Hi,

    I am using free web hosting for a test web site ... so i divide databse into some of databases (according to space) on different sites ... one database handle users login and other things and other all provide data for asp pages ..now one thing how i can update dbs from my pc VB application ..and second how to prevent access from other site pages .... i mean how to pass and check securities, user info as well allowed actions...

   there are 3 databases on three different locations ....
    one hold users info as well paswords...
   and other 2 provide required information against user logins ...

 how to hanld and access ...

 thanks



Stay Beautiful,
Abdul Salam

__________________
Stay Beautiful,
Abdul Salam

I think it is difficult to update remote database through a VB application on your machine without blocking the site for some time.(unless you have some synchronization tools that work over web). The possibility for this also depends on the type of database you use. If you are using file databases like MS Access, you may download access database, put it in your machine. Then connect to VB and do manipulation. Then upload it back.

What I normally do to update database is to develop an admin area whose pages are accessible only to logged in users. In one of the database, you can define a table which contains details of users who can access admin pages (just a username and password enough). In the admin area, there will be a login page. After successful login, you may store the logged-in status to session(session("logged_in_status")=true).

Then you can design pages in admin which can update data. On the top of each such page, you check the value of session("logged_in_status"). If it is not set or different from true, redirect to login page.

There is only one drawback for this. Session need to be enabled on the browser which does admin side works.

Best wishes,

Madhu

And if your problem is to connect to 3 databases which are in 3 different locations, the obvious solution is to have 3 connection object. One each to connect to one database.

You may not need 3 connection objects on all pages. Please put them depending on your requirement to connect to various databases in the page.

Right madhu .....

   Actually i have three login space on geocities for testing this web ....
   i'm trying to connect my vb application with db1 but still trying .... (Ms Access)

   yes making a copy or admin area is nice idea but how i will switch one site to an other site...
   and varify user name which is stored on first location .... i mean how to pass site user name and password to access database on 2nd location .... as well user login and password too..



Stay Beautiful,
Abdul Salam

HI Abdul,

well i think MADHU's suggestion about the ADMIN area is best .. i have using it consistently and its working wonderfully for me ... as for passing values to other sites ...

(1) if the amount of data to be passes is not large and also no. of users of the website is not large then use SESSION variables for storing them .. but this is not considered to be a good design practice .. since increasing the no. session variables affect performance ..

(2) Another choice is attach the data in QUERYSTRINGS which works great ... but if this data contains sensitive information then i would suggest that you write your own ENCRYPTING & DECRYPTING FUNCTIONS andsend this in encryptedformat ...

of course before writing your own encrypt and decript functions it would be better if you check existence of an inbuilt method which does it for ..

Since i have never sent encrypted data through a querystring i dont know about it .. whether such a method exists or not ...

Try this .. hope it works ...

Sudhan.

Hi Abdul,

This was discussed in another topic here. You can take a look at it.
Single login for different domains
But be sure that you have access from all the 3 websites to the same database where the user/password info are stored. Else you cannot prevent/allow/check users from one site to roam around the other. Not only that, you also have to then synchronise the user/password related data across all the three databases that you use.

Why don't you use ASP instead of VB to access that database, is there any specific reason for not using ASP for that. Else as Madhu said, you got to manually synchronise data with the one on one of those free hosting servers by download--manipulate--upload.

Hi Madhu,
How does one enable session on the browser?

Cheers!

_________________________
- Vijay G
Strive for Perfection

Hi Sudhan,

I won't say this method could be a safer one.

For instance, it is possible for one who does not own the account still manages to copy the encrypted query string of other user and uses that with the same URL, and try to play around with someone's account. May be this is kind of rare imagination one can get, but still it is usafe, than passing it by POST method, as discussed in the other thread, I posted earlier.

What say?;)

_________________________
- Vijay G
Strive for Perfection

Dear Vijay,

The method to block session in IE6.0 is

Go tools>Internet options>Privacy(tab)

Advanced - > block cookies and uncheck "Always allow per session cookies"

But for some reason, this does not work in my machine.

But in older versions of IE, you have an option in advanced tab which says disable per-session cookies. This will surely block session.

Hi Madhu,

I assume that it enables the COOKIES at the client side, not the SESSION which are SERVER SIDE variables, and AFAIK they cannot be manipulated from the client's browser settings.

Cheers!

_________________________
- Vijay G
Strive for Perfection

Hi Vijay,

But when I do the above steps, my session controlled sites stop work in my browser.

This was indicated to me by one of our client and most of the corporate companies do this in all their browsers to protect any leakage of their privacy.