot

.Value)
Session("ID&quot

= (Members.Fields.Item("ID&quot

.Value)
strHomepage = Members.Fields.Item("HomePage&quot

.Value
Session("blnIsUserGood&quot

= True

Response.Cookies("User&quot

("UserID&quot

= Members__strUserID
Response.Cookies("User&quot

("Password&quot

= Members__strPassword
Response.Cookies("User&quot

.Expires = DateAdd( "d",365,Now() )

Response.Redirect(strHomePage)

ELSE '...IF Not Members.EOF THEN...

Response.Redirect "login.asp"

END IF '...IF Not Members.EOF THEN...

END IF ' ...IF [Form Fields Are Not Empty] THEN...

%>
==================

JuanitaC · Jun 12, 2002

Looks good... the only problem I see now is that you open 4 IF statements but only have two END IFs

Does the cookie get written now?

Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Session Cookies

Ragol1

Programmer

jkl

Programmer

Ragol1

Programmer

jkl

Programmer

JuanitaC

Programmer

Ragol1

Programmer

JuanitaC

Programmer

jkl

Programmer

Ragol1

Programmer

jkl

Programmer

Ragol1

Programmer

Ragol1

Programmer

JuanitaC

Programmer

jkl

Programmer

JuanitaC

Programmer

Similar threads

Part and Inventory Search

Sponsor