LOGIN.ASP

Make ASP generated web content available only to you! These are the ASP and ASP.NET versions of login.php. isLogged() returns true if the cookies named UserName and PassWord are the same as the variables UserName and PassWord, the first 2 paramters of the function. If not, it displays the content of LogInPage, the 3rd paramenter. Unlike the PHP counterpart, all parameters should be passed to these ASP versions of isLogged(), instead of ommitting LogInPage, you should pass "" an empty string.

The main thought behind this was to display the same login for all my admin pages, without have to repeat the same HTML code. Another purpose for this code was to keep SQL queries, and other back-end code from being executed without permission.

<%
function isLogged(UserName, PassWord, LogInPage)
         Entered_UserName = ""
         Entered_PassWord = ""

         Entered_UserName = Request.Cookies("UserName")
         Entered_PassWord = Request.Cookies("PassWord")

         if Entered_UserName <> UserName or Entered_PassWord <> PassWord then
            '$LogInPage should be the name of an existing file
            'with alternative web content. If you don't wish to
            'provide such content, just pass the empty string.
            if LogInPage <> "" then include(LogInPage) end if
            isLogged = false
         else
            isLogged = true
         end if
end function
%>

<script language="VB" runat="server">
Function isLogged(ByVal UserName As String, ByVal PassWord As String, ByVal LogInPage As String) As Boolean
         Entered_UserName = ""
         Entered_PassWord = ""

         Entered_UserName = Request.Cookies("UserName").Value.ToString
         Entered_PassWord = Request.Cookies("PassWord").Value.ToString

         Response.Write("--" & Entered_UserName & "--")

         If Entered_UserName <> UserName Or Entered_PassWord <> PassWord Then
            '$LogInPage should be the name of an existing file
            'with alternative web content. If you don't wish to
            'provide such content, just pass the empty string.
            If LogInPage <> "" Then
                Response.WriteFile(LogInPage)
            End If
            isLogged = False
         Else
            isLogged = True
         End If
End Function
</script>

<form name="login">
<table align="center" cellpadding="10" cellspacing="0" border="1">
<tr>
<td>User Name </td>
<td><input type="text" name="UserName" /></td>
</tr>

<tr>
<td>Password</td>
<td><input type="password" name="PassWord" /></td>
</tr>

<tr>
<td colspan="2" align="right">
<input type="button" value="log in"
       onclick="document.cookie = 'UserName=' + document.login.UserName.value;
                document.cookie = 'PassWord=' + document.login.PassWord.value;
                document.EmptyForm.submit();">
</td>
</tr>
</table>
</form>

<form name="EmptyForm" method="post">
</form>