<%@LANGUAGE="VBSCRIPT"%>
<%
Dim Conn, Rs
if Request.QueryString("azione") = "vai" then
Set Conn = Server.CreateObject("ADODB.Connection")
Conn.open MM_tbond_login_STRING
Set Rs = Server.CreateObject("ADODB.Recordset")
Rs.ActiveConnection = Conn
ut = Replace(Request.Form("utente"),"'","")
ut = Replace(ut,"<","")
ut = Replace(ut,">","")
ps = Replace(Request.Form("password"),"'","")
ps = Replace(ps,"<","")
ps = Replace(ps,">","")
Rs.open = "SELECT user,pass FROM amministrazione WHERE user='"& ut &"' AND pass='"& ps &"'"
if Rs.EOF then
Response.Redirect("login.asp?err=1")
Else
Session("User") = Rs("user")
Response.Redirect("index.asp")
End if
Rs.close
Set Rs = nothing
Conn.Close
Set Conn = nothing
End if
%>
Pagina del login
<%
if Request.QueryString("err") = 1 then
%>
ACCESSO NEGATO!
username o password errati.
<%
End if
%>