member API

You have set this up wrong, you should be creating session variable in your own login pages and NOT passing the data across in a cookie.

You should never place username and password data in a cookie, this is a massive security risk as it allows anyone to get your users username and passwords.

You need to go back to the original member API file and follow the instructions, as at the moment it is not setup correctly.

What you should have done is edit your own login page to add in the following:-

Session("USER") = Member_Username
Session("PASSWORD") = Member_Password
Session("EMAIL") = Member_Email

Replacing the parts in red with the user login details, this can then be picked up by the forum from the ASP session.

You also need to remove the following lines that you have placed in the member API file:-

Session("USER") = Request.Cookies("mysite")("nome")
 Session("PASSWORD") = Request.Cookies("mysite")("pwd")
 Session("EMAIL") = Request.Cookies("mysite")("email")

If you are using a cookie to pass around your users usernames and passwords then you should look at redeveloping your login system as this is totally insecure as you are literally giving out your users usernames and passwords to anyone who cares to look for them.

I think you are missing the point, you have setup the member API incorrectly. You need to go back and start again, setting it up correctly by setting the session variables in your own login system, not with the member API file.

Many people use this API without problems, but you need to set it up correctly to start with, if you start messing around trying to get it to work in a way it was not built to you will have problems.

Not quite, no.

Having the session variables set in your own login is correct.

However, if the user is not logged into your site in the current session and they browse to the forum they will be shown as a guest, they would not be loged into the forum.

If you configure the member API with a link to your sites own login system, when the user clicks the login link in Web Wiz Forums they will be directed to your own sites login.

They then log into your own site login which sets the session variables required by Web Wiz Forums member API, when they then go back to the forum they will be logged into the forum.

Once the session variables are set by your sites login Web Wiz Forums member API can read in these variables, if the user exists they are logged in as that member, if not a member record is created for them in the database.

You also need to remember session variables only last for 20 minutes after the user has left your site before they are destroyed. They are also destroyed when you close your browser.