Hi all, I’m creating a simple secure sign in area using a password, all working fine but I’m not sure how to show a wrong password error message if they don’t key it in correctly.
Which password technique are you using? Are you setting this up in cPanel, or are you using the (hopelessly insecure) JavaScript Password Action?
Walter
On Jun 19, 2012, at 5:15 PM, Jay wrote:
Hi all, I’m creating a simple secure sign in area using a password, all working fine but I’m not sure how to show a wrong password error message if they don’t key it in correctly.
I’m using the simple one, I’d like the explore a more secure one but I know the people who are hosting this particular site for the client is very unhelpful. And I think I need them to help with the security for this but really dont want to involve them if possible.
Regards
Jason
Do you have access to the Client’s hosting control panel?
If so then the section you want to find is called Password Protected Directories - in the Security section.
In there you will be able to assign username/password combos to any folder on the server so that anyone who wants to view a page in that folder will have to enter the correct user/pass combo.
This is by far the easiest way to do this and is pretty secure.
So to sum up you want to put all the pages that you want to restrict access to into a specific folder - this can be created within FW and protection applied after upload.
Or if you have created the folder on the server first then as long as you make a folder named the same in FW (case sensitive) this will work too.
You can protect as many folders as you like so you could have client1, client2 etc. all with different user/pass combos.
What exactly are you trying to do so that we can give more specific help.
Thanks David, the security is for 3 children’s nurseries and I want to secure a log in before the public can get into blogger which the nurseries update. I can’t access the hosting control panel on these sites. So my only option seems to be the simple log in but I can’t get the error message if they input wrong details.
I know it’s not ideal but I can’t code or do anything to detailed just yet, I’m a colours guy ha ha.
Hi Jay,
I wrote a modified version of the JavaScript Password Action a while ago that used PHP. This meant that it could detect if the password/file name was incorrect and offer the user an error rather than a 404 (page not found error).
You can see and example of the Action is use here; http://www.freewayactions.com/test/password/
As a way of protecting pages it isn’t bullet-proof but if you don’t have access to the site’s cpanel then it offers a step up from the JavaScript method.
If you get stuck feel free to give me a shout.
Regards,
Tim.
On 20 Jun 2012, at 09:59, Jay wrote:
I know it’s not ideal but I can’t code or do anything to detailed just yet, I’m a colours guy ha ha.
Hi Tim, I think this would be perfect but I can’t seem to get the php error message when someone keys the wrong password, do you have an idiot proof set of instructions for a fairly new freeway person. I can’t see what I’m doing wrong.
Thanks
Jason
Hi Jay, I wrote a modified version of the JavaScript Password Action a while ago that used PHP. This meant that it could detect if the password/file name was incorrect and offer the user an error rather than a 404 (page not found error).