in the webassist/security_assist/helergrouprules.php file, there are 2 rules defined for "Login Success":
case "Log in success":
$comparisons[0] = array(TRUE, "".((isset($_GET['loggedIn']))?$_GET['loggedIn']:"") ."", 2, "");
break;
case "Log in success":
$comparisons[0] = array(TRUE, "".((isset($_SESSION['SecurityAssist_UserID']))?$_SESSION['SecurityAssist_UserID']:"") ."", 1, "".$row_SecurityAssistusers['UserID'] ."");
break;
the second one should not be there.
also there is no rule defined for "Logged Into users"
define a new rule named "Logged Into users". set it to:
Allow If
Value: Click the lightning bolt and select the SecurityAssist_UserID session
Criteria: <>
Comparison: Leave this setting blank
on the Photos_result.php page use the "Logged Into users" rule as the access restriction.