<!--#include file=dbconn.asp-->
<%
dim sql
dim rs
dim seekerrs
dim founduser
dim username
dim companyid
dim password
dim errmsg
dim founderr
founderr=false
FoundUser=false
username=trim(request.form("username"))
password=trim(Request.Form("password"))
if username="" then
   response.redirect "login.asp"
end if
if password="" then
     response.redirect "login.asp"
end if

set rs=server.createobject("adodb.recordset")
sql="select * from admin where username='"&username&"'"
rs.open sql,conn,1,1
if not rs.eof then
 if password=rs("password") then
 Session("administrator")="yes"
      response.redirect "edit-a.asp"
 else
     response.redirect "login.asp"
 end if
else
     response.redirect "login.asp"
end if
rs.close
conn.close
set rs=nothing
set conn=nothing

%>