<%@LANGUAGE="VBSCRIPT" CODEPAGE="1252"%>
Party Login
<%
Session.Contents.Remove("PartyDetails")
session("ValidatedHost")=false
session("ValidatedGuest")=false
session("GuestId")=""
session("PartyId")= ""
session("PartyLogin")= ""
session("ExisitingPartyEdit")= false
%>
<%
dim LoginMessage
if Request.Form ("LoginUser")="Login" then
Dim conn, recUsers, strLoginSql, UserType
dim PartyLogin, LoginPassword
PartyLogin = Request.Form ("PartyLogin")
LoginPassword = Request.Form ("Password")
UserType = Request.Form ("UserType")
Set conn = CreateObject("adodb.connection")
Set recUsers = CreateObject("adodb.recordset")
conn.Open MM_conParties_STRING
select case UserType
case "guest"
strLoginSql = "SELECT Guests.GuestID FROM Parties INNER JOIN Guests ON Parties.PartyID = Guests.PartyId Where Parties.PartyLogin = '" & PartyLogin & "' AND Guests.GuestPassword ='" & LoginPassword & "' AND NOT Removed = YES;"
case "host"
strLoginSql = "Select PartyId FROM Parties where PartyLogin = '" & PartyLogin & "' AND PartyPassword = '" & LoginPassword & "';"
end select
set recUsers= conn.Execute (strLoginSql)
if recUsers.EOF then
LoginMessage="Login Failed, Try Again"
else
select case UserType
case "guest"
session("PartyLogin")= PartyLogin
session("ValidatedGuest")=true
session("GuestId")= recUsers.Fields("GuestId").Value
Response.Redirect ("GuestEdit.asp")
case "host"
session("ValidatedHost")=true
session("PartyId")= recUsers.Fields("PartyId").Value
session("ExisitingPartyEdit")= true
Response.Redirect ("ExisitingPartyEdit.asp")
end select
end if
end if
%>