substitute for ASP server.execute or response.redirect with frames?

[TMac42]

I've got a frames site (html pages) that needs to be secure. To get to this application, the user must go through a secure ASP application that sets a value to a session variable. Problem is, when they click into this HTML frames-based site I can't really redirect the user to my login page if they aren't logged in since my asp is server side.

I want to check a session variable and if a value does not exist, send the user back to login.asp and use the entire window, not just the current frame.

What javascript can I use and where would I place it?

 

[adam0101]

You can't check session variables with JavaScript alone. Are you saying that your frameset and frames are made up of static .html pages and not ASP pages? Can you convert them to asp pages or configure your web server to treat them as asp pages so you can do this server-side?

The reason I ask is because JavaScript will not give you any suitable security. It's too easy to disable.

Adam

 

[TMac42]

Yeah, I can make them asp pages if necessary. I have on top frame for navigation that refreshes all of the bottom frame pages.