<form method="POST" action="menu.asp">
<table align="center" border="0" width="19%">
<tr>
<td width="76" align="right" height="35"><b>
<font face="Arial" size="2">Usuario</font></b></td>
<td height="35" align="center">
<input type="text" name="User" size="24" style="font-family: Arial; font-size: 8pt; letter-spacing: 1pt; border: 2px solid #003366"></td>
</tr>
<tr>
<td width="76" align="right"><b>
<font face="Arial" size="2">Password</font></b></td>
<td>
<p align="center">
<input type="password" name="password" size="24" style="font-family: Arial; font-size: 8pt; letter-spacing: 1pt; border: 2px solid #003366"></td>
</tr>
<tr>
<td width="76" align="center">&nbsp;</td>
<td>
<p align="center">
<input type="submit" value="Enviar" name="B1" style="font-size: 8pt; font-family: Arial; letter-spacing: 2pt; color: #000000; font-weight: bold; border: 4px double #006600; background-color: #6FCE6F"></td>
</tr>
</table>


</form>

<%
if request.form("user") = "" then
response.redirect "index.asp"
%>

<%else

Dim usuario
Dim password


usuario=replace(request.form("user"),"'","")
password=replace(request.form("password"),"'","")

Path=Server.MapPath("DB\usuariosDB.accdb")
Set ConexionBD = Server.CreateObject("ADODB.Connection")
ConexionBD.Open "DRIVER={Microsoft Access Driver (*.mdb, *.accdb)};DBQ=" & Path
Set rs = Server.CreateObject("ADODB.Recordset")
sql="SELECT * FROM Niveles WHERE Usr='"&usuario&"' AND Psw='"&password&"'"
rs.Open sql, ConexionBD


if not rs.eof then


session("autorizacion")=1

response.redirect "menu.asp" // En caso se usuario y password ser Ok, me manda a esta otra pagina

end if

session("autorizacion")=-1

end if
rs.close
set rs=nothing
ConexionBD.close
set ConexionBD=nothing
if session("autorizacion")=-1 or session("autorizacion")="" then
response.redirect "index.asp?msg=Usuario%20o%20password%20incorrecta "
end if
%>