<%
Set MGI = GetConnection("MGIadmin")
If Request("Status") = "logoff" Then
Response.Cookies("MGIuser") = ""
End If
LogonError = ""
If Request("access") = "denied" Then
LogonError = "You do not have permission to perform this action."
Else
Action = Request("Action")
TableName = Request("TableName")
AdminApp = Request("AdminApp")
If Action <> "" Then
If Action = "Add" Then
Response.Redirect AdminApp & "form.asp?Action=Add&TableName=" & TableName
End If
If Action = "List" Then
Response.Redirect AdminApp & "list.asp?TableName=" & TableName
End If
If Action = "Send" Then
Response.Redirect AdminApp & "send.asp"
End If
End If
If Request.Cookies("MGIuser") = "" Then
LogonError = "Please Log In."
End If
If Request.Form("username") <> "" Then
SQL = "Select * From Users Where (username = '" & Request.Form("username") & "');"
Set RSUser = MGI.Execute(SQL)
If NOT RSUser.EOF Then
If RSUser("password") <> Request.Form("password") Then
LogonError = "Invalid password."
Else
Response.Cookies("MGIuser")("username") = RSUser("username")
Response.Cookies("MGIuser")("userid") = RSUser("id")
If RSUser("Admin") Then Response.Cookies("MGIuser")("accesslevel") = 128 Else Response.Cookies("MGIuser")("accesslevel") = 2
LogonError = ""
End If
Else
LogonError = "Specified username does not exist."
End If
RSUser.Close
End If
End If
%>
MGI Web Dynamic Administration
<% If LogonError <> "" Then %>
<% Else %>
<% End If %>