Jump to content

Page Protector


adrian

Recommended Posts

Hi @tpr - I'll have to have a think about the password only option at the month when I will have a little time. There are some other options I would also like to add, so might be time for a bit of a revamp.

Yes, SLT will always get involved because this module uses the regular PW login process. Not sure a way around that (or whether you should really want a way around it) without changing how access is granted.

  • Like 1
Link to comment
Share on other sites

1 minute ago, Robin S said:

@adrian, maybe the module needs a try/catch to show the login throttle message rather than the 500 error?

Oh right - sorry I missed your note about the 500 error - too busy to really read properly :)

 

  • Like 1
Link to comment
Share on other sites

15 hours ago, tpr said:

A feature request for the future: allow login only with a password.

+1 :) For example it is good for pages containing not too sensitive data, such as work in progress – soon to be made public – pages some people need access to, etc...

Link to comment
Share on other sites

  • 4 months later...

Feature request

Can there be an option to redirect the user to another page if they land on a protected page (rather than showing them the login form)?  Additionally, if there could be a field by which an admin can enter a custom message (or error) to $session->message("the message"); or $session->error("the message"); that would be really great.

  • Like 1
Link to comment
Share on other sites

5 hours ago, Jonathan Lahijani said:

Feature request

Can there be an option to redirect the user to another page if they land on a protected page (rather than showing them the login form)?  

Hi Jonathan,

Would this just be for users that are already logged in, but are prohibited by the Allowed Roles setting, or do you actually want guest users to be redirected when they visit a protected page? Of course this would mean that an authorized user would need to make their own way to a login page. Or are you planning on redirecting them to a custom login page? Then of course you'd want to redirect them back to the page they first visited.

Does the Login Template option work for your needs by chance?

5 hours ago, Jonathan Lahijani said:

Additionally, if there could be a field by which an admin can enter a custom message (or error) to $session->message("the message"); or $session->error("the message"); that would be really great.

It would be helpful to understand your use case a little better and why the existing Message or Prohibited Message fields don't suit your needs.

I am happy to help accommodate what you want, but a little context would help please 🙂

Link to comment
Share on other sites

  • 4 months later...

I was having some issues logging into a site with PageProtector turned on using Chrome on Android. My users would hit login and either nothing would happen. occasionally, a 500 error would be displayed.

In the end, I transpired that a setting called 'Data Saver' was enabled. Once you disable this, my logins worked.

Alternatively, you can run your site over HTTPS to bypass this. I've yet to try it but if you're logging into sites etc then HTTPs should be the default anyway 🙂

 

Link to comment
Share on other sites

Hey Peter,

I think this isn't specifically an issue with this module but rather PW core login security settings. I just some googling on the Data Saver setting - I think the problem is that it affects the IP address of the user. I  think perhaps if you disable PW's session fingerprinting the problem will also be solved.

Link to comment
Share on other sites

  • 4 weeks later...

Hi,

the next weeks I have to build a website with some protected pages, accessible with a password in the frontend.
Now I discovered this module and I'm going to use it, thanks for this 🙂

I couldn't find informations about a logout button. Is there also a logout function, for visitors who are logged in? Or must I build my own one?

Link to comment
Share on other sites

2 minutes ago, adrian said:

Sorry you must build your own.

Ok, thanx.

Do you think, that this »tutorial« would work with your module? https://processwire.com/talk/topic/1716-integrating-a-member-visitor-login-form/?tab=comments#comment-15919

At 5. are the interesting informations:

Quote

5. Just to be complete, make a logout.php template and create a page called /logout/ that uses it.

/site/templates/logout.php

 This get lost from Ryans the quote: 

if($user->isLoggedin()) $session->logout();
$session->redirect('/'); 

 

Link to comment
Share on other sites

@neophron - that tutorial is more than you need if you use this module, but it will give you ultimate flexibility - it really depends on your needs.

If you use this module and just want a logout button you do have to have that button link to a url that performs a $session->logout() and redirect to where you want them to end up. It think in that example there is a logout page added to the admin and the template for that page does the logout and redirect. That should be all you need.

Link to comment
Share on other sites

  • 2 months later...
Just now, neonwired said:

Is there a way to protect new pages by default?

New child pages of a protected parent will be protected by default if you have the protect child pages option checked.

Link to comment
Share on other sites

5 minutes ago, adrian said:

New child pages of a protected parent will be protected by default if you have the protect child pages option checked.

hmm, don't think that would work as the parent isn't protected. I have all the children protected using their template but want to make one of two viewable/unprotected.

Link to comment
Share on other sites

4 minutes ago, neonwired said:

hmm, don't think that would work as the parent isn't protected. I have all the children protected using their template but want to make one of two viewable/unprotected.

Sounds like what you are looking for doesn't really fit with this way this module is designed to work. You might be better off with https://github.com/matjazpotocnik/DynamicRoles although I do find the approach used in that module a bit weird and maybe not very efficient with a lot of pages.

Link to comment
Share on other sites

3 hours ago, adrian said:

Sounds like what you are looking for doesn't really fit with this way this module is designed to work. You might be better off with https://github.com/matjazpotocnik/DynamicRoles although I do find the approach used in that module a bit weird and maybe not very efficient with a lot of pages.

Thanks a lot. I'll probably look at that plugin and page protector and see if i can figure out how they work.

Link to comment
Share on other sites

  • 10 months later...

I just did an update from 2.05 to 2.06. When finished, I checked module config, which told me I currently have no protected pages at all. Truth is, however, there is actually 1 protected page. Also, this page (protection) still worked after the update.

I checked on another site where I have multiple protected resources. On this site - after updating - module config showed me all protected pages, however the numeric count in the headline was given wrongly.

Could there be a regression in determining the count of protected pages?

I use PW >/= 3.0.123 on both sites.

  • Like 1
Link to comment
Share on other sites

  • 2 months later...

Hi @maddmac - no, there isn't a lost password option. I'm not sure what it would take to implement the PW core version into this. I am super busy with client work for the next month so can't really tackle this at the moment I'm afraid. If you feel like having a go, I am happy for PRs 🙂

Link to comment
Share on other sites

  • 2 months later...

I was wondering if it's possible to have a 'protected' and a 'non protected' version of a page. Now I'm using this code:

	if($user->isLoggedin()) {	
// SHOP FOR ADMIN	
  echo "{$materialsimage} &nbsp;&nbsp;<a href='{$p->url}'><span class='verdana_14'><b>{$p->title}</b></a>  -  <span class='verdana_14'>{$p->pad_price} &euro;</span>.</span><br>";
  echo $modules->get("PadRender")->addToCart($p, $askQty = true, $page); 
// $p is the product, we do ask quantity, we redirect back to current page
  echo "<hr>";  
}
else {
// SHOP FOR STUDENTS
  echo "{$materialsimage} &nbsp;&nbsp;<a href='{$p->url}'><span class='verdana_14'><b>{$p->title}</b></a>  -  <span class='verdana_14'>{$p->pad_price} &euro;</span>.</span><br>";
  echo "<hr>";
}

I want to change that into sections SHOP FOR STUDENTS and SHOP FOR VISITORS, where visitors can view what we sell but only students (logged in with PageProtector) can actually buy things. Is it possible in the Page Protector $options? Or what should go into the if() else() part to make in work?

Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    No registered users viewing this page.

  • Similar Content

    • By Robin S
      This module lets you add some custom menu items to the main admin menu, and you can set the dropdown links dynamically in a hook if needed.
      Sidenote: the module config uses some repeatable/sortable rows for the child link settings, similar to the ProFields Table interface. The data gets saved as JSON in a hidden textarea field. Might be interesting to other module developers?
      Custom Admin Menus
      Adds up to three custom menu items with optional dropdowns to the main admin menu.
      The menu items can link to admin pages, front-end pages, or pages on external websites.
      The links can be set to open in a new browser tab, and child links in the dropdown can be given an icon.
      Requires ProcessWire v3.0.178 or newer.
      Screenshots
      Example of menu items

      Module config for the menus

      Link list shown when parent menu item is not given a URL

      Advanced
      Setting child menu items dynamically
      If needed you can set the child menu items dynamically using a hook.
      Example:
      $wire->addHookAfter('CustomAdminMenus::getMenuChildren', function(HookEvent $event) { // The menu number is the first argument $menu_number = $event->arguments(0); if($menu_number === 1) { $colours = $event->wire()->pages->findRaw('template=colour', ['title', 'url', 'page_icon']); $children = []; foreach($colours as $colour) { // Each child item should be an array with the following keys $children[] = [ 'icon' => $colour['page_icon'], 'label' => $colour['title'], 'url' => $colour['url'], 'newtab' => false, ]; } $event->return = $children; } }); Create multiple levels of flyout menus
      It's also possible to create multiple levels of flyout submenus using a hook.

      For each level a submenu can be defined in a "children" item. Example:
      $wire->addHookAfter('CustomAdminMenus::getMenuChildren', function(HookEvent $event) { // The menu number is the first argument $menu_number = $event->arguments(0); if($menu_number === 1) { $children = [ [ 'icon' => 'adjust', 'label' => 'One', 'url' => '/one/', 'newtab' => false, ], [ 'icon' => 'anchor', 'label' => 'Two', 'url' => '/two/', 'newtab' => false, 'children' => [ [ 'icon' => 'child', 'label' => 'Red', 'url' => '/red/', 'newtab' => false, ], [ 'icon' => 'bullhorn', 'label' => 'Green', 'url' => '/green/', 'newtab' => false, 'children' => [ [ 'icon' => 'wifi', 'label' => 'Small', 'url' => '/small/', 'newtab' => true, ], [ 'icon' => 'codepen', 'label' => 'Medium', 'url' => '/medium/', 'newtab' => false, ], [ 'icon' => 'cogs', 'label' => 'Large', 'url' => '/large/', 'newtab' => false, ], ] ], [ 'icon' => 'futbol-o', 'label' => 'Blue', 'url' => '/blue/', 'newtab' => true, ], ] ], [ 'icon' => 'hand-o-left', 'label' => 'Three', 'url' => '/three/', 'newtab' => false, ], ]; $event->return = $children; } }); Showing/hiding menus according to user role
      You can determine which menu items can be seen by a role by checking the user's role in the hook.
      For example, if a user has or lacks a role you could include different child menu items in the hook return value. Or if you want to conditionally hide a custom menu altogether you can set the return value to false. Example:
      $wire->addHookAfter('CustomAdminMenus::getMenuChildren', function(HookEvent $event) { // The menu number is the first argument $menu_number = $event->arguments(0); $user = $event->wire()->user; // For custom menu number 1... if($menu_number === 1) { // ...if user does not have some particular role... if(!$user->hasRole('foo')) { // ...do not show the menu $event->return = false; } } });  
      https://github.com/Toutouwai/CustomAdminMenus
      https://processwire.com/modules/custom-admin-menus/
    • By tcnet
      This module for ProcessWire sends a notification email for each failed login attempt. Similar modules exists already in the module directory of ProcessWire. However, this module is designed to notify, even if specified user doesn't exist.
      Settings
      The settings for this module are located in the menu Modules=>Configure=>LoginFailNotifier.
      Notification email
      Specifies the email address to which the notification emails should be sent.
        Email subject
      Specifies the subject line for the notification email.
        Post variables
      Specifies the $_POST variables to be included in the notification email. Each variable must be separated by a comma. For example: login_name,login_pass
        Server variables
      Specifies the $_SERVER variables to be included in the notification email. Each variable must be separated by a comma. For example: REMOTE_ADDR,HTTP_USER_AGENT
      Link to ProcessWire module directory:
      https://processwire.com/modules/login-fail-notifier/
      Link to github.com:
      https://github.com/techcnet/LoginFailNotifier
    • By Fokke
      ProcessWire 3.x markup module for rendering meta tags in HTML document head section. Note that this module is not a full-blown SEO solution, but rather a simple tool for rendering meta tags based on module configuration. Adding custom meta tags is also supported.
      Built-in meta tags
      The following meta tags are supported out-of-the-box:
      Document title consisting of page title and site name Character set Canonical Viewport Description Keywords Hreflang tags Open Graph og:title og:site_name og:type og:url og:description og:image og:image:width og:image:height Twitter meta tags twitter:card twitter:site twitter:creator twitter:title twitter:description twitter:image Facebook meta tags fb:app_id The full documentation with configurable options can be found here: https://github.com/Fokke-/MarkupMetadata
       
      Requirements:
      ProcessWire>=3.0.0 PHP >=7.1 Installation using Composer
      composer require fokke/markup-metadata Manual installation
      Download latest version from https://github.com/Fokke-/MarkupMetadata/archive/master.zip Extract module files to site/modules/MarkupMetadata directory.
    • By m.sieber
      ITRK-Service for ProcessWire
      Module for the automated transfer of imprint, data protection declaration and terms and conditions from IT-Recht Kanzlei to your ProcessWire installation
      What is ITRK Service for ProcessWire?
      ITRK-Service for ProcessWire is a free module for ProcessWire CMS. It provides an interface to the update service of IT-Recht Kanzlei, via which the legal texts of your online presence are automatically updated. In this way, the texts remain legally secure and warning-proof in the long term. Imprint, data protection declaration, revocation and general terms and conditions are currently supported.
      You can find our documentation (in german language) here: https://www.pupit.de/itrk-service-for-processwire/dokumentation/

      Download: https://www.pupit.de/itrk-service-for-processwire/
      Github: https://github.com/pupit-de/pwItrkServiceConnector
    • By LuisM
      Symprowire is a PHP MVC Framework based and built on Symfony using ProcessWire 3.x as DBAL and Service-Provider
      It acts as a Drop-In Replacement Module to handle the Request/Response outside the ProcessWire Admin. Even tough Symfony or any other mature MVC Framework could be intimidating at first, Symprowire tries to abstract Configuration and Symfony Internals away as much as possible to give you a quick start and lift the heavy work for you.
      The main Goal is to give an easy path to follow an MVC Approach during development with ProcessWire and open up the available eco-system.
      You can find the GitHub Repo and more Information here: https://github.com/Luis85/symprowire
      Documentation
      The Symprowire Wiki https://github.com/Luis85/symprowire/wiki How to create a simple Blog with Symprowire https://github.com/Luis85/symprowire/wiki/Symprowire-Blog-Tutorial Last Update
      16.07.2021 // RC 1 v0.6.0 centralized ProcessWire access trough out the Application by wrapping to a Service https://github.com/Luis85/symprowire/releases/tag/v0.6.0-rc-1 Requirements
      PHP ^7.4 Fresh ProcessWire ^3.0.181 with a Blank Profile Composer 2 (v1 should work, not recommended) The usual Symfony Requirements Features
      Twig Dependency Injection Monolog for Symprowire Support for .env YAML Configuration Symfony Console and Console Commands Symfony Webprofiler Full ProcessWire access inside your Controller and Services Webpack Encore support Caveats
      Symfony is no small Framework and will come with a price in terms of Memory Usage and added Overhead. To give you a taste I installed Tracy Debugger alongside to compare ProcessWire profiling with the included Symfony Webprofiler

      So in a fresh install Symprowire would atleast add another 2MB of Memory usage and around 40ms in response time, should be less in production due to the added overhead of the Webprofiler in dev env
       
×
×
  • Create New...