Session("UserAuthenticated") = FALSE
If Len(Request.QueryString("cmdLogin")) <> 0 Then
'dim chkLogin
Dim txtUsername, txtPassword
txtUsername = Request.QueryString("txtUsername")
txtPassword = Request.QueryString("txtPassword")
chkLogin = SQLhrd("SELECT * FROM l_login WHERE emp_number = '" & txtUsername & "' AND " & _
"password = '" & txtPassword & "'")
If chkLogin.EOF Then %>
<script language="javascript">
alert('Invalid Entry\nIncorrect Login ID or Password');
</script>
<% Else
Session("UserAuthenticated") = TRUE
Response.Redirect("main_admin.aspx?username=" & txtUsername)
End If
End If %>