Support

Login

ppSD2 Product Manual » User Management » Login

Sections

Comments: 0

User can log into accounts from http://www.yoursite.com/ppSD2/login.php. Leads cannot log into an account.

Login Redirection Rules

The following rules are incremental, so if the conditions in one step are not met, the program will attempt to achieve the conditions in the next step until one is possible.

  • If the show_member_cp field is set to value Y on the login form, the program will always redirect the user to the user control panel upon login.
  • If the url field is set to any value, the program will always redirect the user to that URL.
  • If the user's account has a custom start_page (this is controlled from the admin control panel by editing a user's account), the user will be redirected to that start page.
  • If the option entitled "Use User CP?" within the program settings is set to "Yes", the program will redirect the user to the user control panel.
  • The program will select a secure area's "start page"
  • If all else fails, the program will use the URL provided within the option named "Backup Login Page"

Login Announcements

You can create a login announcement with specific criteria from "Manage > Add a login announcement". A login announcement is displayed to the user after a successful log in but before they are redirected to their start page.

Criteria determines whether a login announcement will be displayed to the user. Criteria can include a start date, and end date, the maximum number of times to the display the announcement to each user, as well as specific secure areas or user groupings to which to display the announcement.

If any one piece of criteria is not met, the announcement will not be displayed to the user.

Forced Account Updates

You can force users to update their account at specific intervals from "Settings" > "Login Related Options":

  • Require User Updates?: Set to "Yes"
  • Require User Update Timeframe: Sets the timeframe after which they will be forced to update their information.
  • Forced-Update Fields: Select the fields users will be forced to update.

Password Abuse Detection

If the system believes that a user is sharing his/her password, the user's account will be flagged. You can tell the program what to do in the event of a flag from "Settings" > "Login Related Options":

  • Track Logins?: Set to "Yes"
  • Use Trackstat?: Set to "Yes"
  • Trackstat Rating: Lower values means stricter rules.
  • Trackstat Logins: Number of logins to track before making a judgment on the account's potential password sharing.
  • Trackstat Action: "email" will inform you of potential sharing, "deny" will prevent the user from logging in.

Concurrent Logins

The program will not allow two difference users to log into the same account at once.

Locked Accounts

This spam and hacking prevention tools will lock an account after a specific number of failed log in attempts. Locked accounts can be unlocked from the User Management Screen or by waiting 15 minutes.

Cross Domain Logins

This feature allows you to process logins over various websites presuming that the websites are all on the same server and have access to the same database.

Setting up the System

  • Secure all folders on your domains from "Manage > Secure an Area"
  • While securing the folder, ensure that you tick the checkbox entitled "Is this on a subdomain or virtual domain?"
  • A field named "Base vDomain" will appear: enter the URL of the domain on which this folder is located WITHOUT the "http://"
  • Example: if the folder is located at "http://www.yourdomainB.com/members/", you would input "yourdomainB.com"
  • Using a text editor such as Notepad, open the file entitled cda_login.php and ensure that line 18 is properly set to the absolute path to the ppSD2 folder. The cda_login.php file is located within the "ppSD2" directory.
  • Using an FTP client, create a folder named "ppSD2" on the domain on "yourdomainB.com"
  • Copy the cda_login.php file into the newly-created "ppSD2" folder

Important Considerations

  • Users will only be logged into a secure area if they have access to that secure area.
  • If you have renamed your "ppSD2" folder on yoursiteA.com, you need to make the name of your folder on yoursiteB.com match the name of the ppSD2 directory's name on yoursiteA.com.
  • All users belonging to a secure area on a domain other than your primary domain (where your ppSD2 admin control panel is installed) must be managed from the ppSD2 admin control panel on your main domain. In other words, your license only allows you to have one installation of the ppSD2.
  • Users always need to log in through the login.php file on your primary domain (in the above example, "yourdomainA.com")
  • Note: You can create a login form on your secondary domain, however the form "action" must be your primary domain. 
    <form action="http://www.yoursiteA.com/ppSD2/login.php" method="post">
  • This means that you cannot create a copy of the login.php file on the secondary domain without first purchasing an additional license of ppSD2!
  • The same rules apply for registrations and lost passwords: all must be process through the primary domain. In other words, you CANNOT create copies of those files without the purchase of an additional ppSD2 license.

Remember that every installation of ppSD2 requires a new license! The only file that you are licensed to copy to a separate domain from the primary domain on which the program is installed is the cda_login.php file.

API

If you need to authenticate users over separate servers, you will need to purchase the API.

Custom Login Forms

You can create a custom login form that isn't generated by ppSD2 using the following code:

<form action="/ppSD2/login.php" method="post">

Username: <input type="text" name="username" value="" />
Password: <input type="password" name="password" value="" />

<input type="hidden" name="action" value="login" />
<input type="hidden" name="url" value="" />
<input type="hidden" name="show_member_cp" value="" />
<input type="submit" value="Login" />
</form>
  • By inputting a website URL for the value or the "url" field you can force the user to redirect to that page upon log in.
  • By setting the value of show_member_cp to "Y" you can force the user to redirect to the user control panel upon log in.

Common Issues with Logins

Click here for a troubleshooting guide with common issues with logins.

Last updated on 14 November 2011 12:33pm

Discussion

No comments found.

Post a Comment

Please note that only comments involving constructive ideas will be approved.

This website does the Banana Dance!