Hi Mark, I have successfully used the built-in security for granting access to the front end, and can recommend it. The only drawback is that users are split across to tables/objects.
dmProfile contains info like firstname, lastname, etc. It extends fourQ, so you can use the traditional API. dmUsers contains the password, however it is not a standard farcry content type--it does not use fourQ. So you will have to dig into the API (farcry_core.packages.security) to find its methods. Regarding your JS question, you will not be able to check the username/password in Javascript, b/c that data exists on the server--not the client. Unless you want to whip out some Ajax to connect to the server. We have created a webservice gateway against which we are authenticating w/Flash. Regarding generating reports based on username instead of IP, I think the idea is fascinating. We are doing something similar, but w/Flash content. Each page that is visited gets logged along w/the users user_sessionID. However we are not using the built-in audits. Not sure why that never occurred to me. If you look in the core at the stats cfc (packages.farcry.stats), you will see that userID is being passed into the logEntry function. So that information may already be available to you. You just need to get it out the DB somehow. It may require building a custom report, but that would not be too difficult. M Wheeler wrote: > Hi > > I am using a custom type to create access to the website for users, ie > setting them up with username password and other information, looking > like a very effective method for doing this. I have 3 quick questions > that you may be able to assist me with. > > Whats the general concensus for creating logins for access to a farcry > site (client access to front-end only), using built in security and > user management or custom type > > Secondly if using custom type I want to validate the username is valid > very simply check the database to see if there exists that username > already > > SELECT psUsername > FROM psClients > WHERE psUsername = 'ARGUMENTS.username' > > obviousy 1 recordcount needs to force the administrator to renenter a > new username, is there a way I can do this using javascript maybe on > the page the same way as form validation is checked? > > Secondly where do I go in the reporting functionality code of the site > to check to see if the user is a logged in user then reporting > functionality can include usernames of clients browsing rather than > standard IP's > > Cheers > Mark > > > --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "farcry-dev" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/farcry-dev -~----------~----~----~----~------~----~------~--~---
