Trying to make a password form work in Front Page

[Debra Brown]

Hi, I've put a password page on my website and I just can't get it to work
right. I did a one line text box, marked it as a password. Without anything
specified in the validation box, if you give it the correct login and
password it takes you to the page I assigned. If you put the wrong login and
password in it still takes you to the page.

If I fill in the validation everything works like it should except if you
put in the wrong answer it pops up and tells you what it should be!! I'm
confused. I've tried this every different combination of ways I can see that
would make sense and it still won't work properly! HELP!! PLEASE!!

 

[Ronx]

Please give a link to the page.

It sounds like you are using JavaScript for a secure login - JavaScript
Security is an oxymoron.

See http://www.rxs-enterprises.org/tests/jspass/ for other JavaScript
methods, but using server side scripting (asp, php, Perl/cgi, asp.net
etc.) would be much better and more secure.

 

[Debra Brown]

www.wnstatusboard.com then click on the t (you'll see it's the only link) to
get to the sign in page. I am a novice front page user so I'm not sure about
using another program to fix this with.

 

[Ronx]

The method you are using will never be successful. You are using the
form's confirmation page as the "secure" page.
There are 2 drawbacks to this:
1) the URL for the secure page is in the HTML for the Login page.
2) anything entered in the password box will get to the confirmation
page - and as you said, any validation script will have the password in
the script anyway.

Either of the solutions at the link I gave earlier (
http://www.rxs-enterprises.org/tests/jspass/ ) will be much better than
this method. Try the simple method at
http://192.168.1.204/tests/jspass/simple.htm
The code (with blue background) can be copy and pasted into notepad,
then from notepad into FrontPage code or HTML view. The JavaScript goes
into the <head> of the page (as directed on the above page), the rest
just after the <body> tag.
Change "pages/" + document.logon.userid.value + ".html"; to:
document.logon.userid.value + ".htm";

The password will be the name of the page you wish to get to. You
should remove all spaces from file and page names, since these can break
links (and may not work with this password script.)

The "secured" page on your site looks as though it would be better as a
database application - requires php and mySQL if your host supports
them, and you wish to stay with a Unix server, for a Windows server use
Access database, and the database wizards in FrontPage.
--
Ron Symonds - Microsoft MVP (FrontPage)
Reply only to group - emails will be deleted unread.

http://www.rxs-enterprises.org/fp