<%
' customer login

company = request("company")
password = request("password")

set conntemp=server.createobject("adodb.connection")
conntemp.Open ConstDSN
ssqqll = "select * from customers WHERE (((customers.company)='" & company & "') AND ((customers.password)='" & password & "'));"
set rs=conntemp.execute(ssqqll)
if rs.EOF then
conntemp.close
set rs=nothing
set conntemp=nothing
	response.redirect("/support/html/error.asp")
else
	Session("id_no") = rs.Fields("id_no").Value
	Session("allowed") = 1
	Session("company") = rs.Fields("company").Value
	Session("admin") = 0
	Session("adminid") = rs.Fields("admin").Value
	conntemp.close
	set rs=nothing

set conntemp=nothing
response.redirect("/support/html/customer_welcome.asp")
end if

%>
<!-- #INCLUDE VIRTUAL="support/includes/DSN.ASP" -->