<%@LANGUAGE="VBSCRIPT"%>
<%
'=====================================================
'| |
'| Login |
'| |
'=====================================================
%>
<%
Option explicit
Response.Expires = 0
%>
<%
'------------ VARIABLE DEFINITION -------------
'------------ CONSTANTS DECLARATION -----------
'------------ VARIABLE INIT -------------------
objAccessControl.objOraSession = OraSession ' Create database link for orasession
objAccessControl.objOraDatabase = OraDatabase ' Create database link for oradatabase
'------------ CONDITIONS ----------------------
'----------------------------------------------
%>
<%
'----------------------------------------------------------------------------------------------------------------------------------------------
Sub Logon ()
On Error Resume Next
objEH.Try()
Call objAccessControl.LogonUser ( Request("user_name"), Request("user_password") )
objEH.Catch()
End Sub
'----------------------------------------------------------------------------------------------------------------------------------------------
Sub CheckPasswordUpdate ()
If objAccessControl.RequiresPasswordUpdate ( Request("user_name") ) Then
Session(enumUSER_TEMP_VARIABLE) = Request("user_password")
Call OpenInWindow ( "UpdatePassword.asp?user_name="& Request("user_name") &"&"& objPMod.ComposeURL() )
End If
End Sub
'----------------------------------------------------------------------------------------------------------------------------------------------
Sub AccessManagerMessage ( nMessage )
Dim sMessage
On Error Resume Next
objEH.Try()
Select Case CInt( nMessage )
Case 1
Err.Raise 8, _
"Application Access Denied !", "Please contact the Administrator to gain access to this application."
Case 2
Err.Raise 8, _
"Page Access Denied !", "Please contact the Administrator to gain access to this page."
Case 3
Err.Raise 8, _
"Application is Off-Line !", "This application is currently off-line for maintenance. Contact the Administrator for further details."
Case 4
Err.Raise 8, _
"You are Not Authorised !", "You are not authorised to perform this action. Contact the Administrator for further details."
End Select
objEH.Catch()
End Sub
'----------------------------------------------------------------------------------------------------------------------------------------------
%>
<%
'------------ RUN BEFORE PAGE RENDER ----------
objPMod.PersistInQryString ( aPersistList )
' --- RUN onPostBack ---
If CBool(Request("action")) Then
' Try to check for password update
If Request("cpassword") = "" Then
Call CheckPasswordUpdate ()
End If
Call Logon ()
If objEH.Finally Then
If Request("rfile") <> "" Then
Call OpenInWindow ( Request("rfile") &"?LOGIN=ok"& objPMod.ComposeURLWithout("rfile") )
Else
Call OpenInWindow ( "index.asp" )
End If
End If
End If
' Attempt to kill of old ASPSESSIONID cookies
' Appears that we get one every time we login
' Soluton: Kill them all before we login
'
If instr(Request.ServerVariables("HTTP_COOKIE"), "ASPSESSIONID") > 0 Then
Dim Allcookies,i
AllCookies = Split(Request.ServerVariables("HTTP_COOKIE"),";")
For i = 1 to UBound(AllCookies)
If instr(AllCookies(i), "ASPSESSIONID") > 0 Then
Response.AddHeader "Set-Cookie", Left(AllCookies(i),instr(AllCookies(i),"=") -1) & "=0; path=/;secure;httponly"
End if
Next
End If
Call AccessManagerMessage( Request("message") )
'----------------------------------------------
%>
Release Manager
<%
'------------ RUN AFTER PAGE RENDER -----------
Set objPMod = Nothing
'----------------------------------------------
%>