<% @ Language=VBScript %> <% Option Explicit %> <% '**************************************************************************************** '** Copyright Notice '** '** Web Wiz Forums(TM) '** http://www.webwizforums.com '** '** Copyright (C)2001-2008 Web Wiz(TM). All Rights Reserved. '** '** THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS UNDER LICENSE FROM 'WEB WIZ'. '** '** IF YOU DO NOT AGREE TO THE LICENSE AGREEMENT THEN 'WEB WIZ' IS UNWILLING TO LICENSE '** THE SOFTWARE TO YOU, AND YOU SHOULD DESTROY ALL COPIES YOU HOLD OF 'WEB WIZ' SOFTWARE '** AND DERIVATIVE WORKS IMMEDIATELY. '** '** If you have not received a copy of the license with this work then a copy of the latest '** license contract can be found at:- '** '** http://www.webwizguide.com/license '** '** For more information about this software and for licensing information please contact '** 'Web Wiz' at the address and website below:- '** '** Web Wiz, Unit 10E, Dawkins Road Industrial Estate, Poole, Dorset, BH15 4JD, England '** http://www.webwizguide.com '** '** Removal or modification of this copyright notice will violate the license contract. '** '**************************************************************************************** '*************************** SOFTWARE AND CODE MODIFICATIONS **************************** '** '** MODIFICATION OF THE FREE EDITIONS OF THIS SOFTWARE IS A VIOLATION OF THE LICENSE '** AGREEMENT AND IS STRICTLY PROHIBITED '** '** If you wish to modify any part of this software a license must be purchased '** '**************************************************************************************** Response.Buffer = True 'Make sure this page is not cached Response.Expires = -1 Response.ExpiresAbsolute = Now() - 2 Response.AddHeader "pragma","no-cache" Response.AddHeader "cache-control","private" Response.CacheControl = "No-Store" 'Dimension variables Dim strUsername 'Holds the users username Dim strPassword 'Holds the usres password Dim blnAutoLogin 'Holds whether the user wnats to be automactically logged in Dim lngUserID 'Holds the users Id number Dim strUserCode 'Holds the users ID code Dim lngLoopCounter 'Holds the loop counter Dim blnIncorrectLogin 'Set to true if login is incorrect Dim blnSecurityCodeOK 'Set to false if the security is not OK Dim strReferer 'Holds the page to return to Dim blnActive 'Set to true if user is active Dim blnCAPTCHArequired 'Set to true if CAPTCHA is required Dim intLoginResponse 'Holds the login response from the login function 'Intialise variables blnAutoLogin = false blnIncorrectLogin = false blnCAPTCHArequired = false blnSecurityCodeOK = true 'If this feature is disabled by the member API then redirect the user If blnMemberAPI AND blnMemberAPIDisableAccountControl Then 'Clean up Call closeDatabase() 'Redirect Response.Redirect("insufficient_permission.asp" & strQsSID1) End If 'read in the forum ID number If isNumeric(Request.QueryString("FID")) Then intForumID = CInt(Request.QueryString("FID")) Else intForumID = 0 End If 'Read in the users details from the form strUsername = Trim(Mid(Request.Form("name"), 1, 20)) strPassword = LCase(Trim(Mid(Request.Form("password"), 1, 15))) blnAutoLogin = CBool(Request.Form("AutoLogin")) 'If a username has been entered check that the password is correct If strUsername <> "" AND Request.ServerVariables("REQUEST_METHOD") = "POST" Then 'Call the function to login the user intLoginResponse = CInt(loginUser(strUsername, strPassword, blnCAPTCHArequired, "user")) 'Key to loginUser function '0 = Login Failed '1 = Login OK '2 = CAPTCHA Code OK '3 = CAPTCHA Code Incorrect '4 = CAPTHCA required 'If login reponse is 0 then login has failed If intLoginResponse = 0 Then blnIncorrectLogin = True 'If login reponse is 3 Then CAPTCHA security code was incorrect If intLoginResponse = 3 Then blnSecurityCodeOK = False blnCAPTCHArequired = True End If 'If the login response is 1 the user is logged in If intLoginResponse = 1 Then 'Reset Server Objects Call closeDatabase() 'Get the URL to return to If Request("returnURL") <> "" Then strReturnURL = Request("returnURL") Else strReturnURL = Replace(Request.ServerVariables("script_name"), Left(Request.ServerVariables("script_name"), InstrRev(Request.ServerVariables("URL"), "/")), "") & "?" & Request.Querystring End If 'For extra security make sure that someone is not trying to send the user to another web site strReturnURL = Replace(strReturnURL, "http", "", 1, -1, 1) strReturnURL = Replace(strReturnURL, ":", "", 1, -1, 1) strReturnURL = Replace(strReturnURL, "script", "", 1, -1, 1) 'Clean up input strReturnURL = formatLink(strReturnURL) strReturnURL = removeAllTags(strReturnURL) 'Replace & with & strReturnURL = Replace(strReturnURL, "&", "&", 1, -1, 1) If InStr(strReturnURL, "SID") = 0 Then strReturnURL = strReturnURL & strQsSID3 'Go to login user test Response.Redirect("login_user_test.asp?" & strReturnURL) End If End If 'Setup username field strUsername = Server.HTMLEncode(strUsername) 'Setup password feild If blnIncorrectLogin Then strPassword = "" Else strPassword = Server.HTMLEncode(strPassword) End If 'If active users is enabled update the active users application array If blnActiveUsers Then 'Call active users function saryActiveUsers = activeUsers("", strTxtLoginUser, "login_user.asp", 0) End If 'Set bread crumb trail strBreadCrumbTrail = strBreadCrumbTrail & strNavSpacer & strTxtLoginUser %> <% = strTxtLoginUser %> <% '***** START WARNING - REMOVAL OR MODIFICATION OF THIS CODE WILL VIOLATE THE LICENSE AGREEMENT ****** Response.Write("" & vbCrLf & vbCrLf) '***** END WARNING - REMOVAL OR MODIFICATION OF THIS CODE WILL VIOLATE THE LICENSE AGREEMENT ****** %>

<% = strTxtLoginUser %>
<% 'If the user has unsuccesfully tried logging in before then display a password incorrect error If blnIncorrectLogin OR blnCAPTCHArequired OR (blnSecurityCodeOK = False AND Request.Form("securityCode") <> "") Then %>
<% = strTxtError %> <% = strTxtError %>
<% 'If the login has failed (for extra security only say the password is incorect if the security code matches) If blnIncorrectLogin AND blnSecurityCodeOK Then Response.Write("
" & strTxtSorryUsernamePasswordIncorrect & "
" & strTxtPleaseTryAgain & "
") 'If the security code is incorrect If blnSecurityCodeOK = False AND Request.Form("securityCode") <> "" Then Response.Write("
" & Replace(strTxtSecurityCodeDidNotMatch, "\n\n", "
") & "
") 'If CAPTCHA s require let the user know If blnCAPTCHArequired Then Response.Write("
" & strTxt3LoginAtteptsMade) %>
<% End If %>
<% '***** START WARNING - REMOVAL OR MODIFICATION OF THIS CODE WILL VIOLATE THE LICENSE AGREEMENT ****** If blnLCode = True Then If blnTextLinks = True Then Response.Write("Bulletin Board Software by Web Wiz Forums® version " & strVersion & "") If blnACode Then Response.Write(" [Free Express Edition]") Else Response.Write("") If blnACode Then Response.Write("
Powered by Web Wiz Forums Free Express Edition") End If Response.Write("
Copyright ©2001-2008 Web Wiz") End If '***** END WARNING - REMOVAL OR MODIFICATION OF THIS CODE WILL VIOLATE THE LICENSE AGREEMENT ****** 'Display the process time If blnShowProcessTime Then Response.Write "

" & strTxtThisPageWasGeneratedIn & " " & FormatNumber(Timer() - dblStartTime, 3) & " " & strTxtSeconds & "" %>
<% 'Reset Server Objects Call closeDatabase() 'If the user has unsuccesfully tried logging in before then display a password incorrect error '(for extra security only say the password is incorect if the security code matches) If blnIncorrectLogin AND blnSecurityCodeOK Then Response.Write(vbCrLf & "") End If 'If the security code did not match If blnSecurityCodeOK = False AND Request.Form("securityCode") <> "" Then Response.Write(vbCrLf & "") End If %>