Answered
How can i use Session variable in repeating region
I have a session variable assigned to the ID#(auto number in
access db) of messages posted. The variable only gets assigned to
the recordset that is displayed first (sort by message ID
descending). I would like to find a way to make the variable be
assigned to all the records, so the variable is passed to the
delete page. If i use a URL parameter to send the message ID then
someone could change the number in a browser and delete messages
not intended for the user.
if you want to see the example in action goto link at bottom of message. The save and reply links are URL parameters the reply uses the MM_Username variable to enter the name of sender so a URL parameter is OK but click on save and then change the msdID number in the browser to a different number and you could save and view other message not intended for your login id. The delete link is using a session variable that i assigned from the recordset as the msdID# (auto number from access) and the correct msdID# does not get assigned.
What about masking the URL parameters, this would be simple but how can i do that?
Thanks
MikeL7
PAGE WITH SESSION VARIALBE TO PASS TO DELETE PAGE (save and reply are URL parameters)
http://www.gohbcc.com/CallCenter/EmployeeMessagesVIEW2.asp
USERNAME: admin PASSWORD: 1234
the links from other pages in my site will take you to:
http://www.gohbcc.com/CallCenter/EmployeeMessagesVIEW.asp this is ALL URL parameters enter 2 after VIEW to use session variables
if you want to see the example in action goto link at bottom of message. The save and reply links are URL parameters the reply uses the MM_Username variable to enter the name of sender so a URL parameter is OK but click on save and then change the msdID number in the browser to a different number and you could save and view other message not intended for your login id. The delete link is using a session variable that i assigned from the recordset as the msdID# (auto number from access) and the correct msdID# does not get assigned.
What about masking the URL parameters, this would be simple but how can i do that?
Thanks
MikeL7
PAGE WITH SESSION VARIALBE TO PASS TO DELETE PAGE (save and reply are URL parameters)
http://www.gohbcc.com/CallCenter/EmployeeMessagesVIEW2.asp
USERNAME: admin PASSWORD: 1234
the links from other pages in my site will take you to:
http://www.gohbcc.com/CallCenter/EmployeeMessagesVIEW.asp this is ALL URL parameters enter 2 after VIEW to use session variables
AdChoices