%include api.inc %/include %code var ADs: TDBXOMClientDataSet; begin if (Request.Params.Values['dfUserName'] = '') or (Request.Params.Values['dfUserName'] = '') then begin Session.Content.Values['UserValidated'] := 'N'; Response.Redirect ('%var:PageOffset/login.psc'); exit; end; ADs := Catalog.NewDataSet; ADs.CommandText := 'select * from idUser where idUserName like ''' + Request.Params.Values['dfUserName'] + ''' and idPassword = ''' + MD5(Request.Params.Values['dfPassword'], '') + ''' and idProtected = 0 '; ADs.Open; if (not ADs.Eof) then begin Session.Content.Values['UserValidated'] := 'Y'; ADs.Edit; if Nvl(ADs.FieldByName ('FirstInlog').Value, 0) = 0 then ADs.FieldByName ('FirstInlog').Value := Now; ADs.FieldByName ('PrevInlog').Value := ADs.FieldByName ('LastInlog').Value; ADs.FieldByName ('LastInlog').Value := Now; ADs.UpdateBatch ('idUser', 'GUID', arAll); SessionData.Prop['CurrentUserGUID'] := ADs.FieldByName ('GUID').AsString; SessionData.Prop['CurrentUser'] := ADs.FieldByName ('FullUserName').AsString; SessionData.Prop['IsAdmin'] := (ADs.FieldByName ('idUserType').AsString = 'A'); end else Session.Content.Values['UserValidated'] := 'N'; ADs.Close; ADs.Free; if Session.Content.Values['UserValidated'] = 'Y' then Response.Redirect ('%var:PageOffset/index.psc') else begin result := 'Invalid login provided. Click here to try again. If you don''t have a login account yet, then register now.'; end; end; %/code