• We’re currently investigating an issue related to the forum theme and styling that is impacting page layout and visual formatting. The problem has been identified, and we are actively working on a resolution. There is no impact to user data or functionality, this is strictly a front-end display issue. We’ll post an update once the fix has been deployed. Thanks for your patience while we get this sorted.

Looking for website script/software that requires login to access site

UDT89

UDT89

Diamond Member
I'm creating a site for work and I need to make the whole site username and password protected. I would also need to see the IP addresses of where each user logs in and be able to restrict access to only 1-2 IP addresses.

I have looked around on google and seen a few php scripts but I'm not sure on how good they are or if they are secure. Its not like we'll be having bank account info and stuff, but its content needs to be restricted to certain people.

if anyone has some suggestions please let me know. i bet there is something obvious that I am over looking.
 
I'm kinda boycotting VB. they come out with this new version and basically screw everyone into buying it. and us old users didnt get the greatest discount to buy it
 
UDT89 said:
I'm creating a site for work and I need to make the whole site username and password protected. I would also need to see the IP addresses of where each user logs in and be able to restrict access to only 1-2 IP addresses.

I have looked around on google and seen a few php scripts but I'm not sure on how good they are or if they are secure. Its not like we'll be having bank account info and stuff, but its content needs to be restricted to certain people.

if anyone has some suggestions please let me know. i bet there is something obvious that I am over looking.
Click to expand...

Something like this is super easy in PHP if you have the server side software ready to go. Just do something like...
<?php session_start();
if ($_SESSION['authenticated'] != "true")
{
echo "You do not have permission to be here.";
exit;
}
?>

You could also replace echo with header('Location: index.php (or wherever)'); to redirect direct them away from the page.

It sounds like you won't be adding new users, you just want to authenticate a few hosts, so all you need is a simple form asking for username and password. SQL is super easy to work with in PHP so create a table for users and a table for accepted IP addresses. Check against both before you set the session['authenticated'] variable. The PHP global variable for host IP address is $_SERVER['REMOTE_ADDR']. So when you authenticate from your form just check both tables and set the authentication variable. You can also play around in the .ini file to set the length of a session.

The only issue here is if the user logs in and then changes their IP address. It doesn't sound like people will be intentionally trying to hack this site, so I'm not sure if you need to check remote IP address on every protected page load.
 
IceBergSLiM said:
this is pretty much built into the .net framework.
Click to expand...

Haha, if you like that sort of thing. But yes, the membership namespace does make this somewhat easier, although I don't think it naturally supports IP authentication as well, so you'll still have to write that. I like being able to write my code in kate or npp.
 
If you have a directory server to authenticate against, you could just use Ruby (or PHP).
Ruby on Rails is a decent framework to work with.
 
You must log in or register to reply here.

TRENDING THREADS

Back
Top