Need Sign-Out permissions for a group without editing permissions
Permalink
I have a group on a website that has login permissions to see certain pages, but no editing capabilities. I need to be able to have them sign out. If they can't sign out then the pages are accessible through the browser's history without login.
The only way I can see to have them sign out is to give them editing capabilities on these pages, but the client doesn't want this group to have editing capabilities.
it would be like having a member sign in and sign out without editing.
a big thanks to anyone who can help with this?.
The only way I can see to have them sign out is to give them editing capabilities on these pages, but the client doesn't want this group to have editing capabilities.
it would be like having a member sign in and sign out without editing.
a big thanks to anyone who can help with this?.
Thanks for looking into this.
My client wanted their board members to be able to log-in to a special section of their website that is for board members only. So I created pages that has content related to board members only. Then I created a group called "BOARD" for the board members.
All board members have a login and can log into the site. Only when logged in can see they see the board member pages. These pages are hidden from guests and can only be seen by two groups when logged in- the Admin Group and the BOARD group.
The "BOARD" group does not have editing permissions. The client does not want them to be able to edit the pages - only view them. But the problem is that if you turn off editing permissions then there is no LOG OUT either. The only way I have found to be able to give them a LOG OUT is to turn on editing permission for those pages. As stated my client does not want them to have editing capabilities for these pages, but they do need the board members to log out. If they can't log out, anyone can go into that computer's browser history and get onto the board pages. That is a security problem.
Hoping what I am looking for is clearer and thanks again for your help.
My client wanted their board members to be able to log-in to a special section of their website that is for board members only. So I created pages that has content related to board members only. Then I created a group called "BOARD" for the board members.
All board members have a login and can log into the site. Only when logged in can see they see the board member pages. These pages are hidden from guests and can only be seen by two groups when logged in- the Admin Group and the BOARD group.
The "BOARD" group does not have editing permissions. The client does not want them to be able to edit the pages - only view them. But the problem is that if you turn off editing permissions then there is no LOG OUT either. The only way I have found to be able to give them a LOG OUT is to turn on editing permission for those pages. As stated my client does not want them to have editing capabilities for these pages, but they do need the board members to log out. If they can't log out, anyone can go into that computer's browser history and get onto the board pages. That is a security problem.
Hoping what I am looking for is clearer and thanks again for your help.
Ah ok - so if its just a case of not being able to log out (when signed in as a board member) then you could just add a logout link into the page?
We would traditionally include something like this in the header or footer:
Does that help?
We would traditionally include something like this in the header or footer:
<?php $u = new User(); if ($u->isRegistered()) { ?> <p class="right"> Welcome <?php echo $u->getUserName(); ?> <span class="grey">|</span> <a href="<?php echo DIR_REL;?>/profile">My account</a> <span class="grey">|</span> <a href="<?php echo DIR_REL;?>/login/logout">Logout</a> </p> <?php } else { ?> <p class="right"> <a href="<?php echo DIR_REL;?>/register">Register</a> <span class="grey">|</span> <a href="<?php echo DIR_REL;?>/login">Login</a>
Viewing 15 lines of 17 lines. View entire code block.
Does that help?
Oh yes of course!!! I had forgotten about that code that I had taken out of the footer a long time ago!. Wonderful! Thank you!!!!
I did take out the href for registering, but now I have that if I ever need it.
can't thank you enough!
I did take out the href for registering, but now I have that if I ever need it.
can't thank you enough!
What are the groups your trying to use and what permissions should each one have? You can of course have a group that only has view permission to a page (no editing etc)