Go Back   vb.org Archive > vBulletin 4 Discussion > vB4 Programming Discussions
FAQ Community Calendar Today's Posts Search

Reply
 
Thread Tools Display Modes
  #1  
Old 06-19-2011, 07:15 PM
forcerm forcerm is offline
 
Join Date: Jun 2008
Posts: 28
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default vbulletin auth external page - is this enough for admin area?

I have built my website around vbulletin, i use the include globals.php hack so that i can work with vb on external pages.

I also have an admin area to go with this, now rather than create a separate login to secure this i decided to limit admin area access to the vbulletin admin usergroup.

PHP Code:
       if($this->vbulletin->getUserGroupId()!="6")
               
redirect(base_url());     

        
//admin code here... 
So this is saying, if usergroup isn't 6, then redirect to the base_url (home) or continue...

This does work, but since it's not actually checking if the user is logged in, rather it's just looking for a usergroup id... is it secure enough?

If the user is not logged in, what will it return? NULL? 0?
Reply With Quote
  #2  
Old 06-19-2011, 07:18 PM
Eric's Avatar
Eric Eric is offline
 
Join Date: May 2006
Location: Kentucky
Posts: 792
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

The Unregistered/Not Logged In usergroup is 0. So if a user is not logged in, then 0 should be returned.
Reply With Quote
  #3  
Old 06-25-2011, 11:40 AM
dionak dionak is offline
 
Join Date: Feb 2006
Posts: 18
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

I tried the quoted example, but I think I'm not using it in the right context, because PHP doesn't know what "$this" is referring to. Also, it is not recognizing the "redirect()" function.

(I have created an external page based on the instructions in this article:


https://vborg.vbsupport.ru/showthrea...own+page+Lynne

-and it was working correctly without this modification.)

I tried modifying the conditional to this:

$vbulletin->userinfo->usergroupid

and that doesn't give an errror, but it also doesn't return anything.

I also tested just the redirect function, and that doesn't work either. I think I need something like "print_standard_redirect", but could someone point me to an article or tutorial for that, as I've never done one on my own before.

Thanks for any help.
Reply With Quote
  #4  
Old 06-27-2011, 11:39 AM
dionak dionak is offline
 
Join Date: Feb 2006
Posts: 18
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by dionak View Post
...I tried modifying the conditional to this:

$vbulletin->userinfo->usergroupid

and that doesn't give an errror, but it also doesn't return anything.

I also tested just the redirect function, and that doesn't work either. I think I need something like "print_standard_redirect", but could someone point me to an article or tutorial for that, as I've never done one on my own before...
I figured it out--just needed some time away from the problem.

The usergroupid is in:

$vbulletin->userinfo['usergroupid']

(userinfo is just an array inside the object, not a whole other object.)

And I found a good, concise tutorial that included redirection here:

https://vborg.vbsupport.ru/showthread.php?t=98009
Reply With Quote
Reply


Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT. The time now is 04:13 PM.


Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2024, vBulletin Solutions Inc.
X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.04141 seconds
  • Memory Usage 2,192KB
  • Queries Executed 13 (?)
More Information
Template Usage:
  • (1)SHOWTHREAD
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)ad_showthread_beforeqr
  • (1)ad_showthread_firstpost
  • (1)ad_showthread_firstpost_sig
  • (1)ad_showthread_firstpost_start
  • (1)bbcode_php
  • (1)bbcode_quote
  • (1)footer
  • (1)forumjump
  • (1)forumrules
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (1)navbar
  • (3)navbar_link
  • (120)option
  • (4)post_thanks_box
  • (4)post_thanks_button
  • (1)post_thanks_javascript
  • (1)post_thanks_navbar_search
  • (4)post_thanks_postbit_info
  • (4)postbit
  • (4)postbit_onlinestatus
  • (4)postbit_wrapper
  • (1)spacer_close
  • (1)spacer_open
  • (1)tagbit_wrapper 

Phrase Groups Available:
  • global
  • inlinemod
  • postbit
  • posting
  • reputationlevel
  • showthread
Included Files:
  • ./showthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/functions_bigthree.php
  • ./includes/class_postbit.php
  • ./includes/class_bbcode.php
  • ./includes/functions_reputation.php
  • ./includes/functions_post_thanks.php 

Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_postinfo_query
  • fetch_postinfo
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • showthread_start
  • showthread_getinfo
  • forumjump
  • showthread_post_start
  • showthread_query_postids
  • showthread_query
  • bbcode_fetch_tags
  • bbcode_create
  • showthread_postbit_create
  • postbit_factory
  • postbit_display_start
  • post_thanks_function_post_thanks_off_start
  • post_thanks_function_post_thanks_off_end
  • post_thanks_function_fetch_thanks_start
  • post_thanks_function_fetch_thanks_end
  • post_thanks_function_thanked_already_start
  • post_thanks_function_thanked_already_end
  • fetch_musername
  • postbit_imicons
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • postbit_display_complete
  • post_thanks_function_can_thank_this_post_start
  • tag_fetchbit_complete
  • forumrules
  • navbits
  • navbits_complete
  • showthread_complete