<%
cstring = "DSN=profile;"
email = Request.Form("email")
password = Request.form("pword")
Set cn = Server.CreateObject("ADODB.Connection")
cn.Open cstring
q = "SELECT email FROM profile WHERE email LIKE '" & email & "' AND password LIKE '" & password & "'"
Set rs = cn.Execute(q)
if rs.EOF then
Session("message") = "Your Email Address and/or Password were not found."
Response.Redirect "passprofile.asp"
else
Response.Cookies("email") = email
Response.Cookies("password") = password
d = Date
Response.Cookies("email").Expires = DateAdd("yyyy", 2, d)
Response.Cookies("password").Expires = DateAdd("yyyy", 2, d)
Session("message") = "Here is your Profile Information."
Response.Redirect "default.asp?email=" & email & "&mode=pword"
end if
%>
<html>
<head>
<title>Password Gateway Page</title>
<meta name="GENERATOR" content="Microsoft FrontPage 3.0">
</head>
<body>
</body>
</html>