A Member System in PHP with some extras

Do you want to share WYSIWYG Web Builder tips, tricks, tutorials or useful HTML code? You can post it here...
(no questions or problems please, this section is not monitored by support).
Forum rules
This section is to share tips, tricks and tutorials related to WYSIWYG Web Builder.
Please do not post questions or problems here. They will not be answered.

PLEASE READ THE FORUM RULES BEFORE YOU POST:
viewtopic.php?f=12&t=1901
cmsintent
 
 
Posts: 54
Joined: Tue Oct 09, 2007 4:59 pm
Location: Alberta, Canada
Contact:

Post by cmsintent » Tue Jan 27, 2009 11:03 pm

This is weird... I have used the password script program with success for a few sites.

Works well except for the last site - I constructed the site and all was well. I then added 5 new pages to the site and found that those pages are not protected.

EG:

I have a paged called noticesandminutes.php (can't access unless you have passwords)

I have another page called zskylights.php linked from the Notices and Minutes page (the skylight can be accessed without passwords)

It appears it is the 5 new pages that I added recently that are not protected.

All the pages, new and old are in the same folder.... any thoughts?

Thanks.

User avatar
kees
 
Posts: 49
Joined: Mon May 23, 2005 7:36 pm
Location: Soest - NL

Post by kees » Tue Jan 27, 2009 11:45 pm

PHP can not protect folders, just single pages.

For all pages that need 'protection' you should follow step II-1 (A protected page).

madjamonline
 
 
Posts: 55
Joined: Tue Jun 19, 2007 4:27 pm
Location: United Kingdom
Contact:

Post by madjamonline » Mon Mar 09, 2009 5:05 pm

kees wrote:
madjamonline wrote:...nothing is safe in this world anymore... there will always be a way.

I always make sure that my pwds in php are MD5'd.
madjamonline,

I agree that hashing passwords (md5, sha1) is more secure. I didn't use this technics in order to keep it clear for WebBuilder users.

Of course I and you will understand that NASA will not use my script :wink:
Sorry for the late post! Yeah I agree. I made a suggestion that the password protect in Wb6 should have MySql database support because with all of my members areas, there is soooo much code! I decided I am going to make a professional extension suite for members areas for WB6 so I will be sharing that with you all when it is done. It will have support for remember me functions, admin areas, extra user fields, profile info for user, database support (mysql) and more! Of course it is going to take a while... :wink:

User avatar
Navaldesign
 
 
Posts: 1199
Joined: Sat Mar 01, 2008 8:08 pm
Location: Italy
Contact:

Post by Navaldesign » Mon Mar 09, 2009 5:30 pm

Not sure what you mean...

If you want a specific landing page (password protected) to be available to all members (both simple members - 1 - and Admins - 2 - ) set the required level to 1 and place the code in the start of page. That's all.

The same goes for ALL pages where all members should have access.

If, instead, you only want the Admins to be able to see the page set the required level to 2.

Or maybe I misunderstood ??
www.dbtechnosystems.com

madjamonline
 
 
Posts: 55
Joined: Tue Jun 19, 2007 4:27 pm
Location: United Kingdom
Contact:

Post by madjamonline » Mon Mar 09, 2009 5:31 pm

Oops you believe right! :oops:
I observed the php and worked out that it is the higher the more status!

User avatar
Navaldesign
 
 
Posts: 1199
Joined: Sat Mar 01, 2008 8:08 pm
Location: Italy
Contact:

Post by Navaldesign » Mon Mar 09, 2009 5:37 pm

Please note that unless you need sorting and exporting features that go beyond a free script limits, the file system that is used (as well as that that is embedded in WB6) are quite enough. On a randomly created 20.000 members archive file, i have a 0.5 secs delay compared to a MySQL DB driven script. Of course, a file based script is not intended for such volumes....
www.dbtechnosystems.com

madjamonline
 
 
Posts: 55
Joined: Tue Jun 19, 2007 4:27 pm
Location: United Kingdom
Contact:

Post by madjamonline » Mon Mar 09, 2009 5:41 pm

I use a mysql database too :D

User avatar
Navaldesign
 
 
Posts: 1199
Joined: Sat Mar 01, 2008 8:08 pm
Location: Italy
Contact:

Post by Navaldesign » Mon Mar 09, 2009 5:44 pm

There is no doubt that a DB driven script is far better. However, it is also true that the simlicity of a file driven extension is FAR better, as the user have nothing else to do than publish their pages!
www.dbtechnosystems.com

madjamonline
 
 
Posts: 55
Joined: Tue Jun 19, 2007 4:27 pm
Location: United Kingdom
Contact:

Post by madjamonline » Mon Mar 09, 2009 6:08 pm

ahh okay!!!
I better get it done then lol! :lol:

madjamonline
 
 
Posts: 55
Joined: Tue Jun 19, 2007 4:27 pm
Location: United Kingdom
Contact:

Post by madjamonline » Wed Mar 11, 2009 9:41 pm

This members system is good.
My mysql extension is going well but it is taking a bit longer than estimated! :cry:

madjamonline
 
 
Posts: 55
Joined: Tue Jun 19, 2007 4:27 pm
Location: United Kingdom
Contact:

Post by madjamonline » Fri Mar 13, 2009 4:19 pm

I have thought of an easier idea. Insted of having to enter the field names etc into each object, there will be a DB connection object that you insert on each page as well.

User avatar
kees
 
Posts: 49
Joined: Mon May 23, 2005 7:36 pm
Location: Soest - NL

Post by kees » Mon Mar 16, 2009 3:07 pm

The 'Member System' and the 'News Writer' have no relationship, they work independent.

User avatar
kees
 
Posts: 49
Joined: Mon May 23, 2005 7:36 pm
Location: Soest - NL

Post by kees » Tue Mar 24, 2009 3:06 pm

At the end of the tutorial there is a download link for a working example. Does that help you?

User avatar
bry
 
 
Posts: 299
Joined: Fri Jan 11, 2008 8:44 pm

Post by bry » Tue Jun 23, 2009 9:44 pm

Very interesting. I read through the whole thing but not having a particular problem and never having done a password protection, it was more of academic interest than anything.

However, I have a design upcoming very soon where password protection is required.

General questions...

Will the "members" have to re-enter their passwords to access multiple pages?? I gather I shouldn't use cookies so is there an alternative?

In this situation, I don't know of any reason for individual passwords. It is really more a matter of keeping non-members out of certain pages.

I was thinking in terms of a portal page with member pages being hidden, but maybe that is all wrong. I haven't gotten to the point of design yet so I really haven't given this any serious study yet but since this topic is so right on, I thought I would ask.

thanks!!!

User avatar
Navaldesign
 
 
Posts: 1199
Joined: Sat Mar 01, 2008 8:08 pm
Location: Italy
Contact:

Post by Navaldesign » Tue Jun 23, 2009 10:00 pm

bry wrote: Will the "members" have to re-enter their passwords to access multiple pages?? I gather I shouldn't use cookies so is there an alternative?
No, the script uses sessions so it keeps the members logged in until they log out.
www.dbtechnosystems.com

Locked

Who is online

Users browsing this forum: No registered users and 1 guest