close ad
Help us test the new Databridge BETA with MySQLi support
open ad
View Menu

Technical Support Forums

Free, outstanding support from WebAssist and your colleagues

rating

Setting up access levels and modifying security

Thread began 12/18/2012 3:44 pm by Sally | Last modified 12/19/2012 4:12 pm by Jason Byrnes | 720 views | 5 replies |

Sally

Setting up access levels and modifying security

I have 4 questions:

1) I've run the SecurityAssist wizard and used the PowerCMS 2 preset. I unchecked Include CAPTCHA on the Registration Page Settings but the Forgot Password page still has both CAPTCHA Security Code and the Answer question. Can I just select the fullColumnGroup div for Security_Code and remove it or will that screw up the form? I really don't want both.

2) Is there place in the wizard where I can uncheck CAPTCHA for the Registration but have the Answer question? I couldn't seem to find that in the either the Manage Pages>Configure Field Settings or editing the pages area.

3) I'm unclear in the registration process where the UserGroupID is added. I don't see it on the Registration page, which makes sense because an admin would set that, but I don't see an admin page. I will need this to set up user access levels and am not sure how to fill this field in for the users. I'd edit it directly using phpMyAdmin, but I see it's created as an Integer and I'm not sure what variable choices and their values are.

4) In order to use the UserGroupID to set up page access, I believe I need to Define a New Access Rule and Allow If and chose a dynamic value (UserGroupID) to link to. But I don't see UserGroupID variables anywhere so I assume I need to create that, but I don't know how.

Thank you for your help.

Sign in to reply to this post

Jason ByrnesWebAssist

1) In the security assist wizard, the forgot password page also has a checkbox for removing the captcha.

to remove it after the fact, you will need to delete the captcha form element form the page, then edit the Server validation behavior and remove the validation for the captcha element.

2) No, the wizard will not add the security question without the captcha, you would need to add captcha which also includes the security question, then delete the captcha element and validation from the server validation behavior.

3) you need to create an admin section for managing the userGroupID access level. The access level values are determined by you.

most commonly, you would create another table to define the access levels:

Groups:
GroupID -> Primary Key
GroupName

then the ID would be set be the database when you create a group, for example:

+---------|---------------+
| GroupID | GroupName |
+---------|---------------+
| 1 | User |
+---------|---------------+
| 2 | Super User |
+---------|---------------+
| 3 | Administrator |
+---------|---------------+




in your admin page, you would set the userWhen setting up the user admin page using data bridge, you would set the userGroupID to be a menu and use the Groups table to populate it using the GroupID for the value and the GroupName for the label.

4) you will need to modify your security assist pages in order to use access levels in the site. On the security assist support page, in the archived documentation section is a user level access tutorial, it was written for V1, but the concept is still the same.

Sign in to reply to this post

Sally

Thanks, Jason. Got that all squared away and the access page info is working fine.

But in the process was doing some testing with session variables and found I can't get them to display on the page. I tried inserting session variables I set on my login page and when that didn't work I also tried inserting dynamic data based on a recordset filtered on the SecurityAssist_UserID session variable. No dice. I'd like to be able to greet people by name.

Do you see anything in the attached file that's not right? I believe I am capturing them as the page access is based on the UserGroupID, but I can't figure out why they won't display.

Thanks.

Attached Files
login_success.zip
Sign in to reply to this post

Jason ByrnesWebAssist

on pages where you try to write session values, you may need to start the session first.

add the following code at line 1:

php:
<?php @session_start();?>
Sign in to reply to this post

Sally

Bingo!

You make this all seem so easy. Thanks so much!

Sign in to reply to this post

Jason ByrnesWebAssist

glad to hear it worked .

Sign in to reply to this post

Build websites with a little help from your friends

Your friends over here at WebAssist! These Dreamweaver extensions will assist you in building unlimited, custom websites.

Build websites from already-built web applications

These out-of-the-box solutions provide you proven, tested applications that can be up and running now.  Build a store, a gallery, or a web-based email solution.

Want your website pre-built and hosted?

Close Windowclose

Rate your experience or provide feedback on this page

Account or customer service questions?
Please user our contact form.

Need technical support?
Please visit support to ask a question

Content

rating

Layout

rating

Ease of use

rating

security code refresh image

We do not respond to comments submitted from this page directly, but we do read and analyze any feedback and will use it to help make your experience better in the future.

Close Windowclose

We were unable to retrieve the attached file

Close Windowclose

Attach and remove files

add attachmentAdd attachment
Close Windowclose

Enter the URL you would like to link to in your post

Close Windowclose

This is how you use right click RTF editing

Enable right click RTF editing option allows you to add html markup into your tutorial such as images, bulleted lists, files and more...

-- click to close --

Uploading file...