<%@LANGUAGE="VBSCRIPT"%>
<%
session("ZONA_TARIFA")="1"
Session("MM_Username")=""
Session("MM_UserAuthorization")=""
Session("cr")=""
' *** Validate request to log in to this site.
MM_LoginAction = Request.ServerVariables("URL")
If Request.QueryString<>"" Then MM_LoginAction = MM_LoginAction + "?" + Request.QueryString
MM_valUsername=replace(CStr(Request.Form("USER")),"'","''")
If MM_valUsername <> "" Then
MM_fldUserAuthorization="TIPOUSER"
MM_redirectLoginSuccess="gerencial.asp"
MM_redirectLoginFailed="login.asp"
MM_flag="ADODB.Recordset"
set MM_rsUser = Server.CreateObject(MM_flag)
MM_rsUser.ActiveConnection = MM_maq_STRING
MM_rsUser.Source = "SELECT NOMBRE,EMAIL,APELLIDO, USERNAM, PASSWD,NIVAUTH,ACCENTER,IDCLIENTE,ZONA,ZONA_TARIFA"
If MM_fldUserAuthorization <> "" Then MM_rsUser.Source = MM_rsUser.Source & "," & MM_fldUserAuthorization
MM_rsUser.Source = MM_rsUser.Source & " FROM USUARIOSCRM WHERE USERNAM='" & MM_valUsername &"' AND PASSWD='" & strreplace(CStr(Request.Form("PASS")),"'","''") & "'"
MM_rsUser.CursorType = 0
MM_rsUser.CursorLocation = 2
MM_rsUser.LockType = 3
MM_rsUser.Open
If Not MM_rsUser.EOF Or Not MM_rsUser.BOF Then
' username and password match - this is a valid user
Session("MM_Username") = MM_valUsername
If (MM_fldUserAuthorization <> "") Then
Session("MM_UserAuthorization") = CStr(MM_rsUser.Fields.Item(MM_fldUserAuthorization).Value)
Session("ZONA") = CStr(MM_rsUser.Fields.Item("ZONA").Value)
session("ZONA_TARIFA")= CStr(MM_rsUser.Fields.Item("ZONA_TARIFA").Value)
Session("EMAIL") = CStr(MM_rsUser.Fields.Item("EMAIL").Value)
Session("NIVAUTH") = CStr(MM_rsUser.Fields.Item("NIVAUTH").Value)
Session("IDCLIENTE") = CStr(MM_rsUser.Fields.Item("IDCLIENTE").Value)
Session("NOMBRE") = CStr(MM_rsUser.Fields.Item("NOMBRE").Value)
set nivs = Server.CreateObject("ADODB.Recordset")
nivs.ActiveConnection = MM_entradas_STRING
nivs.Source = "SELECT * FROM CAMPOS_ACCESO WHERE IDACCESS=" + strreplace(MM_rsUser("ACCENTER"), "'", "''") + ""
nivs.Open()
set nivs2 = Server.CreateObject("ADODB.Recordset")
nivs2.ActiveConnection = MM_entradas_STRING
nivs2.Source = "SELECT * FROM NIVEL_ACCESO WHERE IDACCESS=" + strreplace(MM_rsUser("ACCENTER"), "'", "''") + ""
nivs2.Open()
session("FLDS")=""
session("FALIAS")=""
SESSION("VER")=""
SESSION("EDITAR")=""
coma=""
if not nivs2.EOF then
SESSION("EXTERNO")=nivs2("EXTERNO")
SESSION("ACTIVO")=nivs2("ACTIVO")
end if
nivs2.close
while NOT nivs.eof
session("FLDS")=session("FLDS")+coma+nivs("NOMBRE")
session("VER")=session("VER")+coma+cstr(nivs("VER"))
session("EDITAR")=session("EDITAR")+coma+cstr(nivs("EDITAR"))
session("FALIAS")=session("FALIAS")+coma+nivs("ALIAS")
coma="|"
nivs.movenext
wend
nivs.Close()
Else
Session("MM_UserAuthorization") = ""
End If
if CStr(Request.QueryString("accessdenied")) <> "" And true Then
MM_redirectLoginSuccess = Request.QueryString("accessdenied")
End If
MM_rsUser.Close
Response.Redirect(MM_redirectLoginSuccess)
End If
MM_rsUser.Close
Response.Redirect(MM_redirectLoginFailed)
End If
%>
www.promad.com.mx
