<%
' laden van de cookie
'response.Write(response.Cookies("login"))
if len(session("loginid")) > 0 then
'response.Write("sessie
")
login = session("login")
pas = session("pw")
loginid = session("loginid")
else
login = request("login")
pas = md5(request("pas"))
if login = "" and pw = "" then
login = request.Cookies("user")("login")
pas = request.Cookies("user")("val")
end if
end if
if login <> "" and pas <> "" then
q = "select username,pasword,userid,rechten from users where username = '" & tosqlstring(login) & "'"
set rs = conn.execute(q)
if not rs.eof then
response.Write(pas&"
"&md5(rs("pasword"))&"
"&login)
if pas = md5(rs("pasword")) then
session.Timeout=999
session("loginid") = rs("userid")
session("login") = rs("username")
session("rechten") = rs("rechten")
LB = "INSERT INTO logboek VALUES('','"×tamp()&"','"&rs("userid")&"','login juist','Login: "&toSQLstring(session("loginid"))&" Pasword: "&pas&" IP:"&request.ServerVariables("REMOTE_ADDR")&" Browser:"&request.ServerVariables("ALL_HTTP")&"')"
conn.execute(LB)
' aanvullen van de cookie
if request("onthou") = "on" then
Response.Cookies("user").Expires = now() + 365
Response.Cookies("user")("login") = login
Response.Cookies("user")("val") = md5(rs("pasword"))
end if
response.Redirect(request.ServerVariables("URL"))
else
fout = fout & "Gebruiker of paswoord zijn onjuist"
'beter geen informatie geven over wat verkeerd is, dit is veiliger
LB = "INSERT INTO logboek VALUES('','"×tamp()&"','','login fout','Login: "&toSQLstring(login)&" Pasword: "&pas&" IP:"&request.ServerVariables("REMOTE_ADDR")&" Browser:"&request.ServerVariables("ALL_HTTP")&"')"
conn.execute(LB)
end if
else
fout = fout & "Gebruiker of paswoord zijn onjuist"
end if
end if
%>
<%
if not (len(session("loginid")) > 0) then
LB = "INSERT INTO logboek VALUES('','"×tamp()&"','"&session("loginid")&"','visit home','IP:"&request.ServerVariables("REMOTE_ADDR")&" Browser:"&request.ServerVariables("ALL_HTTP")&"')"
conn.execute(LB)
%>
<%else%>
Ingelogd als: <%=session("login")%>
<%end if%>
<%if fout <> "" then %>
<%end if%>