vitus-fe
|
Posted: 03/22/2005, 3:49 AM |
|
It would be useful if we could set a security level where someone failing to login in x times will have their access blocked and require reactivation via email to prevent guessing of password.
|
|
|
Oper
Posts: 1195
|
Posted: 04/01/2005, 5:45 PM |
|
you could do that very easy.
its just a script
_________________
____________________________
http://www.7bz.com (Free CMS,CRM Developed in CCS)
http://www.PremiumWebTemplate.com
Affiliation Web Site Templates
Please do backup first |
|
|
lneisius
Posts: 29
|
Posted: 04/04/2005, 4:54 AM |
|
How about an example?
|
|
|
ryan_
|
Posted: 04/13/2005, 6:25 PM |
|
OF COURSE kind sir you can modify this I dunno any good script lately to inerface w/ CCS so I made up my own :)
note CountLock is the field on my table that is of integer data type it counts to 3 something like
1. enterpassword.... wrong then countlock is 1
2. enterpassword.... wrong then countlock is 2
3. enterpassword.... wrong then countlock is 3 poup appear page redirects to SORRY you have entered wrong pass 3 times
On your login Onclick event you have to tweak something like
Function Login_Button_DoLogin_OnClick() 'Login_Button_DoLogin_OnClick @3-ADB4691A
'Login @4-AA430BB1
Dim SQL, Connection1, CountLock
Set Connection1 = New clsDBConnection1 : Connection1.Open
CountLock = CCDLookUp("CountLock","dbo.CS_AuthorizedUsers","empID="&StripQuote(Login.login.value,1),Connection1)
IF (CountLock="1") THEN
'popup window
'Response.Write("locked")
SQL = JRedirect("CS_PreLogin.asp")
Response.End
END IF
With Login
If NOT CCLoginUser(.login.Value, .password.Value) Then
.Errors.addError("Login or Password is incorrect. ") ' & Session("CountLock")
Login_Button_DoLogin_OnClick = False
.password.Value = ""
Session("CountLock") = Session("CountLock") + 1
IF Session("CountLock") = "3" THEN
'popup window
SQL = "UPDATE CS_AuthorizedUsers " & _
"SET CountLock=1 " & _
"WHERE (empID="&StripQuote(Login.login.value,1)&") "
'Response.Write(SQL)
Connection1.Execute(SQL)
Session("CountLock") = ""
SQL = JRedirect("CS_PreLogin.asp")
END IF
Else
If Not IsEmpty(CCGetParam("ret_link", Empty)) Then _
Redirect = CCGetParam("ret_link", Empty)
Login_Button_DoLogin_OnClick = True
Session("CountLock") = ""
End If
End With
'End Login
Connection1.Close : Set Connection1 = Nothing
End Function 'Close Login_Button_DoLogin_OnClick @3-54C34B28
--------------------- http://www.websamba.com/charmangel/
|
|
|
|