Version: 4.1, by TheInsaneManiac
Developer Last Online: Feb 2022
Category: Administrative and Maintenance Tools -
Version: 3.8.x
Rating:
Released: 06-27-2009
Last Update: 07-03-2009
Installs: 43
Uses Plugins
Code Changes
No support by the author.
A friend of mine requested this so I made it. By default the plugin is disabled, otherwise you would not be able to access the AdminCP.
If someone tries to access your AdminCP and they are not the IP, User Group, or User ID that you defined, they will automatically be forwarded to the forum home. If you wanted to you could enable the IP, User Group, and User ID at once. Enable as many of the features as you feel a need for.
Features:
Enable and Disable hack (Disabled by default)
Define MULTIPLE IPs that are allowed to access the AdminCP
Able to separate multiple IPs by | (No spaces between the IPs and |)
Define MULTIPLE User Groups that are allowed to access the AdminCP
Able to separate multiple User Groups by | (No spaces between the User Groups and |)
Define MULTIPLE User IDs that are allowed to access the AdminCP
Able to separate multiple User IDs by | (No spaces between the User IDs and |)
Upgrade:
You MUST uninstall the old product after that just follow the directions of the New Installation.
File Edits:
In admincp/index.php find:
Code:
require_once('./global.php');
Add after:
Code:
if ($vbulletin->options['allowip_enabled']){
$valid_ips = explode("|", $vbulletin->options['allowedips']);
if (!in_array($_SERVER['REMOTE_ADDR'],$valid_ips)) {
header('Location: ../index.php'); //change according to your site setup
exit();
}
}
//allowed usergroups
if ($vbulletin->options['allowgroups_enabled']){
$valid_ids = explode("|", $vbulletin->options['allowedgroups']);
if (!in_array($vbulletin->userinfo['usergroupid'], $valid_ids)) {
header('Location: ../index.php'); //change according to your site setup
exit();
}
}
//allowed user ids
if ($vbulletin->options['allowids_enabled']){
$valid_ids = explode("|", $vbulletin->options['allowedids']);
if (!in_array($vbulletin->userinfo['userid'], $valid_ids)) {
header('Location: ../index.php'); //change according to your site setup
exit();
}
}
New Installation:
1.) Perform the file edits
2.) Go to AdminCP-> Plugins & Products-> Manage Products-> Import the product-admincpaccess.
3.) Go to AdminCP-> VBulletin Options-> VBulletin Options-> AdminCP Access.
4.) Under AdminCP Allowed IPs put your IP and then enable the hack and save. For multiple IPs just follow this example:
1.1.1.1|2.2.2.2|3.3.3.3|
Optional:
1.) Under AdminCP Allowed User Groups put the User Groups you wish to allow access and then enable the hack and save. For multiple User Groups just follow this example:
6|7
2.) Under AdminCP Allowed User IDs put the User IDs you wish to allow access and then enable the hack and save. For multiple User IDs just follow this example:
1|2|3
Screenshots:
Of what? If you are not the defined IP, User Group, or User ID you will be redirected to the forum home.
*If you locked yourself out just reupload your original admincp/index.php file to you admincp root. Go into your AdminCP-> VBulletin Options-> VBulletin Options-> AdminCP Access and fix what ever caused you to get locked out. Once you fix it just reupload the edited admincp/index.php file.
Changelog:
1.0 - Initial release with just IP Access
2.0 - Now you can allow access to the Admin CP by IP Addresses, User Groups, and User IDs.
2.1 - Added instructions to edit the file as VBulletin Staff don't like for VBulletin files to be edited for you. Other than that nothing has changed, so if you have version 2.0 there's no need to update.
3.0 - Made some minor changes to code.
4.0 - Now supports 3.8.x.
4.1 - Fixed a small coding issue.
Question: Can, this be used even if you've set a .htpassword on your admincp directory?
So, if I define an IP that can only access the admincp and then I try to logon from another computer, will I be denied access after I successfully input the login details for the .htpassword or before?
hpassword is a server password script, so it would load first.
.htaccess is more and enough secure and i do not see any Reason for a Solution like this.
I would agree with you totally redlabour, and I have not downloaded this mod as of yet but from what I read this lets you specify based off usergroup and/or userID? This could be useful for users with a dynamic IP address - however .htaccess is much more secure.
many ISPs assign dynamic IPs. so the IP is different every time you access the net. so one day this mod works for someone, and the next it dont. if you have a range feature, this would make this feature so much better. the way this mod is designed right now, will only work if you have a static IP.
AdminCP Access Details »»
Other than that nothing has changed, so if you have version 2.0 there's no need to update. 
About Developer
Uses Plugins 
No support by the author.
07-08-2009, 04:40 PM
