S/A Authenticate User Server Behavior

I ran the S/A wizard and created registration page, login and logout page.. I also have written a search engine page with php outside of Webassist.
I have a separate table in db for users and set up like advised in the tutorials. All these things work great independently.
When I am following along in the SecurityAssist-User Level Authentication Guide. I get to the part that instructs you how to Define user access levels, open the login page, double click on the "S/A Authenticate User Server Behavior" and add userLevel db column and click finish.

That's it, the login page doesn't work after that, in the browser no error message, nothing just a white page. If you try and "undo" what you did in D/W, the page still doesn't work.

So now after deleting and doing this 3 times, I get the same results

Am I missing something?

Thanks
Robert

When a PHP page display blank in the browser, it is because there is a PHP error occurring and error reporting is turned off.

To troubleshoot the problem, error reporting needs to be turned on so you can see aht the error is.

To turn error reporting on, add the following to line 1 of the page:

<?php 

error_reporting(E_ALL);

ini_set('display_errors','on');

?>

I did as you said and got this message:

Fatal error: Call to undefined function virtual() in /var/www/html/users_LogIn.php on line 5


what does that mean?

Thanks

In your site definition on the Local Info tab you have set the "Create Links relative to" option to site, change it back to document.

if you use site relative links, it will cause Dreamweaver to create the include lines using the virtual command which is not valid on many servers. using document relative links, Dreamweaver creates the include lines using the more standard require_once() command.

Only users with admin rights can log in, when they log in sucessfully, they are redirected to a search page and can search the db. If a user not level 3 or anyone else attempts to log in they get sent to accessdenied page.

The only issue is if you type the url of the restricted page into the browser, it comes up no problem, so anyone can access it and search.

this is the code at the beginning of the page, Am I missing something here? just si you know, This restricted search page was written in php outside of D/A, but it works great.

<?php
error_reporting(E_ALL);
ini_set('display_errors','on');
?>

<?php require_once( "../WA_SecurityAssist/Helper_PHP.php" ); ?>
<?php
if (!WA_Auth_RulePasses("Administrator")){
WA_Auth_RestrictAccess("../accessdenied.html");
}
?>

thanks

I got it working correctly.

Thanks

Well, the search page was protected by S/A and only accessible to someone after successfully logging in. It was this way for a couple days. Working correctly.

No changes have been made to the site at all and now the search page is available to anyone if they type in the url, or had it bookmarked.

Can anyone explained why it changed?


thanks

Have you made any changes to the Administrator security assist rule?

can you send a copy of the search page and the WA_SecurityAssist/HelperGroupsRulesPHP.php files so we can examine the code.

Jason,
Thanks for the quick reply, after clearing the cashe for the browser, it appears to be fixed.

Thanks

Ok, glad to hear it.