password!!!!
You would be better off changing your query to something like this...
<cfquery name="confirm_user" datasource="#mydbname#">
SELECT * <!--- I really would change this to just those fields you need too
--->
FROM maintenance_un_pw
WHERE username = <cfqueryparam cfsqltype="CF_SQL_VARCHAR"
value="#form.username#" maxlength="30">
AND password = <cfqueryparam cfsqltype="CF_SQL_VARCHAR"
value="#form.password#" maxlength="30">
</cfquery>
<cfif confirmuser.recordcount IS 1>
...do this if username and password is right...
<cfelse>
....what to do if its wrong.....
</cfif>
You'll need to change the maxlength attributes to get the match you DB
schema but this should work in general...
Paul
[Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings] [Donations and Support]
