Version: 1.00, by Brad
Developer Last Online: Nov 2023
Category: Administrative and Maintenance Tools -
Version: 3.6.2
Rating:
Released: 10-22-2006
Last Update: 10-22-2006
Installs: 47
Re-useable Code Additional Files Translations
No support by the author.
This simple addition adds links to many areas of the vBulletin.com member's area right in your admin control panel. With this installed you can;
- Download vBulletin and Impex
- Browse the vBulletin user Manual
- Browse the vBulletin API documentation
- Send support tickets
- Browse the vBulletin.com message board
- View the Change logs
All from the admin control panel.
The new links will appear below the vBoptions table. An admin account will require access to the vBoptions before the new menu will appear. Although there is no issue with other admins begin able to view the pages (they can't unless they have the username/password for the member's area) there is really no reason for them to see such links. Instead of adding new admin permissions (I'm lazy) I just used the one already in place for vBoptions, as the 'main' admin (read: license owner) will likely have permission to use that anyway.
To install upload the attached file to the following directory on your web-server; /home/webroot/vbulletin/includes/xml
Show Your Support
This modification may not be copied, reproduced or published elsewhere without author's permission.
Instead of new admin permissions, why not limit this to the super admin only?
Another suggestion is to include a link to the security patches download area. Not something jelsoft fully promotes, but it is there and might be handy http://members.vbulletin.com/patches.php
So let me get this straight, If i install this and someone manages to steal my password somehow or hacks the server that my site is on and changes my password then goes and logs into the admin section as me, Then they have free rain in the vbulletin members area to download anything on offer and bog off and pirate it to their hearts content
Hmm that's the way it reads to me, think i will give it a miss can't see why i would need to download from the vb members area from inside my board anyway.
But well done i presume some people will think this is a great addition.
If i install this and someone manages to steal my password somehow or hacks the server that my site is on and changes my password then goes and logs into the admin section as me, Then they have free rain in the vbulletin members area to download anything on offer and bog off and pirate it to their hearts content
No.
The only way anyone can get into the member's area is finding out your customer number and password. This modification never asks for such things, it just loads the member's area inside the admincp iframe.
It's no less secure then going directly to the member's area with your webbrowser.
The only way anyone can get into the member's area is finding out your customer number and password. This modification never asks for such things, it just loads the member's area inside the admincp iframe.
It's no less secure then going directly to the member's area with your webbrowser.
Now you just said that it automaticly fills in the customer number and password, and then you said that they won't get access to the members area if they gain access to the adminCP.. did you not? Yes.
Quote:
Originally Posted by Brad
Instead of adding new admin permissions (I'm lazy) I just used the one already in place for vBoptions, as the 'main' admin (read: license owner) will likely have permission to use that anyway.
And if I'm the licence owner, and not userID #1 (as I presume you mean by that).. then what?
Listen to floris and make it a superadmin permission.
Now you just said that it automaticly fills in the customer number and password, and then you said that they won't get access to the members area if they gain access to the adminCP.. did you not? Yes.
And if I'm the licence owner, and not userID #1 (as I presume you mean by that).. then what?
Listen to floris and make it a superadmin permission.
The permissions do nothing but hide the link. I rarely if ever log-in as super admin so this would be useless to me if I had done it that way. If you want it super admin only you'll have to do that part for yourself.
You seem confused here so allow me to explain;
All this does is link you to the member's area. This hack does not remember your username and password for the member's area, it does not automatically log you into the member's area, it does not allow anyone into the member's area that does not know your username and password for it.
In short it's just like typing in the address to the member's area in your web browser and visiting it that way. If you're smart and do not share your log-in details with anyone else you will be fine even if they know the link to the member's area.
Please, don't spread FUD in this thread. I know people may be iffy about linking such a thing from the admin cp and will probably have questions/concerns about it (which I am happy to answer and address).