Setting up access levels and modifying security

I have 4 questions:

1) I've run the SecurityAssist wizard and used the PowerCMS 2 preset. I unchecked Include CAPTCHA on the Registration Page Settings but the Forgot Password page still has both CAPTCHA Security Code and the Answer question. Can I just select the fullColumnGroup div for Security_Code and remove it or will that screw up the form? I really don't want both.

2) Is there place in the wizard where I can uncheck CAPTCHA for the Registration but have the Answer question? I couldn't seem to find that in the either the Manage Pages>Configure Field Settings or editing the pages area.

3) I'm unclear in the registration process where the UserGroupID is added. I don't see it on the Registration page, which makes sense because an admin would set that, but I don't see an admin page. I will need this to set up user access levels and am not sure how to fill this field in for the users. I'd edit it directly using phpMyAdmin, but I see it's created as an Integer and I'm not sure what variable choices and their values are.

4) In order to use the UserGroupID to set up page access, I believe I need to Define a New Access Rule and Allow If and chose a dynamic value (UserGroupID) to link to. But I don't see UserGroupID variables anywhere so I assume I need to create that, but I don't know how.

Thank you for your help.

1) In the security assist wizard, the forgot password page also has a checkbox for removing the captcha.

to remove it after the fact, you will need to delete the captcha form element form the page, then edit the Server validation behavior and remove the validation for the captcha element.

2) No, the wizard will not add the security question without the captcha, you would need to add captcha which also includes the security question, then delete the captcha element and validation from the server validation behavior.

3) you need to create an admin section for managing the userGroupID access level. The access level values are determined by you.

most commonly, you would create another table to define the access levels:

Groups:
GroupID -> Primary Key
GroupName

then the ID would be set be the database when you create a group, for example:

+---------|---------------+
| GroupID | GroupName     |
+---------|---------------+
| 1       | User          |
+---------|---------------+
| 2       | Super User    |
+---------|---------------+
| 3       | Administrator |
+---------|---------------+

in your admin page, you would set the userWhen setting up the user admin page using data bridge, you would set the userGroupID to be a menu and use the Groups table to populate it using the GroupID for the value and the GroupName for the label.

4) you will need to modify your security assist pages in order to use access levels in the site. On the security assist support page, in the archived documentation section is a user level access tutorial, it was written for V1, but the concept is still the same.

Thanks, Jason. Got that all squared away and the access page info is working fine.

But in the process was doing some testing with session variables and found I can't get them to display on the page. I tried inserting session variables I set on my login page and when that didn't work I also tried inserting dynamic data based on a recordset filtered on the SecurityAssist_UserID session variable. No dice. I'd like to be able to greet people by name.

Do you see anything in the attached file that's not right? I believe I am capturing them as the page access is based on the UserGroupID, but I can't figure out why they won't display.

Thanks.

on pages where you try to write session values, you may need to start the session first.

add the following code at line 1:

<?php @session_start();?>

Bingo!

You make this all seem so easy. Thanks so much!

glad to hear it worked .