%
Response.Buffer = True
Response.Expires = -1000
%>
<%
Dim a
a = Request.Form("Username")
%>
<%
If Request("Action") = LoginButton Then
Set DB = Connect()
SQL = "SELECT * FROM Login WHERE Username = '" + Request("Username") + "'"
Set RS = DB.Execute (SQL)
If (RS.EOF And RS.BOF) Then
Session (SiteID + "Authentication") = False
Response.Redirect ("login1.asp?Error=اسم+المستخدم+غير+صحيح.")
ElseIf RS("Password") <> Request ("Password") Then
Session (SiteID + "Authentication") = False
Response.Redirect ("login2.asp?Error=كلمة+المرور+غير صحيحه")
Else
Session (SiteID + "Username") = RS("Username")
Session (SiteID + "FirstName") = RS("FirstName")
Session (SiteID + "LastName") = RS("LastName")
Session (SiteID + "Authentication") = True
if a="مبارك" then
Response.Redirect ("welcome.asp")
Else
if a="محمود" then
Response.Redirect ("welcome.asp")
Else
if a="محى" then
Response.Redirect ("welcome.asp")
else
if a="ايمان صالح" then
Response.Redirect ("welcome.asp")
else
if a="مريم عوض" then
Response.Redirect ("welcome.asp")
else
if a="احمد عبدالعظيم" then
Response.Redirect ("welcome.asp")
else
if a="حسن" then
Response.Redirect ("welcome.asp")
else
if a="وليد ادريس" then
Response.Redirect ("welcome.asp")
else
if a="هيثم" then
Response.Redirect ("welcome.asp")
else
if a="اشرف" then
Response.Redirect ("welcome.asp")
else
Response.Redirect ("welcome.asp")
End If
End If
End If
End If
End If
End If
End If
End If
End If
End If
End If
End If
%>