|
lauren wrote:
i put an index.html file in the folder
Wow, someone out there is still using that .html file extension 
Really, check the file settings to see if you have sharing on. 
Nick Parker
|
|
|
|
|
To change the pointer cursor to a hand cursor in an onMouseOver event I use
id.style.cursor = "hand";
This works in IE but not Netscape.
Can someone tell me what I could write this for Netscape, or to make it work in both?
Thanks
Jeremy Davis
http://www.astad.org
|
|
|
|
|
|
note that "pointer" doesn't work on ie4 ( maybe 5 too, not sure ).
only "hand" does.
|
|
|
|
|
I have a simple database (mostly flat tables) which I need to throw an interface on so I can edit the data and do some simple validation checks upon submit.
I figure there should be a control that does that in ASP.NET but I haven't found it yet. Can anyone give me a pointer to such an example?
These are the controls I need in the interface
Label: [edit field]
Label: [drop down list]
Label: [month] [day] [year]
[Submit]
thanks
Todd Smith
|
|
|
|
|
|
I'm having difficulties with my user control used in a datalist.
I have a datalist with an 'itemtemplate' and an 'edittemplate' defined like this:
<ItemTemplate>
<b>Title:</b><%# DataBinder.Eval(Container.DataItem, "TITLE")%>
<asp:LinkButton CommandName="Edit" Runat="server" Text="Edit news"></asp:LinkButton>
</ItemTemplate>
<EditItemTemplate>
<b>Title:</b><%# DataBinder.Eval(Container.DataItem, "TITLE")%>
</EditItemTemplate>
The datalist is bound to a data source. When I render the page, the 'Title' is displayed correctly. When I click the edit link, the 'Title' is still displayed correctly.
Now, I have made a user control called TitleBar, which accepts a title, backcolor and so on, and then uses that information to display a nicely centered title on the page. I use it like this:
<CP:TitleBar id="MainTitle" title="News for today!" BackColor="darkgreen" runat="server" Padding="2" HorizontalAlignment="center" TextColor="white" FontSize="13"></CP:TitleBar>
In a normal page, my user control works fine.
Now, here's the problem. If I use my user control in the datalist, like this:
<ItemTemplate>
<CP:TitleBar id="MainTitle" title='<%# DataBinder.Eval(Container.DataItem, "TITLE")%>' BackColor="darkgreen" runat="server" Padding="2" HorizontalAlignment="center" TextColor="white" FontSize="13"></CP:TitleBar>
<asp:LinkButton CommandName="Edit" Runat="server" Text="Edit news"></asp:LinkButton>
</ItemTemplate>
<EditItemTemplate>
<CP:TitleBar id="MainTitle" title='<%# DataBinder.Eval(Container.DataItem, "TITLE")%>' BackColor="darkgreen" runat="server" Padding="2" HorizontalAlignment="center" TextColor="white" FontSize="13"></CP:TitleBar>
</EditItemTemplate>
... then the page is rendered fine too, but when I click the edit link, nothing is rendered. In fact, it seems that 'Title' is empty.
However if I directly use a string to pass to my user control (instead of the databinder), it does work fine, even if I click the edit button:
<ItemTemplate>
<CP:TitleBar id="MainTitle" title='TEST' BackColor="darkgreen" runat="server" Padding="2" HorizontalAlignment="center" TextColor="white" FontSize="13"></CP:TitleBar>
<asp:LinkButton CommandName="Edit" Runat="server" Text="Edit news"></asp:LinkButton>
</ItemTemplate>
<EditItemTemplate>
<CP:TitleBar id="MainTitle" title='TEST' BackColor="darkgreen" runat="server" Padding="2" HorizontalAlignment="center" TextColor="white" FontSize="13"></CP:TitleBar>
</EditItemTemplate>
I hope I explained the situation clearly. Any ideas why the combination of my user control, a datalist, passing a parameter with DataBinder.Eval and clicking the edit link does not work?
Ludwig
|
|
|
|
|
I just finished reading a few articles on site security using ASP and am not satisfied with some of what it taught me, so any opinions are appreciated.
Basic authentication I think is what it was called, seems pretty lame.
I'm not requiring SSL, because i'm not dealing with finances, but rather site admin. type stuff.
The method I read about suggested I use a session variable and set it to false by default and TRUE upon successful login. Now every ASP page that requires authetication checks this boolean variable for true/false and Response.Write accordingly. The author then says this isn't 100% fool proof and the would be hacker could possibly get by. I'm thinking somehow override the boolean value to always equal TRUE using the IWebBrowser component (Hijack it's JScript interpreter)...?
Anyways...this session variable has got me a little nervous and i'm thinking it would be better to just store username/password in seesion/cookies and check for it's availability inside the DB each ASP access, so long as nobody sees your database (which is another question i have after this) this method seems more sound...?
Of course now your SQL statement would execute each ASP access instead of just once during login, but...i'm really not fond of the session variable, i'm positive what I mentioned earlier would be possible.
Am I alone in thinking this way...? Am I missing something about ASP session cookies...? It just doesn't seem impossible to change a server cookie from a client script, thus making the session variable login useless.
Second question:
I have created a DB using Access and generate most of my site via the data inside the DB. It has come to my attention that Access is not the best solution for a website though and I am wondering if I can use a Access DB with SqlServer...? I don't have any other RDBMS(on my computer) other than Access, but I assume most IIS/ASP enabled servers on the net support SqlServer also...?
If this is the case...I would be able to design my DB on my computer get my ASP scripts working using PWS and simply upload my db and site to a server and switch the DSN to SqlServer instead of Access 97...?
Am I right...?
Anyone know of any links that might be of help...?
Explanations are always good too...thanx!
Cheers! 
"An expert is someone who has made all the mistakes in his or her field" - Niels Bohr
|
|
|
|
|
The easy stuff first:
Hockey wrote:
I would be able to design my DB on my computer get my ASP scripts working using PWS and simply upload my db and site to a server and switch the DSN to SqlServer instead of Access 97...?
Almost. You can do this for some things, and for others you cant. For example, if you have any CREATE TABLE SQL then in Access, you use "Boolean" type and in SQL Server you use "BIT". Just an example. There are others that make it different
IMHO you would be better off obtaining MSDE (Microsoft Data Environment) and using that. It is SQL Server without the interface (ie, no Enterprise Manager) and is available free. Usually appears on Visual Studio CDs somewhere. That way, you are sure that it will work, and you can take advantage of stored procedures and other advanced SQL Server things (if you want).
Hockey wrote:
The author then says this isn't 100% fool proof and the would be hacker could possibly get by. I'm thinking somehow override the boolean value to always equal TRUE using the IWebBrowser component (Hijack it's JScript interpreter)...?
AFAIK that wouldnt work. The session variable (the boolean) is never sent to the client. All that is sent is a session ID, and ASP uses that to get its session variables. Thus, the only way to mislead it would be for the client to send back a false session ID, but it would require knowing what session ID would be valid, and already logged in.
I have always just used session variables and I havent come across any problems, but I am not an l337 h4x0r
--
David Wengier
Sonork ID: 100.14177 - Ch00k
|
|
|
|
|
with msde you can use access2k as a management console of a sorts ... it sux big time but its better than scripts imho
and where can i find out about these sessions thingies and all the other asp rhubarb ... am a beginner at it and need to know
situations to avoid #37:
"good morning ... how many sugars do you take in your coffee ... and what was your name again?"
coming soon: situations to avoid #38: "...and the dog was there too?"
|
|
|
|
|
Do a search for login.
Paul Watson pointed me in a nice direction a while back...I'm just checking them out now, but they are pretty good resources for basic logins.
Cheers!
"An expert is someone who has made all the mistakes in his or her field" - Niels Bohr
|
|
|
|
|
I just read another aritcle that explains basic authentication, but using IP addy instead of session cookies. I like this idea better, the whole cookie thing makes me really nervous.
Where would I get this MSDE....is it RDBMS like access...?
I think you explained this already...saying it's like sqlServer minus a few bells and whistles. Sorry i'm a total newbie with database stuff. Although...using databases (re-learning is a bitch) i'm now seeing the potential and speed dev time drop 10 fold as compared to doing all this sh*t with generic file ops in Perl.
Long live DB and ADO...
Just one more question...An Access database is compatible w/ SqlServer...? Like the internal format and structure of thew tables is obviously the same...? Just the SQL statements differ slightly...?
Thanx! 
"An expert is someone who has made all the mistakes in his or her field" - Niels Bohr
|
|
|
|
|
Well, again, it is almost the same. It also depends on what DB Provider do you use. For example, Jet Engine (also from MS ) gives you much more features then others. Even same data types, like mentioned, you will use BIT in both SQLServer and Access. But it seems to be quite problematic with a lot of requests to Access database. I actually suggest to use SQL Server if you can. Just some hostings will not include it in to your package, usually you need to add some money to get SQL server.
But what you mean by format and structure? Of course it is different, but you are not opening Access files in binary more and parse them manually. DB Providers do all work for you I remember when I wanted to move from Access to SQL Server, I had no problems with importing tables/queries. So I'd say it is ok
As for Session variables, yes it is not 100% proof solution, but where did you see any 100% solutions? Also it is the common way to make a users management/login on the site. On really critical pages you can request authorization from the database by querring for stored in Session Username and Password. It will be the best way I guess.
Philip Patrick
Web-site: www.stpworks.com
"Two beer or not two beer?" Shakesbeer
Need Web-based database administrator? You already have it!
|
|
|
|
|
Philip Patrick wrote:
But what you mean by format and structure? Of course it is different, but you are not opening Access files in binary more and parse them manually.
Thats what I meant yup...I was just curious if they shared similar file structures. Nothing important, just curious.
Cheers!
"An expert is someone who has made all the mistakes in his or her field" - Niels Bohr
|
|
|
|
|
Philip seems to have answered your questions quite nicely
Just about the IP address though, that seems to be more insecure. The IP address you get from ASP is only guaranteed to be as unique as the proxy server the person rode in on (so to speak). If its an intranet then you dont have that worry, but there is the issue of anybody being able to use that computer and get access, without logging in.
I'll assume there is more to it than you have written here
As for the database compatibility, as Philip said, internally what they are like is irrelevant. They are compatible enough, such that there will not be huge code changes, and Microsoft provide automatic importing tools in SQL Server to read access databases. Whether or not your ISP allows you access to this (its called DTS, which i thnk is Data Transformation Services) is another issue, but its not hard to import data anyway. You just open two connections, read from one, write to the other.
--
David Wengier
Sonork ID: 100.14177 - Ch00k
|
|
|
|
|
Hello!
If you are familiar with AOL Instant Messenger (AIM), you are probably aware of www.subprofile.com and www.imchaos.com. Well, about a year ago I created a code that works similar to the way the sites I mentioned above work. On my profile, I have a link. If you want to see message me. The link to look at the profile is:
<A HREF="http://SERVER/q.asp?sn=%n" TARGET="_self">Profile</A>
When a person clicks on a person's info on AIM that has a space in the format of their screen name (ex: "ExAm PLe"), the URL is changed to:
"http://SERVER/q.asp?sn=ExAm PLe"
After clicking on that link, a message appears: "Error Loading Content." And this is a result of the space. If I choose to open it up in separate window it does work with the space. But in AIM it does not work.
After pretty much after a whole year of testing, nothing has worked. I've re-written my code some times now, and still get the same error. After looking at the details, I could think of I still have this problem. I checked the logs of my server to see that after clicking the link if the request is made to my server. There is NO log entry for that attempt. So that concluded me to believe that AIM has a problem with that link. Subprofile.com and Imchaos.com have solved this problem somehow.
Any insight you have or ideas you might have... I would be must greatful. And if you need more information about this just message me or respond to my post.
Thanks Again,
Sean 
|
|
|
|
|
I dunno about you, but I'm seeing a lot of potential here... hehehe... like, say, using subprofile.com to create a page that contains an onLoad event, or simply having the user click on a link, which brings up a page, which gets their IP, and runs a server-sided program to hack their computer, and install a trojan, which sends you their password by e-mail, which gives you COMPLETE CONTROL OF THEIR AIM SN!  And the added benefit of having a trojan installed....
NO! BAD DOMENIC! MUST USE TECHNOLOGY RESPONSIBLY! SLAP! SLAP!
But... the possibilities...  SLAP!
Sorry about that. 
-Domenic Denicola- [CPUA 0x1337]
MadHamster Creations
"I was born human. But this was an accident of fate - a condition merely of time and place. I believe it's something we have the power to change..."
|
|
|
|
|
No No! I'm not a hacker!! I'm trying to produce code that works  nothing bad at all, seriously. I've been stuck on this problem for awhile.
-Sean
|
|
|
|
|
Ya, I know, I was just off in my own little universe there for a while
Anyway, don't know if this could help, but whenever I see a space in a URL it is encoded as %20 (20 = hex for 32 = space's ASCII code). Perhaps that's what's making the page choke, it wants it encoded? I couldn't think how you could do that without using JScript, tho, and that's prolly not allowed in profiles... Hmm...
-Domenic Denicola- [CPUA 0x1337]
MadHamster Creations
"I was born human. But this was an accident of fate - a condition merely of time and place. I believe it's something we have the power to change..."
|
|
|
|
|
my code does take into account the spaces...either %20 or + which both stand for a space...
I input the screen name using ASP... and getting that data using QueryString....
-Sean
|
|
|
|
|
instead of passing the username as the identifier to retrieve the profile info why don't you try passing a unique numerical value which also identifies the profile. This way there are never going to be any spaces to be worried with and your URL should always work.
Using the integer identifier assumes all of the profiles are held in a database and using integer type identifiers.
nick
|
|
|
|
|
I wonder how does the script in CP forums know when to append the "new!" icon at the subject line of the message. It can not be just because of the date of posting. I've tried hitting every message that I saw with that icon and went to attend some of my work for a while, went back to the forum and found that the messages that I have visited a while ago don't have the icon anymore!
Any hint? Do I smell cookies here? Maybe it's a simple one that I am missing ... Tnx!
(just like after I submit this, I am expecting to see the "new" icon in yellow!)
|
|
|
|
|
From what I can tell it takes the date/time of sign in, then marks any post that occured after that date/time as new.
You need to remember that your sign in date/time isn't neccesarily the last time you put your username/password in. When the session object times out on the server you will be 'logged out' of the system, but when you hit the page again it will automatically log you in assuming you have it set to do so.
James
Simplicity Rules!
|
|
|
|
|
I see. So the script simply displays the icon if the message posting date is greater than the "last visit". Tnx!
|
|
|
|
|
So, here's my technical question for the day. I have a really cool idea for my new web site's architechture. Problem is, I don't know if IIS is capable of it, or exactly how it would do so. Here goes:
I want all my data to be a combination of my own proprietary XML format and XHTML. Something like:
<small>
<?xml version="1.0"?>
<Page xmlns:XHTML="http://www.w3.org/1999/xhtml">
<Head>
<Title>Site Map</Title>
<Image Width="200">Images/SiteMap.gif</Image>
</Head>
<Body>
<XHTML:p>
The site map is designed to help you find exactly what you're looking
for on the MadHamster Creations website. It allows quick and easy
lookup of and access to every file and page on the site, giving you the
ability to get to exactly what you need as fast as possible.
</XHTML:p>
<XHTML:center>
<XHTML:div>Choose the organizational structure you prefer:</XHTML:div>
<XHTML:table>
<XHTML:tr>
<XHTML:td><Link Href="javascript:OpenFileSiteMap()" Status="..." Comment="...">By Files</Link></XHTML:td>
<XHTML:td><Link Href="javascript:OpenPageSiteMap()" Status="..." Comment="...">By Pages</Link></XHTML:td>
</XHTML:tr>
</XHTML:table>
</XHTML:center>
</Body>
</Page>
</small>
Pretty cool, huh? Pure data, no layout. Anyway, because I can't rely on the client having IE6 (for XSL stuff), of course all my XML transformation will be done on the server side. This is where things get fuzzy...
My plan is to have on ASP.NET (.aspx) page, which takes as an argument (PageWriter.aspx?doc=ThatDoc.xml) the XML document to translate. However, I was wondering if there was anyway NOT to have that ugly URL show up in the browser. You see my drift? A simple ThatDoc.xml would be best, although perhaps a ThatDoc.aspx, ThatDoc or Content/ThatDoc.xml would work as well if it would be easier.
I've heard something about this before, somewhere, in some MSDN magazine article perhaps? Anyway, my computer with IIS is still dead ( ), but just give me an idea which of the above, if any, is good, because I'm writing my XML on this Win98 machine ( ), and would like to know which I can use before I start plugging URLs into my link tags.
Thanks in advance, and I'm sorry I couldn't find the write forum, but this doesn't seem to fit anywhere, and everybody ignores anything not in the lounge NEway...
-Domenic Denicola- [CPUA 0x1337]
MadHamster Creations
"I was born human. But this was an accident of fate - a condition merely of time and place. I believe it's something we have the power to change..."
|
|
|
|
|
General 
News 
Suggestion 
Question 
Bug 
Answer 
Joke 
Praise 
Rant 
Admin 
Submit an article or tip
