Imports System.Data.Odbc
Partial Class login
    Inherits System.Web.UI.Page

    Protected Sub btnLogin_OnClick(ByVal sender As Object, ByVal e As System.EventArgs) Handles btnLogin.Click
        If Page.IsValid Then

            Dim MyAddress As String
            Dim MyConn As OdbcConnection
            Dim MySQL As String
            Dim MyRs As String
            Dim MyCount As OdbcCommand
            Dim MyPassword As OdbcCommand
            Dim IntUserCount As Integer
            Dim strPassword As String
            MyConn = New OdbcConnection("Driver={MySQL ODBC 3.51 Driver};Server=localhost;Database=test; User=root;Password=root;Option=3;")

            If Request.QueryString("ReturnUrl") = "" Then
                MyAddress = "default.aspx"
            Else
                MyAddress = Request.QueryString("ReturnUrl")
            End If

            MySQL = "SELECT COUNT(*) FROM Users WHERE Username = '" & txtUsername.Text & "'"
            MyRs = "SELECT Password FROM Users Where Username = '" & txtUsername.Text & "'"
            MyCount = New OdbcCommand(MySQL, MyConn)
            MyPassword = New OdbcCommand(MyRs, MyConn)

            MyConn.Open()
            IntUserCount = MyCount.ExecuteScalar()
            strPassword = MyPassword.ExecuteScalar()
            MyConn.Close()

            If IntUserCount > 0 Then
                If strPassword = txtPassword.Text Then
                    FormsAuthentication.SetAuthCookie(txtUsername.Text, True)
                    Response.Redirect(MyAddress)
                Else
                    lblMsg.Text = "Invalid Password..."
                End If
            Else
                lblMsg.Text = "Invalid Username..."
            End If
        Else
            Exit Sub
        End If
    End Sub
End Class