<% option explicit Response.Buffer = true session("administrator_id") = "" dim conn dim ssql dim verify_rs dim sUsername dim sPassword %>








<% sUsername = Request.Form("administrator_username") sPassword = lcase(Request.Form("administrator_password")) ssql = "select * from tbl_administrator where administrator_username ='" & sUsername & "'" set verify_rs = server.CreateObject("ADODB.Recordset") verify_rs.Open ssql,conn,3,3 if verify_rs.EOF then session("company_id") = "" Response.Write ("") Response.Write ("
SORRY, USERNAME ERROR") Response.Write ("
CLICK HERE TO RETRY
") else If sPassword = verify_rs("administrator_password") then session("administrator_id") = verify_rs("system_id") Response.Redirect "main.asp" else session("administrator_id") = "" Response.Write ("") Response.Write ("
SORRY, PASSWORD ERROR") Response.Write ("
CLICK HERE TO RETRY
") end if end if verify_rs.close set verify_rs = nothing %>
<% conn.Close set conn = nothing %>