<% Response.Expires=0 Response.Buffer = True bmsUsername = Request.Form("bmsUsername") bmsPassword = Request.Form("bmsPassword") If bmsUsername = "" OR bmsPassword = "" Then %> <% Response.End End If DIM objConn DIM objConnTwo DIM rsLogin DIM rsLog DIM strQ DIM strQTwo DIM logUserID DIM logUserAdmin DIM logDateIn DIM logTimeIn logDateIn = Day(Date) & "-" & Monthname(Month(Date)) & "-" & Year(Date) logTimeIn = Hour(Now) & ":" & Minute(Now) & ":" & Second(Now) strQ = "SELECT id_bmsUsers,bmsUsername,bmsFirstName,bmsSurname,bmsAdmin FROM bmsWebUsers WHERE bmsUsername = '" & bmsUsername & "' AND bmsPassword = '" & bmsPassword & "' ;" strQTwo = "SELECT idf_bmsUsers,logAdmin,logDateIn,logTimeIn FROM bmsUserLog;" %> <% Set objConn = Server.CreateObject("ADODB.Connection") objConn.Open "Provider=Microsoft.Jet.OLEDB.4.0;Data Source=" & Server.MapPath("btlsa.mdb") Set rsLogin = objConn.Execute(strQ) If rsLogin.EOF Then %> <% Response.End End If Session("userID") = rsLogin("id_bmsUsers") Session("bmsUser") = rsLogin("bmsUsername") Session("bmsName") = rsLogin("bmsFirstName") Session("bmsSurname") = rsLogin("bmsSurname") logUserID = rsLogin("id_bmsUsers") logUserAdmin = rsLogin("bmsAdmin") objConn.Close Set objConn = Nothing Set objConnTwo = Server.CreateObject("ADODB.Connection") objConnTwo.Open "Provider=Microsoft.Jet.OLEDB.4.0;Data Source=" & Server.MapPath("btlsa.mdb") Set rsLog = Server.CreateObject("ADODB.RecordSet") rsLog.CursorType = 2 rsLog.LockType = 3 rsLog.Open strQTwo,objConnTwo rsLog.AddNew rsLog.Fields("idf_bmsUsers") = logUserID rsLog.Fields("logAdmin") = logUserAdmin rsLog.Fields("logDateIn") = logDateIn rsLog.Fields("logTimeIn") = logTimeIn rsLog.Update rsLog.Close Set rsLog = Nothing objConnTwo.Close Set objConnTwo = Nothing Response.Redirect ("../includes/redirect.asp") %>