<%@LANGUAGE="VBSCRIPT" CODEPAGE="1252"%>
Bieg.ch Offerten Verwaltungssystem
<%
if request.Form("login") <> "" then
// check password of login
myUser = replace(request.Form("frmUser"),"'","")
myPassword = replace(request.Form("frmPassword"),"'","")
sql = "Select userID,userPassword FROM tblUser where userID ='" & myUser & "' AND userPassword ='" & myPassword & "'"
set rs = conn.execute(sql)
if not rs.EOF then
session("login") = True
if myUser = "admin" then response.redirect("admin.asp")
response.redirect("loginok.asp?userID=") & request.Form("frmUser")
else
response.redirect("index.asp?msg=Falscher Benutzername und/oder Passwort")
end if
end if
%>