<% username = Request.Form("username") pwd = Request.Form("password") page = Request.Form("page") stayloggedin = Request.Form("stayloggedin") if page = "" then page = "default.asp" end if %> <% Call Connjunooni(Conn) 'Response.Write "username : " & Request.Cookies("junooni_userid") sql = "SELECT username, statuslevel,userstatus FROM status INNER JOIN users ON status.statusid = users.status WHERE username = '" & username & "' AND password = '" & pwd & "' " Set rsUser = Server.CreateObject("ADODB.Recordset") rsUser.Open sql, conn, 3, 3 If not rsUser.EOF then if rsUser("userstatus")= "N" Then Response.Cookies("junoon_userblock")("USER") = "BLOCK" Response.Cookies("junoon_userblock").expires = # Dec 23, 2010 # msg = "Your account is temporary closed." else Response.Cookies("junoon_userblock")("USER") = "UNBLOCK" Response.Cookies("junoon_userblock").expires = # Dec 23, 2010 # Response.Cookies("junooni_userid") = rsUser("username") Response.Cookies("junooni_level") = rsUser("statuslevel") if stayloggedin = "yes" then Response.Cookies("junooni_userid").expires = #1/1/2010# Response.Cookies("junooni_level").expires = #1/1/2010# end if Response.Redirect(page) end if else Response.Cookies("junooni_userid") = "" Response.Cookies("junooni_level") = "" Response.Cookies("junooni_userid").expires = #1/1/2010# Response.Cookies("junooni_level").expires = #1/1/2010# msg = "Invalid username/password" end if rsUser.close set rsUser = nothing%>

Please enter your username and password to login

<%=msg%>

Please try again