WordPress dashboard
is there are any easy way to make a employee login web site for WordPress Dashboard ?
any Application programming interface[API] solutions?, any Content Management System[CMS] solution?
because giving access to main website back end for company data entering employees are too risky. And they are additionally try out some major updates stupidly. then i wanna solution for preventing that incident.
This is exactly what user roles are for: https://codex.wordpress.org/Roles_and_Capabilities
Do not give administrator access to anyone who does not need it. Users with 'Editor' or 'Author' roles can add posts without being able to update Wordpress or plugins.
Related
I can't seem to find the answer to this online.
I don't have much experience with Wordpress but I need to build a site using a few plugins. They all offer the ability for users to register and login, and I need to know if they will all use the same user implementation (i.e. the native Wordpress one), so that when a user registers/logs in once they will get access to all of the plugins' features and be logged into all of them.
The plugins specifically are:
https://wordpress.org/plugins/paid-memberships-pro/faq/
https://wordpress.org/plugins/camptix/
https://wordpress.org/plugins/private-messages-for-wordpress/
First and third one seems to use WP Login. In second one users seems to use formula to order tickets so they will probably have to fill all fields every order, but still logged as your WP users. Second plug-in using external website to finalise ordering so your user will have to log in somewhere else.
In my opinion for example thanks to first plugin you will be able to control access to second one and your users will not have to register twice to use third one.
Hi I want to create a wordpress connect for our codeigniter site , and connect our own wordpress site.I was create a login page and done all wordpress authentication successfully.But I need
`If I am already logged into Wordpress and then go to the codeigniter site , I should see the "Welcome Admin" in the upper right to indicate that I am logged in`.
But I cant take the authentication details from wordpress site.is it possible to get login details from wordpress ?Any one please help me
What you are looking for is a Single Sign On solution. Signing into either of the sites will allow you to be signed into the other.
To accomplish this, you might have to re-organize how people log in. You have 2 options:
1) The more secure way would be to have ONE source for logins. Then, implement an oAuth type solution so that if a person visits the other source and tries to login, they are redirected to the main source...login...and then they are sent back to where they originally tried to login. I've done this a couple times with the oAuth plugin for wordpress and writing custom code in my other site (which was CakePHP...but it shouldn't matter).
2) Another way would be to write a custom plugin that when a person logs in with codeigniter, they are manually logged in in the background to wordpress. Not nearly as secure...but if your site doesn't have a need for decent security it might be an option. Here your issue is that you won't know the WP password in order to do proper authentication.
I would like to know if there is a plugin available or a way to achieve a registration process for a WordPress site that would be completely separate from thee site's users that can see the backend. To clarify a bit, we want to have two registrations available, one for site admins or editors that have access to the actual WordPress backend, and one for additional clients that don't have access to the WordPress backend and do not share the same user database table. We would not want them to even be listed as "Users" in the WordPress backend. Thanks in advance for any suggestions!
Create a separate system which uses OpenID. It's easiest
You should go to your dashboard and check that the default user role is set to subscriber. Subscribers only role is to read posts, they don't have access to the dashboard.
Hello i want to make a site that will have a registration page a log-in page. After logging-in users will be able to fill a form and save it in their account.
I want as an administrator to control users so after their registration will be able to log-in after i approve them. and to be able to pause their log-in after a certain amount of time(in months).
What is the best way to do that?
Is it any good using a wordpress plug in for that and what plug-in will be that.
I know some PHP and SQL but don't have too much experience to building it fro scratch.
I would suggest this article Simple and Secure PHP Login Script since it has a very good security review here Security Review: Creating a Secure PHP Login Script. Assuming that you have read the articles you can add a Boolean verified field to the authentication table set 0 by default. Then from the admin panel you can revise all non-verified users.
I'm not 100% sure if I understand your goal completely, but it sounds like the WordPress Membership Plugin may be able to help you out.
I have built an app using codeigniter which has 3 different member groups
Admininstrators - Who login to a dashboard and have CRUD facilities to Add/Edit/Delete Events, shows and artists
Clients - Who Login from the front end and see all the items that the admin have added via the back end.
Media Partners - Who Login from the front-end and see certain parts of what the client can see but not all things.
I have integrated the Tank_Auth Library for the Clients section which all works fine. What I would like to achieve though is for the administrator to be able to login to a seperate admin area and the media partners to be able to login to a seperate area too.
What is the best way to approach this?
Do I need to create sepearate dashboard controllers for each userbase and duplicate the Tank_Auth controller 3 times and tweak this?
Ideally The Admin users also need to be able to add news users and login to all 3 seperate areas?
Has anybody achieved such a solution before, If so how did you go about it? perhaps tank auth isn't the correct approach?
Any input would be appreciated.
Thanks Dan
I am using CI, but haven't used Tank_Auth, I have my auth class and in every function I have the following method called: $this->auth->accessMap(get_class($this),__FUNCTION__);
In auth class:
public function accessMap($controller_name,$function_name)
{
if ($this->perms_array[$controller_name][$function_name])
return true;
else $this->redir();
}
I have permissions array in config:
$config['user_perms']['className']['method1'] = array($config['user_types']['admin']);
$config['user_perms']['className']['method2'] = array($config['user_types']['admin'],$config['user_types']['user']);
Like this you can specify for each method which user has permission to use it.
I hope this will help.
I can't find the thread on the CI forums because I can't seem to login to their website right now, however do a search for 'zend_acl in codeigniter'. Alternatively there is this blog post about how to implement it, but it is slightly dated.
ACL stands for Access Control List, it will allow you to setup various permissions for different types of users. Zend has one of the best implementations of ACL in my opinion.
More information about ACL's can be found on zend's website.
Absence of user group is a pain when using tank_auth if we have multiple user groups. I ran into this issue recently. Here is the solution posted in CI forms.
Using tank_auth for both front end user registration and login and back end admin login